$ rpki-client -vvf rpki.apnic.net/member_repository/A91FA729/28B9D01CE5F811E79A7D8433C4F9AE02/zo4PK6SZxeWHsBXhBE8JjOYsp1g.mft File: zo4PK6SZxeWHsBXhBE8JjOYsp1g.mft (raw, json) Hash identifier: 8x3P6JftuQAuhVCxHAfJI4mU3EHit9r7s9+q+8z+q/Y= Subject key identifier: 16:A8:AF:52:AB:C3:DF:65:6F:DC:51:59:3C:18:A3:72:CA:1F:09:C7 Authority key identifier: CE:8E:0F:2B:A4:99:C5:E5:87:B0:15:E1:04:4F:09:8C:E6:2C:A7:58 Certificate issuer: /CN=A91FA729/serialNumber=CE8E0F2BA499C5E587B015E1044F098CE62CA758 Certificate serial: 1755 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/zo4PK6SZxeWHsBXhBE8JjOYsp1g.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91FA729/28B9D01CE5F811E79A7D8433C4F9AE02/zo4PK6SZxeWHsBXhBE8JjOYsp1g.mft Manifest number: 174B Signing time: Thu 18 Sep 2025 16:44:25 +0000 Manifest this update: Thu 18 Sep 2025 16:44:24 +0000 Manifest next update: Thu 25 Sep 2025 16:44:24 +0000 Files and hashes: 1: zo4PK6SZxeWHsBXhBE8JjOYsp1g.crl (hash: mB9Hppw+oXBmuH2Aqifed2xa2JoA8eee0q3cCDXrCtM=) 2: 4A81F344C34111EB855D7C84C4F9AE02.roa (hash: uASyVgC1Cwioz2zhPx4P08otp7ZGZ17OkqWd5dxa/vo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91FA729/28B9D01CE5F811E79A7D8433C4F9AE02/zo4PK6SZxeWHsBXhBE8JjOYsp1g.crl rsync://rpki.apnic.net/member_repository/A91FA729/28B9D01CE5F811E79A7D8433C4F9AE02/zo4PK6SZxeWHsBXhBE8JjOYsp1g.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/zo4PK6SZxeWHsBXhBE8JjOYsp1g.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 25 Sep 2025 16:44:24 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5973 (0x1755) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91FA729, serialNumber=CE8E0F2BA499C5E587B015E1044F098CE62CA758 Validity Not Before: Sep 18 16:44:24 2025 GMT Not After : Sep 25 16:44:24 2025 GMT Subject: CN=68cc36e9-96b9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:d8:d0:3d:63:19:09:5f:81:b1:03:1a:c2:87: 3b:1c:00:29:b7:77:63:4f:3a:9a:26:7e:74:3d:64: bb:5b:86:93:7a:6d:a1:14:dc:7e:44:3c:8e:27:e2: f4:01:07:a1:4e:a8:74:14:6e:06:4d:2d:b8:39:40: df:fa:66:d6:17:b5:51:09:c6:f2:a3:3a:cd:34:e6: 24:34:1d:b1:35:04:1a:4b:1f:8a:fd:4a:ac:c2:5a: 10:3a:47:36:ea:70:23:34:63:67:4e:ff:15:9f:70: e9:81:93:9e:d8:4f:2e:59:97:22:83:80:03:57:5f: 98:77:69:dc:50:30:7e:e4:63:a0:8f:34:37:40:e3: 9f:37:49:36:d6:da:0d:cb:4c:16:84:97:0d:05:c7: 0f:5b:0b:96:eb:ee:43:86:9c:e4:b6:12:2a:5f:63: 68:a9:b8:dd:37:e5:bb:8b:a6:6c:4a:f0:03:bb:db: 29:79:61:1b:dc:00:5f:93:79:3c:06:78:40:00:78: 5e:9b:12:30:d4:b2:79:42:e2:26:eb:9f:b0:41:23: 7e:34:97:e1:88:30:4e:6f:36:4b:11:6a:2c:99:4a: 04:dc:14:f2:8b:e5:a5:14:d3:cb:a2:4e:9d:c5:a7: 01:2a:c6:58:7d:e8:e3:9e:0b:b4:1a:d6:9f:89:25: 60:2d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 16:A8:AF:52:AB:C3:DF:65:6F:DC:51:59:3C:18:A3:72:CA:1F:09:C7 X509v3 Authority Key Identifier: keyid:CE:8E:0F:2B:A4:99:C5:E5:87:B0:15:E1:04:4F:09:8C:E6:2C:A7:58 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91FA729/28B9D01CE5F811E79A7D8433C4F9AE02/zo4PK6SZxeWHsBXhBE8JjOYsp1g.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/zo4PK6SZxeWHsBXhBE8JjOYsp1g.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91FA729/28B9D01CE5F811E79A7D8433C4F9AE02/zo4PK6SZxeWHsBXhBE8JjOYsp1g.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 93:ec:a0:61:bd:12:db:f7:e9:14:10:46:c8:9d:29:e5:d6:87: d5:98:40:32:23:e9:f8:48:f4:66:81:00:3e:60:a3:82:35:59: 96:4a:5b:43:2d:f3:fa:7e:46:35:40:a0:48:5b:94:33:c8:6c: 9f:ed:81:f3:86:0f:6f:31:f8:e7:75:a0:04:98:15:fd:c5:4a: 08:5b:17:de:4d:22:7e:78:d4:3c:7a:02:4c:47:e1:62:15:b4: 7a:da:59:dc:71:b1:09:7e:9e:fe:f1:b8:0b:43:e8:6d:5a:43: 8c:16:44:7d:10:63:7f:46:3c:ce:3c:99:14:25:21:26:ed:28: 16:5b:34:62:67:75:27:43:b0:88:ab:fa:cf:e9:de:c1:71:41: 35:ab:cc:68:d9:21:cd:cc:4a:e0:71:15:19:bc:b1:fd:c8:6f: f8:3f:8f:cd:77:96:11:7c:67:a9:2a:26:7f:e7:45:81:89:ec: e7:c9:e4:36:8e:93:c4:35:ff:13:35:bf:7f:ac:0c:fa:f1:92: 71:e3:01:28:bd:07:ac:76:08:b7:dc:51:ea:51:1a:cc:bd:0b: f3:59:f9:6b:e6:66:fa:99:e6:01:fd:00:f3:c5:4f:d3:31:cb: cd:26:e9:48:c5:00:0e:a5:37:a8:af:64:eb:03:9b:67:43:cf: 11:a3:05:37 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICF1UwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RkE3MjkxMTAvBgNVBAUTKENFOEUwRjJCQTQ5OUM1RTU4N0IwMTVFMTA0NEYwOThD RTYyQ0E3NTgwHhcNMjUwOTE4MTY0NDI0WhcNMjUwOTI1MTY0NDI0WjAYMRYwFAYD VQQDEw02OGNjMzZlOS05NmI5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAw9jQPWMZCV+BsQMawoc7HAApt3djTzqaJn50PWS7W4aTem2hFNx+RDyOJ+L0 AQehTqh0FG4GTS24OUDf+mbWF7VRCcbyozrNNOYkNB2xNQQaSx+K/UqswloQOkc2 6nAjNGNnTv8Vn3DpgZOe2E8uWZcig4ADV1+Yd2ncUDB+5GOgjzQ3QOOfN0k21toN y0wWhJcNBccPWwuW6+5DhpzkthIqX2NoqbjdN+W7i6ZsSvADu9speWEb3ABfk3k8 BnhAAHhemxIw1LJ5QuIm65+wQSN+NJfhiDBObzZLEWosmUoE3BTyi+WlFNPLok6d xacBKsZYfejjngu0GtafiSVgLQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFBaor1Kr w99lb9xRWTwYo3LKHwnHMB8GA1UdIwQYMBaAFM6ODyukmcXlh7AV4QRPCYzmLKdY MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGQTcyOS8yOEI5RDAxQ0U1 RjgxMUU3OUE3RDg0MzNDNEY5QUUwMi96bzRQSzZTWnhlV0hzQlhoQkU4SmpPWXNw MWcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3pvNFBLNlNaeGVXSHNCWGhCRThKak9Zc3AxZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG QTcyOS8yOEI5RDAxQ0U1RjgxMUU3OUE3RDg0MzNDNEY5QUUwMi96bzRQSzZTWnhl V0hzQlhoQkU4SmpPWXNwMWcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCT7KBhvRLb9+kUEEbInSnl1ofVmEAyI+n4SPRmgQA+YKOCNVmWSltD LfP6fkY1QKBIW5QzyGyf7YHzhg9vMfjndaAEmBX9xUoIWxfeTSJ+eNQ8egJMR+Fi FbR62lnccbEJfp7+8bgLQ+htWkOMFkR9EGN/RjzOPJkUJSEm7SgWWzRiZ3UnQ7CI q/rP6d7BcUE1q8xo2SHNzErgcRUZvLH9yG/4P4/Nd5YRfGepKiZ/50WBieznyeQ2 jpPENf8TNb9/rAz68ZJx4wEovQesdgi33FHqURrMvQvzWflr5mb6meYB/QDzxU/T McvNJulIxQAOpTeor2TrA5tnQ88RowU3 -----END CERTIFICATE-----Generated at Fri Sep 19 07:32:32 2025 by rpki-client