$ rpki-client -vvf rpki.apnic.net/member_repository/A9111A27/662518BE6E3411EA841D426EC4F9AE02/zPWB9MM8pEQeGAfjlsXv51-oLdA.mft File: zPWB9MM8pEQeGAfjlsXv51-oLdA.mft (raw, json) Hash identifier: exQGaXga1557cI8HYcAXN53pp6No7vadUGdJDL0gNP0= Subject key identifier: 97:AE:76:3B:7C:31:A5:65:F9:71:97:45:A7:F9:C5:89:91:D7:53:60 Authority key identifier: CC:F5:81:F4:C3:3C:A4:44:1E:18:07:E3:96:C5:EF:E7:5F:A8:2D:D0 Certificate issuer: /CN=A9111A27/serialNumber=CCF581F4C33CA4441E1807E396C5EFE75FA82DD0 Certificate serial: 0A3F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/zPWB9MM8pEQeGAfjlsXv51-oLdA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9111A27/662518BE6E3411EA841D426EC4F9AE02/zPWB9MM8pEQeGAfjlsXv51-oLdA.mft Manifest number: 0A35 Signing time: Sat 14 Jun 2025 19:34:53 +0000 Manifest this update: Sat 14 Jun 2025 19:34:52 +0000 Manifest next update: Sat 21 Jun 2025 19:34:52 +0000 Files and hashes: 1: zPWB9MM8pEQeGAfjlsXv51-oLdA.crl (hash: G/aI9tJNqmE71HoiXy7wKqYrmlkJikEkOENArrqBzd8=) 2: EECBCEBE6E3511EABDE26D73C4F9AE02.roa (hash: LPVTnB/0GHrJCLpXZVzzn+Fi+J75+p11hdRea2Hs9CM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9111A27/662518BE6E3411EA841D426EC4F9AE02/zPWB9MM8pEQeGAfjlsXv51-oLdA.crl rsync://rpki.apnic.net/member_repository/A9111A27/662518BE6E3411EA841D426EC4F9AE02/zPWB9MM8pEQeGAfjlsXv51-oLdA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/zPWB9MM8pEQeGAfjlsXv51-oLdA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 21 Jun 2025 19:34:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2623 (0xa3f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9111A27, serialNumber=CCF581F4C33CA4441E1807E396C5EFE75FA82DD0 Validity Not Before: Jun 14 19:34:52 2025 GMT Not After : Jun 21 19:34:52 2025 GMT Subject: CN=684dcedc-c757 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:da:7e:2a:6d:2c:21:aa:31:ce:fa:b4:4b:85:2a: 24:89:16:7a:1e:15:d8:8f:7a:db:13:46:a8:3d:25: 44:60:e7:79:73:b6:d5:ba:1d:75:0a:b4:88:eb:d9: a1:9b:98:da:44:a7:75:05:a8:84:27:de:8b:1f:88: e5:d6:cc:b0:bd:5e:35:3b:af:22:b0:e3:6d:24:24: d3:7d:5a:c4:3a:e6:f4:23:cb:27:37:8a:ff:b7:de: 1f:b4:41:5c:55:0d:b8:31:0d:af:6a:ec:3d:d3:d3: ca:e7:cd:15:dc:35:55:40:5b:d6:83:d7:23:12:09: a1:af:b8:65:b8:10:7d:d4:24:e6:28:7f:40:40:39: b3:b6:0c:f6:09:61:72:a3:31:2b:8f:37:3d:76:dc: ee:32:27:dc:90:6d:55:15:64:d2:2e:f6:45:b9:20: c2:67:63:66:25:e8:5f:2d:ab:7e:e3:0b:1b:49:70: 1d:aa:d5:c4:e8:1d:6f:ff:48:7a:62:61:3f:d8:89: 5a:e3:bf:05:d6:de:82:a6:6d:d9:00:c0:c8:eb:a3: ab:d7:ec:9c:45:01:4f:f1:ef:bf:0d:00:da:14:6a: 17:90:41:89:93:47:8c:f8:1c:f4:47:eb:8e:bf:54: 4d:67:b1:23:81:56:5e:51:31:ab:7f:30:9f:d1:a9: c8:05 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 97:AE:76:3B:7C:31:A5:65:F9:71:97:45:A7:F9:C5:89:91:D7:53:60 X509v3 Authority Key Identifier: keyid:CC:F5:81:F4:C3:3C:A4:44:1E:18:07:E3:96:C5:EF:E7:5F:A8:2D:D0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9111A27/662518BE6E3411EA841D426EC4F9AE02/zPWB9MM8pEQeGAfjlsXv51-oLdA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/zPWB9MM8pEQeGAfjlsXv51-oLdA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9111A27/662518BE6E3411EA841D426EC4F9AE02/zPWB9MM8pEQeGAfjlsXv51-oLdA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 79:26:97:98:2e:f4:e0:19:50:c4:59:2f:76:d2:b4:c8:5b:88: e1:e1:b2:ba:1a:ed:ea:9d:88:79:44:a4:63:69:0b:1e:2c:4f: a9:e8:db:2f:9e:24:3e:c9:ce:77:22:14:e0:ba:3d:d5:e5:16: b0:b6:d6:3d:a7:56:20:e6:82:56:87:d2:27:ef:d8:3c:28:eb: ab:ab:87:93:54:c4:0b:98:96:24:1c:f8:ac:76:ec:c7:96:0d: e8:50:22:b0:08:97:db:96:64:0a:6c:9a:e9:5d:48:10:7d:8f: 9f:0f:1b:00:05:b5:bf:52:a1:bd:fd:ab:03:c3:18:18:4c:80: 70:6b:bd:03:44:41:fa:e3:51:b1:48:0d:42:2b:b1:08:84:7b: cc:f2:a2:30:b6:71:62:e2:49:ba:4d:4e:5a:c0:e8:ba:12:36: c3:fc:12:49:85:63:96:66:4f:33:4b:de:06:04:ad:df:d7:aa: 93:c7:2a:d8:9f:15:8d:21:7b:60:5e:19:98:18:0f:1a:07:ae: fd:21:ef:59:d4:82:74:da:3a:1e:1f:92:a9:c4:32:65:3b:13: 59:21:9b:dc:45:57:20:1c:95:97:ff:0a:70:9e:e5:28:b8:b3: c6:83:9c:b4:ca:82:16:8b:a6:bf:19:4b:38:a4:37:96:be:f9: 9a:fa:e2:57 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCj8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MTFBMjcxMTAvBgNVBAUTKENDRjU4MUY0QzMzQ0E0NDQxRTE4MDdFMzk2QzVFRkU3 NUZBODJERDAwHhcNMjUwNjE0MTkzNDUyWhcNMjUwNjIxMTkzNDUyWjAYMRYwFAYD VQQDEw02ODRkY2VkYy1jNzU3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA2n4qbSwhqjHO+rRLhSokiRZ6HhXYj3rbE0aoPSVEYOd5c7bVuh11CrSI69mh m5jaRKd1BaiEJ96LH4jl1sywvV41O68isONtJCTTfVrEOub0I8snN4r/t94ftEFc VQ24MQ2vauw909PK580V3DVVQFvWg9cjEgmhr7hluBB91CTmKH9AQDmztgz2CWFy ozErjzc9dtzuMifckG1VFWTSLvZFuSDCZ2NmJehfLat+4wsbSXAdqtXE6B1v/0h6 YmE/2Ila478F1t6Cpm3ZAMDI66Or1+ycRQFP8e+/DQDaFGoXkEGJk0eM+Bz0R+uO v1RNZ7EjgVZeUTGrfzCf0anIBQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJeudjt8 MaVl+XGXRaf5xYmR11NgMB8GA1UdIwQYMBaAFMz1gfTDPKREHhgH45bF7+dfqC3Q MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExMUEyNy82NjI1MThCRTZF MzQxMUVBODQxRDQyNkVDNEY5QUUwMi96UFdCOU1NOHBFUWVHQWZqbHNYdjUxLW9M ZEEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3pQV0I5TU04cEVRZUdBZmpsc1h2NTEtb0xkQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx MUEyNy82NjI1MThCRTZFMzQxMUVBODQxRDQyNkVDNEY5QUUwMi96UFdCOU1NOHBF UWVHQWZqbHNYdjUxLW9MZEEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB5JpeYLvTgGVDEWS920rTIW4jh4bK6Gu3qnYh5RKRjaQseLE+p6Nsv niQ+yc53IhTguj3V5RawttY9p1Yg5oJWh9In79g8KOurq4eTVMQLmJYkHPisduzH lg3oUCKwCJfblmQKbJrpXUgQfY+fDxsABbW/UqG9/asDwxgYTIBwa70DREH641Gx SA1CK7EIhHvM8qIwtnFi4km6TU5awOi6EjbD/BJJhWOWZk8zS94GBK3f16qTxyrY nxWNIXtgXhmYGA8aB679Ie9Z1IJ02joeH5KpxDJlOxNZIZvcRVcgHJWX/wpwnuUo uLPGg5y0yoIWi6a/GUs4pDeWvvma+uJX -----END CERTIFICATE-----Generated at Sun Jun 15 10:25:54 2025 by rpki-client