$ rpki-client -vvf rpki.apnic.net/member_repository/A9111A27/662518BE6E3411EA841D426EC4F9AE02/zPWB9MM8pEQeGAfjlsXv51-oLdA.mft File: zPWB9MM8pEQeGAfjlsXv51-oLdA.mft (raw, json) Hash identifier: HLbRBlazJ9pjs0EFMwgFA3x0IKXQYej+MSgFhWPBFHM= Subject key identifier: FF:E1:B8:D1:EF:A4:BA:AC:3A:1C:C4:C8:04:93:E7:68:2C:5B:23:53 Authority key identifier: CC:F5:81:F4:C3:3C:A4:44:1E:18:07:E3:96:C5:EF:E7:5F:A8:2D:D0 Certificate issuer: /CN=A9111A27/serialNumber=CCF581F4C33CA4441E1807E396C5EFE75FA82DD0 Certificate serial: 0A5F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/zPWB9MM8pEQeGAfjlsXv51-oLdA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9111A27/662518BE6E3411EA841D426EC4F9AE02/zPWB9MM8pEQeGAfjlsXv51-oLdA.mft Manifest number: 0A54 Signing time: Sun 10 Aug 2025 19:43:09 +0000 Manifest this update: Sun 10 Aug 2025 19:43:08 +0000 Manifest next update: Sun 17 Aug 2025 19:43:08 +0000 Files and hashes: 1: zPWB9MM8pEQeGAfjlsXv51-oLdA.crl (hash: JKKw0mzEL5ViGGf2gdwNVk40yr5WEtzDpKQkoV+VcYQ=) 2: EECBCEBE6E3511EABDE26D73C4F9AE02.roa (hash: tiW51zPCEni34tefKfGb0te4DWKoSNtDHrcuOGks1io=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9111A27/662518BE6E3411EA841D426EC4F9AE02/zPWB9MM8pEQeGAfjlsXv51-oLdA.crl rsync://rpki.apnic.net/member_repository/A9111A27/662518BE6E3411EA841D426EC4F9AE02/zPWB9MM8pEQeGAfjlsXv51-oLdA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/zPWB9MM8pEQeGAfjlsXv51-oLdA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 Aug 2025 05:57:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2655 (0xa5f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9111A27, serialNumber=CCF581F4C33CA4441E1807E396C5EFE75FA82DD0 Validity Not Before: Aug 10 19:43:08 2025 GMT Not After : Aug 17 19:43:08 2025 GMT Subject: CN=6898f64c-aa43 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c9:35:af:51:0a:2f:4b:b0:44:eb:6b:78:06:67: fb:f0:8c:9a:ac:37:b6:cb:47:e5:22:bc:71:65:de: 7b:d6:a9:15:ce:1a:54:15:ed:a1:79:9a:c1:9e:3d: c9:d7:e6:5d:25:0d:b2:8f:02:ea:1e:d9:e3:c4:b4: ed:fb:27:e2:e7:b2:4b:7d:d2:fe:fa:e8:43:c9:b7: d0:fe:60:06:4f:9b:6d:80:b5:4f:ac:45:38:6a:1a: fb:ef:c2:3c:40:65:df:b7:9c:d9:f6:f7:0d:d8:53: 55:0e:99:8d:24:a9:91:26:ef:23:63:cf:28:f0:66: 92:81:00:02:bc:03:06:1a:8c:f5:55:bb:6a:85:1d: b4:a2:0a:07:19:bc:01:41:14:0f:7a:e1:c3:57:e6: ed:f3:43:e0:3f:01:e0:48:8d:c2:cc:37:ac:7a:9e: 6d:b2:d4:12:25:12:f2:d3:2a:c4:20:ba:c1:1c:0a: 11:b6:b8:be:1b:72:fc:98:27:07:13:72:32:80:05: 44:a6:56:5a:51:07:36:31:0f:75:ea:1f:e5:6b:d7: f2:f0:6a:de:14:94:02:0b:54:48:9a:4f:b7:c8:33: 8c:df:38:6a:a4:ad:51:44:3c:3d:ca:8d:79:dc:aa: de:07:31:24:7a:89:47:82:78:5b:60:48:83:16:de: c1:65 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FF:E1:B8:D1:EF:A4:BA:AC:3A:1C:C4:C8:04:93:E7:68:2C:5B:23:53 X509v3 Authority Key Identifier: keyid:CC:F5:81:F4:C3:3C:A4:44:1E:18:07:E3:96:C5:EF:E7:5F:A8:2D:D0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9111A27/662518BE6E3411EA841D426EC4F9AE02/zPWB9MM8pEQeGAfjlsXv51-oLdA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/zPWB9MM8pEQeGAfjlsXv51-oLdA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9111A27/662518BE6E3411EA841D426EC4F9AE02/zPWB9MM8pEQeGAfjlsXv51-oLdA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 2a:a3:b8:a3:08:12:5a:43:60:15:ea:7f:fe:3d:b7:32:13:c0: c1:ee:78:5e:e2:3c:e6:1f:33:05:41:f1:7c:8c:b1:d6:36:c4: 54:01:c0:3e:c2:4d:f7:d4:38:4d:18:f7:12:74:cf:c3:3b:4f: 57:78:da:26:2d:4b:3a:7b:82:66:21:ef:27:04:15:c2:c1:16: 2c:84:7e:9b:37:dd:fd:fd:34:9a:83:0e:92:51:cc:65:e4:7e: 69:75:5e:bc:67:ee:36:1f:46:c3:87:e3:71:c2:2d:82:ba:a6: ce:84:f1:9d:19:47:2e:69:c9:08:da:d7:ff:65:57:78:5d:1b: e4:b6:18:fc:ad:69:12:61:ad:0d:b3:a0:12:25:f7:dd:ad:da: ce:0c:33:70:0b:83:a0:4c:3b:23:75:5f:73:39:ae:cb:ce:ca: e0:89:ab:40:d2:b4:6c:32:9b:0c:a1:ff:db:d4:2a:52:ce:42: 8c:d9:1a:ec:0f:66:7b:d3:55:40:c7:16:a8:99:9e:47:0b:ae: ae:a6:66:58:46:6b:a2:9d:02:a5:ca:1c:69:98:b2:a9:9b:a8: 11:ed:48:69:0b:a6:fb:f8:b1:f7:1e:b0:ec:8c:77:0d:8d:18: 84:dc:7c:18:89:07:74:dd:60:e9:05:2c:3f:15:3e:d0:9a:e4: 75:93:83:a6 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCl8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MTFBMjcxMTAvBgNVBAUTKENDRjU4MUY0QzMzQ0E0NDQxRTE4MDdFMzk2QzVFRkU3 NUZBODJERDAwHhcNMjUwODEwMTk0MzA4WhcNMjUwODE3MTk0MzA4WjAYMRYwFAYD VQQDEw02ODk4ZjY0Yy1hYTQzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyTWvUQovS7BE62t4Bmf78IyarDe2y0flIrxxZd571qkVzhpUFe2heZrBnj3J 1+ZdJQ2yjwLqHtnjxLTt+yfi57JLfdL++uhDybfQ/mAGT5ttgLVPrEU4ahr778I8 QGXft5zZ9vcN2FNVDpmNJKmRJu8jY88o8GaSgQACvAMGGoz1VbtqhR20ogoHGbwB QRQPeuHDV+bt80PgPwHgSI3CzDesep5tstQSJRLy0yrEILrBHAoRtri+G3L8mCcH E3IygAVEplZaUQc2MQ916h/la9fy8GreFJQCC1RImk+3yDOM3zhqpK1RRDw9yo15 3KreBzEkeolHgnhbYEiDFt7BZQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFP/huNHv pLqsOhzEyAST52gsWyNTMB8GA1UdIwQYMBaAFMz1gfTDPKREHhgH45bF7+dfqC3Q MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExMUEyNy82NjI1MThCRTZF MzQxMUVBODQxRDQyNkVDNEY5QUUwMi96UFdCOU1NOHBFUWVHQWZqbHNYdjUxLW9M ZEEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3pQV0I5TU04cEVRZUdBZmpsc1h2NTEtb0xkQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx MUEyNy82NjI1MThCRTZFMzQxMUVBODQxRDQyNkVDNEY5QUUwMi96UFdCOU1NOHBF UWVHQWZqbHNYdjUxLW9MZEEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAqo7ijCBJaQ2AV6n/+PbcyE8DB7nhe4jzmHzMFQfF8jLHWNsRUAcA+ wk331DhNGPcSdM/DO09XeNomLUs6e4JmIe8nBBXCwRYshH6bN939/TSagw6SUcxl 5H5pdV68Z+42H0bDh+Nxwi2CuqbOhPGdGUcuackI2tf/ZVd4XRvkthj8rWkSYa0N s6ASJffdrdrODDNwC4OgTDsjdV9zOa7LzsrgiatA0rRsMpsMof/b1CpSzkKM2Rrs D2Z701VAxxaomZ5HC66upmZYRmuinQKlyhxpmLKpm6gR7UhpC6b7+LH3HrDsjHcN jRiE3HwYiQd03WDpBSw/FT7QmuR1k4Om -----END CERTIFICATE-----Generated at Sun Aug 10 21:18:01 2025 by rpki-client