$ rpki-client -vvf rpki.apnic.net/member_repository/A9129D4A/248103A4AC9611E6A561A315C4F9AE02/ZGscQagf9-WCtezcHO9UzmEVJWM.mft File: ZGscQagf9-WCtezcHO9UzmEVJWM.mft (raw, json) Hash identifier: e3lRg+f4pS8vFRZUTbjcf9PDq0w0Yr+464H4hzmMzzM= Subject key identifier: BA:82:27:3A:8C:6D:9D:F4:0F:99:B8:18:CA:4F:B2:29:12:39:15:BE Authority key identifier: 64:6B:1C:41:A8:1F:F7:E5:82:B5:EC:DC:1C:EF:54:CE:61:15:25:63 Certificate issuer: /CN=A9129D4A/serialNumber=646B1C41A81FF7E582B5ECDC1CEF54CE61152563 Certificate serial: 1D81 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ZGscQagf9-WCtezcHO9UzmEVJWM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9129D4A/248103A4AC9611E6A561A315C4F9AE02/ZGscQagf9-WCtezcHO9UzmEVJWM.mft Manifest number: 1D76 Signing time: Fri 08 Aug 2025 16:16:35 +0000 Manifest this update: Fri 08 Aug 2025 16:16:34 +0000 Manifest next update: Fri 15 Aug 2025 16:16:34 +0000 Files and hashes: 1: ZGscQagf9-WCtezcHO9UzmEVJWM.crl (hash: B78QKdJZrmP3Gjg/3Ylbaixy8wTLUPSd3M4GxDrFAoc=) 2: 810AF2B0AC9611E6A37EC415C4F9AE02.roa (hash: djmV6ni7hy6C8m5F1gtlxw3KFQjLB6LT9Z3a9xMILMs=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9129D4A/248103A4AC9611E6A561A315C4F9AE02/ZGscQagf9-WCtezcHO9UzmEVJWM.crl rsync://rpki.apnic.net/member_repository/A9129D4A/248103A4AC9611E6A561A315C4F9AE02/ZGscQagf9-WCtezcHO9UzmEVJWM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ZGscQagf9-WCtezcHO9UzmEVJWM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 Aug 2025 05:57:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7553 (0x1d81) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9129D4A, serialNumber=646B1C41A81FF7E582B5ECDC1CEF54CE61152563 Validity Not Before: Aug 8 16:16:34 2025 GMT Not After : Aug 15 16:16:34 2025 GMT Subject: CN=689622e2-1dd6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c6:e2:27:30:32:21:f8:ec:62:e2:66:30:cf:74: 0f:56:a8:de:7c:e5:80:67:88:68:22:3b:2b:e8:bf: 75:67:58:c6:4e:b7:40:b5:b6:af:ab:02:4f:c3:28: f5:c8:63:7e:1d:7f:fb:94:1a:03:94:b0:22:d0:1a: 2a:f3:54:a1:77:d2:20:1b:60:48:f4:d1:c3:e5:0e: 03:73:35:e3:eb:a3:f3:38:71:ec:ec:4c:b5:90:71: 09:d1:8d:a9:07:9d:3c:43:18:46:c1:a4:35:f7:2f: 90:b0:ca:20:75:42:77:df:57:99:23:5b:d6:ad:a9: 4a:71:ce:15:30:6a:68:63:7c:2c:5a:ba:e9:d1:c1: 26:80:42:7f:a4:c5:73:22:a9:ac:43:b9:31:fa:6c: 3e:43:6f:d5:6e:99:d5:af:f4:90:b9:de:6b:7d:59: 08:fe:85:86:b2:91:8e:3b:a0:c2:bb:f2:32:14:9d: 93:1f:be:ea:37:31:e7:cc:f9:1d:28:94:23:95:02: ad:fc:70:8d:8c:7a:f2:79:12:56:4c:95:ec:12:b2: 9b:a4:d0:de:ae:79:98:98:8b:5b:cc:a4:20:74:92: 48:bd:e4:62:1f:57:2b:6a:85:4c:dc:4c:b1:8f:4c: d9:fe:c3:cb:60:1d:44:9b:b5:16:aa:c9:dc:07:b9: 38:e9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BA:82:27:3A:8C:6D:9D:F4:0F:99:B8:18:CA:4F:B2:29:12:39:15:BE X509v3 Authority Key Identifier: keyid:64:6B:1C:41:A8:1F:F7:E5:82:B5:EC:DC:1C:EF:54:CE:61:15:25:63 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9129D4A/248103A4AC9611E6A561A315C4F9AE02/ZGscQagf9-WCtezcHO9UzmEVJWM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ZGscQagf9-WCtezcHO9UzmEVJWM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9129D4A/248103A4AC9611E6A561A315C4F9AE02/ZGscQagf9-WCtezcHO9UzmEVJWM.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 2b:43:8a:9a:1c:d3:cc:31:12:d3:ca:eb:2a:63:62:74:32:2b: 67:ad:89:c7:cc:a5:d1:6b:de:58:a6:d3:ee:59:e6:38:e0:bd: f3:c3:46:e9:3f:ef:09:44:64:9d:05:63:ca:97:42:10:45:43: b9:9c:6c:79:be:c7:55:d8:08:ea:33:2b:26:b0:f0:0b:21:5c: a8:d7:15:2d:e6:1b:a1:6c:c0:bf:8a:ef:c8:ad:7d:04:e6:5c: 22:4b:b3:ca:19:c9:3e:f1:f2:04:d5:62:af:04:7d:df:29:78: 36:ed:5a:7d:ba:1b:de:38:c7:98:aa:84:f8:b0:6b:ba:1e:23: 7b:db:56:2b:69:a9:8a:fc:9a:66:98:4d:07:a2:56:19:24:f1: 03:3d:d8:45:b6:4f:2d:53:8b:6b:ac:4b:ad:d5:04:5e:69:70: 6d:74:dc:be:cb:bb:1e:75:0e:d0:98:4b:ed:f4:21:01:d3:e0: 6a:cb:9b:9b:14:c2:e7:dc:53:b2:57:72:50:7f:d3:4d:9d:90: 1f:86:33:80:1d:78:d3:a7:4e:db:2f:53:6e:e8:82:5e:64:e4: bd:59:d4:52:b6:bd:3a:2a:25:e5:12:8f:7e:58:6c:fd:45:40: 58:d7:20:21:ec:b6:fc:d1:e5:74:34:cf:f0:cc:c2:bb:04:02: dc:b6:f9:c3 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICHYEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MjlENEExMTAvBgNVBAUTKDY0NkIxQzQxQTgxRkY3RTU4MkI1RUNEQzFDRUY1NENF NjExNTI1NjMwHhcNMjUwODA4MTYxNjM0WhcNMjUwODE1MTYxNjM0WjAYMRYwFAYD VQQDEw02ODk2MjJlMi0xZGQ2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxuInMDIh+Oxi4mYwz3QPVqjefOWAZ4hoIjsr6L91Z1jGTrdAtbavqwJPwyj1 yGN+HX/7lBoDlLAi0Boq81Shd9IgG2BI9NHD5Q4DczXj66PzOHHs7Ey1kHEJ0Y2p B508QxhGwaQ19y+QsMogdUJ331eZI1vWralKcc4VMGpoY3wsWrrp0cEmgEJ/pMVz IqmsQ7kx+mw+Q2/VbpnVr/SQud5rfVkI/oWGspGOO6DCu/IyFJ2TH77qNzHnzPkd KJQjlQKt/HCNjHryeRJWTJXsErKbpNDernmYmItbzKQgdJJIveRiH1craoVM3Eyx j0zZ/sPLYB1Em7UWqsncB7k46QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFLqCJzqM bZ30D5m4GMpPsikSORW+MB8GA1UdIwQYMBaAFGRrHEGoH/flgrXs3BzvVM5hFSVj MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyOUQ0QS8yNDgxMDNBNEFD OTYxMUU2QTU2MUEzMTVDNEY5QUUwMi9aR3NjUWFnZjktV0N0ZXpjSE85VXptRVZK V00uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1pHc2NRYWdmOS1XQ3RlemNITzlVem1FVkpXTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy OUQ0QS8yNDgxMDNBNEFDOTYxMUU2QTU2MUEzMTVDNEY5QUUwMi9aR3NjUWFnZjkt V0N0ZXpjSE85VXptRVZKV00ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQArQ4qaHNPMMRLTyusqY2J0MitnrYnHzKXRa95YptPuWeY44L3zw0bp P+8JRGSdBWPKl0IQRUO5nGx5vsdV2AjqMysmsPALIVyo1xUt5huhbMC/iu/IrX0E 5lwiS7PKGck+8fIE1WKvBH3fKXg27Vp9uhveOMeYqoT4sGu6HiN721YraamK/Jpm mE0HolYZJPEDPdhFtk8tU4trrEut1QReaXBtdNy+y7sedQ7QmEvt9CEB0+Bqy5ub FMLn3FOyV3JQf9NNnZAfhjOAHXjTp07bL1Nu6IJeZOS9WdRStr06KiXlEo9+WGz9 RUBY1yAh7Lb80eV0NM/wzMK7BALctvnD -----END CERTIFICATE-----Generated at Sun Aug 10 10:45:13 2025 by rpki-client