$ rpki-client -vvf rpki.apnic.net/member_repository/A9129D4A/248103A4AC9611E6A561A315C4F9AE02/ZGscQagf9-WCtezcHO9UzmEVJWM.mft File: ZGscQagf9-WCtezcHO9UzmEVJWM.mft (raw, json) Hash identifier: zDw4sp5hYrpevwz2/AUNIj1Yq7goMyIe8LV8Ds0VM2Q= Subject key identifier: DD:D7:E0:E9:30:D9:35:31:0C:94:4F:08:8E:6F:13:DF:9C:3F:11:49 Authority key identifier: 64:6B:1C:41:A8:1F:F7:E5:82:B5:EC:DC:1C:EF:54:CE:61:15:25:63 Certificate issuer: /CN=A9129D4A/serialNumber=646B1C41A81FF7E582B5ECDC1CEF54CE61152563 Certificate serial: 1D65 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ZGscQagf9-WCtezcHO9UzmEVJWM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9129D4A/248103A4AC9611E6A561A315C4F9AE02/ZGscQagf9-WCtezcHO9UzmEVJWM.mft Manifest number: 1D5A Signing time: Sat 14 Jun 2025 16:06:09 +0000 Manifest this update: Sat 14 Jun 2025 16:06:08 +0000 Manifest next update: Sat 21 Jun 2025 16:06:08 +0000 Files and hashes: 1: ZGscQagf9-WCtezcHO9UzmEVJWM.crl (hash: btQgkzvmi9c3iGWI/EOUTKeoX9ha3sKLh5OxZ0zMsEU=) 2: 810AF2B0AC9611E6A37EC415C4F9AE02.roa (hash: djmV6ni7hy6C8m5F1gtlxw3KFQjLB6LT9Z3a9xMILMs=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9129D4A/248103A4AC9611E6A561A315C4F9AE02/ZGscQagf9-WCtezcHO9UzmEVJWM.crl rsync://rpki.apnic.net/member_repository/A9129D4A/248103A4AC9611E6A561A315C4F9AE02/ZGscQagf9-WCtezcHO9UzmEVJWM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ZGscQagf9-WCtezcHO9UzmEVJWM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 21 Jun 2025 16:06:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7525 (0x1d65) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9129D4A, serialNumber=646B1C41A81FF7E582B5ECDC1CEF54CE61152563 Validity Not Before: Jun 14 16:06:08 2025 GMT Not After : Jun 21 16:06:08 2025 GMT Subject: CN=684d9df0-28e2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c5:9f:22:09:6f:05:ba:94:10:19:53:93:82:4f: cb:84:63:f6:60:d8:1f:24:e7:85:51:4a:5f:6f:ea: 5c:b2:ec:93:8a:d5:2c:d0:ab:8f:9a:87:e5:c6:f0: 08:0e:9d:32:9b:28:e7:c7:1d:97:8a:02:8d:2a:c9: a0:f2:14:3e:c5:4d:06:b4:53:50:bb:b5:69:dc:e5: 47:3b:51:dc:d6:26:ad:dc:14:a4:5b:3b:57:6f:10: 3b:fe:88:39:74:8d:39:e3:3f:30:48:bf:03:0e:51: d8:e4:53:ff:b0:3b:91:08:4a:e8:2f:25:18:33:eb: 4a:cf:8f:ce:e4:e3:6f:57:cd:81:cb:43:e4:d7:ac: 49:09:c0:48:d7:29:c2:ac:22:2d:78:d9:60:c7:a7: dd:d1:74:4f:e0:55:0a:47:f6:08:4c:cc:8b:dd:52: c4:3e:a3:84:80:41:af:2a:ac:07:04:6b:ac:f6:9a: d9:9b:01:b0:d1:20:65:4a:ff:6d:04:26:a2:02:a8: 3a:dc:73:38:14:f9:a1:17:fc:ce:fe:74:76:1f:96: 59:d6:29:90:22:24:05:13:e2:4c:bb:7d:6b:cc:b2: 65:74:53:82:33:4a:a5:a2:eb:26:87:3f:14:a8:de: 66:29:37:61:06:66:a0:48:7f:1b:39:83:29:84:43: 05:1b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DD:D7:E0:E9:30:D9:35:31:0C:94:4F:08:8E:6F:13:DF:9C:3F:11:49 X509v3 Authority Key Identifier: keyid:64:6B:1C:41:A8:1F:F7:E5:82:B5:EC:DC:1C:EF:54:CE:61:15:25:63 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9129D4A/248103A4AC9611E6A561A315C4F9AE02/ZGscQagf9-WCtezcHO9UzmEVJWM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ZGscQagf9-WCtezcHO9UzmEVJWM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9129D4A/248103A4AC9611E6A561A315C4F9AE02/ZGscQagf9-WCtezcHO9UzmEVJWM.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption b1:02:e5:b4:04:f2:2b:8b:87:ab:77:6a:f5:bf:23:ad:9b:2a: f2:a5:76:af:36:85:bc:c5:90:c9:06:fc:2d:c4:d4:33:33:41: b6:e4:2a:ab:9e:b2:d3:49:1b:88:eb:6b:3d:fb:d0:f9:cf:57: 97:ff:e9:2a:50:cc:e6:a2:8d:6f:77:be:4f:48:18:0e:a1:b7: 2c:ac:61:5c:ff:6c:b0:06:08:be:17:54:ec:2e:96:ee:f6:c1: c3:59:49:48:4a:b6:fa:6f:50:a6:e2:4b:3b:b3:1c:d8:32:3b: 13:93:61:9f:88:cc:0e:d5:22:3c:8b:61:83:91:94:ae:14:76: 03:b8:88:90:a1:b8:b0:eb:c7:0c:c8:82:f1:28:35:42:53:3e: fd:62:0d:c8:a4:17:a4:11:23:2d:f2:f7:ca:3e:75:7a:6c:2c: d8:cf:c2:47:46:71:c8:a5:f7:ca:8b:36:09:2a:a5:99:64:f0: 72:7b:4a:df:35:77:53:26:ac:74:6a:be:c3:0e:21:26:e8:e1: 8c:09:28:7d:bd:e6:81:d5:3f:68:ee:ac:dd:5e:16:0e:8c:b0: 86:54:ca:34:15:94:d0:c4:ad:05:b2:25:63:9b:7f:bb:b8:ca: 51:dd:d8:a9:61:ac:53:c0:20:ed:50:9f:5f:bd:24:71:e5:1f: 12:7c:9c:54 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICHWUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MjlENEExMTAvBgNVBAUTKDY0NkIxQzQxQTgxRkY3RTU4MkI1RUNEQzFDRUY1NENF NjExNTI1NjMwHhcNMjUwNjE0MTYwNjA4WhcNMjUwNjIxMTYwNjA4WjAYMRYwFAYD VQQDEw02ODRkOWRmMC0yOGUyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxZ8iCW8FupQQGVOTgk/LhGP2YNgfJOeFUUpfb+pcsuyTitUs0KuPmoflxvAI Dp0ymyjnxx2XigKNKsmg8hQ+xU0GtFNQu7Vp3OVHO1Hc1iat3BSkWztXbxA7/og5 dI054z8wSL8DDlHY5FP/sDuRCEroLyUYM+tKz4/O5ONvV82By0Pk16xJCcBI1ynC rCIteNlgx6fd0XRP4FUKR/YITMyL3VLEPqOEgEGvKqwHBGus9prZmwGw0SBlSv9t BCaiAqg63HM4FPmhF/zO/nR2H5ZZ1imQIiQFE+JMu31rzLJldFOCM0qlousmhz8U qN5mKTdhBmagSH8bOYMphEMFGwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFN3X4Okw 2TUxDJRPCI5vE9+cPxFJMB8GA1UdIwQYMBaAFGRrHEGoH/flgrXs3BzvVM5hFSVj MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyOUQ0QS8yNDgxMDNBNEFD OTYxMUU2QTU2MUEzMTVDNEY5QUUwMi9aR3NjUWFnZjktV0N0ZXpjSE85VXptRVZK V00uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1pHc2NRYWdmOS1XQ3RlemNITzlVem1FVkpXTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy OUQ0QS8yNDgxMDNBNEFDOTYxMUU2QTU2MUEzMTVDNEY5QUUwMi9aR3NjUWFnZjkt V0N0ZXpjSE85VXptRVZKV00ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCxAuW0BPIri4erd2r1vyOtmyrypXavNoW8xZDJBvwtxNQzM0G25Cqr nrLTSRuI62s9+9D5z1eX/+kqUMzmoo1vd75PSBgOobcsrGFc/2ywBgi+F1TsLpbu 9sHDWUlISrb6b1Cm4ks7sxzYMjsTk2GfiMwO1SI8i2GDkZSuFHYDuIiQobiw68cM yILxKDVCUz79Yg3IpBekESMt8vfKPnV6bCzYz8JHRnHIpffKizYJKqWZZPBye0rf NXdTJqx0ar7DDiEm6OGMCSh9veaB1T9o7qzdXhYOjLCGVMo0FZTQxK0FsiVjm3+7 uMpR3dipYaxTwCDtUJ9fvSRx5R8SfJxU -----END CERTIFICATE-----Generated at Sun Jun 15 08:46:22 2025 by rpki-client