$ rpki-client -vvf rpki.apnic.net/member_repository/A914DA9E/D1BE809C1F3211F0BD22BA68C4F9AE02/ZsMG0j-L_qqkTMzFVzlpUfmGxr0.mft File: ZsMG0j-L_qqkTMzFVzlpUfmGxr0.mft (raw, json) Hash identifier: RzguO6JLP3Slw5k38kU/+7aR1BJ6v62Tp88EKubNzuA= Subject key identifier: 9F:C6:BE:52:D3:C5:DC:F4:4E:3B:D2:42:02:24:DC:90:45:49:79:C7 Authority key identifier: 66:C3:06:D2:3F:8B:FE:AA:A4:4C:CC:C5:57:39:69:51:F9:86:C6:BD Certificate issuer: /CN=A914DA9E/serialNumber=66C306D23F8BFEAAA44CCCC557396951F986C6BD Certificate serial: 3D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ZsMG0j-L_qqkTMzFVzlpUfmGxr0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914DA9E/D1BE809C1F3211F0BD22BA68C4F9AE02/ZsMG0j-L_qqkTMzFVzlpUfmGxr0.mft Manifest number: 3B Signing time: Mon 11 Aug 2025 07:50:36 +0000 Manifest this update: Mon 11 Aug 2025 07:50:36 +0000 Manifest next update: Mon 18 Aug 2025 07:50:36 +0000 Files and hashes: 1: ZsMG0j-L_qqkTMzFVzlpUfmGxr0.crl (hash: /X0j2wMkrtU5AXf/I+fhkpuL9SQKSyBlBZCzNmgP6M4=) 2: 7E10232C1F3411F0BFBD616EC4F9AE02.roa (hash: ziKAkTq8TDHqlAMGRhZZxal4YT5BAAI3FkEOnc8uPao=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914DA9E/D1BE809C1F3211F0BD22BA68C4F9AE02/ZsMG0j-L_qqkTMzFVzlpUfmGxr0.crl rsync://rpki.apnic.net/member_repository/A914DA9E/D1BE809C1F3211F0BD22BA68C4F9AE02/ZsMG0j-L_qqkTMzFVzlpUfmGxr0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ZsMG0j-L_qqkTMzFVzlpUfmGxr0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 18 Aug 2025 07:50:36 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 61 (0x3d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914DA9E, serialNumber=66C306D23F8BFEAAA44CCCC557396951F986C6BD Validity Not Before: Aug 11 07:50:36 2025 GMT Not After : Aug 18 07:50:36 2025 GMT Subject: CN=6899a0cc-bb87 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:7f:0e:fa:4e:65:52:b4:22:7f:34:94:10:c7: 0d:e3:9a:45:35:9f:72:04:1b:d3:f7:d6:01:28:09: e6:b9:2e:e0:13:8d:e6:b5:7d:cd:c3:ea:4c:78:1b: eb:83:65:74:e8:f9:b5:8b:f1:73:ad:cf:4f:ef:96: f6:fa:15:c7:df:6d:b6:7d:27:fc:d6:b4:87:f6:dc: 8e:50:c7:02:7e:56:2d:93:96:13:91:a7:40:91:ee: 61:36:db:fc:03:e0:c8:ca:ea:9e:26:38:63:90:04: 11:2a:63:d0:2f:6f:b3:31:8e:e4:4c:a7:94:83:9d: 3e:3d:b9:e3:80:3a:b9:8a:5f:5c:8b:30:21:2b:24: c4:8d:6c:c2:ba:0c:0d:ed:8d:ee:83:5e:db:ff:d7: ae:1a:13:68:6b:7a:78:f7:d1:a9:6d:cf:58:ac:7c: c2:eb:5d:47:c7:b1:8b:ad:7b:18:bf:8a:07:78:70: cc:b5:d6:93:55:74:17:4f:a8:11:69:79:5f:c4:98: d6:bd:5e:ac:4e:0a:79:b2:98:ec:ee:b7:c6:06:bb: 29:29:53:5f:4b:97:c9:53:1b:14:30:d8:2a:8c:50: e1:fb:28:e1:af:7c:19:fd:dd:25:03:c7:69:54:08: 8b:5b:15:f4:41:13:df:4f:35:b6:10:41:65:9c:c2: 7d:71 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9F:C6:BE:52:D3:C5:DC:F4:4E:3B:D2:42:02:24:DC:90:45:49:79:C7 X509v3 Authority Key Identifier: keyid:66:C3:06:D2:3F:8B:FE:AA:A4:4C:CC:C5:57:39:69:51:F9:86:C6:BD X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914DA9E/D1BE809C1F3211F0BD22BA68C4F9AE02/ZsMG0j-L_qqkTMzFVzlpUfmGxr0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ZsMG0j-L_qqkTMzFVzlpUfmGxr0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914DA9E/D1BE809C1F3211F0BD22BA68C4F9AE02/ZsMG0j-L_qqkTMzFVzlpUfmGxr0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 65:11:7a:be:48:5f:42:43:24:f4:68:21:ed:45:ce:45:81:84: 61:eb:42:8d:18:9a:05:e8:04:44:11:6c:fc:94:f3:5c:0b:14: 84:fe:c1:a3:00:4a:51:9c:40:f0:73:39:1c:76:fc:e3:88:de: 72:e9:3a:61:f7:66:43:1a:0c:8d:c0:c0:e6:8c:68:c3:c6:52: 2f:9c:6b:c5:da:96:d3:49:53:b5:58:4f:6f:23:50:94:c9:f0: 14:f5:6d:9d:6c:b3:52:9a:0b:14:7c:31:86:e3:e6:1a:6f:f8: 6a:23:5f:f6:32:d5:e6:4f:4c:ba:4e:94:04:1e:d9:29:1a:69: 10:6b:92:66:43:14:2f:8e:67:dd:95:2c:9e:50:1a:d6:10:89: 16:00:52:7c:fb:49:08:83:73:fd:82:8c:e1:d6:4e:72:cc:9d: f3:df:87:3e:6c:67:6d:e9:28:8b:82:5e:8b:f4:21:e8:df:24: de:92:cb:35:38:b1:f6:82:0a:27:db:f3:5f:61:d1:cb:81:a3: 2b:06:c6:0b:e3:dd:1c:72:e8:52:98:52:88:3e:3f:7e:98:41: c2:06:08:4d:83:f0:1f:c6:da:e2:4f:96:46:dc:0f:fc:13:86: d8:0a:69:78:20:8c:cc:a1:3b:5d:3d:ac:89:77:5b:74:af:eb: a8:60:96:57 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBPTANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE0 REE5RTExMC8GA1UEBRMoNjZDMzA2RDIzRjhCRkVBQUE0NENDQ0M1NTczOTY5NTFG OTg2QzZCRDAeFw0yNTA4MTEwNzUwMzZaFw0yNTA4MTgwNzUwMzZaMBgxFjAUBgNV BAMTDTY4OTlhMGNjLWJiODcwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQC0fw76TmVStCJ/NJQQxw3jmkU1n3IEG9P31gEoCea5LuATjea1fc3D6kx4G+uD ZXTo+bWL8XOtz0/vlvb6FcffbbZ9J/zWtIf23I5QxwJ+Vi2TlhORp0CR7mE22/wD 4MjK6p4mOGOQBBEqY9Avb7MxjuRMp5SDnT49ueOAOrmKX1yLMCErJMSNbMK6DA3t je6DXtv/164aE2hrenj30altz1isfMLrXUfHsYutexi/igd4cMy11pNVdBdPqBFp eV/EmNa9XqxOCnmymOzut8YGuykpU19Ll8lTGxQw2CqMUOH7KOGvfBn93SUDx2lU CItbFfRBE99PNbYQQWWcwn1xAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUn8a+UtPF 3PROO9JCAiTckEVJeccwHwYDVR0jBBgwFoAUZsMG0j+L/qqkTMzFVzlpUfmGxr0w DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTREQTlFL0QxQkU4MDlDMUYz MjExRjBCRDIyQkE2OEM0RjlBRTAyL1pzTUcwai1MX3Fxa1RNekZWemxwVWZtR3hy MC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvWnNNRzBqLUxfcXFrVE16RlZ6bHBVZm1HeHIwLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTRE QTlFL0QxQkU4MDlDMUYzMjExRjBCRDIyQkE2OEM0RjlBRTAyL1pzTUcwai1MX3Fx a1RNekZWemxwVWZtR3hyMC5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAGURer5IX0JDJPRoIe1FzkWBhGHrQo0YmgXoBEQRbPyU81wLFIT+waMA SlGcQPBzORx2/OOI3nLpOmH3ZkMaDI3AwOaMaMPGUi+ca8XaltNJU7VYT28jUJTJ 8BT1bZ1ss1KaCxR8MYbj5hpv+GojX/Yy1eZPTLpOlAQe2SkaaRBrkmZDFC+OZ92V LJ5QGtYQiRYAUnz7SQiDc/2CjOHWTnLMnfPfhz5sZ23pKIuCXov0IejfJN6SyzU4 sfaCCifb819h0cuBoysGxgvj3Rxy6FKYUog+P36YQcIGCE2D8B/G2uJPlkbcD/wT htgKaXggjMyhO109rIl3W3Sv66hgllc= -----END CERTIFICATE-----Generated at Wed Aug 13 05:34:49 2025 by rpki-client