$ rpki-client -vvf rpki.apnic.net/member_repository/A914DA9E/D1BE809C1F3211F0BD22BA68C4F9AE02/ZsMG0j-L_qqkTMzFVzlpUfmGxr0.mft File: ZsMG0j-L_qqkTMzFVzlpUfmGxr0.mft (raw, json) Hash identifier: 3ZS26tZx7X81xWqbRKc4G9E2AI3S+IBrq12S4LRS54k= Subject key identifier: 9E:0E:2E:62:9F:71:DB:64:14:9D:47:B9:99:D8:6A:68:F5:EF:FF:10 Authority key identifier: 66:C3:06:D2:3F:8B:FE:AA:A4:4C:CC:C5:57:39:69:51:F9:86:C6:BD Certificate issuer: /CN=A914DA9E/serialNumber=66C306D23F8BFEAAA44CCCC557396951F986C6BD Certificate serial: 1F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ZsMG0j-L_qqkTMzFVzlpUfmGxr0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914DA9E/D1BE809C1F3211F0BD22BA68C4F9AE02/ZsMG0j-L_qqkTMzFVzlpUfmGxr0.mft Manifest number: 1D Signing time: Fri 13 Jun 2025 06:49:07 +0000 Manifest this update: Fri 13 Jun 2025 06:49:06 +0000 Manifest next update: Fri 20 Jun 2025 06:49:06 +0000 Files and hashes: 1: ZsMG0j-L_qqkTMzFVzlpUfmGxr0.crl (hash: rlEmmwE9E0c1wka1pFf4dnHEPxJ6tzFL5rROEfCEtas=) 2: 7E10232C1F3411F0BFBD616EC4F9AE02.roa (hash: ziKAkTq8TDHqlAMGRhZZxal4YT5BAAI3FkEOnc8uPao=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914DA9E/D1BE809C1F3211F0BD22BA68C4F9AE02/ZsMG0j-L_qqkTMzFVzlpUfmGxr0.crl rsync://rpki.apnic.net/member_repository/A914DA9E/D1BE809C1F3211F0BD22BA68C4F9AE02/ZsMG0j-L_qqkTMzFVzlpUfmGxr0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ZsMG0j-L_qqkTMzFVzlpUfmGxr0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 20 Jun 2025 06:49:06 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 31 (0x1f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914DA9E, serialNumber=66C306D23F8BFEAAA44CCCC557396951F986C6BD Validity Not Before: Jun 13 06:49:06 2025 GMT Not After : Jun 20 06:49:06 2025 GMT Subject: CN=684bc9e2-ee76 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:25:12:69:15:83:69:57:9f:a4:d1:a5:03:eb: 63:0c:3d:08:6d:1f:9f:27:ec:ab:e2:55:30:e4:3a: dc:a6:a9:a4:3f:ce:d9:a3:e0:5a:fe:b6:af:22:be: fb:6a:02:a9:f1:88:78:3f:1e:eb:86:d5:09:25:b8: f9:dc:f9:e6:8e:7f:33:0d:72:49:fa:cd:50:f4:50: 20:9e:ec:91:4c:d6:4d:1e:91:0b:04:71:14:ed:3b: 16:b0:62:94:fe:ea:d8:b4:63:54:d6:7b:c9:74:8d: e4:f4:85:00:f2:03:e0:d3:8c:f4:cf:af:2a:6a:e4: fe:2e:ba:d8:eb:a0:6f:8e:93:ce:04:7f:c1:ad:9d: 41:8f:f8:b3:13:a5:85:33:d1:b8:cc:b5:a7:82:24: 86:3d:a0:14:c8:2c:01:cc:c9:fa:d3:2c:64:eb:fb: ad:5a:ab:88:f2:99:27:4f:1a:c6:1a:88:fc:57:91: b5:d0:2c:8b:ed:77:5d:57:32:e3:a4:ae:05:72:0c: 1a:92:ea:31:d2:41:7a:dc:42:f1:11:2c:ed:ef:ec: b6:36:d9:e1:92:1c:d7:e7:3f:1c:36:d0:f5:c4:47: eb:26:2c:e1:db:ec:56:7f:93:7e:f4:83:8e:5e:b8: 19:83:83:1b:6a:6b:96:77:1a:4b:ea:db:b5:40:4d: 7a:e7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9E:0E:2E:62:9F:71:DB:64:14:9D:47:B9:99:D8:6A:68:F5:EF:FF:10 X509v3 Authority Key Identifier: keyid:66:C3:06:D2:3F:8B:FE:AA:A4:4C:CC:C5:57:39:69:51:F9:86:C6:BD X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914DA9E/D1BE809C1F3211F0BD22BA68C4F9AE02/ZsMG0j-L_qqkTMzFVzlpUfmGxr0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ZsMG0j-L_qqkTMzFVzlpUfmGxr0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914DA9E/D1BE809C1F3211F0BD22BA68C4F9AE02/ZsMG0j-L_qqkTMzFVzlpUfmGxr0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 21:42:e8:9c:9f:78:e4:a3:bd:a0:d5:43:e5:b4:fb:91:73:b7: c0:9d:9b:62:fd:6b:9f:77:77:21:be:a1:d0:11:58:d1:0a:2c: d4:1a:1a:4c:88:0d:05:65:46:f3:de:2c:b8:d6:1b:bd:bd:15: d4:3a:33:8d:97:ab:79:12:26:a8:63:23:55:07:43:e2:90:0c: 2c:b5:10:bc:48:3b:f8:1c:5f:46:37:35:62:c1:78:71:ce:ea: 2c:72:e6:fb:36:dd:db:dc:ac:4f:dd:c7:c7:77:58:36:a3:bb: ce:9e:08:ce:3d:ff:c2:ff:15:53:7f:5e:7d:9c:79:f8:85:94: 5d:28:9b:15:3d:a5:a7:1f:b1:7f:14:9f:b5:39:fc:9a:aa:fb: e8:d6:bd:f8:d5:e5:31:9f:e0:b6:f9:d1:65:40:26:d7:fd:30: 85:f7:2f:86:aa:ea:62:e1:c3:fe:28:2c:62:2d:8c:99:cc:a5: 20:fd:21:c2:a6:3b:b7:21:8d:12:63:06:49:15:c3:0e:11:c9: 09:d3:a7:34:59:23:aa:00:fc:a1:13:e3:83:6e:35:5f:05:e3: 84:9c:31:22:18:a6:f6:14:b4:29:b8:8e:10:55:a9:16:49:95: c1:ca:e6:dc:df:83:1e:88:d4:ba:d0:24:ff:b7:5a:f9:f5:9c: cb:f3:63:e0 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBHzANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE0 REE5RTExMC8GA1UEBRMoNjZDMzA2RDIzRjhCRkVBQUE0NENDQ0M1NTczOTY5NTFG OTg2QzZCRDAeFw0yNTA2MTMwNjQ5MDZaFw0yNTA2MjAwNjQ5MDZaMBgxFjAUBgNV BAMTDTY4NGJjOWUyLWVlNzYwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDEJRJpFYNpV5+k0aUD62MMPQhtH58n7KviVTDkOtymqaQ/ztmj4Fr+tq8ivvtq AqnxiHg/HuuG1QkluPnc+eaOfzMNckn6zVD0UCCe7JFM1k0ekQsEcRTtOxawYpT+ 6ti0Y1TWe8l0jeT0hQDyA+DTjPTPrypq5P4uutjroG+Ok84Ef8GtnUGP+LMTpYUz 0bjMtaeCJIY9oBTILAHMyfrTLGTr+61aq4jymSdPGsYaiPxXkbXQLIvtd11XMuOk rgVyDBqS6jHSQXrcQvERLO3v7LY22eGSHNfnPxw20PXER+smLOHb7FZ/k370g45e uBmDgxtqa5Z3Gkvq27VATXrnAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUng4uYp9x 22QUnUe5mdhqaPXv/xAwHwYDVR0jBBgwFoAUZsMG0j+L/qqkTMzFVzlpUfmGxr0w DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTREQTlFL0QxQkU4MDlDMUYz MjExRjBCRDIyQkE2OEM0RjlBRTAyL1pzTUcwai1MX3Fxa1RNekZWemxwVWZtR3hy MC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvWnNNRzBqLUxfcXFrVE16RlZ6bHBVZm1HeHIwLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTRE QTlFL0QxQkU4MDlDMUYzMjExRjBCRDIyQkE2OEM0RjlBRTAyL1pzTUcwai1MX3Fx a1RNekZWemxwVWZtR3hyMC5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBACFC6JyfeOSjvaDVQ+W0+5Fzt8Cdm2L9a593dyG+odARWNEKLNQaGkyI DQVlRvPeLLjWG729FdQ6M42Xq3kSJqhjI1UHQ+KQDCy1ELxIO/gcX0Y3NWLBeHHO 6ixy5vs23dvcrE/dx8d3WDaju86eCM49/8L/FVN/Xn2cefiFlF0omxU9pacfsX8U n7U5/Jqq++jWvfjV5TGf4Lb50WVAJtf9MIX3L4aq6mLhw/4oLGItjJnMpSD9IcKm O7chjRJjBkkVww4RyQnTpzRZI6oA/KET44NuNV8F44ScMSIYpvYUtCm4jhBVqRZJ lcHK5tzfgx6I1LrQJP+3Wvn1nMvzY+A= -----END CERTIFICATE-----Generated at Sat Jun 14 19:36:43 2025 by rpki-client