$ rpki-client -vvf rpki.apnic.net/member_repository/A9152E29/AD33401C04FF11EAB58CB823C4F9AE02/Z7qlic6898PyfVPZjqxMEEzAkTU.mft File: Z7qlic6898PyfVPZjqxMEEzAkTU.mft (raw, json) Hash identifier: GafocRWxyHlZ2dZ2rbVi9EPq3fd4u+74AgG5rR6vnKs= Subject key identifier: C5:30:2F:A1:97:54:D4:25:D7:BD:F0:96:18:14:B4:EE:B6:2A:44:09 Authority key identifier: 67:BA:A5:89:CE:BC:F7:C3:F2:7D:53:D9:8E:AC:4C:10:4C:C0:91:35 Certificate issuer: /CN=A9152E29/serialNumber=67BAA589CEBCF7C3F27D53D98EAC4C104CC09135 Certificate serial: 0C6A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Z7qlic6898PyfVPZjqxMEEzAkTU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9152E29/AD33401C04FF11EAB58CB823C4F9AE02/Z7qlic6898PyfVPZjqxMEEzAkTU.mft Manifest number: 0C64 Signing time: Mon 04 Aug 2025 18:35:42 +0000 Manifest this update: Mon 04 Aug 2025 18:35:42 +0000 Manifest next update: Mon 11 Aug 2025 18:35:42 +0000 Files and hashes: 1: Z7qlic6898PyfVPZjqxMEEzAkTU.crl (hash: 2GytKpWIvwQ/lYl0srm/glqpTrnN5BxFB743w5frn+4=) 2: 94EA7370050111EA9BDD372BC4F9AE02.roa (hash: dMPlbwZZJ9a9ifwF8f+1OVtKYmpgj8cV+d0a3+m/kqY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9152E29/AD33401C04FF11EAB58CB823C4F9AE02/Z7qlic6898PyfVPZjqxMEEzAkTU.crl rsync://rpki.apnic.net/member_repository/A9152E29/AD33401C04FF11EAB58CB823C4F9AE02/Z7qlic6898PyfVPZjqxMEEzAkTU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Z7qlic6898PyfVPZjqxMEEzAkTU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 11 Aug 2025 18:35:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3178 (0xc6a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9152E29, serialNumber=67BAA589CEBCF7C3F27D53D98EAC4C104CC09135 Validity Not Before: Aug 4 18:35:42 2025 GMT Not After : Aug 11 18:35:42 2025 GMT Subject: CN=6890fd7e-807e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e3:de:b4:fe:5f:72:ce:c6:28:4f:87:88:53:39: 36:d3:9e:be:8e:2f:cf:4b:29:d3:51:56:1a:8b:5b: 92:95:80:77:22:71:a2:a8:31:4f:6e:03:4c:60:ec: 26:36:b2:67:47:9a:53:a1:98:51:e5:f2:b7:0c:af: 4a:1f:66:d2:0d:ff:d5:b7:cd:b7:13:d4:48:a5:d9: 65:bf:6f:af:a7:bd:26:00:5d:95:d3:35:64:25:29: f8:89:89:98:50:00:00:e0:03:17:a5:00:1e:8c:9a: 59:43:86:e5:cb:20:83:90:50:17:57:62:4e:6a:45: 17:59:cb:d8:87:91:e2:8d:9d:f6:2a:02:87:0b:58: fc:12:ce:de:b2:3e:1b:ce:42:be:75:3d:02:00:34: 4e:40:ae:b0:ff:a5:d1:42:19:d7:4b:e6:2c:09:7f: a0:2c:88:87:a6:bf:b2:08:e1:ec:17:dc:8a:db:2c: 93:9c:0a:ea:0e:db:82:33:b1:61:66:68:96:59:26: 1d:b5:07:fd:fd:92:4f:c6:be:50:d6:58:d4:9e:b4: 25:90:c3:92:54:0b:81:b4:1e:6b:fd:59:2e:d3:35: d6:35:34:94:49:cd:e8:d9:a5:1d:bd:d6:02:00:ba: 23:9c:44:34:f7:93:75:f1:e3:43:58:9c:03:c0:7e: df:9d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C5:30:2F:A1:97:54:D4:25:D7:BD:F0:96:18:14:B4:EE:B6:2A:44:09 X509v3 Authority Key Identifier: keyid:67:BA:A5:89:CE:BC:F7:C3:F2:7D:53:D9:8E:AC:4C:10:4C:C0:91:35 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9152E29/AD33401C04FF11EAB58CB823C4F9AE02/Z7qlic6898PyfVPZjqxMEEzAkTU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Z7qlic6898PyfVPZjqxMEEzAkTU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9152E29/AD33401C04FF11EAB58CB823C4F9AE02/Z7qlic6898PyfVPZjqxMEEzAkTU.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption c0:1f:ef:e7:a2:64:0e:83:f6:08:6a:7f:60:41:e7:5f:d2:15: 3f:da:14:c2:8d:4d:bd:a8:e9:27:27:a2:c4:d1:96:91:fb:3e: 05:85:72:4d:60:40:2b:4f:14:ac:d7:ae:c0:37:d3:78:ad:ee: c8:81:09:29:32:3f:6b:86:6c:f8:07:e7:5a:7c:7c:19:41:d3: b8:ef:74:af:fa:05:a6:58:15:2a:44:6d:4e:4d:68:65:ea:1a: 04:31:cf:e2:2d:c3:26:5a:dc:68:1a:5d:5b:59:82:a2:87:34: a4:80:33:c1:08:9c:a8:14:81:30:43:42:7a:74:0f:ba:71:4e: 49:9d:ba:f7:12:a4:6e:a0:89:11:d7:10:79:76:4a:cb:ce:4b: 6e:bf:7a:44:46:75:e5:07:a0:7e:f3:79:4d:e7:2f:e0:e1:62: d3:d3:5b:7c:51:c8:69:ca:4a:21:b6:f9:e9:fe:de:e7:e7:5a: 7d:13:fd:9d:97:b8:60:b8:14:77:c6:48:20:1b:69:ed:6d:4c: e3:3b:4c:95:99:e3:01:38:b4:e4:ee:41:c0:11:17:2e:29:70: 88:dd:83:96:6c:ff:95:31:7c:3d:03:38:5a:26:e3:0b:ba:e1: 38:91:25:0e:b3:29:ce:78:5f:31:28:29:c7:ba:bf:38:2d:af: 36:8d:7a:51 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDGowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTJFMjkxMTAvBgNVBAUTKDY3QkFBNTg5Q0VCQ0Y3QzNGMjdENTNEOThFQUM0QzEw NENDMDkxMzUwHhcNMjUwODA0MTgzNTQyWhcNMjUwODExMTgzNTQyWjAYMRYwFAYD VQQDEw02ODkwZmQ3ZS04MDdlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA4960/l9yzsYoT4eIUzk2056+ji/PSynTUVYai1uSlYB3InGiqDFPbgNMYOwm NrJnR5pToZhR5fK3DK9KH2bSDf/Vt823E9RIpdllv2+vp70mAF2V0zVkJSn4iYmY UAAA4AMXpQAejJpZQ4blyyCDkFAXV2JOakUXWcvYh5HijZ32KgKHC1j8Es7esj4b zkK+dT0CADROQK6w/6XRQhnXS+YsCX+gLIiHpr+yCOHsF9yK2yyTnArqDtuCM7Fh ZmiWWSYdtQf9/ZJPxr5Q1ljUnrQlkMOSVAuBtB5r/Vku0zXWNTSUSc3o2aUdvdYC ALojnEQ095N18eNDWJwDwH7fnQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFMUwL6GX VNQl173wlhgUtO62KkQJMB8GA1UdIwQYMBaAFGe6pYnOvPfD8n1T2Y6sTBBMwJE1 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1MkUyOS9BRDMzNDAxQzA0 RkYxMUVBQjU4Q0I4MjNDNEY5QUUwMi9aN3FsaWM2ODk4UHlmVlBaanF4TUVFekFr VFUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1o3cWxpYzY4OThQeWZWUFpqcXhNRUV6QWtUVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 MkUyOS9BRDMzNDAxQzA0RkYxMUVBQjU4Q0I4MjNDNEY5QUUwMi9aN3FsaWM2ODk4 UHlmVlBaanF4TUVFekFrVFUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQDAH+/nomQOg/YIan9gQedf0hU/2hTCjU29qOknJ6LE0ZaR+z4FhXJN YEArTxSs167AN9N4re7IgQkpMj9rhmz4B+dafHwZQdO473Sv+gWmWBUqRG1OTWhl 6hoEMc/iLcMmWtxoGl1bWYKihzSkgDPBCJyoFIEwQ0J6dA+6cU5Jnbr3EqRuoIkR 1xB5dkrLzktuv3pERnXlB6B+83lN5y/g4WLT01t8Uchpykohtvnp/t7n51p9E/2d l7hguBR3xkggG2ntbUzjO0yVmeMBOLTk7kHAERcuKXCI3YOWbP+VMXw9AzhaJuML uuE4kSUOsynOeF8xKCnHur84La82jXpR -----END CERTIFICATE-----Generated at Wed Aug 6 14:15:36 2025 by rpki-client