$ rpki-client -vvf rpki.apnic.net/member_repository/A916523A/E75B878C4CDD11F0BFA08F80C4F9AE02/zES2e9GPRfbhN63kcxM1pVGmYSc.mft File: zES2e9GPRfbhN63kcxM1pVGmYSc.mft (raw, json) Hash identifier: IaZE6eyHkbw8iWA/vEuaGAFSG4r9ijaMa31juGVc/TU= Subject key identifier: 6C:9A:07:B0:2B:FB:BA:50:B5:F6:20:CD:BD:D3:10:67:56:B9:B8:ED Authority key identifier: CC:44:B6:7B:D1:8F:45:F6:E1:37:AD:E4:73:13:35:A5:51:A6:61:27 Certificate issuer: /CN=A916523A/serialNumber=CC44B67BD18F45F6E137ADE4731335A551A66127 Certificate serial: 1B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/zES2e9GPRfbhN63kcxM1pVGmYSc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A916523A/E75B878C4CDD11F0BFA08F80C4F9AE02/zES2e9GPRfbhN63kcxM1pVGmYSc.mft Manifest number: 1A Signing time: Tue 05 Aug 2025 08:37:15 +0000 Manifest this update: Tue 05 Aug 2025 08:37:14 +0000 Manifest next update: Tue 12 Aug 2025 08:37:14 +0000 Files and hashes: 1: zES2e9GPRfbhN63kcxM1pVGmYSc.crl (hash: eXo8zQnpCU0MYlslogPuLiNKjbnUHqeo5sOOAUYHH5s=) 2: 469F3FE44CDF11F08D2EFF16C4F9AE02.roa (hash: V/fASBu8lY37YHb4lDAmyOYyJCBMY5CbifIBgISs7Nk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A916523A/E75B878C4CDD11F0BFA08F80C4F9AE02/zES2e9GPRfbhN63kcxM1pVGmYSc.crl rsync://rpki.apnic.net/member_repository/A916523A/E75B878C4CDD11F0BFA08F80C4F9AE02/zES2e9GPRfbhN63kcxM1pVGmYSc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/zES2e9GPRfbhN63kcxM1pVGmYSc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 12 Aug 2025 08:37:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 27 (0x1b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A916523A, serialNumber=CC44B67BD18F45F6E137ADE4731335A551A66127 Validity Not Before: Aug 5 08:37:14 2025 GMT Not After : Aug 12 08:37:14 2025 GMT Subject: CN=6891c2ba-5e85 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:33:6d:6a:3c:b6:03:ca:c5:2b:7a:a0:f4:6a: 08:6c:94:8d:4b:1e:30:f5:ef:89:62:e5:f7:ef:45: 53:4a:87:c6:8c:88:f9:d8:87:48:0d:11:88:44:db: c3:fb:78:8e:fe:39:41:1a:c1:3e:23:c5:f2:d7:69: a5:3c:c4:ab:ed:8f:e3:5f:f5:30:17:85:5d:dc:fc: 2e:ce:a8:3e:d6:3c:9e:83:35:53:68:27:72:51:6d: 6c:3e:ea:39:64:6b:7d:10:cc:53:47:0f:5c:03:ab: b6:50:53:e3:46:f7:b9:b6:f3:a2:ad:c7:79:90:90: 48:2a:aa:f5:78:f3:63:45:19:0b:91:fb:f1:3c:d8: 2b:3a:8f:bf:46:42:b2:d1:08:0f:8e:54:6f:0a:bf: 35:4c:aa:9c:03:1a:12:c7:8b:b3:ae:12:bc:8b:48: d5:0e:b8:b7:33:67:3b:ea:63:eb:97:fa:21:17:c1: dd:41:00:5f:61:ca:72:c3:a3:18:b2:73:89:31:29: 97:2a:85:4f:a8:e8:9e:82:98:01:f3:a8:7e:7d:3d: 13:cf:c9:d3:c3:82:62:70:f9:87:05:84:6c:b2:27: d7:5c:c8:82:0e:64:bc:61:29:a5:09:08:3c:72:30: 13:09:13:f0:95:77:56:24:80:50:04:9b:4c:34:34: f8:3d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6C:9A:07:B0:2B:FB:BA:50:B5:F6:20:CD:BD:D3:10:67:56:B9:B8:ED X509v3 Authority Key Identifier: keyid:CC:44:B6:7B:D1:8F:45:F6:E1:37:AD:E4:73:13:35:A5:51:A6:61:27 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A916523A/E75B878C4CDD11F0BFA08F80C4F9AE02/zES2e9GPRfbhN63kcxM1pVGmYSc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/zES2e9GPRfbhN63kcxM1pVGmYSc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A916523A/E75B878C4CDD11F0BFA08F80C4F9AE02/zES2e9GPRfbhN63kcxM1pVGmYSc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 8e:ae:1d:6f:d6:31:b5:3f:48:b8:f1:e0:4e:8c:ab:f6:12:c4: b8:28:72:3a:14:95:f5:d6:a4:54:3c:cb:1b:0f:5c:09:4c:71: 7a:b5:be:b1:e8:fd:fa:3e:c1:8d:21:31:22:4b:f1:b2:22:4f: 69:7e:96:71:4e:4c:a3:8c:68:69:a5:9d:a2:3d:cd:0f:06:09: 7b:1e:5f:63:84:3b:ae:c3:ae:21:ae:24:39:81:ea:07:e7:ec: 9d:80:9f:49:71:d0:e1:04:8f:6e:db:a1:42:15:6a:e8:35:78: 07:c5:ee:00:4d:70:88:07:66:90:17:87:12:ce:c5:c1:be:c9: dc:30:b3:c4:2b:4d:48:39:a9:64:b7:be:9c:9b:ac:de:48:da: fb:bd:a4:fa:26:11:cd:3a:87:77:08:21:21:ac:bd:c4:fa:9f: f6:3f:33:29:1a:4e:2e:93:00:d4:bb:08:d7:11:ee:33:bc:07: e1:02:4d:57:72:a4:29:84:ce:41:c2:98:d3:78:bd:77:64:d5: a7:f0:f3:4d:65:d8:b3:8c:79:8d:d1:6d:86:db:51:e0:50:1c: c4:59:4c:bd:14:c7:a4:be:76:db:cf:6d:d0:37:af:95:8c:39: 8f:f4:57:a0:1d:01:9c:f8:21:09:6f:49:a8:2f:7c:21:58:76: e7:77:b1:65 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBGzANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE2 NTIzQTExMC8GA1UEBRMoQ0M0NEI2N0JEMThGNDVGNkUxMzdBREU0NzMxMzM1QTU1 MUE2NjEyNzAeFw0yNTA4MDUwODM3MTRaFw0yNTA4MTIwODM3MTRaMBgxFjAUBgNV BAMTDTY4OTFjMmJhLTVlODUwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDEM21qPLYDysUreqD0aghslI1LHjD174li5ffvRVNKh8aMiPnYh0gNEYhE28P7 eI7+OUEawT4jxfLXaaU8xKvtj+Nf9TAXhV3c/C7OqD7WPJ6DNVNoJ3JRbWw+6jlk a30QzFNHD1wDq7ZQU+NG97m286Ktx3mQkEgqqvV482NFGQuR+/E82Cs6j79GQrLR CA+OVG8KvzVMqpwDGhLHi7OuEryLSNUOuLczZzvqY+uX+iEXwd1BAF9hynLDoxiy c4kxKZcqhU+o6J6CmAHzqH59PRPPydPDgmJw+YcFhGyyJ9dcyIIOZLxhKaUJCDxy MBMJE/CVd1YkgFAEm0w0NPg9AgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUbJoHsCv7 ulC19iDNvdMQZ1a5uO0wHwYDVR0jBBgwFoAUzES2e9GPRfbhN63kcxM1pVGmYScw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTY1MjNBL0U3NUI4NzhDNENE RDExRjBCRkEwOEY4MEM0RjlBRTAyL3pFUzJlOUdQUmZiaE42M2tjeE0xcFZHbVlT Yy5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvekVTMmU5R1BSZmJoTjYza2N4TTFwVkdtWVNjLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTY1 MjNBL0U3NUI4NzhDNENERDExRjBCRkEwOEY4MEM0RjlBRTAyL3pFUzJlOUdQUmZi aE42M2tjeE0xcFZHbVlTYy5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAI6uHW/WMbU/SLjx4E6Mq/YSxLgocjoUlfXWpFQ8yxsPXAlMcXq1vrHo /fo+wY0hMSJL8bIiT2l+lnFOTKOMaGmlnaI9zQ8GCXseX2OEO67DriGuJDmB6gfn 7J2An0lx0OEEj27boUIVaug1eAfF7gBNcIgHZpAXhxLOxcG+ydwws8QrTUg5qWS3 vpybrN5I2vu9pPomEc06h3cIISGsvcT6n/Y/MykaTi6TANS7CNcR7jO8B+ECTVdy pCmEzkHCmNN4vXdk1afw801l2LOMeY3RbYbbUeBQHMRZTL0Ux6S+dtvPbdA3r5WM OY/0V6AdAZz4IQlvSagvfCFYdud3sWU= -----END CERTIFICATE-----Generated at Thu Aug 7 04:00:16 2025 by rpki-client