$ rpki-client -vvf rpki.apnic.net/member_repository/A916EBCB/E8D695AC192611EAA3361C7BC4F9AE02/zDaQ-JbvVnMRU1vERN8et0H9i7Q.mft File: zDaQ-JbvVnMRU1vERN8et0H9i7Q.mft (raw, json) Hash identifier: ZewAH7OmSTVeeJL/92DCf0SxqQ5YMisR/luMbUPa6g8= Subject key identifier: 3F:10:FC:38:23:13:AC:C9:BD:67:69:4D:95:DD:61:04:B8:0C:5E:D1 Authority key identifier: CC:36:90:F8:96:EF:56:73:11:53:5B:C4:44:DF:1E:B7:41:FD:8B:B4 Certificate issuer: /CN=A916EBCB/serialNumber=CC3690F896EF567311535BC444DF1EB741FD8BB4 Certificate serial: 0C07 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/zDaQ-JbvVnMRU1vERN8et0H9i7Q.cer Subject info access: rsync://rpki.apnic.net/member_repository/A916EBCB/E8D695AC192611EAA3361C7BC4F9AE02/zDaQ-JbvVnMRU1vERN8et0H9i7Q.mft Manifest number: 0BFF Signing time: Sun 10 Aug 2025 18:45:46 +0000 Manifest this update: Sun 10 Aug 2025 18:45:45 +0000 Manifest next update: Sun 17 Aug 2025 18:45:45 +0000 Files and hashes: 1: zDaQ-JbvVnMRU1vERN8et0H9i7Q.crl (hash: lSi51WYeUKmBe916T1EO1ZwWmHWjV/1QGFj5WvzrVXg=) 2: 81C5BFF8192811EA9B88D87DC4F9AE02.roa (hash: ZawsauuQVy3/xITjsqsOJpATtDgEASJhh1tB3zSZBaE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A916EBCB/E8D695AC192611EAA3361C7BC4F9AE02/zDaQ-JbvVnMRU1vERN8et0H9i7Q.crl rsync://rpki.apnic.net/member_repository/A916EBCB/E8D695AC192611EAA3361C7BC4F9AE02/zDaQ-JbvVnMRU1vERN8et0H9i7Q.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/zDaQ-JbvVnMRU1vERN8et0H9i7Q.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 Aug 2025 05:57:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3079 (0xc07) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A916EBCB, serialNumber=CC3690F896EF567311535BC444DF1EB741FD8BB4 Validity Not Before: Aug 10 18:45:45 2025 GMT Not After : Aug 17 18:45:45 2025 GMT Subject: CN=6898e8da-183a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ac:31:10:7e:ba:5a:ba:64:b5:7e:52:36:2f:4d: 37:f0:2d:5b:b8:c0:e0:2d:11:c3:fc:0a:0d:20:41: 9c:a9:17:d3:b3:c3:ac:4b:66:77:a3:c8:18:78:c7: 63:99:75:32:ef:af:0a:88:c1:d6:39:81:6f:03:38: 98:ba:b6:57:63:c4:3e:17:e7:15:bc:fc:dc:ec:d7: 67:00:38:55:0d:78:f2:6f:9c:74:a5:ae:ff:44:f0: 0b:17:44:83:80:2c:a7:aa:e4:d3:0e:0f:ff:61:8e: 41:63:6c:48:6d:36:50:36:f7:40:a2:bc:47:3e:a1: 27:40:00:20:c0:49:37:b1:e4:ef:20:83:fa:e7:20: 09:a3:a9:87:94:36:a1:eb:22:a8:1f:c4:c5:74:10: 51:cf:08:56:ff:50:a3:8e:e1:bc:9a:f9:92:aa:ed: 55:d3:20:ef:7b:d5:9f:cd:92:dc:68:9d:1d:b1:0c: 61:64:60:a4:8a:4b:36:f5:77:e6:8c:13:c5:f0:90: 24:56:9d:81:3f:68:e4:79:70:35:10:50:09:50:6b: 84:7c:f5:01:37:76:7a:67:cd:ef:e2:f1:53:ea:8a: 45:48:ed:3a:33:6a:66:4d:ea:96:5f:ef:38:61:72: 70:63:19:bd:d8:68:00:bd:b9:9d:99:3f:7e:61:0b: 2b:bb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3F:10:FC:38:23:13:AC:C9:BD:67:69:4D:95:DD:61:04:B8:0C:5E:D1 X509v3 Authority Key Identifier: keyid:CC:36:90:F8:96:EF:56:73:11:53:5B:C4:44:DF:1E:B7:41:FD:8B:B4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A916EBCB/E8D695AC192611EAA3361C7BC4F9AE02/zDaQ-JbvVnMRU1vERN8et0H9i7Q.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/zDaQ-JbvVnMRU1vERN8et0H9i7Q.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A916EBCB/E8D695AC192611EAA3361C7BC4F9AE02/zDaQ-JbvVnMRU1vERN8et0H9i7Q.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption b8:c6:27:49:7e:89:31:8c:d3:54:70:78:ea:50:53:42:39:2b: d9:a1:9f:9a:58:ec:05:59:35:a7:ae:88:d6:59:05:4b:3c:6c: 69:0c:92:a4:63:d9:83:98:df:bd:28:ce:fd:83:8c:a4:64:db: 56:c4:ac:8d:76:fe:87:b5:e5:8d:b5:92:61:39:1a:83:d6:04: ba:28:f7:3b:eb:37:01:13:e8:d0:19:a9:f2:b0:94:46:42:48: e1:75:a0:82:04:60:69:1c:74:3b:85:11:6a:1c:5c:36:67:ac: 77:90:74:18:41:95:3b:7d:82:2b:a1:c9:aa:3f:32:8f:df:42: 4b:95:15:50:6d:b6:23:65:67:2a:8c:3b:b1:a9:83:6d:34:2e: 85:11:63:48:f7:8c:4b:84:ba:f2:12:f1:de:2f:60:5d:e1:8b: c1:d6:61:60:18:0a:b1:fa:24:73:4e:c2:95:a6:b6:2c:1c:1a: 8c:60:ec:b4:e9:32:8b:c5:5d:3e:d2:d3:f4:13:61:e2:83:34: ff:ff:0d:e3:70:1c:49:3c:97:be:bc:7d:85:8b:d3:7e:ee:23: 08:2d:a8:91:95:3b:e2:1b:9a:f8:0c:a6:cd:c7:13:45:ce:3e: 1b:06:34:4a:59:d1:03:ca:f0:2b:36:6f:93:7d:9e:0e:5b:11: 09:b8:e2:35 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDAcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NkVCQ0IxMTAvBgNVBAUTKENDMzY5MEY4OTZFRjU2NzMxMTUzNUJDNDQ0REYxRUI3 NDFGRDhCQjQwHhcNMjUwODEwMTg0NTQ1WhcNMjUwODE3MTg0NTQ1WjAYMRYwFAYD VQQDEw02ODk4ZThkYS0xODNhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArDEQfrpaumS1flI2L0038C1buMDgLRHD/AoNIEGcqRfTs8OsS2Z3o8gYeMdj mXUy768KiMHWOYFvAziYurZXY8Q+F+cVvPzc7NdnADhVDXjyb5x0pa7/RPALF0SD gCynquTTDg//YY5BY2xIbTZQNvdAorxHPqEnQAAgwEk3seTvIIP65yAJo6mHlDah 6yKoH8TFdBBRzwhW/1CjjuG8mvmSqu1V0yDve9WfzZLcaJ0dsQxhZGCkiks29Xfm jBPF8JAkVp2BP2jkeXA1EFAJUGuEfPUBN3Z6Z83v4vFT6opFSO06M2pmTeqWX+84 YXJwYxm92GgAvbmdmT9+YQsruwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFD8Q/Dgj E6zJvWdpTZXdYQS4DF7RMB8GA1UdIwQYMBaAFMw2kPiW71ZzEVNbxETfHrdB/Yu0 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2RUJDQi9FOEQ2OTVBQzE5 MjYxMUVBQTMzNjFDN0JDNEY5QUUwMi96RGFRLUpidlZuTVJVMXZFUk44ZXQwSDlp N1EuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3pEYVEtSmJ2Vm5NUlUxdkVSTjhldDBIOWk3US5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 RUJDQi9FOEQ2OTVBQzE5MjYxMUVBQTMzNjFDN0JDNEY5QUUwMi96RGFRLUpidlZu TVJVMXZFUk44ZXQwSDlpN1EubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQC4xidJfokxjNNUcHjqUFNCOSvZoZ+aWOwFWTWnrojWWQVLPGxpDJKk Y9mDmN+9KM79g4ykZNtWxKyNdv6HteWNtZJhORqD1gS6KPc76zcBE+jQGanysJRG QkjhdaCCBGBpHHQ7hRFqHFw2Z6x3kHQYQZU7fYIrocmqPzKP30JLlRVQbbYjZWcq jDuxqYNtNC6FEWNI94xLhLryEvHeL2Bd4YvB1mFgGAqx+iRzTsKVprYsHBqMYOy0 6TKLxV0+0tP0E2HigzT//w3jcBxJPJe+vH2Fi9N+7iMILaiRlTviG5r4DKbNxxNF zj4bBjRKWdEDyvArNm+TfZ4OWxEJuOI1 -----END CERTIFICATE-----Generated at Mon Aug 11 10:00:56 2025 by rpki-client