$ rpki-client -vvf rpki.apnic.net/member_repository/A9189132/D264A2A4458C11EA8E6F6D0CC4F9AE02/ztWVHA4vwvZh_u8cNxtnsj8cUt8.mft File: ztWVHA4vwvZh_u8cNxtnsj8cUt8.mft (raw, json) Hash identifier: EdljfLYq+y+iSOEpQpVQBGcoLO/FO7RIlwCQ8HWjfRI= Subject key identifier: A1:AD:07:90:9B:F7:E2:22:65:6D:D4:E9:9F:2F:58:AC:78:58:5A:8C Authority key identifier: CE:D5:95:1C:0E:2F:C2:F6:61:FE:EF:1C:37:1B:67:B2:3F:1C:52:DF Certificate issuer: /CN=A9189132/serialNumber=CED5951C0E2FC2F661FEEF1C371B67B23F1C52DF Certificate serial: 0B28 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ztWVHA4vwvZh_u8cNxtnsj8cUt8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9189132/D264A2A4458C11EA8E6F6D0CC4F9AE02/ztWVHA4vwvZh_u8cNxtnsj8cUt8.mft Manifest number: 0B20 Signing time: Sun 10 Aug 2025 19:17:56 +0000 Manifest this update: Sun 10 Aug 2025 19:17:56 +0000 Manifest next update: Sun 17 Aug 2025 19:17:56 +0000 Files and hashes: 1: ztWVHA4vwvZh_u8cNxtnsj8cUt8.crl (hash: tUVAuEBPDB5Qmjqc9gFkEpTG2RbBDaE1SA11BqamOcc=) 2: 4E6B4E24458E11EA84E01A0FC4F9AE02.roa (hash: QbUyZORfUsAuIPfZUHLWRtdmTwbA8QqQPT+t+aGRe2I=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9189132/D264A2A4458C11EA8E6F6D0CC4F9AE02/ztWVHA4vwvZh_u8cNxtnsj8cUt8.crl rsync://rpki.apnic.net/member_repository/A9189132/D264A2A4458C11EA8E6F6D0CC4F9AE02/ztWVHA4vwvZh_u8cNxtnsj8cUt8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ztWVHA4vwvZh_u8cNxtnsj8cUt8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 Aug 2025 05:57:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2856 (0xb28) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9189132, serialNumber=CED5951C0E2FC2F661FEEF1C371B67B23F1C52DF Validity Not Before: Aug 10 19:17:56 2025 GMT Not After : Aug 17 19:17:56 2025 GMT Subject: CN=6898f064-a619 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:24:32:e5:9e:6d:9c:4e:fe:73:79:19:9a:e9: c4:0a:e2:73:5a:af:bf:3b:c1:55:c4:e2:99:ca:29: 58:aa:14:87:34:72:6a:f1:83:27:26:84:14:d1:17: a9:7a:c8:a1:88:46:18:cc:38:2a:d2:58:3c:0a:da: f9:a5:50:ec:0b:75:37:dd:0c:8f:e6:47:80:08:20: fc:26:8a:8d:ce:05:ec:b9:44:46:3e:1d:eb:c4:59: 99:00:e7:72:da:41:f6:f0:88:4c:78:1a:76:72:dc: c6:f8:20:e6:e5:f7:57:f3:b5:78:63:92:e3:58:55: b0:a6:3e:85:d5:3e:01:9e:64:08:93:35:28:f4:b8: 6f:3f:2c:90:06:ec:0e:be:3f:13:71:63:7c:ba:a2: e9:bc:25:b7:e8:d6:7e:b3:88:8c:6c:f9:a5:eb:76: 97:2b:63:ac:ad:80:27:9e:bc:5f:79:97:bc:8e:31: 8f:6d:51:bc:f8:bd:b8:2e:22:ce:cc:d4:64:c5:ed: 22:8f:a3:5d:16:8c:2a:31:17:80:03:68:69:80:68: d1:b9:7e:a9:7e:cc:dc:5d:cd:50:fb:33:66:d3:a5: e7:8e:1b:9b:23:0e:aa:fe:e3:79:43:b5:bd:a6:73: 70:18:2c:7d:f0:27:7f:de:52:59:50:a4:1d:51:68: 1f:fb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A1:AD:07:90:9B:F7:E2:22:65:6D:D4:E9:9F:2F:58:AC:78:58:5A:8C X509v3 Authority Key Identifier: keyid:CE:D5:95:1C:0E:2F:C2:F6:61:FE:EF:1C:37:1B:67:B2:3F:1C:52:DF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9189132/D264A2A4458C11EA8E6F6D0CC4F9AE02/ztWVHA4vwvZh_u8cNxtnsj8cUt8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ztWVHA4vwvZh_u8cNxtnsj8cUt8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9189132/D264A2A4458C11EA8E6F6D0CC4F9AE02/ztWVHA4vwvZh_u8cNxtnsj8cUt8.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 8e:ea:ab:ba:41:40:4b:4c:98:eb:1c:84:f2:3a:fc:ae:f8:8a: e7:65:54:79:64:d9:6d:09:59:07:b3:03:80:2d:60:f9:cc:73: 98:c5:ed:b4:6f:6a:4a:d1:f9:63:7d:c1:e3:26:34:ba:a0:a4: 85:31:4a:40:f1:c3:2b:03:06:38:49:4f:0a:72:84:e9:1a:3f: 88:cc:a6:de:93:30:46:be:73:45:5a:0e:7c:27:c7:9e:d7:f1: 9c:45:08:94:34:78:1f:3c:4d:68:e5:8d:d7:41:58:b5:63:13: 36:5d:8b:45:59:bf:a3:6f:d8:52:fd:ae:f0:4f:43:0d:21:e6: 55:24:4c:8a:69:c4:ce:d7:5d:05:82:cd:da:4f:47:c9:87:c2: 27:0f:c1:9f:7b:db:e4:d6:e9:8c:5f:f7:2d:5e:ee:68:55:58: ec:a8:b2:dd:9a:44:78:95:c4:b6:64:6e:4f:af:cb:1b:29:f0: 61:6d:ef:ba:5d:1b:c7:59:a2:7d:34:72:e5:a3:00:74:23:72: 91:03:41:69:f5:53:ce:08:66:1f:ae:38:3c:07:ec:da:7b:12: c9:e8:ea:b5:95:e0:94:b8:45:d9:0b:76:d0:89:73:74:c6:77: b7:b1:60:95:ba:7a:21:19:9c:38:bb:dc:92:b8:a5:1a:d9:a3: fd:e6:05:3e -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCygwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx ODkxMzIxMTAvBgNVBAUTKENFRDU5NTFDMEUyRkMyRjY2MUZFRUYxQzM3MUI2N0Iy M0YxQzUyREYwHhcNMjUwODEwMTkxNzU2WhcNMjUwODE3MTkxNzU2WjAYMRYwFAYD VQQDEw02ODk4ZjA2NC1hNjE5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtiQy5Z5tnE7+c3kZmunECuJzWq+/O8FVxOKZyilYqhSHNHJq8YMnJoQU0Rep esihiEYYzDgq0lg8Ctr5pVDsC3U33QyP5keACCD8JoqNzgXsuURGPh3rxFmZAOdy 2kH28IhMeBp2ctzG+CDm5fdX87V4Y5LjWFWwpj6F1T4BnmQIkzUo9LhvPyyQBuwO vj8TcWN8uqLpvCW36NZ+s4iMbPml63aXK2OsrYAnnrxfeZe8jjGPbVG8+L24LiLO zNRkxe0ij6NdFowqMReAA2hpgGjRuX6pfszcXc1Q+zNm06XnjhubIw6q/uN5Q7W9 pnNwGCx98Cd/3lJZUKQdUWgf+wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFKGtB5Cb 9+IiZW3U6Z8vWKx4WFqMMB8GA1UdIwQYMBaAFM7VlRwOL8L2Yf7vHDcbZ7I/HFLf MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4OTEzMi9EMjY0QTJBNDQ1 OEMxMUVBOEU2RjZEMENDNEY5QUUwMi96dFdWSEE0dnd2WmhfdThjTnh0bnNqOGNV dDguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3p0V1ZIQTR2d3ZaaF91OGNOeHRuc2o4Y1V0OC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 OTEzMi9EMjY0QTJBNDQ1OEMxMUVBOEU2RjZEMENDNEY5QUUwMi96dFdWSEE0dnd2 WmhfdThjTnh0bnNqOGNVdDgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCO6qu6QUBLTJjrHITyOvyu+IrnZVR5ZNltCVkHswOALWD5zHOYxe20 b2pK0fljfcHjJjS6oKSFMUpA8cMrAwY4SU8KcoTpGj+IzKbekzBGvnNFWg58J8ee 1/GcRQiUNHgfPE1o5Y3XQVi1YxM2XYtFWb+jb9hS/a7wT0MNIeZVJEyKacTO110F gs3aT0fJh8InD8Gfe9vk1umMX/ctXu5oVVjsqLLdmkR4lcS2ZG5Pr8sbKfBhbe+6 XRvHWaJ9NHLlowB0I3KRA0Fp9VPOCGYfrjg8B+zaexLJ6Oq1leCUuEXZC3bQiXN0 xne3sWCVunohGZw4u9ySuKUa2aP95gU+ -----END CERTIFICATE-----Generated at Mon Aug 11 04:27:59 2025 by rpki-client