$ rpki-client -vvf rpki.apnic.net/member_repository/A9121836/F1DB1D44F4FB11ED938F9447C4F9AE02/ZrIU0Rx_lhqVxCVnA0KOk8unKYY.mft File: ZrIU0Rx_lhqVxCVnA0KOk8unKYY.mft (raw, json) Hash identifier: eAZhxbZr63O87zO2GdcPbnzSVxNdYvl9VxTze9n0E3k= Subject key identifier: 75:E6:04:C7:84:56:39:24:0A:D0:B8:A5:BE:65:2F:1B:33:79:96:FB Authority key identifier: 66:B2:14:D1:1C:7F:96:1A:95:C4:25:67:03:42:8E:93:CB:A7:29:86 Certificate issuer: /CN=A9121836/serialNumber=66B214D11C7F961A95C4256703428E93CBA72986 Certificate serial: 01BC Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ZrIU0Rx_lhqVxCVnA0KOk8unKYY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9121836/F1DB1D44F4FB11ED938F9447C4F9AE02/ZrIU0Rx_lhqVxCVnA0KOk8unKYY.mft Manifest number: 01A5 Signing time: Sat 19 Jul 2025 03:35:49 +0000 Manifest this update: Sat 19 Jul 2025 03:35:48 +0000 Manifest next update: Sat 26 Jul 2025 03:35:48 +0000 Files and hashes: 1: ZrIU0Rx_lhqVxCVnA0KOk8unKYY.crl (hash: ZPWwU6eWBzFyc86GMqPCBMIHMQt/dyWx7dhgWRc+7ZM=) 2: 6CE6E15ECEF311EEBCE7894DC4F9AE02.roa (hash: wIfWv8k11m2nJjvD9OZyvuvwJHOiHTaCFNkOK+76jZw=) 3: 63DC5AA6C67611EEB1126C70C4F9AE02.roa (hash: 8Baf5eHeRnNrGmSSDb+55e+ExZ2m5tnzgHIxbW3wB58=) 4: 02D36C86F50211ED8A235C4EC4F9AE02.roa (hash: /e5dKdsxY7i/S5RsJcqyRRAjOevxOXqA06J4ijaW9S8=) 5: 118AB342249511EFBF275B73C4F9AE02.roa (hash: ogfO9JhlXfzcpr7qtI24gUz6+dXsJEF9ymvQGfa18zY=) 6: 6ABFFBC6F53811EDBAE7E351C4F9AE02.roa (hash: 1V6DG3RruUSFEextYdbAlCAJvZIY1kI2fi13FOKdYSQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9121836/F1DB1D44F4FB11ED938F9447C4F9AE02/ZrIU0Rx_lhqVxCVnA0KOk8unKYY.crl rsync://rpki.apnic.net/member_repository/A9121836/F1DB1D44F4FB11ED938F9447C4F9AE02/ZrIU0Rx_lhqVxCVnA0KOk8unKYY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ZrIU0Rx_lhqVxCVnA0KOk8unKYY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 26 Jul 2025 03:35:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 444 (0x1bc) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9121836, serialNumber=66B214D11C7F961A95C4256703428E93CBA72986 Validity Not Before: Jul 19 03:35:48 2025 GMT Not After : Jul 26 03:35:48 2025 GMT Subject: CN=687b1295-7dda Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9b:87:03:56:ae:a8:68:03:e6:87:b1:dc:04:10: cd:ed:87:bc:ad:d9:e7:cc:ae:99:c5:a9:48:a0:16: 15:6b:1f:9c:f7:f2:2e:44:ed:70:db:8b:b1:da:14: c7:85:f6:92:e4:c9:39:0a:a0:79:2b:1f:9c:5c:26: 28:b1:d9:08:da:4a:b5:cc:04:ba:ac:d4:b8:4e:b1: 1a:1a:49:69:ae:ba:f0:c5:5f:f0:bf:9c:39:a9:1d: 44:bb:6e:a7:f2:ef:7e:b8:43:7f:e4:17:bb:d4:3b: 7e:ff:05:64:c9:be:72:7a:7a:ab:b4:1b:b0:24:d5: a1:21:9d:3d:50:99:83:30:83:62:04:4a:8d:7a:2b: 75:67:e1:d4:c0:8e:cb:79:6d:e9:82:7b:cb:ee:c7: 69:c7:5c:29:81:b6:6e:51:ce:af:ee:1c:6c:9f:b9: d4:d2:b9:a6:d5:00:9c:05:41:a7:e2:cc:66:d8:d2: a5:c3:74:b7:0d:2e:f2:b7:a7:bc:56:d0:15:bc:54: ad:c5:78:66:81:9e:d1:eb:d6:83:01:71:40:b2:e1: ed:e0:5b:20:46:bc:2c:df:0e:45:29:d1:46:08:24: da:c2:47:23:f0:55:24:c4:3c:f3:06:8b:28:12:0c: 24:66:7c:05:85:31:c0:71:cd:72:05:1f:ee:79:e7: 34:a7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 75:E6:04:C7:84:56:39:24:0A:D0:B8:A5:BE:65:2F:1B:33:79:96:FB X509v3 Authority Key Identifier: keyid:66:B2:14:D1:1C:7F:96:1A:95:C4:25:67:03:42:8E:93:CB:A7:29:86 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9121836/F1DB1D44F4FB11ED938F9447C4F9AE02/ZrIU0Rx_lhqVxCVnA0KOk8unKYY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ZrIU0Rx_lhqVxCVnA0KOk8unKYY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9121836/F1DB1D44F4FB11ED938F9447C4F9AE02/ZrIU0Rx_lhqVxCVnA0KOk8unKYY.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 31:79:df:e2:5c:9c:89:90:5b:5d:d8:f4:d3:1d:ea:94:1d:3c: fb:01:76:bb:8d:d6:0a:66:db:27:ca:3b:0e:aa:b6:c1:fe:ed: 79:e7:2f:ca:62:dc:b5:84:7a:ba:52:c8:1e:dd:f1:59:1c:55: 30:92:b5:1a:f7:1d:b2:f7:5d:12:ca:99:12:68:56:29:a3:c3: 0a:54:af:84:f5:90:75:fb:31:c6:db:dd:d4:3b:a5:2d:fc:44: 2f:e5:94:84:09:ec:54:29:ea:40:af:fb:3e:2b:13:b4:4b:c9: 3d:29:f9:e9:fb:88:92:d4:b2:4f:47:c9:97:ea:dc:0a:2d:6f: 18:16:f1:f6:31:67:3f:96:bf:5b:fa:bd:59:87:a2:42:28:bf: 5f:10:87:52:e2:6b:80:e6:ca:89:a1:22:79:63:23:4a:c3:2e: 99:fe:e7:d7:9c:81:69:a5:7c:28:f8:0e:18:8c:67:e4:8e:bb: ef:bc:ae:ab:4b:25:17:b6:aa:a3:fd:0d:e9:01:01:a4:8b:6d: 96:0e:2b:19:33:4c:94:0b:d8:d4:81:de:12:01:46:3b:01:22: 72:ca:4f:c6:ec:e4:c9:a1:17:65:fd:71:ea:12:1c:93:d7:23: c7:7a:a9:4e:43:d6:d2:3c:59:2f:10:d2:e1:ce:36:34:e1:4e: fd:8d:37:6c -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAbwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MjE4MzYxMTAvBgNVBAUTKDY2QjIxNEQxMUM3Rjk2MUE5NUM0MjU2NzAzNDI4RTkz Q0JBNzI5ODYwHhcNMjUwNzE5MDMzNTQ4WhcNMjUwNzI2MDMzNTQ4WjAYMRYwFAYD VQQDEw02ODdiMTI5NS03ZGRhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAm4cDVq6oaAPmh7HcBBDN7Ye8rdnnzK6ZxalIoBYVax+c9/IuRO1w24ux2hTH hfaS5Mk5CqB5Kx+cXCYosdkI2kq1zAS6rNS4TrEaGklprrrwxV/wv5w5qR1Eu26n 8u9+uEN/5Be71Dt+/wVkyb5yenqrtBuwJNWhIZ09UJmDMINiBEqNeit1Z+HUwI7L eW3pgnvL7sdpx1wpgbZuUc6v7hxsn7nU0rmm1QCcBUGn4sxm2NKlw3S3DS7yt6e8 VtAVvFStxXhmgZ7R69aDAXFAsuHt4FsgRrws3w5FKdFGCCTawkcj8FUkxDzzBoso EgwkZnwFhTHAcc1yBR/ueec0pwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFHXmBMeE VjkkCtC4pb5lLxszeZb7MB8GA1UdIwQYMBaAFGayFNEcf5YalcQlZwNCjpPLpymG MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyMTgzNi9GMURCMUQ0NEY0 RkIxMUVEOTM4Rjk0NDdDNEY5QUUwMi9acklVMFJ4X2xocVZ4Q1ZuQTBLT2s4dW5L WVkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1pySVUwUnhfbGhxVnhDVm5BMEtPazh1bktZWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy MTgzNi9GMURCMUQ0NEY0RkIxMUVEOTM4Rjk0NDdDNEY5QUUwMi9acklVMFJ4X2xo cVZ4Q1ZuQTBLT2s4dW5LWVkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAxed/iXJyJkFtd2PTTHeqUHTz7AXa7jdYKZtsnyjsOqrbB/u155y/K Yty1hHq6Usge3fFZHFUwkrUa9x2y910SypkSaFYpo8MKVK+E9ZB1+zHG293UO6Ut /EQv5ZSECexUKepAr/s+KxO0S8k9Kfnp+4iS1LJPR8mX6twKLW8YFvH2MWc/lr9b +r1Zh6JCKL9fEIdS4muA5sqJoSJ5YyNKwy6Z/ufXnIFppXwo+A4YjGfkjrvvvK6r SyUXtqqj/Q3pAQGki22WDisZM0yUC9jUgd4SAUY7ASJyyk/G7OTJoRdl/XHqEhyT 1yPHeqlOQ9bSPFkvENLhzjY04U79jTds -----END CERTIFICATE-----Generated at Sun Jul 20 18:56:14 2025 by rpki-client