$ rpki-client -vvf rpki.apnic.net/member_repository/A914DA9E/D1BE809C1F3211F0BD22BA68C4F9AE02/ZsMG0j-L_qqkTMzFVzlpUfmGxr0.mft File: ZsMG0j-L_qqkTMzFVzlpUfmGxr0.mft (raw, json) Hash identifier: D0V+OgAuoNfm/RPr8FFxePg0VZ8yCyF0KqCIxvihFWY= Subject key identifier: EA:8A:2E:91:62:12:21:93:C9:39:82:7F:BC:A6:C9:02:EE:57:DC:B7 Authority key identifier: 66:C3:06:D2:3F:8B:FE:AA:A4:4C:CC:C5:57:39:69:51:F9:86:C6:BD Certificate issuer: /CN=A914DA9E/serialNumber=66C306D23F8BFEAAA44CCCC557396951F986C6BD Certificate serial: 31 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ZsMG0j-L_qqkTMzFVzlpUfmGxr0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914DA9E/D1BE809C1F3211F0BD22BA68C4F9AE02/ZsMG0j-L_qqkTMzFVzlpUfmGxr0.mft Manifest number: 2F Signing time: Sat 19 Jul 2025 07:58:14 +0000 Manifest this update: Sat 19 Jul 2025 07:58:13 +0000 Manifest next update: Sat 26 Jul 2025 07:58:13 +0000 Files and hashes: 1: ZsMG0j-L_qqkTMzFVzlpUfmGxr0.crl (hash: E+brLiuzdwsiktQjhEX4Y4fm2A23SuHYRGixPqQJHTE=) 2: 7E10232C1F3411F0BFBD616EC4F9AE02.roa (hash: ziKAkTq8TDHqlAMGRhZZxal4YT5BAAI3FkEOnc8uPao=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914DA9E/D1BE809C1F3211F0BD22BA68C4F9AE02/ZsMG0j-L_qqkTMzFVzlpUfmGxr0.crl rsync://rpki.apnic.net/member_repository/A914DA9E/D1BE809C1F3211F0BD22BA68C4F9AE02/ZsMG0j-L_qqkTMzFVzlpUfmGxr0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ZsMG0j-L_qqkTMzFVzlpUfmGxr0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 26 Jul 2025 07:58:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 49 (0x31) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914DA9E, serialNumber=66C306D23F8BFEAAA44CCCC557396951F986C6BD Validity Not Before: Jul 19 07:58:13 2025 GMT Not After : Jul 26 07:58:13 2025 GMT Subject: CN=687b5015-480b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:59:c4:c8:66:bc:3a:04:f3:e4:d6:d5:03:8d: 3f:f6:72:b5:a5:cb:5c:72:04:1d:93:85:3f:b2:ca: c8:8c:c4:28:79:b3:3d:b1:0c:a9:6f:9c:16:77:f5: 49:06:ef:59:35:c3:d7:4c:1f:4c:75:46:37:06:21: b5:ed:f5:8c:5a:b6:ae:02:71:90:86:6b:f4:d7:0b: 51:4e:8c:9a:71:e4:1c:96:be:f2:65:73:f4:a0:e6: c5:c6:d6:ac:56:59:75:52:8d:c0:e4:1f:74:df:14: 0b:76:2a:2d:d8:e2:0e:7e:d0:91:05:01:91:11:21: 8f:06:a1:3a:cd:7d:c2:02:db:9b:d7:25:2c:d5:4f: c3:40:f7:51:3f:fb:07:24:28:40:74:4f:19:dc:cc: 89:30:a4:20:a3:3d:29:02:c9:29:ba:f5:ce:ce:64: 7b:d5:a4:7f:50:4b:4c:85:00:d5:e8:2a:30:54:ea: 31:64:1e:4d:f2:ca:c7:db:1c:9c:e0:47:65:94:87: c7:21:02:ae:ab:fd:21:37:bf:db:41:6e:bd:7f:04: 36:fa:25:88:ba:3e:9b:5d:a7:f4:81:3d:29:54:45: 9b:1f:77:88:10:6f:6c:f4:8a:da:83:a7:97:8b:84: 61:62:a1:a6:69:fb:7f:c8:24:a5:97:8b:13:8f:52: ed:61 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EA:8A:2E:91:62:12:21:93:C9:39:82:7F:BC:A6:C9:02:EE:57:DC:B7 X509v3 Authority Key Identifier: keyid:66:C3:06:D2:3F:8B:FE:AA:A4:4C:CC:C5:57:39:69:51:F9:86:C6:BD X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914DA9E/D1BE809C1F3211F0BD22BA68C4F9AE02/ZsMG0j-L_qqkTMzFVzlpUfmGxr0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ZsMG0j-L_qqkTMzFVzlpUfmGxr0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914DA9E/D1BE809C1F3211F0BD22BA68C4F9AE02/ZsMG0j-L_qqkTMzFVzlpUfmGxr0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 13:87:30:09:a0:26:c6:d8:5b:3a:ed:2b:42:56:ff:5c:0b:d3: 85:fd:7d:06:e1:18:cd:59:90:ec:da:39:fe:9f:e0:89:13:e0: 62:6f:5a:0c:d6:69:5a:b9:67:3e:3c:78:4f:4f:86:d4:4f:a8: 3d:c4:a2:b4:61:6e:7b:0d:7d:f8:3c:94:cb:ce:3e:34:28:97: d9:86:56:35:56:6d:93:d1:eb:b3:8a:6b:ab:f2:b9:2b:20:b1: e9:45:97:13:17:c4:43:5b:31:58:a5:d4:b5:bf:1e:ce:47:0d: 69:80:1a:de:62:8a:81:de:ad:92:6e:76:19:ae:ae:2c:06:42: 9f:58:e3:07:a3:36:89:19:ff:f5:96:4d:bb:8d:8d:e3:f5:0f: bc:60:63:d3:b4:ae:09:d4:b4:ce:e0:08:64:e0:22:9a:52:ce: 9d:fc:62:46:34:54:38:29:3f:01:fd:56:60:0e:b7:2c:fd:5a: 2a:00:b1:63:9a:94:22:a3:0a:9a:3e:38:92:e9:ce:86:e8:f3: 6b:c6:3f:f5:96:d1:37:8e:46:f7:78:1a:7c:ff:5d:f0:3d:50: ef:0e:6f:9e:c2:61:b1:fc:1e:24:ed:60:40:c7:83:96:17:9d: 96:fd:66:e4:b0:1c:af:ed:b6:58:f3:4c:65:0a:43:ec:6d:1a: 5f:08:c8:09 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBMTANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE0 REE5RTExMC8GA1UEBRMoNjZDMzA2RDIzRjhCRkVBQUE0NENDQ0M1NTczOTY5NTFG OTg2QzZCRDAeFw0yNTA3MTkwNzU4MTNaFw0yNTA3MjYwNzU4MTNaMBgxFjAUBgNV BAMTDTY4N2I1MDE1LTQ4MGIwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQC9WcTIZrw6BPPk1tUDjT/2crWly1xyBB2ThT+yysiMxCh5sz2xDKlvnBZ39UkG 71k1w9dMH0x1RjcGIbXt9Yxatq4CcZCGa/TXC1FOjJpx5ByWvvJlc/Sg5sXG1qxW WXVSjcDkH3TfFAt2Ki3Y4g5+0JEFAZERIY8GoTrNfcIC25vXJSzVT8NA91E/+wck KEB0TxnczIkwpCCjPSkCySm69c7OZHvVpH9QS0yFANXoKjBU6jFkHk3yysfbHJzg R2WUh8chAq6r/SE3v9tBbr1/BDb6JYi6Pptdp/SBPSlURZsfd4gQb2z0itqDp5eL hGFioaZp+3/IJKWXixOPUu1hAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQU6ooukWIS IZPJOYJ/vKbJAu5X3LcwHwYDVR0jBBgwFoAUZsMG0j+L/qqkTMzFVzlpUfmGxr0w DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTREQTlFL0QxQkU4MDlDMUYz MjExRjBCRDIyQkE2OEM0RjlBRTAyL1pzTUcwai1MX3Fxa1RNekZWemxwVWZtR3hy MC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvWnNNRzBqLUxfcXFrVE16RlZ6bHBVZm1HeHIwLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTRE QTlFL0QxQkU4MDlDMUYzMjExRjBCRDIyQkE2OEM0RjlBRTAyL1pzTUcwai1MX3Fx a1RNekZWemxwVWZtR3hyMC5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBABOHMAmgJsbYWzrtK0JW/1wL04X9fQbhGM1ZkOzaOf6f4IkT4GJvWgzW aVq5Zz48eE9PhtRPqD3EorRhbnsNffg8lMvOPjQol9mGVjVWbZPR67OKa6vyuSsg selFlxMXxENbMVil1LW/Hs5HDWmAGt5iioHerZJudhmuriwGQp9Y4wejNokZ//WW TbuNjeP1D7xgY9O0rgnUtM7gCGTgIppSzp38YkY0VDgpPwH9VmAOtyz9WioAsWOa lCKjCpo+OJLpzobo82vGP/WW0TeORvd4Gnz/XfA9UO8Ob57CYbH8HiTtYEDHg5YX nZb9ZuSwHK/ttljzTGUKQ+xtGl8IyAk= -----END CERTIFICATE-----Generated at Sun Jul 20 08:03:10 2025 by rpki-client