$ rpki-client -vvf rpki.apnic.net/member_repository/A9162C2C/0A11DB16EA8911EB80B1C83BC4F9AE02/ZrIR6cz336FdfNNyNqX1gvGUUwo.mft File: ZrIR6cz336FdfNNyNqX1gvGUUwo.mft (raw, json) Hash identifier: KkTOn5o9au26t1HD4ZDPOyJdZAohQ1hB7Ly5JdekIUY= Subject key identifier: B6:57:E2:ED:6B:C0:45:99:BC:1C:18:94:15:3C:F1:78:D2:C8:43:95 Authority key identifier: 66:B2:11:E9:CC:F7:DF:A1:5D:7C:D3:72:36:A5:F5:82:F1:94:53:0A Certificate issuer: /CN=A9162C2C/serialNumber=66B211E9CCF7DFA15D7CD37236A5F582F194530A Certificate serial: 056F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ZrIR6cz336FdfNNyNqX1gvGUUwo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9162C2C/0A11DB16EA8911EB80B1C83BC4F9AE02/ZrIR6cz336FdfNNyNqX1gvGUUwo.mft Manifest number: 056E Signing time: Tue 22 Jul 2025 23:40:30 +0000 Manifest this update: Tue 22 Jul 2025 23:40:29 +0000 Manifest next update: Tue 29 Jul 2025 23:40:29 +0000 Files and hashes: 1: ZrIR6cz336FdfNNyNqX1gvGUUwo.crl (hash: FZEflrteXRvREdWI7WjvUeHkaIkiJ6M/HBpYvbhUAc4=) 2: B9FDAFA436D511F09007A616C4F9AE02.roa (hash: MeI4R0oAgTPsUf/VMkIqcR3kjhi5q45xUtuSQyszvpg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9162C2C/0A11DB16EA8911EB80B1C83BC4F9AE02/ZrIR6cz336FdfNNyNqX1gvGUUwo.crl rsync://rpki.apnic.net/member_repository/A9162C2C/0A11DB16EA8911EB80B1C83BC4F9AE02/ZrIR6cz336FdfNNyNqX1gvGUUwo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ZrIR6cz336FdfNNyNqX1gvGUUwo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 29 Jul 2025 23:40:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1391 (0x56f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9162C2C, serialNumber=66B211E9CCF7DFA15D7CD37236A5F582F194530A Validity Not Before: Jul 22 23:40:29 2025 GMT Not After : Jul 29 23:40:29 2025 GMT Subject: CN=6880216d-f277 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cf:55:af:fb:1e:2f:e4:12:53:39:91:9e:2f:ec: be:6c:4b:3a:ef:05:8a:ce:d3:89:d2:30:09:bf:5b: ba:a5:f5:9c:37:54:55:dc:6d:b2:d3:48:83:78:d8: 17:51:a8:71:84:10:1a:31:9c:84:a8:f9:3d:63:69: ca:7a:e7:5b:d6:16:85:ff:1e:36:50:48:9e:07:93: 72:ef:85:b1:05:f8:c1:70:e2:26:45:2a:e5:b3:dd: 7d:4d:4e:38:f1:69:32:8e:4e:ae:5b:83:0f:61:8f: 14:a4:f2:1d:06:d1:3f:3e:cd:8d:d1:db:45:1b:21: e3:b3:40:e3:07:e8:f4:a2:41:af:a2:c5:26:e8:2e: d4:82:6c:11:47:2d:cb:0b:5b:c4:7c:1d:f8:33:49: 01:65:9a:06:45:82:4c:7e:47:e0:7d:3e:08:6b:7a: a5:0a:32:92:21:b3:d7:8c:1c:dc:8a:a5:21:ff:3d: b5:8b:49:f9:3d:39:1c:13:a9:fd:bb:4d:06:6e:ad: 2f:5e:32:d5:0c:28:03:f3:c7:e6:3a:1b:19:c0:63: f9:5b:2f:81:c3:94:5f:8d:f8:81:78:b4:6d:f3:bd: 45:3a:b3:ba:e2:89:cd:9d:93:50:2a:bb:ec:72:30: 6b:73:a3:8d:f2:96:81:44:6f:6f:f5:99:17:7a:f2: 2b:ef Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B6:57:E2:ED:6B:C0:45:99:BC:1C:18:94:15:3C:F1:78:D2:C8:43:95 X509v3 Authority Key Identifier: keyid:66:B2:11:E9:CC:F7:DF:A1:5D:7C:D3:72:36:A5:F5:82:F1:94:53:0A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9162C2C/0A11DB16EA8911EB80B1C83BC4F9AE02/ZrIR6cz336FdfNNyNqX1gvGUUwo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ZrIR6cz336FdfNNyNqX1gvGUUwo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9162C2C/0A11DB16EA8911EB80B1C83BC4F9AE02/ZrIR6cz336FdfNNyNqX1gvGUUwo.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 1f:b6:95:e7:77:e6:7a:78:59:e4:a0:30:03:6a:46:25:5f:59: d4:2d:79:97:4a:90:03:44:a0:1e:00:9a:3b:ef:2e:ee:b7:32: 93:53:17:57:e5:f8:e9:8b:a8:3e:65:9b:69:01:da:1e:15:43: 3a:00:54:78:50:b7:f6:bf:ad:80:33:b6:3a:ed:5a:77:c8:2d: e3:bb:d4:67:4f:e5:59:68:45:a2:e1:a6:e4:30:76:e6:94:d2: a7:32:05:66:8e:b9:d0:5a:36:91:b9:16:dd:79:43:e0:e7:46: ff:ca:1d:46:dc:77:f5:f1:b0:96:07:07:eb:a1:2c:34:1c:82: 72:c6:a2:68:0a:30:a9:90:1f:7d:1e:cf:75:0c:d0:9f:02:12: 8e:39:dd:08:5b:70:89:38:12:81:5c:ac:95:6c:18:ba:a7:79: 27:73:14:80:7b:df:5b:82:e7:51:1c:9e:f2:a7:97:da:4c:99: d4:15:0a:2f:63:b9:1a:2c:bc:54:cc:f7:d8:8e:b9:cc:d5:48: 0b:93:dd:79:19:98:05:d8:70:5f:58:dd:1c:63:b7:a4:50:ce: e5:9e:cf:3b:50:c2:c5:ac:70:42:2e:c3:ef:0c:8f:39:67:4e: ea:24:6f:5b:8e:5e:39:e6:c8:d1:bb:8f:f9:3e:23:0d:10:77: 3c:81:76:eb -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBW8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NjJDMkMxMTAvBgNVBAUTKDY2QjIxMUU5Q0NGN0RGQTE1RDdDRDM3MjM2QTVGNTgy RjE5NDUzMEEwHhcNMjUwNzIyMjM0MDI5WhcNMjUwNzI5MjM0MDI5WjAYMRYwFAYD VQQDEw02ODgwMjE2ZC1mMjc3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAz1Wv+x4v5BJTOZGeL+y+bEs67wWKztOJ0jAJv1u6pfWcN1RV3G2y00iDeNgX UahxhBAaMZyEqPk9Y2nKeudb1haF/x42UEieB5Ny74WxBfjBcOImRSrls919TU44 8Wkyjk6uW4MPYY8UpPIdBtE/Ps2N0dtFGyHjs0DjB+j0okGvosUm6C7UgmwRRy3L C1vEfB34M0kBZZoGRYJMfkfgfT4Ia3qlCjKSIbPXjBzciqUh/z21i0n5PTkcE6n9 u00Gbq0vXjLVDCgD88fmOhsZwGP5Wy+Bw5RfjfiBeLRt871FOrO64onNnZNQKrvs cjBrc6ON8paBRG9v9ZkXevIr7wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFLZX4u1r wEWZvBwYlBU88XjSyEOVMB8GA1UdIwQYMBaAFGayEenM99+hXXzTcjal9YLxlFMK MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2MkMyQy8wQTExREIxNkVB ODkxMUVCODBCMUM4M0JDNEY5QUUwMi9acklSNmN6MzM2RmRmTk55TnFYMWd2R1VV d28uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1pySVI2Y3ozMzZGZGZOTnlOcVgxZ3ZHVVV3by5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 MkMyQy8wQTExREIxNkVBODkxMUVCODBCMUM4M0JDNEY5QUUwMi9acklSNmN6MzM2 RmRmTk55TnFYMWd2R1VVd28ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAftpXnd+Z6eFnkoDADakYlX1nULXmXSpADRKAeAJo77y7utzKTUxdX 5fjpi6g+ZZtpAdoeFUM6AFR4ULf2v62AM7Y67Vp3yC3ju9RnT+VZaEWi4abkMHbm lNKnMgVmjrnQWjaRuRbdeUPg50b/yh1G3Hf18bCWBwfroSw0HIJyxqJoCjCpkB99 Hs91DNCfAhKOOd0IW3CJOBKBXKyVbBi6p3kncxSAe99bgudRHJ7yp5faTJnUFQov Y7kaLLxUzPfYjrnM1UgLk915GZgF2HBfWN0cY7ekUM7lns87UMLFrHBCLsPvDI85 Z07qJG9bjl455sjRu4/5PiMNEHc8gXbr -----END CERTIFICATE-----Generated at Wed Jul 23 08:22:15 2025 by rpki-client