$ rpki-client -vvf rpki.apnic.net/member_repository/A916A071/280B09A483BE11EA8E1DF384C4F9AE02/zPKlJcCQFETKePBbk5LABFeVZ2E.mft File: zPKlJcCQFETKePBbk5LABFeVZ2E.mft (raw, json) Hash identifier: jjNW/RbAgxZ4jaWwO/KzoqJLqEB4zVqAGql3D7SGLO8= Subject key identifier: 3F:0D:A0:02:FC:F6:A7:6C:DC:3D:00:38:95:5C:4D:BF:F6:9F:B8:7C Authority key identifier: CC:F2:A5:25:C0:90:14:44:CA:78:F0:5B:93:92:C0:04:57:95:67:61 Certificate issuer: /CN=A916A071/serialNumber=CCF2A525C0901444CA78F05B9392C00457956761 Certificate serial: 09DB Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/zPKlJcCQFETKePBbk5LABFeVZ2E.cer Subject info access: rsync://rpki.apnic.net/member_repository/A916A071/280B09A483BE11EA8E1DF384C4F9AE02/zPKlJcCQFETKePBbk5LABFeVZ2E.mft Manifest number: 09D4 Signing time: Thu 24 Jul 2025 20:06:38 +0000 Manifest this update: Thu 24 Jul 2025 20:06:38 +0000 Manifest next update: Thu 31 Jul 2025 20:06:38 +0000 Files and hashes: 1: zPKlJcCQFETKePBbk5LABFeVZ2E.crl (hash: TevY9ixp7uyuUQ4qwPl5+bPjUbkdZrghlsx35DQxdKQ=) 2: 9BAC68CC83C211EABCB66612C4F9AE02.roa (hash: W5ePsoGWgomEoWgiTPJkjSegEKVfUxA0uguQndmw+Ac=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A916A071/280B09A483BE11EA8E1DF384C4F9AE02/zPKlJcCQFETKePBbk5LABFeVZ2E.crl rsync://rpki.apnic.net/member_repository/A916A071/280B09A483BE11EA8E1DF384C4F9AE02/zPKlJcCQFETKePBbk5LABFeVZ2E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/zPKlJcCQFETKePBbk5LABFeVZ2E.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 31 Jul 2025 20:06:37 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2523 (0x9db) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A916A071, serialNumber=CCF2A525C0901444CA78F05B9392C00457956761 Validity Not Before: Jul 24 20:06:38 2025 GMT Not After : Jul 31 20:06:38 2025 GMT Subject: CN=6882924e-826f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d5:21:1c:1f:69:91:3f:3a:b1:2a:b1:69:bd:7d: 36:71:b9:b4:65:3b:e5:81:31:ef:b1:37:03:6a:a2: c2:97:2b:71:de:23:57:32:88:5c:1d:e4:af:d6:ca: 7e:6f:dd:c7:c9:08:b3:3a:55:49:41:98:70:d0:18: 0f:e8:3a:df:b5:4b:19:f9:8e:12:c7:8f:6c:2a:32: 8b:65:d4:bb:08:27:4a:e0:a9:92:a6:cc:78:87:39: 19:52:c4:c1:01:9d:2e:30:7b:00:de:27:4b:59:a6: 52:6c:d3:36:44:f6:b0:47:b7:50:75:f2:0a:81:f9: a7:20:66:11:3f:de:83:b1:af:bc:d8:6f:99:8f:b3: 74:9d:d8:d2:b5:b5:30:5a:cd:2f:c0:94:72:09:b7: a2:b6:55:af:7d:fd:6f:66:2e:6f:31:9d:6a:0d:82: 15:47:dc:b9:ce:3e:37:de:54:39:4f:66:eb:78:02: 70:e1:8e:35:27:71:ce:a0:47:4f:8d:2e:16:61:e2: 73:62:5e:72:c5:ae:bb:43:4a:a5:bf:9c:eb:8c:44: 0d:01:cf:4d:a3:2a:78:61:12:8d:ed:ab:4a:1a:62: d2:2e:15:63:b2:06:27:20:18:78:3d:65:ee:a4:8b: fe:b5:87:0a:cd:01:cb:1b:f0:8f:3e:0b:33:55:5d: d4:cd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3F:0D:A0:02:FC:F6:A7:6C:DC:3D:00:38:95:5C:4D:BF:F6:9F:B8:7C X509v3 Authority Key Identifier: keyid:CC:F2:A5:25:C0:90:14:44:CA:78:F0:5B:93:92:C0:04:57:95:67:61 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A916A071/280B09A483BE11EA8E1DF384C4F9AE02/zPKlJcCQFETKePBbk5LABFeVZ2E.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/zPKlJcCQFETKePBbk5LABFeVZ2E.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A916A071/280B09A483BE11EA8E1DF384C4F9AE02/zPKlJcCQFETKePBbk5LABFeVZ2E.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a4:28:36:f4:c7:73:08:68:d4:38:f4:10:55:ae:13:92:3e:dd: 4c:cc:d1:e8:0f:87:33:82:bf:9a:10:0c:01:e7:46:e2:24:01: 61:4b:3e:47:fa:4b:67:de:b8:f6:23:b4:6d:8f:3f:cc:30:32: 56:fb:e9:d1:72:20:b9:9f:4c:a7:4e:4c:16:29:62:0d:98:1a: 70:6a:40:4b:b5:36:cc:7b:fc:04:19:f9:32:cd:d5:9f:bc:84: 8e:30:73:96:67:40:fb:7f:74:47:02:e2:85:6b:9a:0e:5f:1c: 78:3d:7a:12:47:44:0b:b4:11:98:fa:cb:91:8f:cc:d8:82:93: ec:e8:fd:65:1e:82:6a:91:b5:3f:e9:c4:45:eb:4e:75:fe:76: 69:35:81:f1:83:47:cb:aa:76:00:0c:0f:46:83:07:b0:13:3d: ae:ce:b4:6d:3b:11:fc:d3:a1:e2:27:81:bf:02:b3:f7:e9:c8: b6:ee:5a:60:7f:67:79:8e:6a:e0:86:a3:9a:51:c0:c2:b1:4f: 2c:b8:15:0a:b9:ec:91:52:a5:46:4d:03:34:3e:fc:b8:d8:32: 44:55:3f:8e:4a:46:0c:df:7d:c1:07:5e:6e:a3:75:4b:58:ac: 55:42:fe:9a:11:c7:02:c3:bc:bf:f5:2f:d5:c3:71:59:08:32: de:5d:b5:cc -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCdswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NkEwNzExMTAvBgNVBAUTKENDRjJBNTI1QzA5MDE0NDRDQTc4RjA1QjkzOTJDMDA0 NTc5NTY3NjEwHhcNMjUwNzI0MjAwNjM4WhcNMjUwNzMxMjAwNjM4WjAYMRYwFAYD VQQDEw02ODgyOTI0ZS04MjZmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1SEcH2mRPzqxKrFpvX02cbm0ZTvlgTHvsTcDaqLClytx3iNXMohcHeSv1sp+ b93HyQizOlVJQZhw0BgP6DrftUsZ+Y4Sx49sKjKLZdS7CCdK4KmSpsx4hzkZUsTB AZ0uMHsA3idLWaZSbNM2RPawR7dQdfIKgfmnIGYRP96Dsa+82G+Zj7N0ndjStbUw Ws0vwJRyCbeitlWvff1vZi5vMZ1qDYIVR9y5zj433lQ5T2breAJw4Y41J3HOoEdP jS4WYeJzYl5yxa67Q0qlv5zrjEQNAc9Noyp4YRKN7atKGmLSLhVjsgYnIBh4PWXu pIv+tYcKzQHLG/CPPgszVV3UzQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFD8NoAL8 9qds3D0AOJVcTb/2n7h8MB8GA1UdIwQYMBaAFMzypSXAkBREynjwW5OSwARXlWdh MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2QTA3MS8yODBCMDlBNDgz QkUxMUVBOEUxREYzODRDNEY5QUUwMi96UEtsSmNDUUZFVEtlUEJiazVMQUJGZVZa MkUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3pQS2xKY0NRRkVUS2VQQmJrNUxBQkZlVloyRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 QTA3MS8yODBCMDlBNDgzQkUxMUVBOEUxREYzODRDNEY5QUUwMi96UEtsSmNDUUZF VEtlUEJiazVMQUJGZVZaMkUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCkKDb0x3MIaNQ49BBVrhOSPt1MzNHoD4czgr+aEAwB50biJAFhSz5H +ktn3rj2I7Rtjz/MMDJW++nRciC5n0ynTkwWKWINmBpwakBLtTbMe/wEGfkyzdWf vISOMHOWZ0D7f3RHAuKFa5oOXxx4PXoSR0QLtBGY+suRj8zYgpPs6P1lHoJqkbU/ 6cRF6051/nZpNYHxg0fLqnYADA9GgwewEz2uzrRtOxH806HiJ4G/ArP36ci27lpg f2d5jmrghqOaUcDCsU8suBUKueyRUqVGTQM0Pvy42DJEVT+OSkYM333BB15uo3VL WKxVQv6aEccCw7y/9S/Vw3FZCDLeXbXM -----END CERTIFICATE-----Generated at Fri Jul 25 05:26:18 2025 by rpki-client