$ rpki-client -vvf rpki.apnic.net/member_repository/A91A12C4/FBF14E726C1711EFBDBFD50BC4F9AE02/ZsWxkEs1xH2UUI7Aoazag2je9Kk.mft File: ZsWxkEs1xH2UUI7Aoazag2je9Kk.mft (raw, json) Hash identifier: /OraaM2s33gLSTfeXrzstyX6CsYv7c9IuZkiCEY0w68= Subject key identifier: A6:82:62:11:41:D8:FE:4B:67:AF:89:F4:0B:1A:4D:CC:A9:B1:4E:47 Authority key identifier: 66:C5:B1:90:4B:35:C4:7D:94:50:8E:C0:A1:AC:DA:83:68:DE:F4:A9 Certificate issuer: /CN=A91A12C4/serialNumber=66C5B1904B35C47D94508EC0A1ACDA8368DEF4A9 Certificate serial: A2 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ZsWxkEs1xH2UUI7Aoazag2je9Kk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A12C4/FBF14E726C1711EFBDBFD50BC4F9AE02/ZsWxkEs1xH2UUI7Aoazag2je9Kk.mft Manifest number: A2 Signing time: Sat 19 Jul 2025 06:27:11 +0000 Manifest this update: Sat 19 Jul 2025 06:27:10 +0000 Manifest next update: Sat 26 Jul 2025 06:27:10 +0000 Files and hashes: 1: ZsWxkEs1xH2UUI7Aoazag2je9Kk.crl (hash: boEK4UCzJPwyjbTnAuOqk0iMPgzZLXz/FAWnBEkc+os=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A12C4/FBF14E726C1711EFBDBFD50BC4F9AE02/ZsWxkEs1xH2UUI7Aoazag2je9Kk.crl rsync://rpki.apnic.net/member_repository/A91A12C4/FBF14E726C1711EFBDBFD50BC4F9AE02/ZsWxkEs1xH2UUI7Aoazag2je9Kk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ZsWxkEs1xH2UUI7Aoazag2je9Kk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 26 Jul 2025 06:27:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 162 (0xa2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A12C4, serialNumber=66C5B1904B35C47D94508EC0A1ACDA8368DEF4A9 Validity Not Before: Jul 19 06:27:10 2025 GMT Not After : Jul 26 06:27:10 2025 GMT Subject: CN=687b3abe-015c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d0:83:0e:12:7d:e3:43:05:3f:59:6f:16:88:27: 76:46:0b:b4:4d:51:11:42:aa:41:25:07:48:88:52: 5a:fb:f3:17:45:5e:29:0b:67:83:99:1a:72:63:79: d0:e3:49:64:b5:9a:30:fe:a4:c6:a1:ca:b3:b7:27: d4:48:20:ec:22:8a:3a:8d:9a:be:cd:4b:42:83:81: c4:1b:59:7b:f5:e2:20:9f:84:2f:da:2f:d7:85:41: b7:96:b6:41:54:39:76:a6:13:33:16:10:1b:e3:ee: cf:cf:a4:90:36:e5:1c:e6:98:72:d3:e5:c8:db:21: b1:51:0c:fb:a2:eb:b5:e5:4c:d0:5b:e0:a9:59:d9: 7f:80:2a:b6:22:3d:89:89:e5:1f:92:c6:78:4c:28: a5:15:f1:e5:18:00:aa:3f:6e:d2:f8:ba:26:b8:5a: ad:34:b4:97:9a:c5:e7:00:32:c3:08:86:f4:84:d4: ba:5b:58:1e:16:a3:cb:f7:ce:a8:13:62:5e:e6:bc: 7e:83:c9:de:bb:c0:86:8e:12:ac:1d:02:06:ab:2b: 81:12:fd:6c:11:87:fb:26:ac:88:b9:67:3e:56:83: c0:d3:c7:95:b0:fe:17:94:49:54:76:17:ca:e2:ff: 4a:e3:92:2d:82:e0:89:0b:f3:0e:2e:91:ed:43:b1: 05:3d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A6:82:62:11:41:D8:FE:4B:67:AF:89:F4:0B:1A:4D:CC:A9:B1:4E:47 X509v3 Authority Key Identifier: keyid:66:C5:B1:90:4B:35:C4:7D:94:50:8E:C0:A1:AC:DA:83:68:DE:F4:A9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A12C4/FBF14E726C1711EFBDBFD50BC4F9AE02/ZsWxkEs1xH2UUI7Aoazag2je9Kk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ZsWxkEs1xH2UUI7Aoazag2je9Kk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A12C4/FBF14E726C1711EFBDBFD50BC4F9AE02/ZsWxkEs1xH2UUI7Aoazag2je9Kk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 9b:88:de:66:2c:56:e4:e0:a2:b1:4b:5d:05:75:2d:ce:bd:3b: 97:75:c1:e4:e5:4b:d6:ff:ed:c8:ad:bc:01:11:21:7e:ce:26: 24:dd:c1:94:f9:cd:5c:5f:e0:8d:3e:a0:77:a1:b5:67:3e:bf: 03:59:ce:f7:84:87:12:e5:ae:9d:a0:de:68:f3:83:39:61:d5: b3:c1:f2:ad:0b:c0:f8:cc:82:47:eb:e2:ab:22:ec:54:6c:8d: 1a:fb:46:89:76:15:80:b5:c3:4c:36:63:eb:68:22:84:0f:45: 1c:07:cf:a1:26:75:3e:56:c7:15:a7:96:2c:1a:7f:29:89:08: 73:01:b9:88:db:b4:91:5e:12:8a:71:36:5f:23:4a:3e:92:f0: 0e:a4:28:a0:60:73:85:da:9b:55:b2:4d:d0:e7:8c:b2:33:ef: 59:b9:db:c5:2b:24:1a:e2:e3:3c:be:e0:3d:37:0a:4a:9b:5a: 4a:10:86:d6:17:9a:23:e4:20:fa:9b:d6:f6:a7:54:46:7d:38: 38:78:5a:b1:6e:ea:45:48:e7:ad:70:69:b8:e9:21:24:27:86: e0:14:4a:4a:d5:15:bc:9a:13:a1:35:e0:3b:04:44:a3:de:ef: ac:c7:09:dc:4f:25:f8:5b:80:0e:39:c9:23:f0:85:27:c3:97: f2:07:07:f8 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAKIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTEyQzQxMTAvBgNVBAUTKDY2QzVCMTkwNEIzNUM0N0Q5NDUwOEVDMEExQUNEQTgz NjhERUY0QTkwHhcNMjUwNzE5MDYyNzEwWhcNMjUwNzI2MDYyNzEwWjAYMRYwFAYD VQQDEw02ODdiM2FiZS0wMTVjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0IMOEn3jQwU/WW8WiCd2Rgu0TVERQqpBJQdIiFJa+/MXRV4pC2eDmRpyY3nQ 40lktZow/qTGocqztyfUSCDsIoo6jZq+zUtCg4HEG1l79eIgn4Qv2i/XhUG3lrZB VDl2phMzFhAb4+7Pz6SQNuUc5phy0+XI2yGxUQz7ouu15UzQW+CpWdl/gCq2Ij2J ieUfksZ4TCilFfHlGACqP27S+LomuFqtNLSXmsXnADLDCIb0hNS6W1geFqPL986o E2Je5rx+g8neu8CGjhKsHQIGqyuBEv1sEYf7JqyIuWc+VoPA08eVsP4XlElUdhfK 4v9K45ItguCJC/MOLpHtQ7EFPQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFKaCYhFB 2P5LZ6+J9AsaTcypsU5HMB8GA1UdIwQYMBaAFGbFsZBLNcR9lFCOwKGs2oNo3vSp MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBMTJDNC9GQkYxNEU3MjZD MTcxMUVGQkRCRkQ1MEJDNEY5QUUwMi9ac1d4a0VzMXhIMlVVSTdBb2F6YWcyamU5 S2suY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1pzV3hrRXMxeEgyVVVJN0FvYXphZzJqZTlLay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB MTJDNC9GQkYxNEU3MjZDMTcxMUVGQkRCRkQ1MEJDNEY5QUUwMi9ac1d4a0VzMXhI MlVVSTdBb2F6YWcyamU5S2subWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCbiN5mLFbk4KKxS10FdS3OvTuXdcHk5UvW/+3IrbwBESF+ziYk3cGU +c1cX+CNPqB3obVnPr8DWc73hIcS5a6doN5o84M5YdWzwfKtC8D4zIJH6+KrIuxU bI0a+0aJdhWAtcNMNmPraCKED0UcB8+hJnU+VscVp5YsGn8piQhzAbmI27SRXhKK cTZfI0o+kvAOpCigYHOF2ptVsk3Q54yyM+9ZudvFKyQa4uM8vuA9NwpKm1pKEIbW F5oj5CD6m9b2p1RGfTg4eFqxbupFSOetcGm46SEkJ4bgFEpK1RW8mhOhNeA7BESj 3u+sxwncTyX4W4AOOckj8IUnw5fyBwf4 -----END CERTIFICATE-----Generated at Sun Jul 20 03:16:44 2025 by rpki-client