$ rpki-client -vvf rpki.apnic.net/member_repository/A91E22E3/84B0A85E170C11EF94F17C14C4F9AE02/ZgXWapgEftsGpJSzdC9eyCuB3LA.mft File: ZgXWapgEftsGpJSzdC9eyCuB3LA.mft (raw, json) Hash identifier: sxHmxoXXWbhJSBusm9Mp7PCgrvDNTbDYAihA9qnrLe4= Subject key identifier: 99:CB:32:25:0C:98:74:0D:BC:6B:80:00:B7:03:F7:6B:A5:B3:AD:FB Authority key identifier: 66:05:D6:6A:98:04:7E:DB:06:A4:94:B3:74:2F:5E:C8:2B:81:DC:B0 Certificate issuer: /CN=A91E22E3/serialNumber=6605D66A98047EDB06A494B3742F5EC82B81DCB0 Certificate serial: DA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ZgXWapgEftsGpJSzdC9eyCuB3LA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E22E3/84B0A85E170C11EF94F17C14C4F9AE02/ZgXWapgEftsGpJSzdC9eyCuB3LA.mft Manifest number: DA Signing time: Mon 21 Jul 2025 05:39:35 +0000 Manifest this update: Mon 21 Jul 2025 05:39:35 +0000 Manifest next update: Mon 28 Jul 2025 05:39:35 +0000 Files and hashes: 1: ZgXWapgEftsGpJSzdC9eyCuB3LA.crl (hash: pO9Qtf2lGM0YuOIRtEPrPeecqBYAXsGWOT52u0kOgqY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E22E3/84B0A85E170C11EF94F17C14C4F9AE02/ZgXWapgEftsGpJSzdC9eyCuB3LA.crl rsync://rpki.apnic.net/member_repository/A91E22E3/84B0A85E170C11EF94F17C14C4F9AE02/ZgXWapgEftsGpJSzdC9eyCuB3LA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ZgXWapgEftsGpJSzdC9eyCuB3LA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 28 Jul 2025 05:39:34 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 218 (0xda) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E22E3, serialNumber=6605D66A98047EDB06A494B3742F5EC82B81DCB0 Validity Not Before: Jul 21 05:39:35 2025 GMT Not After : Jul 28 05:39:35 2025 GMT Subject: CN=687dd297-891f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f3:a3:ef:49:0d:b3:0c:20:56:47:63:ca:2d:70: 5d:d8:63:c7:fa:35:7f:f3:a8:91:2d:05:fe:5f:59: 69:93:1e:6a:8d:3e:56:c5:6c:b2:fa:6e:98:ce:8e: 63:98:94:22:48:e7:26:dd:52:9a:7e:84:28:0c:d3: 55:9b:b2:b1:e4:21:8a:4d:c5:b7:e1:a1:fc:eb:7a: 2d:76:5b:ac:8a:80:a8:1c:fd:d8:58:e0:dc:f2:23: 34:4d:2d:18:6f:b6:75:d7:6f:d9:b6:72:46:1f:3e: 60:ec:e1:71:86:37:65:e6:2a:81:c0:ba:32:d0:ae: 58:bb:ac:32:ea:61:c4:bf:68:74:1d:89:5c:78:b9: e7:8f:d4:af:69:df:62:85:56:98:09:7e:5a:e5:93: 56:ea:b0:1b:ea:5d:d0:8f:88:2a:e2:0c:e3:d0:e0: 08:bf:06:a5:6a:95:0e:6d:fc:c0:44:a4:92:42:f9: 5b:36:0d:cb:d6:29:a8:52:cc:94:95:c7:8c:79:26: e2:e6:2d:aa:de:2e:d3:3a:95:72:fa:69:a4:c4:e4: d3:f1:24:7b:25:96:7b:84:02:cc:d5:cc:b3:c5:3a: 93:86:26:41:98:11:85:dc:38:cb:7e:cc:5f:a3:f7: 93:bd:f3:f6:6b:4c:ea:23:bb:2e:b6:8c:8a:11:9d: d0:77 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 99:CB:32:25:0C:98:74:0D:BC:6B:80:00:B7:03:F7:6B:A5:B3:AD:FB X509v3 Authority Key Identifier: keyid:66:05:D6:6A:98:04:7E:DB:06:A4:94:B3:74:2F:5E:C8:2B:81:DC:B0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E22E3/84B0A85E170C11EF94F17C14C4F9AE02/ZgXWapgEftsGpJSzdC9eyCuB3LA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ZgXWapgEftsGpJSzdC9eyCuB3LA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E22E3/84B0A85E170C11EF94F17C14C4F9AE02/ZgXWapgEftsGpJSzdC9eyCuB3LA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption cb:80:c5:d2:f9:7d:73:66:e6:e7:91:55:0b:72:81:9c:0f:d3: 16:5e:3b:b6:07:b2:b3:44:e4:bf:96:2e:63:bd:4b:23:3b:bc: 5e:a3:d5:4b:8f:90:c5:5d:a2:e8:59:1e:0a:1d:10:fa:e7:3e: 03:0a:41:3d:ef:41:14:95:26:03:e1:a2:b4:3b:8f:92:74:bb: 53:f0:83:3d:a5:4d:41:3f:a5:a3:d2:6f:18:e2:0d:f4:b9:96: 80:17:2c:e3:ab:3e:82:a9:19:49:62:b4:9a:80:1d:5d:8a:f6: 20:92:47:f5:27:dc:5f:52:a4:56:6b:38:26:3f:2b:d1:d7:57: d2:21:4f:2d:cd:03:9f:db:3c:e6:b7:06:25:e7:1c:d2:35:f4: 94:58:87:41:c6:f1:a9:89:de:59:4f:2c:71:18:b1:04:e5:e8: 57:75:97:fb:a0:8d:b4:85:6a:04:7d:6a:d2:bd:b5:9d:0b:2b: 63:1f:a1:a9:71:e4:00:da:9a:ff:61:80:08:35:e0:51:e8:32: 88:77:54:5b:89:9d:c4:aa:e0:86:82:08:bf:b6:0f:8d:49:d1: 98:0d:dc:3d:ba:ae:09:24:5b:e9:3b:87:59:c2:71:15:47:03: a5:3e:2c:20:b1:5e:e9:44:1b:12:77:55:b4:bd:2d:4c:ec:fd: ac:df:e2:9a -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICANowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTIyRTMxMTAvBgNVBAUTKDY2MDVENjZBOTgwNDdFREIwNkE0OTRCMzc0MkY1RUM4 MkI4MURDQjAwHhcNMjUwNzIxMDUzOTM1WhcNMjUwNzI4MDUzOTM1WjAYMRYwFAYD VQQDEw02ODdkZDI5Ny04OTFmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA86PvSQ2zDCBWR2PKLXBd2GPH+jV/86iRLQX+X1lpkx5qjT5WxWyy+m6Yzo5j mJQiSOcm3VKafoQoDNNVm7Kx5CGKTcW34aH863otdlusioCoHP3YWODc8iM0TS0Y b7Z112/ZtnJGHz5g7OFxhjdl5iqBwLoy0K5Yu6wy6mHEv2h0HYlceLnnj9Svad9i hVaYCX5a5ZNW6rAb6l3Qj4gq4gzj0OAIvwalapUObfzARKSSQvlbNg3L1imoUsyU lceMeSbi5i2q3i7TOpVy+mmkxOTT8SR7JZZ7hALM1cyzxTqThiZBmBGF3DjLfsxf o/eTvfP2a0zqI7sutoyKEZ3QdwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJnLMiUM mHQNvGuAALcD92uls637MB8GA1UdIwQYMBaAFGYF1mqYBH7bBqSUs3QvXsgrgdyw MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFMjJFMy84NEIwQTg1RTE3 MEMxMUVGOTRGMTdDMTRDNEY5QUUwMi9aZ1hXYXBnRWZ0c0dwSlN6ZEM5ZXlDdUIz TEEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1pnWFdhcGdFZnRzR3BKU3pkQzlleUN1QjNMQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF MjJFMy84NEIwQTg1RTE3MEMxMUVGOTRGMTdDMTRDNEY5QUUwMi9aZ1hXYXBnRWZ0 c0dwSlN6ZEM5ZXlDdUIzTEEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQDLgMXS+X1zZubnkVULcoGcD9MWXju2B7KzROS/li5jvUsjO7xeo9VL j5DFXaLoWR4KHRD65z4DCkE970EUlSYD4aK0O4+SdLtT8IM9pU1BP6Wj0m8Y4g30 uZaAFyzjqz6CqRlJYrSagB1divYgkkf1J9xfUqRWazgmPyvR11fSIU8tzQOf2zzm twYl5xzSNfSUWIdBxvGpid5ZTyxxGLEE5ehXdZf7oI20hWoEfWrSvbWdCytjH6Gp ceQA2pr/YYAINeBR6DKId1RbiZ3EquCGggi/tg+NSdGYDdw9uq4JJFvpO4dZwnEV RwOlPiwgsV7pRBsSd1W0vS1M7P2s3+Ka -----END CERTIFICATE-----Generated at Tue Jul 22 00:01:17 2025 by rpki-client