$ rpki-client -vvf rpki.apnic.net/member_repository/A9111A27/662518BE6E3411EA841D426EC4F9AE02/zPWB9MM8pEQeGAfjlsXv51-oLdA.mft File: zPWB9MM8pEQeGAfjlsXv51-oLdA.mft (raw, json) Hash identifier: PSVv4trViNCGZb2BzuqkVf7GOOK/x2NRLUm4x5r3Txo= Subject key identifier: 15:90:6F:17:21:E9:F5:CA:51:3C:96:AC:CD:4A:94:3F:45:78:98:80 Authority key identifier: CC:F5:81:F4:C3:3C:A4:44:1E:18:07:E3:96:C5:EF:E7:5F:A8:2D:D0 Certificate issuer: /CN=A9111A27/serialNumber=CCF581F4C33CA4441E1807E396C5EFE75FA82DD0 Certificate serial: 0A66 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/zPWB9MM8pEQeGAfjlsXv51-oLdA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9111A27/662518BE6E3411EA841D426EC4F9AE02/zPWB9MM8pEQeGAfjlsXv51-oLdA.mft Manifest number: 0A5B Signing time: Sun 24 Aug 2025 19:41:29 +0000 Manifest this update: Sun 24 Aug 2025 19:41:29 +0000 Manifest next update: Sun 31 Aug 2025 19:41:29 +0000 Files and hashes: 1: zPWB9MM8pEQeGAfjlsXv51-oLdA.crl (hash: mmR9hS7svadYIlX4Lm+pZM9BiQbGFgclBm+VNMBnkG0=) 2: EECBCEBE6E3511EABDE26D73C4F9AE02.roa (hash: tiW51zPCEni34tefKfGb0te4DWKoSNtDHrcuOGks1io=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9111A27/662518BE6E3411EA841D426EC4F9AE02/zPWB9MM8pEQeGAfjlsXv51-oLdA.crl rsync://rpki.apnic.net/member_repository/A9111A27/662518BE6E3411EA841D426EC4F9AE02/zPWB9MM8pEQeGAfjlsXv51-oLdA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/zPWB9MM8pEQeGAfjlsXv51-oLdA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 31 Aug 2025 19:03:43 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2662 (0xa66) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9111A27, serialNumber=CCF581F4C33CA4441E1807E396C5EFE75FA82DD0 Validity Not Before: Aug 24 19:41:29 2025 GMT Not After : Aug 31 19:41:29 2025 GMT Subject: CN=68ab6ae9-2be1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:db:f2:6e:b9:3e:ae:e0:5b:ca:f6:c9:99:2c:21: 2e:cc:8e:46:01:3e:21:91:2a:77:5d:ac:1a:a4:af: 39:b3:11:da:d4:4e:cb:b5:22:57:63:80:aa:56:0d: fd:8b:69:ba:2d:40:74:75:19:ff:10:9c:c5:f5:a9: 4e:25:d2:14:58:17:57:8f:c8:5a:7e:6e:6e:6e:77: cb:65:b2:f2:a5:a0:e3:ad:61:05:bc:82:18:ed:9d: e2:6b:fb:7c:e3:e0:ca:53:ce:f6:9c:12:31:c1:fd: ad:4b:3e:4b:9b:43:50:ab:6e:e9:39:5f:78:3c:c7: 85:2a:95:f3:7d:da:2a:99:2c:5a:7f:a5:30:d6:b0: 55:e6:3e:17:3b:5f:d9:be:b5:51:2c:58:c1:bc:02: 3e:d2:22:bf:74:01:1f:76:33:5c:ea:b8:c0:7f:16: e3:22:83:e1:06:dd:0b:47:c4:77:0b:f0:3e:4e:17: 35:3e:24:ed:e9:10:33:06:3c:37:a7:05:84:14:a7: 07:12:94:7b:e7:64:1f:16:fc:b2:4b:20:86:ae:b7: 53:6a:e3:13:5e:69:8f:4e:84:5e:f8:ff:49:38:4f: f7:64:93:d8:cd:3c:5d:4f:51:50:e7:74:a1:5d:cd: 2f:86:04:25:7b:06:1c:c0:ce:8f:e9:67:45:78:8e: 9b:f9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 15:90:6F:17:21:E9:F5:CA:51:3C:96:AC:CD:4A:94:3F:45:78:98:80 X509v3 Authority Key Identifier: keyid:CC:F5:81:F4:C3:3C:A4:44:1E:18:07:E3:96:C5:EF:E7:5F:A8:2D:D0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9111A27/662518BE6E3411EA841D426EC4F9AE02/zPWB9MM8pEQeGAfjlsXv51-oLdA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/zPWB9MM8pEQeGAfjlsXv51-oLdA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9111A27/662518BE6E3411EA841D426EC4F9AE02/zPWB9MM8pEQeGAfjlsXv51-oLdA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 27:91:f2:28:22:b7:0a:24:bc:6d:a2:07:c8:3d:9b:06:c2:83: d9:34:e1:94:9a:66:0d:d8:8a:3d:85:41:30:53:0b:9a:74:bd: 20:b8:64:97:f0:1e:dc:b2:18:35:25:46:b1:15:0a:19:e6:fc: d6:f9:a2:4a:06:55:2a:04:a6:ec:3f:c7:b1:34:e0:22:18:5c: 6d:29:80:5f:bd:ee:3c:99:c8:c8:70:f6:6e:93:ee:09:5e:75: 72:d1:ce:18:2f:09:68:fc:34:c8:2b:56:86:a6:85:4a:8b:1d: af:f8:a9:4b:2a:45:bb:24:af:88:47:9f:6e:4f:1c:49:64:76: 09:89:2e:bd:ab:d7:d3:73:79:d4:5d:36:ee:07:02:fd:e6:f1: e7:25:b6:35:62:42:ce:d2:5f:f2:ba:d7:62:dd:bf:d2:c0:2f: 7b:1b:10:89:f5:d5:7a:a8:88:42:7d:ac:e6:72:08:38:10:4a: dd:05:d3:02:a1:b4:3f:38:ce:f0:e7:32:57:b1:b5:4e:dc:1f: 36:ee:27:de:a3:17:d4:15:a3:1b:c0:63:cb:e6:f1:5e:77:98: e6:bf:f7:fd:d6:a6:3b:db:43:88:c4:00:5c:50:fa:3d:f7:11: 01:83:9a:88:b1:43:57:56:6f:af:35:c9:76:71:da:69:0f:34: b1:d4:05:d9 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCmYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MTFBMjcxMTAvBgNVBAUTKENDRjU4MUY0QzMzQ0E0NDQxRTE4MDdFMzk2QzVFRkU3 NUZBODJERDAwHhcNMjUwODI0MTk0MTI5WhcNMjUwODMxMTk0MTI5WjAYMRYwFAYD VQQDEw02OGFiNmFlOS0yYmUxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA2/JuuT6u4FvK9smZLCEuzI5GAT4hkSp3XawapK85sxHa1E7LtSJXY4CqVg39 i2m6LUB0dRn/EJzF9alOJdIUWBdXj8hafm5ubnfLZbLypaDjrWEFvIIY7Z3ia/t8 4+DKU872nBIxwf2tSz5Lm0NQq27pOV94PMeFKpXzfdoqmSxaf6Uw1rBV5j4XO1/Z vrVRLFjBvAI+0iK/dAEfdjNc6rjAfxbjIoPhBt0LR8R3C/A+Thc1PiTt6RAzBjw3 pwWEFKcHEpR752QfFvyySyCGrrdTauMTXmmPToRe+P9JOE/3ZJPYzTxdT1FQ53Sh Xc0vhgQlewYcwM6P6WdFeI6b+QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFBWQbxch 6fXKUTyWrM1KlD9FeJiAMB8GA1UdIwQYMBaAFMz1gfTDPKREHhgH45bF7+dfqC3Q MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExMUEyNy82NjI1MThCRTZF MzQxMUVBODQxRDQyNkVDNEY5QUUwMi96UFdCOU1NOHBFUWVHQWZqbHNYdjUxLW9M ZEEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3pQV0I5TU04cEVRZUdBZmpsc1h2NTEtb0xkQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx MUEyNy82NjI1MThCRTZFMzQxMUVBODQxRDQyNkVDNEY5QUUwMi96UFdCOU1NOHBF UWVHQWZqbHNYdjUxLW9MZEEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAnkfIoIrcKJLxtogfIPZsGwoPZNOGUmmYN2Io9hUEwUwuadL0guGSX 8B7cshg1JUaxFQoZ5vzW+aJKBlUqBKbsP8exNOAiGFxtKYBfve48mcjIcPZuk+4J XnVy0c4YLwlo/DTIK1aGpoVKix2v+KlLKkW7JK+IR59uTxxJZHYJiS69q9fTc3nU XTbuBwL95vHnJbY1YkLO0l/yutdi3b/SwC97GxCJ9dV6qIhCfazmcgg4EErdBdMC obQ/OM7w5zJXsbVO3B827ifeoxfUFaMbwGPL5vFed5jmv/f91qY720OIxABcUPo9 9xEBg5qIsUNXVm+vNcl2cdppDzSx1AXZ -----END CERTIFICATE-----Generated at Sun Aug 24 22:18:29 2025 by rpki-client