$ rpki-client -vvf rpki.apnic.net/member_repository/A914D249/76CE8456E02511ECB2FB0E27C4F9AE02/zQysDn6E4-geSHYXTiwhQIUJQmk.mft File: zQysDn6E4-geSHYXTiwhQIUJQmk.mft (raw, json) Hash identifier: LuMNAdsxRvhyXRY0HHzkBj/2Nnl4i4QeWvRK2RDK1oY= Subject key identifier: D9:68:56:3E:1D:62:1F:64:A8:0E:3D:A7:B0:0C:AE:DE:D2:21:1F:68 Authority key identifier: CD:0C:AC:0E:7E:84:E3:E8:1E:48:76:17:4E:2C:21:40:85:09:42:69 Certificate issuer: /CN=A914D249/serialNumber=CD0CAC0E7E84E3E81E4876174E2C214085094269 Certificate serial: 0334 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/zQysDn6E4-geSHYXTiwhQIUJQmk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914D249/76CE8456E02511ECB2FB0E27C4F9AE02/zQysDn6E4-geSHYXTiwhQIUJQmk.mft Manifest number: 0329 Signing time: Sat 23 Aug 2025 01:25:26 +0000 Manifest this update: Sat 23 Aug 2025 01:25:25 +0000 Manifest next update: Sat 30 Aug 2025 01:25:25 +0000 Files and hashes: 1: zQysDn6E4-geSHYXTiwhQIUJQmk.crl (hash: 9aytdVUYK+QHkY2XLWYKgUfuFhR+TzD70V9U20VFs6g=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914D249/76CE8456E02511ECB2FB0E27C4F9AE02/zQysDn6E4-geSHYXTiwhQIUJQmk.crl rsync://rpki.apnic.net/member_repository/A914D249/76CE8456E02511ECB2FB0E27C4F9AE02/zQysDn6E4-geSHYXTiwhQIUJQmk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/zQysDn6E4-geSHYXTiwhQIUJQmk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Aug 2025 01:25:24 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 820 (0x334) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914D249, serialNumber=CD0CAC0E7E84E3E81E4876174E2C214085094269 Validity Not Before: Aug 23 01:25:25 2025 GMT Not After : Aug 30 01:25:25 2025 GMT Subject: CN=68a91885-cb88 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d8:c1:72:be:46:ed:83:af:aa:f9:a7:4d:e4:5f: fb:55:ce:36:4d:fa:c8:9e:c9:d5:de:a7:b0:db:12: 85:1f:59:e4:54:85:7a:49:47:65:cb:92:36:b9:bb: ef:c6:5d:64:c8:1a:99:28:c3:31:50:ce:c2:ca:79: 8f:44:15:a4:54:a7:33:44:db:47:5d:93:97:c9:17: ad:db:00:82:e3:93:4f:11:53:5d:9a:12:d0:01:a3: f0:77:8c:b3:0b:da:92:a8:91:e7:5c:e6:07:9b:79: 09:94:c2:29:7d:99:60:df:6f:fc:84:d6:f5:fe:eb: 6e:a0:86:2e:a2:65:30:61:d0:eb:55:56:51:9c:46: c5:fa:53:ab:c0:41:ee:c6:da:a3:8a:11:04:e0:c2: 29:5e:00:9e:9c:d3:08:db:20:d3:97:18:95:4a:36: 8c:b8:51:a9:e5:db:0f:66:1d:1c:35:da:a1:0c:5b: 53:95:8b:0d:10:e2:b1:fb:e4:8d:14:31:92:09:57: 65:2b:88:5b:e0:3f:f7:26:29:91:85:88:6f:21:5c: 88:d3:52:48:2c:61:56:a0:e8:e8:b2:c5:47:c1:dd: ef:d0:2b:16:2f:a3:bb:de:84:ae:d3:4f:dd:57:95: 9a:34:f9:cd:f2:12:5c:94:13:60:ca:1f:e9:c4:d7: fd:99 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D9:68:56:3E:1D:62:1F:64:A8:0E:3D:A7:B0:0C:AE:DE:D2:21:1F:68 X509v3 Authority Key Identifier: keyid:CD:0C:AC:0E:7E:84:E3:E8:1E:48:76:17:4E:2C:21:40:85:09:42:69 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914D249/76CE8456E02511ECB2FB0E27C4F9AE02/zQysDn6E4-geSHYXTiwhQIUJQmk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/zQysDn6E4-geSHYXTiwhQIUJQmk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914D249/76CE8456E02511ECB2FB0E27C4F9AE02/zQysDn6E4-geSHYXTiwhQIUJQmk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 73:03:38:13:f2:5a:3b:ec:c2:41:3e:b6:f3:ef:e2:ed:2f:61: d4:02:38:00:61:05:68:8d:91:1b:ea:9a:e3:98:07:dc:40:b1: 31:37:38:48:bd:52:b1:f3:1a:09:89:ae:94:f3:34:aa:8f:d6: 3f:5c:0e:fc:1e:13:6d:ae:d3:2c:6b:2b:51:c5:8f:05:1c:b7: b3:56:02:14:11:c4:14:f4:6f:e9:26:63:91:25:15:0a:e2:76: 91:5e:1e:4e:cb:c0:7e:4b:a9:6a:45:e9:f7:93:f2:f2:92:dd: 20:e2:89:5e:26:c6:60:79:5f:65:5e:67:18:ef:44:da:a6:9d: 69:14:dc:63:17:52:c7:5b:d5:b5:8a:89:84:a0:55:c4:8b:41: 2d:cd:e5:9e:88:54:33:80:85:c8:fe:8d:74:01:35:b7:03:da: 34:56:6a:08:06:00:9c:dd:7a:ab:cb:88:38:47:2e:fc:05:42: bd:73:cd:bc:bc:fa:a8:03:41:46:59:61:3a:ff:63:ff:20:c5: 04:08:eb:f2:78:d7:44:f1:e9:d4:20:fa:a5:0c:fd:71:83:2f: 6f:1b:49:2d:07:7a:30:f0:21:4c:c4:41:1b:98:6c:d1:a8:84: 97:aa:e9:75:0a:a5:bd:bb:18:77:0f:ec:a3:a3:06:70:fc:fc: 03:52:29:0c -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAzQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NEQyNDkxMTAvBgNVBAUTKENEMENBQzBFN0U4NEUzRTgxRTQ4NzYxNzRFMkMyMTQw ODUwOTQyNjkwHhcNMjUwODIzMDEyNTI1WhcNMjUwODMwMDEyNTI1WjAYMRYwFAYD VQQDEw02OGE5MTg4NS1jYjg4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA2MFyvkbtg6+q+adN5F/7Vc42TfrInsnV3qew2xKFH1nkVIV6SUdly5I2ubvv xl1kyBqZKMMxUM7CynmPRBWkVKczRNtHXZOXyRet2wCC45NPEVNdmhLQAaPwd4yz C9qSqJHnXOYHm3kJlMIpfZlg32/8hNb1/utuoIYuomUwYdDrVVZRnEbF+lOrwEHu xtqjihEE4MIpXgCenNMI2yDTlxiVSjaMuFGp5dsPZh0cNdqhDFtTlYsNEOKx++SN FDGSCVdlK4hb4D/3JimRhYhvIVyI01JILGFWoOjossVHwd3v0CsWL6O73oSu00/d V5WaNPnN8hJclBNgyh/pxNf9mQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFNloVj4d Yh9kqA49p7AMrt7SIR9oMB8GA1UdIwQYMBaAFM0MrA5+hOPoHkh2F04sIUCFCUJp MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0RDI0OS83NkNFODQ1NkUw MjUxMUVDQjJGQjBFMjdDNEY5QUUwMi96UXlzRG42RTQtZ2VTSFlYVGl3aFFJVUpR bWsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3pReXNEbjZFNC1nZVNIWVhUaXdoUUlVSlFtay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 RDI0OS83NkNFODQ1NkUwMjUxMUVDQjJGQjBFMjdDNEY5QUUwMi96UXlzRG42RTQt Z2VTSFlYVGl3aFFJVUpRbWsubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBzAzgT8lo77MJBPrbz7+LtL2HUAjgAYQVojZEb6prjmAfcQLExNzhI vVKx8xoJia6U8zSqj9Y/XA78HhNtrtMsaytRxY8FHLezVgIUEcQU9G/pJmORJRUK 4naRXh5Oy8B+S6lqRen3k/Lykt0g4oleJsZgeV9lXmcY70Tapp1pFNxjF1LHW9W1 iomEoFXEi0EtzeWeiFQzgIXI/o10ATW3A9o0VmoIBgCc3Xqry4g4Ry78BUK9c828 vPqoA0FGWWE6/2P/IMUECOvyeNdE8enUIPqlDP1xgy9vG0ktB3ow8CFMxEEbmGzR qISXqul1CqW9uxh3D+yjowZw/PwDUikM -----END CERTIFICATE-----Generated at Sun Aug 24 22:20:55 2025 by rpki-client