$ rpki-client -vvf rpki.apnic.net/member_repository/A916523A/E75B878C4CDD11F0BFA08F80C4F9AE02/zES2e9GPRfbhN63kcxM1pVGmYSc.mft File: zES2e9GPRfbhN63kcxM1pVGmYSc.mft (raw, json) Hash identifier: dYYk08g77QASJm1cfMmX16WW3BvMYFwIQ2WDchRJP5U= Subject key identifier: 77:58:56:17:6D:D9:44:D9:41:0C:D9:A6:DE:88:EE:FF:77:59:53:94 Authority key identifier: CC:44:B6:7B:D1:8F:45:F6:E1:37:AD:E4:73:13:35:A5:51:A6:61:27 Certificate issuer: /CN=A916523A/serialNumber=CC44B67BD18F45F6E137ADE4731335A551A66127 Certificate serial: 09 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/zES2e9GPRfbhN63kcxM1pVGmYSc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A916523A/E75B878C4CDD11F0BFA08F80C4F9AE02/zES2e9GPRfbhN63kcxM1pVGmYSc.mft Manifest number: 08 Signing time: Tue 01 Jul 2025 08:57:53 +0000 Manifest this update: Tue 01 Jul 2025 08:57:52 +0000 Manifest next update: Tue 08 Jul 2025 08:57:52 +0000 Files and hashes: 1: zES2e9GPRfbhN63kcxM1pVGmYSc.crl (hash: NkS9/Cz4yKYjvKyf35fRDPNQTIqUu23pT03kk0EgK+Q=) 2: 469F3FE44CDF11F08D2EFF16C4F9AE02.roa (hash: V/fASBu8lY37YHb4lDAmyOYyJCBMY5CbifIBgISs7Nk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A916523A/E75B878C4CDD11F0BFA08F80C4F9AE02/zES2e9GPRfbhN63kcxM1pVGmYSc.crl rsync://rpki.apnic.net/member_repository/A916523A/E75B878C4CDD11F0BFA08F80C4F9AE02/zES2e9GPRfbhN63kcxM1pVGmYSc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/zES2e9GPRfbhN63kcxM1pVGmYSc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 08 Jul 2025 08:57:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 9 (0x9) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A916523A, serialNumber=CC44B67BD18F45F6E137ADE4731335A551A66127 Validity Not Before: Jul 1 08:57:52 2025 GMT Not After : Jul 8 08:57:52 2025 GMT Subject: CN=6863a311-2827 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:d6:59:00:3c:f3:19:62:67:43:84:48:90:05: 0d:c8:6b:0c:26:86:cd:ce:40:14:4a:b0:cf:d7:1f: 27:f9:df:3a:82:79:af:35:95:b6:77:91:cd:55:40: 85:66:ed:52:f5:08:c4:62:00:f3:b4:b8:ef:64:f6: f2:88:45:cf:04:5e:8d:9f:31:74:40:19:19:30:57: 3c:14:f4:96:5b:8e:e6:da:40:0f:33:42:8b:d7:96: 0d:e9:13:30:3e:24:69:38:a8:35:89:d0:6c:a4:83: 5a:c6:1a:ef:99:9b:b1:85:62:e3:21:c1:8f:e2:04: 41:0f:d5:82:21:63:f5:e9:a9:f0:57:02:a5:8a:85: a6:d7:37:6f:1c:6e:00:6b:4a:fd:bb:40:f7:b3:9a: bd:9b:23:0b:66:51:3d:53:7f:ce:b7:e6:0f:0d:43: 61:b0:fe:59:9c:a8:fd:f0:90:77:b7:32:2a:9e:0b: 93:5a:ce:6d:8d:7e:f6:2c:31:8e:59:a7:1c:fd:57: f6:1b:50:51:8f:18:33:92:f7:6c:dc:74:c1:8d:2d: d3:50:8b:68:1b:15:9f:5a:5a:53:75:52:5a:db:30: 38:fa:f7:14:2f:66:48:ef:ad:a2:cf:7f:ce:07:1c: 1c:cb:21:ee:5c:67:6b:72:98:50:8d:bc:82:f4:59: 67:4d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 77:58:56:17:6D:D9:44:D9:41:0C:D9:A6:DE:88:EE:FF:77:59:53:94 X509v3 Authority Key Identifier: keyid:CC:44:B6:7B:D1:8F:45:F6:E1:37:AD:E4:73:13:35:A5:51:A6:61:27 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A916523A/E75B878C4CDD11F0BFA08F80C4F9AE02/zES2e9GPRfbhN63kcxM1pVGmYSc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/zES2e9GPRfbhN63kcxM1pVGmYSc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A916523A/E75B878C4CDD11F0BFA08F80C4F9AE02/zES2e9GPRfbhN63kcxM1pVGmYSc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 73:db:20:29:77:89:79:1b:17:04:75:67:8b:65:e6:f6:53:5e: fe:77:b0:f8:ab:81:2b:1b:3f:4b:a5:ca:2a:e1:35:1c:7a:ce: e3:a4:c4:6d:be:85:08:48:a8:73:98:c7:42:4b:7b:7f:e6:5a: da:02:a8:77:b4:a6:3a:2f:9d:db:de:0c:f0:9c:c4:49:c3:8c: d7:07:3a:8e:14:11:88:f2:e8:35:8f:ee:0a:1f:ea:25:8e:44: 34:88:d2:3d:2e:10:b7:6b:50:e4:54:8e:38:8f:77:e0:ee:f5: 86:8d:55:6b:4c:63:a4:58:be:ad:1f:a5:f2:29:ac:f8:f1:61: 60:50:2a:40:91:1a:b4:19:4f:66:1e:26:01:c9:c2:a8:30:3f: ce:cc:30:4c:a4:61:6f:d3:a8:3d:50:bc:0b:8e:13:cd:7c:ee: 62:b5:71:23:bc:03:df:c3:c5:d2:f4:33:82:e3:e0:63:15:11: b2:f3:ce:da:2b:44:c3:2e:8c:e7:03:31:f5:4d:e9:fb:6f:e2: 4f:16:de:e5:3b:c9:52:f9:58:80:1a:bc:ec:11:a0:74:83:5b: d8:f0:07:9f:1d:f9:e4:7b:3f:78:05:16:ec:51:87:ca:01:88: 29:5e:9d:d3:d7:45:21:3f:cc:d3:73:a9:1b:a6:97:99:b4:a9: 80:10:e7:e3 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBCTANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE2 NTIzQTExMC8GA1UEBRMoQ0M0NEI2N0JEMThGNDVGNkUxMzdBREU0NzMxMzM1QTU1 MUE2NjEyNzAeFw0yNTA3MDEwODU3NTJaFw0yNTA3MDgwODU3NTJaMBgxFjAUBgNV BAMTDTY4NjNhMzExLTI4MjcwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQC+1lkAPPMZYmdDhEiQBQ3Iawwmhs3OQBRKsM/XHyf53zqCea81lbZ3kc1VQIVm 7VL1CMRiAPO0uO9k9vKIRc8EXo2fMXRAGRkwVzwU9JZbjubaQA8zQovXlg3pEzA+ JGk4qDWJ0Gykg1rGGu+Zm7GFYuMhwY/iBEEP1YIhY/XpqfBXAqWKhabXN28cbgBr Sv27QPezmr2bIwtmUT1Tf8635g8NQ2Gw/lmcqP3wkHe3MiqeC5Nazm2NfvYsMY5Z pxz9V/YbUFGPGDOS92zcdMGNLdNQi2gbFZ9aWlN1UlrbMDj69xQvZkjvraLPf84H HBzLIe5cZ2tymFCNvIL0WWdNAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUd1hWF23Z RNlBDNmm3oju/3dZU5QwHwYDVR0jBBgwFoAUzES2e9GPRfbhN63kcxM1pVGmYScw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTY1MjNBL0U3NUI4NzhDNENE RDExRjBCRkEwOEY4MEM0RjlBRTAyL3pFUzJlOUdQUmZiaE42M2tjeE0xcFZHbVlT Yy5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvekVTMmU5R1BSZmJoTjYza2N4TTFwVkdtWVNjLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTY1 MjNBL0U3NUI4NzhDNENERDExRjBCRkEwOEY4MEM0RjlBRTAyL3pFUzJlOUdQUmZi aE42M2tjeE0xcFZHbVlTYy5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAHPbICl3iXkbFwR1Z4tl5vZTXv53sPirgSsbP0ulyirhNRx6zuOkxG2+ hQhIqHOYx0JLe3/mWtoCqHe0pjovndveDPCcxEnDjNcHOo4UEYjy6DWP7gof6iWO RDSI0j0uELdrUORUjjiPd+Du9YaNVWtMY6RYvq0fpfIprPjxYWBQKkCRGrQZT2Ye JgHJwqgwP87MMEykYW/TqD1QvAuOE8187mK1cSO8A9/DxdL0M4Lj4GMVEbLzztor RMMujOcDMfVN6ftv4k8W3uU7yVL5WIAavOwRoHSDW9jwB58d+eR7P3gFFuxRh8oB iClendPXRSE/zNNzqRuml5m0qYAQ5+M= -----END CERTIFICATE-----Generated at Tue Jul 1 18:28:19 2025 by rpki-client