$ rpki-client -vvf rpki.apnic.net/member_repository/A9111A27/662518BE6E3411EA841D426EC4F9AE02/zPWB9MM8pEQeGAfjlsXv51-oLdA.mft File: zPWB9MM8pEQeGAfjlsXv51-oLdA.mft (raw, json) Hash identifier: dpf9u/hppaqwhdstiqf6z9epWYHVP81pMIIZlGmmmuQ= Subject key identifier: 15:25:0B:59:17:A4:04:78:5C:B5:07:19:D3:17:76:0B:C2:A6:09:08 Authority key identifier: CC:F5:81:F4:C3:3C:A4:44:1E:18:07:E3:96:C5:EF:E7:5F:A8:2D:D0 Certificate issuer: /CN=A9111A27/serialNumber=CCF581F4C33CA4441E1807E396C5EFE75FA82DD0 Certificate serial: 0A65 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/zPWB9MM8pEQeGAfjlsXv51-oLdA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9111A27/662518BE6E3411EA841D426EC4F9AE02/zPWB9MM8pEQeGAfjlsXv51-oLdA.mft Manifest number: 0A5A Signing time: Fri 22 Aug 2025 19:49:16 +0000 Manifest this update: Fri 22 Aug 2025 19:49:15 +0000 Manifest next update: Fri 29 Aug 2025 19:49:15 +0000 Files and hashes: 1: zPWB9MM8pEQeGAfjlsXv51-oLdA.crl (hash: 69XRDkljg4ay4SotuKO26wP2J98hRWvnm32myo4zG0I=) 2: EECBCEBE6E3511EABDE26D73C4F9AE02.roa (hash: tiW51zPCEni34tefKfGb0te4DWKoSNtDHrcuOGks1io=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9111A27/662518BE6E3411EA841D426EC4F9AE02/zPWB9MM8pEQeGAfjlsXv51-oLdA.crl rsync://rpki.apnic.net/member_repository/A9111A27/662518BE6E3411EA841D426EC4F9AE02/zPWB9MM8pEQeGAfjlsXv51-oLdA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/zPWB9MM8pEQeGAfjlsXv51-oLdA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Aug 2025 19:49:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2661 (0xa65) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9111A27, serialNumber=CCF581F4C33CA4441E1807E396C5EFE75FA82DD0 Validity Not Before: Aug 22 19:49:15 2025 GMT Not After : Aug 29 19:49:15 2025 GMT Subject: CN=68a8c9bc-f01b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:a4:5e:c3:64:4b:5c:78:56:d0:95:e2:19:c3: 6e:a2:14:3e:a2:a7:ae:d6:41:2a:0e:81:1a:88:d8: f5:56:b2:60:76:84:0e:eb:1e:45:63:5c:98:6c:19: cc:04:c0:0d:ec:d8:9f:da:66:14:9d:db:8c:c5:e2: 3c:46:bc:5a:fa:2e:90:24:b2:c5:cd:07:a1:ba:4d: 63:30:ec:e6:61:bd:e5:47:cf:16:39:45:89:2e:3d: 2d:d3:aa:57:b0:e9:33:4a:23:4e:93:a4:9a:2c:fd: 7a:e8:34:79:bc:57:ee:b6:08:00:e7:58:fb:93:79: 5a:3d:b1:1e:e8:1e:53:44:ec:81:e3:0b:62:91:e6: 08:1c:9a:87:c0:b5:bb:57:5a:41:55:35:d6:a1:7c: cf:fd:fc:70:dd:cb:9a:b1:e0:7e:5c:c1:a1:a6:3f: 5a:ed:78:ac:61:71:55:d7:9d:9a:a1:00:cd:1d:65: 91:c1:dc:14:3a:52:e6:da:db:a6:60:73:9c:31:44: 43:1f:f6:49:c5:7f:5f:b3:ca:33:2e:f1:6b:e2:55: 98:13:19:1f:61:d2:ae:de:2c:4d:cf:9d:0e:02:66: d5:87:c6:7c:71:a2:79:dd:0d:25:53:90:a3:c1:db: c1:20:78:c5:d3:f5:39:7e:0a:ad:1a:d3:02:6b:bc: 27:eb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 15:25:0B:59:17:A4:04:78:5C:B5:07:19:D3:17:76:0B:C2:A6:09:08 X509v3 Authority Key Identifier: keyid:CC:F5:81:F4:C3:3C:A4:44:1E:18:07:E3:96:C5:EF:E7:5F:A8:2D:D0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9111A27/662518BE6E3411EA841D426EC4F9AE02/zPWB9MM8pEQeGAfjlsXv51-oLdA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/zPWB9MM8pEQeGAfjlsXv51-oLdA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9111A27/662518BE6E3411EA841D426EC4F9AE02/zPWB9MM8pEQeGAfjlsXv51-oLdA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 2e:bd:79:73:21:44:61:18:29:17:2b:56:f6:7b:8e:0e:ab:88: d2:80:24:cd:66:e7:ea:e4:3b:4d:de:46:84:89:65:62:1a:8a: 36:b0:0b:c1:3b:38:41:30:a1:5e:06:36:42:79:04:0b:a7:5e: a9:15:d0:56:5d:a3:37:4f:d6:f1:3c:e7:ad:ec:95:74:40:7b: da:61:1b:32:32:f2:71:6b:96:f3:65:85:da:19:fe:72:22:69: c1:88:2c:25:ce:45:58:18:8b:a0:48:0b:90:87:78:52:e7:be: 9d:ef:8e:cd:00:df:ea:ea:bc:ad:2d:ed:f3:c0:dd:dc:00:d3: 94:cb:ea:f1:42:cd:2d:e8:96:0d:b3:20:38:1b:06:e4:81:e5: 7f:71:ac:99:5a:fe:1e:31:d7:7b:db:af:a9:1e:3b:d3:bc:c1: ed:b7:84:c7:23:d8:3f:bd:5a:45:02:8a:da:07:e1:26:67:4a: 5c:a2:49:09:c2:32:39:7e:fe:36:3e:7e:49:4a:9d:5c:b7:f9: f7:89:d1:5a:2f:08:73:e4:6c:a1:32:5e:16:c6:ce:37:fe:df: 59:f7:ba:4c:62:a5:fa:ec:f1:cf:e6:82:e8:91:09:7b:b9:dd: c8:c4:c4:38:00:30:6c:c4:7f:a6:be:3e:38:b8:c3:7f:bd:4c: 42:04:85:df -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCmUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MTFBMjcxMTAvBgNVBAUTKENDRjU4MUY0QzMzQ0E0NDQxRTE4MDdFMzk2QzVFRkU3 NUZBODJERDAwHhcNMjUwODIyMTk0OTE1WhcNMjUwODI5MTk0OTE1WjAYMRYwFAYD VQQDEw02OGE4YzliYy1mMDFiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwaRew2RLXHhW0JXiGcNuohQ+oqeu1kEqDoEaiNj1VrJgdoQO6x5FY1yYbBnM BMAN7Nif2mYUnduMxeI8Rrxa+i6QJLLFzQehuk1jMOzmYb3lR88WOUWJLj0t06pX sOkzSiNOk6SaLP166DR5vFfutggA51j7k3laPbEe6B5TROyB4wtikeYIHJqHwLW7 V1pBVTXWoXzP/fxw3cuaseB+XMGhpj9a7XisYXFV152aoQDNHWWRwdwUOlLm2tum YHOcMURDH/ZJxX9fs8ozLvFr4lWYExkfYdKu3ixNz50OAmbVh8Z8caJ53Q0lU5Cj wdvBIHjF0/U5fgqtGtMCa7wn6wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFBUlC1kX pAR4XLUHGdMXdgvCpgkIMB8GA1UdIwQYMBaAFMz1gfTDPKREHhgH45bF7+dfqC3Q MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExMUEyNy82NjI1MThCRTZF MzQxMUVBODQxRDQyNkVDNEY5QUUwMi96UFdCOU1NOHBFUWVHQWZqbHNYdjUxLW9M ZEEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3pQV0I5TU04cEVRZUdBZmpsc1h2NTEtb0xkQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx MUEyNy82NjI1MThCRTZFMzQxMUVBODQxRDQyNkVDNEY5QUUwMi96UFdCOU1NOHBF UWVHQWZqbHNYdjUxLW9MZEEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAuvXlzIURhGCkXK1b2e44Oq4jSgCTNZufq5DtN3kaEiWViGoo2sAvB OzhBMKFeBjZCeQQLp16pFdBWXaM3T9bxPOet7JV0QHvaYRsyMvJxa5bzZYXaGf5y ImnBiCwlzkVYGIugSAuQh3hS576d747NAN/q6rytLe3zwN3cANOUy+rxQs0t6JYN syA4GwbkgeV/cayZWv4eMdd726+pHjvTvMHtt4THI9g/vVpFAoraB+EmZ0pcokkJ wjI5fv42Pn5JSp1ct/n3idFaLwhz5GyhMl4Wxs43/t9Z97pMYqX67PHP5oLokQl7 ud3IxMQ4ADBsxH+mvj44uMN/vUxCBIXf -----END CERTIFICATE-----Generated at Sat Aug 23 20:24:14 2025 by rpki-client