$ rpki-client -vvf rpki.apnic.net/member_repository/A9111A27/662518BE6E3411EA841D426EC4F9AE02/zPWB9MM8pEQeGAfjlsXv51-oLdA.mft File: zPWB9MM8pEQeGAfjlsXv51-oLdA.mft (raw, json) Hash identifier: G3WEpz0i3kzGNW2piu67tILCykC/yBrFrmYFaEQzwkQ= Subject key identifier: 52:0D:D1:C5:D1:36:E1:FA:73:92:EF:4D:02:45:F1:CF:ED:E8:29:6B Authority key identifier: CC:F5:81:F4:C3:3C:A4:44:1E:18:07:E3:96:C5:EF:E7:5F:A8:2D:D0 Certificate issuer: /CN=A9111A27/serialNumber=CCF581F4C33CA4441E1807E396C5EFE75FA82DD0 Certificate serial: 0A4B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/zPWB9MM8pEQeGAfjlsXv51-oLdA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9111A27/662518BE6E3411EA841D426EC4F9AE02/zPWB9MM8pEQeGAfjlsXv51-oLdA.mft Manifest number: 0A40 Signing time: Wed 02 Jul 2025 19:57:44 +0000 Manifest this update: Wed 02 Jul 2025 19:57:43 +0000 Manifest next update: Wed 09 Jul 2025 19:57:43 +0000 Files and hashes: 1: zPWB9MM8pEQeGAfjlsXv51-oLdA.crl (hash: VWYuYvPdiuEddo7Bgao/0WNioLcvv3a/ZXN/o7znXGo=) 2: EECBCEBE6E3511EABDE26D73C4F9AE02.roa (hash: tiW51zPCEni34tefKfGb0te4DWKoSNtDHrcuOGks1io=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9111A27/662518BE6E3411EA841D426EC4F9AE02/zPWB9MM8pEQeGAfjlsXv51-oLdA.crl rsync://rpki.apnic.net/member_repository/A9111A27/662518BE6E3411EA841D426EC4F9AE02/zPWB9MM8pEQeGAfjlsXv51-oLdA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/zPWB9MM8pEQeGAfjlsXv51-oLdA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 09 Jul 2025 19:57:43 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2635 (0xa4b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9111A27, serialNumber=CCF581F4C33CA4441E1807E396C5EFE75FA82DD0 Validity Not Before: Jul 2 19:57:43 2025 GMT Not After : Jul 9 19:57:43 2025 GMT Subject: CN=68658f37-bcfb Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f1:2e:f3:8c:b1:c7:57:a8:1e:14:c2:9b:4a:c0: d0:5e:7e:9a:c2:ea:a8:d8:60:2e:48:3a:1f:5c:60: 4b:97:7d:5e:85:0d:20:13:93:e1:e9:1c:52:3d:26: 65:d5:bc:7e:0a:66:5f:3b:04:05:5c:c2:09:ed:a2: 32:7a:d2:d1:a4:bd:f5:41:17:11:f7:38:65:ee:4f: 8e:3b:52:05:54:4f:60:9d:13:fd:a3:fb:22:3f:7c: d1:f9:25:7e:7e:2a:af:b0:aa:6f:21:85:4f:77:31: 6f:65:ea:da:fc:c3:de:ed:1a:28:55:68:bb:86:41: ff:20:3b:71:db:4a:9e:7b:a1:9b:02:9d:15:16:11: f0:51:0e:96:6f:85:35:3e:44:11:d5:7f:a1:b8:26: 2d:04:d8:6b:12:be:3b:94:fd:e0:91:a1:d5:d9:2a: 1b:a8:ef:87:cd:18:51:ca:5c:96:5f:09:3e:19:35: e3:7c:bf:f3:34:57:78:6f:c8:de:60:3f:c4:d1:62: 5e:32:9d:79:e1:98:8a:8d:64:7a:74:fd:e4:7f:1c: 22:cd:91:96:b7:84:a0:ea:b2:01:67:f0:68:f4:03: 18:09:6c:eb:c4:c5:18:6b:3a:f9:85:a3:0e:86:90: 91:b1:27:40:e1:d2:da:c8:fd:02:49:e2:01:dc:1a: 54:6b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 52:0D:D1:C5:D1:36:E1:FA:73:92:EF:4D:02:45:F1:CF:ED:E8:29:6B X509v3 Authority Key Identifier: keyid:CC:F5:81:F4:C3:3C:A4:44:1E:18:07:E3:96:C5:EF:E7:5F:A8:2D:D0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9111A27/662518BE6E3411EA841D426EC4F9AE02/zPWB9MM8pEQeGAfjlsXv51-oLdA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/zPWB9MM8pEQeGAfjlsXv51-oLdA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9111A27/662518BE6E3411EA841D426EC4F9AE02/zPWB9MM8pEQeGAfjlsXv51-oLdA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 09:a9:6e:58:5b:51:01:48:4c:9f:de:fd:6d:3b:63:1b:31:66: 97:c0:15:b8:92:b3:b1:14:44:94:af:74:6b:54:20:23:e9:9d: 83:40:c4:22:ce:64:26:95:36:9b:eb:fd:9e:02:9b:b2:17:33: 52:3b:24:56:c6:9d:4c:e6:4b:56:00:2e:9e:9c:e9:c0:7c:0d: bb:42:2d:54:46:9c:83:36:e0:13:ae:dd:c5:c7:aa:ba:e9:88: 53:ea:c6:03:61:5a:53:bb:99:94:2f:84:b8:d7:77:20:8c:45: 37:6f:2d:09:a6:4a:9c:89:a7:ba:74:78:b5:c0:f6:e1:3a:9c: 91:28:61:77:bf:59:f8:22:e4:04:63:a4:1f:f1:5b:49:75:54: 4d:ec:da:2a:62:59:62:6e:14:ef:84:06:e7:56:17:fe:cb:f6: 0f:98:9c:8a:d0:73:9a:10:4b:1b:2b:20:d6:0e:9e:99:55:91: 36:65:a1:98:44:87:ce:34:88:a5:e5:c0:8a:14:2c:db:9e:44: c7:ff:4f:23:fb:0c:d2:c1:77:2b:bf:5a:f2:e1:37:a5:e2:be: b7:5c:72:7a:b0:29:05:56:9e:ec:c1:b7:39:48:9b:2b:8a:23: d4:1f:18:71:cb:f6:e0:73:82:d1:e1:ff:80:eb:fe:13:f1:9e: 03:8f:b8:22 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCkswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MTFBMjcxMTAvBgNVBAUTKENDRjU4MUY0QzMzQ0E0NDQxRTE4MDdFMzk2QzVFRkU3 NUZBODJERDAwHhcNMjUwNzAyMTk1NzQzWhcNMjUwNzA5MTk1NzQzWjAYMRYwFAYD VQQDEw02ODY1OGYzNy1iY2ZiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA8S7zjLHHV6geFMKbSsDQXn6awuqo2GAuSDofXGBLl31ehQ0gE5Ph6RxSPSZl 1bx+CmZfOwQFXMIJ7aIyetLRpL31QRcR9zhl7k+OO1IFVE9gnRP9o/siP3zR+SV+ fiqvsKpvIYVPdzFvZera/MPe7RooVWi7hkH/IDtx20qee6GbAp0VFhHwUQ6Wb4U1 PkQR1X+huCYtBNhrEr47lP3gkaHV2SobqO+HzRhRylyWXwk+GTXjfL/zNFd4b8je YD/E0WJeMp154ZiKjWR6dP3kfxwizZGWt4Sg6rIBZ/Bo9AMYCWzrxMUYazr5haMO hpCRsSdA4dLayP0CSeIB3BpUawIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFFIN0cXR NuH6c5LvTQJF8c/t6ClrMB8GA1UdIwQYMBaAFMz1gfTDPKREHhgH45bF7+dfqC3Q MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExMUEyNy82NjI1MThCRTZF MzQxMUVBODQxRDQyNkVDNEY5QUUwMi96UFdCOU1NOHBFUWVHQWZqbHNYdjUxLW9M ZEEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3pQV0I5TU04cEVRZUdBZmpsc1h2NTEtb0xkQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx MUEyNy82NjI1MThCRTZFMzQxMUVBODQxRDQyNkVDNEY5QUUwMi96UFdCOU1NOHBF UWVHQWZqbHNYdjUxLW9MZEEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAJqW5YW1EBSEyf3v1tO2MbMWaXwBW4krOxFESUr3RrVCAj6Z2DQMQi zmQmlTab6/2eApuyFzNSOyRWxp1M5ktWAC6enOnAfA27Qi1URpyDNuATrt3Fx6q6 6YhT6sYDYVpTu5mUL4S413cgjEU3by0Jpkqciae6dHi1wPbhOpyRKGF3v1n4IuQE Y6Qf8VtJdVRN7NoqYllibhTvhAbnVhf+y/YPmJyK0HOaEEsbKyDWDp6ZVZE2ZaGY RIfONIil5cCKFCzbnkTH/08j+wzSwXcrv1ry4Tel4r63XHJ6sCkFVp7swbc5SJsr iiPUHxhxy/bgc4LR4f+A6/4T8Z4Dj7gi -----END CERTIFICATE-----Generated at Fri Jul 4 08:17:27 2025 by rpki-client