$ rpki-client -vvf rpki.apnic.net/member_repository/A9129D4A/248103A4AC9611E6A561A315C4F9AE02/ZGscQagf9-WCtezcHO9UzmEVJWM.mft File: ZGscQagf9-WCtezcHO9UzmEVJWM.mft (raw, json) Hash identifier: 9Ey55qxgRMOfmAhNeuO/BuoviHZyzxyA3cQ027hVkBU= Subject key identifier: C9:46:6A:11:7D:4D:48:5D:3E:54:D4:06:B6:68:2C:1A:1E:47:B1:C4 Authority key identifier: 64:6B:1C:41:A8:1F:F7:E5:82:B5:EC:DC:1C:EF:54:CE:61:15:25:63 Certificate issuer: /CN=A9129D4A/serialNumber=646B1C41A81FF7E582B5ECDC1CEF54CE61152563 Certificate serial: 1D6E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ZGscQagf9-WCtezcHO9UzmEVJWM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9129D4A/248103A4AC9611E6A561A315C4F9AE02/ZGscQagf9-WCtezcHO9UzmEVJWM.mft Manifest number: 1D63 Signing time: Wed 02 Jul 2025 16:15:28 +0000 Manifest this update: Wed 02 Jul 2025 16:15:28 +0000 Manifest next update: Wed 09 Jul 2025 16:15:28 +0000 Files and hashes: 1: ZGscQagf9-WCtezcHO9UzmEVJWM.crl (hash: tEwt7wU6ijCZT/vPxiC+3lezYaJ5u4ji0GA2v6D56d0=) 2: 810AF2B0AC9611E6A37EC415C4F9AE02.roa (hash: djmV6ni7hy6C8m5F1gtlxw3KFQjLB6LT9Z3a9xMILMs=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9129D4A/248103A4AC9611E6A561A315C4F9AE02/ZGscQagf9-WCtezcHO9UzmEVJWM.crl rsync://rpki.apnic.net/member_repository/A9129D4A/248103A4AC9611E6A561A315C4F9AE02/ZGscQagf9-WCtezcHO9UzmEVJWM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ZGscQagf9-WCtezcHO9UzmEVJWM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 09 Jul 2025 16:15:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7534 (0x1d6e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9129D4A, serialNumber=646B1C41A81FF7E582B5ECDC1CEF54CE61152563 Validity Not Before: Jul 2 16:15:28 2025 GMT Not After : Jul 9 16:15:28 2025 GMT Subject: CN=68655b20-9dd0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e0:7a:49:8b:f8:43:ad:79:d0:57:fb:8e:4f:b2: 91:92:9c:14:ea:64:0e:93:d4:2b:1e:f4:b9:d5:4a: cd:dd:ea:af:2b:07:cd:0a:a8:63:16:e6:34:b9:27: 19:47:69:4b:d6:1a:f2:be:e9:35:e4:3e:53:c3:5e: 61:ea:86:99:f1:41:d5:5a:6a:bc:f1:d8:bb:66:65: 05:82:dd:62:07:9f:b5:ad:ec:cb:03:0c:6f:bd:a2: 6d:1b:5b:30:40:ce:02:78:87:8e:4c:49:a7:6f:02: 14:4b:45:f2:49:5d:bc:e0:52:6c:d9:5e:d2:fa:61: 6a:6e:69:32:0a:a6:8a:27:ba:24:3e:66:bd:d0:18: 4d:46:02:85:0c:50:9f:42:3e:c1:83:29:e0:96:89: 5d:58:83:80:fd:bf:66:a3:ca:8c:f2:de:35:ba:49: 3c:87:40:d6:22:0b:dd:1b:e9:53:6b:43:96:9a:6b: 91:f6:3e:0a:cc:5f:f2:a6:69:8e:41:04:bb:e0:1f: 3e:05:8d:0b:e0:de:29:4b:d8:ef:32:91:ee:57:27: 10:45:6e:af:bb:99:8a:95:dd:28:88:05:92:03:dd: e8:2e:7e:8c:bc:e5:cd:b9:99:04:54:d9:4b:91:b4: 09:8b:c8:16:3f:8f:39:a7:19:69:f4:dd:71:24:9b: 40:5d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C9:46:6A:11:7D:4D:48:5D:3E:54:D4:06:B6:68:2C:1A:1E:47:B1:C4 X509v3 Authority Key Identifier: keyid:64:6B:1C:41:A8:1F:F7:E5:82:B5:EC:DC:1C:EF:54:CE:61:15:25:63 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9129D4A/248103A4AC9611E6A561A315C4F9AE02/ZGscQagf9-WCtezcHO9UzmEVJWM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ZGscQagf9-WCtezcHO9UzmEVJWM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9129D4A/248103A4AC9611E6A561A315C4F9AE02/ZGscQagf9-WCtezcHO9UzmEVJWM.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 30:f2:08:26:fd:f5:2c:84:7c:e6:9c:9f:66:04:8b:c1:b9:0d: a1:fd:30:77:2f:63:18:c7:3a:d6:92:f5:2b:8f:90:e7:0e:1d: 18:af:8f:ed:9c:f2:ad:8a:62:ca:bc:c4:fb:69:d1:3b:3f:47: fd:28:7d:17:d7:76:40:85:d4:91:7b:46:7c:55:12:6a:85:21: 0e:f7:04:1e:d5:28:50:4f:83:17:dc:f9:c4:fc:c9:84:df:af: 98:a0:71:64:c9:fa:74:af:18:2a:84:8f:d1:15:45:39:46:f4: 2d:2b:e3:50:56:e8:71:31:08:8d:3b:38:6f:0e:83:b3:af:1e: 7e:f2:01:61:89:d7:a2:f9:8f:4f:90:fa:4f:aa:aa:3f:56:9b: 8e:07:69:bb:2f:80:96:f5:60:d7:6e:8d:c0:59:38:6b:26:66: 88:a2:23:68:c0:af:94:04:52:76:ec:28:af:fd:df:65:a6:6d: 5e:25:01:3c:70:60:e5:0d:88:34:94:ae:63:8a:e8:6d:6d:e1: 32:07:84:93:c1:31:11:b0:ff:e5:79:da:9a:a3:ef:75:0f:18: 65:bb:51:3f:62:3a:45:f9:47:9e:3e:71:a2:16:c8:3c:5c:3f: 54:c3:2a:a2:b6:87:8c:e0:45:bd:06:a6:3d:94:f7:a1:db:7a: c3:af:f5:5a -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICHW4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MjlENEExMTAvBgNVBAUTKDY0NkIxQzQxQTgxRkY3RTU4MkI1RUNEQzFDRUY1NENF NjExNTI1NjMwHhcNMjUwNzAyMTYxNTI4WhcNMjUwNzA5MTYxNTI4WjAYMRYwFAYD VQQDEw02ODY1NWIyMC05ZGQwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA4HpJi/hDrXnQV/uOT7KRkpwU6mQOk9QrHvS51UrN3eqvKwfNCqhjFuY0uScZ R2lL1hryvuk15D5Tw15h6oaZ8UHVWmq88di7ZmUFgt1iB5+1rezLAwxvvaJtG1sw QM4CeIeOTEmnbwIUS0XySV284FJs2V7S+mFqbmkyCqaKJ7okPma90BhNRgKFDFCf Qj7BgyngloldWIOA/b9mo8qM8t41ukk8h0DWIgvdG+lTa0OWmmuR9j4KzF/ypmmO QQS74B8+BY0L4N4pS9jvMpHuVycQRW6vu5mKld0oiAWSA93oLn6MvOXNuZkEVNlL kbQJi8gWP485pxlp9N1xJJtAXQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFMlGahF9 TUhdPlTUBrZoLBoeR7HEMB8GA1UdIwQYMBaAFGRrHEGoH/flgrXs3BzvVM5hFSVj MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyOUQ0QS8yNDgxMDNBNEFD OTYxMUU2QTU2MUEzMTVDNEY5QUUwMi9aR3NjUWFnZjktV0N0ZXpjSE85VXptRVZK V00uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1pHc2NRYWdmOS1XQ3RlemNITzlVem1FVkpXTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy OUQ0QS8yNDgxMDNBNEFDOTYxMUU2QTU2MUEzMTVDNEY5QUUwMi9aR3NjUWFnZjkt V0N0ZXpjSE85VXptRVZKV00ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAw8ggm/fUshHzmnJ9mBIvBuQ2h/TB3L2MYxzrWkvUrj5DnDh0Yr4/t nPKtimLKvMT7adE7P0f9KH0X13ZAhdSRe0Z8VRJqhSEO9wQe1ShQT4MX3PnE/MmE 36+YoHFkyfp0rxgqhI/RFUU5RvQtK+NQVuhxMQiNOzhvDoOzrx5+8gFhidei+Y9P kPpPqqo/VpuOB2m7L4CW9WDXbo3AWThrJmaIoiNowK+UBFJ27Civ/d9lpm1eJQE8 cGDlDYg0lK5jiuhtbeEyB4STwTERsP/ledqao+91Dxhlu1E/YjpF+UeePnGiFsg8 XD9UwyqitoeM4EW9BqY9lPeh23rDr/Va -----END CERTIFICATE-----Generated at Wed Jul 2 22:08:30 2025 by rpki-client