$ rpki-client -vvf rpki.apnic.net/member_repository/A9129D4A/248103A4AC9611E6A561A315C4F9AE02/ZGscQagf9-WCtezcHO9UzmEVJWM.mft File: ZGscQagf9-WCtezcHO9UzmEVJWM.mft (raw, json) Hash identifier: 6s/EQytLdkMfRCTefXlALdblgGUxng2ZESTARp1K0h0= Subject key identifier: E0:24:E3:95:CD:3C:62:38:ED:9C:DC:34:C7:E8:8E:EA:28:E0:54:0F Authority key identifier: 64:6B:1C:41:A8:1F:F7:E5:82:B5:EC:DC:1C:EF:54:CE:61:15:25:63 Certificate issuer: /CN=A9129D4A/serialNumber=646B1C41A81FF7E582B5ECDC1CEF54CE61152563 Certificate serial: 1D88 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ZGscQagf9-WCtezcHO9UzmEVJWM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9129D4A/248103A4AC9611E6A561A315C4F9AE02/ZGscQagf9-WCtezcHO9UzmEVJWM.mft Manifest number: 1D7D Signing time: Fri 22 Aug 2025 16:11:08 +0000 Manifest this update: Fri 22 Aug 2025 16:11:08 +0000 Manifest next update: Fri 29 Aug 2025 16:11:08 +0000 Files and hashes: 1: ZGscQagf9-WCtezcHO9UzmEVJWM.crl (hash: /ATNE26pPypoGZV9U5h0xb/vsLT+SSycKlarO7DMsFY=) 2: 810AF2B0AC9611E6A37EC415C4F9AE02.roa (hash: djmV6ni7hy6C8m5F1gtlxw3KFQjLB6LT9Z3a9xMILMs=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9129D4A/248103A4AC9611E6A561A315C4F9AE02/ZGscQagf9-WCtezcHO9UzmEVJWM.crl rsync://rpki.apnic.net/member_repository/A9129D4A/248103A4AC9611E6A561A315C4F9AE02/ZGscQagf9-WCtezcHO9UzmEVJWM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ZGscQagf9-WCtezcHO9UzmEVJWM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Aug 2025 16:11:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7560 (0x1d88) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9129D4A, serialNumber=646B1C41A81FF7E582B5ECDC1CEF54CE61152563 Validity Not Before: Aug 22 16:11:08 2025 GMT Not After : Aug 29 16:11:08 2025 GMT Subject: CN=68a8969c-88b0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ad:6a:7a:6f:7d:f2:70:af:91:68:08:2c:70:f9: 94:af:b3:b7:9d:01:c9:2c:35:b5:85:55:2a:bf:2e: 2c:13:00:49:a8:c6:bb:29:af:35:7a:cc:f2:0e:27: f3:2d:00:34:10:1c:00:0d:f8:1f:9e:d0:93:4b:d2: 2b:35:19:cd:23:9e:35:22:39:72:54:ae:fd:70:22: b2:59:1d:3d:da:67:90:92:98:aa:7d:3f:16:15:68: 11:52:0e:11:1e:05:ef:e3:b1:69:99:9d:86:92:e8: 58:b7:e4:a1:ae:d4:e3:4d:e8:eb:65:26:fa:a6:4c: e4:69:d6:f2:0d:02:c1:fd:17:e5:84:c2:7d:97:0c: 53:11:d1:94:dc:ab:ac:04:c8:13:96:5b:f4:c5:e1: bb:37:90:2a:34:9b:84:77:3e:21:e5:e8:fd:1f:0d: 6e:b3:0e:d4:ea:37:71:c2:71:55:0c:15:17:51:fd: 5a:7d:4b:4f:73:79:87:b1:e1:a0:cd:75:ea:37:cc: 07:09:12:8b:42:da:f6:3c:86:e5:e6:1c:d7:29:89: b5:1b:ac:70:8c:91:f5:64:f0:7e:a1:fa:5e:92:8c: 5e:26:00:b9:96:8b:44:17:94:76:21:64:2a:d3:b0: 6e:2f:94:36:3a:70:57:1f:8a:b7:75:89:10:45:67: 0d:95 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E0:24:E3:95:CD:3C:62:38:ED:9C:DC:34:C7:E8:8E:EA:28:E0:54:0F X509v3 Authority Key Identifier: keyid:64:6B:1C:41:A8:1F:F7:E5:82:B5:EC:DC:1C:EF:54:CE:61:15:25:63 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9129D4A/248103A4AC9611E6A561A315C4F9AE02/ZGscQagf9-WCtezcHO9UzmEVJWM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ZGscQagf9-WCtezcHO9UzmEVJWM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9129D4A/248103A4AC9611E6A561A315C4F9AE02/ZGscQagf9-WCtezcHO9UzmEVJWM.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 8a:e6:39:32:74:e3:de:65:c4:c1:1b:45:70:6f:fd:4b:5f:f3: c1:75:ca:36:ca:cf:1c:cd:39:9e:04:6c:cd:d6:bc:9c:67:91: 05:d3:2f:4a:13:9e:48:91:58:6a:44:b3:c8:6a:97:fe:9c:4b: 7d:ec:63:3c:ae:a7:9c:7d:3a:1f:d4:64:56:24:8b:37:ec:c5: c5:69:03:56:c3:80:96:e2:21:07:4b:90:3e:c2:50:5d:84:b3: 0e:a0:61:f9:51:e4:c4:d9:17:85:3b:d8:1f:24:99:73:d9:2f: c0:81:b2:6a:04:0a:93:10:4b:ff:81:05:c8:49:88:6e:f9:eb: 0d:60:2a:23:87:e6:22:1e:20:2e:f6:f1:6c:16:7d:cd:1e:c4: 50:1b:f4:59:19:35:d1:38:e7:e3:41:11:d2:16:6b:d2:71:8d: 4f:7e:51:d2:fd:7a:39:46:79:d5:dd:0b:10:56:f5:4c:41:7a: 94:fa:73:ed:77:b2:65:70:df:55:1c:d1:76:c1:f6:00:7b:76: d2:41:c0:a6:86:3d:7e:7a:05:ac:39:5e:ee:5c:65:55:05:21: 2b:d2:e3:0f:7e:bb:22:87:13:29:d4:4a:af:2b:7c:b2:2c:cb: 16:54:6a:73:2d:bc:6a:c3:65:a1:2b:f6:c1:ab:a3:c3:e0:6f: b1:1d:97:06 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICHYgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MjlENEExMTAvBgNVBAUTKDY0NkIxQzQxQTgxRkY3RTU4MkI1RUNEQzFDRUY1NENF NjExNTI1NjMwHhcNMjUwODIyMTYxMTA4WhcNMjUwODI5MTYxMTA4WjAYMRYwFAYD VQQDEw02OGE4OTY5Yy04OGIwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArWp6b33ycK+RaAgscPmUr7O3nQHJLDW1hVUqvy4sEwBJqMa7Ka81eszyDifz LQA0EBwADfgfntCTS9IrNRnNI541IjlyVK79cCKyWR092meQkpiqfT8WFWgRUg4R HgXv47FpmZ2GkuhYt+ShrtTjTejrZSb6pkzkadbyDQLB/RflhMJ9lwxTEdGU3Kus BMgTllv0xeG7N5AqNJuEdz4h5ej9Hw1usw7U6jdxwnFVDBUXUf1afUtPc3mHseGg zXXqN8wHCRKLQtr2PIbl5hzXKYm1G6xwjJH1ZPB+ofpekoxeJgC5lotEF5R2IWQq 07BuL5Q2OnBXH4q3dYkQRWcNlQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFOAk45XN PGI47ZzcNMfojuoo4FQPMB8GA1UdIwQYMBaAFGRrHEGoH/flgrXs3BzvVM5hFSVj MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyOUQ0QS8yNDgxMDNBNEFD OTYxMUU2QTU2MUEzMTVDNEY5QUUwMi9aR3NjUWFnZjktV0N0ZXpjSE85VXptRVZK V00uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1pHc2NRYWdmOS1XQ3RlemNITzlVem1FVkpXTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy OUQ0QS8yNDgxMDNBNEFDOTYxMUU2QTU2MUEzMTVDNEY5QUUwMi9aR3NjUWFnZjkt V0N0ZXpjSE85VXptRVZKV00ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCK5jkydOPeZcTBG0Vwb/1LX/PBdco2ys8czTmeBGzN1rycZ5EF0y9K E55IkVhqRLPIapf+nEt97GM8rqecfTof1GRWJIs37MXFaQNWw4CW4iEHS5A+wlBd hLMOoGH5UeTE2ReFO9gfJJlz2S/AgbJqBAqTEEv/gQXISYhu+esNYCojh+YiHiAu 9vFsFn3NHsRQG/RZGTXROOfjQRHSFmvScY1PflHS/Xo5RnnV3QsQVvVMQXqU+nPt d7JlcN9VHNF2wfYAe3bSQcCmhj1+egWsOV7uXGVVBSEr0uMPfrsihxMp1EqvK3yy LMsWVGpzLbxqw2WhK/bBq6PD4G+xHZcG -----END CERTIFICATE-----Generated at Sat Aug 23 19:03:36 2025 by rpki-client