$ rpki-client -vvf rpki.apnic.net/member_repository/A9151932/521C8E5C720711EF9DC8BA21C4F9AE02/ZeF3DniFUQoYzpDYqt2e3n1bNVM.mft File: ZeF3DniFUQoYzpDYqt2e3n1bNVM.mft (raw, json) Hash identifier: f+UOSZqSIuFFTrE3YLJN6RyefDusmaPkig8WA2PBK+s= Subject key identifier: 0E:F7:B8:F8:3B:16:CD:02:9D:57:67:7B:A9:5F:58:90:A4:78:29:12 Authority key identifier: 65:E1:77:0E:78:85:51:0A:18:CE:90:D8:AA:DD:9E:DE:7D:5B:35:53 Certificate issuer: /CN=A9151932/serialNumber=65E1770E7885510A18CE90D8AADD9EDE7D5B3553 Certificate serial: A6 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ZeF3DniFUQoYzpDYqt2e3n1bNVM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9151932/521C8E5C720711EF9DC8BA21C4F9AE02/ZeF3DniFUQoYzpDYqt2e3n1bNVM.mft Manifest number: A2 Signing time: Tue 01 Jul 2025 07:06:37 +0000 Manifest this update: Tue 01 Jul 2025 07:06:37 +0000 Manifest next update: Tue 08 Jul 2025 07:06:37 +0000 Files and hashes: 1: ZeF3DniFUQoYzpDYqt2e3n1bNVM.crl (hash: Z5RjpXnhTA00fRP66afbk6f/i4WlzB1xaDoTX/sBfY0=) 2: 747C668ECCD911EF9B52C877C4F9AE02.roa (hash: FLsSk6E317UI1n66jph+9Dir8yNvamWkdarfqoL42t0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9151932/521C8E5C720711EF9DC8BA21C4F9AE02/ZeF3DniFUQoYzpDYqt2e3n1bNVM.crl rsync://rpki.apnic.net/member_repository/A9151932/521C8E5C720711EF9DC8BA21C4F9AE02/ZeF3DniFUQoYzpDYqt2e3n1bNVM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ZeF3DniFUQoYzpDYqt2e3n1bNVM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 08 Jul 2025 07:06:36 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 166 (0xa6) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9151932, serialNumber=65E1770E7885510A18CE90D8AADD9EDE7D5B3553 Validity Not Before: Jul 1 07:06:37 2025 GMT Not After : Jul 8 07:06:37 2025 GMT Subject: CN=686388fd-5eb6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ac:94:3f:b1:cc:4e:3f:5c:bb:b5:e3:ba:f8:91: b5:71:c4:b4:a6:f0:7a:8f:98:30:9d:9a:14:1b:04: 30:dd:63:ea:1b:f8:99:69:ed:30:f4:6f:59:37:07: 0f:74:ce:01:a6:75:16:ca:e8:35:21:a6:7f:83:3d: 92:1b:5a:04:fd:a7:01:fb:eb:82:3e:d5:05:25:43: 11:bf:04:f7:1d:f4:08:72:60:e5:db:46:b1:3b:b8: a4:b6:95:79:02:c9:74:77:d2:e5:50:a3:66:7e:66: 3f:f9:4a:4a:e1:0f:25:49:7d:fe:7f:39:22:cf:23: cf:33:70:19:17:b3:45:f6:82:f4:86:5f:31:0d:f7: 83:29:4a:7d:2d:62:b6:3b:2c:42:79:ad:0f:86:4b: 81:fd:6d:c3:e7:35:8c:39:71:9a:70:00:09:a6:18: c2:56:52:8e:e3:48:66:f1:5f:7d:bb:37:f0:d2:63: 56:eb:a5:e9:76:74:bf:a1:de:b7:04:fe:bd:0e:ed: e6:93:fc:84:22:0b:a5:08:21:9b:51:cc:0d:98:b4: 42:58:52:19:d7:46:eb:b2:20:db:08:d0:63:18:a0: f0:2f:46:89:fd:10:60:0a:de:71:89:b2:4a:81:e6: 2c:ef:36:47:eb:67:3d:e7:fa:73:0c:bd:1e:0d:d3: 7b:1d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0E:F7:B8:F8:3B:16:CD:02:9D:57:67:7B:A9:5F:58:90:A4:78:29:12 X509v3 Authority Key Identifier: keyid:65:E1:77:0E:78:85:51:0A:18:CE:90:D8:AA:DD:9E:DE:7D:5B:35:53 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9151932/521C8E5C720711EF9DC8BA21C4F9AE02/ZeF3DniFUQoYzpDYqt2e3n1bNVM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ZeF3DniFUQoYzpDYqt2e3n1bNVM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9151932/521C8E5C720711EF9DC8BA21C4F9AE02/ZeF3DniFUQoYzpDYqt2e3n1bNVM.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 37:a1:62:8b:f0:d9:ca:08:aa:82:5c:25:f3:b1:3f:ff:ae:2b: f3:4b:6e:3e:bb:f7:b7:12:04:ec:01:29:21:cf:69:77:6f:7d: 51:7a:1c:f2:74:f4:bf:c2:c0:cd:0e:03:b0:4c:5f:66:1d:2b: 2d:6b:14:17:bd:b2:2c:58:83:03:45:c2:64:72:62:f9:67:29: 57:41:38:55:00:74:af:4d:b4:d3:f2:ee:76:ea:95:db:56:54: 82:f9:72:86:70:03:d1:53:17:5e:47:de:a5:17:c0:59:b7:a2: ac:80:1d:b7:d3:63:fb:e2:c5:6f:90:b9:43:d9:59:06:3f:f1: c1:91:e7:0c:b8:8c:89:27:57:48:9c:eb:73:72:fb:79:8a:da: 72:96:c8:b3:0d:a5:49:94:93:41:53:b0:db:29:80:3d:c7:5c: d2:96:68:08:42:30:ec:82:97:57:33:de:52:9c:17:0c:7c:c7: 2f:1c:84:7b:0c:a4:cd:63:04:31:be:4a:b8:0c:b3:1a:35:00: e1:14:7d:56:38:a2:3f:16:f7:87:f1:80:a0:73:35:b3:a6:6a: 70:3c:63:78:fb:0b:fa:ba:d6:3c:d5:13:f7:d6:ca:47:07:92: c5:b1:23:42:be:19:39:17:8c:c1:23:3b:e4:fd:c4:84:cd:5e: 39:e6:7a:44 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAKYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTE5MzIxMTAvBgNVBAUTKDY1RTE3NzBFNzg4NTUxMEExOENFOTBEOEFBREQ5RURF N0Q1QjM1NTMwHhcNMjUwNzAxMDcwNjM3WhcNMjUwNzA4MDcwNjM3WjAYMRYwFAYD VQQDEw02ODYzODhmZC01ZWI2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArJQ/scxOP1y7teO6+JG1ccS0pvB6j5gwnZoUGwQw3WPqG/iZae0w9G9ZNwcP dM4BpnUWyug1IaZ/gz2SG1oE/acB++uCPtUFJUMRvwT3HfQIcmDl20axO7iktpV5 Asl0d9LlUKNmfmY/+UpK4Q8lSX3+fzkizyPPM3AZF7NF9oL0hl8xDfeDKUp9LWK2 OyxCea0PhkuB/W3D5zWMOXGacAAJphjCVlKO40hm8V99uzfw0mNW66XpdnS/od63 BP69Du3mk/yEIgulCCGbUcwNmLRCWFIZ10brsiDbCNBjGKDwL0aJ/RBgCt5xibJK geYs7zZH62c95/pzDL0eDdN7HQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFA73uPg7 Fs0CnVdne6lfWJCkeCkSMB8GA1UdIwQYMBaAFGXhdw54hVEKGM6Q2Krdnt59WzVT MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1MTkzMi81MjFDOEU1Qzcy MDcxMUVGOURDOEJBMjFDNEY5QUUwMi9aZUYzRG5pRlVRb1l6cERZcXQyZTNuMWJO Vk0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1plRjNEbmlGVVFvWXpwRFlxdDJlM24xYk5WTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 MTkzMi81MjFDOEU1QzcyMDcxMUVGOURDOEJBMjFDNEY5QUUwMi9aZUYzRG5pRlVR b1l6cERZcXQyZTNuMWJOVk0ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA3oWKL8NnKCKqCXCXzsT//rivzS24+u/e3EgTsASkhz2l3b31Rehzy dPS/wsDNDgOwTF9mHSstaxQXvbIsWIMDRcJkcmL5ZylXQThVAHSvTbTT8u526pXb VlSC+XKGcAPRUxdeR96lF8BZt6KsgB2302P74sVvkLlD2VkGP/HBkecMuIyJJ1dI nOtzcvt5itpylsizDaVJlJNBU7DbKYA9x1zSlmgIQjDsgpdXM95SnBcMfMcvHIR7 DKTNYwQxvkq4DLMaNQDhFH1WOKI/FveH8YCgczWzpmpwPGN4+wv6utY81RP31spH B5LFsSNCvhk5F4zBIzvk/cSEzV455npE -----END CERTIFICATE-----Generated at Thu Jul 3 06:09:35 2025 by rpki-client