$ rpki-client -vvf rpki.apnic.net/member_repository/A9151932/521C8E5C720711EF9DC8BA21C4F9AE02/ZeF3DniFUQoYzpDYqt2e3n1bNVM.mft File: ZeF3DniFUQoYzpDYqt2e3n1bNVM.mft (raw, json) Hash identifier: UoHEeI+dWUbxB3kPzdevzjx87lc8Cpt+LeV6NSt9fKA= Subject key identifier: 60:33:0C:6D:D4:3D:89:CF:28:E7:DD:1C:30:C7:09:17:D9:A4:3F:CA Authority key identifier: 65:E1:77:0E:78:85:51:0A:18:CE:90:D8:AA:DD:9E:DE:7D:5B:35:53 Certificate issuer: /CN=A9151932/serialNumber=65E1770E7885510A18CE90D8AADD9EDE7D5B3553 Certificate serial: C1 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ZeF3DniFUQoYzpDYqt2e3n1bNVM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9151932/521C8E5C720711EF9DC8BA21C4F9AE02/ZeF3DniFUQoYzpDYqt2e3n1bNVM.mft Manifest number: BD Signing time: Sat 23 Aug 2025 06:16:58 +0000 Manifest this update: Sat 23 Aug 2025 06:16:58 +0000 Manifest next update: Sat 30 Aug 2025 06:16:58 +0000 Files and hashes: 1: ZeF3DniFUQoYzpDYqt2e3n1bNVM.crl (hash: 6OtRdB5tc3iyS1hxlh6S1bwQJk6LnP9J8hGk7jCNfpE=) 2: 747C668ECCD911EF9B52C877C4F9AE02.roa (hash: FLsSk6E317UI1n66jph+9Dir8yNvamWkdarfqoL42t0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9151932/521C8E5C720711EF9DC8BA21C4F9AE02/ZeF3DniFUQoYzpDYqt2e3n1bNVM.crl rsync://rpki.apnic.net/member_repository/A9151932/521C8E5C720711EF9DC8BA21C4F9AE02/ZeF3DniFUQoYzpDYqt2e3n1bNVM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ZeF3DniFUQoYzpDYqt2e3n1bNVM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Aug 2025 06:16:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 193 (0xc1) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9151932, serialNumber=65E1770E7885510A18CE90D8AADD9EDE7D5B3553 Validity Not Before: Aug 23 06:16:58 2025 GMT Not After : Aug 30 06:16:58 2025 GMT Subject: CN=68a95cda-9662 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c5:d8:ca:30:d3:4f:0d:8c:6e:69:13:2f:fd:fc: 88:7b:08:be:58:39:a8:c2:06:cc:a1:e8:84:af:f9: 7b:15:1b:b0:d6:6a:a6:21:bc:74:18:bc:b9:65:bc: e1:aa:fb:a5:b3:be:85:5f:8f:bd:9c:39:b3:f0:5c: e9:7d:ce:c1:94:5d:33:7d:e4:ca:4a:c2:62:58:28: 72:66:42:56:c7:30:2f:70:65:f3:cb:74:67:bf:8d: bd:55:70:a3:fe:49:5b:02:e0:10:90:29:22:5d:b0: 71:19:34:cf:2d:2a:3a:d0:68:18:75:4e:48:53:78: 27:7e:9f:26:07:f8:57:a2:c3:a5:5d:70:76:37:31: 78:3a:99:29:54:a1:42:1a:97:b2:0e:ec:41:f7:1a: d8:14:42:0f:f4:06:75:5c:cd:5f:ca:00:c7:42:a0: a0:88:a2:97:07:3e:3d:5d:40:b5:15:f6:11:27:19: 04:ee:47:a4:1d:b6:28:42:c9:4e:45:7f:2d:9b:2e: 30:92:f0:d4:83:4b:90:fc:78:eb:e2:e0:8a:3b:eb: c4:b8:20:4b:bb:d1:62:3b:43:c5:21:c8:dd:34:8c: 7c:db:00:10:61:31:cb:49:7b:13:39:3a:c3:82:45: 2a:bb:37:98:d7:fa:c7:e5:ed:87:ab:7c:37:5d:42: c4:bb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 60:33:0C:6D:D4:3D:89:CF:28:E7:DD:1C:30:C7:09:17:D9:A4:3F:CA X509v3 Authority Key Identifier: keyid:65:E1:77:0E:78:85:51:0A:18:CE:90:D8:AA:DD:9E:DE:7D:5B:35:53 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9151932/521C8E5C720711EF9DC8BA21C4F9AE02/ZeF3DniFUQoYzpDYqt2e3n1bNVM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ZeF3DniFUQoYzpDYqt2e3n1bNVM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9151932/521C8E5C720711EF9DC8BA21C4F9AE02/ZeF3DniFUQoYzpDYqt2e3n1bNVM.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 98:83:97:6c:70:49:83:9c:e3:80:20:85:dd:7f:1f:7e:2c:ea: dc:55:df:3e:ff:b9:17:f5:ab:5a:3e:80:e2:10:74:36:7f:25: 60:12:84:6d:a3:3f:5d:24:57:f6:cb:49:00:24:6d:65:ba:d4: b0:6e:65:cc:ba:f8:73:a5:01:e3:54:91:46:cf:84:eb:ae:c9: 3b:17:67:3a:a0:c7:c2:18:42:a7:2d:fd:f2:d9:40:2c:61:40: bc:19:e4:70:53:3b:bc:4b:a2:1e:f0:4c:7a:e2:04:05:82:38: 85:62:9c:9c:b1:b6:69:36:24:cd:cf:80:a0:48:9c:21:6e:9b: 65:a1:85:bd:f1:49:2b:b7:5c:22:97:be:be:3a:db:bf:ee:5b: d7:ba:da:28:c5:e1:81:52:2f:26:e6:5d:1c:a9:c9:04:a3:9c: b4:1d:98:5f:40:f8:0e:30:c3:4a:c2:49:19:10:44:58:e2:ad: 86:e2:d7:e5:fc:73:94:c6:f5:10:7c:eb:73:18:57:9a:19:cb: 47:45:4f:ad:42:28:6c:90:51:e2:e2:43:c3:68:78:7d:2a:19: de:df:91:25:9e:b4:2f:25:53:d8:8d:db:51:45:fc:80:e0:c6: 0f:7d:1d:b5:a6:99:d0:fc:4f:5d:ab:00:a0:0d:a3:cf:72:15: c5:b6:53:3c -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAMEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTE5MzIxMTAvBgNVBAUTKDY1RTE3NzBFNzg4NTUxMEExOENFOTBEOEFBREQ5RURF N0Q1QjM1NTMwHhcNMjUwODIzMDYxNjU4WhcNMjUwODMwMDYxNjU4WjAYMRYwFAYD VQQDEw02OGE5NWNkYS05NjYyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxdjKMNNPDYxuaRMv/fyIewi+WDmowgbMoeiEr/l7FRuw1mqmIbx0GLy5Zbzh qvuls76FX4+9nDmz8Fzpfc7BlF0zfeTKSsJiWChyZkJWxzAvcGXzy3Rnv429VXCj /klbAuAQkCkiXbBxGTTPLSo60GgYdU5IU3gnfp8mB/hXosOlXXB2NzF4OpkpVKFC GpeyDuxB9xrYFEIP9AZ1XM1fygDHQqCgiKKXBz49XUC1FfYRJxkE7kekHbYoQslO RX8tmy4wkvDUg0uQ/Hjr4uCKO+vEuCBLu9FiO0PFIcjdNIx82wAQYTHLSXsTOTrD gkUquzeY1/rH5e2Hq3w3XULEuwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFGAzDG3U PYnPKOfdHDDHCRfZpD/KMB8GA1UdIwQYMBaAFGXhdw54hVEKGM6Q2Krdnt59WzVT MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1MTkzMi81MjFDOEU1Qzcy MDcxMUVGOURDOEJBMjFDNEY5QUUwMi9aZUYzRG5pRlVRb1l6cERZcXQyZTNuMWJO Vk0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1plRjNEbmlGVVFvWXpwRFlxdDJlM24xYk5WTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 MTkzMi81MjFDOEU1QzcyMDcxMUVGOURDOEJBMjFDNEY5QUUwMi9aZUYzRG5pRlVR b1l6cERZcXQyZTNuMWJOVk0ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCYg5dscEmDnOOAIIXdfx9+LOrcVd8+/7kX9ataPoDiEHQ2fyVgEoRt oz9dJFf2y0kAJG1lutSwbmXMuvhzpQHjVJFGz4Trrsk7F2c6oMfCGEKnLf3y2UAs YUC8GeRwUzu8S6Ie8Ex64gQFgjiFYpycsbZpNiTNz4CgSJwhbptloYW98Ukrt1wi l76+Otu/7lvXutooxeGBUi8m5l0cqckEo5y0HZhfQPgOMMNKwkkZEERY4q2G4tfl /HOUxvUQfOtzGFeaGctHRU+tQihskFHi4kPDaHh9Khne35ElnrQvJVPYjdtRRfyA 4MYPfR21ppnQ/E9dqwCgDaPPchXFtlM8 -----END CERTIFICATE-----Generated at Sun Aug 24 00:44:18 2025 by rpki-client