$ rpki-client -vvf rpki.apnic.net/member_repository/A916523A/E75B878C4CDD11F0BFA08F80C4F9AE02/zES2e9GPRfbhN63kcxM1pVGmYSc.mft File: zES2e9GPRfbhN63kcxM1pVGmYSc.mft (raw, json) Hash identifier: XEaSS2gcXoGGP3OTJYKumXL8DUgOmX4f3z6n/jLph5M= Subject key identifier: 44:90:26:18:FB:B2:AA:4D:31:BB:5D:80:B0:63:C7:5F:1D:15:C0:FD Authority key identifier: CC:44:B6:7B:D1:8F:45:F6:E1:37:AD:E4:73:13:35:A5:51:A6:61:27 Certificate issuer: /CN=A916523A/serialNumber=CC44B67BD18F45F6E137ADE4731335A551A66127 Certificate serial: 24 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/zES2e9GPRfbhN63kcxM1pVGmYSc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A916523A/E75B878C4CDD11F0BFA08F80C4F9AE02/zES2e9GPRfbhN63kcxM1pVGmYSc.mft Manifest number: 23 Signing time: Sat 23 Aug 2025 08:03:59 +0000 Manifest this update: Sat 23 Aug 2025 08:03:58 +0000 Manifest next update: Sat 30 Aug 2025 08:03:58 +0000 Files and hashes: 1: zES2e9GPRfbhN63kcxM1pVGmYSc.crl (hash: /YPfS9dT9J3ZEsrK94BU+SJ1zFtanIxZMDUCL6DCXww=) 2: 469F3FE44CDF11F08D2EFF16C4F9AE02.roa (hash: V/fASBu8lY37YHb4lDAmyOYyJCBMY5CbifIBgISs7Nk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A916523A/E75B878C4CDD11F0BFA08F80C4F9AE02/zES2e9GPRfbhN63kcxM1pVGmYSc.crl rsync://rpki.apnic.net/member_repository/A916523A/E75B878C4CDD11F0BFA08F80C4F9AE02/zES2e9GPRfbhN63kcxM1pVGmYSc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/zES2e9GPRfbhN63kcxM1pVGmYSc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Aug 2025 08:03:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 36 (0x24) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A916523A, serialNumber=CC44B67BD18F45F6E137ADE4731335A551A66127 Validity Not Before: Aug 23 08:03:58 2025 GMT Not After : Aug 30 08:03:58 2025 GMT Subject: CN=68a975ef-fdbd Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f6:76:21:f3:96:4a:ff:0e:7f:01:f7:ed:45:25: 85:f6:5c:6d:07:59:19:65:82:9c:b7:e8:8d:ce:35: 8e:a3:b9:87:58:56:2e:46:0f:c6:ea:e7:29:a8:0f: 9d:e1:5a:a7:f3:81:f8:a2:94:05:02:ff:78:f8:6b: f1:6d:40:9b:c4:1a:61:1b:ca:b2:3f:2c:12:c3:4e: 5a:be:36:1b:4a:10:21:dd:e3:75:07:8d:d1:66:d1: 91:ce:76:69:13:fe:6b:43:b6:45:13:ab:a8:53:a1: 81:8f:98:49:2d:c0:cc:a8:4d:c2:fa:02:09:3e:3c: 8f:cb:dd:11:7f:ea:cf:c9:01:ad:eb:d2:f3:df:67: 81:c7:83:42:56:ce:34:ac:96:2d:16:c3:4e:85:9d: 3b:ea:93:95:43:35:48:e5:08:8a:b8:db:5f:4c:58: 6c:3f:c4:aa:c0:17:c0:5e:f6:65:06:e7:10:2d:4e: f4:37:a6:74:77:ca:63:a4:36:ee:bc:ee:22:3b:6c: 16:e3:bf:70:c3:75:32:93:14:f3:05:00:9d:2a:79: 9e:ea:76:c7:1d:58:e5:d7:a8:56:5b:68:bb:5a:49: cf:2a:5d:5c:67:f7:47:61:85:38:b9:83:4e:3e:ab: 11:bf:fb:c6:86:37:15:26:b2:0e:2d:de:40:28:32: 04:45 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 44:90:26:18:FB:B2:AA:4D:31:BB:5D:80:B0:63:C7:5F:1D:15:C0:FD X509v3 Authority Key Identifier: keyid:CC:44:B6:7B:D1:8F:45:F6:E1:37:AD:E4:73:13:35:A5:51:A6:61:27 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A916523A/E75B878C4CDD11F0BFA08F80C4F9AE02/zES2e9GPRfbhN63kcxM1pVGmYSc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/zES2e9GPRfbhN63kcxM1pVGmYSc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A916523A/E75B878C4CDD11F0BFA08F80C4F9AE02/zES2e9GPRfbhN63kcxM1pVGmYSc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 57:e1:f0:1f:1b:22:3e:18:d3:49:35:a1:f1:1a:0d:9e:0b:76: a7:3f:55:7b:10:33:17:b8:92:6a:0b:1b:d8:f4:96:d6:ed:f8: 82:91:7d:f7:80:55:a7:72:d0:f4:69:43:b0:fa:b7:9b:83:84: 0a:39:58:4b:cd:b6:21:2c:42:e8:84:2d:0f:6a:cc:60:a1:df: 9b:a4:fc:13:d3:2e:1d:1c:86:6d:8e:97:49:5d:f9:56:c6:2e: 62:ac:07:ff:d3:f2:de:6c:45:6d:31:c5:93:94:90:a9:dd:00: 17:e4:4a:07:b1:fc:8c:2e:8a:21:84:39:c5:a1:a9:c1:e9:1f: 9c:6e:d6:2d:69:81:73:09:83:1d:83:36:29:93:fb:cc:c9:ac: b5:56:65:f9:c3:ea:9f:ea:e7:41:7e:19:fe:49:74:57:57:6d: ba:69:aa:0c:2b:17:a5:8e:97:5a:9d:9e:77:8a:0c:84:22:92: 89:04:6c:40:66:b7:ff:15:ff:7b:b1:42:30:40:56:13:a1:28: 31:6f:75:95:86:52:88:d4:9c:36:ae:09:6c:e7:34:1f:a7:de: 8d:b3:79:82:90:5c:f2:36:99:58:34:5d:0a:15:ed:33:67:25: ce:9e:b6:e3:df:78:b4:3e:cd:77:d0:65:79:14:89:df:01:61: ef:da:97:e1 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBJDANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE2 NTIzQTExMC8GA1UEBRMoQ0M0NEI2N0JEMThGNDVGNkUxMzdBREU0NzMxMzM1QTU1 MUE2NjEyNzAeFw0yNTA4MjMwODAzNThaFw0yNTA4MzAwODAzNThaMBgxFjAUBgNV BAMTDTY4YTk3NWVmLWZkYmQwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQD2diHzlkr/Dn8B9+1FJYX2XG0HWRllgpy36I3ONY6juYdYVi5GD8bq5ymoD53h WqfzgfiilAUC/3j4a/FtQJvEGmEbyrI/LBLDTlq+NhtKECHd43UHjdFm0ZHOdmkT /mtDtkUTq6hToYGPmEktwMyoTcL6Agk+PI/L3RF/6s/JAa3r0vPfZ4HHg0JWzjSs li0Ww06FnTvqk5VDNUjlCIq4219MWGw/xKrAF8Be9mUG5xAtTvQ3pnR3ymOkNu68 7iI7bBbjv3DDdTKTFPMFAJ0qeZ7qdscdWOXXqFZbaLtaSc8qXVxn90dhhTi5g04+ qxG/+8aGNxUmsg4t3kAoMgRFAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQURJAmGPuy qk0xu12AsGPHXx0VwP0wHwYDVR0jBBgwFoAUzES2e9GPRfbhN63kcxM1pVGmYScw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTY1MjNBL0U3NUI4NzhDNENE RDExRjBCRkEwOEY4MEM0RjlBRTAyL3pFUzJlOUdQUmZiaE42M2tjeE0xcFZHbVlT Yy5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvekVTMmU5R1BSZmJoTjYza2N4TTFwVkdtWVNjLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTY1 MjNBL0U3NUI4NzhDNENERDExRjBCRkEwOEY4MEM0RjlBRTAyL3pFUzJlOUdQUmZi aE42M2tjeE0xcFZHbVlTYy5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAFfh8B8bIj4Y00k1ofEaDZ4Ldqc/VXsQMxe4kmoLG9j0ltbt+IKRffeA Vady0PRpQ7D6t5uDhAo5WEvNtiEsQuiELQ9qzGCh35uk/BPTLh0chm2Ol0ld+VbG LmKsB//T8t5sRW0xxZOUkKndABfkSgex/IwuiiGEOcWhqcHpH5xu1i1pgXMJgx2D NimT+8zJrLVWZfnD6p/q50F+Gf5JdFdXbbppqgwrF6WOl1qdnneKDIQikokEbEBm t/8V/3uxQjBAVhOhKDFvdZWGUojUnDauCWznNB+n3o2zeYKQXPI2mVg0XQoV7TNn Jc6etuPfeLQ+zXfQZXkUid8BYe/al+E= -----END CERTIFICATE-----Generated at Sat Aug 23 18:17:58 2025 by rpki-client