$ rpki-client -vvf rpki.apnic.net/member_repository/A916523A/E75B878C4CDD11F0BFA08F80C4F9AE02/zES2e9GPRfbhN63kcxM1pVGmYSc.mft File: zES2e9GPRfbhN63kcxM1pVGmYSc.mft (raw, json) Hash identifier: l+r5ltu+1THWNjKIUSU8YbMeDAVQbnnFZDWc9tcEi5Y= Subject key identifier: 63:85:F2:4C:B0:20:17:A9:DE:9A:60:C8:9E:C2:98:CF:9D:32:6B:A4 Authority key identifier: CC:44:B6:7B:D1:8F:45:F6:E1:37:AD:E4:73:13:35:A5:51:A6:61:27 Certificate issuer: /CN=A916523A/serialNumber=CC44B67BD18F45F6E137ADE4731335A551A66127 Certificate serial: 08 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/zES2e9GPRfbhN63kcxM1pVGmYSc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A916523A/E75B878C4CDD11F0BFA08F80C4F9AE02/zES2e9GPRfbhN63kcxM1pVGmYSc.mft Manifest number: 07 Signing time: Sun 29 Jun 2025 07:10:46 +0000 Manifest this update: Sun 29 Jun 2025 07:10:46 +0000 Manifest next update: Sun 06 Jul 2025 07:10:46 +0000 Files and hashes: 1: zES2e9GPRfbhN63kcxM1pVGmYSc.crl (hash: Lol7kA+xDx/iqeo5jGE6EUSXaYqGKdI9G0z/i/Sqnfw=) 2: 469F3FE44CDF11F08D2EFF16C4F9AE02.roa (hash: V/fASBu8lY37YHb4lDAmyOYyJCBMY5CbifIBgISs7Nk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A916523A/E75B878C4CDD11F0BFA08F80C4F9AE02/zES2e9GPRfbhN63kcxM1pVGmYSc.crl rsync://rpki.apnic.net/member_repository/A916523A/E75B878C4CDD11F0BFA08F80C4F9AE02/zES2e9GPRfbhN63kcxM1pVGmYSc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/zES2e9GPRfbhN63kcxM1pVGmYSc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 06 Jul 2025 07:10:45 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 8 (0x8) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A916523A, serialNumber=CC44B67BD18F45F6E137ADE4731335A551A66127 Validity Not Before: Jun 29 07:10:46 2025 GMT Not After : Jul 6 07:10:46 2025 GMT Subject: CN=6860e6f6-6b81 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:95:e4:88:70:e2:27:9e:0f:aa:5d:f6:21:98:7d: 5b:ab:3b:4e:56:f8:8f:6a:88:1b:ee:2e:11:73:22: 1d:a5:f7:56:44:68:c0:ea:51:bf:5c:ea:5e:9e:bd: 44:0c:84:af:df:b2:cf:b7:a3:40:08:d6:80:27:3d: 22:56:bb:27:78:93:d8:95:26:55:79:8e:da:95:f0: a3:8b:d0:66:94:99:f9:e3:9d:cf:88:74:9b:de:53: e2:00:dc:26:83:8e:6f:8d:fa:89:a3:f4:3a:4d:d5: 42:c3:74:cb:3f:38:f7:86:ca:7b:08:f6:82:76:eb: e8:14:1e:7f:22:f7:b6:d6:ec:2e:7b:58:48:57:74: 74:9e:34:22:03:e6:f4:37:5e:13:77:0e:da:6b:5f: 5a:b3:ea:78:21:8b:f4:08:66:61:5c:b0:8a:24:4d: 71:73:bf:c3:7e:6c:79:01:98:8c:9d:44:e5:9c:50: 2a:df:30:2a:b5:c1:f4:73:82:e0:6f:e9:d2:93:cf: a0:61:d8:24:13:1b:66:6b:5e:40:af:3f:6e:61:ba: 4b:d4:2e:ad:9e:8a:f6:73:f1:d1:a9:c7:d7:0f:b0: ea:7c:52:c2:3e:68:27:24:34:5f:09:55:e1:e0:d7: a5:2a:a1:a9:92:49:e9:b5:41:52:41:12:06:a5:9d: 61:19 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 63:85:F2:4C:B0:20:17:A9:DE:9A:60:C8:9E:C2:98:CF:9D:32:6B:A4 X509v3 Authority Key Identifier: keyid:CC:44:B6:7B:D1:8F:45:F6:E1:37:AD:E4:73:13:35:A5:51:A6:61:27 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A916523A/E75B878C4CDD11F0BFA08F80C4F9AE02/zES2e9GPRfbhN63kcxM1pVGmYSc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/zES2e9GPRfbhN63kcxM1pVGmYSc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A916523A/E75B878C4CDD11F0BFA08F80C4F9AE02/zES2e9GPRfbhN63kcxM1pVGmYSc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 78:da:01:fc:ab:87:68:9d:3d:3f:8a:ae:e5:76:e5:fb:b5:0c: 58:d5:67:ed:28:b4:7b:ef:5e:4a:b1:0f:06:36:4f:b4:22:a0: 2a:dc:b7:20:d6:42:6e:6a:c3:62:e2:08:24:4a:9d:45:4a:89: 0c:40:67:fa:22:0c:12:4f:28:9e:b3:0d:37:94:97:c3:f3:ee: 36:bc:60:08:eb:f6:c2:f6:59:6f:a9:5d:b3:9e:6e:0e:17:0e: 1f:53:16:ae:e5:72:dc:0f:ab:fd:79:d9:2d:67:5d:88:30:59: cf:a8:54:dd:8a:63:88:00:e2:d1:b5:0d:ee:6e:da:eb:a9:8e: 48:52:f9:01:81:a7:b4:55:6b:27:62:a5:76:37:ea:80:dc:1c: a2:d7:56:e2:45:84:76:d6:74:6d:90:50:17:70:0b:af:6a:56: 41:33:c4:96:ad:46:b5:86:d8:a7:20:82:32:b2:f6:6b:08:98: 51:d6:92:ab:53:ac:d5:11:54:bd:d4:66:37:2c:c0:f8:00:1b: 4f:86:f5:42:30:43:e5:79:21:8f:5b:93:8c:59:60:12:91:45: 40:3f:e9:f1:27:a9:b6:15:64:83:f8:9b:d9:f6:6c:3a:56:a0: e8:2e:41:cf:21:a8:27:f4:0e:6c:30:30:3c:43:68:83:eb:72: ab:80:3c:87 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBCDANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE2 NTIzQTExMC8GA1UEBRMoQ0M0NEI2N0JEMThGNDVGNkUxMzdBREU0NzMxMzM1QTU1 MUE2NjEyNzAeFw0yNTA2MjkwNzEwNDZaFw0yNTA3MDYwNzEwNDZaMBgxFjAUBgNV BAMTDTY4NjBlNmY2LTZiODEwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCV5Ihw4ieeD6pd9iGYfVurO05W+I9qiBvuLhFzIh2l91ZEaMDqUb9c6l6evUQM hK/fss+3o0AI1oAnPSJWuyd4k9iVJlV5jtqV8KOL0GaUmfnjnc+IdJveU+IA3CaD jm+N+omj9DpN1ULDdMs/OPeGynsI9oJ26+gUHn8i97bW7C57WEhXdHSeNCID5vQ3 XhN3DtprX1qz6nghi/QIZmFcsIokTXFzv8N+bHkBmIydROWcUCrfMCq1wfRzguBv 6dKTz6Bh2CQTG2ZrXkCvP25hukvULq2eivZz8dGpx9cPsOp8UsI+aCckNF8JVeHg 16UqoamSSem1QVJBEgalnWEZAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUY4XyTLAg F6nemmDInsKYz50ya6QwHwYDVR0jBBgwFoAUzES2e9GPRfbhN63kcxM1pVGmYScw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTY1MjNBL0U3NUI4NzhDNENE RDExRjBCRkEwOEY4MEM0RjlBRTAyL3pFUzJlOUdQUmZiaE42M2tjeE0xcFZHbVlT Yy5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvekVTMmU5R1BSZmJoTjYza2N4TTFwVkdtWVNjLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTY1 MjNBL0U3NUI4NzhDNENERDExRjBCRkEwOEY4MEM0RjlBRTAyL3pFUzJlOUdQUmZi aE42M2tjeE0xcFZHbVlTYy5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAHjaAfyrh2idPT+KruV25fu1DFjVZ+0otHvvXkqxDwY2T7QioCrctyDW Qm5qw2LiCCRKnUVKiQxAZ/oiDBJPKJ6zDTeUl8Pz7ja8YAjr9sL2WW+pXbOebg4X Dh9TFq7lctwPq/152S1nXYgwWc+oVN2KY4gA4tG1De5u2uupjkhS+QGBp7RVaydi pXY36oDcHKLXVuJFhHbWdG2QUBdwC69qVkEzxJatRrWG2KcggjKy9msImFHWkqtT rNURVL3UZjcswPgAG0+G9UIwQ+V5IY9bk4xZYBKRRUA/6fEnqbYVZIP4m9n2bDpW oOguQc8hqCf0DmwwMDxDaIPrcquAPIc= -----END CERTIFICATE-----Generated at Tue Jul 1 01:15:46 2025 by rpki-client