$ rpki-client -vvf rpki.apnic.net/member_repository/A9175F43/599FEB44CBF611EF9F57E92DC4F9AE02/ZM9TLI4gsZbSW8fMflkyT5OBMnU.mft File: ZM9TLI4gsZbSW8fMflkyT5OBMnU.mft (raw, json) Hash identifier: TmjLcmOOk84SnNpmtIPide+5/eEvoERmo4gPJkAcAhU= Subject key identifier: B0:0F:60:4C:E1:B7:B0:7F:9E:1E:F1:BF:5A:3A:DC:47:FE:DC:5E:16 Authority key identifier: 64:CF:53:2C:8E:20:B1:96:D2:5B:C7:CC:7E:59:32:4F:93:81:32:75 Certificate issuer: /CN=A9175F43/serialNumber=64CF532C8E20B196D25BC7CC7E59324F93813275 Certificate serial: 7A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ZM9TLI4gsZbSW8fMflkyT5OBMnU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9175F43/599FEB44CBF611EF9F57E92DC4F9AE02/ZM9TLI4gsZbSW8fMflkyT5OBMnU.mft Manifest number: 78 Signing time: Sat 23 Aug 2025 07:01:22 +0000 Manifest this update: Sat 23 Aug 2025 07:01:22 +0000 Manifest next update: Sat 30 Aug 2025 07:01:22 +0000 Files and hashes: 1: ZM9TLI4gsZbSW8fMflkyT5OBMnU.crl (hash: HtAe2pXi8Ia1bgbb9vz1Wq85xT0q1FFKCAyoTegulcw=) 2: B8587822CBF611EFAE14812EC4F9AE02.roa (hash: lDKeRG9eEL+s1K16vRs3ICLsEsEkHJhrK4mCAHxbCQs=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9175F43/599FEB44CBF611EF9F57E92DC4F9AE02/ZM9TLI4gsZbSW8fMflkyT5OBMnU.crl rsync://rpki.apnic.net/member_repository/A9175F43/599FEB44CBF611EF9F57E92DC4F9AE02/ZM9TLI4gsZbSW8fMflkyT5OBMnU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ZM9TLI4gsZbSW8fMflkyT5OBMnU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Aug 2025 07:01:21 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 122 (0x7a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9175F43, serialNumber=64CF532C8E20B196D25BC7CC7E59324F93813275 Validity Not Before: Aug 23 07:01:22 2025 GMT Not After : Aug 30 07:01:22 2025 GMT Subject: CN=68a96742-3f54 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d7:09:d2:48:29:d2:fb:ba:10:d8:21:8b:28:43: 6c:af:23:24:dd:c9:1f:a3:90:96:fa:90:75:fa:34: 59:c2:ad:34:81:2d:41:5e:2a:42:71:dc:da:9c:79: ff:45:3b:a8:92:80:eb:9c:c8:bb:4c:4b:cc:b7:a2: 0b:07:f7:e9:ba:5b:87:4b:96:15:ce:be:6d:d3:60: a3:2e:d4:b5:9f:6f:31:d2:08:38:42:e5:17:63:b2: e0:3f:53:dd:ee:09:b0:a7:7e:04:fa:ff:a1:f8:ed: c5:6f:e2:bf:10:ef:41:a8:34:39:bd:f5:8b:ed:8e: 1d:39:c4:ca:22:6f:73:2c:6e:55:b8:be:cf:c3:dc: 4e:41:d1:a1:10:6c:19:b2:4e:b0:b4:b0:e5:48:b8: 4f:51:73:b6:5a:28:79:09:5c:78:78:a6:83:1e:43: 88:8d:2c:02:ac:db:69:86:cf:c0:57:82:be:a0:c4: 05:e9:42:3f:96:14:6a:93:0a:b0:32:e3:5d:5f:ea: 5c:85:13:ed:9d:7b:81:5e:95:03:21:80:a5:01:ee: 47:ab:5d:43:b4:2b:5b:91:10:0d:19:74:a5:ae:19: fe:64:88:e0:05:f4:3e:78:88:61:95:c5:33:3a:1a: 4c:7b:f3:1c:ab:8c:82:5a:8b:cb:34:ac:a0:e7:3c: c3:b1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B0:0F:60:4C:E1:B7:B0:7F:9E:1E:F1:BF:5A:3A:DC:47:FE:DC:5E:16 X509v3 Authority Key Identifier: keyid:64:CF:53:2C:8E:20:B1:96:D2:5B:C7:CC:7E:59:32:4F:93:81:32:75 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9175F43/599FEB44CBF611EF9F57E92DC4F9AE02/ZM9TLI4gsZbSW8fMflkyT5OBMnU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ZM9TLI4gsZbSW8fMflkyT5OBMnU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9175F43/599FEB44CBF611EF9F57E92DC4F9AE02/ZM9TLI4gsZbSW8fMflkyT5OBMnU.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 02:4a:8e:8c:bc:cb:d5:b4:45:eb:29:60:c3:0d:82:a3:80:49: a8:66:8d:e6:87:13:8f:67:5c:79:52:0c:89:af:b9:a1:62:b0: 78:ca:89:b5:b9:c3:db:f6:bb:4f:6e:ad:c2:a3:83:d6:69:ba: a0:40:37:4f:ef:da:64:8d:58:10:f6:7f:93:a8:79:57:5e:24: 8f:87:66:d5:3a:1d:8f:ba:36:0a:ae:59:b7:1c:66:8c:fa:49: c5:bd:81:c9:29:94:08:8c:0a:32:4f:ce:09:05:cc:8b:34:78: 2f:d2:ff:d5:5e:c4:2a:4c:8b:94:c2:5f:b1:49:8e:91:3f:4c: c2:0e:ab:da:ee:c0:12:39:e7:5f:32:ff:6d:c4:3a:5b:aa:cb: d5:f2:5d:0f:ae:ba:00:7b:f7:11:af:1a:fd:46:61:c9:5d:0d: a7:f6:03:a5:75:08:8e:42:dd:66:60:ef:c7:5c:27:da:8b:13: 01:7f:d1:c7:46:ae:2c:81:c7:35:d3:85:e4:57:27:ed:0d:c4: d9:24:4d:51:1b:5a:22:40:4b:98:26:59:92:d0:49:c7:78:d8: 4f:99:e7:90:1c:7a:2e:97:73:27:24:31:87:d7:48:6a:4b:df: 65:8f:6b:25:9d:39:f2:ea:e5:02:65:da:bf:a2:74:10:b3:a4: 2b:4b:87:d8 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBejANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE3 NUY0MzExMC8GA1UEBRMoNjRDRjUzMkM4RTIwQjE5NkQyNUJDN0NDN0U1OTMyNEY5 MzgxMzI3NTAeFw0yNTA4MjMwNzAxMjJaFw0yNTA4MzAwNzAxMjJaMBgxFjAUBgNV BAMTDTY4YTk2NzQyLTNmNTQwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDXCdJIKdL7uhDYIYsoQ2yvIyTdyR+jkJb6kHX6NFnCrTSBLUFeKkJx3Nqcef9F O6iSgOucyLtMS8y3ogsH9+m6W4dLlhXOvm3TYKMu1LWfbzHSCDhC5RdjsuA/U93u CbCnfgT6/6H47cVv4r8Q70GoNDm99Yvtjh05xMoib3MsblW4vs/D3E5B0aEQbBmy TrC0sOVIuE9Rc7ZaKHkJXHh4poMeQ4iNLAKs22mGz8BXgr6gxAXpQj+WFGqTCrAy 411f6lyFE+2de4FelQMhgKUB7kerXUO0K1uREA0ZdKWuGf5kiOAF9D54iGGVxTM6 Gkx78xyrjIJai8s0rKDnPMOxAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUsA9gTOG3 sH+eHvG/WjrcR/7cXhYwHwYDVR0jBBgwFoAUZM9TLI4gsZbSW8fMflkyT5OBMnUw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTc1RjQzLzU5OUZFQjQ0Q0JG NjExRUY5RjU3RTkyREM0RjlBRTAyL1pNOVRMSTRnc1piU1c4Zk1mbGt5VDVPQk1u VS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvWk05VExJNGdzWmJTVzhmTWZsa3lUNU9CTW5VLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTc1 RjQzLzU5OUZFQjQ0Q0JGNjExRUY5RjU3RTkyREM0RjlBRTAyL1pNOVRMSTRnc1pi U1c4Zk1mbGt5VDVPQk1uVS5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAAJKjoy8y9W0RespYMMNgqOASahmjeaHE49nXHlSDImvuaFisHjKibW5 w9v2u09urcKjg9ZpuqBAN0/v2mSNWBD2f5OoeVdeJI+HZtU6HY+6NgquWbccZoz6 ScW9gckplAiMCjJPzgkFzIs0eC/S/9VexCpMi5TCX7FJjpE/TMIOq9ruwBI5518y /23EOluqy9XyXQ+uugB79xGvGv1GYcldDaf2A6V1CI5C3WZg78dcJ9qLEwF/0cdG riyBxzXTheRXJ+0NxNkkTVEbWiJAS5gmWZLQScd42E+Z55Acei6XcyckMYfXSGpL 32WPayWdOfLq5QJl2r+idBCzpCtLh9g= -----END CERTIFICATE-----Generated at Sat Aug 23 19:03:29 2025 by rpki-client