$ rpki-client -vvf rpki.apnic.net/member_repository/A9189132/D264A2A4458C11EA8E6F6D0CC4F9AE02/ztWVHA4vwvZh_u8cNxtnsj8cUt8.mft File: ztWVHA4vwvZh_u8cNxtnsj8cUt8.mft (raw, json) Hash identifier: 6VePh5JvGhxpH5tGK1nKjsjUXIzQmj6lAoPK4ULW6Aw= Subject key identifier: DF:90:C4:C9:F8:11:55:62:A4:C4:1F:09:E0:EB:76:63:1C:D1:87:37 Authority key identifier: CE:D5:95:1C:0E:2F:C2:F6:61:FE:EF:1C:37:1B:67:B2:3F:1C:52:DF Certificate issuer: /CN=A9189132/serialNumber=CED5951C0E2FC2F661FEEF1C371B67B23F1C52DF Certificate serial: 0B2E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ztWVHA4vwvZh_u8cNxtnsj8cUt8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9189132/D264A2A4458C11EA8E6F6D0CC4F9AE02/ztWVHA4vwvZh_u8cNxtnsj8cUt8.mft Manifest number: 0B26 Signing time: Fri 22 Aug 2025 19:24:15 +0000 Manifest this update: Fri 22 Aug 2025 19:24:15 +0000 Manifest next update: Fri 29 Aug 2025 19:24:15 +0000 Files and hashes: 1: ztWVHA4vwvZh_u8cNxtnsj8cUt8.crl (hash: 0gNc06CJcdVc00WPsW74YFBfo8C+JOBXY/MZ85H8Ueo=) 2: 4E6B4E24458E11EA84E01A0FC4F9AE02.roa (hash: QbUyZORfUsAuIPfZUHLWRtdmTwbA8QqQPT+t+aGRe2I=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9189132/D264A2A4458C11EA8E6F6D0CC4F9AE02/ztWVHA4vwvZh_u8cNxtnsj8cUt8.crl rsync://rpki.apnic.net/member_repository/A9189132/D264A2A4458C11EA8E6F6D0CC4F9AE02/ztWVHA4vwvZh_u8cNxtnsj8cUt8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ztWVHA4vwvZh_u8cNxtnsj8cUt8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Aug 2025 19:24:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2862 (0xb2e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9189132, serialNumber=CED5951C0E2FC2F661FEEF1C371B67B23F1C52DF Validity Not Before: Aug 22 19:24:15 2025 GMT Not After : Aug 29 19:24:15 2025 GMT Subject: CN=68a8c3df-3d87 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cc:1a:d1:bc:4e:18:f2:d9:aa:b2:a9:f4:4f:39: f9:4d:8e:13:eb:01:43:de:b7:15:63:83:e3:26:8c: a4:31:e6:82:c1:20:d0:97:35:bc:d2:55:98:e5:81: 99:cf:2e:63:80:9d:40:d3:7b:b6:2b:7c:75:14:06: c1:c1:10:e5:64:e6:26:36:e3:0e:a3:df:f3:f4:43: 17:a2:b8:56:9d:ad:89:04:3d:1f:7a:4f:e2:67:e4: 67:e3:00:e9:2e:34:0c:0f:f8:12:9b:0b:f3:c0:71: 7a:00:8d:e1:d9:27:af:b4:72:94:ce:d2:60:ea:b3: 09:70:e4:ee:8d:fa:5a:90:5a:d4:d8:23:af:66:5e: 54:49:3c:96:3f:4d:d6:5e:1f:46:38:5b:ed:44:42: ef:c5:18:17:1a:bb:b0:d3:fe:01:c5:84:74:d1:70: 2f:f6:a2:b8:b0:d1:6a:99:32:82:2c:f9:67:64:63: d6:3a:11:fc:6d:81:59:f7:55:5c:0f:ce:dc:a5:5e: c5:4b:84:4e:88:b2:17:5b:db:29:23:44:f1:bf:3a: 54:ac:9e:0a:2c:f5:0d:39:6b:5b:b1:b4:01:8a:f2: 69:69:e1:b5:04:9a:5a:f6:c2:7c:e5:d5:28:4d:42: bd:fd:4e:c7:70:10:9d:8d:56:62:bc:32:27:61:af: 18:39 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DF:90:C4:C9:F8:11:55:62:A4:C4:1F:09:E0:EB:76:63:1C:D1:87:37 X509v3 Authority Key Identifier: keyid:CE:D5:95:1C:0E:2F:C2:F6:61:FE:EF:1C:37:1B:67:B2:3F:1C:52:DF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9189132/D264A2A4458C11EA8E6F6D0CC4F9AE02/ztWVHA4vwvZh_u8cNxtnsj8cUt8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ztWVHA4vwvZh_u8cNxtnsj8cUt8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9189132/D264A2A4458C11EA8E6F6D0CC4F9AE02/ztWVHA4vwvZh_u8cNxtnsj8cUt8.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 9c:cf:a3:06:8b:8e:ad:bf:8e:0d:24:22:10:ec:ef:b7:66:b1: 2e:96:ac:05:98:b3:7d:92:6c:5c:5f:50:af:13:46:a0:74:cb: 7c:c0:b3:e7:0d:4e:be:cf:3d:32:11:e8:53:26:dc:af:d2:f5: 3e:5b:1e:f9:9c:03:19:87:22:28:fc:22:7b:8d:0f:8b:d9:51: 32:54:7a:d7:a8:ae:f7:5f:6c:0c:4c:73:c9:20:0f:5c:bf:5b: d8:84:45:79:8b:9a:d0:ef:29:93:77:61:17:ba:0b:16:f6:99: b2:42:1a:4c:88:6c:ec:00:9b:97:2b:21:0d:b4:18:d9:ed:b1: 8d:6f:3a:8d:44:ba:9e:31:dc:77:c0:e5:30:14:ef:d2:27:17: 20:b8:d6:3b:ce:36:8a:78:16:24:53:cc:a7:51:f3:c7:8e:0f: ee:f4:5f:a3:36:e6:44:e0:a8:7a:fe:88:09:fd:e5:b4:06:66: 69:fc:4f:0c:d0:ef:ec:52:e8:45:fd:ec:71:09:88:95:5b:73: c8:73:26:6e:53:fa:7d:52:3f:a0:cf:b6:79:7e:f0:f0:2b:ff: 42:90:16:72:cc:a6:24:54:cf:75:9e:6d:7a:fb:16:cb:ed:24: 2f:db:2d:d8:2e:75:4e:f0:e2:d1:a8:ce:d5:96:62:04:73:9b: c5:fb:0b:5e -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCy4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx ODkxMzIxMTAvBgNVBAUTKENFRDU5NTFDMEUyRkMyRjY2MUZFRUYxQzM3MUI2N0Iy M0YxQzUyREYwHhcNMjUwODIyMTkyNDE1WhcNMjUwODI5MTkyNDE1WjAYMRYwFAYD VQQDEw02OGE4YzNkZi0zZDg3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzBrRvE4Y8tmqsqn0Tzn5TY4T6wFD3rcVY4PjJoykMeaCwSDQlzW80lWY5YGZ zy5jgJ1A03u2K3x1FAbBwRDlZOYmNuMOo9/z9EMXorhWna2JBD0fek/iZ+Rn4wDp LjQMD/gSmwvzwHF6AI3h2SevtHKUztJg6rMJcOTujfpakFrU2COvZl5USTyWP03W Xh9GOFvtRELvxRgXGruw0/4BxYR00XAv9qK4sNFqmTKCLPlnZGPWOhH8bYFZ91Vc D87cpV7FS4ROiLIXW9spI0TxvzpUrJ4KLPUNOWtbsbQBivJpaeG1BJpa9sJ85dUo TUK9/U7HcBCdjVZivDInYa8YOQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFN+QxMn4 EVVipMQfCeDrdmMc0Yc3MB8GA1UdIwQYMBaAFM7VlRwOL8L2Yf7vHDcbZ7I/HFLf MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4OTEzMi9EMjY0QTJBNDQ1 OEMxMUVBOEU2RjZEMENDNEY5QUUwMi96dFdWSEE0dnd2WmhfdThjTnh0bnNqOGNV dDguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3p0V1ZIQTR2d3ZaaF91OGNOeHRuc2o4Y1V0OC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 OTEzMi9EMjY0QTJBNDQ1OEMxMUVBOEU2RjZEMENDNEY5QUUwMi96dFdWSEE0dnd2 WmhfdThjTnh0bnNqOGNVdDgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCcz6MGi46tv44NJCIQ7O+3ZrEulqwFmLN9kmxcX1CvE0agdMt8wLPn DU6+zz0yEehTJtyv0vU+Wx75nAMZhyIo/CJ7jQ+L2VEyVHrXqK73X2wMTHPJIA9c v1vYhEV5i5rQ7ymTd2EXugsW9pmyQhpMiGzsAJuXKyENtBjZ7bGNbzqNRLqeMdx3 wOUwFO/SJxcguNY7zjaKeBYkU8ynUfPHjg/u9F+jNuZE4Kh6/ogJ/eW0BmZp/E8M 0O/sUuhF/exxCYiVW3PIcyZuU/p9Uj+gz7Z5fvDwK/9CkBZyzKYkVM91nm16+xbL 7SQv2y3YLnVO8OLRqM7VlmIEc5vF+wte -----END CERTIFICATE-----Generated at Sat Aug 23 20:32:21 2025 by rpki-client