$ rpki-client -vvf rpki.apnic.net/member_repository/A91BEC31/3CF53622E4A411EFB276F25DC4F9AE02/Z9ecOxEW02-54XHWZY-PQ7U8cvo.mft File: Z9ecOxEW02-54XHWZY-PQ7U8cvo.mft (raw, json) Hash identifier: H76M9lQyA7odrnwN+NGisn7rGSBEHglcTxuzZJUd91c= Subject key identifier: 7D:93:62:AE:7E:4F:76:0B:E8:C8:60:94:5A:2F:00:E7:D0:22:B8:1E Authority key identifier: 67:D7:9C:3B:11:16:D3:6F:B9:E1:71:D6:65:8F:8F:43:B5:3C:72:FA Certificate issuer: /CN=A91BEC31/serialNumber=67D79C3B1116D36FB9E171D6658F8F43B53C72FA Certificate serial: 6B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Z9ecOxEW02-54XHWZY-PQ7U8cvo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91BEC31/3CF53622E4A411EFB276F25DC4F9AE02/Z9ecOxEW02-54XHWZY-PQ7U8cvo.mft Manifest number: 69 Signing time: Sat 23 Aug 2025 07:13:58 +0000 Manifest this update: Sat 23 Aug 2025 07:13:58 +0000 Manifest next update: Sat 30 Aug 2025 07:13:58 +0000 Files and hashes: 1: Z9ecOxEW02-54XHWZY-PQ7U8cvo.crl (hash: 3SfpZ8lF3MEbaUhofDK1wsHDsyQLypdG+9t1LynLTBA=) 2: F8B0BFEEE4A411EF8C2D0460C4F9AE02.roa (hash: HEKgeQjMhMYDkC2JrcKXdt5Voc5+W7Do5jSGbSkekDc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91BEC31/3CF53622E4A411EFB276F25DC4F9AE02/Z9ecOxEW02-54XHWZY-PQ7U8cvo.crl rsync://rpki.apnic.net/member_repository/A91BEC31/3CF53622E4A411EFB276F25DC4F9AE02/Z9ecOxEW02-54XHWZY-PQ7U8cvo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Z9ecOxEW02-54XHWZY-PQ7U8cvo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Aug 2025 07:13:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 107 (0x6b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91BEC31, serialNumber=67D79C3B1116D36FB9E171D6658F8F43B53C72FA Validity Not Before: Aug 23 07:13:58 2025 GMT Not After : Aug 30 07:13:58 2025 GMT Subject: CN=68a96a36-d513 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:fb:57:db:cb:dc:ed:14:6e:94:ad:9d:84:74:c1: 29:38:3f:e1:62:e0:93:d3:2d:ab:b3:13:e6:28:11: 11:ab:32:10:bd:54:46:0c:04:b1:aa:51:83:a0:93: af:2c:66:a4:86:05:2a:cb:00:fc:62:28:e5:c2:f2: a7:46:c1:da:87:ba:93:dc:8b:3d:33:a8:69:0f:50: 37:a4:4a:6c:a0:c4:5e:ab:70:e9:28:2d:ac:9a:55: 5d:92:a1:e2:72:cf:9b:5b:f0:92:80:d7:19:42:68: dc:c8:5d:d3:5b:48:68:67:39:c4:46:4a:12:91:b7: b0:ba:b7:20:fc:a2:bf:75:bf:83:ff:2a:ed:57:3c: b4:0b:00:b8:a4:db:cc:9f:6d:07:31:db:e4:4f:b4: 18:10:f8:cc:07:ce:4f:66:68:a6:76:b0:7c:68:5c: 6f:55:8a:73:b6:96:e1:c3:88:c5:23:90:b8:c7:3d: 12:36:e7:7b:0e:ec:22:cb:b9:13:65:43:4d:70:b3: 77:8d:b0:cf:6f:b1:5c:20:af:26:c4:65:d3:48:23: 7a:16:8e:6d:11:d1:0b:84:4c:98:97:08:8f:93:0a: 4e:76:b3:e6:c7:78:3a:6f:4c:82:c3:87:1c:a9:a7: 17:77:5b:b7:0e:03:d4:f2:20:8f:28:6e:d0:2b:90: 58:4f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7D:93:62:AE:7E:4F:76:0B:E8:C8:60:94:5A:2F:00:E7:D0:22:B8:1E X509v3 Authority Key Identifier: keyid:67:D7:9C:3B:11:16:D3:6F:B9:E1:71:D6:65:8F:8F:43:B5:3C:72:FA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91BEC31/3CF53622E4A411EFB276F25DC4F9AE02/Z9ecOxEW02-54XHWZY-PQ7U8cvo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Z9ecOxEW02-54XHWZY-PQ7U8cvo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91BEC31/3CF53622E4A411EFB276F25DC4F9AE02/Z9ecOxEW02-54XHWZY-PQ7U8cvo.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 40:b2:7d:ee:02:fd:bc:92:ca:8c:66:01:7b:a8:40:2a:6b:b7: 3d:ec:6a:22:6a:05:93:98:d8:a5:c7:43:c7:e3:53:3a:e0:a9: e4:13:de:c9:cc:95:ee:38:e1:80:f9:f3:18:4c:d5:05:cd:80: 66:b0:3b:85:9a:7d:4e:a6:f4:65:95:55:51:5f:0f:ff:ca:58: 68:40:87:4a:05:6b:12:18:5f:39:af:97:34:49:54:40:45:5f: 23:8e:ca:a5:80:12:a7:0e:61:d9:0f:a3:78:01:66:e9:ba:a3: ae:f7:11:17:15:f8:17:f3:7d:64:52:48:a8:9b:72:40:ea:e9: 3e:93:19:c3:07:a8:0a:4a:3f:4c:99:ed:70:f7:15:b3:99:12: 0b:d2:ca:ff:42:06:0c:0d:5a:41:d8:db:c7:15:f6:e3:b0:cf: c4:b5:8e:55:4e:18:bd:fa:b0:8a:55:bd:ec:83:23:74:91:5f: 3b:78:64:62:2e:7a:c9:5e:78:df:9d:33:45:68:15:5a:38:75: 74:75:6c:3e:80:43:c1:ed:ca:99:23:07:7b:c9:7c:06:7e:9a: 61:a5:2d:5f:3e:fe:4b:b4:5a:30:db:0d:cb:1d:d4:50:90:5c: 11:03:27:ec:bd:ac:12:f3:c4:eb:a9:e4:5e:b9:f1:8c:f3:82: 32:a5:9d:7a -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBazANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFC RUMzMTExMC8GA1UEBRMoNjdENzlDM0IxMTE2RDM2RkI5RTE3MUQ2NjU4RjhGNDNC NTNDNzJGQTAeFw0yNTA4MjMwNzEzNThaFw0yNTA4MzAwNzEzNThaMBgxFjAUBgNV BAMTDTY4YTk2YTM2LWQ1MTMwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQD7V9vL3O0UbpStnYR0wSk4P+Fi4JPTLauzE+YoERGrMhC9VEYMBLGqUYOgk68s ZqSGBSrLAPxiKOXC8qdGwdqHupPciz0zqGkPUDekSmygxF6rcOkoLayaVV2SoeJy z5tb8JKA1xlCaNzIXdNbSGhnOcRGShKRt7C6tyD8or91v4P/Ku1XPLQLALik28yf bQcx2+RPtBgQ+MwHzk9maKZ2sHxoXG9VinO2luHDiMUjkLjHPRI253sO7CLLuRNl Q01ws3eNsM9vsVwgrybEZdNII3oWjm0R0QuETJiXCI+TCk52s+bHeDpvTILDhxyp pxd3W7cOA9TyII8obtArkFhPAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUfZNirn5P dgvoyGCUWi8A59AiuB4wHwYDVR0jBBgwFoAUZ9ecOxEW02+54XHWZY+PQ7U8cvow DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUJFQzMxLzNDRjUzNjIyRTRB NDExRUZCMjc2RjI1REM0RjlBRTAyL1o5ZWNPeEVXMDItNTRYSFdaWS1QUTdVOGN2 by5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvWjllY094RVcwMi01NFhIV1pZLVBRN1U4Y3ZvLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUJF QzMxLzNDRjUzNjIyRTRBNDExRUZCMjc2RjI1REM0RjlBRTAyL1o5ZWNPeEVXMDIt NTRYSFdaWS1QUTdVOGN2by5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAECyfe4C/bySyoxmAXuoQCprtz3saiJqBZOY2KXHQ8fjUzrgqeQT3snM le444YD58xhM1QXNgGawO4WafU6m9GWVVVFfD//KWGhAh0oFaxIYXzmvlzRJVEBF XyOOyqWAEqcOYdkPo3gBZum6o673ERcV+BfzfWRSSKibckDq6T6TGcMHqApKP0yZ 7XD3FbOZEgvSyv9CBgwNWkHY28cV9uOwz8S1jlVOGL36sIpVveyDI3SRXzt4ZGIu esleeN+dM0VoFVo4dXR1bD6AQ8HtypkjB3vJfAZ+mmGlLV8+/ku0WjDbDcsd1FCQ XBEDJ+y9rBLzxOup5F658YzzgjKlnXo= -----END CERTIFICATE-----Generated at Sat Aug 23 18:53:46 2025 by rpki-client