$ rpki-client -vvf rpki.apnic.net/member_repository/A912519D/B8280664C75A11EB81E99E19C4F9AE02/ZrnYT0M2qJ2E0eAuggp5aG4eUsQ.mft File: ZrnYT0M2qJ2E0eAuggp5aG4eUsQ.mft (raw, json) Hash identifier: jAhANZZO82w9xET1ZZoNHCCc3V6MtmIVI8lR5Ezd8sI= Subject key identifier: 5E:D4:43:9A:45:F8:3E:1F:23:1E:8D:73:6D:33:B4:25:05:2B:96:FF Authority key identifier: 66:B9:D8:4F:43:36:A8:9D:84:D1:E0:2E:82:0A:79:68:6E:1E:52:C4 Certificate issuer: /CN=A912519D/serialNumber=66B9D84F4336A89D84D1E02E820A79686E1E52C4 Certificate serial: 05DC Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ZrnYT0M2qJ2E0eAuggp5aG4eUsQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A912519D/B8280664C75A11EB81E99E19C4F9AE02/ZrnYT0M2qJ2E0eAuggp5aG4eUsQ.mft Manifest number: 05D7 Signing time: Wed 06 Aug 2025 23:26:08 +0000 Manifest this update: Wed 06 Aug 2025 23:26:08 +0000 Manifest next update: Wed 13 Aug 2025 23:26:08 +0000 Files and hashes: 1: ZrnYT0M2qJ2E0eAuggp5aG4eUsQ.crl (hash: uqEdncj6Ps16MR9yAhvP/Um4dfxfe5FADZKEeWJIzQA=) 2: 10581DEAC75D11EBB00EBD1AC4F9AE02.roa (hash: JmgPCoqfxLnmCXZ9Kqg1cLPcucyGnFbjlpBzEMSmBKg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A912519D/B8280664C75A11EB81E99E19C4F9AE02/ZrnYT0M2qJ2E0eAuggp5aG4eUsQ.crl rsync://rpki.apnic.net/member_repository/A912519D/B8280664C75A11EB81E99E19C4F9AE02/ZrnYT0M2qJ2E0eAuggp5aG4eUsQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ZrnYT0M2qJ2E0eAuggp5aG4eUsQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 Aug 2025 23:26:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1500 (0x5dc) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A912519D, serialNumber=66B9D84F4336A89D84D1E02E820A79686E1E52C4 Validity Not Before: Aug 6 23:26:08 2025 GMT Not After : Aug 13 23:26:08 2025 GMT Subject: CN=6893e490-47d9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:db:36:ca:26:27:71:2d:38:90:4b:3d:b3:e0:b1: f3:1a:c8:97:b4:6f:06:8d:4a:ff:98:69:98:ef:d3: c7:b5:dc:c5:69:a4:67:5e:7e:7c:13:41:22:05:a5: eb:99:52:05:1b:c6:8a:6e:24:6a:c2:73:b7:7d:d4: 95:33:e9:d1:bc:d0:ca:e7:07:e6:87:4e:db:d5:27: 12:96:89:a3:e0:f0:c8:81:86:37:37:fb:3d:b7:58: 98:2b:7f:a8:b0:32:1d:ad:49:28:0a:1d:be:25:f9: a2:67:03:e7:cd:72:4d:4e:63:65:fc:26:a8:2f:7b: 33:ad:de:02:f8:53:bc:97:e4:1b:ca:74:07:8a:9e: 56:07:2e:8b:65:c4:55:90:35:4b:80:86:4d:db:ed: 2b:f5:43:0e:aa:cc:68:bf:bb:fa:f4:b5:1a:ae:fb: e8:97:5a:b6:88:1a:2d:15:46:fe:4c:13:60:d0:72: 0a:bf:b4:03:69:53:f2:b3:15:db:e2:d2:e9:6a:36: c5:71:fd:d5:be:fd:c5:1c:4d:95:97:f9:1e:08:6e: eb:d2:8a:91:ab:4c:35:17:c0:2d:b8:58:de:4c:b1: 45:38:6b:fc:b1:48:d5:2a:9d:34:6c:53:62:b7:7f: af:84:14:82:ad:e0:18:11:c0:3c:b5:f1:e5:ec:fb: 09:39 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5E:D4:43:9A:45:F8:3E:1F:23:1E:8D:73:6D:33:B4:25:05:2B:96:FF X509v3 Authority Key Identifier: keyid:66:B9:D8:4F:43:36:A8:9D:84:D1:E0:2E:82:0A:79:68:6E:1E:52:C4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A912519D/B8280664C75A11EB81E99E19C4F9AE02/ZrnYT0M2qJ2E0eAuggp5aG4eUsQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ZrnYT0M2qJ2E0eAuggp5aG4eUsQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A912519D/B8280664C75A11EB81E99E19C4F9AE02/ZrnYT0M2qJ2E0eAuggp5aG4eUsQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 4e:97:77:f7:1d:56:42:ff:86:fb:ab:73:4e:bf:16:25:ef:9c: b1:36:38:fc:09:c0:bd:b1:49:21:2d:d1:f7:9b:38:a4:80:fb: e3:e3:4e:a8:b3:ff:10:40:ad:6c:3d:b7:c7:de:58:74:b1:a6: 1a:d9:8b:0a:21:3a:c4:83:a7:5e:e9:08:03:96:b9:28:6a:e3: 35:d8:25:fe:c5:cb:f2:59:4e:67:3b:16:5f:fb:c4:29:d5:51: b3:3c:8e:04:3f:42:b4:56:0c:1d:2b:d1:a8:a3:06:e1:8f:84: 88:86:0e:34:7f:1a:6c:64:c8:be:8f:7c:21:45:5c:b3:e4:29: 0f:9b:25:a2:f6:48:14:db:a8:3e:c8:0c:04:41:dd:db:39:4b: df:d1:52:97:1e:d1:8a:ca:85:c0:1c:24:d1:e0:37:a7:df:83: ed:57:87:f6:08:b6:3c:3c:18:e2:82:bb:4d:42:a0:5c:dc:68: dc:7e:ee:46:3c:52:07:75:36:8b:09:d0:30:e7:c5:9d:78:c2: 79:65:52:95:7b:39:33:6c:67:25:85:c8:3a:da:bd:0e:ff:d0: c7:f0:88:a7:54:0b:80:3f:5c:1d:cf:46:a6:6e:b1:5f:4f:3e: 11:28:d5:19:54:8d:11:a9:81:99:f4:8a:92:e6:39:b7:f3:ac: da:99:7c:c3 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBdwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MjUxOUQxMTAvBgNVBAUTKDY2QjlEODRGNDMzNkE4OUQ4NEQxRTAyRTgyMEE3OTY4 NkUxRTUyQzQwHhcNMjUwODA2MjMyNjA4WhcNMjUwODEzMjMyNjA4WjAYMRYwFAYD VQQDEw02ODkzZTQ5MC00N2Q5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA2zbKJidxLTiQSz2z4LHzGsiXtG8GjUr/mGmY79PHtdzFaaRnXn58E0EiBaXr mVIFG8aKbiRqwnO3fdSVM+nRvNDK5wfmh07b1ScSlomj4PDIgYY3N/s9t1iYK3+o sDIdrUkoCh2+JfmiZwPnzXJNTmNl/CaoL3szrd4C+FO8l+QbynQHip5WBy6LZcRV kDVLgIZN2+0r9UMOqsxov7v69LUarvvol1q2iBotFUb+TBNg0HIKv7QDaVPysxXb 4tLpajbFcf3Vvv3FHE2Vl/keCG7r0oqRq0w1F8AtuFjeTLFFOGv8sUjVKp00bFNi t3+vhBSCreAYEcA8tfHl7PsJOQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFF7UQ5pF +D4fIx6Nc20ztCUFK5b/MB8GA1UdIwQYMBaAFGa52E9DNqidhNHgLoIKeWhuHlLE MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyNTE5RC9CODI4MDY2NEM3 NUExMUVCODFFOTlFMTlDNEY5QUUwMi9acm5ZVDBNMnFKMkUwZUF1Z2dwNWFHNGVV c1EuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1pybllUME0ycUoyRTBlQXVnZ3A1YUc0ZVVzUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy NTE5RC9CODI4MDY2NEM3NUExMUVCODFFOTlFMTlDNEY5QUUwMi9acm5ZVDBNMnFK MkUwZUF1Z2dwNWFHNGVVc1EubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBOl3f3HVZC/4b7q3NOvxYl75yxNjj8CcC9sUkhLdH3mzikgPvj406o s/8QQK1sPbfH3lh0saYa2YsKITrEg6de6QgDlrkoauM12CX+xcvyWU5nOxZf+8Qp 1VGzPI4EP0K0VgwdK9Goowbhj4SIhg40fxpsZMi+j3whRVyz5CkPmyWi9kgU26g+ yAwEQd3bOUvf0VKXHtGKyoXAHCTR4Den34PtV4f2CLY8PBjigrtNQqBc3Gjcfu5G PFIHdTaLCdAw58WdeMJ5ZVKVezkzbGclhcg62r0O/9DH8IinVAuAP1wdz0ambrFf Tz4RKNUZVI0RqYGZ9IqS5jm386zamXzD -----END CERTIFICATE-----Generated at Fri Aug 8 20:55:36 2025 by rpki-client