$ rpki-client -vvf rpki.apnic.net/member_repository/A917BBF1/245DC5CA0AF711EAA85A5D1AC4F9AE02/ZUCRhgKOxUzUW1g0_77K9LePGcI.mft File: ZUCRhgKOxUzUW1g0_77K9LePGcI.mft (raw, json) Hash identifier: GS4eOe3hnS8MJmWKjRzUVN+OVofsV1k2lKfYCI09USA= Subject key identifier: 4D:98:52:81:8D:21:42:CE:BE:8F:DA:C3:2B:5B:CF:41:D5:0F:68:86 Authority key identifier: 65:40:91:86:02:8E:C5:4C:D4:5B:58:34:FF:BE:CA:F4:B7:8F:19:C2 Certificate issuer: /CN=A917BBF1/serialNumber=65409186028EC54CD45B5834FFBECAF4B78F19C2 Certificate serial: 0C58 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ZUCRhgKOxUzUW1g0_77K9LePGcI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917BBF1/245DC5CA0AF711EAA85A5D1AC4F9AE02/ZUCRhgKOxUzUW1g0_77K9LePGcI.mft Manifest number: 0C3E Signing time: Sat 14 Jun 2025 18:27:29 +0000 Manifest this update: Sat 14 Jun 2025 18:27:29 +0000 Manifest next update: Sat 21 Jun 2025 18:27:29 +0000 Files and hashes: 1: ZUCRhgKOxUzUW1g0_77K9LePGcI.crl (hash: 0c7ioq2/kPlQLXV0zN56OFVDBsrn2OuHoyymeQnqJUc=) 2: 7136F65A37A811EE94E32169C4F9AE02.roa (hash: k8QKeKvOcm3atVDcEJg6MmKWLZSx6mGrjHPmscLBCDI=) 3: 1B54858065B711EE93D6ED6DC4F9AE02.roa (hash: 2MxCJYfvpN2/WDss7B4Jv4sIh2MvUP8VKJ1MtNugmSc=) 4: FF4F13D4448711ECA80CFC34C4F9AE02.roa (hash: Lum2cofSNoPumFBaR2DxKDAktprJD0nZPj1gi1bjrYI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917BBF1/245DC5CA0AF711EAA85A5D1AC4F9AE02/ZUCRhgKOxUzUW1g0_77K9LePGcI.crl rsync://rpki.apnic.net/member_repository/A917BBF1/245DC5CA0AF711EAA85A5D1AC4F9AE02/ZUCRhgKOxUzUW1g0_77K9LePGcI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ZUCRhgKOxUzUW1g0_77K9LePGcI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 21 Jun 2025 18:27:28 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3160 (0xc58) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917BBF1, serialNumber=65409186028EC54CD45B5834FFBECAF4B78F19C2 Validity Not Before: Jun 14 18:27:29 2025 GMT Not After : Jun 21 18:27:29 2025 GMT Subject: CN=684dbf11-13b2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a5:7c:db:3c:4e:55:18:22:6f:57:ad:11:7f:36: ab:c1:0c:55:44:a5:84:36:ee:c6:02:05:0f:8f:13: 2b:92:a0:ca:5e:a6:ac:db:c8:31:00:ab:ca:50:fd: a1:0c:52:af:b1:04:5e:99:5c:1e:6f:5f:c5:3f:34: ad:45:4d:9b:67:4a:91:62:b3:06:38:ea:7c:72:f3: 66:f1:58:ce:d3:f6:f5:db:82:0d:cd:f8:f2:48:8f: 21:33:7b:e0:5a:43:b1:f9:8d:38:b9:4d:ce:ef:c6: 84:51:49:93:2d:9e:cd:5a:12:6e:a4:33:b6:69:bc: bb:5b:43:56:28:65:17:75:59:ff:ef:e4:ac:67:45: 49:58:82:e4:b9:0a:05:ec:d1:64:2e:95:74:a7:82: db:66:ec:3c:c9:e4:eb:41:a9:a6:09:a2:90:f0:be: 19:7a:2a:de:ed:04:bc:d1:ce:60:01:b2:82:aa:93: 27:67:b0:cc:4b:2b:33:6b:74:9b:64:4f:52:91:03: 2d:f9:a8:53:3a:c6:2c:bc:e0:a0:29:bf:3d:32:76: 27:31:5a:8a:3d:57:33:ca:6b:03:1c:c8:61:e1:90: c9:33:89:33:fe:1d:f8:46:c6:04:ef:6b:02:61:75: b9:e8:cf:d5:37:7a:a2:83:12:d7:fd:36:43:1b:54: 58:7f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4D:98:52:81:8D:21:42:CE:BE:8F:DA:C3:2B:5B:CF:41:D5:0F:68:86 X509v3 Authority Key Identifier: keyid:65:40:91:86:02:8E:C5:4C:D4:5B:58:34:FF:BE:CA:F4:B7:8F:19:C2 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917BBF1/245DC5CA0AF711EAA85A5D1AC4F9AE02/ZUCRhgKOxUzUW1g0_77K9LePGcI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ZUCRhgKOxUzUW1g0_77K9LePGcI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917BBF1/245DC5CA0AF711EAA85A5D1AC4F9AE02/ZUCRhgKOxUzUW1g0_77K9LePGcI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption af:25:9d:11:e9:6a:5d:04:84:1f:9c:56:55:b8:a6:1b:65:c5: a1:de:a2:f5:d4:d9:5c:0c:2b:ab:c0:69:fb:b4:55:33:d4:8b: db:59:b4:88:3c:1a:be:7b:b7:91:86:3c:c6:87:7a:86:c2:8c: a5:80:b4:f0:89:36:f8:e6:c7:ba:7c:b4:5e:2f:6f:7c:d4:a5: fc:9e:af:cd:75:14:ab:49:d3:9f:72:5d:e3:78:57:e7:6d:6b: 1a:8f:6f:ae:af:cc:cb:f7:d6:67:df:64:dd:d5:93:0b:f7:bd: 92:0f:37:d9:4a:b5:10:d5:da:3a:ae:da:35:cd:eb:0c:b8:e1: 16:14:bb:ed:1c:d2:7d:26:d6:15:e8:3d:31:8e:07:e6:cd:c1: 63:21:a9:02:44:f9:38:9b:c6:57:1b:6e:c7:55:94:b9:2e:13: 09:f1:f9:00:cc:06:d7:87:20:48:a1:61:8d:7f:a7:14:36:47: 81:db:e5:87:63:be:cd:1c:c4:dc:7c:0a:88:31:43:66:f1:19: c1:f4:b0:7a:0a:77:5e:b0:55:e8:dc:85:0c:a4:1e:2e:2c:7f: 02:c6:c6:2d:d7:cf:80:26:73:95:68:06:3d:42:2b:d4:69:76: d3:50:b0:fb:b0:58:53:f5:ff:74:f8:32:d3:85:da:42:05:12: b4:76:c7:5b -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDFgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0JCRjExMTAvBgNVBAUTKDY1NDA5MTg2MDI4RUM1NENENDVCNTgzNEZGQkVDQUY0 Qjc4RjE5QzIwHhcNMjUwNjE0MTgyNzI5WhcNMjUwNjIxMTgyNzI5WjAYMRYwFAYD VQQDEw02ODRkYmYxMS0xM2IyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEApXzbPE5VGCJvV60RfzarwQxVRKWENu7GAgUPjxMrkqDKXqas28gxAKvKUP2h DFKvsQRemVweb1/FPzStRU2bZ0qRYrMGOOp8cvNm8VjO0/b124INzfjySI8hM3vg WkOx+Y04uU3O78aEUUmTLZ7NWhJupDO2aby7W0NWKGUXdVn/7+SsZ0VJWILkuQoF 7NFkLpV0p4LbZuw8yeTrQammCaKQ8L4Zeire7QS80c5gAbKCqpMnZ7DMSysza3Sb ZE9SkQMt+ahTOsYsvOCgKb89MnYnMVqKPVczymsDHMhh4ZDJM4kz/h34RsYE72sC YXW56M/VN3qigxLX/TZDG1RYfwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFE2YUoGN IULOvo/awytbz0HVD2iGMB8GA1UdIwQYMBaAFGVAkYYCjsVM1FtYNP++yvS3jxnC MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3QkJGMS8yNDVEQzVDQTBB RjcxMUVBQTg1QTVEMUFDNEY5QUUwMi9aVUNSaGdLT3hVelVXMWcwXzc3SzlMZVBH Y0kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1pVQ1JoZ0tPeFV6VVcxZzBfNzdLOUxlUEdjSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 QkJGMS8yNDVEQzVDQTBBRjcxMUVBQTg1QTVEMUFDNEY5QUUwMi9aVUNSaGdLT3hV elVXMWcwXzc3SzlMZVBHY0kubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCvJZ0R6WpdBIQfnFZVuKYbZcWh3qL11NlcDCurwGn7tFUz1IvbWbSI PBq+e7eRhjzGh3qGwoylgLTwiTb45se6fLReL2981KX8nq/NdRSrSdOfcl3jeFfn bWsaj2+ur8zL99Zn32Td1ZML972SDzfZSrUQ1do6rto1zesMuOEWFLvtHNJ9JtYV 6D0xjgfmzcFjIakCRPk4m8ZXG27HVZS5LhMJ8fkAzAbXhyBIoWGNf6cUNkeB2+WH Y77NHMTcfAqIMUNm8RnB9LB6CndesFXo3IUMpB4uLH8CxsYt18+AJnOVaAY9QivU aXbTULD7sFhT9f90+DLThdpCBRK0dsdb -----END CERTIFICATE-----Generated at Sun Jun 15 08:43:31 2025 by rpki-client