$ rpki-client -vvf rpki.apnic.net/member_repository/A917BBF1/245DC5CA0AF711EAA85A5D1AC4F9AE02/ZUCRhgKOxUzUW1g0_77K9LePGcI.mft File: ZUCRhgKOxUzUW1g0_77K9LePGcI.mft (raw, json) Hash identifier: s89ZAsIM8ZEIMvEhJJgYeteB5OZTcGKtDv2krkV0jps= Subject key identifier: 41:27:7B:3E:55:97:54:4D:39:88:96:2E:63:AF:E2:40:E3:9C:F7:F7 Authority key identifier: 65:40:91:86:02:8E:C5:4C:D4:5B:58:34:FF:BE:CA:F4:B7:8F:19:C2 Certificate issuer: /CN=A917BBF1/serialNumber=65409186028EC54CD45B5834FFBECAF4B78F19C2 Certificate serial: 0C79 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ZUCRhgKOxUzUW1g0_77K9LePGcI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917BBF1/245DC5CA0AF711EAA85A5D1AC4F9AE02/ZUCRhgKOxUzUW1g0_77K9LePGcI.mft Manifest number: 0C5C Signing time: Fri 08 Aug 2025 18:46:46 +0000 Manifest this update: Fri 08 Aug 2025 18:46:46 +0000 Manifest next update: Fri 15 Aug 2025 18:46:46 +0000 Files and hashes: 1: ZUCRhgKOxUzUW1g0_77K9LePGcI.crl (hash: JY3cdr1Zkh6hNXTIMIwbCzX8XJ5NGO50yABDvy12m8A=) 2: 7136F65A37A811EE94E32169C4F9AE02.roa (hash: MIgp6SPzmtBLaTAJ8Ko+cWBy6IjOqEZ3q2z4VBixHmI=) 3: 1B54858065B711EE93D6ED6DC4F9AE02.roa (hash: GsJaSUcatISwdkkhFSUQBWiCBZOPMZtERdw74sbshGA=) 4: FF4F13D4448711ECA80CFC34C4F9AE02.roa (hash: pvvlftNep3JGBrkiJAisunxpzryLA3gGytWzHa5BKMk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917BBF1/245DC5CA0AF711EAA85A5D1AC4F9AE02/ZUCRhgKOxUzUW1g0_77K9LePGcI.crl rsync://rpki.apnic.net/member_repository/A917BBF1/245DC5CA0AF711EAA85A5D1AC4F9AE02/ZUCRhgKOxUzUW1g0_77K9LePGcI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ZUCRhgKOxUzUW1g0_77K9LePGcI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 Aug 2025 05:57:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3193 (0xc79) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917BBF1, serialNumber=65409186028EC54CD45B5834FFBECAF4B78F19C2 Validity Not Before: Aug 8 18:46:46 2025 GMT Not After : Aug 15 18:46:46 2025 GMT Subject: CN=68964616-5b38 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d9:99:6d:4e:88:cf:54:76:0e:60:a2:6a:28:55: bb:a5:a3:2b:ed:0a:4b:7a:19:9c:ff:1a:ff:98:64: 5d:85:51:56:cb:e0:ed:01:f6:d6:3d:1e:04:0e:eb: 6b:0e:c8:e5:08:00:3d:24:0d:f0:b2:83:19:c0:bc: a2:3b:10:60:a9:1b:37:de:67:3a:d6:5a:5d:3b:91: 8a:04:ff:5c:55:da:f5:b0:07:79:1f:3a:86:03:5d: e5:f7:1a:53:0d:ea:0b:bb:1f:f5:b3:cf:72:dc:ed: f6:01:d0:8d:b9:bc:0e:56:59:ae:29:ab:4e:c8:e4: c3:54:d6:59:cc:de:bd:6e:79:13:6c:ae:33:31:00: 4a:3e:87:58:75:d9:56:c4:2f:82:e6:ff:49:60:fc: e0:ce:db:00:5d:14:4b:7a:a3:4c:00:ce:a5:d5:13: af:8d:3d:81:18:b5:1f:27:d2:23:55:8a:e4:c7:64: 8e:d4:3f:5a:3b:c3:ef:d0:81:7b:6a:36:91:64:70: 28:ce:5a:28:82:0e:81:7f:65:1e:58:a9:59:bd:37: c1:89:94:ce:a3:ec:2b:9b:e0:6c:27:8d:4f:64:a9: 4c:67:a0:e9:a5:9f:80:95:69:82:f3:29:2b:63:69: 2b:15:e7:79:12:3a:2b:46:0b:ec:f7:74:5e:54:e5: 87:e9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 41:27:7B:3E:55:97:54:4D:39:88:96:2E:63:AF:E2:40:E3:9C:F7:F7 X509v3 Authority Key Identifier: keyid:65:40:91:86:02:8E:C5:4C:D4:5B:58:34:FF:BE:CA:F4:B7:8F:19:C2 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917BBF1/245DC5CA0AF711EAA85A5D1AC4F9AE02/ZUCRhgKOxUzUW1g0_77K9LePGcI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ZUCRhgKOxUzUW1g0_77K9LePGcI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917BBF1/245DC5CA0AF711EAA85A5D1AC4F9AE02/ZUCRhgKOxUzUW1g0_77K9LePGcI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 00:0c:bd:35:87:84:d5:55:00:f4:50:b0:db:d2:ac:69:10:47: cf:aa:0b:50:95:6b:1a:b1:90:7b:54:17:43:ae:a5:bd:bd:b8: 70:48:5b:74:10:1a:e4:ee:59:81:b8:2c:5b:6b:08:c8:b1:eb: d1:d6:ed:11:6a:c6:cc:5d:6e:74:e5:19:80:37:fb:25:de:56: a7:9c:69:20:61:e0:ed:c9:4a:e3:e4:37:f7:0c:31:73:6e:a4: 0e:81:e4:90:32:e7:8b:db:c9:cd:90:91:f9:24:39:7a:f6:26: 95:1c:3f:e0:55:97:30:4c:9f:aa:c0:ce:40:5a:d9:c5:40:bd: b1:92:55:df:1d:89:af:75:0f:ac:a9:d0:60:76:4c:35:02:06: 4d:4c:5e:3f:dd:b2:08:b3:6a:b7:42:4d:02:8e:e1:51:d4:b6: 70:43:2b:e7:7a:59:f6:1a:87:ac:97:8d:62:fd:00:ec:6f:af: ca:52:3d:97:0f:e7:47:b4:24:20:5f:21:7f:be:01:76:a1:9d: 9f:eb:2f:15:aa:19:a4:19:ea:9f:80:5a:13:c8:f8:fd:e3:b6: dd:bf:11:0a:85:6e:0a:45:e1:fa:45:5b:b6:d0:54:f4:22:ea: 5d:3f:f5:dc:a3:b7:d0:74:12:dd:19:0a:08:8c:ab:37:82:04: c4:a3:26:fe -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDHkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0JCRjExMTAvBgNVBAUTKDY1NDA5MTg2MDI4RUM1NENENDVCNTgzNEZGQkVDQUY0 Qjc4RjE5QzIwHhcNMjUwODA4MTg0NjQ2WhcNMjUwODE1MTg0NjQ2WjAYMRYwFAYD VQQDEw02ODk2NDYxNi01YjM4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA2ZltTojPVHYOYKJqKFW7paMr7QpLehmc/xr/mGRdhVFWy+DtAfbWPR4EDutr DsjlCAA9JA3wsoMZwLyiOxBgqRs33mc61lpdO5GKBP9cVdr1sAd5HzqGA13l9xpT DeoLux/1s89y3O32AdCNubwOVlmuKatOyOTDVNZZzN69bnkTbK4zMQBKPodYddlW xC+C5v9JYPzgztsAXRRLeqNMAM6l1ROvjT2BGLUfJ9IjVYrkx2SO1D9aO8Pv0IF7 ajaRZHAozloogg6Bf2UeWKlZvTfBiZTOo+wrm+BsJ41PZKlMZ6DppZ+AlWmC8ykr Y2krFed5EjorRgvs93ReVOWH6QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFEEnez5V l1RNOYiWLmOv4kDjnPf3MB8GA1UdIwQYMBaAFGVAkYYCjsVM1FtYNP++yvS3jxnC MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3QkJGMS8yNDVEQzVDQTBB RjcxMUVBQTg1QTVEMUFDNEY5QUUwMi9aVUNSaGdLT3hVelVXMWcwXzc3SzlMZVBH Y0kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1pVQ1JoZ0tPeFV6VVcxZzBfNzdLOUxlUEdjSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 QkJGMS8yNDVEQzVDQTBBRjcxMUVBQTg1QTVEMUFDNEY5QUUwMi9aVUNSaGdLT3hV elVXMWcwXzc3SzlMZVBHY0kubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAADL01h4TVVQD0ULDb0qxpEEfPqgtQlWsasZB7VBdDrqW9vbhwSFt0 EBrk7lmBuCxbawjIsevR1u0RasbMXW505RmAN/sl3lannGkgYeDtyUrj5Df3DDFz bqQOgeSQMueL28nNkJH5JDl69iaVHD/gVZcwTJ+qwM5AWtnFQL2xklXfHYmvdQ+s qdBgdkw1AgZNTF4/3bIIs2q3Qk0CjuFR1LZwQyvneln2Goesl41i/QDsb6/KUj2X D+dHtCQgXyF/vgF2oZ2f6y8VqhmkGeqfgFoTyPj947bdvxEKhW4KReH6RVu20FT0 IupdP/Xco7fQdBLdGQoIjKs3ggTEoyb+ -----END CERTIFICATE-----Generated at Sat Aug 9 15:16:50 2025 by rpki-client