$ rpki-client -vvf rpki.apnic.net/member_repository/A917DCDA/192E71F61D9011E2B295ABEF08B02CD2/ZwbZhOcxaBICGI0pntNfAFsBdYA.mft File: ZwbZhOcxaBICGI0pntNfAFsBdYA.mft (raw, json) Hash identifier: 9mGOuhUG7fRqhVRQHZJCK08jt8Q4gWyxB2dd1CMTfEs= Subject key identifier: 74:51:68:62:6F:C6:73:61:47:DE:9B:6B:5B:A5:F4:98:A7:88:6E:C3 Authority key identifier: 67:06:D9:84:E7:31:68:12:02:18:8D:29:9E:D3:5F:00:5B:01:75:80 Certificate issuer: /CN=A917DCDA/serialNumber=6706D984E731681202188D299ED35F005B017580 Certificate serial: 348C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ZwbZhOcxaBICGI0pntNfAFsBdYA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917DCDA/192E71F61D9011E2B295ABEF08B02CD2/ZwbZhOcxaBICGI0pntNfAFsBdYA.mft Manifest number: 348C Signing time: Sat 14 Jun 2025 14:40:32 +0000 Manifest this update: Sat 14 Jun 2025 14:40:31 +0000 Manifest next update: Sat 21 Jun 2025 14:40:31 +0000 Files and hashes: 1: ZwbZhOcxaBICGI0pntNfAFsBdYA.crl (hash: ocQTPzYp1ir6VB7uHyJKrRBwRlnBte8q3hyDFlbwu94=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917DCDA/192E71F61D9011E2B295ABEF08B02CD2/ZwbZhOcxaBICGI0pntNfAFsBdYA.crl rsync://rpki.apnic.net/member_repository/A917DCDA/192E71F61D9011E2B295ABEF08B02CD2/ZwbZhOcxaBICGI0pntNfAFsBdYA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ZwbZhOcxaBICGI0pntNfAFsBdYA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 21 Jun 2025 14:40:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13452 (0x348c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917DCDA, serialNumber=6706D984E731681202188D299ED35F005B017580 Validity Not Before: Jun 14 14:40:31 2025 GMT Not After : Jun 21 14:40:31 2025 GMT Subject: CN=684d89df-3e95 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c9:a0:93:70:7a:31:f9:3a:d5:a4:35:7a:90:64: 11:44:f1:63:cc:7a:39:1e:ff:30:78:78:df:e1:2d: 29:f9:17:60:96:f9:8a:c5:df:dc:d3:a4:2d:98:cf: 29:2b:c3:fc:3c:50:26:d8:68:ac:1f:d3:0b:0e:d5: 71:e6:74:37:8c:09:d3:de:ab:98:6f:79:94:2e:fc: 13:b6:32:86:c9:a0:d8:d6:a1:da:5e:f5:51:68:53: 33:8c:c8:e9:ab:82:a1:c5:39:74:29:7f:a3:26:58: 87:41:38:32:89:81:71:a7:a4:72:a6:66:2c:cf:dc: d7:d3:d4:7c:8e:1e:18:c0:95:4f:94:e2:2f:84:96: 18:54:e9:db:1a:fc:37:a0:a4:5e:5c:76:e9:fa:e9: 43:a5:a6:18:87:27:bb:93:b7:48:d8:63:c3:97:d3: d0:4e:44:90:ff:cd:d8:08:cb:09:c6:8b:69:eb:62: f6:0d:45:ec:c8:93:c1:2e:91:71:f7:c4:01:50:c5: 78:d6:88:70:8c:d3:38:e2:36:fc:bb:38:56:a7:0b: 48:74:60:3b:df:01:5f:c4:1f:dc:f7:5d:e9:cd:02: ee:4d:f0:d1:65:ed:f9:5c:a8:c6:52:21:90:6d:bb: 30:a3:04:49:31:f1:54:04:0c:12:6c:4c:79:e0:69: bb:cd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 74:51:68:62:6F:C6:73:61:47:DE:9B:6B:5B:A5:F4:98:A7:88:6E:C3 X509v3 Authority Key Identifier: keyid:67:06:D9:84:E7:31:68:12:02:18:8D:29:9E:D3:5F:00:5B:01:75:80 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917DCDA/192E71F61D9011E2B295ABEF08B02CD2/ZwbZhOcxaBICGI0pntNfAFsBdYA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ZwbZhOcxaBICGI0pntNfAFsBdYA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917DCDA/192E71F61D9011E2B295ABEF08B02CD2/ZwbZhOcxaBICGI0pntNfAFsBdYA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 5c:52:0e:98:5d:c7:c4:bc:8d:5f:eb:d6:e1:5d:71:e5:fa:24: d9:1e:e2:e8:21:5c:d8:7a:7a:d0:0a:b8:a1:dd:f3:c9:83:3f: 66:2d:ad:7f:83:08:0c:db:9a:9a:33:03:ec:c6:09:d5:df:5c: d9:a2:4b:29:3f:80:bf:e2:93:07:24:34:52:76:34:70:15:d2: f2:9e:fb:41:58:f2:5b:8d:2c:8e:3f:73:64:a6:16:71:29:41: 06:77:94:0c:0a:7b:a0:8a:81:ff:5a:29:66:42:3e:6d:c8:64: ce:b9:98:df:83:c7:4d:6b:74:00:3e:cb:30:d1:7c:95:f3:a6: e9:0d:d3:63:6e:e1:c6:8c:b3:dc:b4:59:c5:5d:ea:e7:96:8f: 35:62:7e:d9:59:fe:a2:f4:5c:cc:54:61:ce:15:11:e3:78:52: cb:92:48:43:86:83:ff:34:f1:ea:07:f3:3f:f2:0b:75:43:95: 18:0d:31:25:2e:d5:6e:16:e9:89:a8:56:74:fe:6f:44:04:fe: bc:5b:a4:0c:b8:7e:7e:6b:b7:f2:ca:93:ff:83:c1:4b:f2:20: aa:c1:e4:68:b9:48:73:f1:81:ec:6e:65:c2:5b:4a:ee:e9:81: d9:bb:25:90:d4:16:38:ea:d8:4f:0a:26:8e:38:f0:65:fd:95: 76:a1:af:70 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICNIwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0RDREExMTAvBgNVBAUTKDY3MDZEOTg0RTczMTY4MTIwMjE4OEQyOTlFRDM1RjAw NUIwMTc1ODAwHhcNMjUwNjE0MTQ0MDMxWhcNMjUwNjIxMTQ0MDMxWjAYMRYwFAYD VQQDEw02ODRkODlkZi0zZTk1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyaCTcHox+TrVpDV6kGQRRPFjzHo5Hv8weHjf4S0p+RdglvmKxd/c06QtmM8p K8P8PFAm2GisH9MLDtVx5nQ3jAnT3quYb3mULvwTtjKGyaDY1qHaXvVRaFMzjMjp q4KhxTl0KX+jJliHQTgyiYFxp6RypmYsz9zX09R8jh4YwJVPlOIvhJYYVOnbGvw3 oKReXHbp+ulDpaYYhye7k7dI2GPDl9PQTkSQ/83YCMsJxotp62L2DUXsyJPBLpFx 98QBUMV41ohwjNM44jb8uzhWpwtIdGA73wFfxB/c913pzQLuTfDRZe35XKjGUiGQ bbswowRJMfFUBAwSbEx54Gm7zQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFHRRaGJv xnNhR96ba1ul9JiniG7DMB8GA1UdIwQYMBaAFGcG2YTnMWgSAhiNKZ7TXwBbAXWA MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3RENEQS8xOTJFNzFGNjFE OTAxMUUyQjI5NUFCRUYwOEIwMkNEMi9ad2JaaE9jeGFCSUNHSTBwbnROZkFGc0Jk WUEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1p3YlpoT2N4YUJJQ0dJMHBudE5mQUZzQmRZQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 RENEQS8xOTJFNzFGNjFEOTAxMUUyQjI5NUFCRUYwOEIwMkNEMi9ad2JaaE9jeGFC SUNHSTBwbnROZkFGc0JkWUEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBcUg6YXcfEvI1f69bhXXHl+iTZHuLoIVzYenrQCrih3fPJgz9mLa1/ gwgM25qaMwPsxgnV31zZokspP4C/4pMHJDRSdjRwFdLynvtBWPJbjSyOP3NkphZx KUEGd5QMCnugioH/WilmQj5tyGTOuZjfg8dNa3QAPssw0XyV86bpDdNjbuHGjLPc tFnFXernlo81Yn7ZWf6i9FzMVGHOFRHjeFLLkkhDhoP/NPHqB/M/8gt1Q5UYDTEl LtVuFumJqFZ0/m9EBP68W6QMuH5+a7fyypP/g8FL8iCqweRouUhz8YHsbmXCW0ru 6YHZuyWQ1BY46thPCiaOOPBl/ZV2oa9w -----END CERTIFICATE-----Generated at Sat Jun 14 18:52:23 2025 by rpki-client