$ rpki-client -vvf rpki.apnic.net/member_repository/A917DCDA/192E71F61D9011E2B295ABEF08B02CD2/ZwbZhOcxaBICGI0pntNfAFsBdYA.mft File: ZwbZhOcxaBICGI0pntNfAFsBdYA.mft (raw, json) Hash identifier: 03w8ZT7mcriLrqXBnzyhWukHCAtg1fssKthJw9TYG2E= Subject key identifier: A9:FA:07:A1:AA:41:F5:DE:AF:08:85:AF:01:18:B6:2A:6F:C7:FE:71 Authority key identifier: 67:06:D9:84:E7:31:68:12:02:18:8D:29:9E:D3:5F:00:5B:01:75:80 Certificate issuer: /CN=A917DCDA/serialNumber=6706D984E731681202188D299ED35F005B017580 Certificate serial: 34A9 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ZwbZhOcxaBICGI0pntNfAFsBdYA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917DCDA/192E71F61D9011E2B295ABEF08B02CD2/ZwbZhOcxaBICGI0pntNfAFsBdYA.mft Manifest number: 34A9 Signing time: Sun 10 Aug 2025 14:40:27 +0000 Manifest this update: Sun 10 Aug 2025 14:40:26 +0000 Manifest next update: Sun 17 Aug 2025 14:40:26 +0000 Files and hashes: 1: ZwbZhOcxaBICGI0pntNfAFsBdYA.crl (hash: ZZC4P8VCD5mB3fR6tlTroZFS9BKYqeZkVy/04EboJVU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917DCDA/192E71F61D9011E2B295ABEF08B02CD2/ZwbZhOcxaBICGI0pntNfAFsBdYA.crl rsync://rpki.apnic.net/member_repository/A917DCDA/192E71F61D9011E2B295ABEF08B02CD2/ZwbZhOcxaBICGI0pntNfAFsBdYA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ZwbZhOcxaBICGI0pntNfAFsBdYA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 Aug 2025 05:57:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13481 (0x34a9) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917DCDA, serialNumber=6706D984E731681202188D299ED35F005B017580 Validity Not Before: Aug 10 14:40:26 2025 GMT Not After : Aug 17 14:40:26 2025 GMT Subject: CN=6898af5a-8fa4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cc:c4:3a:f3:a3:dc:4b:cb:c5:66:9a:de:a4:fe: 8b:3e:5d:d0:1b:fc:d6:3b:22:17:6f:03:65:4d:10: d1:46:45:4f:31:06:b5:55:a3:11:72:32:7e:17:05: 0e:1c:eb:7e:70:5b:33:44:de:54:68:ff:4f:00:0d: 27:76:4f:ad:39:53:7c:5f:a0:87:cb:20:77:1d:61: 8e:5f:d8:83:c6:ef:e7:f4:0b:e7:cc:4c:dd:b9:4c: f2:b7:b5:b8:76:cb:99:5c:3a:a4:5f:d2:37:8f:2b: af:86:f3:c5:8d:62:28:b1:88:fe:45:4d:29:e6:26: 23:d7:a1:b0:cc:c1:a2:eb:fa:e8:ca:ca:6b:7b:dc: 03:e1:d1:5a:b9:ac:e8:e5:47:be:20:ae:d9:14:3e: 56:16:ed:4d:ed:bd:85:7c:ce:d1:60:3d:b1:fc:6b: 36:88:99:17:6d:ad:25:be:20:c0:fd:c3:31:14:c0: 31:e9:d7:b6:09:86:39:c9:b1:13:58:31:3e:c4:f7: fa:d3:8e:b1:b3:a3:e4:f7:db:b8:28:18:d7:47:2e: 9b:8b:81:e8:6a:36:e8:ac:3e:85:17:59:96:d2:b9: 71:9d:5a:62:6c:ac:51:bb:0b:c4:df:80:b0:df:0f: 79:41:6c:27:e0:26:fb:8e:4e:79:11:51:f2:31:48: 07:41 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A9:FA:07:A1:AA:41:F5:DE:AF:08:85:AF:01:18:B6:2A:6F:C7:FE:71 X509v3 Authority Key Identifier: keyid:67:06:D9:84:E7:31:68:12:02:18:8D:29:9E:D3:5F:00:5B:01:75:80 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917DCDA/192E71F61D9011E2B295ABEF08B02CD2/ZwbZhOcxaBICGI0pntNfAFsBdYA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ZwbZhOcxaBICGI0pntNfAFsBdYA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917DCDA/192E71F61D9011E2B295ABEF08B02CD2/ZwbZhOcxaBICGI0pntNfAFsBdYA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 76:52:c3:76:16:1b:36:6d:f8:e4:3d:4c:a3:da:c9:dc:a9:19: f5:dc:bd:23:92:7d:37:f3:99:53:65:e6:8d:70:a7:ba:2d:d5: 5f:16:f3:d9:e6:39:ab:a9:d4:90:9d:a5:6e:5d:c3:77:4f:e4: b6:89:5b:f1:12:2d:c5:f6:95:0e:5d:e6:82:32:57:42:7c:29: 48:ba:ce:fa:92:19:26:07:ce:95:1a:6a:bd:5d:a9:6f:fb:46: d3:23:9f:f1:43:8c:f3:dc:c2:13:c6:29:f8:94:7e:56:00:ac: f6:bb:11:aa:d0:6f:a9:0a:b4:8c:4e:a1:7d:c9:d7:da:4a:4d: 63:35:e4:54:47:08:fc:66:4f:26:19:f6:4c:0d:98:72:46:ca: c5:b7:40:a8:2f:83:ee:9e:9c:c4:fb:6a:ea:e4:f6:f3:b8:06: 4c:54:4b:e5:b6:31:64:fe:b5:8b:80:71:b0:2a:c2:da:07:42: 9f:97:93:7c:20:9f:a7:48:2e:d0:87:cd:bf:5d:83:51:50:8a: 64:fb:ff:5a:0f:e9:67:80:7a:fc:f3:80:1c:92:04:4b:0c:fc: 07:4f:4e:75:06:ef:76:1c:b7:47:5e:ec:78:6a:2b:1d:e7:dc: 90:f0:b8:e4:42:47:f2:be:5c:db:f6:df:58:9e:76:16:88:b0: 42:7d:8f:96 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICNKkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0RDREExMTAvBgNVBAUTKDY3MDZEOTg0RTczMTY4MTIwMjE4OEQyOTlFRDM1RjAw NUIwMTc1ODAwHhcNMjUwODEwMTQ0MDI2WhcNMjUwODE3MTQ0MDI2WjAYMRYwFAYD VQQDEw02ODk4YWY1YS04ZmE0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzMQ686PcS8vFZprepP6LPl3QG/zWOyIXbwNlTRDRRkVPMQa1VaMRcjJ+FwUO HOt+cFszRN5UaP9PAA0ndk+tOVN8X6CHyyB3HWGOX9iDxu/n9AvnzEzduUzyt7W4 dsuZXDqkX9I3jyuvhvPFjWIosYj+RU0p5iYj16GwzMGi6/royspre9wD4dFauazo 5Ue+IK7ZFD5WFu1N7b2FfM7RYD2x/Gs2iJkXba0lviDA/cMxFMAx6de2CYY5ybET WDE+xPf6046xs6Pk99u4KBjXRy6bi4HoajborD6FF1mW0rlxnVpibKxRuwvE34Cw 3w95QWwn4Cb7jk55EVHyMUgHQQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFKn6B6Gq QfXerwiFrwEYtipvx/5xMB8GA1UdIwQYMBaAFGcG2YTnMWgSAhiNKZ7TXwBbAXWA MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3RENEQS8xOTJFNzFGNjFE OTAxMUUyQjI5NUFCRUYwOEIwMkNEMi9ad2JaaE9jeGFCSUNHSTBwbnROZkFGc0Jk WUEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1p3YlpoT2N4YUJJQ0dJMHBudE5mQUZzQmRZQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 RENEQS8xOTJFNzFGNjFEOTAxMUUyQjI5NUFCRUYwOEIwMkNEMi9ad2JaaE9jeGFC SUNHSTBwbnROZkFGc0JkWUEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB2UsN2Fhs2bfjkPUyj2sncqRn13L0jkn0385lTZeaNcKe6LdVfFvPZ 5jmrqdSQnaVuXcN3T+S2iVvxEi3F9pUOXeaCMldCfClIus76khkmB86VGmq9Xalv +0bTI5/xQ4zz3MITxin4lH5WAKz2uxGq0G+pCrSMTqF9ydfaSk1jNeRURwj8Zk8m GfZMDZhyRsrFt0CoL4PunpzE+2rq5PbzuAZMVEvltjFk/rWLgHGwKsLaB0Kfl5N8 IJ+nSC7Qh82/XYNRUIpk+/9aD+lngHr884AckgRLDPwHT051Bu92HLdHXux4aisd 59yQ8LjkQkfyvlzb9t9YnnYWiLBCfY+W -----END CERTIFICATE-----Generated at Sun Aug 10 18:13:47 2025 by rpki-client