$ rpki-client -vvf rpki.apnic.net/member_repository/A91A9B3E/DAB1C3A68CFB11ED92E25B61C4F9AE02/zuNPo5_yhfcuIp2ihivBDkiPukE.mft File: zuNPo5_yhfcuIp2ihivBDkiPukE.mft (raw, json) Hash identifier: mYXEu2OmOXzcoUdJaNUjFZWnWKXf3nRgzBHPclVNvJ4= Subject key identifier: 59:89:5F:4D:E7:50:EF:AE:30:33:47:BE:C7:56:50:C3:5D:1D:A5:48 Authority key identifier: CE:E3:4F:A3:9F:F2:85:F7:2E:22:9D:A2:86:2B:C1:0E:48:8F:BA:41 Certificate issuer: /CN=A91A9B3E/serialNumber=CEE34FA39FF285F72E229DA2862BC10E488FBA41 Certificate serial: 01EE Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/zuNPo5_yhfcuIp2ihivBDkiPukE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A9B3E/DAB1C3A68CFB11ED92E25B61C4F9AE02/zuNPo5_yhfcuIp2ihivBDkiPukE.mft Manifest number: 01E8 Signing time: Wed 13 Aug 2025 03:03:55 +0000 Manifest this update: Wed 13 Aug 2025 03:03:55 +0000 Manifest next update: Wed 20 Aug 2025 03:03:55 +0000 Files and hashes: 1: zuNPo5_yhfcuIp2ihivBDkiPukE.crl (hash: Z3aBYDB6GA1JAX7DbfIRKrlrqLDTynLvD4SmHaG7F9o=) 2: 819F7A60CF8B11EDAE77B351C4F9AE02.roa (hash: 4hy1f5KhPhwHVnBrwdKHHsp/qGx5VbOvDT16foHwuRM=) 3: 1AB255C68CFF11EDB7BDD865C4F9AE02.roa (hash: l3pw7Z4d1Nkw0APH0xp6K2791IsFOtCcx1C4farScNI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A9B3E/DAB1C3A68CFB11ED92E25B61C4F9AE02/zuNPo5_yhfcuIp2ihivBDkiPukE.crl rsync://rpki.apnic.net/member_repository/A91A9B3E/DAB1C3A68CFB11ED92E25B61C4F9AE02/zuNPo5_yhfcuIp2ihivBDkiPukE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/zuNPo5_yhfcuIp2ihivBDkiPukE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 20 Aug 2025 03:03:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 494 (0x1ee) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A9B3E, serialNumber=CEE34FA39FF285F72E229DA2862BC10E488FBA41 Validity Not Before: Aug 13 03:03:55 2025 GMT Not After : Aug 20 03:03:55 2025 GMT Subject: CN=689c009b-6b17 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:2e:3d:ec:90:f0:11:f3:a0:a3:ce:24:bc:75: 99:60:32:dc:08:62:91:0e:f4:c1:b6:3b:91:6a:89: 40:48:a0:b4:dc:33:8c:45:c6:45:f9:6e:ea:d9:69: e4:f4:40:51:be:59:0b:01:3b:44:11:42:88:ce:75: 20:76:a7:df:b6:e2:3a:79:f9:a6:a2:83:1c:72:26: bd:94:21:26:f4:1b:f8:cd:dd:44:97:9c:20:14:e0: ad:a7:1c:8a:60:3d:b6:51:25:f7:a2:01:71:dd:db: 02:f6:dd:db:6b:01:df:91:17:76:a9:21:75:bb:24: ae:b0:33:32:8c:06:09:e0:c9:7d:99:9f:d1:ab:ca: b5:ba:81:73:3e:5b:e7:9c:7b:ee:8c:8d:cb:01:b4: a9:e9:c5:52:4a:1e:42:61:4b:b7:0f:28:5c:60:c2: d6:b0:ee:17:f8:43:8e:2c:41:9f:0c:48:b8:a0:e1: d3:a1:5d:3b:a4:b8:fb:19:c7:41:23:3d:b6:47:75: 41:b7:91:05:10:19:55:18:8f:64:ea:0f:60:9f:99: 70:5d:9a:02:27:8f:ef:aa:28:1b:70:0c:97:78:26: eb:6d:de:29:27:d1:1f:7e:fb:88:12:ab:32:02:eb: a9:a8:42:6d:e0:ff:97:90:45:62:ff:0a:f3:01:8a: 1e:a1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 59:89:5F:4D:E7:50:EF:AE:30:33:47:BE:C7:56:50:C3:5D:1D:A5:48 X509v3 Authority Key Identifier: keyid:CE:E3:4F:A3:9F:F2:85:F7:2E:22:9D:A2:86:2B:C1:0E:48:8F:BA:41 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A9B3E/DAB1C3A68CFB11ED92E25B61C4F9AE02/zuNPo5_yhfcuIp2ihivBDkiPukE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/zuNPo5_yhfcuIp2ihivBDkiPukE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A9B3E/DAB1C3A68CFB11ED92E25B61C4F9AE02/zuNPo5_yhfcuIp2ihivBDkiPukE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 05:7f:ed:6d:6b:00:f8:17:0a:dd:98:f1:fb:cd:ab:c7:e2:9b: 76:3d:4e:f9:3b:c9:1b:59:8e:c8:51:d8:d6:81:3d:d2:bc:a0: 8d:25:0a:13:ee:60:00:30:cb:9e:25:72:19:b4:d9:0e:0f:85: 0b:8d:d7:1d:92:10:45:3f:78:3c:6e:cb:c9:9b:18:02:7c:92: 1b:6a:ea:3f:c1:a8:90:2c:87:46:11:71:dc:f6:a4:da:de:80: f3:f1:a2:a3:74:fa:ab:45:4e:d5:69:6c:df:ef:bb:7e:e5:8d: 26:86:16:04:93:fd:ed:de:82:f1:25:39:31:ff:19:33:80:2a: 10:6e:c5:44:01:1c:79:7c:19:08:d3:85:57:bf:eb:07:98:25: fd:8b:88:7b:e0:25:74:0a:9a:b4:ea:76:b3:9b:31:e1:b6:b8: 73:31:5f:53:cb:56:bb:9f:64:e6:6a:42:1b:cb:c1:0f:fa:42: 53:74:6f:43:62:73:24:f6:ed:3a:58:b5:d0:ea:f1:88:72:ef: c6:03:ea:f1:2a:e5:a5:35:f3:c4:22:a5:5a:f8:e3:82:9a:96: 4d:1e:00:b2:ab:31:81:a9:07:34:c1:37:9b:30:c0:77:28:87: 48:b4:0b:4d:cf:fe:f1:40:3d:a1:79:6f:cf:a8:0a:73:e0:1d: 87:ae:e5:ed -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAe4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTlCM0UxMTAvBgNVBAUTKENFRTM0RkEzOUZGMjg1RjcyRTIyOURBMjg2MkJDMTBF NDg4RkJBNDEwHhcNMjUwODEzMDMwMzU1WhcNMjUwODIwMDMwMzU1WjAYMRYwFAYD VQQDEw02ODljMDA5Yi02YjE3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwi497JDwEfOgo84kvHWZYDLcCGKRDvTBtjuRaolASKC03DOMRcZF+W7q2Wnk 9EBRvlkLATtEEUKIznUgdqfftuI6efmmooMccia9lCEm9Bv4zd1El5wgFOCtpxyK YD22USX3ogFx3dsC9t3bawHfkRd2qSF1uySusDMyjAYJ4Ml9mZ/Rq8q1uoFzPlvn nHvujI3LAbSp6cVSSh5CYUu3DyhcYMLWsO4X+EOOLEGfDEi4oOHToV07pLj7GcdB Iz22R3VBt5EFEBlVGI9k6g9gn5lwXZoCJ4/vqigbcAyXeCbrbd4pJ9EffvuIEqsy AuupqEJt4P+XkEVi/wrzAYoeoQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFFmJX03n UO+uMDNHvsdWUMNdHaVIMB8GA1UdIwQYMBaAFM7jT6Of8oX3LiKdooYrwQ5Ij7pB MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBOUIzRS9EQUIxQzNBNjhD RkIxMUVEOTJFMjVCNjFDNEY5QUUwMi96dU5QbzVfeWhmY3VJcDJpaGl2QkRraVB1 a0UuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3p1TlBvNV95aGZjdUlwMmloaXZCRGtpUHVrRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB OUIzRS9EQUIxQzNBNjhDRkIxMUVEOTJFMjVCNjFDNEY5QUUwMi96dU5QbzVfeWhm Y3VJcDJpaGl2QkRraVB1a0UubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAFf+1tawD4FwrdmPH7zavH4pt2PU75O8kbWY7IUdjWgT3SvKCNJQoT 7mAAMMueJXIZtNkOD4ULjdcdkhBFP3g8bsvJmxgCfJIbauo/waiQLIdGEXHc9qTa 3oDz8aKjdPqrRU7VaWzf77t+5Y0mhhYEk/3t3oLxJTkx/xkzgCoQbsVEARx5fBkI 04VXv+sHmCX9i4h74CV0Cpq06nazmzHhtrhzMV9Ty1a7n2TmakIby8EP+kJTdG9D YnMk9u06WLXQ6vGIcu/GA+rxKuWlNfPEIqVa+OOCmpZNHgCyqzGBqQc0wTebMMB3 KIdItAtNz/7xQD2heW/PqApz4B2HruXt -----END CERTIFICATE-----Generated at Wed Aug 13 05:59:13 2025 by rpki-client