$ rpki-client -vvf rpki.apnic.net/member_repository/A91B80C2/FE48ABF406B211EFBCE0345CC4F9AE02/zuB8hxTxkngTnSOWBQQ-zGvb0yI.mft File: zuB8hxTxkngTnSOWBQQ-zGvb0yI.mft (raw, json) Hash identifier: r7D/cjONbP5ZIcclw8UcthLyAAV/EO/O9oHMwj3xMDM= Subject key identifier: 4B:BF:D2:10:40:3B:48:0C:18:3B:0D:65:66:2E:9C:BA:6A:E6:4C:22 Authority key identifier: CE:E0:7C:87:14:F1:92:78:13:9D:23:96:05:04:3E:CC:6B:DB:D3:22 Certificate issuer: /CN=A91B80C2/serialNumber=CEE07C8714F19278139D239605043ECC6BDBD322 Certificate serial: 010B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/zuB8hxTxkngTnSOWBQQ-zGvb0yI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B80C2/FE48ABF406B211EFBCE0345CC4F9AE02/zuB8hxTxkngTnSOWBQQ-zGvb0yI.mft Manifest number: FF Signing time: Tue 05 Aug 2025 05:47:32 +0000 Manifest this update: Tue 05 Aug 2025 05:47:32 +0000 Manifest next update: Tue 12 Aug 2025 05:47:32 +0000 Files and hashes: 1: zuB8hxTxkngTnSOWBQQ-zGvb0yI.crl (hash: 49axjjdB+UnUXbFgTz+5idx3+X9Xl6QDAdVPOlfS5i8=) 2: 33FB0E48FD2211EFA419DA72C4F9AE02.roa (hash: hGFJA7vbBE7czUFInCqw+SAQ5MusDF01ceEYN+8+xgQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B80C2/FE48ABF406B211EFBCE0345CC4F9AE02/zuB8hxTxkngTnSOWBQQ-zGvb0yI.crl rsync://rpki.apnic.net/member_repository/A91B80C2/FE48ABF406B211EFBCE0345CC4F9AE02/zuB8hxTxkngTnSOWBQQ-zGvb0yI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/zuB8hxTxkngTnSOWBQQ-zGvb0yI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 12 Aug 2025 05:47:31 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 267 (0x10b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B80C2, serialNumber=CEE07C8714F19278139D239605043ECC6BDBD322 Validity Not Before: Aug 5 05:47:32 2025 GMT Not After : Aug 12 05:47:32 2025 GMT Subject: CN=68919af4-fb5e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:df:e6:ad:80:99:b4:32:89:29:ee:a7:7d:8a:64: 1f:d2:87:cd:54:91:96:55:13:02:a9:0b:c1:21:ca: 8a:cc:9e:1f:d5:6e:44:b9:70:09:22:fe:cc:78:85: e7:9f:b4:11:57:46:d9:f9:25:3d:85:b6:f2:89:6c: 5f:c2:4e:38:45:45:29:7c:99:2f:60:8a:7e:41:a3: 4f:8a:db:32:19:dd:d3:57:35:dc:87:a2:be:d7:5d: cd:5f:f6:20:76:0f:25:b2:0a:93:62:13:0b:83:d6: f6:4d:5d:56:99:3f:95:8e:5b:f8:88:86:2c:d9:6f: e0:30:c1:b1:63:eb:7e:7b:3c:14:36:82:27:8a:40: 85:4d:78:1b:6a:c2:d8:d3:bf:59:43:ae:52:d7:c6: 80:d9:90:75:e3:e6:3c:c7:ab:83:4b:3c:a8:74:47: 90:e5:4b:0b:b1:c4:22:21:11:68:3e:bc:b6:01:c4: 33:31:e9:3c:2f:9b:48:42:c1:51:7e:26:20:1b:b2: df:ad:bc:ed:be:47:4f:c9:dc:e4:0f:b0:9d:52:bd: 20:bd:dd:cc:d7:5e:21:65:d5:5a:95:47:46:ed:10: 63:a4:80:51:2f:29:63:27:48:6b:36:d8:a5:a0:bf: cd:2e:b7:55:bf:1e:e2:5a:d7:ad:09:fe:b9:bc:63: 06:07 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4B:BF:D2:10:40:3B:48:0C:18:3B:0D:65:66:2E:9C:BA:6A:E6:4C:22 X509v3 Authority Key Identifier: keyid:CE:E0:7C:87:14:F1:92:78:13:9D:23:96:05:04:3E:CC:6B:DB:D3:22 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B80C2/FE48ABF406B211EFBCE0345CC4F9AE02/zuB8hxTxkngTnSOWBQQ-zGvb0yI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/zuB8hxTxkngTnSOWBQQ-zGvb0yI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B80C2/FE48ABF406B211EFBCE0345CC4F9AE02/zuB8hxTxkngTnSOWBQQ-zGvb0yI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption ab:30:81:48:ff:82:6e:d4:ea:e9:55:7b:8e:24:ba:67:bf:67: 38:e3:de:90:09:4d:d9:4d:90:6e:3a:bb:2c:c3:90:8b:2a:17: 53:4e:96:14:3e:a7:42:7e:3b:7e:2f:13:9f:b0:65:5a:19:d1: eb:0a:37:99:a6:02:ca:fd:b0:79:66:6f:a9:6b:c7:36:10:41: c4:02:ba:91:51:9b:42:8a:fe:d0:78:b3:b4:94:66:96:12:dc: 5f:eb:e5:cf:59:3e:6a:97:9a:16:33:84:dd:38:91:58:60:78: 05:29:f1:ca:2d:2a:8a:8c:8e:4b:fa:4e:7b:d4:16:e4:82:18: c2:0b:96:e8:f8:8a:46:40:b3:4b:2e:3f:08:78:45:ac:56:ab: 02:49:af:6c:e1:a7:6a:bb:8f:ac:0d:01:d0:78:c6:72:da:6d: cb:88:53:40:75:4b:ee:ae:7b:51:de:23:38:9e:ec:43:8d:6c: a9:de:15:9f:bb:ea:cf:ed:51:fc:e7:13:0a:13:fe:a6:ae:71: 24:c9:90:00:4c:62:a5:90:25:7c:c1:16:dc:99:71:83:ff:a6: c9:79:03:bb:cc:56:62:48:a6:01:a5:49:3f:f8:3f:ec:53:dd: 30:fc:73:7b:97:af:53:bc:05:a9:2e:b7:49:c9:3b:4f:de:da: 49:69:0e:dd -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAQswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjgwQzIxMTAvBgNVBAUTKENFRTA3Qzg3MTRGMTkyNzgxMzlEMjM5NjA1MDQzRUND NkJEQkQzMjIwHhcNMjUwODA1MDU0NzMyWhcNMjUwODEyMDU0NzMyWjAYMRYwFAYD VQQDEw02ODkxOWFmNC1mYjVlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA3+atgJm0Mokp7qd9imQf0ofNVJGWVRMCqQvBIcqKzJ4f1W5EuXAJIv7MeIXn n7QRV0bZ+SU9hbbyiWxfwk44RUUpfJkvYIp+QaNPitsyGd3TVzXch6K+113NX/Yg dg8lsgqTYhMLg9b2TV1WmT+Vjlv4iIYs2W/gMMGxY+t+ezwUNoInikCFTXgbasLY 079ZQ65S18aA2ZB14+Y8x6uDSzyodEeQ5UsLscQiIRFoPry2AcQzMek8L5tIQsFR fiYgG7LfrbztvkdPydzkD7CdUr0gvd3M114hZdValUdG7RBjpIBRLyljJ0hrNtil oL/NLrdVvx7iWtetCf65vGMGBwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFEu/0hBA O0gMGDsNZWYunLpq5kwiMB8GA1UdIwQYMBaAFM7gfIcU8ZJ4E50jlgUEPsxr29Mi MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCODBDMi9GRTQ4QUJGNDA2 QjIxMUVGQkNFMDM0NUNDNEY5QUUwMi96dUI4aHhUeGtuZ1RuU09XQlFRLXpHdmIw eUkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3p1QjhoeFR4a25nVG5TT1dCUVEtekd2YjB5SS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC ODBDMi9GRTQ4QUJGNDA2QjIxMUVGQkNFMDM0NUNDNEY5QUUwMi96dUI4aHhUeGtu Z1RuU09XQlFRLXpHdmIweUkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCrMIFI/4Ju1OrpVXuOJLpnv2c4496QCU3ZTZBuOrssw5CLKhdTTpYU PqdCfjt+LxOfsGVaGdHrCjeZpgLK/bB5Zm+pa8c2EEHEArqRUZtCiv7QeLO0lGaW Etxf6+XPWT5ql5oWM4TdOJFYYHgFKfHKLSqKjI5L+k571BbkghjCC5bo+IpGQLNL Lj8IeEWsVqsCSa9s4adqu4+sDQHQeMZy2m3LiFNAdUvurntR3iM4nuxDjWyp3hWf u+rP7VH85xMKE/6mrnEkyZAATGKlkCV8wRbcmXGD/6bJeQO7zFZiSKYBpUk/+D/s U90w/HN7l69TvAWpLrdJyTtP3tpJaQ7d -----END CERTIFICATE-----Generated at Wed Aug 6 07:51:35 2025 by rpki-client