$ rpki-client -vvf rpki.apnic.net/member_repository/A912519D/B8280664C75A11EB81E99E19C4F9AE02/ZrnYT0M2qJ2E0eAuggp5aG4eUsQ.mft File: ZrnYT0M2qJ2E0eAuggp5aG4eUsQ.mft (raw, json) Hash identifier: b2SSLK3h5uqimODP3M4gHl95ZuMwNWVFofCCS6Ki9fk= Subject key identifier: F6:F3:5E:12:03:83:A2:8F:18:C6:0D:E9:17:4A:50:D0:20:CC:15:5E Authority key identifier: 66:B9:D8:4F:43:36:A8:9D:84:D1:E0:2E:82:0A:79:68:6E:1E:52:C4 Certificate issuer: /CN=A912519D/serialNumber=66B9D84F4336A89D84D1E02E820A79686E1E52C4 Certificate serial: 05C9 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ZrnYT0M2qJ2E0eAuggp5aG4eUsQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A912519D/B8280664C75A11EB81E99E19C4F9AE02/ZrnYT0M2qJ2E0eAuggp5aG4eUsQ.mft Manifest number: 05C4 Signing time: Mon 30 Jun 2025 23:27:58 +0000 Manifest this update: Mon 30 Jun 2025 23:27:58 +0000 Manifest next update: Mon 07 Jul 2025 23:27:58 +0000 Files and hashes: 1: ZrnYT0M2qJ2E0eAuggp5aG4eUsQ.crl (hash: 7RenpXnym/orqzhx2KweTSq/BsdWebeAxqu0zMWI7nk=) 2: 10581DEAC75D11EBB00EBD1AC4F9AE02.roa (hash: JmgPCoqfxLnmCXZ9Kqg1cLPcucyGnFbjlpBzEMSmBKg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A912519D/B8280664C75A11EB81E99E19C4F9AE02/ZrnYT0M2qJ2E0eAuggp5aG4eUsQ.crl rsync://rpki.apnic.net/member_repository/A912519D/B8280664C75A11EB81E99E19C4F9AE02/ZrnYT0M2qJ2E0eAuggp5aG4eUsQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ZrnYT0M2qJ2E0eAuggp5aG4eUsQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 07 Jul 2025 23:27:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1481 (0x5c9) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A912519D, serialNumber=66B9D84F4336A89D84D1E02E820A79686E1E52C4 Validity Not Before: Jun 30 23:27:58 2025 GMT Not After : Jul 7 23:27:58 2025 GMT Subject: CN=68631d7e-8f2d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:a4:b3:24:ca:20:0d:27:2f:25:a7:8d:2e:99: 0e:f2:49:a2:d2:fd:7f:4d:9c:28:88:f7:f9:06:b4: fb:f5:8a:87:d7:63:13:d4:9e:b3:4d:59:63:81:ec: 53:5e:8b:e9:5f:72:28:cb:94:a8:8c:27:9d:6b:27: f2:24:e5:c4:80:24:f5:2c:b0:8f:b8:a3:bd:26:06: 29:75:c8:ac:d7:67:a4:f7:24:c1:2c:f4:15:a8:ab: 46:41:8b:3a:10:ac:8f:19:c2:06:a0:46:b3:0d:67: 78:f5:14:7e:c5:a8:d3:8f:56:e3:91:76:40:98:94: bb:9a:04:01:08:bd:08:c0:51:68:01:38:26:9e:56: 20:68:a1:bd:b2:85:37:81:74:87:ba:b7:a8:d7:bd: 05:ce:6d:e0:8a:16:1b:f3:92:54:fa:6d:50:68:7b: f4:18:29:b5:d6:cf:fb:e6:a1:db:04:14:78:03:58: d7:14:b4:5a:5d:e9:ec:04:88:8b:cb:be:a5:a4:e2: 9b:50:82:91:eb:91:28:bf:e7:70:e0:24:69:3a:b5: 49:28:73:23:f8:a2:8f:d8:84:bf:ca:be:67:ad:a3: 81:14:ec:ef:32:1f:7b:97:91:83:09:01:c8:3d:43: 48:5e:b9:0e:88:4c:ad:27:b8:59:33:9b:69:e6:9b: 7f:c7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F6:F3:5E:12:03:83:A2:8F:18:C6:0D:E9:17:4A:50:D0:20:CC:15:5E X509v3 Authority Key Identifier: keyid:66:B9:D8:4F:43:36:A8:9D:84:D1:E0:2E:82:0A:79:68:6E:1E:52:C4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A912519D/B8280664C75A11EB81E99E19C4F9AE02/ZrnYT0M2qJ2E0eAuggp5aG4eUsQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ZrnYT0M2qJ2E0eAuggp5aG4eUsQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A912519D/B8280664C75A11EB81E99E19C4F9AE02/ZrnYT0M2qJ2E0eAuggp5aG4eUsQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 87:db:7d:55:85:18:4c:dc:e4:16:78:01:05:17:ca:63:b5:92: de:cc:c5:e6:a5:62:0b:52:b9:99:92:a7:07:79:33:28:40:a4: da:12:70:10:ed:2f:87:e9:a4:e1:3f:99:20:12:77:8d:ec:45: ad:ca:af:ab:54:32:d0:0f:a1:bd:7f:3c:1d:24:2a:07:c9:11: c6:11:dd:d3:5c:4e:24:92:fa:1a:50:58:43:ac:66:72:67:21: b1:97:bf:3f:9b:e6:f8:e3:e3:ec:7f:56:de:9b:e6:2f:f5:d7: 6d:bd:6c:ce:a2:f3:57:34:18:7d:ca:15:65:ee:ba:cd:8f:73: 5a:75:cc:09:ad:b2:37:44:fe:0c:57:51:08:43:b7:4c:2c:93: 1b:08:4d:ad:b3:50:d6:98:19:5f:1f:6a:b3:79:46:0f:33:09: be:1b:56:35:83:3a:a9:d6:b2:0a:c8:85:87:4d:a7:af:69:de: db:1f:ff:db:2c:ec:b4:d1:51:7a:95:d2:c2:5f:61:e4:c9:32: ef:83:b5:2f:79:33:0e:f5:51:93:a7:6e:5d:5d:34:88:ce:84: 70:75:d7:63:43:9c:63:d2:cd:05:92:53:34:7d:54:70:64:32: 08:76:ac:29:48:35:74:b0:49:b1:c3:15:12:26:8e:31:17:86: 4a:4e:e2:c7 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBckwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MjUxOUQxMTAvBgNVBAUTKDY2QjlEODRGNDMzNkE4OUQ4NEQxRTAyRTgyMEE3OTY4 NkUxRTUyQzQwHhcNMjUwNjMwMjMyNzU4WhcNMjUwNzA3MjMyNzU4WjAYMRYwFAYD VQQDEw02ODYzMWQ3ZS04ZjJkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAw6SzJMogDScvJaeNLpkO8kmi0v1/TZwoiPf5BrT79YqH12MT1J6zTVljgexT XovpX3Ioy5SojCedayfyJOXEgCT1LLCPuKO9JgYpdcis12ek9yTBLPQVqKtGQYs6 EKyPGcIGoEazDWd49RR+xajTj1bjkXZAmJS7mgQBCL0IwFFoATgmnlYgaKG9soU3 gXSHureo170Fzm3gihYb85JU+m1QaHv0GCm11s/75qHbBBR4A1jXFLRaXensBIiL y76lpOKbUIKR65Eov+dw4CRpOrVJKHMj+KKP2IS/yr5nraOBFOzvMh97l5GDCQHI PUNIXrkOiEytJ7hZM5tp5pt/xwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFPbzXhID g6KPGMYN6RdKUNAgzBVeMB8GA1UdIwQYMBaAFGa52E9DNqidhNHgLoIKeWhuHlLE MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyNTE5RC9CODI4MDY2NEM3 NUExMUVCODFFOTlFMTlDNEY5QUUwMi9acm5ZVDBNMnFKMkUwZUF1Z2dwNWFHNGVV c1EuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1pybllUME0ycUoyRTBlQXVnZ3A1YUc0ZVVzUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy NTE5RC9CODI4MDY2NEM3NUExMUVCODFFOTlFMTlDNEY5QUUwMi9acm5ZVDBNMnFK MkUwZUF1Z2dwNWFHNGVVc1EubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCH231VhRhM3OQWeAEFF8pjtZLezMXmpWILUrmZkqcHeTMoQKTaEnAQ 7S+H6aThP5kgEneN7EWtyq+rVDLQD6G9fzwdJCoHyRHGEd3TXE4kkvoaUFhDrGZy ZyGxl78/m+b44+Psf1bem+Yv9ddtvWzOovNXNBh9yhVl7rrNj3NadcwJrbI3RP4M V1EIQ7dMLJMbCE2ts1DWmBlfH2qzeUYPMwm+G1Y1gzqp1rIKyIWHTaevad7bH//b LOy00VF6ldLCX2HkyTLvg7UveTMO9VGTp25dXTSIzoRwdddjQ5xj0s0FklM0fVRw ZDIIdqwpSDV0sEmxwxUSJo4xF4ZKTuLH -----END CERTIFICATE-----Generated at Wed Jul 2 19:24:49 2025 by rpki-client