$ rpki-client -vvf rpki.apnic.net/member_repository/A912519D/B8280664C75A11EB81E99E19C4F9AE02/ZrnYT0M2qJ2E0eAuggp5aG4eUsQ.mft File: ZrnYT0M2qJ2E0eAuggp5aG4eUsQ.mft (raw, json) Hash identifier: T2PZcMQfbPXCZoE/7Fqwjc6tI2uhusYfnQkbNyCfjgM= Subject key identifier: 8D:33:D5:EC:7B:87:C9:12:64:5F:D8:32:8C:64:2E:52:8B:98:83:55 Authority key identifier: 66:B9:D8:4F:43:36:A8:9D:84:D1:E0:2E:82:0A:79:68:6E:1E:52:C4 Certificate issuer: /CN=A912519D/serialNumber=66B9D84F4336A89D84D1E02E820A79686E1E52C4 Certificate serial: 05E4 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ZrnYT0M2qJ2E0eAuggp5aG4eUsQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A912519D/B8280664C75A11EB81E99E19C4F9AE02/ZrnYT0M2qJ2E0eAuggp5aG4eUsQ.mft Manifest number: 05DF Signing time: Fri 22 Aug 2025 23:10:51 +0000 Manifest this update: Fri 22 Aug 2025 23:10:50 +0000 Manifest next update: Fri 29 Aug 2025 23:10:50 +0000 Files and hashes: 1: ZrnYT0M2qJ2E0eAuggp5aG4eUsQ.crl (hash: f+W5HaCayRu9wNa0XK0fofilGw5bPMw/rX6o+I2P25I=) 2: 10581DEAC75D11EBB00EBD1AC4F9AE02.roa (hash: JmgPCoqfxLnmCXZ9Kqg1cLPcucyGnFbjlpBzEMSmBKg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A912519D/B8280664C75A11EB81E99E19C4F9AE02/ZrnYT0M2qJ2E0eAuggp5aG4eUsQ.crl rsync://rpki.apnic.net/member_repository/A912519D/B8280664C75A11EB81E99E19C4F9AE02/ZrnYT0M2qJ2E0eAuggp5aG4eUsQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ZrnYT0M2qJ2E0eAuggp5aG4eUsQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Aug 2025 23:10:50 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1508 (0x5e4) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A912519D, serialNumber=66B9D84F4336A89D84D1E02E820A79686E1E52C4 Validity Not Before: Aug 22 23:10:50 2025 GMT Not After : Aug 29 23:10:50 2025 GMT Subject: CN=68a8f8fb-04fa Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a3:2d:c3:01:41:8b:5e:84:88:bc:c1:95:98:73: 07:a5:4c:9c:ad:85:6c:ff:e5:87:d0:e2:95:40:92: b6:e7:28:9e:8b:ae:84:0d:0c:d3:39:51:28:03:21: 89:26:a3:bc:36:9d:4a:28:17:1d:85:04:de:c5:51: d6:0f:be:03:1b:f9:12:86:d8:ce:a8:95:49:0c:b4: 40:91:96:a4:a2:94:d1:89:97:a2:5e:79:d7:20:4e: 87:03:f6:ca:cc:1f:36:6b:88:6a:cb:ff:af:82:27: 26:69:4a:ac:90:9a:17:2f:8c:d5:e2:57:46:b3:4c: 14:1f:52:b9:21:37:c1:b7:04:d2:37:31:b6:9a:bd: 1b:e2:3e:a3:c6:be:22:32:5b:be:14:b5:7e:7c:2f: 05:7b:10:2d:13:ac:1c:fc:f7:0e:43:b0:d5:9a:16: 4e:32:43:ef:ea:03:df:e9:6d:81:b5:cd:ff:8a:d9: 0c:4e:73:92:f6:9d:db:f3:09:7d:d0:2b:cb:8e:47: 0c:b9:4d:12:08:5b:ca:9f:7b:f0:e7:27:e3:ae:03: 18:50:80:98:b7:85:77:d7:db:66:74:fa:0d:d7:b5: c8:0b:aa:b4:ce:3b:1f:f6:f6:97:60:2b:03:80:4d: 43:87:43:31:10:96:e1:6c:8f:f4:66:b3:5f:90:17: e0:2b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8D:33:D5:EC:7B:87:C9:12:64:5F:D8:32:8C:64:2E:52:8B:98:83:55 X509v3 Authority Key Identifier: keyid:66:B9:D8:4F:43:36:A8:9D:84:D1:E0:2E:82:0A:79:68:6E:1E:52:C4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A912519D/B8280664C75A11EB81E99E19C4F9AE02/ZrnYT0M2qJ2E0eAuggp5aG4eUsQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ZrnYT0M2qJ2E0eAuggp5aG4eUsQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A912519D/B8280664C75A11EB81E99E19C4F9AE02/ZrnYT0M2qJ2E0eAuggp5aG4eUsQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 90:69:43:0c:3d:3a:16:32:27:f0:a9:2d:4f:61:5e:57:b1:67: 61:c1:a1:bb:97:a2:ef:f0:55:f6:d4:12:fe:b4:14:ef:62:8b: 92:a1:ed:ea:93:ec:f5:c9:c4:b6:39:96:5b:df:4b:8c:71:5f: 19:35:99:0d:0a:b7:d5:7d:c9:f3:7a:f8:b9:47:9c:13:2e:6e: 8d:7e:1e:6e:b3:bf:bf:92:5a:b4:4b:76:78:b4:89:d2:37:ab: de:8e:04:b4:46:9e:ee:68:62:cd:1a:e4:a4:a9:f3:c3:3e:fc: 21:37:15:2c:c6:6e:0c:8a:7a:63:34:6e:c4:a1:d5:40:db:8a: de:00:a5:4c:2f:6f:f6:80:e7:e3:a1:ac:81:41:a9:78:1d:15: 8c:37:01:8a:d8:b3:2b:45:43:68:ed:78:e7:2a:b4:97:65:ca: 72:42:0f:1a:9c:09:ab:be:0a:51:fd:91:31:6b:7d:83:ae:b5: 00:3d:67:23:5d:3e:c4:c5:f4:88:2d:12:bf:77:6f:8b:e4:a2: f5:e8:17:3e:99:d8:bf:53:3a:ac:23:81:28:0f:d4:ec:77:b4: 51:fe:91:31:d7:bb:77:aa:34:55:04:4c:c0:4f:dd:7d:27:e0: ac:ba:56:4b:12:49:a7:78:b0:b7:a0:fb:db:76:27:b5:ca:e4: 6a:5e:25:5d -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBeQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MjUxOUQxMTAvBgNVBAUTKDY2QjlEODRGNDMzNkE4OUQ4NEQxRTAyRTgyMEE3OTY4 NkUxRTUyQzQwHhcNMjUwODIyMjMxMDUwWhcNMjUwODI5MjMxMDUwWjAYMRYwFAYD VQQDEw02OGE4ZjhmYi0wNGZhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAoy3DAUGLXoSIvMGVmHMHpUycrYVs/+WH0OKVQJK25yiei66EDQzTOVEoAyGJ JqO8Np1KKBcdhQTexVHWD74DG/kShtjOqJVJDLRAkZakopTRiZeiXnnXIE6HA/bK zB82a4hqy/+vgicmaUqskJoXL4zV4ldGs0wUH1K5ITfBtwTSNzG2mr0b4j6jxr4i Mlu+FLV+fC8FexAtE6wc/PcOQ7DVmhZOMkPv6gPf6W2Btc3/itkMTnOS9p3b8wl9 0CvLjkcMuU0SCFvKn3vw5yfjrgMYUICYt4V319tmdPoN17XIC6q0zjsf9vaXYCsD gE1Dh0MxEJbhbI/0ZrNfkBfgKwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFI0z1ex7 h8kSZF/YMoxkLlKLmINVMB8GA1UdIwQYMBaAFGa52E9DNqidhNHgLoIKeWhuHlLE MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyNTE5RC9CODI4MDY2NEM3 NUExMUVCODFFOTlFMTlDNEY5QUUwMi9acm5ZVDBNMnFKMkUwZUF1Z2dwNWFHNGVV c1EuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1pybllUME0ycUoyRTBlQXVnZ3A1YUc0ZVVzUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy NTE5RC9CODI4MDY2NEM3NUExMUVCODFFOTlFMTlDNEY5QUUwMi9acm5ZVDBNMnFK MkUwZUF1Z2dwNWFHNGVVc1EubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCQaUMMPToWMifwqS1PYV5XsWdhwaG7l6Lv8FX21BL+tBTvYouSoe3q k+z1ycS2OZZb30uMcV8ZNZkNCrfVfcnzevi5R5wTLm6Nfh5us7+/klq0S3Z4tInS N6vejgS0Rp7uaGLNGuSkqfPDPvwhNxUsxm4MinpjNG7EodVA24reAKVML2/2gOfj oayBQal4HRWMNwGK2LMrRUNo7XjnKrSXZcpyQg8anAmrvgpR/ZExa32DrrUAPWcj XT7ExfSILRK/d2+L5KL16Bc+mdi/UzqsI4EoD9Tsd7RR/pEx17t3qjRVBEzAT919 J+CsulZLEkmneLC3oPvbdie1yuRqXiVd -----END CERTIFICATE-----Generated at Sat Aug 23 19:02:45 2025 by rpki-client