$ rpki-client -vvf rpki.apnic.net/member_repository/A917BBF1/245DC5CA0AF711EAA85A5D1AC4F9AE02/ZUCRhgKOxUzUW1g0_77K9LePGcI.mft File: ZUCRhgKOxUzUW1g0_77K9LePGcI.mft (raw, json) Hash identifier: 070AfkahtJHDGs/L+NIXSRI05f0mSOY1ksDblEJU3IY= Subject key identifier: 1F:FE:37:BD:C1:F6:EA:C5:6E:85:00:76:DE:C8:18:16:43:BB:AC:20 Authority key identifier: 65:40:91:86:02:8E:C5:4C:D4:5B:58:34:FF:BE:CA:F4:B7:8F:19:C2 Certificate issuer: /CN=A917BBF1/serialNumber=65409186028EC54CD45B5834FFBECAF4B78F19C2 Certificate serial: 0C9D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ZUCRhgKOxUzUW1g0_77K9LePGcI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917BBF1/245DC5CA0AF711EAA85A5D1AC4F9AE02/ZUCRhgKOxUzUW1g0_77K9LePGcI.mft Manifest number: 0C80 Signing time: Sat 18 Oct 2025 19:15:34 +0000 Manifest this update: Sat 18 Oct 2025 19:15:34 +0000 Manifest next update: Sat 25 Oct 2025 19:15:34 +0000 Files and hashes: 1: ZUCRhgKOxUzUW1g0_77K9LePGcI.crl (hash: NuxHCn8JlQERdsB0V4TJnCkk4b2s3hILSofJ7ODiCnw=) 2: 7136F65A37A811EE94E32169C4F9AE02.roa (hash: MIgp6SPzmtBLaTAJ8Ko+cWBy6IjOqEZ3q2z4VBixHmI=) 3: 1B54858065B711EE93D6ED6DC4F9AE02.roa (hash: GsJaSUcatISwdkkhFSUQBWiCBZOPMZtERdw74sbshGA=) 4: FF4F13D4448711ECA80CFC34C4F9AE02.roa (hash: pvvlftNep3JGBrkiJAisunxpzryLA3gGytWzHa5BKMk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917BBF1/245DC5CA0AF711EAA85A5D1AC4F9AE02/ZUCRhgKOxUzUW1g0_77K9LePGcI.crl rsync://rpki.apnic.net/member_repository/A917BBF1/245DC5CA0AF711EAA85A5D1AC4F9AE02/ZUCRhgKOxUzUW1g0_77K9LePGcI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ZUCRhgKOxUzUW1g0_77K9LePGcI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 Oct 2025 19:15:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3229 (0xc9d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917BBF1, serialNumber=65409186028EC54CD45B5834FFBECAF4B78F19C2 Validity Not Before: Oct 18 19:15:34 2025 GMT Not After : Oct 25 19:15:34 2025 GMT Subject: CN=68f3e756-5fab Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c8:a6:8b:e8:02:15:80:0e:27:47:f3:7c:0b:30: b5:31:8b:0d:97:a4:11:a4:d0:3a:f6:c4:58:85:6d: 65:d2:02:67:1b:47:9a:c1:be:33:2d:57:a7:39:34: bf:3e:a2:05:26:36:6e:65:65:1d:80:f8:18:5b:12: ec:41:cd:6b:eb:61:fd:3a:b0:6f:3f:34:18:02:81: 97:74:ff:ea:fd:16:4e:98:10:cc:cd:61:14:4f:bb: 3f:47:62:30:9e:72:7f:a7:02:63:10:13:ed:86:90: a3:c3:87:34:a0:41:41:47:53:9c:7f:32:56:95:b0: 9d:07:ce:30:e9:b3:65:45:63:e7:86:ec:79:eb:0d: 86:09:b2:d9:cf:e2:f6:08:6c:54:d3:6c:38:ce:a6: f4:7e:f8:f7:44:a6:4a:aa:dc:5a:be:d3:6e:2e:03: 00:f9:a6:e7:f8:33:7c:42:6f:75:9a:81:fa:ee:47: e1:d1:13:a9:ef:6e:81:20:4a:41:3c:c0:c7:4a:f2: 24:71:a2:08:02:a6:35:1a:d1:d7:92:45:37:d1:2d: 3c:fc:71:60:3c:68:df:b7:06:c0:33:4f:c5:7a:ca: e0:4b:60:d9:a3:3c:fb:68:66:0d:54:dc:a2:79:50: fd:18:e7:aa:d2:68:e3:a4:d5:be:67:56:a7:86:59: c6:01 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1F:FE:37:BD:C1:F6:EA:C5:6E:85:00:76:DE:C8:18:16:43:BB:AC:20 X509v3 Authority Key Identifier: keyid:65:40:91:86:02:8E:C5:4C:D4:5B:58:34:FF:BE:CA:F4:B7:8F:19:C2 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917BBF1/245DC5CA0AF711EAA85A5D1AC4F9AE02/ZUCRhgKOxUzUW1g0_77K9LePGcI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ZUCRhgKOxUzUW1g0_77K9LePGcI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917BBF1/245DC5CA0AF711EAA85A5D1AC4F9AE02/ZUCRhgKOxUzUW1g0_77K9LePGcI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a7:87:0d:07:13:29:d9:59:31:a1:93:f4:19:2b:a9:4c:6a:13: e6:62:cd:95:94:c6:d0:e1:c7:40:33:f6:30:71:54:4d:e0:16: 76:12:f0:24:4e:e9:70:12:26:4b:b1:8b:a0:68:9d:ab:e2:fb: 33:c5:0e:7e:22:28:ea:25:76:16:e2:c7:ec:83:cb:34:1b:ce: 22:e3:74:d9:c0:dc:ee:1b:d3:51:e4:ee:23:f3:c0:5e:24:4b: a8:8f:9a:52:39:cf:1d:f5:ad:c1:c5:dc:8e:9a:89:2a:d1:49: 5f:85:67:0a:92:f2:43:79:eb:4b:b5:2c:cc:5e:cc:92:da:14: d3:fa:e0:f4:b9:bc:2f:44:92:67:06:64:ba:fd:13:da:d2:bb: 88:4b:58:44:5b:3e:8d:8d:bc:2b:fa:c6:cf:fb:37:10:f0:9f: 8f:b9:d9:7b:a8:ef:83:c3:19:c1:bb:79:dc:5c:89:28:9a:1e: 19:58:f0:11:f9:95:33:ac:73:11:1e:56:72:56:f8:e8:77:56: d2:bd:15:12:59:ce:2a:ea:8d:40:8c:0b:98:45:38:d2:c3:e4: e6:43:8d:c2:b6:ad:1d:c3:e7:a9:56:27:bf:fe:df:b8:a7:3d: a1:6d:43:8d:16:bc:52:61:5f:33:1e:ec:03:ee:6d:64:81:af: a7:63:61:db -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDJ0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0JCRjExMTAvBgNVBAUTKDY1NDA5MTg2MDI4RUM1NENENDVCNTgzNEZGQkVDQUY0 Qjc4RjE5QzIwHhcNMjUxMDE4MTkxNTM0WhcNMjUxMDI1MTkxNTM0WjAYMRYwFAYD VQQDEw02OGYzZTc1Ni01ZmFiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyKaL6AIVgA4nR/N8CzC1MYsNl6QRpNA69sRYhW1l0gJnG0eawb4zLVenOTS/ PqIFJjZuZWUdgPgYWxLsQc1r62H9OrBvPzQYAoGXdP/q/RZOmBDMzWEUT7s/R2Iw nnJ/pwJjEBPthpCjw4c0oEFBR1OcfzJWlbCdB84w6bNlRWPnhux56w2GCbLZz+L2 CGxU02w4zqb0fvj3RKZKqtxavtNuLgMA+abn+DN8Qm91moH67kfh0ROp726BIEpB PMDHSvIkcaIIAqY1GtHXkkU30S08/HFgPGjftwbAM0/FesrgS2DZozz7aGYNVNyi eVD9GOeq0mjjpNW+Z1anhlnGAQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFB/+N73B 9urFboUAdt7IGBZDu6wgMB8GA1UdIwQYMBaAFGVAkYYCjsVM1FtYNP++yvS3jxnC MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3QkJGMS8yNDVEQzVDQTBB RjcxMUVBQTg1QTVEMUFDNEY5QUUwMi9aVUNSaGdLT3hVelVXMWcwXzc3SzlMZVBH Y0kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1pVQ1JoZ0tPeFV6VVcxZzBfNzdLOUxlUEdjSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 QkJGMS8yNDVEQzVDQTBBRjcxMUVBQTg1QTVEMUFDNEY5QUUwMi9aVUNSaGdLT3hV elVXMWcwXzc3SzlMZVBHY0kubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCnhw0HEynZWTGhk/QZK6lMahPmYs2VlMbQ4cdAM/YwcVRN4BZ2EvAk TulwEiZLsYugaJ2r4vszxQ5+IijqJXYW4sfsg8s0G84i43TZwNzuG9NR5O4j88Be JEuoj5pSOc8d9a3BxdyOmokq0UlfhWcKkvJDeetLtSzMXsyS2hTT+uD0ubwvRJJn BmS6/RPa0ruIS1hEWz6Njbwr+sbP+zcQ8J+Pudl7qO+DwxnBu3ncXIkomh4ZWPAR +ZUzrHMRHlZyVvjod1bSvRUSWc4q6o1AjAuYRTjSw+TmQ43Ctq0dw+epVie//t+4 pz2hbUONFrxSYV8zHuwD7m1kga+nY2Hb -----END CERTIFICATE-----Generated at Mon Oct 20 01:47:56 2025 by rpki-client