$ rpki-client -vvf rpki.apnic.net/member_repository/A917BBF1/245DC5CA0AF711EAA85A5D1AC4F9AE02/ZUCRhgKOxUzUW1g0_77K9LePGcI.mft File: ZUCRhgKOxUzUW1g0_77K9LePGcI.mft (raw, json) Hash identifier: mCRkQ+8/r4BpJzk0DxZFpuZrdpbsZ1hN0cCI2+98QdA= Subject key identifier: 2A:3F:89:47:4E:61:57:EF:DA:12:84:26:6F:33:81:22:2F:79:C3:B0 Authority key identifier: 65:40:91:86:02:8E:C5:4C:D4:5B:58:34:FF:BE:CA:F4:B7:8F:19:C2 Certificate issuer: /CN=A917BBF1/serialNumber=65409186028EC54CD45B5834FFBECAF4B78F19C2 Certificate serial: 0C66 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ZUCRhgKOxUzUW1g0_77K9LePGcI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917BBF1/245DC5CA0AF711EAA85A5D1AC4F9AE02/ZUCRhgKOxUzUW1g0_77K9LePGcI.mft Manifest number: 0C49 Signing time: Wed 02 Jul 2025 18:48:03 +0000 Manifest this update: Wed 02 Jul 2025 18:48:02 +0000 Manifest next update: Wed 09 Jul 2025 18:48:02 +0000 Files and hashes: 1: ZUCRhgKOxUzUW1g0_77K9LePGcI.crl (hash: Ud73cMw+nQ88xVhzDvbrOSLpeQExudDO1YCqLGDHgTE=) 2: 7136F65A37A811EE94E32169C4F9AE02.roa (hash: MIgp6SPzmtBLaTAJ8Ko+cWBy6IjOqEZ3q2z4VBixHmI=) 3: 1B54858065B711EE93D6ED6DC4F9AE02.roa (hash: GsJaSUcatISwdkkhFSUQBWiCBZOPMZtERdw74sbshGA=) 4: FF4F13D4448711ECA80CFC34C4F9AE02.roa (hash: pvvlftNep3JGBrkiJAisunxpzryLA3gGytWzHa5BKMk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917BBF1/245DC5CA0AF711EAA85A5D1AC4F9AE02/ZUCRhgKOxUzUW1g0_77K9LePGcI.crl rsync://rpki.apnic.net/member_repository/A917BBF1/245DC5CA0AF711EAA85A5D1AC4F9AE02/ZUCRhgKOxUzUW1g0_77K9LePGcI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ZUCRhgKOxUzUW1g0_77K9LePGcI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 09 Jul 2025 18:48:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3174 (0xc66) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917BBF1, serialNumber=65409186028EC54CD45B5834FFBECAF4B78F19C2 Validity Not Before: Jul 2 18:48:02 2025 GMT Not After : Jul 9 18:48:02 2025 GMT Subject: CN=68657ee3-60df Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:b2:b9:87:9b:2c:8c:a0:f1:da:18:3f:a2:cf: 4a:6c:5f:8a:a5:35:d3:21:78:d2:11:f5:8b:fd:3e: 84:41:6d:af:b3:60:d5:52:b4:94:bf:5e:2a:da:4b: af:30:d9:a8:23:2a:7a:68:66:38:c5:fd:0c:14:87: ab:14:b8:21:ac:23:c8:20:5c:c0:2d:24:80:26:81: f0:f2:5a:c8:1c:9f:e5:d9:90:97:4c:95:ca:72:52: ba:90:57:a1:8c:8a:73:58:2f:25:d0:da:11:83:d8: 22:62:42:6a:f4:ab:9d:4f:c0:d2:84:83:72:69:07: be:19:d7:37:9e:ba:cc:d3:da:ef:73:06:33:2e:13: f8:ba:43:a1:89:6f:78:79:e0:46:f8:09:88:c1:0c: 9a:62:7d:28:18:77:6b:1b:44:25:94:78:ed:3d:4a: 4a:00:aa:82:c8:d2:c4:31:65:e8:72:9a:6e:86:09: ff:95:71:76:c7:7c:dd:4d:55:74:73:2b:95:5f:5e: 1d:0c:c3:07:98:5d:82:5b:dc:72:b1:0b:23:2e:20: af:28:e1:94:b8:cb:13:ae:92:d2:2a:65:49:ef:45: 13:37:f1:ad:e8:74:5f:9a:ef:b6:ea:db:2a:54:fb: c8:04:02:d3:52:7b:3a:b5:26:6a:43:70:3d:cd:27: 81:17 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2A:3F:89:47:4E:61:57:EF:DA:12:84:26:6F:33:81:22:2F:79:C3:B0 X509v3 Authority Key Identifier: keyid:65:40:91:86:02:8E:C5:4C:D4:5B:58:34:FF:BE:CA:F4:B7:8F:19:C2 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917BBF1/245DC5CA0AF711EAA85A5D1AC4F9AE02/ZUCRhgKOxUzUW1g0_77K9LePGcI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ZUCRhgKOxUzUW1g0_77K9LePGcI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917BBF1/245DC5CA0AF711EAA85A5D1AC4F9AE02/ZUCRhgKOxUzUW1g0_77K9LePGcI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 54:7f:78:00:bd:d1:aa:ac:a6:c1:1e:d2:90:05:03:a9:0f:0a: 41:31:ee:3a:08:99:2d:ca:12:e0:e4:e0:01:f7:72:e7:0f:bb: 01:a4:ec:3d:a3:45:95:a7:23:0b:ef:32:87:dc:53:6d:9e:84: 9e:29:4a:5d:a4:32:b9:82:dc:f5:86:24:08:53:a1:53:e5:0d: 62:b6:27:eb:12:d9:e1:42:00:ab:1f:0f:e3:31:a8:cc:64:30: b9:0b:2c:54:e8:0a:bc:c7:a5:99:b9:02:6a:15:6a:78:17:b7: 0e:61:11:28:cc:15:9f:5f:3f:ad:1b:ff:cb:14:55:6e:7d:1b: 48:cf:1e:b8:09:70:9b:10:fb:cc:28:68:83:52:1d:a3:d2:9e: ac:ec:5c:e6:f6:7f:64:a7:f4:07:fb:08:76:a7:df:63:5f:73: 36:37:41:f0:01:f6:fa:4d:43:1f:df:7a:96:d8:6c:ec:c7:23: 80:ea:4f:c5:95:f2:d8:dc:b8:d5:5b:4f:10:f6:38:6f:db:e2: 13:ec:36:a1:b7:80:94:b2:9a:ff:43:2b:f9:8d:6c:fb:70:a4: 6a:57:0b:52:b7:e3:04:e4:89:11:ac:b7:b8:4d:2c:95:b6:c4: 03:6c:2c:4e:8b:12:08:ba:1e:a5:61:a7:95:74:de:62:7d:81: 42:c2:2f:de -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDGYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0JCRjExMTAvBgNVBAUTKDY1NDA5MTg2MDI4RUM1NENENDVCNTgzNEZGQkVDQUY0 Qjc4RjE5QzIwHhcNMjUwNzAyMTg0ODAyWhcNMjUwNzA5MTg0ODAyWjAYMRYwFAYD VQQDEw02ODY1N2VlMy02MGRmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwrK5h5ssjKDx2hg/os9KbF+KpTXTIXjSEfWL/T6EQW2vs2DVUrSUv14q2kuv MNmoIyp6aGY4xf0MFIerFLghrCPIIFzALSSAJoHw8lrIHJ/l2ZCXTJXKclK6kFeh jIpzWC8l0NoRg9giYkJq9KudT8DShINyaQe+Gdc3nrrM09rvcwYzLhP4ukOhiW94 eeBG+AmIwQyaYn0oGHdrG0QllHjtPUpKAKqCyNLEMWXocppuhgn/lXF2x3zdTVV0 cyuVX14dDMMHmF2CW9xysQsjLiCvKOGUuMsTrpLSKmVJ70UTN/Gt6HRfmu+26tsq VPvIBALTUns6tSZqQ3A9zSeBFwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFCo/iUdO YVfv2hKEJm8zgSIvecOwMB8GA1UdIwQYMBaAFGVAkYYCjsVM1FtYNP++yvS3jxnC MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3QkJGMS8yNDVEQzVDQTBB RjcxMUVBQTg1QTVEMUFDNEY5QUUwMi9aVUNSaGdLT3hVelVXMWcwXzc3SzlMZVBH Y0kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1pVQ1JoZ0tPeFV6VVcxZzBfNzdLOUxlUEdjSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 QkJGMS8yNDVEQzVDQTBBRjcxMUVBQTg1QTVEMUFDNEY5QUUwMi9aVUNSaGdLT3hV elVXMWcwXzc3SzlMZVBHY0kubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBUf3gAvdGqrKbBHtKQBQOpDwpBMe46CJktyhLg5OAB93LnD7sBpOw9 o0WVpyML7zKH3FNtnoSeKUpdpDK5gtz1hiQIU6FT5Q1itifrEtnhQgCrHw/jMajM ZDC5CyxU6Aq8x6WZuQJqFWp4F7cOYREozBWfXz+tG//LFFVufRtIzx64CXCbEPvM KGiDUh2j0p6s7Fzm9n9kp/QH+wh2p99jX3M2N0HwAfb6TUMf33qW2GzsxyOA6k/F lfLY3LjVW08Q9jhv2+IT7Daht4CUspr/Qyv5jWz7cKRqVwtSt+ME5IkRrLe4TSyV tsQDbCxOixIIuh6lYaeVdN5ifYFCwi/e -----END CERTIFICATE-----Generated at Thu Jul 3 05:07:43 2025 by rpki-client