$ rpki-client -vvf rpki.apnic.net/member_repository/A917BBF1/245DC5CA0AF711EAA85A5D1AC4F9AE02/ZUCRhgKOxUzUW1g0_77K9LePGcI.mft File: ZUCRhgKOxUzUW1g0_77K9LePGcI.mft (raw, json) Hash identifier: l/M7ZxgMegyuHxlUWIOFXSdkbdtqPk7ghm00GGWplt8= Subject key identifier: 8A:20:2F:9A:40:26:83:21:98:D5:A6:D9:AF:1A:8D:E0:13:54:40:8F Authority key identifier: 65:40:91:86:02:8E:C5:4C:D4:5B:58:34:FF:BE:CA:F4:B7:8F:19:C2 Certificate issuer: /CN=A917BBF1/serialNumber=65409186028EC54CD45B5834FFBECAF4B78F19C2 Certificate serial: 0C80 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ZUCRhgKOxUzUW1g0_77K9LePGcI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917BBF1/245DC5CA0AF711EAA85A5D1AC4F9AE02/ZUCRhgKOxUzUW1g0_77K9LePGcI.mft Manifest number: 0C63 Signing time: Fri 22 Aug 2025 18:39:24 +0000 Manifest this update: Fri 22 Aug 2025 18:39:23 +0000 Manifest next update: Fri 29 Aug 2025 18:39:23 +0000 Files and hashes: 1: ZUCRhgKOxUzUW1g0_77K9LePGcI.crl (hash: S7yTE37lbtK53iiD6lI7s6q7EMF/6uSw+TJ6PVod3jk=) 2: 7136F65A37A811EE94E32169C4F9AE02.roa (hash: MIgp6SPzmtBLaTAJ8Ko+cWBy6IjOqEZ3q2z4VBixHmI=) 3: 1B54858065B711EE93D6ED6DC4F9AE02.roa (hash: GsJaSUcatISwdkkhFSUQBWiCBZOPMZtERdw74sbshGA=) 4: FF4F13D4448711ECA80CFC34C4F9AE02.roa (hash: pvvlftNep3JGBrkiJAisunxpzryLA3gGytWzHa5BKMk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917BBF1/245DC5CA0AF711EAA85A5D1AC4F9AE02/ZUCRhgKOxUzUW1g0_77K9LePGcI.crl rsync://rpki.apnic.net/member_repository/A917BBF1/245DC5CA0AF711EAA85A5D1AC4F9AE02/ZUCRhgKOxUzUW1g0_77K9LePGcI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ZUCRhgKOxUzUW1g0_77K9LePGcI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Aug 2025 18:39:22 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3200 (0xc80) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917BBF1, serialNumber=65409186028EC54CD45B5834FFBECAF4B78F19C2 Validity Not Before: Aug 22 18:39:23 2025 GMT Not After : Aug 29 18:39:23 2025 GMT Subject: CN=68a8b95b-2dce Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d8:88:86:74:f3:33:6d:9a:22:8e:02:9f:e2:8c: 1b:82:b5:58:f9:e0:6c:14:93:78:04:64:73:b3:9c: 3a:e0:e6:35:74:53:0c:f0:d6:53:89:7d:38:31:64: 35:c0:89:b3:e3:fc:af:0e:b9:74:52:47:f6:52:5f: e9:98:f3:5d:fa:a8:bd:23:8e:62:08:50:f3:5f:2e: 1e:9b:bf:96:b8:b8:9f:7e:8e:a4:57:2c:63:41:09: cd:27:90:e1:16:3a:da:e6:e5:9a:2a:43:1c:0b:29: 5d:12:0c:e9:4b:16:9b:ef:5e:89:90:80:c4:a6:c6: 4d:48:ce:de:89:ea:6a:73:fc:7a:19:65:5c:5d:45: c7:17:dd:32:5a:4c:fc:a9:51:d0:25:83:e4:ab:dd: ce:bd:1f:fc:2b:73:e1:1c:60:13:b6:42:99:28:2d: 93:97:b9:98:e0:26:6e:db:a7:d7:a1:1c:ec:22:9c: a5:aa:84:32:0f:42:4f:fc:71:4c:be:43:47:c1:25: fd:4d:1e:25:19:42:73:24:c0:39:fa:64:32:13:a3: 8e:95:a9:ff:c9:1c:3c:41:8e:e3:16:5e:1b:b9:28: 3a:f0:fd:31:ff:9f:b2:86:43:fe:7a:d0:9b:52:3d: 01:53:4d:bf:78:5c:82:b0:6a:58:d9:15:76:6d:7a: 92:49 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8A:20:2F:9A:40:26:83:21:98:D5:A6:D9:AF:1A:8D:E0:13:54:40:8F X509v3 Authority Key Identifier: keyid:65:40:91:86:02:8E:C5:4C:D4:5B:58:34:FF:BE:CA:F4:B7:8F:19:C2 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917BBF1/245DC5CA0AF711EAA85A5D1AC4F9AE02/ZUCRhgKOxUzUW1g0_77K9LePGcI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ZUCRhgKOxUzUW1g0_77K9LePGcI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917BBF1/245DC5CA0AF711EAA85A5D1AC4F9AE02/ZUCRhgKOxUzUW1g0_77K9LePGcI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 72:b0:58:e8:df:88:e2:1a:ed:89:b8:cf:72:dd:22:62:6a:f4: e1:12:b2:1d:a9:af:99:b9:2e:09:7a:56:c6:4d:b7:eb:f0:ce: fa:c6:ef:a7:8f:9e:67:f3:42:e7:b4:6b:b2:ab:18:45:bf:a9: 71:46:24:6f:ce:0b:3a:4d:c7:90:c4:d5:7f:2b:05:08:e7:9d: 2a:79:52:57:fa:4f:c7:74:04:53:47:68:e7:5a:51:f3:ae:45: 5b:3f:82:ec:e1:7c:96:f8:f6:57:4e:6b:ac:46:c1:e4:aa:0b: 4e:e1:4f:5a:2c:d8:46:ab:a1:9b:23:ce:7b:93:be:14:b8:ae: b0:fb:c6:28:a4:63:8c:f8:e5:56:df:31:6b:8f:40:0a:cc:8a: 9d:82:d2:b3:2a:53:1f:6f:dc:58:74:ac:df:ac:b7:71:f2:0c: df:2b:b1:93:3f:df:a3:7c:15:35:9f:82:ad:f5:f5:c2:7c:64: e5:15:88:92:e7:2e:10:6a:6f:1e:ec:59:a0:c1:d1:3f:9f:ea: f5:9e:b3:e0:ab:8b:25:8d:7c:80:1e:87:3b:d1:ff:58:f2:da: d6:e0:ad:46:88:f5:cc:f5:89:6c:a3:84:1a:2e:03:0c:77:82: 0c:39:63:bf:d0:e5:04:ea:cb:50:8c:04:04:3a:ef:bb:1b:48: 64:e4:84:e0 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDIAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0JCRjExMTAvBgNVBAUTKDY1NDA5MTg2MDI4RUM1NENENDVCNTgzNEZGQkVDQUY0 Qjc4RjE5QzIwHhcNMjUwODIyMTgzOTIzWhcNMjUwODI5MTgzOTIzWjAYMRYwFAYD VQQDEw02OGE4Yjk1Yi0yZGNlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA2IiGdPMzbZoijgKf4owbgrVY+eBsFJN4BGRzs5w64OY1dFMM8NZTiX04MWQ1 wImz4/yvDrl0Ukf2Ul/pmPNd+qi9I45iCFDzXy4em7+WuLiffo6kVyxjQQnNJ5Dh Fjra5uWaKkMcCyldEgzpSxab716JkIDEpsZNSM7eiepqc/x6GWVcXUXHF90yWkz8 qVHQJYPkq93OvR/8K3PhHGATtkKZKC2Tl7mY4CZu26fXoRzsIpylqoQyD0JP/HFM vkNHwSX9TR4lGUJzJMA5+mQyE6OOlan/yRw8QY7jFl4buSg68P0x/5+yhkP+etCb Uj0BU02/eFyCsGpY2RV2bXqSSQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFIogL5pA JoMhmNWm2a8ajeATVECPMB8GA1UdIwQYMBaAFGVAkYYCjsVM1FtYNP++yvS3jxnC MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3QkJGMS8yNDVEQzVDQTBB RjcxMUVBQTg1QTVEMUFDNEY5QUUwMi9aVUNSaGdLT3hVelVXMWcwXzc3SzlMZVBH Y0kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1pVQ1JoZ0tPeFV6VVcxZzBfNzdLOUxlUEdjSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 QkJGMS8yNDVEQzVDQTBBRjcxMUVBQTg1QTVEMUFDNEY5QUUwMi9aVUNSaGdLT3hV elVXMWcwXzc3SzlMZVBHY0kubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBysFjo34jiGu2JuM9y3SJiavThErIdqa+ZuS4JelbGTbfr8M76xu+n j55n80LntGuyqxhFv6lxRiRvzgs6TceQxNV/KwUI550qeVJX+k/HdARTR2jnWlHz rkVbP4Ls4XyW+PZXTmusRsHkqgtO4U9aLNhGq6GbI857k74UuK6w+8YopGOM+OVW 3zFrj0AKzIqdgtKzKlMfb9xYdKzfrLdx8gzfK7GTP9+jfBU1n4Kt9fXCfGTlFYiS 5y4Qam8e7FmgwdE/n+r1nrPgq4sljXyAHoc70f9Y8trW4K1GiPXM9Ylso4QaLgMM d4IMOWO/0OUE6stQjAQEOu+7G0hk5ITg -----END CERTIFICATE-----Generated at Sat Aug 23 19:12:44 2025 by rpki-client