$ rpki-client -vvf rpki.apnic.net/member_repository/A917DCDA/192E71F61D9011E2B295ABEF08B02CD2/ZwbZhOcxaBICGI0pntNfAFsBdYA.mft File: ZwbZhOcxaBICGI0pntNfAFsBdYA.mft (raw, json) Hash identifier: 4ho2NkUTvgCwqJpl/HWojrKIOMnc/3wUjBL8QEVsQAo= Subject key identifier: 31:BD:80:F0:52:B2:61:D5:EB:0D:AB:D7:A7:48:04:F3:52:76:ED:88 Authority key identifier: 67:06:D9:84:E7:31:68:12:02:18:8D:29:9E:D3:5F:00:5B:01:75:80 Certificate issuer: /CN=A917DCDA/serialNumber=6706D984E731681202188D299ED35F005B017580 Certificate serial: 34CC Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ZwbZhOcxaBICGI0pntNfAFsBdYA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917DCDA/192E71F61D9011E2B295ABEF08B02CD2/ZwbZhOcxaBICGI0pntNfAFsBdYA.mft Manifest number: 34CC Signing time: Sat 18 Oct 2025 14:45:26 +0000 Manifest this update: Sat 18 Oct 2025 14:45:25 +0000 Manifest next update: Sat 25 Oct 2025 14:45:25 +0000 Files and hashes: 1: ZwbZhOcxaBICGI0pntNfAFsBdYA.crl (hash: oD4FH00KqGdgzheUvIRxYJqhnDgjz6abh9C/DcaGImE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917DCDA/192E71F61D9011E2B295ABEF08B02CD2/ZwbZhOcxaBICGI0pntNfAFsBdYA.crl rsync://rpki.apnic.net/member_repository/A917DCDA/192E71F61D9011E2B295ABEF08B02CD2/ZwbZhOcxaBICGI0pntNfAFsBdYA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ZwbZhOcxaBICGI0pntNfAFsBdYA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 Oct 2025 14:45:25 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13516 (0x34cc) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917DCDA, serialNumber=6706D984E731681202188D299ED35F005B017580 Validity Not Before: Oct 18 14:45:25 2025 GMT Not After : Oct 25 14:45:25 2025 GMT Subject: CN=68f3a806-01b1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c8:e4:f6:d1:da:3e:7d:c5:2d:24:cd:97:3a:0b: 81:61:41:03:fa:26:8b:76:23:bf:25:49:40:49:9b: 58:ad:02:b2:1d:d1:4c:59:63:4b:45:4a:ae:e4:f1: ed:c9:73:29:36:2a:7e:ac:a2:48:f1:b3:f7:92:a0: f4:1a:af:ae:25:d1:f6:39:20:5d:e0:f7:63:17:e3: ed:a0:6a:dd:a2:7e:fd:09:9b:0f:d5:49:42:24:ae: 3a:db:c7:fb:b5:b6:8a:29:c6:b7:d5:f5:0f:f2:19: 6d:e5:51:ed:20:be:90:99:0b:a7:48:d0:ce:42:72: dc:ae:59:1c:95:be:e9:a9:3a:c6:21:06:66:e2:f4: 2b:77:8d:16:cb:7a:53:b7:8d:8d:96:01:e6:7c:bb: 25:77:02:d8:de:66:66:59:fe:44:92:3f:15:3d:ea: 40:b9:e8:01:8e:f8:33:c4:7a:9b:8a:ad:92:aa:b9: ed:3b:35:94:ce:aa:ce:c9:97:3b:d9:e3:83:b8:ef: 3c:7e:92:69:89:a7:a8:08:b8:ea:4a:4d:7f:78:a1: 75:4f:ed:a7:04:54:30:f4:4d:87:9e:c4:f4:8e:31: 23:02:58:af:c8:86:f4:d8:85:2c:6d:16:66:f2:86: 72:07:07:95:a0:22:e4:10:ac:88:48:43:e4:77:cb: 4c:19 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 31:BD:80:F0:52:B2:61:D5:EB:0D:AB:D7:A7:48:04:F3:52:76:ED:88 X509v3 Authority Key Identifier: keyid:67:06:D9:84:E7:31:68:12:02:18:8D:29:9E:D3:5F:00:5B:01:75:80 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917DCDA/192E71F61D9011E2B295ABEF08B02CD2/ZwbZhOcxaBICGI0pntNfAFsBdYA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ZwbZhOcxaBICGI0pntNfAFsBdYA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917DCDA/192E71F61D9011E2B295ABEF08B02CD2/ZwbZhOcxaBICGI0pntNfAFsBdYA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 18:f4:63:4c:2f:4c:28:d1:48:2a:e9:d1:ed:31:ae:ee:b4:8b: 83:74:e0:d9:2e:27:88:de:58:6b:9a:1a:88:88:c4:10:10:6a: 1c:17:89:5a:bc:85:e8:22:a1:be:81:9a:0d:2c:ed:13:12:73: 17:dd:00:fe:9a:43:ce:04:51:bf:79:1f:19:9d:9e:bb:5a:c5: ff:8b:04:e1:9e:c9:04:d9:85:8c:7e:71:a6:58:14:88:71:5e: f8:11:91:a9:8a:f6:39:e5:3d:14:07:28:3f:1a:40:d3:aa:98: 08:83:64:96:35:d4:07:e3:52:ea:27:78:14:12:7c:ae:b5:c2: 95:08:89:87:68:fc:6a:77:30:b1:3f:39:99:0d:92:4b:c7:36: 68:56:41:37:ff:7e:66:57:1c:26:84:c9:ce:67:3f:9f:ab:8e: 65:18:13:ab:e3:34:c2:23:9b:68:f4:28:ec:62:14:8a:c8:0b: 05:c0:01:8d:d6:44:47:6a:78:85:fc:a7:cd:b7:f0:e8:b3:39: 67:32:98:a8:8e:f6:11:b9:dc:35:50:ca:27:64:f6:9a:b5:8b: 1a:60:c4:5e:df:ce:c6:3b:e4:74:2c:7f:51:b1:de:7d:e1:6c: 46:a7:b1:55:56:b3:b3:a3:16:a4:98:47:09:f0:65:12:3a:d4: 73:a0:d7:59 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICNMwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0RDREExMTAvBgNVBAUTKDY3MDZEOTg0RTczMTY4MTIwMjE4OEQyOTlFRDM1RjAw NUIwMTc1ODAwHhcNMjUxMDE4MTQ0NTI1WhcNMjUxMDI1MTQ0NTI1WjAYMRYwFAYD VQQDEw02OGYzYTgwNi0wMWIxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyOT20do+fcUtJM2XOguBYUED+iaLdiO/JUlASZtYrQKyHdFMWWNLRUqu5PHt yXMpNip+rKJI8bP3kqD0Gq+uJdH2OSBd4PdjF+PtoGrdon79CZsP1UlCJK4628f7 tbaKKca31fUP8hlt5VHtIL6QmQunSNDOQnLcrlkclb7pqTrGIQZm4vQrd40Wy3pT t42NlgHmfLsldwLY3mZmWf5Ekj8VPepAuegBjvgzxHqbiq2SqrntOzWUzqrOyZc7 2eODuO88fpJpiaeoCLjqSk1/eKF1T+2nBFQw9E2HnsT0jjEjAlivyIb02IUsbRZm 8oZyBweVoCLkEKyISEPkd8tMGQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFDG9gPBS smHV6w2r16dIBPNSdu2IMB8GA1UdIwQYMBaAFGcG2YTnMWgSAhiNKZ7TXwBbAXWA MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3RENEQS8xOTJFNzFGNjFE OTAxMUUyQjI5NUFCRUYwOEIwMkNEMi9ad2JaaE9jeGFCSUNHSTBwbnROZkFGc0Jk WUEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1p3YlpoT2N4YUJJQ0dJMHBudE5mQUZzQmRZQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 RENEQS8xOTJFNzFGNjFEOTAxMUUyQjI5NUFCRUYwOEIwMkNEMi9ad2JaaE9jeGFC SUNHSTBwbnROZkFGc0JkWUEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAY9GNML0wo0Ugq6dHtMa7utIuDdODZLieI3lhrmhqIiMQQEGocF4la vIXoIqG+gZoNLO0TEnMX3QD+mkPOBFG/eR8ZnZ67WsX/iwThnskE2YWMfnGmWBSI cV74EZGpivY55T0UByg/GkDTqpgIg2SWNdQH41LqJ3gUEnyutcKVCImHaPxqdzCx PzmZDZJLxzZoVkE3/35mVxwmhMnOZz+fq45lGBOr4zTCI5to9CjsYhSKyAsFwAGN 1kRHaniF/KfNt/DoszlnMpiojvYRudw1UMonZPaatYsaYMRe387GO+R0LH9Rsd59 4WxGp7FVVrOzoxakmEcJ8GUSOtRzoNdZ -----END CERTIFICATE-----Generated at Mon Oct 20 10:02:04 2025 by rpki-client