$ rpki-client -vvf rpki.apnic.net/member_repository/A917DCDA/192E71F61D9011E2B295ABEF08B02CD2/ZwbZhOcxaBICGI0pntNfAFsBdYA.mft File: ZwbZhOcxaBICGI0pntNfAFsBdYA.mft (raw, json) Hash identifier: clTEwKZZQqa8oKB/mS9JvOGzHp2hb1A+AkX9OAw+5FI= Subject key identifier: 00:62:06:F5:37:0A:18:46:1B:1D:62:F3:6E:A1:06:53:6B:D4:D5:E4 Authority key identifier: 67:06:D9:84:E7:31:68:12:02:18:8D:29:9E:D3:5F:00:5B:01:75:80 Certificate issuer: /CN=A917DCDA/serialNumber=6706D984E731681202188D299ED35F005B017580 Certificate serial: 34AF Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ZwbZhOcxaBICGI0pntNfAFsBdYA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917DCDA/192E71F61D9011E2B295ABEF08B02CD2/ZwbZhOcxaBICGI0pntNfAFsBdYA.mft Manifest number: 34AF Signing time: Fri 22 Aug 2025 14:42:11 +0000 Manifest this update: Fri 22 Aug 2025 14:42:11 +0000 Manifest next update: Fri 29 Aug 2025 14:42:10 +0000 Files and hashes: 1: ZwbZhOcxaBICGI0pntNfAFsBdYA.crl (hash: ho7/+Krd8RtrivJWcYVsjecljpccRdHv/ysOm2oeRTc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917DCDA/192E71F61D9011E2B295ABEF08B02CD2/ZwbZhOcxaBICGI0pntNfAFsBdYA.crl rsync://rpki.apnic.net/member_repository/A917DCDA/192E71F61D9011E2B295ABEF08B02CD2/ZwbZhOcxaBICGI0pntNfAFsBdYA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ZwbZhOcxaBICGI0pntNfAFsBdYA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Aug 2025 14:42:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13487 (0x34af) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917DCDA, serialNumber=6706D984E731681202188D299ED35F005B017580 Validity Not Before: Aug 22 14:42:11 2025 GMT Not After : Aug 29 14:42:10 2025 GMT Subject: CN=68a881c3-f874 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:97:13:7c:91:39:60:58:c1:73:83:d2:7b:6a:b4: 45:85:ed:db:d4:ef:8a:76:8d:75:2c:8e:63:da:8d: 4c:00:c3:6a:e4:56:a4:8a:7b:35:64:6a:49:34:6e: 90:c2:dc:1f:1c:93:15:22:47:0e:70:ce:d5:6b:fc: f6:c7:af:45:fc:f3:cc:52:66:39:5a:80:72:b7:c5: 3f:4c:21:84:7b:23:bc:e4:d5:ce:13:b9:db:19:ff: 9d:66:f6:72:11:99:a3:46:f6:34:ff:71:d1:49:4c: 38:7c:3a:0a:fe:1f:89:02:67:93:fb:27:d7:69:7d: 31:2b:41:08:b3:5d:34:1d:d7:b1:0f:e0:3c:df:2b: 8d:9b:9b:19:94:bf:a0:55:ba:a7:82:3a:7e:06:2a: 9d:f6:1a:8e:72:0b:4f:e6:d8:a9:65:05:32:04:7c: 07:d2:cb:6f:35:d4:78:af:89:f1:ac:f6:d8:73:09: e7:36:a8:65:1e:66:c4:be:9a:b6:19:c1:dc:b4:56: 5d:8a:b3:21:a9:e6:93:3b:73:e8:85:40:e7:c6:38: 42:47:de:12:a5:51:b1:9f:8c:ea:37:1d:b2:f5:53: b8:56:1d:46:ff:31:9b:21:84:97:84:a7:be:4f:06: 99:69:c3:01:f0:d1:cf:43:45:e7:59:6e:63:ce:99: 52:99 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 00:62:06:F5:37:0A:18:46:1B:1D:62:F3:6E:A1:06:53:6B:D4:D5:E4 X509v3 Authority Key Identifier: keyid:67:06:D9:84:E7:31:68:12:02:18:8D:29:9E:D3:5F:00:5B:01:75:80 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917DCDA/192E71F61D9011E2B295ABEF08B02CD2/ZwbZhOcxaBICGI0pntNfAFsBdYA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ZwbZhOcxaBICGI0pntNfAFsBdYA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917DCDA/192E71F61D9011E2B295ABEF08B02CD2/ZwbZhOcxaBICGI0pntNfAFsBdYA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 2e:54:d1:eb:fe:f9:60:18:b1:86:ac:c9:62:31:7d:12:9f:b5: 42:02:a3:a6:fe:aa:5f:f8:2d:e3:8a:79:11:7d:24:82:0f:1d: 5a:fe:57:12:f3:ec:a3:a8:9d:d0:b7:79:24:cc:a5:86:3c:08: 1d:4f:e6:10:9f:ab:a0:a8:c2:0a:0a:93:f1:9b:8a:bb:d9:e1: 05:75:7e:17:81:4a:53:fb:33:99:b5:82:0d:3a:c1:ac:ad:4d: 52:dc:77:7f:16:50:b7:77:4f:01:f7:52:6b:88:2b:84:ab:ea: 2c:1c:01:91:1f:94:a9:bf:21:22:18:25:d8:48:8e:1c:87:d5: 9b:8a:c3:55:a3:9c:a3:21:c6:a0:6d:d8:13:0a:dc:e8:5d:b5: dc:99:cf:ed:d3:b7:81:fc:e9:4c:27:52:04:58:97:c9:47:bd: 23:8f:2a:9d:58:c1:9b:2b:12:20:29:01:41:26:f3:0b:12:05: 74:25:04:5b:07:0b:3d:f3:f0:f9:f7:cd:fc:79:5c:c8:fe:c4: 79:f0:ae:a7:24:6c:45:da:be:7f:9f:ae:e9:c9:5b:77:5b:38: 6b:9a:84:94:73:ee:ff:06:bf:62:ef:79:31:8a:e0:3a:74:b3: 15:3e:aa:72:47:be:0c:0f:38:0e:8a:34:7d:76:1d:06:e5:a8: fe:4b:45:ec -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICNK8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0RDREExMTAvBgNVBAUTKDY3MDZEOTg0RTczMTY4MTIwMjE4OEQyOTlFRDM1RjAw NUIwMTc1ODAwHhcNMjUwODIyMTQ0MjExWhcNMjUwODI5MTQ0MjEwWjAYMRYwFAYD VQQDEw02OGE4ODFjMy1mODc0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAlxN8kTlgWMFzg9J7arRFhe3b1O+Kdo11LI5j2o1MAMNq5Fakins1ZGpJNG6Q wtwfHJMVIkcOcM7Va/z2x69F/PPMUmY5WoByt8U/TCGEeyO85NXOE7nbGf+dZvZy EZmjRvY0/3HRSUw4fDoK/h+JAmeT+yfXaX0xK0EIs100HdexD+A83yuNm5sZlL+g Vbqngjp+Biqd9hqOcgtP5tipZQUyBHwH0stvNdR4r4nxrPbYcwnnNqhlHmbEvpq2 GcHctFZdirMhqeaTO3PohUDnxjhCR94SpVGxn4zqNx2y9VO4Vh1G/zGbIYSXhKe+ TwaZacMB8NHPQ0XnWW5jzplSmQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFABiBvU3 ChhGGx1i826hBlNr1NXkMB8GA1UdIwQYMBaAFGcG2YTnMWgSAhiNKZ7TXwBbAXWA MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3RENEQS8xOTJFNzFGNjFE OTAxMUUyQjI5NUFCRUYwOEIwMkNEMi9ad2JaaE9jeGFCSUNHSTBwbnROZkFGc0Jk WUEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1p3YlpoT2N4YUJJQ0dJMHBudE5mQUZzQmRZQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 RENEQS8xOTJFNzFGNjFEOTAxMUUyQjI5NUFCRUYwOEIwMkNEMi9ad2JaaE9jeGFC SUNHSTBwbnROZkFGc0JkWUEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAuVNHr/vlgGLGGrMliMX0Sn7VCAqOm/qpf+C3jinkRfSSCDx1a/lcS 8+yjqJ3Qt3kkzKWGPAgdT+YQn6ugqMIKCpPxm4q72eEFdX4XgUpT+zOZtYINOsGs rU1S3Hd/FlC3d08B91JriCuEq+osHAGRH5SpvyEiGCXYSI4ch9WbisNVo5yjIcag bdgTCtzoXbXcmc/t07eB/OlMJ1IEWJfJR70jjyqdWMGbKxIgKQFBJvMLEgV0JQRb Bws98/D59838eVzI/sR58K6nJGxF2r5/n67pyVt3WzhrmoSUc+7/Br9i73kxiuA6 dLMVPqpyR74MDzgOijR9dh0G5aj+S0Xs -----END CERTIFICATE-----Generated at Sat Aug 23 21:02:12 2025 by rpki-client