$ rpki-client -vvf rpki.apnic.net/member_repository/A917E678/BEB333FA225111EAB2CB8469C4F9AE02/_zNBly3YofaHHt6Gmjod2SUorrY.mft File: _zNBly3YofaHHt6Gmjod2SUorrY.mft (raw, json) Hash identifier: zMoUVgBSFAZQSeUQgdVLnxOvRDWOOyvFq1AlAsX7uyU= Subject key identifier: 68:87:60:64:93:C6:AC:20:46:65:64:DF:6A:84:50:E3:09:D9:C1:CE Authority key identifier: FF:33:41:97:2D:D8:A1:F6:87:1E:DE:86:9A:3A:1D:D9:25:28:AE:B6 Certificate issuer: /CN=A917E678/serialNumber=FF3341972DD8A1F6871EDE869A3A1DD92528AEB6 Certificate serial: 0D54 Authority info access: rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/_zNBly3YofaHHt6Gmjod2SUorrY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917E678/BEB333FA225111EAB2CB8469C4F9AE02/_zNBly3YofaHHt6Gmjod2SUorrY.mft Manifest number: 0CD0 Signing time: Fri 22 Aug 2025 17:00:51 +0000 Manifest this update: Fri 22 Aug 2025 17:00:50 +0000 Manifest next update: Fri 29 Aug 2025 17:00:50 +0000 Files and hashes: 1: _zNBly3YofaHHt6Gmjod2SUorrY.crl (hash: yi0+5q0/xFrpJ3XoSwJD4dySWt0rKBAbr+yuynKOWDU=) 2: 69FDEAC6645511EFB98C143DC4F9AE02.roa (hash: r61Y1na2DnCg+opz0fva/EXKcH2bwZStVIeQ3Bbr1wo=) 3: F4A77A06CED911ED9BC69385C4F9AE02.roa (hash: OUewL85nRVoETpSnxouJtXZ3L1bDXbwRe3ztxVw9Gdo=) 4: 3D98B69C977111EFBB74DC15C4F9AE02.roa (hash: UHmaExLDd+yPoHzoJXT/cA34xwxpEDWfhtDOWjaqoks=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917E678/BEB333FA225111EAB2CB8469C4F9AE02/_zNBly3YofaHHt6Gmjod2SUorrY.crl rsync://rpki.apnic.net/member_repository/A917E678/BEB333FA225111EAB2CB8469C4F9AE02/_zNBly3YofaHHt6Gmjod2SUorrY.mft rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/_zNBly3YofaHHt6Gmjod2SUorrY.cer rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.crl rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DPzneFf88B852ZpitKpi5hWedvg.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Aug 2025 17:00:50 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3412 (0xd54) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917E678, serialNumber=FF3341972DD8A1F6871EDE869A3A1DD92528AEB6 Validity Not Before: Aug 22 17:00:50 2025 GMT Not After : Aug 29 17:00:50 2025 GMT Subject: CN=68a8a243-f7c5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e3:a5:5e:a9:33:ea:50:51:35:1d:e4:3b:34:c5: 97:bb:5f:ad:17:64:b4:fc:5b:ea:a7:13:74:c1:55: 6a:da:0e:87:68:31:47:57:ff:2b:e9:ae:ff:a2:2a: 44:10:a2:70:fe:00:72:b1:41:58:90:95:2d:2f:be: 43:18:a5:1f:4e:26:a0:23:91:1e:72:b0:d6:43:65: a6:6c:1a:6f:db:38:7d:9c:6a:11:77:b3:e7:72:fe: ca:6a:c3:fd:2c:8b:7e:2b:9f:7f:53:80:02:fa:0d: 10:96:62:87:41:1c:cf:07:ec:5f:d6:d4:56:0a:ce: 95:35:ba:e9:56:16:53:36:d4:00:f9:c3:71:f4:c6: 1e:49:ff:f3:71:ae:74:e8:ac:51:f0:13:e4:fa:e0: fc:49:33:4f:15:de:fb:f9:b2:10:56:f5:6a:66:6f: 54:a3:c5:11:fd:c6:2b:24:73:ac:cd:bb:91:51:6e: f6:27:aa:6a:ea:39:0b:fc:67:39:1f:fb:c3:09:4a: ab:00:f8:58:81:b4:70:55:1b:ad:2d:82:09:79:ad: 07:93:47:2c:67:1c:5d:d7:a4:6e:e3:c3:66:e3:3c: ea:ae:02:64:f6:31:9a:89:ad:a5:02:da:4c:3d:72: 76:bf:75:e0:e1:bf:c0:38:3e:92:aa:a6:a1:fd:53: 99:05 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 68:87:60:64:93:C6:AC:20:46:65:64:DF:6A:84:50:E3:09:D9:C1:CE X509v3 Authority Key Identifier: keyid:FF:33:41:97:2D:D8:A1:F6:87:1E:DE:86:9A:3A:1D:D9:25:28:AE:B6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917E678/BEB333FA225111EAB2CB8469C4F9AE02/_zNBly3YofaHHt6Gmjod2SUorrY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/_zNBly3YofaHHt6Gmjod2SUorrY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917E678/BEB333FA225111EAB2CB8469C4F9AE02/_zNBly3YofaHHt6Gmjod2SUorrY.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 2c:9c:93:e6:7f:40:a1:1b:77:53:0c:a5:60:9b:b6:9f:4b:3a: b1:74:c7:13:13:05:64:4f:f3:7c:33:55:cf:6a:08:4b:5a:dd: dd:3c:6e:fd:1b:a5:0e:b9:a3:9d:13:9c:cb:23:14:72:df:32: d6:0f:af:0f:9f:e8:f1:58:54:a6:a2:7d:f2:02:84:5d:01:56: 79:f3:cf:7f:c4:fa:72:b4:ed:3a:79:cc:f8:77:3b:01:18:ca: 29:7f:3d:e0:b0:29:5d:f4:d4:24:e8:d0:9e:55:15:6b:e4:32: a2:3e:dc:b5:7e:92:d2:82:32:5f:9b:7d:54:68:13:d9:20:0e: ee:ad:15:96:af:02:51:f5:a3:b3:a6:1f:11:08:1c:33:ef:4e: 0d:bf:f2:e2:bd:b0:22:46:4b:0b:22:d5:96:a6:82:34:76:85: 1b:44:f2:98:42:a9:fd:be:e0:d4:e8:aa:37:45:2b:65:8b:bd: 3e:d4:52:95:dd:52:82:6f:5a:a6:d9:60:ad:1a:e1:1a:92:ed: fe:52:78:da:45:62:e6:bb:3f:0b:8a:4c:dc:d3:e2:fd:78:8d: 3f:f3:74:54:1b:27:a3:f4:f4:a7:da:84:11:a8:81:a0:f5:d0: 0e:5c:bf:f5:45:7a:00:8f:7b:87:e0:89:16:4b:69:cb:00:5a: 71:10:8e:81 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDVQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0U2NzgxMTAvBgNVBAUTKEZGMzM0MTk3MkREOEExRjY4NzFFREU4NjlBM0ExREQ5 MjUyOEFFQjYwHhcNMjUwODIyMTcwMDUwWhcNMjUwODI5MTcwMDUwWjAYMRYwFAYD VQQDEw02OGE4YTI0My1mN2M1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA46VeqTPqUFE1HeQ7NMWXu1+tF2S0/FvqpxN0wVVq2g6HaDFHV/8r6a7/oipE EKJw/gBysUFYkJUtL75DGKUfTiagI5EecrDWQ2WmbBpv2zh9nGoRd7Pncv7KasP9 LIt+K59/U4AC+g0QlmKHQRzPB+xf1tRWCs6VNbrpVhZTNtQA+cNx9MYeSf/zca50 6KxR8BPk+uD8STNPFd77+bIQVvVqZm9Uo8UR/cYrJHOszbuRUW72J6pq6jkL/Gc5 H/vDCUqrAPhYgbRwVRutLYIJea0Hk0csZxxd16Ru48Nm4zzqrgJk9jGaia2lAtpM PXJ2v3Xg4b/AOD6Sqqah/VOZBQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFGiHYGST xqwgRmVk32qEUOMJ2cHOMB8GA1UdIwQYMBaAFP8zQZct2KH2hx7ehpo6HdklKK62 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3RTY3OC9CRUIzMzNGQTIy NTExMUVBQjJDQjg0NjlDNEY5QUUwMi9fek5CbHkzWW9mYUhIdDZHbWpvZDJTVW9y clkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzMjJBNUY0MUQ2NjExRTJBM0YyN0Y3Qzcy RkQxRkYyL196TkJseTNZb2ZhSEh0Nkdtam9kMlNVb3JyWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 RTY3OC9CRUIzMzNGQTIyNTExMUVBQjJDQjg0NjlDNEY5QUUwMi9fek5CbHkzWW9m YUhIdDZHbWpvZDJTVW9yclkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAsnJPmf0ChG3dTDKVgm7afSzqxdMcTEwVkT/N8M1XPaghLWt3dPG79 G6UOuaOdE5zLIxRy3zLWD68Pn+jxWFSmon3yAoRdAVZ5889/xPpytO06ecz4dzsB GMopfz3gsCld9NQk6NCeVRVr5DKiPty1fpLSgjJfm31UaBPZIA7urRWWrwJR9aOz ph8RCBwz704Nv/LivbAiRksLItWWpoI0doUbRPKYQqn9vuDU6Ko3RStli70+1FKV 3VKCb1qm2WCtGuEaku3+UnjaRWLmuz8Likzc0+L9eI0/83RUGyej9PSn2oQRqIGg 9dAOXL/1RXoAj3uH4IkWS2nLAFpxEI6B -----END CERTIFICATE-----Generated at Sat Aug 23 20:30:52 2025 by rpki-client