$ rpki-client -vvf rpki.apnic.net/member_repository/A917F879/AAFCEF0A834911EA89DE697BC4F9AE02/ZEfjYbGkSWugEo32lWV0SOleK5U.mft File: ZEfjYbGkSWugEo32lWV0SOleK5U.mft (raw, json) Hash identifier: xKJefummOOjxDX1emf7hlCJb94U0isUTgQ+Mgb9o620= Subject key identifier: 8F:F7:53:CD:57:72:5A:2C:E4:D5:ED:CE:69:B6:7D:25:61:4D:EE:EE Authority key identifier: 64:47:E3:61:B1:A4:49:6B:A0:12:8D:F6:95:65:74:48:E9:5E:2B:95 Certificate issuer: /CN=A917F879/serialNumber=6447E361B1A4496BA0128DF695657448E95E2B95 Certificate serial: 09D5 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ZEfjYbGkSWugEo32lWV0SOleK5U.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917F879/AAFCEF0A834911EA89DE697BC4F9AE02/ZEfjYbGkSWugEo32lWV0SOleK5U.mft Manifest number: 09C9 Signing time: Mon 30 Jun 2025 20:05:50 +0000 Manifest this update: Mon 30 Jun 2025 20:05:49 +0000 Manifest next update: Mon 07 Jul 2025 20:05:49 +0000 Files and hashes: 1: ZEfjYbGkSWugEo32lWV0SOleK5U.crl (hash: a9JrkdWeWPqDjxpIiUPXhkJ3c/9Mij2xR/7PACL07wc=) 2: 8A6AA178556111EDB7E45424C4F9AE02.roa (hash: cQpAURqDM/34gPKhgVHe+OBCLHcXpgoxll5j5sk3a4o=) 3: 894FFF40556111EDB7E45424C4F9AE02.roa (hash: 3doq1VIPrTMuHeE3hP1dvsdzHHC8FVCO0WmVRpeSjbk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917F879/AAFCEF0A834911EA89DE697BC4F9AE02/ZEfjYbGkSWugEo32lWV0SOleK5U.crl rsync://rpki.apnic.net/member_repository/A917F879/AAFCEF0A834911EA89DE697BC4F9AE02/ZEfjYbGkSWugEo32lWV0SOleK5U.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ZEfjYbGkSWugEo32lWV0SOleK5U.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 07 Jul 2025 20:05:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2517 (0x9d5) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917F879, serialNumber=6447E361B1A4496BA0128DF695657448E95E2B95 Validity Not Before: Jun 30 20:05:49 2025 GMT Not After : Jul 7 20:05:49 2025 GMT Subject: CN=6862ee1d-046d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b1:00:20:6d:73:a1:59:63:75:b7:2e:db:fb:7c: cc:cd:7a:39:6c:45:39:c7:ae:0a:71:d6:46:9a:5e: a3:8a:ca:6a:d3:0e:c9:59:04:ef:d3:0d:64:eb:eb: 55:4f:86:48:37:69:c3:38:11:fa:00:11:2d:d1:4e: 60:da:05:c0:6a:95:42:c8:f0:3f:46:42:77:12:f7: d6:10:ea:dd:37:9a:8e:b8:d6:0f:04:b1:b6:21:3f: bf:9a:ba:e5:4c:e3:c7:d6:f9:7e:85:b6:7d:f4:db: 93:b3:21:5a:ac:d9:c0:e8:73:81:b4:83:b6:fc:db: 4a:19:d5:82:01:1f:84:f3:ad:9f:e1:47:8c:65:46: 83:36:d4:bb:60:d8:32:47:49:86:15:08:99:19:26: 12:8c:9b:50:fb:65:7a:7a:6c:af:3f:dd:2d:c6:ed: 45:33:3b:47:89:81:4c:35:72:c6:df:2b:d5:ec:c1: 1e:58:3d:cb:b4:45:3a:1b:a7:57:2c:51:e8:c9:3f: 6d:25:ba:92:34:78:b5:6c:4e:84:5b:9c:a5:88:ee: af:51:13:94:73:7d:d9:38:22:fb:ae:78:2d:d0:df: 7b:e4:2a:85:16:f7:d1:d3:f1:9a:a8:24:58:fe:5b: 54:01:41:88:98:40:22:0e:4e:fc:cc:7d:62:b6:7f: 74:e9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8F:F7:53:CD:57:72:5A:2C:E4:D5:ED:CE:69:B6:7D:25:61:4D:EE:EE X509v3 Authority Key Identifier: keyid:64:47:E3:61:B1:A4:49:6B:A0:12:8D:F6:95:65:74:48:E9:5E:2B:95 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917F879/AAFCEF0A834911EA89DE697BC4F9AE02/ZEfjYbGkSWugEo32lWV0SOleK5U.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ZEfjYbGkSWugEo32lWV0SOleK5U.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917F879/AAFCEF0A834911EA89DE697BC4F9AE02/ZEfjYbGkSWugEo32lWV0SOleK5U.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption ae:71:40:dd:7c:4f:ff:10:c9:f9:35:37:b3:12:77:02:f7:fe: 5d:c3:78:ad:a2:9b:83:11:e0:24:f8:76:1c:92:46:11:02:55: ee:1f:72:2c:7c:e1:a3:b6:29:d1:d9:27:a0:50:f8:7a:91:c8: b3:93:c7:85:e8:4e:9b:9d:db:16:e4:27:a8:20:04:46:d6:54: cd:10:6b:30:2d:2a:95:16:61:51:aa:84:ab:9b:06:6d:fa:11: fe:95:32:d1:c9:b1:b8:cc:7f:b4:4e:b7:ea:c1:ee:8b:d9:eb: 2c:a7:71:68:10:2b:75:c8:b9:94:80:3b:44:70:08:02:0f:20: e2:4e:06:31:ea:e5:47:d9:11:1f:0f:34:f2:bd:23:a9:1e:c7: 57:79:bd:ea:12:2f:fe:be:cd:09:9b:a3:26:14:31:fa:41:ef: 22:6c:ea:21:c5:73:8f:73:1c:26:3e:57:1f:93:2a:91:11:aa: 39:68:da:b3:f9:98:98:f0:a0:84:21:90:ae:a2:bc:97:28:cf: c6:54:1b:2a:04:17:03:47:f0:48:96:3d:07:b3:0e:e3:ba:d9: 10:ae:a1:48:fb:8d:34:41:f5:3f:43:61:64:1a:32:16:ab:38: 8e:dd:68:b5:8f:e2:28:ea:66:68:4b:f2:00:bf:b2:9f:79:0a: 4e:f1:ec:8b -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCdUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0Y4NzkxMTAvBgNVBAUTKDY0NDdFMzYxQjFBNDQ5NkJBMDEyOERGNjk1NjU3NDQ4 RTk1RTJCOTUwHhcNMjUwNjMwMjAwNTQ5WhcNMjUwNzA3MjAwNTQ5WjAYMRYwFAYD VQQDEw02ODYyZWUxZC0wNDZkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsQAgbXOhWWN1ty7b+3zMzXo5bEU5x64KcdZGml6jispq0w7JWQTv0w1k6+tV T4ZIN2nDOBH6ABEt0U5g2gXAapVCyPA/RkJ3EvfWEOrdN5qOuNYPBLG2IT+/mrrl TOPH1vl+hbZ99NuTsyFarNnA6HOBtIO2/NtKGdWCAR+E862f4UeMZUaDNtS7YNgy R0mGFQiZGSYSjJtQ+2V6emyvP90txu1FMztHiYFMNXLG3yvV7MEeWD3LtEU6G6dX LFHoyT9tJbqSNHi1bE6EW5yliO6vUROUc33ZOCL7rngt0N975CqFFvfR0/GaqCRY /ltUAUGImEAiDk78zH1itn906QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFI/3U81X clos5NXtzmm2fSVhTe7uMB8GA1UdIwQYMBaAFGRH42GxpElroBKN9pVldEjpXiuV MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3Rjg3OS9BQUZDRUYwQTgz NDkxMUVBODlERTY5N0JDNEY5QUUwMi9aRWZqWWJHa1NXdWdFbzMybFdWMFNPbGVL NVUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1pFZmpZYkdrU1d1Z0VvMzJsV1YwU09sZUs1VS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 Rjg3OS9BQUZDRUYwQTgzNDkxMUVBODlERTY5N0JDNEY5QUUwMi9aRWZqWWJHa1NX dWdFbzMybFdWMFNPbGVLNVUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCucUDdfE//EMn5NTezEncC9/5dw3itopuDEeAk+HYckkYRAlXuH3Is fOGjtinR2SegUPh6kcizk8eF6E6bndsW5CeoIARG1lTNEGswLSqVFmFRqoSrmwZt +hH+lTLRybG4zH+0Trfqwe6L2essp3FoECt1yLmUgDtEcAgCDyDiTgYx6uVH2REf DzTyvSOpHsdXeb3qEi/+vs0Jm6MmFDH6Qe8ibOohxXOPcxwmPlcfkyqREao5aNqz +ZiY8KCEIZCuoryXKM/GVBsqBBcDR/BIlj0Hsw7jutkQrqFI+400QfU/Q2FkGjIW qziO3Wi1j+Io6mZoS/IAv7KfeQpO8eyL -----END CERTIFICATE-----Generated at Wed Jul 2 06:17:43 2025 by rpki-client