$ rpki-client -vvf rpki.apnic.net/member_repository/A91A9B3E/DAB1C3A68CFB11ED92E25B61C4F9AE02/zuNPo5_yhfcuIp2ihivBDkiPukE.mft File: zuNPo5_yhfcuIp2ihivBDkiPukE.mft (raw, json) Hash identifier: DY53mvju1mqhp0Sn2B60DRhmnMiI76OT67G328brgJo= Subject key identifier: D6:E9:97:C6:E2:15:51:F5:29:E2:73:F5:0D:E0:EA:DA:A5:F6:1A:3C Authority key identifier: CE:E3:4F:A3:9F:F2:85:F7:2E:22:9D:A2:86:2B:C1:0E:48:8F:BA:41 Certificate issuer: /CN=A91A9B3E/serialNumber=CEE34FA39FF285F72E229DA2862BC10E488FBA41 Certificate serial: 01F3 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/zuNPo5_yhfcuIp2ihivBDkiPukE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A9B3E/DAB1C3A68CFB11ED92E25B61C4F9AE02/zuNPo5_yhfcuIp2ihivBDkiPukE.mft Manifest number: 01ED Signing time: Sat 23 Aug 2025 02:40:29 +0000 Manifest this update: Sat 23 Aug 2025 02:40:29 +0000 Manifest next update: Sat 30 Aug 2025 02:40:29 +0000 Files and hashes: 1: zuNPo5_yhfcuIp2ihivBDkiPukE.crl (hash: kRhWu1ijx0z7zjeJuCn4kwbmgJE93H/6xAW+CPCaTeY=) 2: 819F7A60CF8B11EDAE77B351C4F9AE02.roa (hash: 4hy1f5KhPhwHVnBrwdKHHsp/qGx5VbOvDT16foHwuRM=) 3: 1AB255C68CFF11EDB7BDD865C4F9AE02.roa (hash: l3pw7Z4d1Nkw0APH0xp6K2791IsFOtCcx1C4farScNI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A9B3E/DAB1C3A68CFB11ED92E25B61C4F9AE02/zuNPo5_yhfcuIp2ihivBDkiPukE.crl rsync://rpki.apnic.net/member_repository/A91A9B3E/DAB1C3A68CFB11ED92E25B61C4F9AE02/zuNPo5_yhfcuIp2ihivBDkiPukE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/zuNPo5_yhfcuIp2ihivBDkiPukE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Aug 2025 02:40:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 499 (0x1f3) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A9B3E, serialNumber=CEE34FA39FF285F72E229DA2862BC10E488FBA41 Validity Not Before: Aug 23 02:40:29 2025 GMT Not After : Aug 30 02:40:29 2025 GMT Subject: CN=68a92a1d-cf14 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:36:2c:95:ac:89:a5:63:d2:cb:10:e9:c7:31: cb:ea:76:81:fa:c0:82:70:51:fb:0d:de:b4:f4:02: b2:21:8a:97:52:06:f7:87:6a:7f:63:14:60:97:19: a5:07:19:3c:1a:37:99:21:b7:05:9d:21:b6:ff:1c: 92:b1:cc:de:9a:8e:16:e6:6a:d8:f1:d9:30:23:1b: d8:7c:89:b8:69:f6:0a:05:04:c8:eb:25:49:01:4c: 71:ac:b3:fd:9e:ee:13:aa:73:b3:f9:32:10:cc:b1: 49:4c:4f:78:5d:87:5b:25:97:cb:6b:15:d4:68:99: d0:4f:a7:8e:80:78:fa:03:fb:dd:d4:fc:ef:91:86: df:57:f7:fb:f3:d0:34:43:83:c8:eb:6d:c6:33:d6: d7:87:c4:39:f6:e9:b1:d5:c9:3d:a9:90:66:cd:c6: fc:40:a0:0f:4f:ca:1d:45:f9:c6:58:e5:45:46:ab: d3:37:42:65:ba:1c:55:7b:38:7d:99:1d:44:45:a3: a2:a6:cf:87:05:88:c7:30:d4:81:6c:06:18:dd:22: 5d:f7:81:ac:13:53:37:71:99:a2:56:7e:b8:23:01: ca:43:d5:76:86:15:07:e4:ad:d1:f8:c3:ac:57:94: 56:5a:64:6f:e6:22:97:a6:f6:b4:0b:a5:eb:97:b8: 74:53 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D6:E9:97:C6:E2:15:51:F5:29:E2:73:F5:0D:E0:EA:DA:A5:F6:1A:3C X509v3 Authority Key Identifier: keyid:CE:E3:4F:A3:9F:F2:85:F7:2E:22:9D:A2:86:2B:C1:0E:48:8F:BA:41 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A9B3E/DAB1C3A68CFB11ED92E25B61C4F9AE02/zuNPo5_yhfcuIp2ihivBDkiPukE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/zuNPo5_yhfcuIp2ihivBDkiPukE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A9B3E/DAB1C3A68CFB11ED92E25B61C4F9AE02/zuNPo5_yhfcuIp2ihivBDkiPukE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a1:35:f4:aa:53:1f:51:a7:db:2b:07:9a:43:13:5b:c9:7d:47: 51:66:84:9e:68:91:65:b3:23:d3:3b:d8:c7:09:10:96:94:20: 91:05:a0:44:0f:ca:d1:2c:9f:70:f4:d6:e0:ba:7d:0e:19:71: 59:08:31:32:dd:32:34:88:c9:ba:03:dd:0f:e6:a3:0c:a7:3a: 1c:58:88:05:32:d4:d1:69:a5:80:db:fd:45:ee:eb:b0:14:2c: 26:ba:e2:e1:1e:80:89:0f:92:d1:e5:75:2b:05:38:f5:14:56: ad:70:fc:8d:a9:6b:4b:a8:a7:c5:82:07:41:14:bc:9c:2a:73: 68:16:8c:52:a3:02:12:e0:bb:4f:13:1a:da:dc:4c:cc:9e:2d: f1:c4:ff:8f:36:53:8a:f1:08:41:03:8e:67:24:fe:21:1f:2c: b1:4a:4f:b4:34:bb:8d:d6:98:98:83:db:d7:a7:84:dc:53:02: fc:ec:75:13:46:cc:19:7b:b2:bf:5c:82:3a:f3:e3:05:84:f5: a4:a3:fc:d0:8f:1d:8d:64:38:09:de:3a:3b:03:b4:dc:4f:0b: 2b:f0:a0:17:aa:27:45:a9:58:22:86:47:be:cf:d5:47:97:47: 08:6c:be:17:f9:73:34:af:2e:72:90:14:99:f3:27:b5:d2:8a: 2b:5d:4c:08 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAfMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTlCM0UxMTAvBgNVBAUTKENFRTM0RkEzOUZGMjg1RjcyRTIyOURBMjg2MkJDMTBF NDg4RkJBNDEwHhcNMjUwODIzMDI0MDI5WhcNMjUwODMwMDI0MDI5WjAYMRYwFAYD VQQDEw02OGE5MmExZC1jZjE0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwDYslayJpWPSyxDpxzHL6naB+sCCcFH7Dd609AKyIYqXUgb3h2p/YxRglxml Bxk8GjeZIbcFnSG2/xySsczemo4W5mrY8dkwIxvYfIm4afYKBQTI6yVJAUxxrLP9 nu4TqnOz+TIQzLFJTE94XYdbJZfLaxXUaJnQT6eOgHj6A/vd1PzvkYbfV/f789A0 Q4PI623GM9bXh8Q59umx1ck9qZBmzcb8QKAPT8odRfnGWOVFRqvTN0JluhxVezh9 mR1ERaOips+HBYjHMNSBbAYY3SJd94GsE1M3cZmiVn64IwHKQ9V2hhUH5K3R+MOs V5RWWmRv5iKXpva0C6Xrl7h0UwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFNbpl8bi FVH1KeJz9Q3g6tql9ho8MB8GA1UdIwQYMBaAFM7jT6Of8oX3LiKdooYrwQ5Ij7pB MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBOUIzRS9EQUIxQzNBNjhD RkIxMUVEOTJFMjVCNjFDNEY5QUUwMi96dU5QbzVfeWhmY3VJcDJpaGl2QkRraVB1 a0UuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3p1TlBvNV95aGZjdUlwMmloaXZCRGtpUHVrRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB OUIzRS9EQUIxQzNBNjhDRkIxMUVEOTJFMjVCNjFDNEY5QUUwMi96dU5QbzVfeWhm Y3VJcDJpaGl2QkRraVB1a0UubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQChNfSqUx9Rp9srB5pDE1vJfUdRZoSeaJFlsyPTO9jHCRCWlCCRBaBE D8rRLJ9w9Nbgun0OGXFZCDEy3TI0iMm6A90P5qMMpzocWIgFMtTRaaWA2/1F7uuw FCwmuuLhHoCJD5LR5XUrBTj1FFatcPyNqWtLqKfFggdBFLycKnNoFoxSowIS4LtP Exra3EzMni3xxP+PNlOK8QhBA45nJP4hHyyxSk+0NLuN1piYg9vXp4TcUwL87HUT RswZe7K/XII68+MFhPWko/zQjx2NZDgJ3jo7A7TcTwsr8KAXqidFqVgihke+z9VH l0cIbL4X+XM0ry5ykBSZ8ye10oorXUwI -----END CERTIFICATE-----Generated at Sun Aug 24 00:57:58 2025 by rpki-client