$ rpki-client -vvf rpki.apnic.net/member_repository/A9191D22/284001EC7B1F11EA858BCD86C4F9AE02/zPugs5k5MOsTt6JZJyqoEfh0SyM.mft File: zPugs5k5MOsTt6JZJyqoEfh0SyM.mft (raw, json) Hash identifier: XpmvaMCLVYkWBj9waf49JCB4T1rWuCB4/n3rvn7Sb5g= Subject key identifier: 66:4C:CC:E6:6A:46:04:E3:A1:50:1A:8F:DD:F7:4A:FB:FB:09:FD:AE Authority key identifier: CC:FB:A0:B3:99:39:30:EB:13:B7:A2:59:27:2A:A8:11:F8:74:4B:23 Certificate issuer: /CN=A9191D22/serialNumber=CCFBA0B3993930EB13B7A259272AA811F8744B23 Certificate serial: 0A0A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/zPugs5k5MOsTt6JZJyqoEfh0SyM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9191D22/284001EC7B1F11EA858BCD86C4F9AE02/zPugs5k5MOsTt6JZJyqoEfh0SyM.mft Manifest number: 0A02 Signing time: Fri 18 Jul 2025 20:05:14 +0000 Manifest this update: Fri 18 Jul 2025 20:05:14 +0000 Manifest next update: Fri 25 Jul 2025 20:05:14 +0000 Files and hashes: 1: zPugs5k5MOsTt6JZJyqoEfh0SyM.crl (hash: YhFx8MuQDY8pdStxj91Kw52rhvK0WdZiaQqgOrSoJgw=) 2: 047A427C7E2B11EAB1B5B00DC4F9AE02.roa (hash: vYfbYGbaZtOjNPwwYTLo3cpgHwXTvaA/VLhLM/0gXjE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9191D22/284001EC7B1F11EA858BCD86C4F9AE02/zPugs5k5MOsTt6JZJyqoEfh0SyM.crl rsync://rpki.apnic.net/member_repository/A9191D22/284001EC7B1F11EA858BCD86C4F9AE02/zPugs5k5MOsTt6JZJyqoEfh0SyM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/zPugs5k5MOsTt6JZJyqoEfh0SyM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 25 Jul 2025 20:05:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2570 (0xa0a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9191D22, serialNumber=CCFBA0B3993930EB13B7A259272AA811F8744B23 Validity Not Before: Jul 18 20:05:14 2025 GMT Not After : Jul 25 20:05:14 2025 GMT Subject: CN=687aa8fa-cae0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e2:37:0c:d8:12:7d:5f:49:fc:93:a8:3e:0f:37: 70:86:4b:e4:08:61:f0:5f:30:6c:28:3b:d0:84:d5: 21:6d:8c:ac:6b:71:ce:9d:0f:25:b7:62:76:a4:93: 2f:33:eb:f8:30:11:a3:8e:c9:d2:a5:14:1f:09:9c: e7:b3:ec:4f:cc:54:85:5c:51:65:b9:0c:50:64:d3: 5a:8e:ed:d3:26:ad:de:45:ac:ee:63:f2:52:3a:78: 1a:c0:d6:1d:8e:2c:3b:a4:f6:13:0f:b9:45:86:68: 08:19:d1:03:26:a6:f1:61:32:fc:2e:2e:ec:60:d6: 7c:e7:65:c2:5e:a8:da:50:f6:9d:bd:f3:65:83:88: 19:b4:36:2a:cc:4d:8a:3e:13:67:d1:41:56:96:1b: 14:38:ae:2c:68:c7:56:6e:8c:88:38:e4:bb:57:1c: d6:b0:29:4f:95:92:93:8b:15:1b:88:c4:c8:36:2f: f9:60:39:26:b7:e6:af:10:ac:af:12:2a:59:93:c7: bc:bc:90:b9:e7:1e:ae:95:f2:4f:88:ff:7c:82:12: 48:b1:12:b3:48:b5:52:2a:b6:82:85:85:90:45:26: 37:a6:24:99:b4:3f:ad:d4:63:bf:1a:82:95:a3:bf: 0d:87:ab:1c:a7:84:96:08:d8:30:68:54:e0:89:e3: d9:53 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 66:4C:CC:E6:6A:46:04:E3:A1:50:1A:8F:DD:F7:4A:FB:FB:09:FD:AE X509v3 Authority Key Identifier: keyid:CC:FB:A0:B3:99:39:30:EB:13:B7:A2:59:27:2A:A8:11:F8:74:4B:23 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9191D22/284001EC7B1F11EA858BCD86C4F9AE02/zPugs5k5MOsTt6JZJyqoEfh0SyM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/zPugs5k5MOsTt6JZJyqoEfh0SyM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9191D22/284001EC7B1F11EA858BCD86C4F9AE02/zPugs5k5MOsTt6JZJyqoEfh0SyM.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 58:aa:5d:b9:d4:b6:07:89:f5:6c:97:c6:8b:f0:8d:bd:84:5f: 01:f7:3f:2d:0d:58:6a:e5:db:75:20:c2:06:39:98:a2:46:77: 43:49:ce:42:7f:cf:b4:cb:22:fc:92:ad:95:6a:45:bd:e5:e5: 3e:78:c0:93:7d:f0:dd:18:bc:ae:50:25:c5:6e:00:67:e9:30: e0:0b:3c:0b:f2:c9:b6:fc:2f:eb:3b:cc:9b:d6:4d:de:76:bc: 24:df:98:20:13:03:28:b4:26:ff:c8:e4:43:08:04:ec:48:d5: 20:ce:da:64:6d:7b:63:d3:85:78:6a:30:6f:e4:2b:f4:de:50: 1c:cb:ba:42:9f:02:8e:a5:6e:68:29:fd:d1:db:ec:1c:09:f0: cc:51:c7:cc:dc:86:a3:95:07:5c:ac:99:c3:17:1e:9d:5e:ce: 3a:1c:62:12:c0:f7:63:d6:85:b1:e6:4a:5e:60:7d:c7:34:62: 5b:56:55:bd:f8:5a:8d:c7:e4:97:2a:1a:2b:93:1b:12:e3:cd: 49:c4:4d:43:62:a8:08:53:55:41:4a:8b:0d:23:5a:42:5d:e5: b2:e1:9f:54:43:1f:0a:63:08:4e:da:37:70:54:5d:c1:7f:38: 4b:91:e5:ac:83:79:74:55:1e:2b:a9:cf:e0:6e:91:4d:be:78: 40:d2:28:d2 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCgowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTFEMjIxMTAvBgNVBAUTKENDRkJBMEIzOTkzOTMwRUIxM0I3QTI1OTI3MkFBODEx Rjg3NDRCMjMwHhcNMjUwNzE4MjAwNTE0WhcNMjUwNzI1MjAwNTE0WjAYMRYwFAYD VQQDEw02ODdhYThmYS1jYWUwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA4jcM2BJ9X0n8k6g+DzdwhkvkCGHwXzBsKDvQhNUhbYysa3HOnQ8lt2J2pJMv M+v4MBGjjsnSpRQfCZzns+xPzFSFXFFluQxQZNNaju3TJq3eRazuY/JSOngawNYd jiw7pPYTD7lFhmgIGdEDJqbxYTL8Li7sYNZ852XCXqjaUPadvfNlg4gZtDYqzE2K PhNn0UFWlhsUOK4saMdWboyIOOS7VxzWsClPlZKTixUbiMTINi/5YDkmt+avEKyv EipZk8e8vJC55x6ulfJPiP98ghJIsRKzSLVSKraChYWQRSY3piSZtD+t1GO/GoKV o78Nh6scp4SWCNgwaFTgiePZUwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFGZMzOZq RgTjoVAaj933Svv7Cf2uMB8GA1UdIwQYMBaAFMz7oLOZOTDrE7eiWScqqBH4dEsj MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5MUQyMi8yODQwMDFFQzdC MUYxMUVBODU4QkNEODZDNEY5QUUwMi96UHVnczVrNU1Pc1R0NkpaSnlxb0VmaDBT eU0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3pQdWdzNWs1TU9zVHQ2SlpKeXFvRWZoMFN5TS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 MUQyMi8yODQwMDFFQzdCMUYxMUVBODU4QkNEODZDNEY5QUUwMi96UHVnczVrNU1P c1R0NkpaSnlxb0VmaDBTeU0ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBYql251LYHifVsl8aL8I29hF8B9z8tDVhq5dt1IMIGOZiiRndDSc5C f8+0yyL8kq2VakW95eU+eMCTffDdGLyuUCXFbgBn6TDgCzwL8sm2/C/rO8yb1k3e drwk35ggEwMotCb/yORDCATsSNUgztpkbXtj04V4ajBv5Cv03lAcy7pCnwKOpW5o Kf3R2+wcCfDMUcfM3IajlQdcrJnDFx6dXs46HGISwPdj1oWx5kpeYH3HNGJbVlW9 +FqNx+SXKhorkxsS481JxE1DYqgIU1VBSosNI1pCXeWy4Z9UQx8KYwhO2jdwVF3B fzhLkeWsg3l0VR4rqc/gbpFNvnhA0ijS -----END CERTIFICATE-----Generated at Sun Jul 20 11:27:47 2025 by rpki-client