$ rpki-client -vvf rpki.apnic.net/member_repository/A915451D/5CB1EA06B88E11EABA33AC61C4F9AE02/Zctcy-UxzE70Kh0wffe0XLDpdNk.mft File: Zctcy-UxzE70Kh0wffe0XLDpdNk.mft (raw, json) Hash identifier: ks1KL05f2MS7Q5j5+rHkHJb7eeb7CaDzi/4VU5RXNbU= Subject key identifier: 9A:0F:CE:24:5D:71:18:B3:8F:BC:70:34:50:A1:F8:17:52:93:74:83 Authority key identifier: 65:CB:5C:CB:E5:31:CC:4E:F4:2A:1D:30:7D:F7:B4:5C:B0:E9:74:D9 Certificate issuer: /CN=A915451D/serialNumber=65CB5CCBE531CC4EF42A1D307DF7B45CB0E974D9 Certificate serial: 08DA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Zctcy-UxzE70Kh0wffe0XLDpdNk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A915451D/5CB1EA06B88E11EABA33AC61C4F9AE02/Zctcy-UxzE70Kh0wffe0XLDpdNk.mft Manifest number: 08D4 Signing time: Sun 24 Aug 2025 20:26:28 +0000 Manifest this update: Sun 24 Aug 2025 20:26:28 +0000 Manifest next update: Sun 31 Aug 2025 20:26:28 +0000 Files and hashes: 1: Zctcy-UxzE70Kh0wffe0XLDpdNk.crl (hash: YxASgWIIhA+sdLryr6B0OqDZ1LnmB7z0TN1yHOOv7O0=) 2: 593FC45EB89011EA8C060064C4F9AE02.roa (hash: GNTtQ5EmAt4jwHyNzDkJrVxnNcCezotTwTzcnNPHMDI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A915451D/5CB1EA06B88E11EABA33AC61C4F9AE02/Zctcy-UxzE70Kh0wffe0XLDpdNk.crl rsync://rpki.apnic.net/member_repository/A915451D/5CB1EA06B88E11EABA33AC61C4F9AE02/Zctcy-UxzE70Kh0wffe0XLDpdNk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Zctcy-UxzE70Kh0wffe0XLDpdNk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 31 Aug 2025 19:03:43 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2266 (0x8da) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A915451D, serialNumber=65CB5CCBE531CC4EF42A1D307DF7B45CB0E974D9 Validity Not Before: Aug 24 20:26:28 2025 GMT Not After : Aug 31 20:26:28 2025 GMT Subject: CN=68ab7574-2889 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ab:a0:60:92:05:94:9c:f4:06:94:be:4e:6a:94: 89:e4:5b:02:3e:6a:fd:33:e3:10:df:d0:91:e1:fe: 5f:3e:e8:14:b6:1c:40:47:7f:51:42:ca:89:fa:ae: 15:6a:5c:47:9b:67:5d:de:e4:5e:37:45:47:9c:2a: 45:98:6e:94:d5:59:14:92:8d:97:9c:3f:e2:b5:54: a7:e5:51:7e:e7:14:91:d1:1b:c4:12:e3:e8:19:92: bf:e4:f6:cb:00:c8:3c:15:e1:14:c8:de:ba:91:b3: b1:9c:ad:e2:95:00:b9:bb:f0:d5:51:d2:b4:b8:08: 1a:ae:93:e1:9e:97:95:6e:fc:d9:99:09:09:4b:fe: 29:b3:7b:5e:1a:6e:a1:38:8a:48:80:41:80:67:35: 36:88:7d:db:28:56:72:2e:ab:2c:9f:19:76:fc:30: 7f:3b:6d:ba:36:6d:d7:dc:8a:b6:e0:9a:f0:90:62: 2e:cb:df:c0:50:fa:db:03:18:33:6b:51:09:3c:f2: a9:7a:dd:3c:4b:81:28:98:8e:c3:5e:52:1b:9f:0e: be:51:67:ca:d9:53:7c:e5:47:b3:3a:cf:f9:62:9c: c2:e4:ae:11:f3:af:f5:ae:d6:34:d8:bb:c8:31:e1: 1d:5a:de:94:a3:52:47:4d:c0:a3:7d:92:2b:a0:c6: da:cf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9A:0F:CE:24:5D:71:18:B3:8F:BC:70:34:50:A1:F8:17:52:93:74:83 X509v3 Authority Key Identifier: keyid:65:CB:5C:CB:E5:31:CC:4E:F4:2A:1D:30:7D:F7:B4:5C:B0:E9:74:D9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A915451D/5CB1EA06B88E11EABA33AC61C4F9AE02/Zctcy-UxzE70Kh0wffe0XLDpdNk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Zctcy-UxzE70Kh0wffe0XLDpdNk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A915451D/5CB1EA06B88E11EABA33AC61C4F9AE02/Zctcy-UxzE70Kh0wffe0XLDpdNk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 04:15:69:8d:6c:81:78:d4:56:fd:04:a7:59:3f:b2:95:34:67: a1:89:d4:7b:e5:b8:6f:59:1b:2b:1d:37:a3:24:45:a6:a1:9f: 6c:94:fa:db:88:d0:4b:2d:a4:79:e9:82:26:1a:4e:4a:ab:b7: 68:89:ea:78:9d:72:f4:bc:c7:e5:f6:26:e5:eb:41:e9:6d:dc: 19:4f:65:b8:7c:2e:e4:1e:16:ac:14:88:7b:66:b3:e2:27:08: c6:02:9a:73:4d:10:1f:a9:21:db:99:6f:e6:77:e0:96:6e:50: 75:79:f6:d7:6b:18:d0:74:5a:f4:58:22:7e:51:36:47:d3:50: a3:8e:9a:38:b5:15:74:2c:23:a8:e0:cf:35:cc:c6:f8:14:10: 63:6f:2d:13:19:b8:db:3c:da:ad:8f:c5:b0:df:ea:db:c2:3e: e5:30:c2:f4:8c:f7:7e:70:73:2c:c0:83:f0:8d:d2:54:3d:4c: e7:86:26:2a:e5:e6:e9:9e:59:63:e0:a1:6b:e6:54:f4:59:5b: 97:86:59:e7:86:40:0d:00:93:72:67:6e:14:a4:8a:60:b2:f7: 39:41:ca:f3:bc:51:e2:ff:d9:f2:d6:07:88:b9:30:3a:51:59: a9:f5:50:1e:57:87:b3:90:c2:02:6d:89:22:d4:68:58:8a:3e: 38:74:bd:60 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCNowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTQ1MUQxMTAvBgNVBAUTKDY1Q0I1Q0NCRTUzMUNDNEVGNDJBMUQzMDdERjdCNDVD QjBFOTc0RDkwHhcNMjUwODI0MjAyNjI4WhcNMjUwODMxMjAyNjI4WjAYMRYwFAYD VQQDEw02OGFiNzU3NC0yODg5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAq6BgkgWUnPQGlL5OapSJ5FsCPmr9M+MQ39CR4f5fPugUthxAR39RQsqJ+q4V alxHm2dd3uReN0VHnCpFmG6U1VkUko2XnD/itVSn5VF+5xSR0RvEEuPoGZK/5PbL AMg8FeEUyN66kbOxnK3ilQC5u/DVUdK0uAgarpPhnpeVbvzZmQkJS/4ps3teGm6h OIpIgEGAZzU2iH3bKFZyLqssnxl2/DB/O226Nm3X3Iq24JrwkGIuy9/AUPrbAxgz a1EJPPKpet08S4EomI7DXlIbnw6+UWfK2VN85UezOs/5YpzC5K4R86/1rtY02LvI MeEdWt6Uo1JHTcCjfZIroMbazwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJoPziRd cRizj7xwNFCh+BdSk3SDMB8GA1UdIwQYMBaAFGXLXMvlMcxO9CodMH33tFyw6XTZ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1NDUxRC81Q0IxRUEwNkI4 OEUxMUVBQkEzM0FDNjFDNEY5QUUwMi9aY3RjeS1VeHpFNzBLaDB3ZmZlMFhMRHBk TmsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1pjdGN5LVV4ekU3MEtoMHdmZmUwWExEcGROay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 NDUxRC81Q0IxRUEwNkI4OEUxMUVBQkEzM0FDNjFDNEY5QUUwMi9aY3RjeS1VeHpF NzBLaDB3ZmZlMFhMRHBkTmsubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAEFWmNbIF41Fb9BKdZP7KVNGehidR75bhvWRsrHTejJEWmoZ9slPrb iNBLLaR56YImGk5Kq7doiep4nXL0vMfl9ibl60HpbdwZT2W4fC7kHhasFIh7ZrPi JwjGAppzTRAfqSHbmW/md+CWblB1efbXaxjQdFr0WCJ+UTZH01Cjjpo4tRV0LCOo 4M81zMb4FBBjby0TGbjbPNqtj8Ww3+rbwj7lMML0jPd+cHMswIPwjdJUPUznhiYq 5ebpnllj4KFr5lT0WVuXhlnnhkANAJNyZ24UpIpgsvc5QcrzvFHi/9ny1geIuTA6 UVmp9VAeV4ezkMICbYki1GhYij44dL1g -----END CERTIFICATE-----Generated at Sun Aug 24 22:23:20 2025 by rpki-client