$ rpki-client -vvf rpki.apnic.net/member_repository/A915A4AF/466466CA69F611EFB2B8AF50C4F9AE02/zuSHZKosFvdaBnJE66WGaXThztY.mft File: zuSHZKosFvdaBnJE66WGaXThztY.mft (raw, json) Hash identifier: /0+8eafTnqQL8o20Lm5/M3dIDIFVNBH1ne0XW4QAjQI= Subject key identifier: 94:F1:A6:DB:1A:B6:E8:03:26:A6:10:29:C6:A2:55:14:C8:F9:3B:91 Authority key identifier: CE:E4:87:64:AA:2C:16:F7:5A:06:72:44:EB:A5:86:69:74:E1:CE:D6 Certificate issuer: /CN=A915A4AF/serialNumber=CEE48764AA2C16F75A067244EBA5866974E1CED6 Certificate serial: C2 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/zuSHZKosFvdaBnJE66WGaXThztY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A915A4AF/466466CA69F611EFB2B8AF50C4F9AE02/zuSHZKosFvdaBnJE66WGaXThztY.mft Manifest number: BF Signing time: Fri 05 Sep 2025 06:20:13 +0000 Manifest this update: Fri 05 Sep 2025 06:20:12 +0000 Manifest next update: Fri 12 Sep 2025 06:20:12 +0000 Files and hashes: 1: zuSHZKosFvdaBnJE66WGaXThztY.crl (hash: z76fTLHAcjpBfKpAfZvU8V1Wc72EQdC3o1mh7DnQQYs=) 2: D4BAE68E853311F0AC0D4852C4F9AE02.roa (hash: JKusbC5VvwUuAdGYiNShuHqXM4sIB8wqjTbQ4/y/qsw=) 3: 9B22AC1269F611EFA7665A51C4F9AE02.roa (hash: Fnj7JWgwdsaeofMVq5UcxcqhmE7c7PXdT8GOJ7pFYSI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A915A4AF/466466CA69F611EFB2B8AF50C4F9AE02/zuSHZKosFvdaBnJE66WGaXThztY.crl rsync://rpki.apnic.net/member_repository/A915A4AF/466466CA69F611EFB2B8AF50C4F9AE02/zuSHZKosFvdaBnJE66WGaXThztY.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/zuSHZKosFvdaBnJE66WGaXThztY.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 12 Sep 2025 06:20:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 194 (0xc2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A915A4AF, serialNumber=CEE48764AA2C16F75A067244EBA5866974E1CED6 Validity Not Before: Sep 5 06:20:12 2025 GMT Not After : Sep 12 06:20:12 2025 GMT Subject: CN=68ba811c-9f3d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d5:a5:71:ab:b4:a5:62:ff:62:b1:1f:a2:f6:17: a3:2d:cd:3c:a5:26:4a:7a:ad:03:ef:9b:2c:ac:b2: 4b:ea:97:83:fe:30:c0:ab:eb:e5:35:f1:87:55:8d: 74:22:42:04:b3:f0:5c:5b:d0:32:db:f9:79:b2:c8: 59:f2:3c:8d:b7:a0:50:77:d5:ee:40:6e:62:ec:ff: 24:86:55:84:02:5f:c6:ca:7c:a8:7e:d7:81:46:ee: 06:2e:33:cc:6d:c3:91:cd:d3:45:df:32:35:c7:6a: 1c:f5:e9:08:32:c1:34:d0:8d:ef:56:92:b6:ae:a5: 5a:0e:90:94:ea:66:a7:fe:dd:8d:c4:26:75:ec:27: e6:ee:50:57:85:ab:33:00:de:ff:7e:09:59:6b:80: 42:b5:05:27:d7:87:d5:63:c6:81:83:bf:5e:6f:5c: a7:1d:71:fd:64:75:1e:a1:be:9c:6e:0e:71:cb:5c: 03:9a:bb:6c:f3:3f:d2:b8:b3:0c:44:df:b9:f8:8f: 3e:6e:41:55:2d:a6:d8:5b:de:1c:e3:6f:0e:c1:d5: ee:e4:f7:83:88:26:7d:7e:84:5f:d9:99:54:96:b5: 18:e3:ff:04:6d:53:71:a7:02:51:ce:27:b3:05:b4: e3:51:d3:35:d6:b1:d6:7e:93:c2:07:28:ae:e0:30: e2:25 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 94:F1:A6:DB:1A:B6:E8:03:26:A6:10:29:C6:A2:55:14:C8:F9:3B:91 X509v3 Authority Key Identifier: keyid:CE:E4:87:64:AA:2C:16:F7:5A:06:72:44:EB:A5:86:69:74:E1:CE:D6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A915A4AF/466466CA69F611EFB2B8AF50C4F9AE02/zuSHZKosFvdaBnJE66WGaXThztY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/zuSHZKosFvdaBnJE66WGaXThztY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A915A4AF/466466CA69F611EFB2B8AF50C4F9AE02/zuSHZKosFvdaBnJE66WGaXThztY.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 22:a6:d2:48:99:69:10:c7:e8:f5:d6:fc:be:df:8b:67:3e:2f: 96:10:07:23:80:b1:5b:09:7f:58:47:31:be:99:7d:f9:5b:80: ae:8b:f9:10:c5:1a:ef:4d:6e:27:ad:ad:a8:0c:0b:b4:ca:8b: 98:de:e8:b5:55:23:af:84:d2:b9:38:6d:95:f9:1b:a9:05:9f: 4c:8a:15:5c:c3:e9:60:f8:38:ce:a2:93:8f:f5:93:55:f9:07: 8e:9b:03:21:c2:6b:cd:c0:19:39:e8:b5:3d:de:c9:5c:dc:cf: 13:8b:cd:80:b8:2a:3e:ff:19:8d:e8:75:4d:b7:32:32:67:d0: a3:a7:67:13:bc:16:a1:e1:96:bc:c4:b2:05:45:f5:fa:12:4e: d0:99:a2:e4:e5:e2:e8:b0:6d:3b:3a:74:1f:55:54:4d:ae:29: fd:27:36:d7:69:e8:e2:66:92:0e:e3:0d:ed:84:5b:97:19:4b: 00:9e:2e:9d:3d:ea:3a:71:6e:51:3c:58:5b:ef:71:78:3e:69: 95:fd:68:d8:6f:12:ee:be:0e:27:bc:7d:2e:ae:28:ee:53:2a: f8:fc:fb:a8:b2:c5:bb:32:a2:16:eb:23:2e:13:fe:29:3a:59: d8:4a:d6:77:f6:7a:e6:da:22:a5:a5:db:3b:b8:b5:d1:f9:b8: 2c:b1:92:3d -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAMIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NUE0QUYxMTAvBgNVBAUTKENFRTQ4NzY0QUEyQzE2Rjc1QTA2NzI0NEVCQTU4NjY5 NzRFMUNFRDYwHhcNMjUwOTA1MDYyMDEyWhcNMjUwOTEyMDYyMDEyWjAYMRYwFAYD VQQDEw02OGJhODExYy05ZjNkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1aVxq7SlYv9isR+i9hejLc08pSZKeq0D75ssrLJL6peD/jDAq+vlNfGHVY10 IkIEs/BcW9Ay2/l5sshZ8jyNt6BQd9XuQG5i7P8khlWEAl/GynyofteBRu4GLjPM bcORzdNF3zI1x2oc9ekIMsE00I3vVpK2rqVaDpCU6man/t2NxCZ17Cfm7lBXhasz AN7/fglZa4BCtQUn14fVY8aBg79eb1ynHXH9ZHUeob6cbg5xy1wDmrts8z/SuLMM RN+5+I8+bkFVLabYW94c428OwdXu5PeDiCZ9foRf2ZlUlrUY4/8EbVNxpwJRziez BbTjUdM11rHWfpPCByiu4DDiJQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJTxptsa tugDJqYQKcaiVRTI+TuRMB8GA1UdIwQYMBaAFM7kh2SqLBb3WgZyROulhml04c7W MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1QTRBRi80NjY0NjZDQTY5 RjYxMUVGQjJCOEFGNTBDNEY5QUUwMi96dVNIWktvc0Z2ZGFCbkpFNjZXR2FYVGh6 dFkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL3p1U0haS29zRnZkYUJuSkU2NldHYVhUaHp0WS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 QTRBRi80NjY0NjZDQTY5RjYxMUVGQjJCOEFGNTBDNEY5QUUwMi96dVNIWktvc0Z2 ZGFCbkpFNjZXR2FYVGh6dFkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAiptJImWkQx+j11vy+34tnPi+WEAcjgLFbCX9YRzG+mX35W4Cui/kQ xRrvTW4nra2oDAu0youY3ui1VSOvhNK5OG2V+RupBZ9MihVcw+lg+DjOopOP9ZNV +QeOmwMhwmvNwBk56LU93slc3M8Ti82AuCo+/xmN6HVNtzIyZ9Cjp2cTvBah4Za8 xLIFRfX6Ek7QmaLk5eLosG07OnQfVVRNrin9JzbXaejiZpIO4w3thFuXGUsAni6d Peo6cW5RPFhb73F4PmmV/WjYbxLuvg4nvH0urijuUyr4/PuossW7MqIW6yMuE/4p OlnYStZ39nrm2iKlpds7uLXR+bgssZI9 -----END CERTIFICATE-----Generated at Sat Sep 6 21:09:06 2025 by rpki-client