$ rpki-client -vvf rpki.apnic.net/member_repository/A915A4AF/466466CA69F611EFB2B8AF50C4F9AE02/zuSHZKosFvdaBnJE66WGaXThztY.mft File: zuSHZKosFvdaBnJE66WGaXThztY.mft (raw, json) Hash identifier: NXRtZ5+xN0Yg4kwGcRNVZQQRg+4ZJItRq2pr0aWsaAo= Subject key identifier: 09:32:05:2D:FD:5D:9E:6C:03:36:A5:BA:A2:35:AD:19:81:A9:CB:15 Authority key identifier: CE:E4:87:64:AA:2C:16:F7:5A:06:72:44:EB:A5:86:69:74:E1:CE:D6 Certificate issuer: /CN=A915A4AF/serialNumber=CEE48764AA2C16F75A067244EBA5866974E1CED6 Certificate serial: 8C Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/zuSHZKosFvdaBnJE66WGaXThztY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A915A4AF/466466CA69F611EFB2B8AF50C4F9AE02/zuSHZKosFvdaBnJE66WGaXThztY.mft Manifest number: 8B Signing time: Sun 01 Jun 2025 06:13:30 +0000 Manifest this update: Sun 01 Jun 2025 06:13:29 +0000 Manifest next update: Sun 08 Jun 2025 06:13:29 +0000 Files and hashes: 1: zuSHZKosFvdaBnJE66WGaXThztY.crl (hash: 5tZ6GZ9KzAPjcBST17Bxr1C+uP9ZJniVqG5l5ufLUOI=) 2: 9B22AC1269F611EFA7665A51C4F9AE02.roa (hash: Fnj7JWgwdsaeofMVq5UcxcqhmE7c7PXdT8GOJ7pFYSI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A915A4AF/466466CA69F611EFB2B8AF50C4F9AE02/zuSHZKosFvdaBnJE66WGaXThztY.crl rsync://rpki.apnic.net/member_repository/A915A4AF/466466CA69F611EFB2B8AF50C4F9AE02/zuSHZKosFvdaBnJE66WGaXThztY.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/zuSHZKosFvdaBnJE66WGaXThztY.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 08 Jun 2025 06:13:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 140 (0x8c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A915A4AF, serialNumber=CEE48764AA2C16F75A067244EBA5866974E1CED6 Validity Not Before: Jun 1 06:13:29 2025 GMT Not After : Jun 8 06:13:29 2025 GMT Subject: CN=683bef89-6fc1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c7:67:c5:c8:20:8e:6e:be:0b:de:6a:44:88:80: b8:89:52:7f:b5:96:d5:43:87:c9:c3:1c:4a:cc:22: 5e:1b:38:c7:a2:ff:41:a5:5e:94:27:31:4e:18:7c: 36:a5:24:bb:c3:ba:a5:d8:f6:57:11:24:42:b1:36: 4b:68:c6:38:77:5a:b3:06:fc:20:e5:80:f3:e3:b4: 38:8c:9b:26:a4:1d:57:01:06:60:1d:4b:25:f2:26: 4a:77:f7:5d:ea:9c:2f:12:80:17:c7:12:11:7c:34: 75:7d:63:37:92:c8:08:85:f1:ae:0d:50:37:aa:9d: 39:d7:2d:35:00:6f:44:92:76:ba:20:48:3e:06:94: 27:cb:23:69:ac:e4:52:b9:05:5f:f2:b3:00:a5:4a: 3a:bd:c9:1c:0d:b3:ba:81:60:5c:a7:79:ce:db:7d: fc:13:0e:0e:8a:d3:37:24:2e:7d:4f:50:08:d8:4e: 29:6e:ea:81:a8:e4:92:1c:d9:09:73:df:02:0f:25: 1f:20:ff:68:03:df:39:26:4a:b2:44:41:09:4e:02: bd:fe:73:0c:ee:eb:81:1f:b6:a9:ef:b2:e2:79:90: 80:4c:cd:88:a0:f6:49:47:29:44:10:a5:3f:8f:bc: 91:e4:7c:18:91:06:dc:77:8b:07:c1:3f:cd:4c:b1: 23:a3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 09:32:05:2D:FD:5D:9E:6C:03:36:A5:BA:A2:35:AD:19:81:A9:CB:15 X509v3 Authority Key Identifier: keyid:CE:E4:87:64:AA:2C:16:F7:5A:06:72:44:EB:A5:86:69:74:E1:CE:D6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A915A4AF/466466CA69F611EFB2B8AF50C4F9AE02/zuSHZKosFvdaBnJE66WGaXThztY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/zuSHZKosFvdaBnJE66WGaXThztY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A915A4AF/466466CA69F611EFB2B8AF50C4F9AE02/zuSHZKosFvdaBnJE66WGaXThztY.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 92:9d:2c:48:10:72:f4:34:d7:06:3a:66:10:5f:85:d0:8f:45: 11:f9:3c:37:79:6c:74:f7:1f:98:60:a7:8d:21:b7:d8:e0:cc: f8:62:f1:da:77:de:12:b4:18:e0:86:96:7d:55:a1:6e:0d:7e: 6e:c0:ad:f8:93:22:9e:b4:c9:93:69:54:89:a2:ef:f2:6d:18: 95:20:01:bc:2a:42:ff:95:5c:f3:6b:1a:cf:b5:b0:9f:f8:d4: 72:17:66:8d:03:d6:12:2e:51:a5:78:60:94:db:ca:5a:21:d7: 01:21:d8:23:56:6f:88:c6:3e:26:c8:01:88:20:7a:b2:82:68: d1:a7:65:40:68:8a:f7:57:83:1a:42:f1:c0:90:79:a1:23:db: 9a:44:2a:31:b5:7f:94:52:5d:6f:4f:d7:e3:01:5f:be:ad:72: c4:75:6b:a6:1a:93:66:85:31:50:9d:15:12:eb:42:ec:60:20: 21:cd:bd:b1:0b:92:be:32:96:f5:1f:2c:b1:85:0c:e7:d1:6f: fc:ff:15:0e:2e:ea:30:ef:a0:39:28:58:3d:8c:47:cb:c5:a3: c0:f4:10:3e:de:ef:9b:10:cf:80:fb:22:c7:f4:04:fb:f7:5f: de:04:e7:f2:15:dc:4e:05:b3:3d:e4:56:80:b8:39:55:9d:2a: 0a:c3:3b:a3 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAIwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NUE0QUYxMTAvBgNVBAUTKENFRTQ4NzY0QUEyQzE2Rjc1QTA2NzI0NEVCQTU4NjY5 NzRFMUNFRDYwHhcNMjUwNjAxMDYxMzI5WhcNMjUwNjA4MDYxMzI5WjAYMRYwFAYD VQQDEw02ODNiZWY4OS02ZmMxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAx2fFyCCObr4L3mpEiIC4iVJ/tZbVQ4fJwxxKzCJeGzjHov9BpV6UJzFOGHw2 pSS7w7ql2PZXESRCsTZLaMY4d1qzBvwg5YDz47Q4jJsmpB1XAQZgHUsl8iZKd/dd 6pwvEoAXxxIRfDR1fWM3ksgIhfGuDVA3qp051y01AG9Ekna6IEg+BpQnyyNprORS uQVf8rMApUo6vckcDbO6gWBcp3nO2338Ew4OitM3JC59T1AI2E4pbuqBqOSSHNkJ c98CDyUfIP9oA985JkqyREEJTgK9/nMM7uuBH7ap77LieZCATM2IoPZJRylEEKU/ j7yR5HwYkQbcd4sHwT/NTLEjowIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFAkyBS39 XZ5sAzaluqI1rRmBqcsVMB8GA1UdIwQYMBaAFM7kh2SqLBb3WgZyROulhml04c7W MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1QTRBRi80NjY0NjZDQTY5 RjYxMUVGQjJCOEFGNTBDNEY5QUUwMi96dVNIWktvc0Z2ZGFCbkpFNjZXR2FYVGh6 dFkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL3p1U0haS29zRnZkYUJuSkU2NldHYVhUaHp0WS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 QTRBRi80NjY0NjZDQTY5RjYxMUVGQjJCOEFGNTBDNEY5QUUwMi96dVNIWktvc0Z2 ZGFCbkpFNjZXR2FYVGh6dFkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCSnSxIEHL0NNcGOmYQX4XQj0UR+Tw3eWx09x+YYKeNIbfY4Mz4YvHa d94StBjghpZ9VaFuDX5uwK34kyKetMmTaVSJou/ybRiVIAG8KkL/lVzzaxrPtbCf +NRyF2aNA9YSLlGleGCU28paIdcBIdgjVm+Ixj4myAGIIHqygmjRp2VAaIr3V4Ma QvHAkHmhI9uaRCoxtX+UUl1vT9fjAV++rXLEdWumGpNmhTFQnRUS60LsYCAhzb2x C5K+Mpb1HyyxhQzn0W/8/xUOLuow76A5KFg9jEfLxaPA9BA+3u+bEM+A+yLH9AT7 91/eBOfyFdxOBbM95FaAuDlVnSoKwzuj -----END CERTIFICATE-----Generated at Mon Jun 2 22:05:59 2025 by rpki-client