$ rpki-client -vvf rpki.apnic.net/member_repository/A917BBF1/245DC5CA0AF711EAA85A5D1AC4F9AE02/ZUCRhgKOxUzUW1g0_77K9LePGcI.mft File: ZUCRhgKOxUzUW1g0_77K9LePGcI.mft (raw, json) Hash identifier: u7XsRkql9pwpS5IDEx15OYNSxuU647LZD+8+AQtrthI= Subject key identifier: ED:B7:AD:C1:D2:69:8E:2A:C3:F1:C5:0F:A5:EA:5E:EF:88:71:CC:E0 Authority key identifier: 65:40:91:86:02:8E:C5:4C:D4:5B:58:34:FF:BE:CA:F4:B7:8F:19:C2 Certificate issuer: /CN=A917BBF1/serialNumber=65409186028EC54CD45B5834FFBECAF4B78F19C2 Certificate serial: 0C89 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ZUCRhgKOxUzUW1g0_77K9LePGcI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917BBF1/245DC5CA0AF711EAA85A5D1AC4F9AE02/ZUCRhgKOxUzUW1g0_77K9LePGcI.mft Manifest number: 0C6C Signing time: Mon 08 Sep 2025 18:33:29 +0000 Manifest this update: Mon 08 Sep 2025 18:33:29 +0000 Manifest next update: Mon 15 Sep 2025 18:33:29 +0000 Files and hashes: 1: ZUCRhgKOxUzUW1g0_77K9LePGcI.crl (hash: Rjpt3ykLUajbljzm7qf5DmTrNTSqHoZ+amzjVNdmhXA=) 2: 7136F65A37A811EE94E32169C4F9AE02.roa (hash: MIgp6SPzmtBLaTAJ8Ko+cWBy6IjOqEZ3q2z4VBixHmI=) 3: 1B54858065B711EE93D6ED6DC4F9AE02.roa (hash: GsJaSUcatISwdkkhFSUQBWiCBZOPMZtERdw74sbshGA=) 4: FF4F13D4448711ECA80CFC34C4F9AE02.roa (hash: pvvlftNep3JGBrkiJAisunxpzryLA3gGytWzHa5BKMk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917BBF1/245DC5CA0AF711EAA85A5D1AC4F9AE02/ZUCRhgKOxUzUW1g0_77K9LePGcI.crl rsync://rpki.apnic.net/member_repository/A917BBF1/245DC5CA0AF711EAA85A5D1AC4F9AE02/ZUCRhgKOxUzUW1g0_77K9LePGcI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ZUCRhgKOxUzUW1g0_77K9LePGcI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 15 Sep 2025 18:33:28 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3209 (0xc89) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917BBF1, serialNumber=65409186028EC54CD45B5834FFBECAF4B78F19C2 Validity Not Before: Sep 8 18:33:29 2025 GMT Not After : Sep 15 18:33:29 2025 GMT Subject: CN=68bf2179-9310 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b3:cf:64:17:8a:83:7a:a2:a7:bc:70:84:66:20: f9:e0:43:ed:38:a0:5d:f7:16:7c:b4:7d:09:5a:71: 13:da:e7:bb:23:3d:0d:fc:70:0f:ef:13:04:56:d5: 66:b9:13:7c:a4:9b:46:51:05:c6:8b:46:b0:2b:58: dc:66:a9:6c:d8:b6:30:b9:7a:ca:11:f7:9b:d5:ed: c8:f3:38:25:20:c9:7f:71:1d:ad:71:35:dc:2c:83: 95:d2:6c:f5:28:d8:eb:e2:fa:8b:2b:32:c0:6b:d7: 8f:1e:4f:6a:35:66:6e:6b:dc:ec:82:83:2c:2b:0b: 97:f6:ff:1c:52:5c:08:36:62:63:38:e5:3d:0b:4e: ca:11:71:e7:b5:2d:a7:cc:65:4c:2c:53:6c:f0:55: fa:3f:0b:09:95:77:7f:6d:9d:9d:46:8d:e3:c5:db: 55:2b:44:75:61:aa:bf:fb:85:1d:d2:da:5f:a0:2b: a3:2b:e7:c1:2a:d5:68:4a:3c:29:61:86:ba:0f:00: fc:e5:ca:73:43:66:06:1c:70:ea:bb:bb:19:d7:4c: 06:d1:5d:fc:0d:a2:66:03:77:6c:df:79:3c:79:1e: 13:d2:a9:ba:f8:0a:3e:b9:94:23:e3:cc:ac:24:4c: 52:5e:b2:44:2b:9c:7b:6d:dc:00:95:b2:1f:d1:5a: db:6d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: ED:B7:AD:C1:D2:69:8E:2A:C3:F1:C5:0F:A5:EA:5E:EF:88:71:CC:E0 X509v3 Authority Key Identifier: keyid:65:40:91:86:02:8E:C5:4C:D4:5B:58:34:FF:BE:CA:F4:B7:8F:19:C2 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917BBF1/245DC5CA0AF711EAA85A5D1AC4F9AE02/ZUCRhgKOxUzUW1g0_77K9LePGcI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ZUCRhgKOxUzUW1g0_77K9LePGcI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917BBF1/245DC5CA0AF711EAA85A5D1AC4F9AE02/ZUCRhgKOxUzUW1g0_77K9LePGcI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 07:35:45:a0:c2:23:e1:4d:a3:be:90:97:74:3c:37:6f:5e:f9: 90:1b:7b:4d:29:de:5a:a0:64:b4:13:71:82:c1:f5:59:8d:46: bf:a2:2f:76:cf:16:de:27:bb:59:6f:d7:f7:60:dc:3a:2d:26: df:71:fc:0c:74:e9:5a:86:0e:0a:8c:ea:69:eb:9d:ef:79:ea: d0:e5:2c:05:06:5c:ef:ba:17:7e:8e:9a:2b:2a:17:f1:92:14: 08:b3:34:93:e0:7e:eb:96:62:16:6a:f6:06:9e:3a:36:25:82: 14:76:36:c8:f2:ed:4e:22:92:d7:64:28:57:42:4c:6d:cf:f6: 31:f1:19:02:06:c1:cb:19:ff:63:ce:89:ee:3f:02:42:fb:6e: e3:92:2c:36:1c:ce:61:bf:71:e2:b2:02:ef:87:9a:11:16:b2: e5:2f:e8:19:fe:03:5c:85:a3:98:51:4a:d2:07:f3:6e:2a:d5: c2:f6:f0:ec:d9:d0:fb:5e:2b:3e:24:eb:e6:b5:74:c6:12:c9: b2:b2:42:57:e3:70:0b:53:98:2a:94:9e:0e:66:ec:80:41:ac: db:41:3b:fa:6b:72:19:15:b4:47:65:71:41:10:73:9b:e8:a3: fb:eb:95:89:6f:20:d5:4b:39:c6:23:5a:72:68:9d:ba:43:0a: e4:65:8b:6a -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDIkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0JCRjExMTAvBgNVBAUTKDY1NDA5MTg2MDI4RUM1NENENDVCNTgzNEZGQkVDQUY0 Qjc4RjE5QzIwHhcNMjUwOTA4MTgzMzI5WhcNMjUwOTE1MTgzMzI5WjAYMRYwFAYD VQQDEw02OGJmMjE3OS05MzEwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAs89kF4qDeqKnvHCEZiD54EPtOKBd9xZ8tH0JWnET2ue7Iz0N/HAP7xMEVtVm uRN8pJtGUQXGi0awK1jcZqls2LYwuXrKEfeb1e3I8zglIMl/cR2tcTXcLIOV0mz1 KNjr4vqLKzLAa9ePHk9qNWZua9zsgoMsKwuX9v8cUlwINmJjOOU9C07KEXHntS2n zGVMLFNs8FX6PwsJlXd/bZ2dRo3jxdtVK0R1Yaq/+4Ud0tpfoCujK+fBKtVoSjwp YYa6DwD85cpzQ2YGHHDqu7sZ10wG0V38DaJmA3ds33k8eR4T0qm6+Ao+uZQj48ys JExSXrJEK5x7bdwAlbIf0VrbbQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFO23rcHS aY4qw/HFD6XqXu+IcczgMB8GA1UdIwQYMBaAFGVAkYYCjsVM1FtYNP++yvS3jxnC MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3QkJGMS8yNDVEQzVDQTBB RjcxMUVBQTg1QTVEMUFDNEY5QUUwMi9aVUNSaGdLT3hVelVXMWcwXzc3SzlMZVBH Y0kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1pVQ1JoZ0tPeFV6VVcxZzBfNzdLOUxlUEdjSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 QkJGMS8yNDVEQzVDQTBBRjcxMUVBQTg1QTVEMUFDNEY5QUUwMi9aVUNSaGdLT3hV elVXMWcwXzc3SzlMZVBHY0kubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAHNUWgwiPhTaO+kJd0PDdvXvmQG3tNKd5aoGS0E3GCwfVZjUa/oi92 zxbeJ7tZb9f3YNw6LSbfcfwMdOlahg4KjOpp653veerQ5SwFBlzvuhd+jporKhfx khQIszST4H7rlmIWavYGnjo2JYIUdjbI8u1OIpLXZChXQkxtz/Yx8RkCBsHLGf9j zonuPwJC+27jkiw2HM5hv3HisgLvh5oRFrLlL+gZ/gNchaOYUUrSB/NuKtXC9vDs 2dD7Xis+JOvmtXTGEsmyskJX43ALU5gqlJ4OZuyAQazbQTv6a3IZFbRHZXFBEHOb 6KP765WJbyDVSznGI1pyaJ26QwrkZYtq -----END CERTIFICATE-----Generated at Wed Sep 10 13:33:56 2025 by rpki-client