$ rpki-client -vvf rpki.apnic.net/member_repository/A917CB63/E1B054FC1DA711E2B688EBA108B02CD2/ZuoPg73TYyv_GUALOhum_t_8VYc.mft File: ZuoPg73TYyv_GUALOhum_t_8VYc.mft (raw, json) Hash identifier: WdKtl2JqWZRDSHg11KKAKkIplPW68pMa2RxXpK2fVRA= Subject key identifier: 95:1F:B5:AE:49:61:36:F2:8C:BD:ED:94:37:79:4B:7A:0C:FB:C0:61 Authority key identifier: 66:EA:0F:83:BD:D3:63:2B:FF:19:40:0B:3A:1B:A6:FE:DF:FC:55:87 Certificate issuer: /CN=A917CB63/serialNumber=66EA0F83BDD3632BFF19400B3A1BA6FEDFFC5587 Certificate serial: 34CB Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ZuoPg73TYyv_GUALOhum_t_8VYc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917CB63/E1B054FC1DA711E2B688EBA108B02CD2/ZuoPg73TYyv_GUALOhum_t_8VYc.mft Manifest number: 34BF Signing time: Sun 24 Aug 2025 15:13:14 +0000 Manifest this update: Sun 24 Aug 2025 15:13:13 +0000 Manifest next update: Sun 31 Aug 2025 15:13:13 +0000 Files and hashes: 1: ZuoPg73TYyv_GUALOhum_t_8VYc.crl (hash: KfzTwF28QY4rJnqDcyoBxVIh4WBSff2kuyqZi/BcZms=) 2: 1190361AAF1B11E7B89F3883C4F9AE02.roa (hash: Yhv6SLVoZ0lTl3VQ8oBTiyjwIMld5GdKG4lLfPu9iQU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917CB63/E1B054FC1DA711E2B688EBA108B02CD2/ZuoPg73TYyv_GUALOhum_t_8VYc.crl rsync://rpki.apnic.net/member_repository/A917CB63/E1B054FC1DA711E2B688EBA108B02CD2/ZuoPg73TYyv_GUALOhum_t_8VYc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ZuoPg73TYyv_GUALOhum_t_8VYc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 31 Aug 2025 15:13:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13515 (0x34cb) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917CB63, serialNumber=66EA0F83BDD3632BFF19400B3A1BA6FEDFFC5587 Validity Not Before: Aug 24 15:13:13 2025 GMT Not After : Aug 31 15:13:13 2025 GMT Subject: CN=68ab2c0a-1432 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c6:2e:b2:02:c5:6d:59:93:dd:0e:4b:89:4f:11: a9:dd:68:e9:27:dd:bb:2d:56:d0:25:8a:15:1d:c4: 5e:c3:df:6d:f4:1c:06:6f:ff:46:95:a1:bf:2d:f3: a6:5c:21:ac:41:4a:54:af:91:ba:13:9d:d1:fb:a4: 7d:69:65:ba:40:14:49:14:7a:93:05:f5:8a:38:5a: 24:8c:81:b3:d8:0b:4c:63:5b:6a:04:b6:a7:0b:5f: c5:76:36:c4:e0:dd:4d:b5:ce:e5:0c:50:47:6e:06: 79:1c:41:40:7b:73:87:31:31:50:6f:8a:df:80:7a: ba:78:b7:82:71:e9:71:63:ac:d5:e8:49:d7:86:db: c3:c2:b0:fd:05:e3:13:6a:cd:15:71:ce:16:18:cb: 3e:db:a4:d2:7d:8e:30:e5:c9:91:d2:4f:e2:bc:81: 2a:39:7a:71:a4:5d:4d:c3:c4:67:68:45:4a:80:25: 3e:20:af:5f:d0:a4:0c:a6:1d:fd:f1:dd:96:b3:36: 6b:d4:8f:ad:be:4b:cd:94:ee:2b:89:0d:de:65:0e: ff:94:90:b6:92:d8:81:06:06:41:23:3b:cb:01:1a: 88:74:a9:b5:3d:aa:74:69:f5:98:55:42:4a:4a:33: ec:06:fe:55:8e:2b:ba:5e:64:9d:0f:99:b5:0a:0a: 9d:cb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 95:1F:B5:AE:49:61:36:F2:8C:BD:ED:94:37:79:4B:7A:0C:FB:C0:61 X509v3 Authority Key Identifier: keyid:66:EA:0F:83:BD:D3:63:2B:FF:19:40:0B:3A:1B:A6:FE:DF:FC:55:87 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917CB63/E1B054FC1DA711E2B688EBA108B02CD2/ZuoPg73TYyv_GUALOhum_t_8VYc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ZuoPg73TYyv_GUALOhum_t_8VYc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917CB63/E1B054FC1DA711E2B688EBA108B02CD2/ZuoPg73TYyv_GUALOhum_t_8VYc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 3c:0d:9e:d9:76:7e:8d:60:fa:90:6d:83:84:12:c0:27:d7:42: fd:a5:d4:30:33:11:2e:08:db:48:cf:90:bc:47:45:6b:43:a6: d2:0d:a8:1a:d9:84:64:9a:b7:38:26:df:7e:22:7e:90:10:9d: b1:2d:de:ad:7e:80:48:79:d3:4e:64:75:f5:5d:58:0f:50:ef: 6c:14:94:12:4f:64:f0:18:87:0d:a7:10:71:7d:86:6f:25:d3: bd:15:59:7f:01:1b:33:02:03:db:fe:0b:7f:80:8e:e8:0a:ec: 35:df:8d:4c:85:fe:67:bf:ba:a1:3f:92:16:0b:88:0a:42:2b: f3:6a:cf:6a:85:89:b9:d4:16:09:d2:eb:6e:68:15:c9:b5:af: c1:28:c1:5c:e5:4f:aa:4b:d8:6c:26:af:92:93:02:09:fb:fc: 08:4a:5d:91:85:27:dd:f3:3a:28:9f:92:2f:8a:25:72:61:ba: 05:1b:64:10:89:f6:67:de:77:88:e7:28:4a:06:75:9b:5d:9d: f4:39:28:0b:41:48:31:aa:64:1c:3b:87:f7:a0:62:3b:5a:0c: 5d:fc:12:d0:e9:5a:05:72:0c:88:0c:7e:d2:1b:4f:5a:51:10: 31:f2:38:52:a8:3a:e4:ac:e2:f2:7d:d6:ac:a7:4b:65:43:7c: f2:40:99:b2 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICNMswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0NCNjMxMTAvBgNVBAUTKDY2RUEwRjgzQkREMzYzMkJGRjE5NDAwQjNBMUJBNkZF REZGQzU1ODcwHhcNMjUwODI0MTUxMzEzWhcNMjUwODMxMTUxMzEzWjAYMRYwFAYD VQQDEw02OGFiMmMwYS0xNDMyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxi6yAsVtWZPdDkuJTxGp3WjpJ927LVbQJYoVHcRew99t9BwGb/9GlaG/LfOm XCGsQUpUr5G6E53R+6R9aWW6QBRJFHqTBfWKOFokjIGz2AtMY1tqBLanC1/FdjbE 4N1Ntc7lDFBHbgZ5HEFAe3OHMTFQb4rfgHq6eLeCcelxY6zV6EnXhtvDwrD9BeMT as0Vcc4WGMs+26TSfY4w5cmR0k/ivIEqOXpxpF1Nw8RnaEVKgCU+IK9f0KQMph39 8d2WszZr1I+tvkvNlO4riQ3eZQ7/lJC2ktiBBgZBIzvLARqIdKm1Pap0afWYVUJK SjPsBv5Vjiu6XmSdD5m1CgqdywIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJUfta5J YTbyjL3tlDd5S3oM+8BhMB8GA1UdIwQYMBaAFGbqD4O902Mr/xlACzobpv7f/FWH MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3Q0I2My9FMUIwNTRGQzFE QTcxMUUyQjY4OEVCQTEwOEIwMkNEMi9adW9QZzczVFl5dl9HVUFMT2h1bV90XzhW WWMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1p1b1BnNzNUWXl2X0dVQUxPaHVtX3RfOFZZYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 Q0I2My9FMUIwNTRGQzFEQTcxMUUyQjY4OEVCQTEwOEIwMkNEMi9adW9QZzczVFl5 dl9HVUFMT2h1bV90XzhWWWMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA8DZ7Zdn6NYPqQbYOEEsAn10L9pdQwMxEuCNtIz5C8R0VrQ6bSDaga 2YRkmrc4Jt9+In6QEJ2xLd6tfoBIedNOZHX1XVgPUO9sFJQST2TwGIcNpxBxfYZv JdO9FVl/ARszAgPb/gt/gI7oCuw1341Mhf5nv7qhP5IWC4gKQivzas9qhYm51BYJ 0utuaBXJta/BKMFc5U+qS9hsJq+SkwIJ+/wISl2RhSfd8zoon5IviiVyYboFG2QQ ifZn3neI5yhKBnWbXZ30OSgLQUgxqmQcO4f3oGI7Wgxd/BLQ6VoFcgyIDH7SG09a URAx8jhSqDrkrOLyfdasp0tlQ3zyQJmy -----END CERTIFICATE-----Generated at Sun Aug 24 21:29:12 2025 by rpki-client