$ rpki-client -vvf rpki.apnic.net/member_repository/A911309C/B92E3540B2E911EBB4D9CC31C4F9AE02/0zOneHph_4bHRbR0CWr2muMaz_E.mft File: 0zOneHph_4bHRbR0CWr2muMaz_E.mft (raw, json) Hash identifier: 9gAtaPR0LtaD2XovRq39YOLLX+8nkMXXY6ortlOYNGc= Subject key identifier: 03:D7:7C:4B:90:78:CA:93:AD:B4:71:21:06:32:82:88:F3:BD:EA:E4 Authority key identifier: D3:33:A7:78:7A:61:FF:86:C7:45:B4:74:09:6A:F6:9A:E3:1A:CF:F1 Certificate issuer: /CN=A911309C/serialNumber=D333A7787A61FF86C745B474096AF69AE31ACFF1 Certificate serial: 0616 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/0zOneHph_4bHRbR0CWr2muMaz_E.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911309C/B92E3540B2E911EBB4D9CC31C4F9AE02/0zOneHph_4bHRbR0CWr2muMaz_E.mft Manifest number: 060F Signing time: Wed 06 Aug 2025 23:15:28 +0000 Manifest this update: Wed 06 Aug 2025 23:15:27 +0000 Manifest next update: Wed 13 Aug 2025 23:15:27 +0000 Files and hashes: 1: 0zOneHph_4bHRbR0CWr2muMaz_E.crl (hash: F1mP061NQs6i5fF2YJoGHW+Q7tdL7ZjCISQRvTrZla8=) 2: 4BC6C1AE9CEF11EF82EF5C3FC4F9AE02.roa (hash: H8xIAhw48eYU+2s4QvMDpQyUyWlzmnbyud68jyECAL0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911309C/B92E3540B2E911EBB4D9CC31C4F9AE02/0zOneHph_4bHRbR0CWr2muMaz_E.crl rsync://rpki.apnic.net/member_repository/A911309C/B92E3540B2E911EBB4D9CC31C4F9AE02/0zOneHph_4bHRbR0CWr2muMaz_E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/0zOneHph_4bHRbR0CWr2muMaz_E.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 Aug 2025 23:15:26 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1558 (0x616) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911309C, serialNumber=D333A7787A61FF86C745B474096AF69AE31ACFF1 Validity Not Before: Aug 6 23:15:27 2025 GMT Not After : Aug 13 23:15:27 2025 GMT Subject: CN=6893e20f-3d1f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f4:59:11:4f:b3:18:65:ba:30:ee:27:b9:56:3b: a2:8c:4d:b8:8a:47:a7:ee:f9:f0:03:9f:1e:2f:cf: 1b:42:d1:1b:17:48:e0:4f:4f:87:0b:61:b7:e6:db: 36:95:7c:c0:dd:ea:ec:fb:1c:a5:7d:e8:28:d4:ca: 17:da:08:98:ab:a0:1d:3b:cd:1e:21:eb:b9:27:9c: bc:29:3a:31:dd:78:f7:9d:b1:8d:a2:b8:f3:a1:d9: c4:22:b4:32:38:7f:81:f2:88:7a:05:8f:05:99:3a: 9f:ed:31:74:77:9e:f9:b0:f4:40:ca:d9:94:70:59: 6e:7a:02:c9:ba:88:c4:c4:d6:1e:a1:00:f2:34:f0: b6:03:31:64:25:ee:35:8f:ae:26:f1:83:24:be:73: 20:01:49:84:bd:86:e7:8e:18:ae:b6:ec:30:b6:dd: ff:40:dc:95:06:27:43:f7:ea:87:91:7c:e4:51:9a: 27:da:00:ac:1a:c3:b8:11:49:5c:94:cc:54:61:dd: 71:44:97:58:ba:da:18:79:d6:65:48:0a:6a:b1:0d: ce:d3:9b:11:e3:59:43:92:c8:84:53:52:22:20:9c: 04:b7:de:72:94:10:a9:2e:77:6d:e2:8f:08:40:68: 3e:a6:6a:86:eb:43:fc:4b:2f:86:50:95:ae:21:c4: 4f:4b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 03:D7:7C:4B:90:78:CA:93:AD:B4:71:21:06:32:82:88:F3:BD:EA:E4 X509v3 Authority Key Identifier: keyid:D3:33:A7:78:7A:61:FF:86:C7:45:B4:74:09:6A:F6:9A:E3:1A:CF:F1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911309C/B92E3540B2E911EBB4D9CC31C4F9AE02/0zOneHph_4bHRbR0CWr2muMaz_E.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/0zOneHph_4bHRbR0CWr2muMaz_E.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911309C/B92E3540B2E911EBB4D9CC31C4F9AE02/0zOneHph_4bHRbR0CWr2muMaz_E.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 65:7b:d3:6b:1b:7e:f8:05:db:0a:57:17:b6:1c:b5:fc:75:51: 08:b9:56:48:82:95:14:49:43:ab:ad:d6:ef:c1:c5:f3:46:f2: ac:fe:73:fa:b4:54:01:18:26:15:e9:c0:11:25:4b:67:47:61: ef:28:ee:3b:2c:f6:55:51:11:33:4b:26:09:54:73:3c:0d:bc: b1:ba:33:4c:17:cd:fb:9f:7d:87:42:43:57:b8:4b:a0:37:64: 73:c4:3c:36:7e:35:08:3c:74:a4:42:af:9a:82:f7:bc:e6:72: dc:4c:d0:a4:82:a4:13:c5:a6:99:db:22:cc:4e:48:8f:01:a5: 57:a0:4e:7c:17:5e:37:0b:9d:f4:e9:0e:5f:a0:3e:51:9a:22: 5b:27:5c:0d:53:3a:2e:a9:93:db:b5:89:c8:85:24:15:53:d9: 2b:f0:b4:a3:a9:c8:38:b6:fd:d9:10:47:ed:3b:45:c9:d5:1e: 68:7e:48:e3:a5:ae:5d:89:a1:35:20:d0:e5:28:4e:3a:e0:00: 5b:f8:98:94:f2:32:3c:cf:75:3b:61:d2:49:15:35:67:5d:b6: 08:3a:ac:1f:c3:1e:6f:71:be:d9:4e:65:1a:a5:ea:62:de:24: cc:58:67:81:38:25:35:07:38:63:47:21:0d:57:fb:b3:dc:16: 8e:f3:af:a9 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBhYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MTMwOUMxMTAvBgNVBAUTKEQzMzNBNzc4N0E2MUZGODZDNzQ1QjQ3NDA5NkFGNjlB RTMxQUNGRjEwHhcNMjUwODA2MjMxNTI3WhcNMjUwODEzMjMxNTI3WjAYMRYwFAYD VQQDEw02ODkzZTIwZi0zZDFmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA9FkRT7MYZbow7ie5VjuijE24iken7vnwA58eL88bQtEbF0jgT0+HC2G35ts2 lXzA3ers+xylfego1MoX2giYq6AdO80eIeu5J5y8KTox3Xj3nbGNorjzodnEIrQy OH+B8oh6BY8FmTqf7TF0d575sPRAytmUcFluegLJuojExNYeoQDyNPC2AzFkJe41 j64m8YMkvnMgAUmEvYbnjhiutuwwtt3/QNyVBidD9+qHkXzkUZon2gCsGsO4EUlc lMxUYd1xRJdYutoYedZlSApqsQ3O05sR41lDksiEU1IiIJwEt95ylBCpLndt4o8I QGg+pmqG60P8Sy+GUJWuIcRPSwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFAPXfEuQ eMqTrbRxIQYygojzverkMB8GA1UdIwQYMBaAFNMzp3h6Yf+Gx0W0dAlq9prjGs/x MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExMzA5Qy9COTJFMzU0MEIy RTkxMUVCQjREOUNDMzFDNEY5QUUwMi8wek9uZUhwaF80YkhSYlIwQ1dyMm11TWF6 X0UuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzB6T25lSHBoXzRiSFJiUjBDV3IybXVNYXpfRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx MzA5Qy9COTJFMzU0MEIyRTkxMUVCQjREOUNDMzFDNEY5QUUwMi8wek9uZUhwaF80 YkhSYlIwQ1dyMm11TWF6X0UubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBle9NrG374BdsKVxe2HLX8dVEIuVZIgpUUSUOrrdbvwcXzRvKs/nP6 tFQBGCYV6cARJUtnR2HvKO47LPZVUREzSyYJVHM8DbyxujNMF837n32HQkNXuEug N2RzxDw2fjUIPHSkQq+agve85nLcTNCkgqQTxaaZ2yLMTkiPAaVXoE58F143C530 6Q5foD5RmiJbJ1wNUzouqZPbtYnIhSQVU9kr8LSjqcg4tv3ZEEftO0XJ1R5ofkjj pa5diaE1INDlKE464ABb+JiU8jI8z3U7YdJJFTVnXbYIOqwfwx5vcb7ZTmUapepi 3iTMWGeBOCU1BzhjRyENV/uz3BaO86+p -----END CERTIFICATE-----Generated at Fri Aug 8 12:59:12 2025 by rpki-client