$ rpki-client -vvf rpki.apnic.net/member_repository/A911309C/B92E3540B2E911EBB4D9CC31C4F9AE02/0zOneHph_4bHRbR0CWr2muMaz_E.mft File: 0zOneHph_4bHRbR0CWr2muMaz_E.mft (raw, json) Hash identifier: q4LV/+TY1TUaUq6MMfnppQWKqfnVppgBRd4hysvBA88= Subject key identifier: 2B:50:CA:F2:D9:E4:30:1A:C6:9E:88:08:58:A7:E4:AA:CC:ED:2B:32 Authority key identifier: D3:33:A7:78:7A:61:FF:86:C7:45:B4:74:09:6A:F6:9A:E3:1A:CF:F1 Certificate issuer: /CN=A911309C/serialNumber=D333A7787A61FF86C745B474096AF69AE31ACFF1 Certificate serial: 05FC Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/0zOneHph_4bHRbR0CWr2muMaz_E.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911309C/B92E3540B2E911EBB4D9CC31C4F9AE02/0zOneHph_4bHRbR0CWr2muMaz_E.mft Manifest number: 05F5 Signing time: Mon 16 Jun 2025 22:35:47 +0000 Manifest this update: Mon 16 Jun 2025 22:35:46 +0000 Manifest next update: Mon 23 Jun 2025 22:35:46 +0000 Files and hashes: 1: 0zOneHph_4bHRbR0CWr2muMaz_E.crl (hash: Gt6ckwtjwa4ahIfg8hQi0Cc60nMusb7TzdcTPJUwWx8=) 2: 4BC6C1AE9CEF11EF82EF5C3FC4F9AE02.roa (hash: H8xIAhw48eYU+2s4QvMDpQyUyWlzmnbyud68jyECAL0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911309C/B92E3540B2E911EBB4D9CC31C4F9AE02/0zOneHph_4bHRbR0CWr2muMaz_E.crl rsync://rpki.apnic.net/member_repository/A911309C/B92E3540B2E911EBB4D9CC31C4F9AE02/0zOneHph_4bHRbR0CWr2muMaz_E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/0zOneHph_4bHRbR0CWr2muMaz_E.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 23 Jun 2025 21:21:59 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1532 (0x5fc) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911309C, serialNumber=D333A7787A61FF86C745B474096AF69AE31ACFF1 Validity Not Before: Jun 16 22:35:46 2025 GMT Not After : Jun 23 22:35:46 2025 GMT Subject: CN=68509c42-1aa6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cf:41:6e:10:0c:62:2c:61:5e:40:a5:6b:38:ae: fa:96:a8:77:e9:c9:42:67:e8:62:ac:7e:41:c4:26: cd:ec:6c:11:03:f4:11:8d:c9:ad:ca:3a:10:19:ed: c0:05:56:f1:09:f1:b1:10:7a:06:f5:08:d2:c3:fd: d8:4e:68:ee:cb:61:7f:f6:dc:22:9b:1e:bf:99:47: 24:d3:3c:47:01:02:30:93:49:5d:29:f4:40:6b:cc: 38:a8:f2:f2:05:a9:64:4f:09:48:c3:99:7f:ec:5f: b9:4b:f1:58:65:7b:22:79:78:73:33:3f:56:c1:bd: 4a:9d:4f:0a:c0:5e:d0:dc:e7:a7:00:7e:c7:54:c4: 13:b2:bc:54:e4:7d:03:35:b1:d3:cc:87:3e:22:0e: 0d:1e:af:ee:d2:b2:42:3c:07:ac:42:4d:5f:de:9e: 50:72:ee:6e:57:39:e2:c6:f1:a3:be:54:f0:bb:1a: 2d:6f:87:b7:87:52:b0:f4:89:fd:c3:f9:51:88:a4: e3:42:e0:ee:6f:07:e1:cc:39:5a:0c:b3:d2:6f:8a: dc:47:09:8c:20:f2:95:52:0a:ed:7d:64:e0:5c:09: bc:8a:42:9e:4f:dd:8e:6a:00:74:c6:18:59:41:3d: a1:36:a5:a3:b2:2e:8a:0a:00:1a:2a:dd:da:cc:02: 97:5b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2B:50:CA:F2:D9:E4:30:1A:C6:9E:88:08:58:A7:E4:AA:CC:ED:2B:32 X509v3 Authority Key Identifier: keyid:D3:33:A7:78:7A:61:FF:86:C7:45:B4:74:09:6A:F6:9A:E3:1A:CF:F1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911309C/B92E3540B2E911EBB4D9CC31C4F9AE02/0zOneHph_4bHRbR0CWr2muMaz_E.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/0zOneHph_4bHRbR0CWr2muMaz_E.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911309C/B92E3540B2E911EBB4D9CC31C4F9AE02/0zOneHph_4bHRbR0CWr2muMaz_E.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption c9:ad:71:78:fe:21:7f:13:72:59:02:47:21:2c:67:9f:f9:4b: f7:2d:58:4c:e6:56:4d:29:f7:90:f2:7a:a2:91:0d:3a:c3:71: 7d:64:2e:eb:06:c9:90:15:73:93:62:19:95:5f:ba:b1:0e:78: 7c:58:85:04:47:4f:8e:40:f2:73:17:cf:a2:93:c1:20:bd:d0: 8d:75:80:9c:ee:d9:fd:80:fe:68:d4:3d:75:17:57:42:d1:b4: fd:28:64:3c:1d:2e:46:e5:c2:d2:71:22:3e:87:ad:57:86:66: 80:9b:3f:cc:c0:61:7b:13:b3:6c:73:65:47:be:84:8c:9f:e3: 9c:f5:ac:7f:38:58:ac:2b:67:ea:dd:04:5c:8f:6b:61:66:01: ee:02:24:6e:b5:c8:e3:34:f6:b0:49:e0:11:d1:15:ac:2c:24: 0c:06:20:7e:d0:6f:39:85:0a:7d:da:b3:15:d6:97:44:dd:b9: a8:18:17:3e:dd:79:7f:0a:31:41:e3:c6:e5:40:fb:56:a6:5a: af:26:a3:d6:6c:06:66:64:81:eb:2f:77:45:f8:c8:b5:e7:0b: e3:fa:40:0e:84:dc:74:54:b2:7f:df:da:5a:ae:63:03:46:76: a0:5b:3d:03:65:b3:a1:30:62:39:54:27:7f:31:91:4d:7b:17: bd:96:09:8b -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBfwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MTMwOUMxMTAvBgNVBAUTKEQzMzNBNzc4N0E2MUZGODZDNzQ1QjQ3NDA5NkFGNjlB RTMxQUNGRjEwHhcNMjUwNjE2MjIzNTQ2WhcNMjUwNjIzMjIzNTQ2WjAYMRYwFAYD VQQDEw02ODUwOWM0Mi0xYWE2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAz0FuEAxiLGFeQKVrOK76lqh36clCZ+hirH5BxCbN7GwRA/QRjcmtyjoQGe3A BVbxCfGxEHoG9QjSw/3YTmjuy2F/9twimx6/mUck0zxHAQIwk0ldKfRAa8w4qPLy BalkTwlIw5l/7F+5S/FYZXsieXhzMz9Wwb1KnU8KwF7Q3OenAH7HVMQTsrxU5H0D NbHTzIc+Ig4NHq/u0rJCPAesQk1f3p5Qcu5uVznixvGjvlTwuxotb4e3h1Kw9In9 w/lRiKTjQuDubwfhzDlaDLPSb4rcRwmMIPKVUgrtfWTgXAm8ikKeT92OagB0xhhZ QT2hNqWjsi6KCgAaKt3azAKXWwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFCtQyvLZ 5DAaxp6ICFin5KrM7SsyMB8GA1UdIwQYMBaAFNMzp3h6Yf+Gx0W0dAlq9prjGs/x MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExMzA5Qy9COTJFMzU0MEIy RTkxMUVCQjREOUNDMzFDNEY5QUUwMi8wek9uZUhwaF80YkhSYlIwQ1dyMm11TWF6 X0UuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzB6T25lSHBoXzRiSFJiUjBDV3IybXVNYXpfRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx MzA5Qy9COTJFMzU0MEIyRTkxMUVCQjREOUNDMzFDNEY5QUUwMi8wek9uZUhwaF80 YkhSYlIwQ1dyMm11TWF6X0UubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQDJrXF4/iF/E3JZAkchLGef+Uv3LVhM5lZNKfeQ8nqikQ06w3F9ZC7r BsmQFXOTYhmVX7qxDnh8WIUER0+OQPJzF8+ik8EgvdCNdYCc7tn9gP5o1D11F1dC 0bT9KGQ8HS5G5cLScSI+h61XhmaAmz/MwGF7E7Nsc2VHvoSMn+Oc9ax/OFisK2fq 3QRcj2thZgHuAiRutcjjNPawSeAR0RWsLCQMBiB+0G85hQp92rMV1pdE3bmoGBc+ 3Xl/CjFB48blQPtWplqvJqPWbAZmZIHrL3dF+Mi15wvj+kAOhNx0VLJ/39parmMD RnagWz0DZbOhMGI5VCd/MZFNexe9lgmL -----END CERTIFICATE-----Generated at Tue Jun 17 01:32:58 2025 by rpki-client