$ rpki-client -vvf rpki.apnic.net/member_repository/A912519D/B8280664C75A11EB81E99E19C4F9AE02/ZrnYT0M2qJ2E0eAuggp5aG4eUsQ.mft File: ZrnYT0M2qJ2E0eAuggp5aG4eUsQ.mft (raw, json) Hash identifier: 5dxO8SWIzntnM3j+VQ52aBG5vUIWn3hDa5ANnHOU26Q= Subject key identifier: 87:A2:FD:F5:A5:C7:0D:04:08:2B:15:7C:75:E7:79:97:FA:8E:BF:C4 Authority key identifier: 66:B9:D8:4F:43:36:A8:9D:84:D1:E0:2E:82:0A:79:68:6E:1E:52:C4 Certificate issuer: /CN=A912519D/serialNumber=66B9D84F4336A89D84D1E02E820A79686E1E52C4 Certificate serial: 05C2 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ZrnYT0M2qJ2E0eAuggp5aG4eUsQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A912519D/B8280664C75A11EB81E99E19C4F9AE02/ZrnYT0M2qJ2E0eAuggp5aG4eUsQ.mft Manifest number: 05BD Signing time: Mon 16 Jun 2025 22:45:27 +0000 Manifest this update: Mon 16 Jun 2025 22:45:27 +0000 Manifest next update: Mon 23 Jun 2025 22:45:27 +0000 Files and hashes: 1: ZrnYT0M2qJ2E0eAuggp5aG4eUsQ.crl (hash: YiV+bpNYNkdKV/oeQMKr22SVuoTBm+Ngbl46h7RBcbo=) 2: 10581DEAC75D11EBB00EBD1AC4F9AE02.roa (hash: JmgPCoqfxLnmCXZ9Kqg1cLPcucyGnFbjlpBzEMSmBKg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A912519D/B8280664C75A11EB81E99E19C4F9AE02/ZrnYT0M2qJ2E0eAuggp5aG4eUsQ.crl rsync://rpki.apnic.net/member_repository/A912519D/B8280664C75A11EB81E99E19C4F9AE02/ZrnYT0M2qJ2E0eAuggp5aG4eUsQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ZrnYT0M2qJ2E0eAuggp5aG4eUsQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 23 Jun 2025 22:45:26 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1474 (0x5c2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A912519D, serialNumber=66B9D84F4336A89D84D1E02E820A79686E1E52C4 Validity Not Before: Jun 16 22:45:27 2025 GMT Not After : Jun 23 22:45:27 2025 GMT Subject: CN=68509e87-2dd6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d4:5e:42:5e:0c:b9:c3:13:56:36:e8:31:05:98: ac:95:06:fd:7b:47:47:c7:28:4f:09:d9:3b:38:75: e8:b1:23:8d:8b:2a:80:1d:7e:d3:9e:95:56:54:36: 2d:af:e0:14:c8:8c:5c:0a:8f:05:16:e2:00:f1:68: 83:47:7a:ad:bf:85:e3:67:97:3b:f1:d4:db:3b:21: 34:6d:4b:c7:3b:2d:9b:f8:2d:b1:32:c3:c5:d1:a3: 50:3a:4c:44:de:3c:c4:f6:0b:90:a8:1c:d7:10:2c: 61:fc:00:83:d3:96:33:88:87:ed:06:89:61:ac:e2: 8b:45:15:4e:e3:9b:25:93:5e:7a:7e:37:39:21:24: a0:5b:25:f4:e8:40:9b:38:60:8d:62:ac:d1:38:1b: 4a:23:52:8d:b7:0a:30:62:aa:6e:1d:4f:9c:f9:da: 51:d8:f3:f2:e5:0b:c2:7e:79:8b:59:61:4e:d9:4d: 1c:a3:4f:ce:dd:fc:fe:a7:41:dd:d9:fe:4b:40:5c: f8:9a:6d:83:c4:76:79:e7:69:3a:66:31:81:09:88: 14:d4:fd:4f:25:a2:0d:77:ba:07:d0:67:e2:74:66: 93:6d:c6:ff:de:8c:75:5a:0d:5d:92:8c:1b:4f:7f: cb:e8:7f:b3:49:d6:04:01:a3:ec:fe:ea:3d:70:4f: 80:f9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 87:A2:FD:F5:A5:C7:0D:04:08:2B:15:7C:75:E7:79:97:FA:8E:BF:C4 X509v3 Authority Key Identifier: keyid:66:B9:D8:4F:43:36:A8:9D:84:D1:E0:2E:82:0A:79:68:6E:1E:52:C4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A912519D/B8280664C75A11EB81E99E19C4F9AE02/ZrnYT0M2qJ2E0eAuggp5aG4eUsQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ZrnYT0M2qJ2E0eAuggp5aG4eUsQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A912519D/B8280664C75A11EB81E99E19C4F9AE02/ZrnYT0M2qJ2E0eAuggp5aG4eUsQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 7e:f7:78:80:cc:6c:5c:7e:c2:78:39:57:4f:7b:be:55:06:48: 77:31:89:9b:25:d3:0c:d3:e0:17:8f:ef:d1:c1:19:78:67:f2: a9:cf:c8:38:8c:11:be:2f:25:6b:30:f8:1c:44:10:b8:a0:6f: 4c:50:e6:31:70:59:65:40:f8:5c:92:70:14:cc:d3:01:ac:c8: d9:24:f5:83:b1:b2:9e:89:2e:3c:eb:5d:ca:b8:be:00:e5:d5: 12:02:3f:ba:60:3d:fc:3e:0e:c8:21:46:94:47:b0:3a:ea:40: 95:9d:b4:9f:0a:30:6d:95:56:c3:12:02:05:43:d5:4d:0b:d7: be:33:37:08:7b:15:cf:a3:12:1b:90:56:70:d6:78:ae:05:4a: ad:35:7b:38:4e:94:a4:f6:b6:cf:a8:e0:47:62:83:00:c5:b9: 22:0e:a6:dc:5f:b2:4b:43:f2:b0:77:25:fe:fc:2c:22:ff:09: b9:f1:31:73:d5:a9:9e:d0:e4:3d:4b:14:9f:3d:cc:db:8e:04: 94:f5:d4:06:78:59:3c:2c:91:ee:59:cc:71:09:cc:66:4f:4d: 6b:24:9d:11:fd:01:57:b2:a1:ac:10:5a:f7:96:9f:7a:d9:71: 5d:03:1c:61:79:56:05:0c:af:38:28:43:6c:11:4c:1e:35:f4: 03:0b:9d:fd -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBcIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MjUxOUQxMTAvBgNVBAUTKDY2QjlEODRGNDMzNkE4OUQ4NEQxRTAyRTgyMEE3OTY4 NkUxRTUyQzQwHhcNMjUwNjE2MjI0NTI3WhcNMjUwNjIzMjI0NTI3WjAYMRYwFAYD VQQDEw02ODUwOWU4Ny0yZGQ2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1F5CXgy5wxNWNugxBZislQb9e0dHxyhPCdk7OHXosSONiyqAHX7TnpVWVDYt r+AUyIxcCo8FFuIA8WiDR3qtv4XjZ5c78dTbOyE0bUvHOy2b+C2xMsPF0aNQOkxE 3jzE9guQqBzXECxh/ACD05YziIftBolhrOKLRRVO45slk156fjc5ISSgWyX06ECb OGCNYqzROBtKI1KNtwowYqpuHU+c+dpR2PPy5QvCfnmLWWFO2U0co0/O3fz+p0Hd 2f5LQFz4mm2DxHZ552k6ZjGBCYgU1P1PJaINd7oH0GfidGaTbcb/3ox1Wg1dkowb T3/L6H+zSdYEAaPs/uo9cE+A+QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFIei/fWl xw0ECCsVfHXneZf6jr/EMB8GA1UdIwQYMBaAFGa52E9DNqidhNHgLoIKeWhuHlLE MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyNTE5RC9CODI4MDY2NEM3 NUExMUVCODFFOTlFMTlDNEY5QUUwMi9acm5ZVDBNMnFKMkUwZUF1Z2dwNWFHNGVV c1EuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1pybllUME0ycUoyRTBlQXVnZ3A1YUc0ZVVzUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy NTE5RC9CODI4MDY2NEM3NUExMUVCODFFOTlFMTlDNEY5QUUwMi9acm5ZVDBNMnFK MkUwZUF1Z2dwNWFHNGVVc1EubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB+93iAzGxcfsJ4OVdPe75VBkh3MYmbJdMM0+AXj+/RwRl4Z/Kpz8g4 jBG+LyVrMPgcRBC4oG9MUOYxcFllQPhcknAUzNMBrMjZJPWDsbKeiS48613KuL4A 5dUSAj+6YD38Pg7IIUaUR7A66kCVnbSfCjBtlVbDEgIFQ9VNC9e+MzcIexXPoxIb kFZw1niuBUqtNXs4TpSk9rbPqOBHYoMAxbkiDqbcX7JLQ/KwdyX+/Cwi/wm58TFz 1ame0OQ9SxSfPczbjgSU9dQGeFk8LJHuWcxxCcxmT01rJJ0R/QFXsqGsEFr3lp96 2XFdAxxheVYFDK84KENsEUweNfQDC539 -----END CERTIFICATE-----Generated at Wed Jun 18 01:46:29 2025 by rpki-client