$ rpki-client -vvf rpki.apnic.net/member_repository/A9136C5E/3EA6A250B97011ED8918467CC4F9AE02/znA-TvnfLr44ZQpwSkoBnCpmQ1A.mft File: znA-TvnfLr44ZQpwSkoBnCpmQ1A.mft (raw, json) Hash identifier: V0D+IaD4I2LneELJNl5+ZJtFfrtyYTeLE6YdmF/xwIY= Subject key identifier: 8B:1A:08:EE:32:EE:D5:19:B1:D5:1F:E7:9B:26:D8:7E:09:E7:9C:F6 Authority key identifier: CE:70:3E:4E:F9:DF:2E:BE:38:65:0A:70:4A:4A:01:9C:2A:66:43:50 Certificate issuer: /CN=A9136C5E/serialNumber=CE703E4EF9DF2EBE38650A704A4A019C2A664350 Certificate serial: 01B2 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/znA-TvnfLr44ZQpwSkoBnCpmQ1A.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9136C5E/3EA6A250B97011ED8918467CC4F9AE02/znA-TvnfLr44ZQpwSkoBnCpmQ1A.mft Manifest number: 01AE Signing time: Sun 15 Jun 2025 02:26:35 +0000 Manifest this update: Sun 15 Jun 2025 02:26:34 +0000 Manifest next update: Sun 22 Jun 2025 02:26:34 +0000 Files and hashes: 1: znA-TvnfLr44ZQpwSkoBnCpmQ1A.crl (hash: S0FqnUDiFRro2bdrc+6oQtpA/Y5XbqRrbIxZ76W/HC0=) 2: 9BCEEFF4BC6911ED9B0FC554C4F9AE02.roa (hash: vkUKnag58zCpuCP8+f6HBj43+NKzxFLQMFl2RAEd1t8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9136C5E/3EA6A250B97011ED8918467CC4F9AE02/znA-TvnfLr44ZQpwSkoBnCpmQ1A.crl rsync://rpki.apnic.net/member_repository/A9136C5E/3EA6A250B97011ED8918467CC4F9AE02/znA-TvnfLr44ZQpwSkoBnCpmQ1A.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/znA-TvnfLr44ZQpwSkoBnCpmQ1A.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 22 Jun 2025 02:26:34 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 434 (0x1b2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9136C5E, serialNumber=CE703E4EF9DF2EBE38650A704A4A019C2A664350 Validity Not Before: Jun 15 02:26:34 2025 GMT Not After : Jun 22 02:26:34 2025 GMT Subject: CN=684e2f5b-582e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9b:d5:40:f4:a6:4b:5b:cc:12:20:36:63:3b:1c: 9b:5e:a7:a4:d3:30:3d:4d:48:4b:83:22:37:22:7a: b3:5b:f0:a0:a8:ae:11:40:b4:9b:86:b4:0c:73:4a: 18:e0:18:f5:ec:b1:50:62:34:94:d6:29:d9:67:2f: 90:e5:50:e1:ed:55:13:da:4b:3a:86:fd:1c:9a:e0: 48:88:aa:84:4d:69:40:ae:62:5f:f9:f2:eb:69:ab: b6:2b:80:c7:06:86:6a:9c:12:92:10:5e:ce:df:c7: bf:27:3c:38:7e:b4:62:7a:25:49:3d:79:01:35:2b: 4d:b4:b4:a9:bc:bc:ff:11:c4:60:a0:f9:60:67:84: bb:d8:07:08:82:98:a0:1f:0c:29:01:73:36:75:64: c2:f6:7c:8d:a4:0b:f6:b5:99:d0:36:d6:b6:97:1d: e2:25:96:c8:b6:b4:72:e0:c0:3b:1b:1d:16:61:d9: cc:d9:03:85:88:8a:bc:80:16:1b:19:b1:50:94:87: 57:a1:4d:9e:9a:12:5e:8a:4c:e5:85:30:54:da:22: 73:81:1a:2b:3f:62:44:30:6b:1d:75:32:9d:61:74: db:0a:fe:72:65:67:a0:11:05:7c:f1:b2:54:1e:21: 5b:50:be:a6:12:3f:13:24:e4:a6:8b:7f:d0:42:b9: 6c:01 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8B:1A:08:EE:32:EE:D5:19:B1:D5:1F:E7:9B:26:D8:7E:09:E7:9C:F6 X509v3 Authority Key Identifier: keyid:CE:70:3E:4E:F9:DF:2E:BE:38:65:0A:70:4A:4A:01:9C:2A:66:43:50 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9136C5E/3EA6A250B97011ED8918467CC4F9AE02/znA-TvnfLr44ZQpwSkoBnCpmQ1A.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/znA-TvnfLr44ZQpwSkoBnCpmQ1A.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9136C5E/3EA6A250B97011ED8918467CC4F9AE02/znA-TvnfLr44ZQpwSkoBnCpmQ1A.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 4e:a3:fd:39:fd:57:94:d9:b9:31:bc:47:36:25:b9:b9:26:b8: 55:6a:40:f3:96:c1:f4:bd:62:c1:46:4e:1b:78:68:b8:5d:27: 86:9f:61:a0:78:90:00:3d:61:62:c3:f9:35:1a:75:b6:c5:19: 25:03:36:57:66:64:2d:f6:b4:6f:c4:83:ce:f1:21:39:b8:b6: b2:7c:db:ca:88:07:c4:8b:1b:12:89:7f:67:ea:2c:c1:59:45: ed:51:30:3c:1a:8f:fc:41:ac:ff:81:32:72:1f:bb:d7:ac:7b: f2:2c:f5:49:01:21:40:6d:33:28:a3:65:0c:b6:1a:94:28:c6: cb:30:d8:9e:7f:fb:f5:50:30:3b:24:96:79:78:64:c5:48:6c: e0:15:ad:e4:56:b3:44:a7:23:c5:57:a4:db:83:1b:cf:df:f7: 89:29:da:bd:70:18:3d:ca:6f:3a:fb:ad:65:aa:e3:cf:4d:f4: c5:f3:fd:78:b3:4b:8d:25:57:68:95:79:ac:5c:96:62:5b:d2: d4:c3:26:73:b6:c3:cb:25:84:a6:5c:f8:a8:02:f3:3e:6f:2b: 2f:f6:11:f3:61:a9:48:61:9d:ca:9b:1f:63:6d:9a:0e:73:d9: d5:ac:58:9d:7f:0c:ee:9a:95:d8:27:a1:4a:24:72:f2:7a:14: 16:dd:2b:65 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAbIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MzZDNUUxMTAvBgNVBAUTKENFNzAzRTRFRjlERjJFQkUzODY1MEE3MDRBNEEwMTlD MkE2NjQzNTAwHhcNMjUwNjE1MDIyNjM0WhcNMjUwNjIyMDIyNjM0WjAYMRYwFAYD VQQDEw02ODRlMmY1Yi01ODJlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAm9VA9KZLW8wSIDZjOxybXqek0zA9TUhLgyI3InqzW/CgqK4RQLSbhrQMc0oY 4Bj17LFQYjSU1inZZy+Q5VDh7VUT2ks6hv0cmuBIiKqETWlArmJf+fLraau2K4DH BoZqnBKSEF7O38e/Jzw4frRieiVJPXkBNStNtLSpvLz/EcRgoPlgZ4S72AcIgpig HwwpAXM2dWTC9nyNpAv2tZnQNta2lx3iJZbItrRy4MA7Gx0WYdnM2QOFiIq8gBYb GbFQlIdXoU2emhJeikzlhTBU2iJzgRorP2JEMGsddTKdYXTbCv5yZWegEQV88bJU HiFbUL6mEj8TJOSmi3/QQrlsAQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFIsaCO4y 7tUZsdUf55sm2H4J55z2MB8GA1UdIwQYMBaAFM5wPk753y6+OGUKcEpKAZwqZkNQ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzNkM1RS8zRUE2QTI1MEI5 NzAxMUVEODkxODQ2N0NDNEY5QUUwMi96bkEtVHZuZkxyNDRaUXB3U2tvQm5DcG1R MUEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3puQS1Udm5mTHI0NFpRcHdTa29CbkNwbVExQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz NkM1RS8zRUE2QTI1MEI5NzAxMUVEODkxODQ2N0NDNEY5QUUwMi96bkEtVHZuZkxy NDRaUXB3U2tvQm5DcG1RMUEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBOo/05/VeU2bkxvEc2Jbm5JrhVakDzlsH0vWLBRk4beGi4XSeGn2Gg eJAAPWFiw/k1GnW2xRklAzZXZmQt9rRvxIPO8SE5uLayfNvKiAfEixsSiX9n6izB WUXtUTA8Go/8Qaz/gTJyH7vXrHvyLPVJASFAbTMoo2UMthqUKMbLMNief/v1UDA7 JJZ5eGTFSGzgFa3kVrNEpyPFV6TbgxvP3/eJKdq9cBg9ym86+61lquPPTfTF8/14 s0uNJVdolXmsXJZiW9LUwyZztsPLJYSmXPioAvM+bysv9hHzYalIYZ3Kmx9jbZoO c9nVrFidfwzumpXYJ6FKJHLyehQW3Stl -----END CERTIFICATE-----Generated at Sun Jun 15 09:58:56 2025 by rpki-client