$ rpki-client -vvf rpki.apnic.net/member_repository/A9143FF5/013969B4201C11EC8A173C2CC4F9AE02/pZmI7E1t1bpqMPhmUatWLBimo04.mft File: pZmI7E1t1bpqMPhmUatWLBimo04.mft (raw, json) Hash identifier: MT/Y6X4M58oju2Ntc9pzcLQx2oGhUFmrWxktw14MaqA= Subject key identifier: 01:74:E8:A5:BF:7B:FB:8D:A4:3A:5B:A9:E9:C9:3C:3B:11:B1:28:C1 Authority key identifier: A5:99:88:EC:4D:6D:D5:BA:6A:30:F8:66:51:AB:56:2C:18:A6:A3:4E Certificate issuer: /CN=A9143FF5/serialNumber=A59988EC4D6DD5BA6A30F86651AB562C18A6A34E Certificate serial: 04E0 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pZmI7E1t1bpqMPhmUatWLBimo04.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9143FF5/013969B4201C11EC8A173C2CC4F9AE02/pZmI7E1t1bpqMPhmUatWLBimo04.mft Manifest number: 04DB Signing time: Mon 16 Jun 2025 23:23:16 +0000 Manifest this update: Mon 16 Jun 2025 23:23:15 +0000 Manifest next update: Mon 23 Jun 2025 23:23:15 +0000 Files and hashes: 1: pZmI7E1t1bpqMPhmUatWLBimo04.crl (hash: vNUhl/9rzVFzSVsHdDcPqZOOzFaYr7Z5OdTTUD8AFn0=) 2: A027E062300911ECAE581534C4F9AE02.roa (hash: krTyx4GXgFlPzZ2i1hVEEfK54ydEVTwtrf/GVqS5/WA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9143FF5/013969B4201C11EC8A173C2CC4F9AE02/pZmI7E1t1bpqMPhmUatWLBimo04.crl rsync://rpki.apnic.net/member_repository/A9143FF5/013969B4201C11EC8A173C2CC4F9AE02/pZmI7E1t1bpqMPhmUatWLBimo04.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pZmI7E1t1bpqMPhmUatWLBimo04.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 23 Jun 2025 23:23:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1248 (0x4e0) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9143FF5, serialNumber=A59988EC4D6DD5BA6A30F86651AB562C18A6A34E Validity Not Before: Jun 16 23:23:15 2025 GMT Not After : Jun 23 23:23:15 2025 GMT Subject: CN=6850a763-97dd Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:f8:c8:cf:4b:43:39:fd:e1:85:91:69:d8:48: f6:c8:bd:41:76:f7:91:50:ad:2a:99:d2:11:2e:f1: 38:f1:98:49:dc:6d:e3:3e:dc:b7:c4:8b:ce:dd:f5: 98:c8:2f:5b:f2:32:5b:aa:97:cb:6a:ae:89:f1:19: 4f:70:c8:d3:6e:30:e0:be:83:7b:58:f0:44:c0:9f: 1a:07:8d:44:06:70:c2:87:5b:96:5f:84:78:28:eb: 66:69:4e:16:47:92:42:1d:3a:bf:6d:91:72:d6:19: 8f:01:61:7d:b2:cf:a6:88:a2:fd:41:cd:6b:e6:3c: d3:2e:1c:4a:15:ac:1e:79:b3:7d:43:64:74:28:69: 25:7f:91:4f:ab:d7:ba:c7:cb:d2:b7:76:af:af:e4: 09:8c:53:61:50:54:55:3f:54:e3:5f:bd:8e:90:52: 7e:eb:1e:91:82:9c:84:fc:63:3c:10:e5:9b:c3:88: a7:02:53:ea:a7:d2:5f:1c:3a:48:29:15:26:1f:22: 9c:4f:52:59:73:36:25:4b:fd:08:90:77:d4:3a:2a: 6b:98:ce:4e:cf:06:89:2b:35:1e:69:bd:ad:37:e1: 33:cb:a0:7c:a4:95:3d:88:bc:db:9f:51:5f:a5:3b: 09:96:eb:b5:53:4a:e4:ac:af:ac:13:2c:11:e0:c7: 5a:59 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 01:74:E8:A5:BF:7B:FB:8D:A4:3A:5B:A9:E9:C9:3C:3B:11:B1:28:C1 X509v3 Authority Key Identifier: keyid:A5:99:88:EC:4D:6D:D5:BA:6A:30:F8:66:51:AB:56:2C:18:A6:A3:4E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9143FF5/013969B4201C11EC8A173C2CC4F9AE02/pZmI7E1t1bpqMPhmUatWLBimo04.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pZmI7E1t1bpqMPhmUatWLBimo04.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9143FF5/013969B4201C11EC8A173C2CC4F9AE02/pZmI7E1t1bpqMPhmUatWLBimo04.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 99:a0:b2:81:3d:1b:05:82:17:6d:e1:95:d2:4f:bb:db:f8:38: 73:06:c3:21:11:0c:61:5e:d9:07:00:23:d5:2e:fa:96:ae:d8: fe:e6:2f:65:e8:2b:37:2d:04:59:1a:f6:d5:c0:8d:85:2d:f7: 5e:9e:78:73:fa:70:27:ab:b3:fc:29:4d:88:58:dc:ee:2f:8a: ca:60:80:95:d1:70:ad:49:df:7d:15:ba:d7:03:d3:21:eb:4c: 72:38:1e:64:20:33:46:be:ca:7e:d1:5e:00:9b:eb:22:ff:da: 26:83:de:fa:ee:9d:b8:ae:24:b6:5d:ed:20:37:e8:5f:66:fc: db:31:64:31:42:84:6d:c9:be:15:77:13:35:2d:69:27:8e:a7: 9e:bc:db:d8:57:cd:cd:43:7e:81:82:7b:07:2d:78:dd:65:e0: b4:1b:0e:fc:4f:be:a5:bb:8c:0c:e0:cd:c6:6d:e4:38:a0:25: d2:f4:2a:67:d0:14:64:65:80:3e:90:e7:45:59:fd:52:e8:03: 41:f2:06:6b:ec:9a:a3:92:ff:ed:6e:b2:2e:26:3e:97:cc:00: 6d:6d:f9:d3:cd:3f:52:0d:fc:bf:c5:21:8a:37:c5:55:71:d8: e2:53:bc:57:45:37:e3:aa:2d:d5:bd:98:f5:cd:bf:3c:35:82: fa:7a:36:8e -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBOAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDNGRjUxMTAvBgNVBAUTKEE1OTk4OEVDNEQ2REQ1QkE2QTMwRjg2NjUxQUI1NjJD MThBNkEzNEUwHhcNMjUwNjE2MjMyMzE1WhcNMjUwNjIzMjMyMzE1WjAYMRYwFAYD VQQDEw02ODUwYTc2My05N2RkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAt/jIz0tDOf3hhZFp2Ej2yL1BdveRUK0qmdIRLvE48ZhJ3G3jPty3xIvO3fWY yC9b8jJbqpfLaq6J8RlPcMjTbjDgvoN7WPBEwJ8aB41EBnDCh1uWX4R4KOtmaU4W R5JCHTq/bZFy1hmPAWF9ss+miKL9Qc1r5jzTLhxKFaweebN9Q2R0KGklf5FPq9e6 x8vSt3avr+QJjFNhUFRVP1TjX72OkFJ+6x6RgpyE/GM8EOWbw4inAlPqp9JfHDpI KRUmHyKcT1JZczYlS/0IkHfUOiprmM5OzwaJKzUeab2tN+Ezy6B8pJU9iLzbn1Ff pTsJluu1U0rkrK+sEywR4MdaWQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFAF06KW/ e/uNpDpbqenJPDsRsSjBMB8GA1UdIwQYMBaAFKWZiOxNbdW6ajD4ZlGrViwYpqNO MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0M0ZGNS8wMTM5NjlCNDIw MUMxMUVDOEExNzNDMkNDNEY5QUUwMi9wWm1JN0UxdDFicHFNUGhtVWF0V0xCaW1v MDQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3BabUk3RTF0MWJwcU1QaG1VYXRXTEJpbW8wNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 M0ZGNS8wMTM5NjlCNDIwMUMxMUVDOEExNzNDMkNDNEY5QUUwMi9wWm1JN0UxdDFi cHFNUGhtVWF0V0xCaW1vMDQubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCZoLKBPRsFghdt4ZXST7vb+DhzBsMhEQxhXtkHACPVLvqWrtj+5i9l 6Cs3LQRZGvbVwI2FLfdennhz+nAnq7P8KU2IWNzuL4rKYICV0XCtSd99FbrXA9Mh 60xyOB5kIDNGvsp+0V4Am+si/9omg9767p24riS2Xe0gN+hfZvzbMWQxQoRtyb4V dxM1LWknjqeevNvYV83NQ36BgnsHLXjdZeC0Gw78T76lu4wM4M3GbeQ4oCXS9Cpn 0BRkZYA+kOdFWf1S6ANB8gZr7Jqjkv/tbrIuJj6XzABtbfnTzT9SDfy/xSGKN8VV cdjiU7xXRTfjqi3VvZj1zb88NYL6ejaO -----END CERTIFICATE-----Generated at Tue Jun 17 12:09:46 2025 by rpki-client