$ rpki-client -vvf rpki.apnic.net/member_repository/A914B45F/40BB15742F6511EE95FDED56C4F9AE02/z64jGpiXN_YdrZV8wk0hNYWBjtw.mft File: z64jGpiXN_YdrZV8wk0hNYWBjtw.mft (raw, json) Hash identifier: B/mx6pIp0O25SV1kc1z4v2XV4oj8WbHD/rZY/+omMSI= Subject key identifier: 7F:36:AB:70:8D:AB:55:58:4F:10:B1:EE:70:E4:F3:53:43:6E:F2:17 Authority key identifier: CF:AE:23:1A:98:97:37:F6:1D:AD:95:7C:C2:4D:21:35:85:81:8E:DC Certificate issuer: /CN=A914B45F/serialNumber=CFAE231A989737F61DAD957CC24D213585818EDC Certificate serial: 0160 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/z64jGpiXN_YdrZV8wk0hNYWBjtw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914B45F/40BB15742F6511EE95FDED56C4F9AE02/z64jGpiXN_YdrZV8wk0hNYWBjtw.mft Manifest number: 015E Signing time: Fri 13 Jun 2025 02:58:42 +0000 Manifest this update: Fri 13 Jun 2025 02:58:41 +0000 Manifest next update: Fri 20 Jun 2025 02:58:41 +0000 Files and hashes: 1: z64jGpiXN_YdrZV8wk0hNYWBjtw.crl (hash: QqnR38yfc5VGDU+DS/4sfVIrzPdwAk1N92maspFhMYg=) 2: 578C92D62F6611EE9CAFAA58C4F9AE02.roa (hash: Km7Ntr3HPW+9p2/xgcR3/NDs3gM06IRtzM1XksYLFiE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914B45F/40BB15742F6511EE95FDED56C4F9AE02/z64jGpiXN_YdrZV8wk0hNYWBjtw.crl rsync://rpki.apnic.net/member_repository/A914B45F/40BB15742F6511EE95FDED56C4F9AE02/z64jGpiXN_YdrZV8wk0hNYWBjtw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/z64jGpiXN_YdrZV8wk0hNYWBjtw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 20 Jun 2025 02:58:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 352 (0x160) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914B45F, serialNumber=CFAE231A989737F61DAD957CC24D213585818EDC Validity Not Before: Jun 13 02:58:41 2025 GMT Not After : Jun 20 02:58:41 2025 GMT Subject: CN=684b93e2-0c34 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cb:fc:96:ce:3a:3f:61:a5:41:a7:78:57:f6:35: d6:cb:9b:56:3e:e7:84:b5:36:e8:6e:94:17:3f:5d: 79:8f:75:6a:6d:c2:e9:e9:e0:c9:6c:39:d0:cc:de: d1:d3:c9:8d:f3:d3:be:37:02:25:fe:59:14:a7:b3: 4a:44:ec:dc:91:d3:1c:f2:7b:a2:60:1e:82:87:ac: 8e:e3:a4:c3:36:45:71:92:bf:6f:63:5d:a8:51:d0: 52:19:30:cc:5c:32:9f:93:f4:4c:37:65:3a:36:5f: 36:e0:01:2e:50:2e:de:3a:73:8f:af:53:b0:16:a8: 25:40:ac:58:d4:7c:2b:f0:ad:a6:9e:a6:63:e4:d7: a7:37:83:20:47:9b:cc:15:bf:bb:d7:72:41:0e:ce: 80:35:50:c2:92:06:0b:c0:48:7e:1e:00:e9:92:ed: 94:f7:7e:74:67:c8:4c:b8:79:d2:f0:f4:21:22:52: d1:03:21:4c:75:63:cf:8f:87:c9:ff:71:f5:9b:6e: f1:e1:76:d0:34:5a:c7:79:3d:e7:40:d3:14:9b:84: f0:86:d2:77:1d:30:a9:50:fd:ce:0e:a7:5c:5a:66: 26:80:da:25:a7:b5:6d:21:c3:40:71:39:e3:63:74: 99:00:b4:a0:86:49:1f:2f:90:9d:9d:1a:8d:16:57: 32:d9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7F:36:AB:70:8D:AB:55:58:4F:10:B1:EE:70:E4:F3:53:43:6E:F2:17 X509v3 Authority Key Identifier: keyid:CF:AE:23:1A:98:97:37:F6:1D:AD:95:7C:C2:4D:21:35:85:81:8E:DC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914B45F/40BB15742F6511EE95FDED56C4F9AE02/z64jGpiXN_YdrZV8wk0hNYWBjtw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/z64jGpiXN_YdrZV8wk0hNYWBjtw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914B45F/40BB15742F6511EE95FDED56C4F9AE02/z64jGpiXN_YdrZV8wk0hNYWBjtw.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 1c:51:6e:08:19:33:68:19:cf:d1:a9:a1:31:bd:9c:a4:20:67: af:74:6b:e3:4b:2b:2e:9f:fb:1f:02:eb:b8:94:43:7e:01:18: 82:bf:7d:bd:22:ae:b8:e4:db:72:f7:dd:cc:50:08:28:af:d0: 84:97:21:d6:72:1c:16:0a:c4:66:88:4f:1a:f9:20:78:47:9b: 6d:a0:c4:7f:21:6d:bf:fb:93:47:e9:54:6d:50:aa:59:96:e5: 60:36:17:24:96:ba:24:6a:46:77:e5:ff:ad:50:b4:51:16:44: e9:b7:2d:48:aa:9c:28:76:8f:5b:bc:c5:0f:e7:0f:c4:2f:8d: 97:f5:03:47:58:ab:3b:32:0e:cd:cd:3d:87:96:4e:ba:f3:7d: f5:18:c1:a2:72:99:db:aa:f1:03:e6:3d:08:54:9f:84:e9:1b: 04:b8:2d:69:9d:f6:fa:15:24:09:7f:45:88:45:4a:a7:1d:6c: 4a:1d:55:ae:40:de:ea:3d:da:cb:04:fc:51:28:b3:61:af:a4: 64:36:06:09:2d:92:48:44:bd:0a:1d:dc:b0:7b:74:02:c3:ec: 80:8a:53:4c:0d:ae:f0:1a:40:8c:6f:ec:fe:92:65:54:be:96: 25:92:fc:f5:7b:01:b7:a8:35:79:58:f3:81:23:7f:e6:ee:7d: ad:7e:6a:2f -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAWAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NEI0NUYxMTAvBgNVBAUTKENGQUUyMzFBOTg5NzM3RjYxREFEOTU3Q0MyNEQyMTM1 ODU4MThFREMwHhcNMjUwNjEzMDI1ODQxWhcNMjUwNjIwMDI1ODQxWjAYMRYwFAYD VQQDEw02ODRiOTNlMi0wYzM0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAy/yWzjo/YaVBp3hX9jXWy5tWPueEtTbobpQXP115j3VqbcLp6eDJbDnQzN7R 08mN89O+NwIl/lkUp7NKROzckdMc8nuiYB6Ch6yO46TDNkVxkr9vY12oUdBSGTDM XDKfk/RMN2U6Nl824AEuUC7eOnOPr1OwFqglQKxY1Hwr8K2mnqZj5NenN4MgR5vM Fb+713JBDs6ANVDCkgYLwEh+HgDpku2U9350Z8hMuHnS8PQhIlLRAyFMdWPPj4fJ /3H1m27x4XbQNFrHeT3nQNMUm4TwhtJ3HTCpUP3ODqdcWmYmgNolp7VtIcNAcTnj Y3SZALSghkkfL5CdnRqNFlcy2QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFH82q3CN q1VYTxCx7nDk81NDbvIXMB8GA1UdIwQYMBaAFM+uIxqYlzf2Ha2VfMJNITWFgY7c MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0QjQ1Ri80MEJCMTU3NDJG NjUxMUVFOTVGREVENTZDNEY5QUUwMi96NjRqR3BpWE5fWWRyWlY4d2swaE5ZV0Jq dHcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3o2NGpHcGlYTl9ZZHJaVjh3azBoTllXQmp0dy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 QjQ1Ri80MEJCMTU3NDJGNjUxMUVFOTVGREVENTZDNEY5QUUwMi96NjRqR3BpWE5f WWRyWlY4d2swaE5ZV0JqdHcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAcUW4IGTNoGc/RqaExvZykIGevdGvjSysun/sfAuu4lEN+ARiCv329 Iq645Nty993MUAgor9CElyHWchwWCsRmiE8a+SB4R5ttoMR/IW2/+5NH6VRtUKpZ luVgNhcklrokakZ35f+tULRRFkTpty1Iqpwodo9bvMUP5w/EL42X9QNHWKs7Mg7N zT2Hlk668331GMGicpnbqvED5j0IVJ+E6RsEuC1pnfb6FSQJf0WIRUqnHWxKHVWu QN7qPdrLBPxRKLNhr6RkNgYJLZJIRL0KHdywe3QCw+yAilNMDa7wGkCMb+z+kmVU vpYlkvz1ewG3qDV5WPOBI3/m7n2tfmov -----END CERTIFICATE-----Generated at Sat Jun 14 19:39:53 2025 by rpki-client