$ rpki-client -vvf rpki.apnic.net/member_repository/A9152E29/AD33401C04FF11EAB58CB823C4F9AE02/Z7qlic6898PyfVPZjqxMEEzAkTU.mft File: Z7qlic6898PyfVPZjqxMEEzAkTU.mft (raw, json) Hash identifier: ZsMOL6JCP7Ycp4mI6xTnsfi90SEH9nfEL5YkHW4jGC0= Subject key identifier: 4C:AF:18:28:0D:62:CB:B8:E1:88:5E:E6:CF:F1:4E:19:62:6F:31:FF Authority key identifier: 67:BA:A5:89:CE:BC:F7:C3:F2:7D:53:D9:8E:AC:4C:10:4C:C0:91:35 Certificate issuer: /CN=A9152E29/serialNumber=67BAA589CEBCF7C3F27D53D98EAC4C104CC09135 Certificate serial: 0C50 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Z7qlic6898PyfVPZjqxMEEzAkTU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9152E29/AD33401C04FF11EAB58CB823C4F9AE02/Z7qlic6898PyfVPZjqxMEEzAkTU.mft Manifest number: 0C4A Signing time: Sat 14 Jun 2025 18:17:12 +0000 Manifest this update: Sat 14 Jun 2025 18:17:12 +0000 Manifest next update: Sat 21 Jun 2025 18:17:12 +0000 Files and hashes: 1: Z7qlic6898PyfVPZjqxMEEzAkTU.crl (hash: 6SLcy5DtxHVentkeqDpsfWe6OvKxwZONBMc6wZEQjlw=) 2: 94EA7370050111EA9BDD372BC4F9AE02.roa (hash: dMPlbwZZJ9a9ifwF8f+1OVtKYmpgj8cV+d0a3+m/kqY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9152E29/AD33401C04FF11EAB58CB823C4F9AE02/Z7qlic6898PyfVPZjqxMEEzAkTU.crl rsync://rpki.apnic.net/member_repository/A9152E29/AD33401C04FF11EAB58CB823C4F9AE02/Z7qlic6898PyfVPZjqxMEEzAkTU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Z7qlic6898PyfVPZjqxMEEzAkTU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 21 Jun 2025 18:17:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3152 (0xc50) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9152E29, serialNumber=67BAA589CEBCF7C3F27D53D98EAC4C104CC09135 Validity Not Before: Jun 14 18:17:12 2025 GMT Not After : Jun 21 18:17:12 2025 GMT Subject: CN=684dbca8-b0d3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:df:53:7c:35:6f:b4:2b:88:db:fe:e3:03:bb:5a: 75:ba:5e:0c:30:83:91:87:a3:49:63:27:02:cb:cf: b3:c5:80:7a:37:df:b3:7f:cd:d3:26:48:e8:78:c1: af:3b:c9:1c:44:ee:bf:c0:9f:0e:d0:e5:6c:e0:62: 9c:98:ae:a0:98:88:c9:59:05:23:64:53:fd:98:88: c6:29:55:75:7a:0f:bd:f8:86:c6:10:fd:69:a5:8e: be:93:fb:76:aa:46:ea:4c:44:71:4e:f8:83:26:43: 11:7a:81:b6:a4:13:93:1b:78:e1:c1:0d:94:b4:25: 92:c0:d0:02:3a:74:8b:c4:57:ae:54:1f:49:9d:86: 7b:c4:02:dd:99:49:12:39:04:2b:1b:6b:f4:43:15: 8f:33:84:33:80:9b:c8:1b:d0:ce:5b:a8:ce:2a:a9: f8:23:b7:df:98:1e:17:db:00:4b:ee:e9:86:97:4c: b6:22:cd:a5:0d:36:a6:57:65:24:d2:b4:1d:07:2e: 77:ed:1f:c6:49:05:86:da:f6:bb:7a:40:c3:ed:80: a2:04:39:21:f9:8e:25:07:48:4a:1c:92:3e:16:4c: 0d:e2:ac:4b:fd:9b:6b:3c:bc:42:bc:04:ca:11:6a: b5:0b:77:5d:7b:55:bd:66:b7:6d:69:68:74:ee:f7: 86:99 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4C:AF:18:28:0D:62:CB:B8:E1:88:5E:E6:CF:F1:4E:19:62:6F:31:FF X509v3 Authority Key Identifier: keyid:67:BA:A5:89:CE:BC:F7:C3:F2:7D:53:D9:8E:AC:4C:10:4C:C0:91:35 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9152E29/AD33401C04FF11EAB58CB823C4F9AE02/Z7qlic6898PyfVPZjqxMEEzAkTU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Z7qlic6898PyfVPZjqxMEEzAkTU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9152E29/AD33401C04FF11EAB58CB823C4F9AE02/Z7qlic6898PyfVPZjqxMEEzAkTU.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 8c:07:3b:d1:42:69:0e:a6:79:4b:fc:9e:65:0f:b5:0d:7d:01: 44:1a:83:1a:89:9e:5e:f9:19:e5:f7:ce:78:b2:a4:a5:86:e0: 1e:72:31:b0:13:09:7a:b8:01:0d:19:fa:49:c9:27:f6:b0:a3: b3:40:42:a4:cd:12:6e:0f:0c:aa:d0:1e:6c:2e:59:70:22:d0: d1:2a:25:60:ba:9b:d1:5a:ae:b6:85:9f:22:78:5d:4d:ed:bd: 1d:1c:94:97:0e:6a:06:0d:fe:b4:52:84:f9:19:16:24:ca:d5: bd:04:02:f8:23:45:ae:a3:44:8b:e2:30:a2:6b:75:25:c2:7f: 31:d9:8f:29:b2:0d:11:2a:bf:1c:40:56:84:1e:6e:53:3d:6a: e3:78:2f:55:ef:07:bc:16:98:d8:97:8b:b9:b0:9d:c1:7f:0c: 16:1b:ca:90:fb:b8:b7:9d:cb:e5:45:1d:8c:1e:08:84:74:54: 35:3a:a6:b3:af:8b:ca:54:06:73:94:a7:a7:77:21:c3:64:32: 5a:4f:cd:29:55:ae:54:dc:1e:f6:81:8e:b6:f7:31:42:6d:63: da:43:e2:0d:46:48:24:93:92:96:0d:7e:87:73:c6:d8:f6:14: 00:70:20:90:2f:ea:fd:d9:c7:eb:bb:ff:98:c0:16:8c:ab:ec: de:4f:c7:42 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDFAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTJFMjkxMTAvBgNVBAUTKDY3QkFBNTg5Q0VCQ0Y3QzNGMjdENTNEOThFQUM0QzEw NENDMDkxMzUwHhcNMjUwNjE0MTgxNzEyWhcNMjUwNjIxMTgxNzEyWjAYMRYwFAYD VQQDEw02ODRkYmNhOC1iMGQzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA31N8NW+0K4jb/uMDu1p1ul4MMIORh6NJYycCy8+zxYB6N9+zf83TJkjoeMGv O8kcRO6/wJ8O0OVs4GKcmK6gmIjJWQUjZFP9mIjGKVV1eg+9+IbGEP1ppY6+k/t2 qkbqTERxTviDJkMReoG2pBOTG3jhwQ2UtCWSwNACOnSLxFeuVB9JnYZ7xALdmUkS OQQrG2v0QxWPM4QzgJvIG9DOW6jOKqn4I7ffmB4X2wBL7umGl0y2Is2lDTamV2Uk 0rQdBy537R/GSQWG2va7ekDD7YCiBDkh+Y4lB0hKHJI+FkwN4qxL/ZtrPLxCvATK EWq1C3dde1W9ZrdtaWh07veGmQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFEyvGCgN Ysu44Yhe5s/xThlibzH/MB8GA1UdIwQYMBaAFGe6pYnOvPfD8n1T2Y6sTBBMwJE1 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1MkUyOS9BRDMzNDAxQzA0 RkYxMUVBQjU4Q0I4MjNDNEY5QUUwMi9aN3FsaWM2ODk4UHlmVlBaanF4TUVFekFr VFUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1o3cWxpYzY4OThQeWZWUFpqcXhNRUV6QWtUVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 MkUyOS9BRDMzNDAxQzA0RkYxMUVBQjU4Q0I4MjNDNEY5QUUwMi9aN3FsaWM2ODk4 UHlmVlBaanF4TUVFekFrVFUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCMBzvRQmkOpnlL/J5lD7UNfQFEGoMaiZ5e+Rnl9854sqSlhuAecjGw Ewl6uAENGfpJySf2sKOzQEKkzRJuDwyq0B5sLllwItDRKiVgupvRWq62hZ8ieF1N 7b0dHJSXDmoGDf60UoT5GRYkytW9BAL4I0Wuo0SL4jCia3Ulwn8x2Y8psg0RKr8c QFaEHm5TPWrjeC9V7we8FpjYl4u5sJ3BfwwWG8qQ+7i3ncvlRR2MHgiEdFQ1Oqaz r4vKVAZzlKendyHDZDJaT80pVa5U3B72gY629zFCbWPaQ+INRkgkk5KWDX6Hc8bY 9hQAcCCQL+r92cfru/+YwBaMq+zeT8dC -----END CERTIFICATE-----Generated at Mon Jun 16 20:05:26 2025 by rpki-client