$ rpki-client -vvf rpki.apnic.net/member_repository/A9165A0B/15586F42C4F811EA8B9B4C13C4F9AE02/capYzfG2vXwm5hp1GKTQrSyfGhQ.mft File: capYzfG2vXwm5hp1GKTQrSyfGhQ.mft (raw, json) Hash identifier: m0vzDvjO2bUYxHVs4WPQaAHbt8HbvLIXiQQC42f6dw8= Subject key identifier: 3B:3F:87:92:A5:C8:29:B5:CF:8B:5B:4F:56:C5:15:6F:4E:A3:93:6C Authority key identifier: 71:AA:58:CD:F1:B6:BD:7C:26:E6:1A:75:18:A4:D0:AD:2C:9F:1A:14 Certificate issuer: /CN=A9165A0B/serialNumber=71AA58CDF1B6BD7C26E61A7518A4D0AD2C9F1A14 Certificate serial: 08BD Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/capYzfG2vXwm5hp1GKTQrSyfGhQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9165A0B/15586F42C4F811EA8B9B4C13C4F9AE02/capYzfG2vXwm5hp1GKTQrSyfGhQ.mft Manifest number: 0893 Signing time: Fri 20 Jun 2025 20:32:22 +0000 Manifest this update: Fri 20 Jun 2025 20:32:22 +0000 Manifest next update: Fri 27 Jun 2025 20:32:22 +0000 Files and hashes: 1: capYzfG2vXwm5hp1GKTQrSyfGhQ.crl (hash: 4keFBooDXFG5Zsz+VJZ2z/blxtR8wK63VXYFml1z1DM=) 2: 8C51AEF8C4FB11EAAEAE7C1DC4F9AE02.roa (hash: ulEoG77MrSiwSYhpxeW0HQs0UzURtgxGQwYkMWVPA0Q=) 3: 8BA9C1CAC4FB11EAAEAE7C1DC4F9AE02.roa (hash: fZLciG+K7KBAB8NViLLV71yANJqxZTohTScAC7z2iIU=) 4: 90606AD670AA11ED8DAE4C5AC4F9AE02.roa (hash: K/SJXrHKSaQpDMVLZJrukFZmfGOIIuOIUDxauUWHXXQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9165A0B/15586F42C4F811EA8B9B4C13C4F9AE02/capYzfG2vXwm5hp1GKTQrSyfGhQ.crl rsync://rpki.apnic.net/member_repository/A9165A0B/15586F42C4F811EA8B9B4C13C4F9AE02/capYzfG2vXwm5hp1GKTQrSyfGhQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/capYzfG2vXwm5hp1GKTQrSyfGhQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 27 Jun 2025 20:32:21 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2237 (0x8bd) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9165A0B, serialNumber=71AA58CDF1B6BD7C26E61A7518A4D0AD2C9F1A14 Validity Not Before: Jun 20 20:32:22 2025 GMT Not After : Jun 27 20:32:22 2025 GMT Subject: CN=6855c556-d402 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dd:64:36:8d:35:98:2e:02:57:8d:48:88:36:02: c3:9e:83:12:99:78:8e:ce:ae:10:61:7e:6e:43:67: ac:fb:85:91:82:92:25:3e:c0:60:5b:cc:69:91:49: 7d:b2:64:9d:cb:76:72:e1:37:99:85:e3:4a:7d:68: 7b:32:54:17:2a:f5:7d:35:5a:16:cc:16:a7:0f:24: 5c:d5:37:f2:fd:2c:19:ca:d6:eb:61:33:5d:bf:fa: ee:70:a2:2d:e3:06:0f:1e:9f:39:84:c8:92:ba:93: 3b:a3:ca:9a:65:57:3a:ea:79:c6:b5:a5:96:96:36: 3b:f3:9e:48:f0:dc:11:6d:eb:e9:27:d2:d3:cd:fd: c0:b4:4a:f6:c5:40:5c:7a:4c:76:ad:66:cc:94:cf: 21:33:da:b6:cc:d3:01:36:bb:ed:b2:a0:c5:7d:2f: e9:c1:77:a4:cc:32:bf:71:98:0f:41:d4:9e:08:71: af:92:16:e3:76:5b:de:c1:8f:db:b8:25:b2:3c:9c: ca:c2:ff:11:cb:19:6e:35:68:7d:f2:db:98:2e:93: 71:0f:9e:71:87:84:f7:89:90:24:6c:12:6e:a3:f5: 6b:87:b2:63:a2:bb:81:3d:53:dc:af:f0:f4:80:ec: 1e:90:d6:b7:6a:71:8d:1e:80:85:14:d8:ce:47:81: c3:99 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3B:3F:87:92:A5:C8:29:B5:CF:8B:5B:4F:56:C5:15:6F:4E:A3:93:6C X509v3 Authority Key Identifier: keyid:71:AA:58:CD:F1:B6:BD:7C:26:E6:1A:75:18:A4:D0:AD:2C:9F:1A:14 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9165A0B/15586F42C4F811EA8B9B4C13C4F9AE02/capYzfG2vXwm5hp1GKTQrSyfGhQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/capYzfG2vXwm5hp1GKTQrSyfGhQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9165A0B/15586F42C4F811EA8B9B4C13C4F9AE02/capYzfG2vXwm5hp1GKTQrSyfGhQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 99:ce:30:e2:2c:84:ce:2a:da:37:9f:bb:c3:40:21:d0:55:b7: ec:64:50:f9:1d:e4:2a:6f:8c:3a:d4:a1:5c:08:e7:a1:3b:42: b7:4d:20:42:5d:1b:10:e7:a9:7f:ce:dd:ed:47:42:ae:93:04: fd:fe:68:e2:95:f5:ce:40:49:bf:0c:50:59:3b:bd:f6:92:61: 11:cb:9a:e5:31:24:20:81:8f:2c:5d:8e:61:8e:41:6c:67:30: df:bc:2a:aa:e3:d2:df:db:b6:12:a0:7a:da:15:a8:f3:a5:52: d6:d3:98:33:31:89:00:96:cf:56:cc:ec:64:cc:bd:69:03:65: 88:0c:b7:0e:a1:27:7f:64:4e:5f:5a:c7:5c:ec:47:2d:b0:f8: 8d:07:de:b4:68:e2:13:db:4b:22:8b:4e:84:b4:c2:9f:55:0c: 8b:e4:a0:b4:e0:4d:f6:ca:74:1a:6f:2d:ca:01:68:79:71:7a: 36:98:3c:20:2c:ce:93:3b:c8:40:18:67:77:e1:a1:d3:14:fd: 14:b3:b3:e1:db:ce:53:60:57:5d:be:1f:ba:62:c4:f6:6d:3a: 19:a7:a7:45:eb:2d:29:8e:ef:e7:fc:e3:6c:f2:e9:37:f5:9d: cc:6e:ec:68:0d:26:e7:45:9c:32:65:e0:7e:37:d2:9f:d6:2b: d2:9a:b1:a6 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCL0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NjVBMEIxMTAvBgNVBAUTKDcxQUE1OENERjFCNkJEN0MyNkU2MUE3NTE4QTREMEFE MkM5RjFBMTQwHhcNMjUwNjIwMjAzMjIyWhcNMjUwNjI3MjAzMjIyWjAYMRYwFAYD VQQDEw02ODU1YzU1Ni1kNDAyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA3WQ2jTWYLgJXjUiINgLDnoMSmXiOzq4QYX5uQ2es+4WRgpIlPsBgW8xpkUl9 smSdy3Zy4TeZheNKfWh7MlQXKvV9NVoWzBanDyRc1Tfy/SwZytbrYTNdv/rucKIt 4wYPHp85hMiSupM7o8qaZVc66nnGtaWWljY7855I8NwRbevpJ9LTzf3AtEr2xUBc ekx2rWbMlM8hM9q2zNMBNrvtsqDFfS/pwXekzDK/cZgPQdSeCHGvkhbjdlvewY/b uCWyPJzKwv8RyxluNWh98tuYLpNxD55xh4T3iZAkbBJuo/Vrh7JjoruBPVPcr/D0 gOwekNa3anGNHoCFFNjOR4HDmQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFDs/h5Kl yCm1z4tbT1bFFW9Oo5NsMB8GA1UdIwQYMBaAFHGqWM3xtr18JuYadRik0K0snxoU MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2NUEwQi8xNTU4NkY0MkM0 RjgxMUVBOEI5QjRDMTNDNEY5QUUwMi9jYXBZemZHMnZYd201aHAxR0tUUXJTeWZH aFEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2NhcFl6Zkcydlh3bTVocDFHS1RRclN5ZkdoUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 NUEwQi8xNTU4NkY0MkM0RjgxMUVBOEI5QjRDMTNDNEY5QUUwMi9jYXBZemZHMnZY d201aHAxR0tUUXJTeWZHaFEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCZzjDiLITOKto3n7vDQCHQVbfsZFD5HeQqb4w61KFcCOehO0K3TSBC XRsQ56l/zt3tR0KukwT9/mjilfXOQEm/DFBZO732kmERy5rlMSQggY8sXY5hjkFs ZzDfvCqq49Lf27YSoHraFajzpVLW05gzMYkAls9WzOxkzL1pA2WIDLcOoSd/ZE5f Wsdc7EctsPiNB960aOIT20sii06EtMKfVQyL5KC04E32ynQaby3KAWh5cXo2mDwg LM6TO8hAGGd34aHTFP0Us7Ph285TYFddvh+6YsT2bToZp6dF6y0pju/n/ONs8uk3 9Z3MbuxoDSbnRZwyZeB+N9Kf1ivSmrGm -----END CERTIFICATE-----Generated at Sat Jun 21 11:19:38 2025 by rpki-client