$ rpki-client -vvf rpki.apnic.net/member_repository/A916A3EE/5B97A8B8701211EB8907BB1FC4F9AE02/aWryPZMpXC9f3fMqlVE7Ldu_zhs.mft File: aWryPZMpXC9f3fMqlVE7Ldu_zhs.mft (raw, json) Hash identifier: 8T6fLmSR8qhcaC73cjIx3zuOMnAsk/3dNE5uKLdoI5A= Subject key identifier: 57:30:0C:B4:C4:D7:F2:DC:57:D0:68:AE:88:4E:AB:62:41:C2:E1:67 Authority key identifier: 69:6A:F2:3D:93:29:5C:2F:5F:DD:F3:2A:95:51:3B:2D:DB:BF:CE:1B Certificate issuer: /CN=A916A3EE/serialNumber=696AF23D93295C2F5FDDF32A95513B2DDBBFCE1B Certificate serial: 069C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aWryPZMpXC9f3fMqlVE7Ldu_zhs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A916A3EE/5B97A8B8701211EB8907BB1FC4F9AE02/aWryPZMpXC9f3fMqlVE7Ldu_zhs.mft Manifest number: 0697 Signing time: Sat 14 Jun 2025 21:57:18 +0000 Manifest this update: Sat 14 Jun 2025 21:57:18 +0000 Manifest next update: Sat 21 Jun 2025 21:57:18 +0000 Files and hashes: 1: aWryPZMpXC9f3fMqlVE7Ldu_zhs.crl (hash: /hrjkPYK5tv1z+xRDj8YhTa2cAEwFTiTlC750M+J+/Y=) 2: 76F5B630701311EB9C85DF1FC4F9AE02.roa (hash: qir+UT8zyDGjYz1YRKkq2v/pYcPeSxEZXiWVhwGwNRY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A916A3EE/5B97A8B8701211EB8907BB1FC4F9AE02/aWryPZMpXC9f3fMqlVE7Ldu_zhs.crl rsync://rpki.apnic.net/member_repository/A916A3EE/5B97A8B8701211EB8907BB1FC4F9AE02/aWryPZMpXC9f3fMqlVE7Ldu_zhs.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aWryPZMpXC9f3fMqlVE7Ldu_zhs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 21 Jun 2025 21:57:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1692 (0x69c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A916A3EE, serialNumber=696AF23D93295C2F5FDDF32A95513B2DDBBFCE1B Validity Not Before: Jun 14 21:57:18 2025 GMT Not After : Jun 21 21:57:18 2025 GMT Subject: CN=684df03e-b14f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d1:7a:9b:92:f9:a6:95:e2:3b:60:51:86:88:61: b6:fa:04:76:b1:b2:a2:40:22:d6:06:0e:34:5d:15: 32:71:e1:89:89:8a:c3:f3:5d:c7:9c:72:a1:d9:f4: e1:cb:a9:92:10:d4:83:7c:af:fe:ff:1c:38:b5:2b: d3:30:9e:ee:6a:3c:f3:8e:ad:32:87:52:3b:33:e6: ef:45:76:48:0e:86:4e:0a:67:e8:75:b0:98:7b:c5: db:6f:ab:b7:fa:b7:66:cc:a7:b2:62:5b:29:4d:84: 8a:28:a6:e3:24:12:f7:d9:43:34:02:e0:4b:a3:09: d2:c6:c1:f0:0c:0f:2f:e6:9c:23:78:f4:5f:c8:36: 6c:cc:64:48:32:ad:9b:d0:d7:fc:2e:39:c9:e4:e7: 27:20:7f:07:8b:a5:df:60:4d:a5:6b:40:9b:6f:af: a6:13:b3:dc:6c:e4:ca:78:48:0d:f1:1a:07:90:a1: d1:2d:b3:8c:c7:bd:55:ef:22:84:87:41:57:58:f9: 65:de:2f:a3:f2:9b:29:78:72:8c:ff:43:ea:a2:87: f0:ed:6d:29:ac:44:a9:8f:ad:fb:d9:28:4e:a4:4d: c2:6a:c0:7e:b1:52:8d:a3:76:a8:28:f2:c1:73:20: 87:aa:ca:0c:61:52:bf:5a:f9:d7:e2:b9:83:f2:21: 75:b5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 57:30:0C:B4:C4:D7:F2:DC:57:D0:68:AE:88:4E:AB:62:41:C2:E1:67 X509v3 Authority Key Identifier: keyid:69:6A:F2:3D:93:29:5C:2F:5F:DD:F3:2A:95:51:3B:2D:DB:BF:CE:1B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A916A3EE/5B97A8B8701211EB8907BB1FC4F9AE02/aWryPZMpXC9f3fMqlVE7Ldu_zhs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aWryPZMpXC9f3fMqlVE7Ldu_zhs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A916A3EE/5B97A8B8701211EB8907BB1FC4F9AE02/aWryPZMpXC9f3fMqlVE7Ldu_zhs.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 09:5b:30:b5:c3:16:93:64:e2:a2:39:c0:92:63:78:19:e4:8d: 63:83:4b:51:70:50:47:14:d4:1f:7a:46:7b:80:58:65:0c:44: 9d:83:df:45:44:46:ac:df:01:1b:b4:f5:48:5b:c2:e3:53:79: b9:9a:f9:3e:40:45:94:fb:74:4b:e1:de:d8:9b:01:5c:32:34: 7d:42:19:99:15:ff:12:42:9a:a7:dc:59:f2:cf:ad:23:61:bb: 2d:3a:b3:2f:de:4c:b4:ff:a3:e2:45:fd:d9:57:08:bd:dd:cc: 77:7e:a4:a7:ea:2e:89:51:c7:41:e0:b3:4d:a4:46:fc:eb:48: 9b:16:65:30:1a:3d:f0:d6:ae:ea:59:73:99:b0:88:d1:63:da: e0:0b:25:ad:40:26:cb:53:95:79:68:93:84:e6:99:15:8f:07: a0:75:16:ef:69:be:fa:4c:dc:ea:e7:e2:f9:b3:cd:89:14:9d: 19:82:43:f4:8a:47:2d:97:81:10:a5:67:29:57:40:5d:41:f9: 06:45:81:23:17:3e:03:0b:d9:c5:ae:34:53:94:29:bd:d6:9f: 0c:83:b2:97:af:d1:c2:a6:53:5e:aa:09:29:ba:c2:12:2e:6c: 3a:37:58:2c:ae:4d:2f:97:64:5f:90:8f:7c:78:79:ee:05:b5: 40:f0:f1:7c -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBpwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NkEzRUUxMTAvBgNVBAUTKDY5NkFGMjNEOTMyOTVDMkY1RkRERjMyQTk1NTEzQjJE REJCRkNFMUIwHhcNMjUwNjE0MjE1NzE4WhcNMjUwNjIxMjE1NzE4WjAYMRYwFAYD VQQDEw02ODRkZjAzZS1iMTRmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0XqbkvmmleI7YFGGiGG2+gR2sbKiQCLWBg40XRUyceGJiYrD813HnHKh2fTh y6mSENSDfK/+/xw4tSvTMJ7uajzzjq0yh1I7M+bvRXZIDoZOCmfodbCYe8Xbb6u3 +rdmzKeyYlspTYSKKKbjJBL32UM0AuBLownSxsHwDA8v5pwjePRfyDZszGRIMq2b 0Nf8LjnJ5OcnIH8Hi6XfYE2la0Cbb6+mE7PcbOTKeEgN8RoHkKHRLbOMx71V7yKE h0FXWPll3i+j8pspeHKM/0Pqoofw7W0prESpj6372ShOpE3CasB+sVKNo3aoKPLB cyCHqsoMYVK/WvnX4rmD8iF1tQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFFcwDLTE 1/LcV9BorohOq2JBwuFnMB8GA1UdIwQYMBaAFGlq8j2TKVwvX93zKpVROy3bv84b MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2QTNFRS81Qjk3QThCODcw MTIxMUVCODkwN0JCMUZDNEY5QUUwMi9hV3J5UFpNcFhDOWYzZk1xbFZFN0xkdV96 aHMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2FXcnlQWk1wWEM5ZjNmTXFsVkU3TGR1X3pocy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 QTNFRS81Qjk3QThCODcwMTIxMUVCODkwN0JCMUZDNEY5QUUwMi9hV3J5UFpNcFhD OWYzZk1xbFZFN0xkdV96aHMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAJWzC1wxaTZOKiOcCSY3gZ5I1jg0tRcFBHFNQfekZ7gFhlDESdg99F REas3wEbtPVIW8LjU3m5mvk+QEWU+3RL4d7YmwFcMjR9QhmZFf8SQpqn3Fnyz60j YbstOrMv3ky0/6PiRf3ZVwi93cx3fqSn6i6JUcdB4LNNpEb860ibFmUwGj3w1q7q WXOZsIjRY9rgCyWtQCbLU5V5aJOE5pkVjwegdRbvab76TNzq5+L5s82JFJ0ZgkP0 ikctl4EQpWcpV0BdQfkGRYEjFz4DC9nFrjRTlCm91p8Mg7KXr9HCplNeqgkpusIS Lmw6N1gsrk0vl2RfkI98eHnuBbVA8PF8 -----END CERTIFICATE-----Generated at Sun Jun 15 09:56:10 2025 by rpki-client