$ rpki-client -vvf rpki.apnic.net/member_repository/A916B1F5/0D213EDC33FD11EDABF7CF4BC4F9AE02/_z4OD6f_JX29huYrEpqZTYpJ2E4.mft File: _z4OD6f_JX29huYrEpqZTYpJ2E4.mft (raw, json) Hash identifier: V7mofxfwN4gC0Hk2lpVri3tuUsBDqYRf5WiDgprdqag= Subject key identifier: AC:D9:C5:49:F9:D1:13:A7:78:5B:81:06:2D:7F:8E:E4:BB:BC:35:B1 Authority key identifier: FF:3E:0E:0F:A7:FF:25:7D:BD:86:E6:2B:12:9A:99:4D:8A:49:D8:4E Certificate issuer: /CN=A916B1F5/serialNumber=FF3E0E0FA7FF257DBD86E62B129A994D8A49D84E Certificate serial: 021F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_z4OD6f_JX29huYrEpqZTYpJ2E4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A916B1F5/0D213EDC33FD11EDABF7CF4BC4F9AE02/_z4OD6f_JX29huYrEpqZTYpJ2E4.mft Manifest number: 021C Signing time: Sun 15 Jun 2025 01:38:36 +0000 Manifest this update: Sun 15 Jun 2025 01:38:35 +0000 Manifest next update: Sun 22 Jun 2025 01:38:35 +0000 Files and hashes: 1: _z4OD6f_JX29huYrEpqZTYpJ2E4.crl (hash: q7YmZAvJFUHIAWf0shtpiXSRPE9+HKriHJgFplB7pM4=) 2: 28536FDC340111EDB747A054C4F9AE02.roa (hash: nwv4OnHIeiaOuT9R5A9U+o0snvNWMEn4+NiK+Y5blsM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A916B1F5/0D213EDC33FD11EDABF7CF4BC4F9AE02/_z4OD6f_JX29huYrEpqZTYpJ2E4.crl rsync://rpki.apnic.net/member_repository/A916B1F5/0D213EDC33FD11EDABF7CF4BC4F9AE02/_z4OD6f_JX29huYrEpqZTYpJ2E4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_z4OD6f_JX29huYrEpqZTYpJ2E4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 22 Jun 2025 01:38:35 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 543 (0x21f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A916B1F5, serialNumber=FF3E0E0FA7FF257DBD86E62B129A994D8A49D84E Validity Not Before: Jun 15 01:38:35 2025 GMT Not After : Jun 22 01:38:35 2025 GMT Subject: CN=684e241c-e2b3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9d:bc:ac:50:b1:b2:ef:7a:fc:49:bf:4a:8f:ca: 0d:bd:8a:7e:6f:62:57:56:a1:fc:09:4c:ea:c2:be: 64:52:f2:be:22:fd:ec:73:ac:51:f8:11:b3:76:3f: 61:54:a9:f8:c3:cf:cf:1c:30:69:9d:17:45:96:b8: aa:ff:f5:98:35:5c:81:5a:ce:da:96:ba:b0:f0:4c: a7:f4:d3:3b:c6:8f:24:e8:db:d2:9d:9f:3f:a6:c8: 73:44:34:55:39:2c:90:48:cf:1c:ed:c9:4b:e0:4a: 23:49:20:f7:58:f1:a5:f5:b0:92:45:ae:0f:ef:a5: f3:07:23:0b:52:31:cf:20:33:d8:27:96:33:00:58: 9b:17:22:d0:ff:4f:ed:86:fc:92:fc:a0:aa:b0:f1: 5d:a8:c4:72:bb:42:4c:29:03:d8:39:55:dd:c9:7f: 8b:4c:03:df:99:c6:e5:d4:7d:42:e3:ae:84:c3:d0: d1:de:5d:5d:ba:f2:ef:37:1e:c0:13:48:f6:70:eb: a0:86:a0:09:b4:0e:ab:d7:b1:69:6a:e0:9f:cc:0a: 72:de:54:1c:6e:10:e0:f8:ea:10:51:8a:1a:6b:f0: a9:91:07:23:c9:4e:65:0f:17:46:f2:f2:09:6b:fc: a1:28:e5:38:00:9a:15:24:fd:88:f6:e3:6e:e8:fc: 8d:83 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AC:D9:C5:49:F9:D1:13:A7:78:5B:81:06:2D:7F:8E:E4:BB:BC:35:B1 X509v3 Authority Key Identifier: keyid:FF:3E:0E:0F:A7:FF:25:7D:BD:86:E6:2B:12:9A:99:4D:8A:49:D8:4E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A916B1F5/0D213EDC33FD11EDABF7CF4BC4F9AE02/_z4OD6f_JX29huYrEpqZTYpJ2E4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_z4OD6f_JX29huYrEpqZTYpJ2E4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A916B1F5/0D213EDC33FD11EDABF7CF4BC4F9AE02/_z4OD6f_JX29huYrEpqZTYpJ2E4.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 68:8d:d2:56:7a:c0:58:6a:1f:70:96:d6:b6:a1:dd:74:b7:84: 08:72:30:90:e3:f8:53:a0:33:23:4e:f7:c3:20:2a:cd:a8:2f: ea:f5:2a:73:09:21:23:59:03:6f:dc:bf:f1:b3:d1:a6:f1:f1: fb:17:0b:8f:81:bf:79:de:6d:2e:7a:9a:8b:6e:f1:4e:af:78: b0:5a:c7:bb:bc:97:90:2e:9a:14:44:18:8f:4e:e5:8e:50:d0: 80:a7:c2:74:85:43:cc:d9:a4:cb:4f:0f:9b:6d:44:7a:22:f7: dc:80:7d:76:c9:4d:2d:21:60:94:9a:9f:0d:42:3f:15:0d:4b: 4b:2e:01:27:1b:b2:90:7c:fd:cd:4b:73:a4:e3:6c:51:d8:ac: bb:e6:49:ad:ac:6e:37:42:91:d7:6c:2f:cf:dd:f9:83:8d:35: 27:04:bc:31:e3:4d:d5:48:29:ca:86:22:36:51:96:ba:ba:02: 7c:83:76:94:2c:c4:b5:e0:e2:e5:d7:ad:f5:60:a0:e1:5c:2b: b5:75:0e:89:a2:9d:eb:ee:a9:67:3a:b4:ca:03:e3:6a:32:e9: eb:26:bd:38:05:5e:52:20:57:60:07:cd:66:52:8f:51:b3:12: f3:d6:4f:ec:f6:3d:3b:f6:0f:99:6e:c2:0a:84:66:02:ae:1e: ac:43:cc:2e -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAh8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NkIxRjUxMTAvBgNVBAUTKEZGM0UwRTBGQTdGRjI1N0RCRDg2RTYyQjEyOUE5OTRE OEE0OUQ4NEUwHhcNMjUwNjE1MDEzODM1WhcNMjUwNjIyMDEzODM1WjAYMRYwFAYD VQQDEw02ODRlMjQxYy1lMmIzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAnbysULGy73r8Sb9Kj8oNvYp+b2JXVqH8CUzqwr5kUvK+Iv3sc6xR+BGzdj9h VKn4w8/PHDBpnRdFlriq//WYNVyBWs7alrqw8Eyn9NM7xo8k6NvSnZ8/pshzRDRV OSyQSM8c7clL4EojSSD3WPGl9bCSRa4P76XzByMLUjHPIDPYJ5YzAFibFyLQ/0/t hvyS/KCqsPFdqMRyu0JMKQPYOVXdyX+LTAPfmcbl1H1C466Ew9DR3l1duvLvNx7A E0j2cOughqAJtA6r17FpauCfzApy3lQcbhDg+OoQUYoaa/CpkQcjyU5lDxdG8vIJ a/yhKOU4AJoVJP2I9uNu6PyNgwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFKzZxUn5 0ROneFuBBi1/juS7vDWxMB8GA1UdIwQYMBaAFP8+Dg+n/yV9vYbmKxKamU2KSdhO MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2QjFGNS8wRDIxM0VEQzMz RkQxMUVEQUJGN0NGNEJDNEY5QUUwMi9fejRPRDZmX0pYMjlodVlyRXBxWlRZcEoy RTQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL196NE9ENmZfSlgyOWh1WXJFcHFaVFlwSjJFNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 QjFGNS8wRDIxM0VEQzMzRkQxMUVEQUJGN0NGNEJDNEY5QUUwMi9fejRPRDZmX0pY MjlodVlyRXBxWlRZcEoyRTQubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBojdJWesBYah9wlta2od10t4QIcjCQ4/hToDMjTvfDICrNqC/q9Spz CSEjWQNv3L/xs9Gm8fH7FwuPgb953m0uepqLbvFOr3iwWse7vJeQLpoURBiPTuWO UNCAp8J0hUPM2aTLTw+bbUR6IvfcgH12yU0tIWCUmp8NQj8VDUtLLgEnG7KQfP3N S3Ok42xR2Ky75kmtrG43QpHXbC/P3fmDjTUnBLwx403VSCnKhiI2UZa6ugJ8g3aU LMS14OLl1631YKDhXCu1dQ6Jop3r7qlnOrTKA+NqMunrJr04BV5SIFdgB81mUo9R sxLz1k/s9j079g+ZbsIKhGYCrh6sQ8wu -----END CERTIFICATE-----Generated at Sun Jun 15 09:35:36 2025 by rpki-client