$ rpki-client -vvf rpki.apnic.net/member_repository/A916EBCB/E8D695AC192611EAA3361C7BC4F9AE02/zDaQ-JbvVnMRU1vERN8et0H9i7Q.mft File: zDaQ-JbvVnMRU1vERN8et0H9i7Q.mft (raw, json) Hash identifier: NiAZ+WN5JRmF9sBk2VryK2tmzDFrVKpKAGlzJSup5Ko= Subject key identifier: AE:00:CE:90:E2:7E:1E:BB:F8:AF:2A:BD:0F:72:6D:83:A5:94:5C:0E Authority key identifier: CC:36:90:F8:96:EF:56:73:11:53:5B:C4:44:DF:1E:B7:41:FD:8B:B4 Certificate issuer: /CN=A916EBCB/serialNumber=CC3690F896EF567311535BC444DF1EB741FD8BB4 Certificate serial: 0BEC Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/zDaQ-JbvVnMRU1vERN8et0H9i7Q.cer Subject info access: rsync://rpki.apnic.net/member_repository/A916EBCB/E8D695AC192611EAA3361C7BC4F9AE02/zDaQ-JbvVnMRU1vERN8et0H9i7Q.mft Manifest number: 0BE4 Signing time: Wed 18 Jun 2025 18:41:44 +0000 Manifest this update: Wed 18 Jun 2025 18:41:44 +0000 Manifest next update: Wed 25 Jun 2025 18:41:44 +0000 Files and hashes: 1: zDaQ-JbvVnMRU1vERN8et0H9i7Q.crl (hash: E5FZxxumrIHo3V+GIdBdCcgqOPzYi3vPiDypB8979uI=) 2: 81C5BFF8192811EA9B88D87DC4F9AE02.roa (hash: ZawsauuQVy3/xITjsqsOJpATtDgEASJhh1tB3zSZBaE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A916EBCB/E8D695AC192611EAA3361C7BC4F9AE02/zDaQ-JbvVnMRU1vERN8et0H9i7Q.crl rsync://rpki.apnic.net/member_repository/A916EBCB/E8D695AC192611EAA3361C7BC4F9AE02/zDaQ-JbvVnMRU1vERN8et0H9i7Q.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/zDaQ-JbvVnMRU1vERN8et0H9i7Q.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 25 Jun 2025 18:41:43 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3052 (0xbec) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A916EBCB, serialNumber=CC3690F896EF567311535BC444DF1EB741FD8BB4 Validity Not Before: Jun 18 18:41:44 2025 GMT Not After : Jun 25 18:41:44 2025 GMT Subject: CN=68530868-188e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a5:bb:60:5e:d5:02:45:49:70:79:d3:97:7c:62: 78:32:ae:30:3b:16:3f:ff:b6:43:5c:9b:6b:c4:80: d1:04:22:8d:8a:e8:a6:9b:6a:ca:54:94:a6:18:89: 93:61:89:e4:26:cc:29:b3:b3:b9:41:de:9e:2f:42: b7:57:89:d7:03:52:b6:2c:b4:a0:d7:17:9f:d8:1b: 85:50:37:25:3e:1c:e5:91:62:89:89:f2:d1:ec:b0: d6:75:93:dc:c7:8d:76:99:db:f8:c7:c6:f0:8d:45: c5:68:22:7d:72:76:76:3c:c4:64:69:0d:b3:ca:18: 34:a5:af:88:89:1e:14:f7:38:6d:8d:3f:15:6f:72: 82:d4:95:4e:b2:d2:ce:85:5b:a5:d3:f6:42:8c:4e: f3:d8:10:78:b5:07:9f:82:a7:1e:de:22:ce:59:62: 1e:32:13:6b:e2:ba:f1:5d:6b:4e:18:51:16:70:4f: 97:cf:bb:14:2f:95:bd:d5:a9:96:ed:e5:4d:d0:1c: ca:e1:2a:21:2a:24:fa:36:c9:a0:76:bb:0e:09:c2: 97:2e:52:b9:a2:ce:6b:c4:87:2f:d2:a7:35:48:26: 5b:eb:9f:1b:a8:a9:06:e9:50:2e:26:81:4f:2b:3d: c8:c2:24:24:89:ec:96:e9:c7:e3:8a:a4:5c:67:78: 1c:c9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AE:00:CE:90:E2:7E:1E:BB:F8:AF:2A:BD:0F:72:6D:83:A5:94:5C:0E X509v3 Authority Key Identifier: keyid:CC:36:90:F8:96:EF:56:73:11:53:5B:C4:44:DF:1E:B7:41:FD:8B:B4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A916EBCB/E8D695AC192611EAA3361C7BC4F9AE02/zDaQ-JbvVnMRU1vERN8et0H9i7Q.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/zDaQ-JbvVnMRU1vERN8et0H9i7Q.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A916EBCB/E8D695AC192611EAA3361C7BC4F9AE02/zDaQ-JbvVnMRU1vERN8et0H9i7Q.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 71:4e:da:de:df:24:f4:a4:46:c7:d4:a1:54:fa:c5:29:2d:7f: 4b:43:12:bb:b4:f0:74:39:f8:4d:77:10:a8:0b:7d:4a:51:a0: c2:fa:4d:33:15:6e:1f:5d:50:8d:d8:c0:cf:ce:40:a3:22:38: 45:80:ea:11:ac:24:a0:06:38:32:78:68:2a:9f:1c:4e:ad:7a: 93:fb:5f:c1:01:c1:80:bc:95:34:31:d5:2d:a3:5c:06:67:7e: 10:63:ad:f4:91:f3:4b:9a:31:d0:30:82:5f:9a:75:1e:0a:06: a1:9a:d9:89:03:81:7f:8a:15:d0:d1:4b:30:89:3e:24:c5:b3: fb:0b:d5:d6:df:50:3d:80:66:92:b6:2c:3d:19:11:d8:29:13: 5a:c2:4a:bc:77:4f:c5:5f:ba:b4:81:dd:1f:ee:f2:e9:84:f6: 58:41:51:f5:ee:59:16:00:b7:28:c2:51:b0:83:91:dc:c7:b2: 2c:c7:07:6d:a3:5a:86:2a:8f:94:61:0c:9d:e2:30:88:ca:d6: 2f:47:80:41:fc:cb:9c:35:96:fc:05:2a:9e:8b:5b:fd:4f:d1: f9:52:1a:4d:9b:63:29:6c:6f:f7:7f:ae:5b:1b:c1:93:54:bd: 2d:d7:68:e3:80:95:dd:f8:1f:bb:23:14:01:25:ae:d5:a6:4b: 8a:da:13:fe -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICC+wwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NkVCQ0IxMTAvBgNVBAUTKENDMzY5MEY4OTZFRjU2NzMxMTUzNUJDNDQ0REYxRUI3 NDFGRDhCQjQwHhcNMjUwNjE4MTg0MTQ0WhcNMjUwNjI1MTg0MTQ0WjAYMRYwFAYD VQQDEw02ODUzMDg2OC0xODhlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEApbtgXtUCRUlwedOXfGJ4Mq4wOxY//7ZDXJtrxIDRBCKNiuimm2rKVJSmGImT YYnkJswps7O5Qd6eL0K3V4nXA1K2LLSg1xef2BuFUDclPhzlkWKJifLR7LDWdZPc x412mdv4x8bwjUXFaCJ9cnZ2PMRkaQ2zyhg0pa+IiR4U9zhtjT8Vb3KC1JVOstLO hVul0/ZCjE7z2BB4tQefgqce3iLOWWIeMhNr4rrxXWtOGFEWcE+Xz7sUL5W91amW 7eVN0BzK4SohKiT6NsmgdrsOCcKXLlK5os5rxIcv0qc1SCZb658bqKkG6VAuJoFP Kz3IwiQkieyW6cfjiqRcZ3gcyQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFK4AzpDi fh67+K8qvQ9ybYOllFwOMB8GA1UdIwQYMBaAFMw2kPiW71ZzEVNbxETfHrdB/Yu0 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2RUJDQi9FOEQ2OTVBQzE5 MjYxMUVBQTMzNjFDN0JDNEY5QUUwMi96RGFRLUpidlZuTVJVMXZFUk44ZXQwSDlp N1EuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3pEYVEtSmJ2Vm5NUlUxdkVSTjhldDBIOWk3US5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 RUJDQi9FOEQ2OTVBQzE5MjYxMUVBQTMzNjFDN0JDNEY5QUUwMi96RGFRLUpidlZu TVJVMXZFUk44ZXQwSDlpN1EubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBxTtre3yT0pEbH1KFU+sUpLX9LQxK7tPB0OfhNdxCoC31KUaDC+k0z FW4fXVCN2MDPzkCjIjhFgOoRrCSgBjgyeGgqnxxOrXqT+1/BAcGAvJU0MdUto1wG Z34QY630kfNLmjHQMIJfmnUeCgahmtmJA4F/ihXQ0UswiT4kxbP7C9XW31A9gGaS tiw9GRHYKRNawkq8d0/FX7q0gd0f7vLphPZYQVH17lkWALcowlGwg5Hcx7Isxwdt o1qGKo+UYQyd4jCIytYvR4BB/MucNZb8BSqei1v9T9H5UhpNm2MpbG/3f65bG8GT VL0t12jjgJXd+B+7IxQBJa7VpkuK2hP+ -----END CERTIFICATE-----Generated at Thu Jun 19 08:07:50 2025 by rpki-client