$ rpki-client -vvf rpki.apnic.net/member_repository/A9189132/D264A2A4458C11EA8E6F6D0CC4F9AE02/ztWVHA4vwvZh_u8cNxtnsj8cUt8.mft File: ztWVHA4vwvZh_u8cNxtnsj8cUt8.mft (raw, json) Hash identifier: NerjAl8O8zyyeOXV6yDY5qwOc8o5HwOBZYskyKTTUbg= Subject key identifier: 2F:0C:B8:B7:11:6D:53:D2:9F:EF:A6:29:55:D2:D1:44:8F:7F:6B:2B Authority key identifier: CE:D5:95:1C:0E:2F:C2:F6:61:FE:EF:1C:37:1B:67:B2:3F:1C:52:DF Certificate issuer: /CN=A9189132/serialNumber=CED5951C0E2FC2F661FEEF1C371B67B23F1C52DF Certificate serial: 0B0A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ztWVHA4vwvZh_u8cNxtnsj8cUt8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9189132/D264A2A4458C11EA8E6F6D0CC4F9AE02/ztWVHA4vwvZh_u8cNxtnsj8cUt8.mft Manifest number: 0B02 Signing time: Thu 12 Jun 2025 19:07:57 +0000 Manifest this update: Thu 12 Jun 2025 19:07:56 +0000 Manifest next update: Thu 19 Jun 2025 19:07:56 +0000 Files and hashes: 1: ztWVHA4vwvZh_u8cNxtnsj8cUt8.crl (hash: 08NinhzwzbAiHfvfeluyhFENNAJmxYk8crpvzGuYt/0=) 2: 4E6B4E24458E11EA84E01A0FC4F9AE02.roa (hash: QbUyZORfUsAuIPfZUHLWRtdmTwbA8QqQPT+t+aGRe2I=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9189132/D264A2A4458C11EA8E6F6D0CC4F9AE02/ztWVHA4vwvZh_u8cNxtnsj8cUt8.crl rsync://rpki.apnic.net/member_repository/A9189132/D264A2A4458C11EA8E6F6D0CC4F9AE02/ztWVHA4vwvZh_u8cNxtnsj8cUt8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ztWVHA4vwvZh_u8cNxtnsj8cUt8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 19 Jun 2025 19:07:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2826 (0xb0a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9189132, serialNumber=CED5951C0E2FC2F661FEEF1C371B67B23F1C52DF Validity Not Before: Jun 12 19:07:56 2025 GMT Not After : Jun 19 19:07:56 2025 GMT Subject: CN=684b258c-4e87 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d7:44:b2:e4:a3:c1:4b:f3:8c:34:73:df:2d:4f: 81:5f:74:3a:58:f0:5a:ff:2d:e7:d6:06:a2:7f:99: 7b:b1:5a:45:25:36:ea:6f:ec:bb:da:98:a5:25:79: 1c:7d:b9:7e:57:c6:1b:39:9d:0d:f2:de:3f:cb:c9: fc:44:72:50:5c:fa:fd:19:e9:c0:74:5d:90:39:36: 20:62:f1:b8:55:0e:06:cb:53:f4:2f:a5:64:74:af: e0:c9:2b:f9:fb:6a:c2:be:fd:d3:48:a8:6b:f9:55: 67:43:c4:2e:c8:4f:03:31:e5:3f:8b:57:c5:d2:d3: 0e:8a:60:83:c6:2f:64:b2:b5:1c:c0:c5:38:a9:72: 3f:da:ca:f2:f0:9e:2f:e2:a5:29:17:da:97:dd:8d: 32:b0:7a:91:5c:9b:8c:49:82:23:18:f5:db:41:cd: b6:e5:57:24:0c:41:18:c5:fc:54:0a:f3:f8:f0:89: 1f:3a:1d:e0:44:98:30:ce:79:e6:be:be:a4:8e:fc: 53:21:4d:87:d2:40:d5:36:5c:45:35:61:7f:91:75: 49:fa:a5:24:5e:a5:22:ef:39:b4:68:b3:91:eb:6e: 61:10:e7:85:a1:52:91:d4:bf:d6:82:bb:cc:7e:9a: c7:6e:56:62:55:fd:b9:b3:54:dc:aa:d9:a3:26:0c: 85:fd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2F:0C:B8:B7:11:6D:53:D2:9F:EF:A6:29:55:D2:D1:44:8F:7F:6B:2B X509v3 Authority Key Identifier: keyid:CE:D5:95:1C:0E:2F:C2:F6:61:FE:EF:1C:37:1B:67:B2:3F:1C:52:DF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9189132/D264A2A4458C11EA8E6F6D0CC4F9AE02/ztWVHA4vwvZh_u8cNxtnsj8cUt8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ztWVHA4vwvZh_u8cNxtnsj8cUt8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9189132/D264A2A4458C11EA8E6F6D0CC4F9AE02/ztWVHA4vwvZh_u8cNxtnsj8cUt8.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 9c:83:1e:a9:b5:79:2f:98:d0:52:a3:92:7c:68:32:a8:47:9a: 2a:09:51:ad:39:1e:c7:1a:d1:d4:4d:8e:39:2c:4e:f2:ee:d8: d4:62:3a:56:3d:39:49:bf:52:7b:56:78:65:fb:b4:01:56:a3: a7:e5:8c:44:44:dc:b5:71:ee:f6:36:34:0c:19:cd:98:8d:1a: f9:1d:aa:a1:02:0a:2c:76:74:fb:bd:a7:ab:f4:91:29:ad:52: 3d:00:ee:39:61:5e:62:b1:01:a8:81:d6:77:60:d3:18:a2:2f: 06:4d:bc:76:7e:3e:4b:1b:02:47:1c:92:83:01:10:19:45:31: 4a:bd:64:78:e1:31:04:e1:c4:33:05:52:fb:80:3f:61:f6:80: 10:07:53:49:f5:1d:0a:d3:8b:ed:0b:58:bb:65:35:82:37:f1: 14:d9:df:1e:ed:bc:f1:dd:e9:3a:09:fb:e9:63:d5:5a:2a:0a: ca:bb:8c:8a:88:53:ac:5f:cb:e5:4f:07:65:cf:6a:97:c9:d0: 4c:5f:62:b3:d5:d0:f6:42:60:9b:52:94:bf:a5:d5:3f:b3:06: 42:00:30:20:34:e8:9d:ec:46:3d:ff:f7:95:47:2a:e0:02:10: 1d:36:46:df:54:52:b8:a8:6c:e7:ce:8d:4b:20:f7:93:79:f1: bb:26:f5:11 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCwowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx ODkxMzIxMTAvBgNVBAUTKENFRDU5NTFDMEUyRkMyRjY2MUZFRUYxQzM3MUI2N0Iy M0YxQzUyREYwHhcNMjUwNjEyMTkwNzU2WhcNMjUwNjE5MTkwNzU2WjAYMRYwFAYD VQQDEw02ODRiMjU4Yy00ZTg3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA10Sy5KPBS/OMNHPfLU+BX3Q6WPBa/y3n1gaif5l7sVpFJTbqb+y72pilJXkc fbl+V8YbOZ0N8t4/y8n8RHJQXPr9GenAdF2QOTYgYvG4VQ4Gy1P0L6VkdK/gySv5 +2rCvv3TSKhr+VVnQ8QuyE8DMeU/i1fF0tMOimCDxi9ksrUcwMU4qXI/2sry8J4v 4qUpF9qX3Y0ysHqRXJuMSYIjGPXbQc225VckDEEYxfxUCvP48IkfOh3gRJgwznnm vr6kjvxTIU2H0kDVNlxFNWF/kXVJ+qUkXqUi7zm0aLOR625hEOeFoVKR1L/WgrvM fprHblZiVf25s1TcqtmjJgyF/QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFC8MuLcR bVPSn++mKVXS0USPf2srMB8GA1UdIwQYMBaAFM7VlRwOL8L2Yf7vHDcbZ7I/HFLf MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4OTEzMi9EMjY0QTJBNDQ1 OEMxMUVBOEU2RjZEMENDNEY5QUUwMi96dFdWSEE0dnd2WmhfdThjTnh0bnNqOGNV dDguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3p0V1ZIQTR2d3ZaaF91OGNOeHRuc2o4Y1V0OC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 OTEzMi9EMjY0QTJBNDQ1OEMxMUVBOEU2RjZEMENDNEY5QUUwMi96dFdWSEE0dnd2 WmhfdThjTnh0bnNqOGNVdDgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCcgx6ptXkvmNBSo5J8aDKoR5oqCVGtOR7HGtHUTY45LE7y7tjUYjpW PTlJv1J7Vnhl+7QBVqOn5YxERNy1ce72NjQMGc2YjRr5HaqhAgosdnT7vaer9JEp rVI9AO45YV5isQGogdZ3YNMYoi8GTbx2fj5LGwJHHJKDARAZRTFKvWR44TEE4cQz BVL7gD9h9oAQB1NJ9R0K04vtC1i7ZTWCN/EU2d8e7bzx3ek6CfvpY9VaKgrKu4yK iFOsX8vlTwdlz2qXydBMX2Kz1dD2QmCbUpS/pdU/swZCADAgNOid7EY9//eVRyrg AhAdNkbfVFK4qGznzo1LIPeTefG7JvUR -----END CERTIFICATE-----Generated at Sat Jun 14 19:36:07 2025 by rpki-client