$ rpki-client -vvf rpki.apnic.net/member_repository/A9189A9F/8056BA568A9011EC8C1B0D22C4F9AE02/z7B65d0AqScU2zWnIQRdnS644xc.mft File: z7B65d0AqScU2zWnIQRdnS644xc.mft (raw, json) Hash identifier: tn/sWkHYaOWIpuSTYJZWj3/lSiZxA6F3hGhtADOtDX8= Subject key identifier: 4A:16:9F:EE:C8:80:96:BC:B5:6D:D0:85:1B:E1:ED:08:21:69:0D:D5 Authority key identifier: CF:B0:7A:E5:DD:00:A9:27:14:DB:35:A7:21:04:5D:9D:2E:B8:E3:17 Certificate issuer: /CN=A9189A9F/serialNumber=CFB07AE5DD00A92714DB35A721045D9D2EB8E317 Certificate serial: 0E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/z7B65d0AqScU2zWnIQRdnS644xc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9189A9F/8056BA568A9011EC8C1B0D22C4F9AE02/z7B65d0AqScU2zWnIQRdnS644xc.mft Manifest number: 03DF Signing time: Thu 19 Jun 2025 00:27:19 +0000 Manifest this update: Thu 19 Jun 2025 00:27:18 +0000 Manifest next update: Thu 26 Jun 2025 00:27:18 +0000 Files and hashes: 1: z7B65d0AqScU2zWnIQRdnS644xc.crl (hash: V6nGu3omAMNjNiPNq8uz/hPCWkxkE+V/DxrggZ86f6U=) 2: 42A92B3C3BAC11F0882B5B62C4F9AE02.roa (hash: 3kUfpfWFsRQio/I2rlN7rqdOffzKtu9waWZ7PwEcB0U=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9189A9F/8056BA568A9011EC8C1B0D22C4F9AE02/z7B65d0AqScU2zWnIQRdnS644xc.crl rsync://rpki.apnic.net/member_repository/A9189A9F/8056BA568A9011EC8C1B0D22C4F9AE02/z7B65d0AqScU2zWnIQRdnS644xc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/z7B65d0AqScU2zWnIQRdnS644xc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 26 Jun 2025 00:27:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 14 (0xe) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9189A9F, serialNumber=CFB07AE5DD00A92714DB35A721045D9D2EB8E317 Validity Not Before: Jun 19 00:27:18 2025 GMT Not After : Jun 26 00:27:18 2025 GMT Subject: CN=68535966-fb68 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:32:cf:1e:d7:07:d4:5e:4d:41:fd:14:4e:82: c0:29:c9:3e:3d:2b:0e:3d:39:8b:53:ac:9f:44:ee: dd:a3:77:a1:8d:78:b7:8b:2b:eb:8a:c1:5b:87:d2: 78:c9:b0:fb:35:fc:a3:00:d6:c7:7f:37:57:6d:2d: 85:5b:bd:f5:6a:ed:c5:6f:59:83:94:2d:c2:cb:ab: d8:9b:37:c0:8a:40:ce:4e:11:af:25:22:b5:d2:0e: 6c:15:e2:e1:17:fb:52:09:88:0c:a1:dc:33:57:1e: 9c:27:01:c6:de:65:37:70:34:57:a9:4a:a9:6b:a1: 4d:b9:50:7b:df:26:b0:4b:68:2f:11:4d:46:9b:7a: b0:10:62:e2:71:36:25:81:15:ac:9a:4b:f4:af:6e: e9:ce:b4:5e:23:c0:4b:13:9f:14:0e:f2:3d:56:6b: 1d:ea:6d:6a:d0:69:a5:80:7c:e8:77:f6:d2:d7:a3: 59:28:49:e8:0e:e0:57:e7:93:5b:2c:e7:5c:3f:de: d2:5e:b4:46:09:98:f7:7e:28:0d:d8:44:a6:7d:0e: ee:bf:88:45:8f:47:04:97:e8:b9:3f:ee:e9:04:05: ea:0e:fe:42:00:e9:f5:27:fb:eb:08:58:34:f3:5f: e0:e2:72:2a:a7:54:e5:a2:55:08:58:3d:04:42:0f: 34:c9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4A:16:9F:EE:C8:80:96:BC:B5:6D:D0:85:1B:E1:ED:08:21:69:0D:D5 X509v3 Authority Key Identifier: keyid:CF:B0:7A:E5:DD:00:A9:27:14:DB:35:A7:21:04:5D:9D:2E:B8:E3:17 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9189A9F/8056BA568A9011EC8C1B0D22C4F9AE02/z7B65d0AqScU2zWnIQRdnS644xc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/z7B65d0AqScU2zWnIQRdnS644xc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9189A9F/8056BA568A9011EC8C1B0D22C4F9AE02/z7B65d0AqScU2zWnIQRdnS644xc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 06:ad:ac:98:a1:4a:1b:23:2d:9c:5f:92:44:ab:fc:a5:b8:cc: a2:c8:45:7c:bd:72:12:c6:ea:69:2c:18:97:61:79:05:18:0f: 43:26:89:8b:3f:4c:6b:49:1c:98:64:3d:66:14:ea:c9:80:46: 2c:38:4c:99:46:22:4d:5b:fe:d3:62:3a:bf:57:fa:a1:d4:fd: 9a:f1:69:00:a0:db:f5:9c:89:75:d7:99:da:da:ee:07:65:3a: 41:17:af:76:1d:93:88:2a:ea:de:e5:da:68:60:90:d2:c9:2e: c4:26:8a:32:e5:27:22:10:34:7f:02:6a:28:1b:fb:31:24:dd: 71:c7:26:b5:46:a1:ee:be:b3:9b:11:d3:c0:51:f2:52:a0:a8: da:7e:ed:8b:e3:d6:66:17:eb:bb:9b:7e:48:b8:0b:4d:68:a5: 63:da:82:fd:8e:fa:97:99:97:6f:a2:99:1c:f6:a2:b6:93:90: da:01:b8:a8:26:a6:15:a8:de:4b:49:df:01:0e:cc:a8:5d:1f: 35:18:2c:e3:26:f4:14:ae:61:bc:aa:37:09:a7:5b:b7:32:09: f4:a2:ca:8c:88:0c:1e:03:55:f4:49:93:88:22:b4:cb:cf:c0: 1b:66:44:0b:80:f0:8a:4c:07:10:51:52:3a:f2:59:a5:ce:25: 77:25:b2:79 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBDjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE4 OUE5RjExMC8GA1UEBRMoQ0ZCMDdBRTVERDAwQTkyNzE0REIzNUE3MjEwNDVEOUQy RUI4RTMxNzAeFw0yNTA2MTkwMDI3MThaFw0yNTA2MjYwMDI3MThaMBgxFjAUBgNV BAMTDTY4NTM1OTY2LWZiNjgwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQC0Ms8e1wfUXk1B/RROgsApyT49Kw49OYtTrJ9E7t2jd6GNeLeLK+uKwVuH0njJ sPs1/KMA1sd/N1dtLYVbvfVq7cVvWYOULcLLq9ibN8CKQM5OEa8lIrXSDmwV4uEX +1IJiAyh3DNXHpwnAcbeZTdwNFepSqlroU25UHvfJrBLaC8RTUaberAQYuJxNiWB FayaS/SvbunOtF4jwEsTnxQO8j1Wax3qbWrQaaWAfOh39tLXo1koSegO4Ffnk1ss 51w/3tJetEYJmPd+KA3YRKZ9Du6/iEWPRwSX6Lk/7ukEBeoO/kIA6fUn++sIWDTz X+DiciqnVOWiVQhYPQRCDzTJAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUShaf7siA lry1bdCFG+HtCCFpDdUwHwYDVR0jBBgwFoAUz7B65d0AqScU2zWnIQRdnS644xcw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTg5QTlGLzgwNTZCQTU2OEE5 MDExRUM4QzFCMEQyMkM0RjlBRTAyL3o3QjY1ZDBBcVNjVTJ6V25JUVJkblM2NDR4 Yy5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvejdCNjVkMEFxU2NVMnpXbklRUmRuUzY0NHhjLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTg5 QTlGLzgwNTZCQTU2OEE5MDExRUM4QzFCMEQyMkM0RjlBRTAyL3o3QjY1ZDBBcVNj VTJ6V25JUVJkblM2NDR4Yy5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAAatrJihShsjLZxfkkSr/KW4zKLIRXy9chLG6mksGJdheQUYD0MmiYs/ TGtJHJhkPWYU6smARiw4TJlGIk1b/tNiOr9X+qHU/ZrxaQCg2/WciXXXmdra7gdl OkEXr3Ydk4gq6t7l2mhgkNLJLsQmijLlJyIQNH8Caigb+zEk3XHHJrVGoe6+s5sR 08BR8lKgqNp+7Yvj1mYX67ubfki4C01opWPagv2O+peZl2+imRz2oraTkNoBuKgm phWo3ktJ3wEOzKhdHzUYLOMm9BSuYbyqNwmnW7cyCfSiyoyIDB4DVfRJk4gitMvP wBtmRAuA8IpMBxBRUjryWaXOJXclsnk= -----END CERTIFICATE-----Generated at Fri Jun 20 18:59:28 2025 by rpki-client