$ rpki-client -vvf rpki.apnic.net/member_repository/A918D699/5586EF6A17E911EFA2CD5017C4F9AE02/p0zn2tX7UE2xa75wwvnfCqnwBgk.mft File: p0zn2tX7UE2xa75wwvnfCqnwBgk.mft (raw, json) Hash identifier: eVcjcR39WSuB26gOwOKYu15qb4XGu1M6vvjyUY6SLTQ= Subject key identifier: A7:9D:B9:0D:A4:DE:DC:6E:B2:FB:00:BF:9D:6A:AF:DA:85:6C:91:81 Authority key identifier: A7:4C:E7:DA:D5:FB:50:4D:B1:6B:BE:70:C2:F9:DF:0A:A9:F0:06:09 Certificate issuer: /CN=A918D699/serialNumber=A74CE7DAD5FB504DB16BBE70C2F9DF0AA9F00609 Certificate serial: DB Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/p0zn2tX7UE2xa75wwvnfCqnwBgk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918D699/5586EF6A17E911EFA2CD5017C4F9AE02/p0zn2tX7UE2xa75wwvnfCqnwBgk.mft Manifest number: D5 Signing time: Mon 23 Jun 2025 04:32:46 +0000 Manifest this update: Mon 23 Jun 2025 04:32:45 +0000 Manifest next update: Mon 30 Jun 2025 04:32:45 +0000 Files and hashes: 1: p0zn2tX7UE2xa75wwvnfCqnwBgk.crl (hash: M26u0vZod8wxn/0aQ0ozdfvbJ2SjgawcwXkbnvnfd9Q=) 2: C564E80017E911EF9D471E18C4F9AE02.roa (hash: bHWlYJultpd4141lSOHtlDGQNuKfjn0r+UBsEdeuoEk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918D699/5586EF6A17E911EFA2CD5017C4F9AE02/p0zn2tX7UE2xa75wwvnfCqnwBgk.crl rsync://rpki.apnic.net/member_repository/A918D699/5586EF6A17E911EFA2CD5017C4F9AE02/p0zn2tX7UE2xa75wwvnfCqnwBgk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/p0zn2tX7UE2xa75wwvnfCqnwBgk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 30 Jun 2025 04:32:45 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 219 (0xdb) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918D699, serialNumber=A74CE7DAD5FB504DB16BBE70C2F9DF0AA9F00609 Validity Not Before: Jun 23 04:32:45 2025 GMT Not After : Jun 30 04:32:45 2025 GMT Subject: CN=6858d8ee-0c7b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:a1:2d:f4:83:16:4d:6a:1a:97:33:a5:8b:85: 6b:3a:4b:7a:ba:46:58:91:e9:f1:bd:e5:b5:90:37: 66:86:08:15:f5:ac:36:ac:09:a6:e6:31:1c:08:8f: b2:5a:cd:be:9b:de:fd:c0:cc:45:1b:39:a0:a7:13: 99:ee:d8:19:66:6a:2b:74:eb:7d:07:ff:27:d5:20: 1a:68:c9:cf:14:71:be:67:8f:6c:9e:a4:f1:48:47: 19:d9:46:1a:68:61:b7:11:56:11:b5:6b:ef:af:59: 5c:90:3e:a5:bb:44:4f:ba:0b:09:22:55:2c:fa:d7: 46:49:9a:c0:29:fd:b4:5d:a5:af:d5:81:f6:9f:b2: dc:8f:f6:04:18:89:7f:cc:82:42:af:7c:f4:b1:f6: cf:12:55:f0:22:1c:20:38:e4:2d:c7:20:57:80:68: 72:62:53:27:8d:93:5e:d1:09:6b:c8:7c:6f:a5:b8: df:f5:32:63:85:9f:a7:30:79:9a:f9:64:1a:d2:3a: 88:18:de:29:ad:29:bd:76:b4:be:02:2e:4f:e8:82: 86:2c:50:1d:4d:1a:a3:39:fa:f4:55:83:60:3d:df: c6:fa:28:dd:99:71:fb:10:a2:6b:ef:0a:79:47:01: 7e:b1:7d:93:eb:60:06:60:cd:7d:60:60:a6:d8:c0: c1:e3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A7:9D:B9:0D:A4:DE:DC:6E:B2:FB:00:BF:9D:6A:AF:DA:85:6C:91:81 X509v3 Authority Key Identifier: keyid:A7:4C:E7:DA:D5:FB:50:4D:B1:6B:BE:70:C2:F9:DF:0A:A9:F0:06:09 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918D699/5586EF6A17E911EFA2CD5017C4F9AE02/p0zn2tX7UE2xa75wwvnfCqnwBgk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/p0zn2tX7UE2xa75wwvnfCqnwBgk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918D699/5586EF6A17E911EFA2CD5017C4F9AE02/p0zn2tX7UE2xa75wwvnfCqnwBgk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 30:aa:69:7e:4c:7c:5b:bb:e8:b4:2b:b4:72:c7:cf:31:d1:9e: 33:97:97:f6:4c:b5:d6:13:b0:2a:2f:ff:b1:0b:5a:7c:af:4f: 4e:3c:bf:dd:96:19:2c:46:2b:53:65:98:4a:09:0b:13:ea:61: d4:79:d0:89:e4:80:cb:49:31:25:ab:81:65:fd:d1:ba:04:88: 57:63:4e:15:0a:6d:6c:49:c9:06:e5:1b:68:4e:f4:74:e7:ee: d0:51:55:6c:9b:42:16:26:67:e3:7f:f9:78:98:d3:59:64:d6: e5:33:48:5a:ee:4a:30:5f:c2:c4:50:52:3c:c7:91:91:9b:7f: 54:54:a4:65:93:d0:05:8f:bf:f7:4b:cc:51:88:6a:2a:63:49: 32:90:78:7c:76:b9:13:70:57:62:3a:23:63:1c:bf:cd:5d:84: b5:3e:f8:e7:bb:bf:a3:79:08:1b:67:fb:4f:68:5f:1f:58:73: 3a:6e:df:4b:9f:a4:6f:4c:64:75:23:52:1f:27:76:99:90:9e: b6:3a:5f:a7:a3:0f:61:0a:63:4b:4b:8d:75:c4:39:fe:af:02: f4:f5:70:59:13:97:1c:24:d8:4d:d6:fb:c9:42:67:ba:85:a7: 79:e6:89:40:79:09:1f:41:5d:c3:79:d2:42:b9:ef:0b:8d:e7: 6b:4f:8b:c0 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICANswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OEQ2OTkxMTAvBgNVBAUTKEE3NENFN0RBRDVGQjUwNERCMTZCQkU3MEMyRjlERjBB QTlGMDA2MDkwHhcNMjUwNjIzMDQzMjQ1WhcNMjUwNjMwMDQzMjQ1WjAYMRYwFAYD VQQDEw02ODU4ZDhlZS0wYzdiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvKEt9IMWTWoalzOli4VrOkt6ukZYkenxveW1kDdmhggV9aw2rAmm5jEcCI+y Ws2+m979wMxFGzmgpxOZ7tgZZmordOt9B/8n1SAaaMnPFHG+Z49snqTxSEcZ2UYa aGG3EVYRtWvvr1lckD6lu0RPugsJIlUs+tdGSZrAKf20XaWv1YH2n7Lcj/YEGIl/ zIJCr3z0sfbPElXwIhwgOOQtxyBXgGhyYlMnjZNe0QlryHxvpbjf9TJjhZ+nMHma +WQa0jqIGN4prSm9drS+Ai5P6IKGLFAdTRqjOfr0VYNgPd/G+ijdmXH7EKJr7wp5 RwF+sX2T62AGYM19YGCm2MDB4wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFKeduQ2k 3txusvsAv51qr9qFbJGBMB8GA1UdIwQYMBaAFKdM59rV+1BNsWu+cML53wqp8AYJ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4RDY5OS81NTg2RUY2QTE3 RTkxMUVGQTJDRDUwMTdDNEY5QUUwMi9wMHpuMnRYN1VFMnhhNzV3d3ZuZkNxbndC Z2suY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3Awem4ydFg3VUUyeGE3NXd3dm5mQ3Fud0Jnay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 RDY5OS81NTg2RUY2QTE3RTkxMUVGQTJDRDUwMTdDNEY5QUUwMi9wMHpuMnRYN1VF MnhhNzV3d3ZuZkNxbndCZ2subWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAwqml+THxbu+i0K7Ryx88x0Z4zl5f2TLXWE7AqL/+xC1p8r09OPL/d lhksRitTZZhKCQsT6mHUedCJ5IDLSTElq4Fl/dG6BIhXY04VCm1sSckG5RtoTvR0 5+7QUVVsm0IWJmfjf/l4mNNZZNblM0ha7kowX8LEUFI8x5GRm39UVKRlk9AFj7/3 S8xRiGoqY0kykHh8drkTcFdiOiNjHL/NXYS1Pvjnu7+jeQgbZ/tPaF8fWHM6bt9L n6RvTGR1I1IfJ3aZkJ62Ol+now9hCmNLS411xDn+rwL09XBZE5ccJNhN1vvJQme6 had55olAeQkfQV3DedJCue8LjedrT4vA -----END CERTIFICATE-----Generated at Mon Jun 23 08:06:27 2025 by rpki-client