$ rpki-client -vvf rpki.apnic.net/member_repository/A918E0B2/67042C18EF6411EB833FC80DC4F9AE02/Cz66iPGtoaG1CJGyZTGj5wm_ZZo.mft File: Cz66iPGtoaG1CJGyZTGj5wm_ZZo.mft (raw, json) Hash identifier: bT/Ac9CNtX+ke2m9C7OS0OqAegQtC27hXSNRrItb2Dw= Subject key identifier: B0:36:0A:4C:5D:BB:1D:32:A1:26:08:FE:C9:71:B4:19:3D:E6:6A:78 Authority key identifier: 0B:3E:BA:88:F1:AD:A1:A1:B5:08:91:B2:65:31:A3:E7:09:BF:65:9A Certificate issuer: /CN=A918E0B2/serialNumber=0B3EBA88F1ADA1A1B50891B26531A3E709BF659A Certificate serial: 055F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Cz66iPGtoaG1CJGyZTGj5wm_ZZo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918E0B2/67042C18EF6411EB833FC80DC4F9AE02/Cz66iPGtoaG1CJGyZTGj5wm_ZZo.mft Manifest number: 0555 Signing time: Wed 18 Jun 2025 23:13:30 +0000 Manifest this update: Wed 18 Jun 2025 23:13:30 +0000 Manifest next update: Wed 25 Jun 2025 23:13:30 +0000 Files and hashes: 1: Cz66iPGtoaG1CJGyZTGj5wm_ZZo.crl (hash: vnhKex1yzzihxmM9LvdJwzxibORD5rcoTqq3Okm8CFY=) 2: 63E3EB3EEF6611EB9A7EFE0EC4F9AE02.roa (hash: EqiHTn4Bvx29MtI27T1i2scxIu1sELWg2VCi9UdcIbA=) 3: 64720824EF6611EB9A7EFE0EC4F9AE02.roa (hash: pMhtrW7+OEb1a5aMFUrv7KoBkS+JHvtrZZHpxKICBfQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918E0B2/67042C18EF6411EB833FC80DC4F9AE02/Cz66iPGtoaG1CJGyZTGj5wm_ZZo.crl rsync://rpki.apnic.net/member_repository/A918E0B2/67042C18EF6411EB833FC80DC4F9AE02/Cz66iPGtoaG1CJGyZTGj5wm_ZZo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Cz66iPGtoaG1CJGyZTGj5wm_ZZo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 25 Jun 2025 23:13:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1375 (0x55f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918E0B2, serialNumber=0B3EBA88F1ADA1A1B50891B26531A3E709BF659A Validity Not Before: Jun 18 23:13:30 2025 GMT Not After : Jun 25 23:13:30 2025 GMT Subject: CN=6853481a-0210 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d1:7d:24:65:78:d0:42:ab:1b:da:57:d5:eb:d8: f5:0f:35:01:a7:e1:8f:be:6e:ee:29:c4:60:01:d4: 62:d4:b9:0f:44:84:44:3a:ab:1e:56:5b:d5:06:da: bf:14:05:c2:3b:b5:1e:25:b3:2f:1f:de:af:44:1a: 9c:e3:84:7d:8b:5d:a4:8b:12:17:8b:18:ad:eb:23: 47:8d:49:e6:65:d6:65:d6:99:da:86:94:73:83:a8: 50:7d:1c:21:66:9f:cf:71:61:7c:c2:fc:20:52:ee: 98:43:68:85:b5:d9:79:24:ee:b6:96:8f:5e:6d:4b: 2a:31:1a:f1:89:d3:8a:5c:1e:43:82:cb:63:3d:e1: 88:66:2c:a5:6b:28:66:e3:9d:34:7d:90:7b:0b:69: 31:ac:ec:67:94:22:05:ca:e6:52:fd:5c:8c:cf:52: eb:a1:08:b9:0a:67:74:de:4f:ab:ce:6a:43:28:c4: b7:36:85:bc:a9:c6:06:08:0b:10:6f:6f:81:bc:54: a4:b7:b9:c7:98:61:87:bf:5e:1e:ed:4c:ba:95:f9: 76:9a:e2:b4:99:af:ea:ff:ad:6a:5c:8d:57:d4:c1: e9:65:48:32:e3:12:ec:e9:09:08:dc:47:f6:f1:92: 58:3b:ce:54:46:15:b4:a5:a1:b8:95:d9:b7:af:4a: 1f:93 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B0:36:0A:4C:5D:BB:1D:32:A1:26:08:FE:C9:71:B4:19:3D:E6:6A:78 X509v3 Authority Key Identifier: keyid:0B:3E:BA:88:F1:AD:A1:A1:B5:08:91:B2:65:31:A3:E7:09:BF:65:9A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918E0B2/67042C18EF6411EB833FC80DC4F9AE02/Cz66iPGtoaG1CJGyZTGj5wm_ZZo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Cz66iPGtoaG1CJGyZTGj5wm_ZZo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918E0B2/67042C18EF6411EB833FC80DC4F9AE02/Cz66iPGtoaG1CJGyZTGj5wm_ZZo.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 63:ce:ba:71:00:b7:55:c4:99:4a:96:40:8e:23:f0:f5:e7:84: ab:0e:cb:26:b8:53:5b:e1:36:ba:f1:41:1d:cb:ea:fb:ef:2c: 0d:31:87:af:69:d3:c3:4a:f7:de:e4:5a:a4:cd:0f:f7:3e:d0: 72:ea:6c:83:6f:61:99:57:b4:f0:bc:cf:93:10:61:26:99:2a: 03:2e:50:55:3f:a9:0e:5c:01:2b:b7:f4:e9:73:78:67:0b:30: f2:e2:77:44:33:b5:26:f2:5d:40:5d:01:79:bc:e8:e8:19:8a: da:ae:ca:81:70:5d:7b:9e:2b:46:21:dc:6c:fb:e3:27:80:81: 5a:ac:8b:40:df:e8:76:3c:71:8e:8a:39:51:4a:31:64:ec:d5: b9:6a:6b:02:51:e9:1f:b7:c9:c1:63:0a:36:fd:46:da:68:4a: f6:86:08:53:ba:fd:41:0d:7d:2b:5a:01:d5:e3:85:f5:3a:bc: 6f:38:4d:81:e5:79:e2:0c:52:fb:14:75:57:de:fc:6c:30:28: ec:49:06:26:6f:16:88:9f:45:bd:b5:a3:6a:d1:32:c0:a6:5d: 44:26:b9:41:26:3f:6c:ab:c4:d4:82:f0:1e:59:59:90:ce:3f: 86:4d:a3:82:de:8f:eb:4f:ca:34:68:bc:1a:b5:24:29:22:45: 93:3a:b3:96 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBV8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OEUwQjIxMTAvBgNVBAUTKDBCM0VCQTg4RjFBREExQTFCNTA4OTFCMjY1MzFBM0U3 MDlCRjY1OUEwHhcNMjUwNjE4MjMxMzMwWhcNMjUwNjI1MjMxMzMwWjAYMRYwFAYD VQQDEw02ODUzNDgxYS0wMjEwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0X0kZXjQQqsb2lfV69j1DzUBp+GPvm7uKcRgAdRi1LkPRIREOqseVlvVBtq/ FAXCO7UeJbMvH96vRBqc44R9i12kixIXixit6yNHjUnmZdZl1pnahpRzg6hQfRwh Zp/PcWF8wvwgUu6YQ2iFtdl5JO62lo9ebUsqMRrxidOKXB5DgstjPeGIZiylayhm 4500fZB7C2kxrOxnlCIFyuZS/VyMz1LroQi5Cmd03k+rzmpDKMS3NoW8qcYGCAsQ b2+BvFSkt7nHmGGHv14e7Uy6lfl2muK0ma/q/61qXI1X1MHpZUgy4xLs6QkI3Ef2 8ZJYO85URhW0paG4ldm3r0ofkwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFLA2Ckxd ux0yoSYI/slxtBk95mp4MB8GA1UdIwQYMBaAFAs+uojxraGhtQiRsmUxo+cJv2Wa MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4RTBCMi82NzA0MkMxOEVG NjQxMUVCODMzRkM4MERDNEY5QUUwMi9DejY2aVBHdG9hRzFDSkd5WlRHajV3bV9a Wm8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0N6NjZpUEd0b2FHMUNKR3laVEdqNXdtX1paby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 RTBCMi82NzA0MkMxOEVGNjQxMUVCODMzRkM4MERDNEY5QUUwMi9DejY2aVBHdG9h RzFDSkd5WlRHajV3bV9aWm8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBjzrpxALdVxJlKlkCOI/D154SrDssmuFNb4Ta68UEdy+r77ywNMYev adPDSvfe5FqkzQ/3PtBy6myDb2GZV7TwvM+TEGEmmSoDLlBVP6kOXAErt/Tpc3hn CzDy4ndEM7Um8l1AXQF5vOjoGYrarsqBcF17nitGIdxs++MngIFarItA3+h2PHGO ijlRSjFk7NW5amsCUekft8nBYwo2/UbaaEr2hghTuv1BDX0rWgHV44X1OrxvOE2B 5XniDFL7FHVX3vxsMCjsSQYmbxaIn0W9taNq0TLApl1EJrlBJj9sq8TUgvAeWVmQ zj+GTaOC3o/rT8o0aLwatSQpIkWTOrOW -----END CERTIFICATE-----Generated at Fri Jun 20 20:55:24 2025 by rpki-client