$ rpki-client -vvf rpki.apnic.net/member_repository/A918E0B2/67042C18EF6411EB833FC80DC4F9AE02/Cz66iPGtoaG1CJGyZTGj5wm_ZZo.mft File: Cz66iPGtoaG1CJGyZTGj5wm_ZZo.mft (raw, json) Hash identifier: S3sSDY81B8pwGkUPi25J9tTOq6QitkF8SXjKzVnaAlg= Subject key identifier: 7C:4E:64:CD:D4:C0:D6:7C:F8:B6:4C:5D:4F:37:9E:DA:BD:0C:BD:86 Authority key identifier: 0B:3E:BA:88:F1:AD:A1:A1:B5:08:91:B2:65:31:A3:E7:09:BF:65:9A Certificate issuer: /CN=A918E0B2/serialNumber=0B3EBA88F1ADA1A1B50891B26531A3E709BF659A Certificate serial: 0579 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Cz66iPGtoaG1CJGyZTGj5wm_ZZo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918E0B2/67042C18EF6411EB833FC80DC4F9AE02/Cz66iPGtoaG1CJGyZTGj5wm_ZZo.mft Manifest number: 056F Signing time: Fri 08 Aug 2025 23:45:15 +0000 Manifest this update: Fri 08 Aug 2025 23:45:15 +0000 Manifest next update: Fri 15 Aug 2025 23:45:15 +0000 Files and hashes: 1: Cz66iPGtoaG1CJGyZTGj5wm_ZZo.crl (hash: +uMjINTiXQKtE8eF073DeN1IKipp4gKOx8xX/rhemb4=) 2: 63E3EB3EEF6611EB9A7EFE0EC4F9AE02.roa (hash: EqiHTn4Bvx29MtI27T1i2scxIu1sELWg2VCi9UdcIbA=) 3: 64720824EF6611EB9A7EFE0EC4F9AE02.roa (hash: pMhtrW7+OEb1a5aMFUrv7KoBkS+JHvtrZZHpxKICBfQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918E0B2/67042C18EF6411EB833FC80DC4F9AE02/Cz66iPGtoaG1CJGyZTGj5wm_ZZo.crl rsync://rpki.apnic.net/member_repository/A918E0B2/67042C18EF6411EB833FC80DC4F9AE02/Cz66iPGtoaG1CJGyZTGj5wm_ZZo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Cz66iPGtoaG1CJGyZTGj5wm_ZZo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 Aug 2025 05:57:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1401 (0x579) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918E0B2, serialNumber=0B3EBA88F1ADA1A1B50891B26531A3E709BF659A Validity Not Before: Aug 8 23:45:15 2025 GMT Not After : Aug 15 23:45:15 2025 GMT Subject: CN=68968c0b-b13e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:d0:4c:30:a8:c2:dd:68:42:e5:04:f2:fd:a7: fe:08:42:d0:df:cc:10:25:ac:83:b8:ef:74:28:5f: a7:e3:2d:e2:49:3f:4d:a1:ed:99:fd:32:48:93:ff: 02:4d:52:d4:f0:e6:b7:1a:09:ac:c5:09:94:79:4b: 93:51:af:34:3f:a5:c4:e5:8d:a3:cf:ff:b1:81:3a: cc:3f:b3:8c:d2:7a:ef:29:4d:45:3c:03:3e:51:cb: 35:33:94:ec:20:a3:dd:8b:ab:1f:c6:18:ae:fc:9e: 76:f8:b2:e6:e6:b2:bf:30:0f:cb:04:00:64:05:73: 41:c2:fc:57:36:c9:78:6b:bc:8d:19:16:10:d2:08: a8:01:e4:7b:e5:02:7e:0e:3c:ca:9d:7c:20:96:1a: f2:17:a5:2f:70:d2:c7:f4:cf:42:8a:86:72:c5:62: 0d:59:82:47:73:9f:e1:ca:1d:4b:16:bc:a8:44:ed: 85:67:c2:bd:b2:c4:ec:a2:02:d0:05:24:af:4a:a4: 08:f9:c6:fa:b1:a0:c0:cf:25:81:a9:a4:a6:bc:43: 80:51:e3:45:7a:0b:9e:0a:fe:a5:83:e7:d4:ea:e3: de:0f:04:76:a5:55:76:45:ab:1b:68:39:df:7c:98: db:97:cc:93:cc:1a:24:dc:56:03:ce:36:97:7b:b3: 2f:4f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7C:4E:64:CD:D4:C0:D6:7C:F8:B6:4C:5D:4F:37:9E:DA:BD:0C:BD:86 X509v3 Authority Key Identifier: keyid:0B:3E:BA:88:F1:AD:A1:A1:B5:08:91:B2:65:31:A3:E7:09:BF:65:9A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918E0B2/67042C18EF6411EB833FC80DC4F9AE02/Cz66iPGtoaG1CJGyZTGj5wm_ZZo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Cz66iPGtoaG1CJGyZTGj5wm_ZZo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918E0B2/67042C18EF6411EB833FC80DC4F9AE02/Cz66iPGtoaG1CJGyZTGj5wm_ZZo.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 73:c2:69:d3:62:23:2a:83:1b:03:b5:f3:c9:94:63:32:36:c2: 7a:67:20:dc:9b:fd:16:4e:41:5c:f3:6d:c8:5e:a0:da:ea:67: de:c4:3d:bf:57:5a:fb:d5:8b:e7:19:00:d4:af:44:77:bb:4e: cb:d1:f8:48:1f:0b:63:bd:4f:12:91:b1:82:e9:22:6f:03:7d: 3c:30:53:60:4a:6c:40:ff:10:93:92:d9:2a:61:7b:8e:32:ea: 6f:95:e9:33:97:f7:ae:ff:4c:bb:a7:90:40:43:e0:98:34:ee: d5:e2:16:f4:7c:36:f7:fe:62:23:21:16:d8:c9:47:37:3a:85: d4:20:9d:0a:29:67:06:97:05:2b:fd:16:a0:a4:94:8d:bd:51: ee:39:1b:23:54:f6:ee:30:75:5f:55:8d:79:0e:12:6f:bc:e5: 50:b1:58:ba:c8:8a:b9:bb:c3:53:98:99:11:9f:12:fc:c4:bc: 75:4f:be:07:40:2b:27:f5:d5:c4:e3:9c:38:ce:b0:20:3e:ef: f1:a0:a1:fd:1b:c4:db:01:44:b1:b4:96:3a:de:57:ce:23:d7: 6a:f2:c3:a0:f1:1a:4f:87:d0:e8:6d:f1:c5:af:61:f2:7f:b9: a4:69:f8:d0:a5:87:ff:cf:c3:72:a9:79:c6:4d:ec:fe:a3:2d: 90:8d:6a:2e -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBXkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OEUwQjIxMTAvBgNVBAUTKDBCM0VCQTg4RjFBREExQTFCNTA4OTFCMjY1MzFBM0U3 MDlCRjY1OUEwHhcNMjUwODA4MjM0NTE1WhcNMjUwODE1MjM0NTE1WjAYMRYwFAYD VQQDEw02ODk2OGMwYi1iMTNlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAu9BMMKjC3WhC5QTy/af+CELQ38wQJayDuO90KF+n4y3iST9Noe2Z/TJIk/8C TVLU8Oa3GgmsxQmUeUuTUa80P6XE5Y2jz/+xgTrMP7OM0nrvKU1FPAM+Ucs1M5Ts IKPdi6sfxhiu/J52+LLm5rK/MA/LBABkBXNBwvxXNsl4a7yNGRYQ0gioAeR75QJ+ DjzKnXwglhryF6UvcNLH9M9CioZyxWINWYJHc5/hyh1LFryoRO2FZ8K9ssTsogLQ BSSvSqQI+cb6saDAzyWBqaSmvEOAUeNFegueCv6lg+fU6uPeDwR2pVV2RasbaDnf fJjbl8yTzBok3FYDzjaXe7MvTwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFHxOZM3U wNZ8+LZMXU83ntq9DL2GMB8GA1UdIwQYMBaAFAs+uojxraGhtQiRsmUxo+cJv2Wa MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4RTBCMi82NzA0MkMxOEVG NjQxMUVCODMzRkM4MERDNEY5QUUwMi9DejY2aVBHdG9hRzFDSkd5WlRHajV3bV9a Wm8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0N6NjZpUEd0b2FHMUNKR3laVEdqNXdtX1paby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 RTBCMi82NzA0MkMxOEVGNjQxMUVCODMzRkM4MERDNEY5QUUwMi9DejY2aVBHdG9h RzFDSkd5WlRHajV3bV9aWm8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBzwmnTYiMqgxsDtfPJlGMyNsJ6ZyDcm/0WTkFc823IXqDa6mfexD2/ V1r71YvnGQDUr0R3u07L0fhIHwtjvU8SkbGC6SJvA308MFNgSmxA/xCTktkqYXuO Mupvlekzl/eu/0y7p5BAQ+CYNO7V4hb0fDb3/mIjIRbYyUc3OoXUIJ0KKWcGlwUr /RagpJSNvVHuORsjVPbuMHVfVY15DhJvvOVQsVi6yIq5u8NTmJkRnxL8xLx1T74H QCsn9dXE45w4zrAgPu/xoKH9G8TbAUSxtJY63lfOI9dq8sOg8RpPh9DobfHFr2Hy f7mkafjQpYf/z8NyqXnGTez+oy2QjWou -----END CERTIFICATE-----Generated at Sun Aug 10 18:51:19 2025 by rpki-client