$ rpki-client -vvf rpki.apnic.net/member_repository/A9197724/56C67076904D11EFA1103864C4F9AE02/pRz7iig43CPyh2RKRzXvwT2MMRM.mft File: pRz7iig43CPyh2RKRzXvwT2MMRM.mft (raw, json) Hash identifier: hGla9YMshk+/fHxu4kwIzmrIV9ZIZQ33BrIHom52EzY= Subject key identifier: 68:AD:66:F4:DE:37:59:1B:BA:9E:69:C7:7F:63:00:20:FA:92:B3:C2 Authority key identifier: A5:1C:FB:8A:28:38:DC:23:F2:87:64:4A:47:35:EF:C1:3D:8C:31:13 Certificate issuer: /CN=A9197724/serialNumber=A51CFB8A2838DC23F287644A4735EFC13D8C3113 Certificate serial: 7E Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/pRz7iig43CPyh2RKRzXvwT2MMRM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9197724/56C67076904D11EFA1103864C4F9AE02/pRz7iig43CPyh2RKRzXvwT2MMRM.mft Manifest number: 7D Signing time: Thu 19 Jun 2025 06:03:29 +0000 Manifest this update: Thu 19 Jun 2025 06:03:29 +0000 Manifest next update: Thu 26 Jun 2025 06:03:29 +0000 Files and hashes: 1: pRz7iig43CPyh2RKRzXvwT2MMRM.crl (hash: 7T+5nCXwfp8Zt8BO8lzBok4oUQbEC2Ei/JEsS/7OKIA=) 2: A2C3AA7E904E11EF9FC6B922C4F9AE02.roa (hash: bRFbzj6pr/OF3ESUy9ky5waEguFBGACn3nS0+utKTXI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9197724/56C67076904D11EFA1103864C4F9AE02/pRz7iig43CPyh2RKRzXvwT2MMRM.crl rsync://rpki.apnic.net/member_repository/A9197724/56C67076904D11EFA1103864C4F9AE02/pRz7iig43CPyh2RKRzXvwT2MMRM.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/pRz7iig43CPyh2RKRzXvwT2MMRM.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 26 Jun 2025 06:03:28 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 126 (0x7e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9197724, serialNumber=A51CFB8A2838DC23F287644A4735EFC13D8C3113 Validity Not Before: Jun 19 06:03:29 2025 GMT Not After : Jun 26 06:03:29 2025 GMT Subject: CN=6853a831-4686 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c8:4f:b7:85:12:32:a2:3a:aa:c0:a5:c2:8a:b9: 4c:ff:8b:23:1c:a2:13:dd:b3:56:d3:14:54:05:e0: d0:73:86:f5:94:73:a3:50:01:2e:34:bb:b3:aa:00: 37:7d:09:3a:d4:17:fc:38:70:9d:8c:a0:d6:ef:8e: e5:d6:69:9f:82:7f:76:b9:93:78:27:eb:00:f1:45: a8:a2:62:23:57:70:bf:af:f7:a7:7a:f4:85:c5:4b: f2:26:27:cc:6d:61:90:b6:96:f7:84:6c:f3:34:74: ab:5e:2e:d1:4f:77:fd:3e:e8:87:67:5a:3b:dd:78: 7b:60:e2:38:13:67:a9:6e:72:69:c9:c2:fe:55:7e: a3:e6:7e:e3:25:31:36:8f:1f:d1:54:65:32:23:92: e7:53:d6:dd:90:f4:f4:8d:fd:b8:6b:c0:89:10:d7: 91:90:7f:85:c4:46:93:c1:44:c9:e2:8e:0b:de:b8: 87:78:af:50:95:28:4a:05:ce:bf:63:d5:b0:f9:fb: b9:09:5c:d6:69:09:48:f3:b9:a1:ee:d1:5a:5f:b3: 61:7f:55:95:0d:cd:87:76:5e:3a:fe:d2:d7:ab:27: 82:26:f4:72:94:24:31:f4:04:01:fa:81:5f:fc:f8: ea:1a:a4:b6:36:81:18:c2:7a:62:32:b8:14:17:82: a9:1d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 68:AD:66:F4:DE:37:59:1B:BA:9E:69:C7:7F:63:00:20:FA:92:B3:C2 X509v3 Authority Key Identifier: keyid:A5:1C:FB:8A:28:38:DC:23:F2:87:64:4A:47:35:EF:C1:3D:8C:31:13 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9197724/56C67076904D11EFA1103864C4F9AE02/pRz7iig43CPyh2RKRzXvwT2MMRM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/pRz7iig43CPyh2RKRzXvwT2MMRM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9197724/56C67076904D11EFA1103864C4F9AE02/pRz7iig43CPyh2RKRzXvwT2MMRM.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption c5:08:f2:6c:ce:94:1b:7d:8c:c1:ed:0e:d6:59:39:6f:0e:2a: 01:c5:3d:5f:85:71:cd:c1:8a:cd:ed:95:a9:82:10:64:f0:05: 53:0b:c5:a3:ef:fc:a0:fe:4a:fd:62:0c:97:92:b9:9c:0d:1d: d9:35:3c:08:ef:23:a3:8d:bf:d0:5a:fd:b9:83:f6:d5:29:ee: 48:65:08:39:be:28:f1:b3:fa:65:a7:f4:71:f4:9f:2d:df:b6: 4a:f2:6b:5a:ba:6b:9c:a2:99:37:22:c5:20:16:c3:7e:f2:36: 1d:3b:e6:6e:92:69:3c:de:30:14:87:bf:7a:fa:50:97:bb:0b: 4b:92:1a:72:39:99:02:71:0e:2b:45:a0:dd:fc:0f:d4:ef:20: 91:20:b1:09:9d:fa:1e:bb:fb:1a:f2:a8:50:83:92:84:98:4c: be:02:fd:00:1c:67:4c:7a:60:41:00:9c:76:7d:6a:5d:9b:05: 8d:25:7e:de:35:5d:0d:23:f1:83:6c:dd:8c:cd:e7:95:93:01: 0a:28:20:95:70:ab:d5:47:70:4c:e8:8a:96:c4:a8:ef:96:a7: 35:ff:a0:87:e3:63:69:35:3d:8c:05:c8:98:e7:9c:a9:ce:73: 74:e1:03:8a:ff:c0:79:da:09:3e:b9:1c:0e:78:60:1b:8f:25: b0:34:67:cc -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBfjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE5 NzcyNDExMC8GA1UEBRMoQTUxQ0ZCOEEyODM4REMyM0YyODc2NDRBNDczNUVGQzEz RDhDMzExMzAeFw0yNTA2MTkwNjAzMjlaFw0yNTA2MjYwNjAzMjlaMBgxFjAUBgNV BAMTDTY4NTNhODMxLTQ2ODYwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDIT7eFEjKiOqrApcKKuUz/iyMcohPds1bTFFQF4NBzhvWUc6NQAS40u7OqADd9 CTrUF/w4cJ2MoNbvjuXWaZ+Cf3a5k3gn6wDxRaiiYiNXcL+v96d69IXFS/ImJ8xt YZC2lveEbPM0dKteLtFPd/0+6IdnWjvdeHtg4jgTZ6lucmnJwv5VfqPmfuMlMTaP H9FUZTIjkudT1t2Q9PSN/bhrwIkQ15GQf4XERpPBRMnijgveuId4r1CVKEoFzr9j 1bD5+7kJXNZpCUjzuaHu0Vpfs2F/VZUNzYd2Xjr+0terJ4Im9HKUJDH0BAH6gV/8 +OoapLY2gRjCemIyuBQXgqkdAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUaK1m9N43 WRu6nmnHf2MAIPqSs8IwHwYDVR0jBBgwFoAUpRz7iig43CPyh2RKRzXvwT2MMRMw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTk3NzI0LzU2QzY3MDc2OTA0 RDExRUZBMTEwMzg2NEM0RjlBRTAyL3BSejdpaWc0M0NQeWgyUktSelh2d1QyTU1S TS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvcFJ6N2lpZzQzQ1B5aDJSS1J6WHZ3VDJNTVJNLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTk3 NzI0LzU2QzY3MDc2OTA0RDExRUZBMTEwMzg2NEM0RjlBRTAyL3BSejdpaWc0M0NQ eWgyUktSelh2d1QyTU1STS5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAMUI8mzOlBt9jMHtDtZZOW8OKgHFPV+Fcc3Bis3tlamCEGTwBVMLxaPv /KD+Sv1iDJeSuZwNHdk1PAjvI6ONv9Ba/bmD9tUp7khlCDm+KPGz+mWn9HH0ny3f tkrya1q6a5yimTcixSAWw37yNh075m6SaTzeMBSHv3r6UJe7C0uSGnI5mQJxDitF oN38D9TvIJEgsQmd+h67+xryqFCDkoSYTL4C/QAcZ0x6YEEAnHZ9al2bBY0lft41 XQ0j8YNs3YzN55WTAQooIJVwq9VHcEzoipbEqO+WpzX/oIfjY2k1PYwFyJjnnKnO c3ThA4r/wHnaCT65HA54YBuPJbA0Z8w= -----END CERTIFICATE-----Generated at Sat Jun 21 01:49:49 2025 by rpki-client