$ rpki-client -vvf rpki.apnic.net/member_repository/A91D5590/A895249EF7C511EA871C000CC4F9AE02/cZYTj9n8jHj-hDolPLBICtzFfw0.mft File: cZYTj9n8jHj-hDolPLBICtzFfw0.mft (raw, json) Hash identifier: u9TCdbkcJRJfhUSIwFRG/UXTiomDVet81zauKb5Wedw= Subject key identifier: 19:D0:A8:F6:30:7E:D7:42:5D:39:5A:55:D4:4F:C1:E8:07:23:97:C5 Authority key identifier: 71:96:13:8F:D9:FC:8C:78:FE:84:3A:25:3C:B0:48:0A:DC:C5:7F:0D Certificate issuer: /CN=A91D5590/serialNumber=7196138FD9FC8C78FE843A253CB0480ADCC57F0D Certificate serial: 07D2 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cZYTj9n8jHj-hDolPLBICtzFfw0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D5590/A895249EF7C511EA871C000CC4F9AE02/cZYTj9n8jHj-hDolPLBICtzFfw0.mft Manifest number: 07C8 Signing time: Sat 14 Jun 2025 20:53:08 +0000 Manifest this update: Sat 14 Jun 2025 20:53:07 +0000 Manifest next update: Sat 21 Jun 2025 20:53:07 +0000 Files and hashes: 1: cZYTj9n8jHj-hDolPLBICtzFfw0.crl (hash: FBJk/hBcs3ILiPbf6hqELvx1wvdj6fw0Pw3QOFy8EO4=) 2: 986F0854F7C611EA8B23C30CC4F9AE02.roa (hash: F2B6eTQtjw4DMTGhIIRc21e5xRW7fmJOpub38olCp9w=) 3: 9920D2E6F7C611EA8B23C30CC4F9AE02.roa (hash: d0oN/FUNzNpOKmQI6ds/0v5d1ZE90v5NzlRPE14knFk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D5590/A895249EF7C511EA871C000CC4F9AE02/cZYTj9n8jHj-hDolPLBICtzFfw0.crl rsync://rpki.apnic.net/member_repository/A91D5590/A895249EF7C511EA871C000CC4F9AE02/cZYTj9n8jHj-hDolPLBICtzFfw0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cZYTj9n8jHj-hDolPLBICtzFfw0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 21 Jun 2025 20:53:06 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2002 (0x7d2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D5590, serialNumber=7196138FD9FC8C78FE843A253CB0480ADCC57F0D Validity Not Before: Jun 14 20:53:07 2025 GMT Not After : Jun 21 20:53:07 2025 GMT Subject: CN=684de133-3996 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d0:3a:06:b3:d6:7c:bf:00:c0:9a:64:d0:5d:86: 13:1e:2a:14:0d:be:37:31:c9:1d:1e:03:3a:77:d4: a6:f2:d3:95:a7:ce:e0:49:91:4e:c0:0b:f7:c6:1b: 56:67:51:aa:3c:cb:33:10:18:f3:af:0a:cc:c4:8c: 2d:95:78:8f:21:af:35:cc:9f:7d:70:cf:57:1f:f6: 01:4d:49:3d:5f:57:f4:d8:e3:ae:ef:bb:d2:92:11: 65:79:f1:86:16:52:d6:24:07:4e:d4:2f:eb:69:05: d2:c3:f5:b7:5e:c3:fa:5f:ef:f3:4b:db:9d:1f:8a: c8:5d:f1:58:ab:2e:a5:76:96:7e:78:e0:6d:64:93: 42:67:30:f3:d9:a3:34:54:15:9c:8e:95:5a:da:58: 0c:5e:8d:d4:8b:67:93:f3:fe:6c:56:50:ce:56:88: b1:fb:14:2f:bd:2c:02:93:4e:19:0b:f4:20:c3:d9: f0:67:c0:3e:2a:90:c7:85:0d:75:8f:7e:7b:0c:37: 52:24:17:d9:d2:58:1f:cc:e5:77:12:32:8d:a8:bb: 64:a8:f6:a7:de:d0:d0:29:d5:1a:85:24:be:f7:cc: d3:61:17:f6:6e:6a:8b:24:01:5e:f7:47:b9:42:2f: 9c:ea:fd:82:50:fd:dc:a8:d9:a6:c7:45:d8:ac:48: 76:0f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 19:D0:A8:F6:30:7E:D7:42:5D:39:5A:55:D4:4F:C1:E8:07:23:97:C5 X509v3 Authority Key Identifier: keyid:71:96:13:8F:D9:FC:8C:78:FE:84:3A:25:3C:B0:48:0A:DC:C5:7F:0D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D5590/A895249EF7C511EA871C000CC4F9AE02/cZYTj9n8jHj-hDolPLBICtzFfw0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cZYTj9n8jHj-hDolPLBICtzFfw0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D5590/A895249EF7C511EA871C000CC4F9AE02/cZYTj9n8jHj-hDolPLBICtzFfw0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 95:83:82:af:66:be:6c:cb:34:26:34:ec:14:96:a8:e6:62:01: e0:a1:00:47:f3:99:dc:03:ca:3a:54:26:f2:be:5c:58:ae:14: 6b:ed:7e:ce:b5:6d:82:4e:3d:81:b6:c8:8a:06:48:1c:f7:1a: 2f:4e:3f:3f:8a:5e:fd:b1:e8:12:8d:6d:30:4c:ae:a1:48:5d: 97:c9:e4:74:43:44:de:9d:7d:e8:76:94:aa:59:23:e3:cf:53: 00:d9:96:10:9e:32:3a:f0:8e:ac:5f:b1:07:bd:9f:9f:02:30: 06:ef:b0:54:9c:25:7d:6d:92:9e:45:13:80:58:28:d9:e1:9f: 20:e5:7d:56:37:95:d9:e7:1e:d1:60:ab:1a:ef:6b:1a:7a:5b: 9f:80:33:91:37:b3:3d:6c:05:2f:77:8b:51:ca:00:0a:2a:d5: 80:ae:ce:5f:29:6b:3d:2d:48:90:e1:fa:d9:0e:cd:2c:74:92: 7a:62:66:15:3c:dc:db:62:c5:1c:36:2a:9e:15:2b:b5:e2:68: 57:43:22:ef:bb:fb:0e:02:a2:7b:e3:50:3f:d6:01:0c:ad:35: 61:62:28:cc:02:d1:30:e7:21:c7:01:f4:72:d7:97:a4:be:dc: a3:38:92:b7:47:5d:b6:10:a3:2e:93:d7:39:83:6d:92:57:1b: 02:27:8e:37 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICB9IwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDU1OTAxMTAvBgNVBAUTKDcxOTYxMzhGRDlGQzhDNzhGRTg0M0EyNTNDQjA0ODBB RENDNTdGMEQwHhcNMjUwNjE0MjA1MzA3WhcNMjUwNjIxMjA1MzA3WjAYMRYwFAYD VQQDEw02ODRkZTEzMy0zOTk2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0DoGs9Z8vwDAmmTQXYYTHioUDb43MckdHgM6d9Sm8tOVp87gSZFOwAv3xhtW Z1GqPMszEBjzrwrMxIwtlXiPIa81zJ99cM9XH/YBTUk9X1f02OOu77vSkhFlefGG FlLWJAdO1C/raQXSw/W3XsP6X+/zS9udH4rIXfFYqy6ldpZ+eOBtZJNCZzDz2aM0 VBWcjpVa2lgMXo3Ui2eT8/5sVlDOVoix+xQvvSwCk04ZC/Qgw9nwZ8A+KpDHhQ11 j357DDdSJBfZ0lgfzOV3EjKNqLtkqPan3tDQKdUahSS+98zTYRf2bmqLJAFe90e5 Qi+c6v2CUP3cqNmmx0XYrEh2DwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFBnQqPYw ftdCXTlaVdRPwegHI5fFMB8GA1UdIwQYMBaAFHGWE4/Z/Ix4/oQ6JTywSArcxX8N MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFENTU5MC9BODk1MjQ5RUY3 QzUxMUVBODcxQzAwMENDNEY5QUUwMi9jWllUajluOGpIai1oRG9sUExCSUN0ekZm dzAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2NaWVRqOW44akhqLWhEb2xQTEJJQ3R6RmZ3MC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE NTU5MC9BODk1MjQ5RUY3QzUxMUVBODcxQzAwMENDNEY5QUUwMi9jWllUajluOGpI ai1oRG9sUExCSUN0ekZmdzAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCVg4KvZr5syzQmNOwUlqjmYgHgoQBH85ncA8o6VCbyvlxYrhRr7X7O tW2CTj2BtsiKBkgc9xovTj8/il79segSjW0wTK6hSF2XyeR0Q0TenX3odpSqWSPj z1MA2ZYQnjI68I6sX7EHvZ+fAjAG77BUnCV9bZKeRROAWCjZ4Z8g5X1WN5XZ5x7R YKsa72saelufgDORN7M9bAUvd4tRygAKKtWArs5fKWs9LUiQ4frZDs0sdJJ6YmYV PNzbYsUcNiqeFSu14mhXQyLvu/sOAqJ741A/1gEMrTVhYijMAtEw5yHHAfRy15ek vtyjOJK3R122EKMuk9c5g22SVxsCJ443 -----END CERTIFICATE-----Generated at Mon Jun 16 14:49:07 2025 by rpki-client