$ rpki-client -vvf rpki.apnic.net/member_repository/A91DEB2E/6FC8BFDE8C2111EDB2B2F30AC4F9AE02/CZyBX8poKm4oYE_pYv0QcVgn6V0.mft File: CZyBX8poKm4oYE_pYv0QcVgn6V0.mft (raw, json) Hash identifier: +JHkIgcmsN7b9f4bjD4iLXYj102TxVanQ0Uh+VOlDkA= Subject key identifier: F2:FB:4E:AD:C3:0F:C8:D5:77:D2:73:B9:63:BA:5A:E2:D6:79:0E:10 Authority key identifier: 09:9C:81:5F:CA:68:2A:6E:28:60:4F:E9:62:FD:10:71:58:27:E9:5D Certificate issuer: /CN=A91DEB2E/serialNumber=099C815FCA682A6E28604FE962FD10715827E95D Certificate serial: 01D3 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CZyBX8poKm4oYE_pYv0QcVgn6V0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91DEB2E/6FC8BFDE8C2111EDB2B2F30AC4F9AE02/CZyBX8poKm4oYE_pYv0QcVgn6V0.mft Manifest number: 01CD Signing time: Tue 17 Jun 2025 02:02:26 +0000 Manifest this update: Tue 17 Jun 2025 02:02:26 +0000 Manifest next update: Tue 24 Jun 2025 02:02:26 +0000 Files and hashes: 1: CZyBX8poKm4oYE_pYv0QcVgn6V0.crl (hash: tXcbHelbeCYYF7vDENY0cyzCqcqWTixByHOsMwNebtI=) 2: 3CB103648C2511EDB64DB410C4F9AE02.roa (hash: MmbQus/ep65NlWLekYokD81GuyXquRa4J0H16aokObA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91DEB2E/6FC8BFDE8C2111EDB2B2F30AC4F9AE02/CZyBX8poKm4oYE_pYv0QcVgn6V0.crl rsync://rpki.apnic.net/member_repository/A91DEB2E/6FC8BFDE8C2111EDB2B2F30AC4F9AE02/CZyBX8poKm4oYE_pYv0QcVgn6V0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CZyBX8poKm4oYE_pYv0QcVgn6V0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 24 Jun 2025 02:02:25 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 467 (0x1d3) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DEB2E, serialNumber=099C815FCA682A6E28604FE962FD10715827E95D Validity Not Before: Jun 17 02:02:26 2025 GMT Not After : Jun 24 02:02:26 2025 GMT Subject: CN=6850ccb2-d2d2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d8:5a:ba:b6:9f:44:4d:c0:89:f1:8f:fb:79:fe: 91:8e:75:eb:33:55:59:4b:42:6d:77:45:93:68:ba: d6:cf:55:42:91:11:d6:49:f7:26:23:a5:93:e8:65: 5a:8a:e8:f0:9a:84:38:ca:58:e5:fa:8e:5b:c2:5d: 34:c6:89:21:7a:96:33:b7:0f:38:53:58:24:30:71: 8a:3c:04:d0:fd:48:b0:44:8d:21:06:2d:5a:66:54: 9e:84:49:c2:1f:26:96:24:c3:83:f2:2c:13:4c:3d: 44:07:f4:7c:c3:40:59:70:b0:65:12:34:f7:3e:87: b1:09:38:f6:5b:7c:31:26:89:fd:fa:3d:c6:fd:8c: d7:a8:41:df:37:9d:1a:20:27:2a:8e:15:3d:43:f7: c9:b7:24:45:63:d1:1e:a9:e2:cf:ca:a4:b4:2d:f4: 72:ee:25:2e:c3:14:26:86:a1:36:d9:02:2d:e2:3a: 36:66:02:bf:e1:47:94:0a:d5:ad:5e:25:f5:02:80: b9:e6:2e:18:66:ab:b5:6f:98:7b:4e:7f:09:18:85: 62:ed:1c:4c:3b:e2:80:da:64:c3:ba:4d:38:b2:01: ab:e2:52:e7:5b:c7:ee:87:3d:fb:dd:cb:56:75:61: 0f:20:82:3e:d1:a3:03:48:79:c2:78:55:4d:69:57: 91:a3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F2:FB:4E:AD:C3:0F:C8:D5:77:D2:73:B9:63:BA:5A:E2:D6:79:0E:10 X509v3 Authority Key Identifier: keyid:09:9C:81:5F:CA:68:2A:6E:28:60:4F:E9:62:FD:10:71:58:27:E9:5D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91DEB2E/6FC8BFDE8C2111EDB2B2F30AC4F9AE02/CZyBX8poKm4oYE_pYv0QcVgn6V0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CZyBX8poKm4oYE_pYv0QcVgn6V0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DEB2E/6FC8BFDE8C2111EDB2B2F30AC4F9AE02/CZyBX8poKm4oYE_pYv0QcVgn6V0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 00:18:5b:7f:d1:e6:a2:ac:e6:45:bc:e5:46:ac:1e:95:00:d7: 1e:da:6e:df:34:bb:e7:4a:5a:36:86:c8:d9:18:c0:ed:aa:55: 80:b4:e5:42:a7:6d:ae:99:c1:94:35:67:5b:cf:dc:ab:1b:d7: 42:28:75:7a:9c:5a:ed:67:be:1a:9f:be:fd:70:3b:ed:ee:f6: 9e:16:06:25:35:62:e7:03:41:dc:a2:d3:92:0a:d6:5d:e2:7f: f1:59:34:7f:97:21:d3:8d:0c:89:3f:ce:a1:9f:43:70:28:46: 2f:8b:7b:c4:af:91:dc:83:cd:fa:2f:f6:cf:33:24:c6:d8:dc: eb:85:ba:b7:96:cd:2b:f2:a5:74:ba:8b:ea:fb:a7:1e:80:d8: 2d:95:61:ed:24:0f:71:de:b0:5a:0c:0d:94:e6:e5:36:06:c3: 88:41:66:b4:61:ec:22:24:a7:fe:1f:dc:3b:48:27:96:9f:60: 5a:a2:84:4a:3d:67:dd:16:df:dc:d7:91:63:21:10:53:46:87: 44:e5:4b:f0:03:b2:2f:40:16:76:9b:51:59:9a:06:bf:91:32: c7:4e:9e:ca:8a:5c:2a:5f:d6:52:fa:7e:c1:d3:3e:4f:57:17: 2f:dc:b4:77:c2:47:e3:e1:02:32:33:80:29:87:15:75:cc:7a: 61:c1:fd:57 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAdMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx REVCMkUxMTAvBgNVBAUTKDA5OUM4MTVGQ0E2ODJBNkUyODYwNEZFOTYyRkQxMDcx NTgyN0U5NUQwHhcNMjUwNjE3MDIwMjI2WhcNMjUwNjI0MDIwMjI2WjAYMRYwFAYD VQQDEw02ODUwY2NiMi1kMmQyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA2Fq6tp9ETcCJ8Y/7ef6RjnXrM1VZS0Jtd0WTaLrWz1VCkRHWSfcmI6WT6GVa iujwmoQ4yljl+o5bwl00xokhepYztw84U1gkMHGKPATQ/UiwRI0hBi1aZlSehEnC HyaWJMOD8iwTTD1EB/R8w0BZcLBlEjT3PoexCTj2W3wxJon9+j3G/YzXqEHfN50a ICcqjhU9Q/fJtyRFY9EeqeLPyqS0LfRy7iUuwxQmhqE22QIt4jo2ZgK/4UeUCtWt XiX1AoC55i4YZqu1b5h7Tn8JGIVi7RxMO+KA2mTDuk04sgGr4lLnW8fuhz373ctW dWEPIII+0aMDSHnCeFVNaVeRowIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFPL7Tq3D D8jVd9JzuWO6WuLWeQ4QMB8GA1UdIwQYMBaAFAmcgV/KaCpuKGBP6WL9EHFYJ+ld MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFERUIyRS82RkM4QkZERThD MjExMUVEQjJCMkYzMEFDNEY5QUUwMi9DWnlCWDhwb0ttNG9ZRV9wWXYwUWNWZ242 VjAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0NaeUJYOHBvS200b1lFX3BZdjBRY1ZnbjZWMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE RUIyRS82RkM4QkZERThDMjExMUVEQjJCMkYzMEFDNEY5QUUwMi9DWnlCWDhwb0tt NG9ZRV9wWXYwUWNWZ242VjAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAAGFt/0eairOZFvOVGrB6VANce2m7fNLvnSlo2hsjZGMDtqlWAtOVC p22umcGUNWdbz9yrG9dCKHV6nFrtZ74an779cDvt7vaeFgYlNWLnA0HcotOSCtZd 4n/xWTR/lyHTjQyJP86hn0NwKEYvi3vEr5Hcg836L/bPMyTG2Nzrhbq3ls0r8qV0 uovq+6cegNgtlWHtJA9x3rBaDA2U5uU2BsOIQWa0YewiJKf+H9w7SCeWn2BaooRK PWfdFt/c15FjIRBTRodE5UvwA7IvQBZ2m1FZmga/kTLHTp7KilwqX9ZS+n7B0z5P Vxcv3LR3wkfj4QIyM4AphxV1zHphwf1X -----END CERTIFICATE-----Generated at Wed Jun 18 08:39:10 2025 by rpki-client