$ rpki-client -vvf rpki.apnic.net/member_repository/A912542C/1B63466E8CA811EBA2BD0A6BC4F9AE02/23zlI-hAt3_J4Zb1jxSXas5BVL4.mft File: 23zlI-hAt3_J4Zb1jxSXas5BVL4.mft (raw, json) Hash identifier: LvVe3g7dw+F18qt9lS7M/85jz+NPy4qNuwmnrJn9JyE= Subject key identifier: 34:DC:F4:69:9A:8B:B1:6D:7D:01:60:25:60:02:5D:F8:90:93:84:11 Authority key identifier: DB:7C:E5:23:E8:40:B7:7F:C9:E1:96:F5:8F:14:97:6A:CE:41:54:BE Certificate issuer: /CN=A912542C/serialNumber=DB7CE523E840B77FC9E196F58F14976ACE4154BE Certificate serial: 0685 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/23zlI-hAt3_J4Zb1jxSXas5BVL4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A912542C/1B63466E8CA811EBA2BD0A6BC4F9AE02/23zlI-hAt3_J4Zb1jxSXas5BVL4.mft Manifest number: 066B Signing time: Wed 02 Jul 2025 22:49:45 +0000 Manifest this update: Wed 02 Jul 2025 22:49:45 +0000 Manifest next update: Wed 09 Jul 2025 22:49:45 +0000 Files and hashes: 1: 23zlI-hAt3_J4Zb1jxSXas5BVL4.crl (hash: FLhMEVp/+cBaVrnOHqyufD8zQsSxcyqGCc6WQmhoaKU=) 2: F0FFCBCCF9C911EDAF704E7FC4F9AE02.roa (hash: xD+NCFUusyV8948kjGogzh90vclALi1BI0w1G6upBJY=) 3: 1E9D1268B3E011ED98356A75C4F9AE02.roa (hash: q2NpAKCFs4OqUi3rj9uEiN/8qjO9vGuIBeFLXS5ulLQ=) 4: 36A82D708CAA11EB9ED48C70C4F9AE02.roa (hash: LYI+Uxituq3xp6IH8KDfFMmbgDovt1mhBIYkZG0TTig=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A912542C/1B63466E8CA811EBA2BD0A6BC4F9AE02/23zlI-hAt3_J4Zb1jxSXas5BVL4.crl rsync://rpki.apnic.net/member_repository/A912542C/1B63466E8CA811EBA2BD0A6BC4F9AE02/23zlI-hAt3_J4Zb1jxSXas5BVL4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/23zlI-hAt3_J4Zb1jxSXas5BVL4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 09 Jul 2025 22:49:44 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1669 (0x685) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A912542C, serialNumber=DB7CE523E840B77FC9E196F58F14976ACE4154BE Validity Not Before: Jul 2 22:49:45 2025 GMT Not After : Jul 9 22:49:45 2025 GMT Subject: CN=6865b789-aec1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ae:11:76:ac:b6:94:db:fc:93:f2:b3:71:f8:39: 6a:bd:b7:77:d0:b3:af:e5:55:ab:03:f0:21:30:15: 6d:c6:ec:11:45:81:50:18:df:c2:6a:79:86:40:29: 7a:8d:94:6e:ca:e7:45:44:ae:ee:eb:8d:2b:f5:55: 47:bd:e0:db:d1:23:69:bf:80:f1:d0:87:24:d8:79: bc:7a:ec:ba:ac:7d:cd:01:d9:45:79:f0:a2:6f:65: bb:32:13:91:70:ce:26:ae:85:40:c1:d8:9e:8c:c5: f4:e7:d6:a3:1c:2e:72:a3:7d:28:47:38:47:93:e9: b3:74:fd:62:19:06:e1:ab:09:5f:d4:fe:51:d5:e8: ed:29:02:62:66:74:15:94:45:2d:2b:85:5c:ef:6e: e4:7f:6b:5f:36:25:cd:e5:b3:17:d6:c5:6a:ed:27: c7:dc:2f:53:5d:96:96:c4:3d:fd:f9:7d:60:37:12: 62:d0:5f:88:b2:07:e2:7b:47:1d:75:1d:fd:b5:19: ca:f8:80:ba:ab:c7:65:4f:23:db:c1:a8:55:a3:46: 64:1a:fd:16:41:84:e7:3c:be:10:01:bc:e0:81:4d: 0f:f1:70:c8:a2:28:80:7a:d6:57:ea:f6:21:9b:8f: 0d:9a:be:53:c5:8d:a0:74:13:9f:ef:1f:36:28:94: ff:4d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 34:DC:F4:69:9A:8B:B1:6D:7D:01:60:25:60:02:5D:F8:90:93:84:11 X509v3 Authority Key Identifier: keyid:DB:7C:E5:23:E8:40:B7:7F:C9:E1:96:F5:8F:14:97:6A:CE:41:54:BE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A912542C/1B63466E8CA811EBA2BD0A6BC4F9AE02/23zlI-hAt3_J4Zb1jxSXas5BVL4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/23zlI-hAt3_J4Zb1jxSXas5BVL4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A912542C/1B63466E8CA811EBA2BD0A6BC4F9AE02/23zlI-hAt3_J4Zb1jxSXas5BVL4.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption ca:f4:c6:43:12:38:af:91:ed:e3:48:45:a5:0f:e6:bf:77:4f: 3e:84:ac:23:8c:16:b5:a6:71:32:cd:d0:16:83:a5:b2:3a:80: d7:e4:a2:b7:75:8a:50:31:dd:3d:52:7b:8b:ed:df:52:1f:ac: 7a:6f:7c:9f:27:fb:69:d9:67:d5:5f:84:4a:39:79:1f:5c:7a: be:f5:e7:17:78:f3:ca:ef:72:2d:84:38:54:87:55:a2:48:48: 8f:97:b3:0e:2f:ee:19:bc:e4:4a:f9:28:13:90:93:6e:e9:99: 68:20:6c:20:b3:77:d6:70:e6:b0:f7:f0:b1:08:f4:60:29:42: cf:22:2b:0e:e6:31:3b:6d:7c:df:b9:93:13:b3:c9:48:23:ed: 09:a2:c8:8f:34:fc:94:fd:5d:6b:e9:ce:dd:6c:63:4d:45:f5: 57:e4:3c:8e:f9:3e:80:39:ec:25:7d:89:65:9b:52:a0:7d:a9: b5:93:ba:45:14:de:05:4b:fe:81:ab:02:bd:fa:6a:d3:e8:23: 71:32:f9:60:fe:5a:e8:84:3e:2c:c8:5a:78:3c:ae:86:a8:7a: bf:7b:3f:69:b4:5a:98:ac:98:87:58:67:a9:ee:6f:64:8b:95: 70:69:52:31:a3:87:e7:08:75:74:c7:b7:47:49:ae:5c:a1:31: 0d:89:33:ae -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBoUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MjU0MkMxMTAvBgNVBAUTKERCN0NFNTIzRTg0MEI3N0ZDOUUxOTZGNThGMTQ5NzZB Q0U0MTU0QkUwHhcNMjUwNzAyMjI0OTQ1WhcNMjUwNzA5MjI0OTQ1WjAYMRYwFAYD VQQDEw02ODY1Yjc4OS1hZWMxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArhF2rLaU2/yT8rNx+Dlqvbd30LOv5VWrA/AhMBVtxuwRRYFQGN/CanmGQCl6 jZRuyudFRK7u640r9VVHveDb0SNpv4Dx0Ick2Hm8euy6rH3NAdlFefCib2W7MhOR cM4mroVAwdiejMX059ajHC5yo30oRzhHk+mzdP1iGQbhqwlf1P5R1ejtKQJiZnQV lEUtK4Vc727kf2tfNiXN5bMX1sVq7SfH3C9TXZaWxD39+X1gNxJi0F+Isgfie0cd dR39tRnK+IC6q8dlTyPbwahVo0ZkGv0WQYTnPL4QAbzggU0P8XDIoiiAetZX6vYh m48Nmr5TxY2gdBOf7x82KJT/TQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFDTc9Gma i7FtfQFgJWACXfiQk4QRMB8GA1UdIwQYMBaAFNt85SPoQLd/yeGW9Y8Ul2rOQVS+ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyNTQyQy8xQjYzNDY2RThD QTgxMUVCQTJCRDBBNkJDNEY5QUUwMi8yM3psSS1oQXQzX0o0WmIxanhTWGFzNUJW TDQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzIzemxJLWhBdDNfSjRaYjFqeFNYYXM1QlZMNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy NTQyQy8xQjYzNDY2RThDQTgxMUVCQTJCRDBBNkJDNEY5QUUwMi8yM3psSS1oQXQz X0o0WmIxanhTWGFzNUJWTDQubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQDK9MZDEjivke3jSEWlD+a/d08+hKwjjBa1pnEyzdAWg6WyOoDX5KK3 dYpQMd09UnuL7d9SH6x6b3yfJ/tp2WfVX4RKOXkfXHq+9ecXePPK73IthDhUh1Wi SEiPl7MOL+4ZvORK+SgTkJNu6ZloIGwgs3fWcOaw9/CxCPRgKULPIisO5jE7bXzf uZMTs8lII+0JosiPNPyU/V1r6c7dbGNNRfVX5DyO+T6AOewlfYllm1Kgfam1k7pF FN4FS/6BqwK9+mrT6CNxMvlg/lrohD4syFp4PK6GqHq/ez9ptFqYrJiHWGep7m9k i5VwaVIxo4fnCHV0x7dHSa5coTENiTOu -----END CERTIFICATE-----Generated at Thu Jul 3 11:53:32 2025 by rpki-client