$ rpki-client -vvf rpki.apnic.net/member_repository/A9128E00/8991EB9EE02011E982B37A3AC4F9AE02/z-PzHk8zetOBIBvzOgGmhfsBal4.mft File: z-PzHk8zetOBIBvzOgGmhfsBal4.mft (raw, json) Hash identifier: qs93CobHRj1nEPTe2xIq5akOtuiPxNUGzA2s1fwmnZk= Subject key identifier: EE:3F:23:41:30:38:BF:A4:C7:B0:5E:E5:C5:7C:4F:8C:21:D0:55:F3 Authority key identifier: CF:E3:F3:1E:4F:33:7A:D3:81:20:1B:F3:3A:01:A6:85:FB:01:6A:5E Certificate issuer: /CN=A9128E00/serialNumber=CFE3F31E4F337AD381201BF33A01A685FB016A5E Certificate serial: 0D1B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/z-PzHk8zetOBIBvzOgGmhfsBal4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9128E00/8991EB9EE02011E982B37A3AC4F9AE02/z-PzHk8zetOBIBvzOgGmhfsBal4.mft Manifest number: 0D13 Signing time: Wed 02 Jul 2025 18:16:35 +0000 Manifest this update: Wed 02 Jul 2025 18:16:35 +0000 Manifest next update: Wed 09 Jul 2025 18:16:35 +0000 Files and hashes: 1: z-PzHk8zetOBIBvzOgGmhfsBal4.crl (hash: aLzAsK5JwYqDZOtljy+tT4fLrkEpMdKHTgoDGtkXBvg=) 2: D23C5270E02111E9B4A3923FC4F9AE02.roa (hash: zkAhSZ57x5i2z1ecY4hViVs+riusX3XK2gSVsFUEBsM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9128E00/8991EB9EE02011E982B37A3AC4F9AE02/z-PzHk8zetOBIBvzOgGmhfsBal4.crl rsync://rpki.apnic.net/member_repository/A9128E00/8991EB9EE02011E982B37A3AC4F9AE02/z-PzHk8zetOBIBvzOgGmhfsBal4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/z-PzHk8zetOBIBvzOgGmhfsBal4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 09 Jul 2025 18:16:34 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3355 (0xd1b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9128E00, serialNumber=CFE3F31E4F337AD381201BF33A01A685FB016A5E Validity Not Before: Jul 2 18:16:35 2025 GMT Not After : Jul 9 18:16:35 2025 GMT Subject: CN=68657783-b89a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:db:71:72:86:d8:70:c4:6b:e6:e5:93:fb:73:67: 3f:3f:b4:80:fa:07:ff:5e:c5:5e:0e:71:79:7b:81: df:63:a8:65:d1:37:e9:13:ee:1c:12:ab:33:5b:47: cd:b3:3a:11:0d:3c:8a:7d:e0:98:09:38:86:4e:7c: da:60:47:d0:5c:24:da:40:33:5a:27:fb:4c:8b:45: 8d:76:2d:fe:12:b2:41:ec:22:67:8c:72:58:da:0e: 81:f2:00:e3:2c:6f:1e:9a:e3:db:02:ca:d2:bc:b9: 55:dd:ce:cb:23:73:8e:1f:08:ea:d0:39:f9:bb:5a: d3:0b:53:2e:66:0f:7b:a6:ae:20:82:d2:c7:c4:4a: d2:16:50:33:4f:6d:bb:9b:f2:83:6d:24:6b:11:e7: 57:49:08:6f:e4:22:4c:80:d7:b7:49:7e:ed:70:ab: 1c:25:30:44:b7:73:a0:3b:0f:e0:2d:53:c5:d2:a2: 9b:33:30:f4:d2:fa:04:35:51:a0:05:cb:52:80:4d: 36:18:ad:04:b1:91:5e:d8:4f:93:91:6a:51:5d:17: e5:35:1a:91:10:53:95:12:90:11:83:de:93:00:4c: 6f:85:4e:71:36:f1:1c:c0:fa:53:e6:af:7a:17:9a: 68:fa:a2:32:5d:2e:71:66:88:42:fd:4e:96:e1:cf: f5:7b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EE:3F:23:41:30:38:BF:A4:C7:B0:5E:E5:C5:7C:4F:8C:21:D0:55:F3 X509v3 Authority Key Identifier: keyid:CF:E3:F3:1E:4F:33:7A:D3:81:20:1B:F3:3A:01:A6:85:FB:01:6A:5E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9128E00/8991EB9EE02011E982B37A3AC4F9AE02/z-PzHk8zetOBIBvzOgGmhfsBal4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/z-PzHk8zetOBIBvzOgGmhfsBal4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9128E00/8991EB9EE02011E982B37A3AC4F9AE02/z-PzHk8zetOBIBvzOgGmhfsBal4.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 13:7f:22:72:5e:9f:5d:4b:0a:eb:72:0c:d9:4c:5e:2b:67:cd: dc:fa:27:60:88:19:64:78:56:5d:25:33:d4:4d:60:ad:b6:a7: d5:81:83:91:4e:ac:b1:eb:6f:f6:93:ee:f2:94:19:24:f1:37: 38:64:18:04:eb:22:cf:48:2a:1e:f1:9b:38:01:a4:c5:95:b7: ca:e2:28:15:0b:3f:9a:ce:3d:82:c6:f7:81:8d:3a:b4:af:08: 59:25:0e:c0:78:b2:08:a7:b0:99:99:1d:6e:5a:2f:de:6c:bb: f6:5f:af:3a:9d:65:d8:eb:21:a9:dc:f6:30:e3:d9:0d:60:ba: 34:c5:6f:97:f4:88:05:fe:71:34:0f:ed:84:f4:80:82:5e:bd: 6e:d9:59:87:fa:6a:8d:1e:84:88:73:78:70:c1:fb:b1:4b:d4: 46:02:ec:bc:a9:a5:18:85:14:1c:98:ef:a5:34:56:6c:6f:60: b2:9a:e2:64:2a:15:5d:1b:a6:be:aa:53:4b:aa:4c:84:de:92: d0:e1:a9:27:2f:ff:a0:ff:3c:4e:85:fb:c5:1c:c2:46:0d:f6: fa:be:98:55:07:48:aa:5b:32:2a:ef:59:87:5b:b6:37:c5:44: 1c:3a:12:db:2c:c3:e5:7c:c3:62:5c:78:98:39:fe:1e:5f:1f: ae:90:37:b5 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDRswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MjhFMDAxMTAvBgNVBAUTKENGRTNGMzFFNEYzMzdBRDM4MTIwMUJGMzNBMDFBNjg1 RkIwMTZBNUUwHhcNMjUwNzAyMTgxNjM1WhcNMjUwNzA5MTgxNjM1WjAYMRYwFAYD VQQDEw02ODY1Nzc4My1iODlhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA23FyhthwxGvm5ZP7c2c/P7SA+gf/XsVeDnF5e4HfY6hl0TfpE+4cEqszW0fN szoRDTyKfeCYCTiGTnzaYEfQXCTaQDNaJ/tMi0WNdi3+ErJB7CJnjHJY2g6B8gDj LG8emuPbAsrSvLlV3c7LI3OOHwjq0Dn5u1rTC1MuZg97pq4ggtLHxErSFlAzT227 m/KDbSRrEedXSQhv5CJMgNe3SX7tcKscJTBEt3OgOw/gLVPF0qKbMzD00voENVGg BctSgE02GK0EsZFe2E+TkWpRXRflNRqREFOVEpARg96TAExvhU5xNvEcwPpT5q96 F5po+qIyXS5xZohC/U6W4c/1ewIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFO4/I0Ew OL+kx7Be5cV8T4wh0FXzMB8GA1UdIwQYMBaAFM/j8x5PM3rTgSAb8zoBpoX7AWpe MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyOEUwMC84OTkxRUI5RUUw MjAxMUU5ODJCMzdBM0FDNEY5QUUwMi96LVB6SGs4emV0T0JJQnZ6T2dHbWhmc0Jh bDQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3otUHpIazh6ZXRPQklCdnpPZ0dtaGZzQmFsNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy OEUwMC84OTkxRUI5RUUwMjAxMUU5ODJCMzdBM0FDNEY5QUUwMi96LVB6SGs4emV0 T0JJQnZ6T2dHbWhmc0JhbDQubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQATfyJyXp9dSwrrcgzZTF4rZ83c+idgiBlkeFZdJTPUTWCttqfVgYOR Tqyx62/2k+7ylBkk8Tc4ZBgE6yLPSCoe8Zs4AaTFlbfK4igVCz+azj2CxveBjTq0 rwhZJQ7AeLIIp7CZmR1uWi/ebLv2X686nWXY6yGp3PYw49kNYLo0xW+X9IgF/nE0 D+2E9ICCXr1u2VmH+mqNHoSIc3hwwfuxS9RGAuy8qaUYhRQcmO+lNFZsb2CymuJk KhVdG6a+qlNLqkyE3pLQ4aknL/+g/zxOhfvFHMJGDfb6vphVB0iqWzIq71mHW7Y3 xUQcOhLbLMPlfMNiXHiYOf4eXx+ukDe1 -----END CERTIFICATE-----Generated at Thu Jul 3 09:27:12 2025 by rpki-client