$ rpki-client -vvf rpki.apnic.net/member_repository/A912C2B1/1DAEA22CD9FA11E98942894DC4F9AE02/zz57dCpMUuD49_jnQF-yu7z0yqM.mft File: zz57dCpMUuD49_jnQF-yu7z0yqM.mft (raw, json) Hash identifier: siROXY9gvEQJqZvjFZBGR3a7UFs0V9zPiwLF1qaVIwk= Subject key identifier: 9C:86:8E:4A:A2:BF:9C:69:D3:34:82:78:53:EA:D0:36:1A:06:4C:6D Authority key identifier: CF:3E:7B:74:2A:4C:52:E0:F8:F7:F8:E7:40:5F:B2:BB:BC:F4:CA:A3 Certificate issuer: /CN=A912C2B1/serialNumber=CF3E7B742A4C52E0F8F7F8E7405FB2BBBCF4CAA3 Certificate serial: 0D63 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/zz57dCpMUuD49_jnQF-yu7z0yqM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A912C2B1/1DAEA22CD9FA11E98942894DC4F9AE02/zz57dCpMUuD49_jnQF-yu7z0yqM.mft Manifest number: 0D42 Signing time: Mon 30 Jun 2025 18:13:51 +0000 Manifest this update: Mon 30 Jun 2025 18:13:50 +0000 Manifest next update: Mon 07 Jul 2025 18:13:50 +0000 Files and hashes: 1: zz57dCpMUuD49_jnQF-yu7z0yqM.crl (hash: qJNxT17LJhf8Ogew60/ImTfnTg1OgZZD3oXE8JOHfQ4=) 2: 73E16BB27C4711EFACFB1228C4F9AE02.roa (hash: 8LOnykbqINKaZ+L5my3UzBmhmDiX2dGDooRzuen4vMo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A912C2B1/1DAEA22CD9FA11E98942894DC4F9AE02/zz57dCpMUuD49_jnQF-yu7z0yqM.crl rsync://rpki.apnic.net/member_repository/A912C2B1/1DAEA22CD9FA11E98942894DC4F9AE02/zz57dCpMUuD49_jnQF-yu7z0yqM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/zz57dCpMUuD49_jnQF-yu7z0yqM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 07 Jul 2025 18:13:50 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3427 (0xd63) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A912C2B1, serialNumber=CF3E7B742A4C52E0F8F7F8E7405FB2BBBCF4CAA3 Validity Not Before: Jun 30 18:13:50 2025 GMT Not After : Jul 7 18:13:50 2025 GMT Subject: CN=6862d3df-7c60 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dc:5d:12:5e:1c:7d:5c:b3:69:b1:f9:5b:ff:50: 91:66:81:d4:c1:8b:47:f3:87:93:98:8d:8a:41:d3: be:ea:ab:b0:e6:94:9c:48:34:36:64:44:58:ba:3b: d2:5b:de:6d:f8:b7:8e:15:fb:d0:d7:bd:50:1e:e2: 5d:4d:f5:56:15:e7:e8:e8:bd:52:1f:3d:66:79:24: e0:4d:82:c7:42:81:c8:80:b7:61:27:d2:8d:aa:38: e2:75:00:4f:aa:ee:03:3c:45:14:78:48:66:27:19: ac:4d:7a:e4:f1:c0:04:4e:7d:05:7a:5a:1b:d3:97: 38:3a:8b:e0:51:56:3f:81:b3:cf:18:23:f6:7c:06: b1:df:1c:8d:8a:22:4a:7f:63:00:29:7f:56:c7:2b: 74:63:bf:95:2a:4d:15:18:91:69:87:63:e0:6b:d2: f3:e6:88:36:8d:37:59:6c:67:a2:0f:5e:ac:86:91: 5a:73:2b:06:f0:34:36:54:7c:8d:aa:f0:52:7f:fa: 56:5d:2c:a5:c8:11:99:15:70:41:08:1a:df:85:76: 20:43:56:fa:f0:70:72:a8:8f:6b:ab:5a:42:df:4b: 01:c2:0f:ae:9e:9b:d1:17:2f:5b:cc:e1:92:79:99: 88:43:49:37:f2:a3:db:be:9e:bb:5b:06:a0:42:e0: 72:f1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9C:86:8E:4A:A2:BF:9C:69:D3:34:82:78:53:EA:D0:36:1A:06:4C:6D X509v3 Authority Key Identifier: keyid:CF:3E:7B:74:2A:4C:52:E0:F8:F7:F8:E7:40:5F:B2:BB:BC:F4:CA:A3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A912C2B1/1DAEA22CD9FA11E98942894DC4F9AE02/zz57dCpMUuD49_jnQF-yu7z0yqM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/zz57dCpMUuD49_jnQF-yu7z0yqM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A912C2B1/1DAEA22CD9FA11E98942894DC4F9AE02/zz57dCpMUuD49_jnQF-yu7z0yqM.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 84:d1:0a:46:5a:33:e6:ae:28:62:4f:fb:38:a6:70:6e:61:48: 4c:04:02:bc:a5:cf:dc:08:c7:e3:16:d8:a7:62:cc:ff:65:c0: 57:59:05:f1:7c:c6:fb:f8:54:1c:bc:49:18:59:86:52:a9:22: 6a:d0:ca:ee:60:79:e4:bb:58:c1:54:fb:ca:76:2a:6d:bf:8d: c4:d5:89:f0:bc:c2:e3:6b:f3:ed:ad:4e:c7:bc:44:9e:ba:fa: 39:46:b4:a7:d8:c2:98:c8:07:46:b5:51:da:b2:50:4e:84:07: 7b:29:94:05:ee:bf:2b:db:17:e0:42:ea:3c:36:99:7b:d0:96: c6:cd:06:ba:f5:63:90:2d:f7:27:13:54:3f:52:e6:f8:09:ab: 98:b9:36:a5:52:a0:5f:7f:49:62:59:1b:54:0a:41:1a:b0:3f: a4:72:93:43:87:0f:eb:87:f1:93:fa:26:36:b5:eb:ae:25:a9: e6:c3:18:ab:d6:a8:3d:1e:95:d8:83:60:16:6c:24:eb:66:85: 44:0e:75:b8:f0:83:ce:57:f7:70:16:27:44:84:79:da:9f:2d: 5c:dc:ed:75:fa:6d:dc:90:d2:e1:bb:84:7b:5d:3e:57:eb:ec: 11:6d:de:d0:35:79:7a:c5:bb:66:cd:2b:8f:80:bb:94:ed:70: e9:eb:d8:18 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDWMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MkMyQjExMTAvBgNVBAUTKENGM0U3Qjc0MkE0QzUyRTBGOEY3RjhFNzQwNUZCMkJC QkNGNENBQTMwHhcNMjUwNjMwMTgxMzUwWhcNMjUwNzA3MTgxMzUwWjAYMRYwFAYD VQQDEw02ODYyZDNkZi03YzYwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA3F0SXhx9XLNpsflb/1CRZoHUwYtH84eTmI2KQdO+6quw5pScSDQ2ZERYujvS W95t+LeOFfvQ171QHuJdTfVWFefo6L1SHz1meSTgTYLHQoHIgLdhJ9KNqjjidQBP qu4DPEUUeEhmJxmsTXrk8cAETn0Felob05c4OovgUVY/gbPPGCP2fAax3xyNiiJK f2MAKX9Wxyt0Y7+VKk0VGJFph2Pga9Lz5og2jTdZbGeiD16shpFacysG8DQ2VHyN qvBSf/pWXSylyBGZFXBBCBrfhXYgQ1b68HByqI9rq1pC30sBwg+unpvRFy9bzOGS eZmIQ0k38qPbvp67WwagQuBy8QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJyGjkqi v5xp0zSCeFPq0DYaBkxtMB8GA1UdIwQYMBaAFM8+e3QqTFLg+Pf450Bfsru89Mqj MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyQzJCMS8xREFFQTIyQ0Q5 RkExMUU5ODk0Mjg5NERDNEY5QUUwMi96ejU3ZENwTVV1RDQ5X2puUUYteXU3ejB5 cU0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3p6NTdkQ3BNVXVENDlfam5RRi15dTd6MHlxTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy QzJCMS8xREFFQTIyQ0Q5RkExMUU5ODk0Mjg5NERDNEY5QUUwMi96ejU3ZENwTVV1 RDQ5X2puUUYteXU3ejB5cU0ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCE0QpGWjPmrihiT/s4pnBuYUhMBAK8pc/cCMfjFtinYsz/ZcBXWQXx fMb7+FQcvEkYWYZSqSJq0MruYHnku1jBVPvKdiptv43E1YnwvMLja/PtrU7HvESe uvo5RrSn2MKYyAdGtVHaslBOhAd7KZQF7r8r2xfgQuo8Npl70JbGzQa69WOQLfcn E1Q/Uub4CauYuTalUqBff0liWRtUCkEasD+kcpNDhw/rh/GT+iY2teuuJanmwxir 1qg9HpXYg2AWbCTrZoVEDnW48IPOV/dwFidEhHnany1c3O11+m3ckNLhu4R7XT5X 6+wRbd7QNXl6xbtmzSuPgLuU7XDp69gY -----END CERTIFICATE-----Generated at Tue Jul 1 14:19:02 2025 by rpki-client