$ rpki-client -vvf rpki.apnic.net/member_repository/A9136C5E/3EA6A250B97011ED8918467CC4F9AE02/znA-TvnfLr44ZQpwSkoBnCpmQ1A.mft File: znA-TvnfLr44ZQpwSkoBnCpmQ1A.mft (raw, json) Hash identifier: 4bT+eKKg6te6rDHztXiI7IF5DkE1WO2PZe98xodIft8= Subject key identifier: 77:32:8F:39:8B:6F:1C:77:AA:11:78:5A:EF:D8:BF:7A:C0:86:D2:E6 Authority key identifier: CE:70:3E:4E:F9:DF:2E:BE:38:65:0A:70:4A:4A:01:9C:2A:66:43:50 Certificate issuer: /CN=A9136C5E/serialNumber=CE703E4EF9DF2EBE38650A704A4A019C2A664350 Certificate serial: 01BB Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/znA-TvnfLr44ZQpwSkoBnCpmQ1A.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9136C5E/3EA6A250B97011ED8918467CC4F9AE02/znA-TvnfLr44ZQpwSkoBnCpmQ1A.mft Manifest number: 01B7 Signing time: Thu 03 Jul 2025 03:10:43 +0000 Manifest this update: Thu 03 Jul 2025 03:10:42 +0000 Manifest next update: Thu 10 Jul 2025 03:10:42 +0000 Files and hashes: 1: znA-TvnfLr44ZQpwSkoBnCpmQ1A.crl (hash: a/N6GD3M1kGG29iUu1MR72l833cy0dbXg5tKaN7tWjM=) 2: 9BCEEFF4BC6911ED9B0FC554C4F9AE02.roa (hash: vkUKnag58zCpuCP8+f6HBj43+NKzxFLQMFl2RAEd1t8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9136C5E/3EA6A250B97011ED8918467CC4F9AE02/znA-TvnfLr44ZQpwSkoBnCpmQ1A.crl rsync://rpki.apnic.net/member_repository/A9136C5E/3EA6A250B97011ED8918467CC4F9AE02/znA-TvnfLr44ZQpwSkoBnCpmQ1A.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/znA-TvnfLr44ZQpwSkoBnCpmQ1A.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 10 Jul 2025 03:10:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 443 (0x1bb) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9136C5E, serialNumber=CE703E4EF9DF2EBE38650A704A4A019C2A664350 Validity Not Before: Jul 3 03:10:42 2025 GMT Not After : Jul 10 03:10:42 2025 GMT Subject: CN=6865f4b3-1351 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:51:af:c7:69:42:dd:81:66:87:0f:d7:a4:67: 0b:16:bc:99:0c:45:21:43:69:de:fc:98:7b:00:fe: 3e:8c:bc:75:0b:fe:fa:7b:82:9a:18:3d:4c:f6:e8: 6d:c2:e2:97:9e:33:cf:e1:11:9d:cd:25:68:b6:90: 75:ed:59:7c:14:6c:04:5a:61:3b:e0:c4:f3:68:8a: 29:4e:7f:8b:9e:20:37:7d:c6:86:f2:56:ee:bb:d7: 53:e1:7f:83:a0:3f:2a:2c:aa:dd:fd:8a:32:3f:e6: d6:9a:84:2e:c0:81:bd:69:e8:12:83:58:75:2e:82: 86:57:fe:82:c7:0d:dd:b8:9c:fb:54:be:ea:ee:49: c8:d5:c0:b4:35:73:2b:02:0a:cd:15:6c:4a:ef:79: 29:e6:76:82:61:83:49:3f:4c:a6:87:21:34:48:69: 42:6f:88:53:2e:6e:8c:de:18:c4:83:83:1f:ab:16: 10:96:48:ff:84:86:3b:00:c2:09:d8:f9:0c:5b:0b: e1:04:7a:19:52:5d:9d:0d:1a:d8:4a:0e:02:04:be: b9:f4:84:0b:71:9f:e6:82:6b:79:36:de:8d:01:a8: 8f:86:f2:ec:e3:8c:6e:80:fb:97:11:a7:15:01:18: 77:3f:fe:28:7d:ec:84:6a:ba:4e:a4:ed:40:05:7f: 29:03 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 77:32:8F:39:8B:6F:1C:77:AA:11:78:5A:EF:D8:BF:7A:C0:86:D2:E6 X509v3 Authority Key Identifier: keyid:CE:70:3E:4E:F9:DF:2E:BE:38:65:0A:70:4A:4A:01:9C:2A:66:43:50 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9136C5E/3EA6A250B97011ED8918467CC4F9AE02/znA-TvnfLr44ZQpwSkoBnCpmQ1A.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/znA-TvnfLr44ZQpwSkoBnCpmQ1A.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9136C5E/3EA6A250B97011ED8918467CC4F9AE02/znA-TvnfLr44ZQpwSkoBnCpmQ1A.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 6b:a1:e2:c4:4a:a7:8c:7d:73:95:73:ab:71:7f:b1:9a:4c:c6: 9a:75:44:22:8f:74:94:7b:15:91:ed:d1:a1:bc:53:16:49:79: a8:cc:bc:27:5e:01:0c:95:ce:18:f6:84:83:b2:0f:5d:8b:80: 9d:15:25:ff:8b:03:3e:f0:12:e8:33:99:fe:3f:78:fc:5b:f2: b6:c2:d2:a8:95:a9:2c:d4:70:f4:15:9f:b1:9a:61:9b:a8:09: 67:c4:90:3e:17:7a:0a:6d:0f:db:97:9e:1d:f4:f6:70:b6:9b: 9f:10:04:ea:68:eb:b9:48:b5:55:0f:25:bf:e9:02:12:0d:05: 88:f2:dc:11:b7:80:d2:5b:c5:76:8a:e1:24:cc:84:17:ee:74: 86:54:f5:ed:03:e3:7d:42:d4:ec:5b:74:78:ce:36:e1:e9:e4: 26:cc:e1:86:75:96:f1:7c:34:57:b5:5f:a9:f3:91:bc:d8:64: 47:55:89:c1:71:dd:e7:f9:e2:32:b9:e3:a9:6c:99:b0:98:1e: b2:c9:52:51:ae:f2:c5:d2:0d:53:23:ab:46:ae:17:e7:3f:5f: f0:37:62:5d:a9:0b:7f:72:f2:c1:7a:71:e2:df:79:22:de:4d: 3c:c0:61:d2:aa:0f:39:07:18:87:78:a2:9e:a0:f3:74:9d:6e: cf:c8:9c:75 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAbswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MzZDNUUxMTAvBgNVBAUTKENFNzAzRTRFRjlERjJFQkUzODY1MEE3MDRBNEEwMTlD MkE2NjQzNTAwHhcNMjUwNzAzMDMxMDQyWhcNMjUwNzEwMDMxMDQyWjAYMRYwFAYD VQQDEw02ODY1ZjRiMy0xMzUxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAw1Gvx2lC3YFmhw/XpGcLFryZDEUhQ2ne/Jh7AP4+jLx1C/76e4KaGD1M9uht wuKXnjPP4RGdzSVotpB17Vl8FGwEWmE74MTzaIopTn+LniA3fcaG8lbuu9dT4X+D oD8qLKrd/YoyP+bWmoQuwIG9aegSg1h1LoKGV/6Cxw3duJz7VL7q7knI1cC0NXMr AgrNFWxK73kp5naCYYNJP0ymhyE0SGlCb4hTLm6M3hjEg4MfqxYQlkj/hIY7AMIJ 2PkMWwvhBHoZUl2dDRrYSg4CBL659IQLcZ/mgmt5Nt6NAaiPhvLs44xugPuXEacV ARh3P/4ofeyEarpOpO1ABX8pAwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFHcyjzmL bxx3qhF4Wu/Yv3rAhtLmMB8GA1UdIwQYMBaAFM5wPk753y6+OGUKcEpKAZwqZkNQ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzNkM1RS8zRUE2QTI1MEI5 NzAxMUVEODkxODQ2N0NDNEY5QUUwMi96bkEtVHZuZkxyNDRaUXB3U2tvQm5DcG1R MUEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3puQS1Udm5mTHI0NFpRcHdTa29CbkNwbVExQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz NkM1RS8zRUE2QTI1MEI5NzAxMUVEODkxODQ2N0NDNEY5QUUwMi96bkEtVHZuZkxy NDRaUXB3U2tvQm5DcG1RMUEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBroeLESqeMfXOVc6txf7GaTMaadUQij3SUexWR7dGhvFMWSXmozLwn XgEMlc4Y9oSDsg9di4CdFSX/iwM+8BLoM5n+P3j8W/K2wtKolaks1HD0FZ+xmmGb qAlnxJA+F3oKbQ/bl54d9PZwtpufEATqaOu5SLVVDyW/6QISDQWI8twRt4DSW8V2 iuEkzIQX7nSGVPXtA+N9QtTsW3R4zjbh6eQmzOGGdZbxfDRXtV+p85G82GRHVYnB cd3n+eIyueOpbJmwmB6yyVJRrvLF0g1TI6tGrhfnP1/wN2JdqQt/cvLBenHi33ki 3k08wGHSqg85BxiHeKKeoPN0nW7PyJx1 -----END CERTIFICATE-----Generated at Thu Jul 3 17:17:50 2025 by rpki-client