$ rpki-client -vvf rpki.apnic.net/member_repository/A9143FF5/013969B4201C11EC8A173C2CC4F9AE02/pZmI7E1t1bpqMPhmUatWLBimo04.mft File: pZmI7E1t1bpqMPhmUatWLBimo04.mft (raw, json) Hash identifier: uzCrNJQL6/K4leSCOg2sAMhK+JqNDCa9FVM/eqkMeYk= Subject key identifier: 8E:0C:88:B4:56:AA:7F:00:B1:3E:E4:C1:A2:F1:B0:37:EE:CC:01:19 Authority key identifier: A5:99:88:EC:4D:6D:D5:BA:6A:30:F8:66:51:AB:56:2C:18:A6:A3:4E Certificate issuer: /CN=A9143FF5/serialNumber=A59988EC4D6DD5BA6A30F86651AB562C18A6A34E Certificate serial: 04E7 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pZmI7E1t1bpqMPhmUatWLBimo04.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9143FF5/013969B4201C11EC8A173C2CC4F9AE02/pZmI7E1t1bpqMPhmUatWLBimo04.mft Manifest number: 04E2 Signing time: Tue 01 Jul 2025 00:14:23 +0000 Manifest this update: Tue 01 Jul 2025 00:14:23 +0000 Manifest next update: Tue 08 Jul 2025 00:14:23 +0000 Files and hashes: 1: pZmI7E1t1bpqMPhmUatWLBimo04.crl (hash: 20Qa6uvvTrDWQGuEWrXqO2XjuFP6Ht6dioucEvJC0TI=) 2: A027E062300911ECAE581534C4F9AE02.roa (hash: krTyx4GXgFlPzZ2i1hVEEfK54ydEVTwtrf/GVqS5/WA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9143FF5/013969B4201C11EC8A173C2CC4F9AE02/pZmI7E1t1bpqMPhmUatWLBimo04.crl rsync://rpki.apnic.net/member_repository/A9143FF5/013969B4201C11EC8A173C2CC4F9AE02/pZmI7E1t1bpqMPhmUatWLBimo04.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pZmI7E1t1bpqMPhmUatWLBimo04.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 08 Jul 2025 00:14:22 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1255 (0x4e7) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9143FF5, serialNumber=A59988EC4D6DD5BA6A30F86651AB562C18A6A34E Validity Not Before: Jul 1 00:14:23 2025 GMT Not After : Jul 8 00:14:23 2025 GMT Subject: CN=6863285f-572d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e2:d6:76:64:f8:b3:cc:62:16:53:2e:dd:5e:e6: 9c:e8:fb:b4:fa:1b:d3:c7:73:a8:c2:75:80:f9:e0: f7:7e:41:4f:9c:57:06:3e:b1:53:98:62:8f:66:12: 33:3c:b5:45:22:5e:31:61:1f:d5:19:7d:6e:5c:17: 25:9a:0f:55:9f:e7:df:e4:34:42:1d:38:ee:7d:7b: 87:46:0e:80:e5:3f:68:54:33:42:b3:25:ec:bb:af: 5a:34:86:43:e9:3b:cf:47:67:18:d1:02:9f:c8:f2: 59:24:a4:20:56:5e:25:2d:77:05:1c:38:31:42:fe: e5:79:0b:7f:b3:52:d3:e4:a5:3e:01:a2:38:93:33: 59:88:f8:6c:e7:51:33:2d:42:69:e7:5f:1f:e5:81: 51:82:74:8e:5d:05:3e:78:80:b0:a3:56:a2:84:18: c2:50:ff:70:0a:71:69:36:21:61:27:be:7f:91:73: b8:69:62:3f:c8:c5:83:62:ef:b5:f9:f4:a3:46:39: 5d:e7:9c:46:09:a5:74:c8:f6:a6:44:87:59:25:28: eb:01:32:e1:fd:1a:bd:a6:72:88:b2:8e:14:fe:39: 74:94:cb:79:cf:a4:a3:11:7e:d4:fc:65:48:d8:fa: 9c:42:44:e2:a2:40:04:5d:00:87:89:2a:48:ec:00: 32:d3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8E:0C:88:B4:56:AA:7F:00:B1:3E:E4:C1:A2:F1:B0:37:EE:CC:01:19 X509v3 Authority Key Identifier: keyid:A5:99:88:EC:4D:6D:D5:BA:6A:30:F8:66:51:AB:56:2C:18:A6:A3:4E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9143FF5/013969B4201C11EC8A173C2CC4F9AE02/pZmI7E1t1bpqMPhmUatWLBimo04.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pZmI7E1t1bpqMPhmUatWLBimo04.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9143FF5/013969B4201C11EC8A173C2CC4F9AE02/pZmI7E1t1bpqMPhmUatWLBimo04.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 39:f9:29:90:25:37:ee:49:b3:c2:58:e6:d2:cc:ee:dd:85:d1: d2:f1:01:db:22:03:e2:5f:8c:de:25:2f:9c:38:83:11:2e:55: a0:91:62:0e:3c:b2:7c:3e:1b:82:bc:6e:04:89:ac:88:cf:4c: 1c:2a:07:b5:22:6d:84:8d:b7:2f:0e:a4:26:6b:89:88:35:bc: d3:c7:13:e8:55:96:4b:b8:8b:db:8b:ff:82:b7:1c:e1:02:9e: e6:40:04:39:82:6e:78:ff:59:18:4d:94:26:ca:4c:2f:93:e7: 1b:14:7b:73:5f:53:26:fb:da:b9:5c:fc:8c:a5:7c:67:d9:c4: 6c:e4:6c:0b:f3:85:4f:8f:6c:35:48:96:5e:e1:71:53:95:b6: 66:45:f2:31:6a:9c:76:79:cd:7c:fb:bf:4e:47:21:02:d5:18: 2b:63:08:ef:b3:c3:e3:63:e3:6f:9a:fd:f7:f0:de:41:6c:19: 18:4c:e7:b2:9a:bb:4a:28:07:67:a1:01:75:3b:95:93:21:49: 45:e0:e8:16:00:b2:be:cc:ce:a4:9f:13:aa:ba:b3:2c:30:d0: ee:3c:93:39:69:50:da:7e:88:01:93:5b:d0:8e:bb:58:d9:6b: a6:c9:c3:7b:5b:e3:8f:db:47:cf:32:3f:af:a3:6f:87:45:2d: 3f:f2:83:23 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBOcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDNGRjUxMTAvBgNVBAUTKEE1OTk4OEVDNEQ2REQ1QkE2QTMwRjg2NjUxQUI1NjJD MThBNkEzNEUwHhcNMjUwNzAxMDAxNDIzWhcNMjUwNzA4MDAxNDIzWjAYMRYwFAYD VQQDEw02ODYzMjg1Zi01NzJkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA4tZ2ZPizzGIWUy7dXuac6Pu0+hvTx3OownWA+eD3fkFPnFcGPrFTmGKPZhIz PLVFIl4xYR/VGX1uXBclmg9Vn+ff5DRCHTjufXuHRg6A5T9oVDNCsyXsu69aNIZD 6TvPR2cY0QKfyPJZJKQgVl4lLXcFHDgxQv7leQt/s1LT5KU+AaI4kzNZiPhs51Ez LUJp518f5YFRgnSOXQU+eICwo1aihBjCUP9wCnFpNiFhJ75/kXO4aWI/yMWDYu+1 +fSjRjld55xGCaV0yPamRIdZJSjrATLh/Rq9pnKIso4U/jl0lMt5z6SjEX7U/GVI 2PqcQkTiokAEXQCHiSpI7AAy0wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFI4MiLRW qn8AsT7kwaLxsDfuzAEZMB8GA1UdIwQYMBaAFKWZiOxNbdW6ajD4ZlGrViwYpqNO MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0M0ZGNS8wMTM5NjlCNDIw MUMxMUVDOEExNzNDMkNDNEY5QUUwMi9wWm1JN0UxdDFicHFNUGhtVWF0V0xCaW1v MDQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3BabUk3RTF0MWJwcU1QaG1VYXRXTEJpbW8wNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 M0ZGNS8wMTM5NjlCNDIwMUMxMUVDOEExNzNDMkNDNEY5QUUwMi9wWm1JN0UxdDFi cHFNUGhtVWF0V0xCaW1vMDQubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA5+SmQJTfuSbPCWObSzO7dhdHS8QHbIgPiX4zeJS+cOIMRLlWgkWIO PLJ8PhuCvG4EiayIz0wcKge1Im2EjbcvDqQma4mINbzTxxPoVZZLuIvbi/+Ctxzh Ap7mQAQ5gm54/1kYTZQmykwvk+cbFHtzX1Mm+9q5XPyMpXxn2cRs5GwL84VPj2w1 SJZe4XFTlbZmRfIxapx2ec18+79ORyEC1RgrYwjvs8PjY+Nvmv338N5BbBkYTOey mrtKKAdnoQF1O5WTIUlF4OgWALK+zM6knxOqurMsMNDuPJM5aVDafogBk1vQjrtY 2WumycN7W+OP20fPMj+vo2+HRS0/8oMj -----END CERTIFICATE-----Generated at Tue Jul 1 23:12:08 2025 by rpki-client