$ rpki-client -vvf rpki.apnic.net/member_repository/A914B45F/40BB15742F6511EE95FDED56C4F9AE02/z64jGpiXN_YdrZV8wk0hNYWBjtw.mft File: z64jGpiXN_YdrZV8wk0hNYWBjtw.mft (raw, json) Hash identifier: CBqBA4sWmuyzhMDK37SA9wSi2ZH3LqnrbglNwlhLMMs= Subject key identifier: D7:5F:31:44:7E:28:0A:68:06:2E:F0:45:3B:B2:5A:A9:6E:81:29:62 Authority key identifier: CF:AE:23:1A:98:97:37:F6:1D:AD:95:7C:C2:4D:21:35:85:81:8E:DC Certificate issuer: /CN=A914B45F/serialNumber=CFAE231A989737F61DAD957CC24D213585818EDC Certificate serial: 016A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/z64jGpiXN_YdrZV8wk0hNYWBjtw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914B45F/40BB15742F6511EE95FDED56C4F9AE02/z64jGpiXN_YdrZV8wk0hNYWBjtw.mft Manifest number: 0168 Signing time: Thu 03 Jul 2025 03:58:49 +0000 Manifest this update: Thu 03 Jul 2025 03:58:49 +0000 Manifest next update: Thu 10 Jul 2025 03:58:49 +0000 Files and hashes: 1: z64jGpiXN_YdrZV8wk0hNYWBjtw.crl (hash: MV9bCx2fJjkC4TN/EiUv0ugsgnVnFqGKoU9Zv2Y8Brk=) 2: 578C92D62F6611EE9CAFAA58C4F9AE02.roa (hash: Km7Ntr3HPW+9p2/xgcR3/NDs3gM06IRtzM1XksYLFiE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914B45F/40BB15742F6511EE95FDED56C4F9AE02/z64jGpiXN_YdrZV8wk0hNYWBjtw.crl rsync://rpki.apnic.net/member_repository/A914B45F/40BB15742F6511EE95FDED56C4F9AE02/z64jGpiXN_YdrZV8wk0hNYWBjtw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/z64jGpiXN_YdrZV8wk0hNYWBjtw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 10 Jul 2025 03:15:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 362 (0x16a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914B45F, serialNumber=CFAE231A989737F61DAD957CC24D213585818EDC Validity Not Before: Jul 3 03:58:49 2025 GMT Not After : Jul 10 03:58:49 2025 GMT Subject: CN=6865fff9-ff3a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:2d:42:f7:df:ea:c7:df:72:82:9f:01:ee:ba: 5a:13:a2:fa:50:e9:56:73:7a:ee:d0:a1:96:64:ad: cc:dc:1e:93:5a:f8:d6:c3:3f:b6:c8:0c:98:3a:6c: 7b:2e:34:3b:e8:7f:f0:41:2a:14:6c:5d:73:be:9a: f4:f2:9b:7e:40:e2:02:5f:ff:79:a6:ee:f3:36:94: a1:f0:3f:38:a9:1c:83:40:ec:89:68:3f:24:74:55: 0c:8c:2e:aa:e6:d0:9e:41:43:3a:1c:fc:ac:d4:b4: 92:49:4b:c6:97:e4:9b:39:fd:ac:79:c6:b5:77:34: ab:e4:44:23:f9:1a:6d:8e:76:8b:4b:68:45:9c:fd: b9:dc:84:9c:1a:18:fb:83:7f:5b:1d:7b:b4:45:2b: 69:b4:84:bb:8b:c1:50:a5:87:03:a7:fe:7f:07:0d: 7b:7b:04:7e:6b:ff:21:96:f0:1e:03:16:db:02:6d: ff:ca:30:d0:33:94:15:d0:92:4c:36:9a:5e:c4:10: 5a:3d:e8:57:69:13:a6:d5:26:98:94:c3:d2:5a:38: 1a:18:ea:57:58:5e:5b:72:d8:2b:06:24:a9:11:a2: 21:c7:de:52:72:93:70:73:5d:3b:ab:c7:e1:30:13: 7d:79:14:4d:a0:f6:43:f4:4c:19:44:12:0b:cd:ce: e8:8d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D7:5F:31:44:7E:28:0A:68:06:2E:F0:45:3B:B2:5A:A9:6E:81:29:62 X509v3 Authority Key Identifier: keyid:CF:AE:23:1A:98:97:37:F6:1D:AD:95:7C:C2:4D:21:35:85:81:8E:DC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914B45F/40BB15742F6511EE95FDED56C4F9AE02/z64jGpiXN_YdrZV8wk0hNYWBjtw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/z64jGpiXN_YdrZV8wk0hNYWBjtw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914B45F/40BB15742F6511EE95FDED56C4F9AE02/z64jGpiXN_YdrZV8wk0hNYWBjtw.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 59:53:66:87:07:64:22:71:7c:0e:2c:e5:c8:1f:18:d4:29:91: c2:50:2e:c0:90:d7:9b:98:a5:13:fc:3c:a5:11:8f:14:bd:58: 60:a6:b3:88:7a:84:01:d3:43:20:b0:da:5a:ef:10:db:16:e8: aa:f0:d7:34:da:45:e6:7b:a0:8a:bd:1e:0a:21:81:7f:6d:80: c2:7f:49:a4:5b:43:c9:ad:62:31:2f:69:5f:96:70:a2:d6:d9: 5c:1d:4b:af:5d:54:15:d5:08:17:f0:5f:da:6e:83:b7:d9:6d: a7:82:4b:98:a9:92:c8:b6:1b:47:c7:a1:9b:67:32:53:c8:89: ac:a4:3a:1f:6b:d8:8c:bf:6b:80:b3:5c:67:8c:2d:c7:15:21: 0c:ec:54:a2:81:46:b6:55:46:a6:b6:2e:4d:09:34:3f:ad:61: 1c:04:07:31:29:e2:65:4c:5c:ad:a4:9c:6e:dc:04:18:e6:16: d5:15:22:e6:69:a4:12:60:cc:76:a3:9c:40:24:ac:be:01:6c: af:29:5a:06:48:d9:c1:c3:c7:6c:9c:7d:72:37:d8:55:52:c8: f3:3a:b9:5f:bb:f6:4d:af:e1:cd:33:90:e7:8b:e9:74:da:cc: 2c:37:3a:ae:7d:5a:56:ca:52:fc:5e:c7:55:db:60:f4:6d:6e: c6:09:83:cd -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAWowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NEI0NUYxMTAvBgNVBAUTKENGQUUyMzFBOTg5NzM3RjYxREFEOTU3Q0MyNEQyMTM1 ODU4MThFREMwHhcNMjUwNzAzMDM1ODQ5WhcNMjUwNzEwMDM1ODQ5WjAYMRYwFAYD VQQDEw02ODY1ZmZmOS1mZjNhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvC1C99/qx99ygp8B7rpaE6L6UOlWc3ru0KGWZK3M3B6TWvjWwz+2yAyYOmx7 LjQ76H/wQSoUbF1zvpr08pt+QOICX/95pu7zNpSh8D84qRyDQOyJaD8kdFUMjC6q 5tCeQUM6HPys1LSSSUvGl+SbOf2seca1dzSr5EQj+RptjnaLS2hFnP253IScGhj7 g39bHXu0RStptIS7i8FQpYcDp/5/Bw17ewR+a/8hlvAeAxbbAm3/yjDQM5QV0JJM NppexBBaPehXaROm1SaYlMPSWjgaGOpXWF5bctgrBiSpEaIhx95ScpNwc107q8fh MBN9eRRNoPZD9EwZRBILzc7ojQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFNdfMUR+ KApoBi7wRTuyWqlugSliMB8GA1UdIwQYMBaAFM+uIxqYlzf2Ha2VfMJNITWFgY7c MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0QjQ1Ri80MEJCMTU3NDJG NjUxMUVFOTVGREVENTZDNEY5QUUwMi96NjRqR3BpWE5fWWRyWlY4d2swaE5ZV0Jq dHcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3o2NGpHcGlYTl9ZZHJaVjh3azBoTllXQmp0dy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 QjQ1Ri80MEJCMTU3NDJGNjUxMUVFOTVGREVENTZDNEY5QUUwMi96NjRqR3BpWE5f WWRyWlY4d2swaE5ZV0JqdHcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBZU2aHB2QicXwOLOXIHxjUKZHCUC7AkNebmKUT/DylEY8UvVhgprOI eoQB00MgsNpa7xDbFuiq8Nc02kXme6CKvR4KIYF/bYDCf0mkW0PJrWIxL2lflnCi 1tlcHUuvXVQV1QgX8F/aboO32W2ngkuYqZLIthtHx6GbZzJTyImspDofa9iMv2uA s1xnjC3HFSEM7FSigUa2VUamti5NCTQ/rWEcBAcxKeJlTFytpJxu3AQY5hbVFSLm aaQSYMx2o5xAJKy+AWyvKVoGSNnBw8dsnH1yN9hVUsjzOrlfu/ZNr+HNM5Dni+l0 2swsNzqufVpWylL8XsdV22D0bW7GCYPN -----END CERTIFICATE-----Generated at Fri Jul 4 01:21:07 2025 by rpki-client