$ rpki-client -vvf rpki.apnic.net/member_repository/A914E1A8/A40A724AB13011ED847D4981C4F9AE02/i-zDY4Bwprefbc4ioOZbsh4Ndyk.mft File: i-zDY4Bwprefbc4ioOZbsh4Ndyk.mft (raw, json) Hash identifier: 9kbBgmUhhqVtvSWa7uak3I6bJS/FVYbhBk1NXiL8sWg= Subject key identifier: BC:88:6F:82:26:01:A6:4F:BB:BD:E3:23:86:3B:E5:05:0E:6F:2E:15 Authority key identifier: 8B:EC:C3:63:80:70:A6:B7:9F:6D:CE:22:A0:E6:5B:B2:1E:0D:77:29 Certificate issuer: /CN=A914E1A8/serialNumber=8BECC3638070A6B79F6DCE22A0E65BB21E0D7729 Certificate serial: 01CB Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/i-zDY4Bwprefbc4ioOZbsh4Ndyk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914E1A8/A40A724AB13011ED847D4981C4F9AE02/i-zDY4Bwprefbc4ioOZbsh4Ndyk.mft Manifest number: 01C1 Signing time: Tue 01 Jul 2025 03:26:55 +0000 Manifest this update: Tue 01 Jul 2025 03:26:55 +0000 Manifest next update: Tue 08 Jul 2025 03:26:55 +0000 Files and hashes: 1: i-zDY4Bwprefbc4ioOZbsh4Ndyk.crl (hash: OeaI1I2ei2MKY6H8Is8OqBoG8oeDakZSvhDrQYvVakM=) 2: 5D35DEC8B13411EDB6BEF584C4F9AE02.roa (hash: g7Iu0qsIgHA2DsVqzJPZwAHsWDw0BvGfzGeWjQmEdZA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914E1A8/A40A724AB13011ED847D4981C4F9AE02/i-zDY4Bwprefbc4ioOZbsh4Ndyk.crl rsync://rpki.apnic.net/member_repository/A914E1A8/A40A724AB13011ED847D4981C4F9AE02/i-zDY4Bwprefbc4ioOZbsh4Ndyk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/i-zDY4Bwprefbc4ioOZbsh4Ndyk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 08 Jul 2025 03:26:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 459 (0x1cb) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914E1A8, serialNumber=8BECC3638070A6B79F6DCE22A0E65BB21E0D7729 Validity Not Before: Jul 1 03:26:55 2025 GMT Not After : Jul 8 03:26:55 2025 GMT Subject: CN=6863557f-2348 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a0:e7:67:f8:54:07:d4:ba:92:95:c8:22:a7:5c: 7c:a2:fb:0a:8a:1d:af:94:ba:b0:d7:4c:68:72:12: 3c:3e:78:16:e4:50:74:b8:d4:d5:2c:13:29:b7:86: 5e:5f:94:09:d8:37:ea:bb:37:96:02:c2:3f:e8:8f: 4f:eb:42:97:2e:be:5f:b3:3f:60:9e:be:6e:c2:33: 1a:ee:bd:4f:59:29:06:b6:96:9b:51:25:36:ac:db: 67:15:64:0c:de:5a:65:ba:cd:31:bd:3a:45:ac:3e: 4d:96:6c:21:a3:8e:77:25:39:43:57:51:a4:b2:92: 3b:54:50:6a:0f:4a:15:d9:3a:f4:78:20:42:9e:f1: 84:5e:c5:5f:05:f8:da:1b:a2:6b:3e:86:21:84:05: fe:4a:83:b7:2c:db:b3:de:0c:ec:ff:9a:45:06:04: 84:b3:d6:ce:1f:9d:6e:5d:0a:3e:ac:7d:e5:e6:25: 9c:7c:1c:bb:2f:a2:2d:f2:93:ab:19:f9:45:e7:fd: 04:9e:b7:36:75:e1:27:f4:5b:e0:66:cb:c7:4e:a3: b3:d5:08:ed:75:73:94:f0:76:e8:3f:5e:f7:3a:43: e4:59:b7:88:ea:56:33:a7:fa:08:48:63:7c:1c:a6: 78:9e:96:c7:32:f8:01:88:00:09:80:01:f0:e7:ad: ba:67 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BC:88:6F:82:26:01:A6:4F:BB:BD:E3:23:86:3B:E5:05:0E:6F:2E:15 X509v3 Authority Key Identifier: keyid:8B:EC:C3:63:80:70:A6:B7:9F:6D:CE:22:A0:E6:5B:B2:1E:0D:77:29 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914E1A8/A40A724AB13011ED847D4981C4F9AE02/i-zDY4Bwprefbc4ioOZbsh4Ndyk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/i-zDY4Bwprefbc4ioOZbsh4Ndyk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914E1A8/A40A724AB13011ED847D4981C4F9AE02/i-zDY4Bwprefbc4ioOZbsh4Ndyk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 68:30:f9:e2:88:4e:63:ad:0e:fd:b5:98:9c:60:51:d1:36:e6: 42:6e:b1:b7:fa:d6:c7:e6:25:6f:aa:e7:dd:34:5b:a9:f6:bb: 68:b0:d0:82:ac:7f:0e:c8:c5:0b:41:f6:bc:37:6b:4b:45:2a: 58:88:84:45:e5:34:6e:18:74:fb:f2:9c:c7:00:76:f6:28:d0: fa:ba:d7:9d:c1:59:47:17:1a:0a:7f:dc:e5:92:4f:96:c0:b5: b4:0b:fd:41:48:2d:4e:1c:52:e0:8b:d3:19:e8:21:62:69:07: c6:07:0f:34:f6:b1:bc:3c:b2:b3:24:c7:24:a0:d4:c3:ff:8c: 2e:41:51:03:46:06:4e:fb:27:bb:0a:73:33:a0:47:43:8f:04: fc:5e:a5:72:3a:f0:bd:e1:24:79:c2:ef:5d:f9:44:8e:b8:e8: 9e:58:5b:ab:11:93:cc:dd:c0:6d:7c:aa:a9:a7:d8:b6:af:ec: 1b:05:a2:ee:50:c5:36:ac:a3:04:b5:c3:cf:74:f3:6e:89:08: 48:54:84:45:e1:fa:1c:8c:e5:f9:28:b3:23:b2:0f:93:e4:f7: 39:7d:fb:c0:6f:c8:c1:e7:e0:62:01:c0:26:65:aa:07:62:70: ac:3a:1a:67:f8:46:b2:1d:63:fa:1a:8e:f4:f4:b0:d4:91:eb: 30:e9:e6:68 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAcswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NEUxQTgxMTAvBgNVBAUTKDhCRUNDMzYzODA3MEE2Qjc5RjZEQ0UyMkEwRTY1QkIy MUUwRDc3MjkwHhcNMjUwNzAxMDMyNjU1WhcNMjUwNzA4MDMyNjU1WjAYMRYwFAYD VQQDEw02ODYzNTU3Zi0yMzQ4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAoOdn+FQH1LqSlcgip1x8ovsKih2vlLqw10xochI8PngW5FB0uNTVLBMpt4Ze X5QJ2DfquzeWAsI/6I9P60KXLr5fsz9gnr5uwjMa7r1PWSkGtpabUSU2rNtnFWQM 3lplus0xvTpFrD5Nlmwho453JTlDV1GkspI7VFBqD0oV2Tr0eCBCnvGEXsVfBfja G6JrPoYhhAX+SoO3LNuz3gzs/5pFBgSEs9bOH51uXQo+rH3l5iWcfBy7L6It8pOr GflF5/0Enrc2deEn9FvgZsvHTqOz1QjtdXOU8HboP173OkPkWbeI6lYzp/oISGN8 HKZ4npbHMvgBiAAJgAHw5626ZwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFLyIb4Im AaZPu73jI4Y75QUOby4VMB8GA1UdIwQYMBaAFIvsw2OAcKa3n23OIqDmW7IeDXcp MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0RTFBOC9BNDBBNzI0QUIx MzAxMUVEODQ3RDQ5ODFDNEY5QUUwMi9pLXpEWTRCd3ByZWZiYzRpb09aYnNoNE5k eWsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2ktekRZNEJ3cHJlZmJjNGlvT1pic2g0TmR5ay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 RTFBOC9BNDBBNzI0QUIxMzAxMUVEODQ3RDQ5ODFDNEY5QUUwMi9pLXpEWTRCd3By ZWZiYzRpb09aYnNoNE5keWsubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBoMPniiE5jrQ79tZicYFHRNuZCbrG3+tbH5iVvqufdNFup9rtosNCC rH8OyMULQfa8N2tLRSpYiIRF5TRuGHT78pzHAHb2KND6utedwVlHFxoKf9zlkk+W wLW0C/1BSC1OHFLgi9MZ6CFiaQfGBw809rG8PLKzJMckoNTD/4wuQVEDRgZO+ye7 CnMzoEdDjwT8XqVyOvC94SR5wu9d+USOuOieWFurEZPM3cBtfKqpp9i2r+wbBaLu UMU2rKMEtcPPdPNuiQhIVIRF4focjOX5KLMjsg+T5Pc5ffvAb8jB5+BiAcAmZaoH YnCsOhpn+EayHWP6Go709LDUkesw6eZo -----END CERTIFICATE-----Generated at Wed Jul 2 21:21:02 2025 by rpki-client