$ rpki-client -vvf rpki.apnic.net/member_repository/A914FED3/F8584F7CB38A11E987288166C4F9AE02/aZ9RqdnhRW0WAb6D2LlK1ZpDgjM.mft File: aZ9RqdnhRW0WAb6D2LlK1ZpDgjM.mft (raw, json) Hash identifier: UkGgz8UbZmo+qQRzoPp9+Bl5Sdj7csEs8hPy7yp4+V0= Subject key identifier: A0:CE:B0:12:F1:0B:29:D2:44:58:F2:E3:F5:00:24:9F:A6:09:17:2D Authority key identifier: 69:9F:51:A9:D9:E1:45:6D:16:01:BE:83:D8:B9:4A:D5:9A:43:82:33 Certificate issuer: /CN=A914FED3/serialNumber=699F51A9D9E1456D1601BE83D8B94AD59A438233 Certificate serial: 0E0E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aZ9RqdnhRW0WAb6D2LlK1ZpDgjM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914FED3/F8584F7CB38A11E987288166C4F9AE02/aZ9RqdnhRW0WAb6D2LlK1ZpDgjM.mft Manifest number: 0DF8 Signing time: Wed 02 Jul 2025 18:04:40 +0000 Manifest this update: Wed 02 Jul 2025 18:04:39 +0000 Manifest next update: Wed 09 Jul 2025 18:04:39 +0000 Files and hashes: 1: aZ9RqdnhRW0WAb6D2LlK1ZpDgjM.crl (hash: FJ9jUmpGJsjjpNd1KDdGYrzwMPYjSdqEujUYs+9JG3U=) 2: F9BDC484F7B011EB84345029C4F9AE02.roa (hash: QoxSmZFkmxLXEXsdlg7AEo5bS3bmundbYECPlf6m84c=) 3: 6E8576BC0F1911F0A007DF16C4F9AE02.roa (hash: Hd+fGLIKcj2CGWAhoQMpGvllKlGgq3bRAKOqU9WwZus=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914FED3/F8584F7CB38A11E987288166C4F9AE02/aZ9RqdnhRW0WAb6D2LlK1ZpDgjM.crl rsync://rpki.apnic.net/member_repository/A914FED3/F8584F7CB38A11E987288166C4F9AE02/aZ9RqdnhRW0WAb6D2LlK1ZpDgjM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aZ9RqdnhRW0WAb6D2LlK1ZpDgjM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 09 Jul 2025 18:04:39 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3598 (0xe0e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914FED3, serialNumber=699F51A9D9E1456D1601BE83D8B94AD59A438233 Validity Not Before: Jul 2 18:04:39 2025 GMT Not After : Jul 9 18:04:39 2025 GMT Subject: CN=686574b8-d4ea Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:90:c8:98:9f:5b:da:65:c7:31:c6:59:1b:95: 7b:ac:e5:89:96:e2:bc:b5:b6:49:73:62:d7:cc:42: c6:bf:e0:f8:c9:4d:11:5a:68:3f:28:e9:fb:d7:7b: 86:3b:1d:5c:db:e9:76:31:95:79:b0:28:db:25:d8: 8c:d0:7d:cb:cf:41:5e:2b:31:a0:06:56:66:b2:b5: 69:29:8f:00:85:78:9b:03:d6:64:a5:f3:5e:9a:52: d8:2f:d6:d0:28:6f:54:af:fa:9a:bf:71:06:25:89: 47:3e:a7:bf:ab:4e:62:65:e5:36:c4:90:6c:2c:ac: 86:43:9d:27:49:68:7e:9e:07:54:3a:cb:b7:09:08: 37:b7:3c:2a:49:46:75:34:43:19:db:3f:da:7d:7e: a6:10:c4:d5:7f:cc:dd:74:94:d1:6d:40:08:05:43: 65:a2:b9:a3:d0:a8:66:9d:6f:57:9a:03:02:08:3a: 8a:4a:fc:11:ba:3e:4c:0f:45:65:17:e7:68:1c:b1: 2c:e4:3d:42:be:7a:67:2a:30:22:ec:dd:eb:78:fe: 22:38:31:5c:4d:9f:a9:4b:b3:28:50:35:97:7b:91: 34:f9:f9:c6:0d:34:08:62:d2:6e:b5:31:95:e6:ef: d6:c2:ae:9b:c5:54:9f:85:3c:81:20:27:3a:a6:c3: fb:e7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A0:CE:B0:12:F1:0B:29:D2:44:58:F2:E3:F5:00:24:9F:A6:09:17:2D X509v3 Authority Key Identifier: keyid:69:9F:51:A9:D9:E1:45:6D:16:01:BE:83:D8:B9:4A:D5:9A:43:82:33 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914FED3/F8584F7CB38A11E987288166C4F9AE02/aZ9RqdnhRW0WAb6D2LlK1ZpDgjM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aZ9RqdnhRW0WAb6D2LlK1ZpDgjM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914FED3/F8584F7CB38A11E987288166C4F9AE02/aZ9RqdnhRW0WAb6D2LlK1ZpDgjM.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 59:dc:76:fc:12:d1:c2:52:44:05:69:a6:2c:c5:e8:19:d4:32: d0:ed:4c:45:85:05:fa:bf:0f:d3:57:a7:82:32:0f:f3:86:c4: 05:d5:2c:a8:6a:1a:77:79:30:2f:08:05:6d:79:62:db:82:24: e3:96:b4:33:2c:05:f3:63:62:20:af:fa:e3:a4:d1:e5:97:10: 31:76:4b:1e:13:a6:e9:8e:2e:3e:4c:45:21:f2:3f:ad:46:d5: e9:f7:f4:95:6f:62:02:6e:5d:af:fa:18:88:dc:b7:f9:d8:7e: df:c9:14:cc:f3:b8:e9:4b:23:a6:3e:65:db:78:d7:10:5e:92: da:85:e5:38:71:07:f1:53:de:10:72:22:66:0e:52:29:e2:ce: c5:d7:17:40:67:c0:03:50:3f:1e:7f:23:02:5d:5a:d9:87:90: a8:2a:37:20:4f:53:6e:ab:c1:d3:8c:9c:99:68:9f:1a:13:25: c3:f1:b3:2c:1d:e0:b9:d2:ab:69:d1:b1:7d:f7:d6:d9:9a:e8: ee:2f:3c:4c:77:21:45:30:e2:ad:b0:2c:f1:d8:45:48:c9:2e: 84:be:ef:f8:b6:3d:90:fc:79:1e:d8:fb:4f:f7:21:bb:dc:f8: 0b:45:b4:39:53:c8:59:27:6f:89:8a:d7:78:5f:99:00:7a:ad: 58:a1:9b:92 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDg4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NEZFRDMxMTAvBgNVBAUTKDY5OUY1MUE5RDlFMTQ1NkQxNjAxQkU4M0Q4Qjk0QUQ1 OUE0MzgyMzMwHhcNMjUwNzAyMTgwNDM5WhcNMjUwNzA5MTgwNDM5WjAYMRYwFAYD VQQDEw02ODY1NzRiOC1kNGVhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwZDImJ9b2mXHMcZZG5V7rOWJluK8tbZJc2LXzELGv+D4yU0RWmg/KOn713uG Ox1c2+l2MZV5sCjbJdiM0H3Lz0FeKzGgBlZmsrVpKY8AhXibA9ZkpfNemlLYL9bQ KG9Ur/qav3EGJYlHPqe/q05iZeU2xJBsLKyGQ50nSWh+ngdUOsu3CQg3tzwqSUZ1 NEMZ2z/afX6mEMTVf8zddJTRbUAIBUNlormj0KhmnW9XmgMCCDqKSvwRuj5MD0Vl F+doHLEs5D1CvnpnKjAi7N3reP4iODFcTZ+pS7MoUDWXe5E0+fnGDTQIYtJutTGV 5u/Wwq6bxVSfhTyBICc6psP75wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFKDOsBLx CynSRFjy4/UAJJ+mCRctMB8GA1UdIwQYMBaAFGmfUanZ4UVtFgG+g9i5StWaQ4Iz MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0RkVEMy9GODU4NEY3Q0Iz OEExMUU5ODcyODgxNjZDNEY5QUUwMi9hWjlScWRuaFJXMFdBYjZEMkxsSzFacERn ak0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2FaOVJxZG5oUlcwV0FiNkQyTGxLMVpwRGdqTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 RkVEMy9GODU4NEY3Q0IzOEExMUU5ODcyODgxNjZDNEY5QUUwMi9hWjlScWRuaFJX MFdBYjZEMkxsSzFacERnak0ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBZ3Hb8EtHCUkQFaaYsxegZ1DLQ7UxFhQX6vw/TV6eCMg/zhsQF1Syo ahp3eTAvCAVteWLbgiTjlrQzLAXzY2Igr/rjpNHllxAxdkseE6bpji4+TEUh8j+t RtXp9/SVb2ICbl2v+hiI3Lf52H7fyRTM87jpSyOmPmXbeNcQXpLaheU4cQfxU94Q ciJmDlIp4s7F1xdAZ8ADUD8efyMCXVrZh5CoKjcgT1Nuq8HTjJyZaJ8aEyXD8bMs HeC50qtp0bF999bZmujuLzxMdyFFMOKtsCzx2EVIyS6Evu/4tj2Q/Hke2PtP9yG7 3PgLRbQ5U8hZJ2+Jitd4X5kAeq1YoZuS -----END CERTIFICATE-----Generated at Thu Jul 3 09:16:09 2025 by rpki-client