$ rpki-client -vvf rpki.apnic.net/member_repository/A9154D26/C00D9726413B11ECB06AE030C4F9AE02/zaA_ZfTTOjOZaZc_apvQfa-eNyQ.mft File: zaA_ZfTTOjOZaZc_apvQfa-eNyQ.mft (raw, json) Hash identifier: MFQJbVVQqjxpi+qEzTQkw9k9bbpyuLNhse5En7/esAE= Subject key identifier: 21:2F:B7:D2:5E:8F:97:06:1D:03:C2:AA:9F:EC:D8:6F:29:BF:D8:72 Authority key identifier: CD:A0:3F:65:F4:D3:3A:33:99:69:97:3F:6A:9B:D0:7D:AF:9E:37:24 Certificate issuer: /CN=A9154D26/serialNumber=CDA03F65F4D33A339969973F6A9BD07DAF9E3724 Certificate serial: 04A5 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/zaA_ZfTTOjOZaZc_apvQfa-eNyQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9154D26/C00D9726413B11ECB06AE030C4F9AE02/zaA_ZfTTOjOZaZc_apvQfa-eNyQ.mft Manifest number: 0498 Signing time: Tue 01 Jul 2025 00:31:23 +0000 Manifest this update: Tue 01 Jul 2025 00:31:23 +0000 Manifest next update: Tue 08 Jul 2025 00:31:23 +0000 Files and hashes: 1: zaA_ZfTTOjOZaZc_apvQfa-eNyQ.crl (hash: CnxEbjyHJeoClPy/NZkW6ObI5Le8LMyoRb4i7uOIoYo=) 2: AA5485827F3611ECBED94963C4F9AE02.roa (hash: L7q5MhSYBL7XAFYcbCU7483l92C9DWVyV5PtuFnvCCo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9154D26/C00D9726413B11ECB06AE030C4F9AE02/zaA_ZfTTOjOZaZc_apvQfa-eNyQ.crl rsync://rpki.apnic.net/member_repository/A9154D26/C00D9726413B11ECB06AE030C4F9AE02/zaA_ZfTTOjOZaZc_apvQfa-eNyQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/zaA_ZfTTOjOZaZc_apvQfa-eNyQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 08 Jul 2025 00:31:22 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1189 (0x4a5) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9154D26, serialNumber=CDA03F65F4D33A339969973F6A9BD07DAF9E3724 Validity Not Before: Jul 1 00:31:23 2025 GMT Not After : Jul 8 00:31:23 2025 GMT Subject: CN=68632c5b-2545 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:5f:0b:23:a8:1e:17:93:26:6d:15:e8:ef:6e: 82:54:16:34:0c:b9:b2:cd:fd:bc:8e:ff:fd:55:7b: d7:c6:f8:0c:a8:c8:e3:8c:f1:82:27:ba:bf:fc:98: 7f:e5:c6:d0:e8:78:63:83:db:91:63:6a:19:58:6a: 57:a4:ca:36:24:2b:00:66:e2:74:be:56:55:d8:c9: 4d:36:74:e3:ef:51:d6:e2:83:74:61:4e:b9:e0:cc: 27:8e:44:ea:56:6f:3f:02:96:05:49:9a:1a:5b:68: fb:7d:e6:e9:c1:a9:a7:a3:4d:30:da:27:fc:8b:b5: b2:89:0a:40:16:8c:80:97:13:5b:9d:0e:30:97:23: f7:8e:81:c8:15:e4:df:cb:04:d4:85:52:ca:ba:f5: 8b:49:dd:59:4f:62:34:0f:bd:7f:75:3f:e0:f1:1c: f7:80:8e:4b:b0:b8:3e:64:9f:81:75:35:64:40:08: c6:1d:02:be:d8:a1:af:cb:fd:f3:de:ca:10:99:ee: 98:92:f1:ed:bb:21:1b:ff:11:2e:2d:09:45:8f:17: f5:89:af:77:ec:b5:49:87:3c:d4:39:1e:31:bd:02: 16:1c:63:d6:0e:ab:b2:54:5d:b5:d6:06:7e:32:74: 70:ea:cc:5e:fe:b8:fe:31:69:88:2a:3c:3e:b5:83: 4e:db Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 21:2F:B7:D2:5E:8F:97:06:1D:03:C2:AA:9F:EC:D8:6F:29:BF:D8:72 X509v3 Authority Key Identifier: keyid:CD:A0:3F:65:F4:D3:3A:33:99:69:97:3F:6A:9B:D0:7D:AF:9E:37:24 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9154D26/C00D9726413B11ECB06AE030C4F9AE02/zaA_ZfTTOjOZaZc_apvQfa-eNyQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/zaA_ZfTTOjOZaZc_apvQfa-eNyQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9154D26/C00D9726413B11ECB06AE030C4F9AE02/zaA_ZfTTOjOZaZc_apvQfa-eNyQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption b6:83:96:46:c0:46:94:02:1f:81:f2:92:8d:5f:de:35:23:d3: 0d:f4:29:d1:b5:67:8f:01:92:8c:ff:16:76:78:39:d5:f4:34: 09:62:cc:34:1c:c2:8d:85:61:00:08:a8:bd:4b:95:28:e7:c7: e9:ed:cd:a6:ea:fa:39:2b:9c:16:fe:9d:71:84:06:23:05:23: a8:dd:1f:ae:c1:18:a7:4c:19:b0:1f:f6:08:53:03:21:f4:37: 68:27:e2:e9:ad:10:0e:f3:08:47:87:83:68:1e:5d:2c:83:3b: 2b:40:0a:b2:01:d1:f7:cf:75:1f:eb:23:dc:f2:8d:b9:7a:cb: c1:80:56:55:79:cc:ba:38:46:63:a0:61:2a:43:84:bb:c7:62: a4:f8:b6:cf:cb:6d:44:47:22:06:62:3d:80:89:9a:f0:4c:d3: 66:03:c4:8d:d7:36:0e:85:1e:56:0d:8f:c9:a8:75:5b:15:c0: 47:4d:86:f4:40:f3:e7:1a:52:70:43:a0:ed:87:87:46:d1:69: d2:1c:8d:c0:82:04:fa:d8:d5:02:ce:f8:18:5c:92:43:23:53: d1:80:7e:c5:17:9f:f3:16:5b:1c:d9:f7:e2:b1:08:28:f4:fc: 52:40:ac:34:a9:c7:b8:e7:94:34:02:2b:3c:ad:bc:63:7c:2a: 1d:c3:ea:ed -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBKUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTREMjYxMTAvBgNVBAUTKENEQTAzRjY1RjREMzNBMzM5OTY5OTczRjZBOUJEMDdE QUY5RTM3MjQwHhcNMjUwNzAxMDAzMTIzWhcNMjUwNzA4MDAzMTIzWjAYMRYwFAYD VQQDEw02ODYzMmM1Yi0yNTQ1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtV8LI6geF5MmbRXo726CVBY0DLmyzf28jv/9VXvXxvgMqMjjjPGCJ7q//Jh/ 5cbQ6Hhjg9uRY2oZWGpXpMo2JCsAZuJ0vlZV2MlNNnTj71HW4oN0YU654MwnjkTq Vm8/ApYFSZoaW2j7febpwamno00w2if8i7WyiQpAFoyAlxNbnQ4wlyP3joHIFeTf ywTUhVLKuvWLSd1ZT2I0D71/dT/g8Rz3gI5LsLg+ZJ+BdTVkQAjGHQK+2KGvy/3z 3soQme6YkvHtuyEb/xEuLQlFjxf1ia937LVJhzzUOR4xvQIWHGPWDquyVF211gZ+ MnRw6sxe/rj+MWmIKjw+tYNO2wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFCEvt9Je j5cGHQPCqp/s2G8pv9hyMB8GA1UdIwQYMBaAFM2gP2X00zozmWmXP2qb0H2vnjck MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1NEQyNi9DMDBEOTcyNjQx M0IxMUVDQjA2QUUwMzBDNEY5QUUwMi96YUFfWmZUVE9qT1phWmNfYXB2UWZhLWVO eVEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3phQV9aZlRUT2pPWmFaY19hcHZRZmEtZU55US5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 NEQyNi9DMDBEOTcyNjQxM0IxMUVDQjA2QUUwMzBDNEY5QUUwMi96YUFfWmZUVE9q T1phWmNfYXB2UWZhLWVOeVEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQC2g5ZGwEaUAh+B8pKNX941I9MN9CnRtWePAZKM/xZ2eDnV9DQJYsw0 HMKNhWEACKi9S5Uo58fp7c2m6vo5K5wW/p1xhAYjBSOo3R+uwRinTBmwH/YIUwMh 9DdoJ+LprRAO8whHh4NoHl0sgzsrQAqyAdH3z3Uf6yPc8o25esvBgFZVecy6OEZj oGEqQ4S7x2Kk+LbPy21ERyIGYj2AiZrwTNNmA8SN1zYOhR5WDY/JqHVbFcBHTYb0 QPPnGlJwQ6Dth4dG0WnSHI3AggT62NUCzvgYXJJDI1PRgH7FF5/zFlsc2ffisQgo 9PxSQKw0qce455Q0Ais8rbxjfCodw+rt -----END CERTIFICATE-----Generated at Thu Jul 3 00:53:43 2025 by rpki-client