$ rpki-client -vvf rpki.apnic.net/member_repository/A916A3EE/5B97A8B8701211EB8907BB1FC4F9AE02/aWryPZMpXC9f3fMqlVE7Ldu_zhs.mft File: aWryPZMpXC9f3fMqlVE7Ldu_zhs.mft (raw, json) Hash identifier: 0c9hnfeJiOZ8/hbXocaSOtEbi0ikbIcUG0p1cvMLLQw= Subject key identifier: 67:F1:21:2D:1D:B1:E5:C2:C3:72:8D:9C:9D:F0:D7:40:92:48:5D:7A Authority key identifier: 69:6A:F2:3D:93:29:5C:2F:5F:DD:F3:2A:95:51:3B:2D:DB:BF:CE:1B Certificate issuer: /CN=A916A3EE/serialNumber=696AF23D93295C2F5FDDF32A95513B2DDBBFCE1B Certificate serial: 06A5 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aWryPZMpXC9f3fMqlVE7Ldu_zhs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A916A3EE/5B97A8B8701211EB8907BB1FC4F9AE02/aWryPZMpXC9f3fMqlVE7Ldu_zhs.mft Manifest number: 06A0 Signing time: Wed 02 Jul 2025 22:28:50 +0000 Manifest this update: Wed 02 Jul 2025 22:28:50 +0000 Manifest next update: Wed 09 Jul 2025 22:28:50 +0000 Files and hashes: 1: aWryPZMpXC9f3fMqlVE7Ldu_zhs.crl (hash: PkttufPZrD91ASB5uZbXS0ojsJJhet5s+23AoYk05Lw=) 2: 76F5B630701311EB9C85DF1FC4F9AE02.roa (hash: qir+UT8zyDGjYz1YRKkq2v/pYcPeSxEZXiWVhwGwNRY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A916A3EE/5B97A8B8701211EB8907BB1FC4F9AE02/aWryPZMpXC9f3fMqlVE7Ldu_zhs.crl rsync://rpki.apnic.net/member_repository/A916A3EE/5B97A8B8701211EB8907BB1FC4F9AE02/aWryPZMpXC9f3fMqlVE7Ldu_zhs.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aWryPZMpXC9f3fMqlVE7Ldu_zhs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 09 Jul 2025 22:28:49 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1701 (0x6a5) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A916A3EE, serialNumber=696AF23D93295C2F5FDDF32A95513B2DDBBFCE1B Validity Not Before: Jul 2 22:28:50 2025 GMT Not After : Jul 9 22:28:50 2025 GMT Subject: CN=6865b2a2-638f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:52:e0:12:3a:76:38:f8:2e:ac:d4:8b:33:18: 8b:e3:2d:84:0e:8b:41:0f:e9:78:f0:b7:ce:56:1a: 7f:ce:de:65:f6:f1:73:60:8c:0e:ef:1a:93:90:a3: cf:7d:69:fb:53:f6:7f:ef:f5:a4:9b:e5:11:97:34: 65:ec:4c:80:7b:76:30:53:7f:b9:d8:62:0a:7d:ba: 4e:65:1a:4b:27:8f:3d:1f:91:9f:de:00:ed:3a:aa: 71:c8:8e:c8:bf:df:46:38:9d:68:ab:ed:4b:3f:53: 86:05:d9:d5:fc:d0:0c:cb:59:b9:32:5d:ad:29:e0: 8b:20:28:37:d0:6d:5e:0f:e0:37:93:19:46:de:71: 84:ba:af:75:92:91:42:67:76:4b:cc:aa:68:5c:fc: 28:6a:31:4f:e5:53:59:47:54:17:9b:f7:8f:33:70: 51:cd:c2:37:cd:a0:38:c6:93:69:65:50:c0:ce:66: b5:e4:17:6d:25:80:70:40:d9:7f:79:ca:14:b9:ab: 89:be:74:db:1d:78:9a:e1:67:9e:7b:f5:ce:ae:e5: 6c:b7:9b:33:02:fa:b7:04:e5:c1:c1:6f:64:24:c1: a7:5e:84:b9:47:b2:32:ab:1f:a8:81:20:14:e8:1f: 51:d1:86:c2:b9:9b:bf:15:8f:59:1a:14:0b:e9:ef: 05:91 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 67:F1:21:2D:1D:B1:E5:C2:C3:72:8D:9C:9D:F0:D7:40:92:48:5D:7A X509v3 Authority Key Identifier: keyid:69:6A:F2:3D:93:29:5C:2F:5F:DD:F3:2A:95:51:3B:2D:DB:BF:CE:1B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A916A3EE/5B97A8B8701211EB8907BB1FC4F9AE02/aWryPZMpXC9f3fMqlVE7Ldu_zhs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aWryPZMpXC9f3fMqlVE7Ldu_zhs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A916A3EE/5B97A8B8701211EB8907BB1FC4F9AE02/aWryPZMpXC9f3fMqlVE7Ldu_zhs.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 77:f5:92:22:13:0d:ba:b9:b7:b1:4f:97:54:c6:a1:b7:8f:df: 8c:19:da:c9:55:7e:93:c1:92:e2:b2:f6:6a:5f:05:64:81:51: 36:7d:1e:a5:9d:76:48:f1:66:7d:d9:0e:45:bf:a7:6f:6c:e6: 59:47:b1:6e:ba:b2:c0:a6:4b:b0:cf:d6:51:36:08:19:ae:55: 40:ca:fa:cc:40:4f:30:4e:9c:14:37:3b:d0:d0:51:cc:cd:1d: f4:c4:87:76:65:be:a9:23:80:73:7e:1d:5a:c1:1f:6e:17:24: b9:cd:ed:57:c6:8b:1d:1c:32:df:9a:77:eb:a7:24:9e:f0:84: 25:9f:54:9c:5d:5e:51:05:bd:b0:83:7e:89:91:d9:e9:32:26: 53:dc:c5:af:29:9f:81:48:2e:f9:58:bc:85:15:dd:e5:26:b1: c6:e1:29:2e:a2:be:e4:20:39:a1:82:81:64:1d:6d:2d:70:b5: 44:72:cb:82:7e:48:b3:60:e9:28:c9:c3:f2:0e:c9:da:61:63: d3:c8:0b:34:9e:23:21:b1:6a:21:f0:60:08:16:21:e9:fa:d3: 95:2b:13:c1:6d:b6:f7:25:0d:da:b7:dd:62:51:f3:dc:6f:07: 6d:c2:ef:8a:88:46:d3:4b:61:f5:f6:39:97:50:3d:3d:8e:7b: ea:a4:3f:c8 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBqUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NkEzRUUxMTAvBgNVBAUTKDY5NkFGMjNEOTMyOTVDMkY1RkRERjMyQTk1NTEzQjJE REJCRkNFMUIwHhcNMjUwNzAyMjIyODUwWhcNMjUwNzA5MjIyODUwWjAYMRYwFAYD VQQDEw02ODY1YjJhMi02MzhmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAv1LgEjp2OPgurNSLMxiL4y2EDotBD+l48LfOVhp/zt5l9vFzYIwO7xqTkKPP fWn7U/Z/7/Wkm+URlzRl7EyAe3YwU3+52GIKfbpOZRpLJ489H5Gf3gDtOqpxyI7I v99GOJ1oq+1LP1OGBdnV/NAMy1m5Ml2tKeCLICg30G1eD+A3kxlG3nGEuq91kpFC Z3ZLzKpoXPwoajFP5VNZR1QXm/ePM3BRzcI3zaA4xpNpZVDAzma15BdtJYBwQNl/ ecoUuauJvnTbHXia4Weee/XOruVst5szAvq3BOXBwW9kJMGnXoS5R7Iyqx+ogSAU 6B9R0YbCuZu/FY9ZGhQL6e8FkQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFGfxIS0d seXCw3KNnJ3w10CSSF16MB8GA1UdIwQYMBaAFGlq8j2TKVwvX93zKpVROy3bv84b MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2QTNFRS81Qjk3QThCODcw MTIxMUVCODkwN0JCMUZDNEY5QUUwMi9hV3J5UFpNcFhDOWYzZk1xbFZFN0xkdV96 aHMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2FXcnlQWk1wWEM5ZjNmTXFsVkU3TGR1X3pocy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 QTNFRS81Qjk3QThCODcwMTIxMUVCODkwN0JCMUZDNEY5QUUwMi9hV3J5UFpNcFhD OWYzZk1xbFZFN0xkdV96aHMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB39ZIiEw26ubexT5dUxqG3j9+MGdrJVX6TwZLisvZqXwVkgVE2fR6l nXZI8WZ92Q5Fv6dvbOZZR7FuurLApkuwz9ZRNggZrlVAyvrMQE8wTpwUNzvQ0FHM zR30xId2Zb6pI4Bzfh1awR9uFyS5ze1XxosdHDLfmnfrpySe8IQln1ScXV5RBb2w g36JkdnpMiZT3MWvKZ+BSC75WLyFFd3lJrHG4Skuor7kIDmhgoFkHW0tcLVEcsuC fkizYOkoycPyDsnaYWPTyAs0niMhsWoh8GAIFiHp+tOVKxPBbbb3JQ3at91iUfPc bwdtwu+KiEbTS2H19jmXUD09jnvqpD/I -----END CERTIFICATE-----Generated at Thu Jul 3 06:05:12 2025 by rpki-client