$ rpki-client -vvf rpki.apnic.net/member_repository/A916AAFF/7BB8BA6CBB3A11EE87C66B0FC4F9AE02/4bzIEhAO1GAiFweJMk8cw6-_aq0.mft File: 4bzIEhAO1GAiFweJMk8cw6-_aq0.mft (raw, json) Hash identifier: WZEglTNXfSfncUO2RDYjT3QatMFJgdb8d2TKKqCUDw8= Subject key identifier: 00:74:95:04:57:F1:0C:21:36:68:FB:21:2F:9C:07:ED:4C:71:14:6F Authority key identifier: E1:BC:C8:12:10:0E:D4:60:22:17:07:89:32:4F:1C:C3:AF:BF:6A:AD Certificate issuer: /CN=A916AAFF/serialNumber=E1BCC812100ED46022170789324F1CC3AFBF6AAD Certificate serial: 011E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4bzIEhAO1GAiFweJMk8cw6-_aq0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A916AAFF/7BB8BA6CBB3A11EE87C66B0FC4F9AE02/4bzIEhAO1GAiFweJMk8cw6-_aq0.mft Manifest number: 0117 Signing time: Thu 03 Jul 2025 05:08:13 +0000 Manifest this update: Thu 03 Jul 2025 05:08:12 +0000 Manifest next update: Thu 10 Jul 2025 05:08:12 +0000 Files and hashes: 1: 4bzIEhAO1GAiFweJMk8cw6-_aq0.crl (hash: fUJeDPS+wm/cAGhM25WLawM3Y2QOuasyRF46HfVV6w0=) 2: 69E8AC12555811EFA88AEA24C4F9AE02.roa (hash: rp2KgXfSmtmZKYQY55JUof6yTTeOYpzuHhK8PCwpS0Q=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A916AAFF/7BB8BA6CBB3A11EE87C66B0FC4F9AE02/4bzIEhAO1GAiFweJMk8cw6-_aq0.crl rsync://rpki.apnic.net/member_repository/A916AAFF/7BB8BA6CBB3A11EE87C66B0FC4F9AE02/4bzIEhAO1GAiFweJMk8cw6-_aq0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4bzIEhAO1GAiFweJMk8cw6-_aq0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 10 Jul 2025 03:15:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 286 (0x11e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A916AAFF, serialNumber=E1BCC812100ED46022170789324F1CC3AFBF6AAD Validity Not Before: Jul 3 05:08:12 2025 GMT Not After : Jul 10 05:08:12 2025 GMT Subject: CN=6866103c-b7ce Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d2:16:a1:22:32:ff:38:33:9e:f1:9d:df:57:55: f1:f0:64:23:c8:39:1f:31:d5:7c:f2:20:8b:e0:4d: e5:de:3c:18:a9:00:1b:58:63:63:d8:bd:5c:d7:a1: ed:3d:f9:53:35:2e:be:f5:ef:a4:7d:e0:c1:ed:fa: 41:c6:26:90:8c:88:ac:59:a7:6a:15:a0:dd:33:32: 86:52:ef:be:b0:22:9f:e6:65:b7:59:10:05:80:db: 6a:18:5b:ba:60:9d:3d:3a:79:79:e2:03:c0:44:91: 31:dc:14:17:10:4a:e8:8c:ff:cb:a6:aa:9f:40:f3: d9:51:b9:c8:7c:b9:6f:25:d1:e2:fe:dd:5e:90:11: 22:63:eb:0a:ed:1c:2d:53:6f:98:7c:8d:b0:07:fa: ca:d8:54:67:34:d1:09:3b:35:84:46:3c:11:95:f7: 53:1f:0c:c5:81:7f:a3:b1:e9:a6:2c:ac:06:0a:32: db:4a:b3:3e:73:39:6d:63:97:6a:11:5e:c6:62:28: 22:53:be:bb:62:84:ba:41:a3:16:78:4c:6e:4f:e2: 47:da:ac:cc:6b:54:a4:78:76:bd:75:93:a4:a9:db: 06:1e:59:de:ab:50:c0:67:7d:0f:08:f4:e9:1f:6e: 7a:97:85:12:d0:b6:c4:f4:b6:6c:76:64:84:23:79: f3:4d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 00:74:95:04:57:F1:0C:21:36:68:FB:21:2F:9C:07:ED:4C:71:14:6F X509v3 Authority Key Identifier: keyid:E1:BC:C8:12:10:0E:D4:60:22:17:07:89:32:4F:1C:C3:AF:BF:6A:AD X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A916AAFF/7BB8BA6CBB3A11EE87C66B0FC4F9AE02/4bzIEhAO1GAiFweJMk8cw6-_aq0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4bzIEhAO1GAiFweJMk8cw6-_aq0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A916AAFF/7BB8BA6CBB3A11EE87C66B0FC4F9AE02/4bzIEhAO1GAiFweJMk8cw6-_aq0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 48:74:29:fb:fb:86:b5:7f:31:fc:b3:31:5a:9f:d9:03:05:1a: 1e:75:dd:b1:1f:35:4c:3a:3b:0b:f9:79:d1:58:41:7a:68:36: 25:7d:f7:39:30:4c:84:70:60:5f:ed:2c:97:c3:21:fd:51:a3: 32:b1:5b:be:a8:e5:59:76:58:37:01:da:eb:01:18:21:85:51: 07:6e:09:f5:50:1e:d6:1a:bf:c6:b4:51:75:8b:1d:88:e3:7f: 87:dd:64:95:c3:c2:0d:ef:48:fa:25:2e:00:11:4f:a8:27:4f: 41:3e:69:97:7c:a6:91:91:56:46:f0:2c:18:a6:75:e6:07:d2: c7:7c:dd:33:1e:8e:10:c9:25:61:7a:26:76:f7:19:e4:a5:8c: 21:3d:75:d8:1a:63:99:4f:69:70:96:ab:14:5d:9f:06:8d:ee: eb:b8:9c:4d:77:3e:f1:c3:9e:23:98:1b:2d:7f:b4:65:94:51: b7:c5:d5:2a:b7:9a:4e:d8:5b:ef:85:64:0b:21:f6:f0:10:d4: b5:48:70:9e:c0:c2:ab:c4:2f:3e:a1:09:0e:0e:26:0a:cc:e1: 3d:90:34:a3:8f:9d:a7:3c:d1:34:92:ff:e1:96:36:4f:30:b7: c0:57:c8:30:dc:19:75:ed:d4:69:9b:f6:d9:af:db:0e:84:e9: f3:07:5a:c7 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAR4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NkFBRkYxMTAvBgNVBAUTKEUxQkNDODEyMTAwRUQ0NjAyMjE3MDc4OTMyNEYxQ0Mz QUZCRjZBQUQwHhcNMjUwNzAzMDUwODEyWhcNMjUwNzEwMDUwODEyWjAYMRYwFAYD VQQDEw02ODY2MTAzYy1iN2NlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0hahIjL/ODOe8Z3fV1Xx8GQjyDkfMdV88iCL4E3l3jwYqQAbWGNj2L1c16Ht PflTNS6+9e+kfeDB7fpBxiaQjIisWadqFaDdMzKGUu++sCKf5mW3WRAFgNtqGFu6 YJ09Onl54gPARJEx3BQXEErojP/LpqqfQPPZUbnIfLlvJdHi/t1ekBEiY+sK7Rwt U2+YfI2wB/rK2FRnNNEJOzWERjwRlfdTHwzFgX+jsemmLKwGCjLbSrM+czltY5dq EV7GYigiU767YoS6QaMWeExuT+JH2qzMa1SkeHa9dZOkqdsGHlneq1DAZ30PCPTp H256l4US0LbE9LZsdmSEI3nzTQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFAB0lQRX 8QwhNmj7IS+cB+1McRRvMB8GA1UdIwQYMBaAFOG8yBIQDtRgIhcHiTJPHMOvv2qt MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2QUFGRi83QkI4QkE2Q0JC M0ExMUVFODdDNjZCMEZDNEY5QUUwMi80YnpJRWhBTzFHQWlGd2VKTWs4Y3c2LV9h cTAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzRieklFaEFPMUdBaUZ3ZUpNazhjdzYtX2FxMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 QUFGRi83QkI4QkE2Q0JCM0ExMUVFODdDNjZCMEZDNEY5QUUwMi80YnpJRWhBTzFH QWlGd2VKTWs4Y3c2LV9hcTAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBIdCn7+4a1fzH8szFan9kDBRoedd2xHzVMOjsL+XnRWEF6aDYlffc5 MEyEcGBf7SyXwyH9UaMysVu+qOVZdlg3AdrrARghhVEHbgn1UB7WGr/GtFF1ix2I 43+H3WSVw8IN70j6JS4AEU+oJ09BPmmXfKaRkVZG8CwYpnXmB9LHfN0zHo4QySVh eiZ29xnkpYwhPXXYGmOZT2lwlqsUXZ8Gje7ruJxNdz7xw54jmBstf7RllFG3xdUq t5pO2FvvhWQLIfbwENS1SHCewMKrxC8+oQkODiYKzOE9kDSjj52nPNE0kv/hljZP MLfAV8gw3Bl17dRpm/bZr9sOhOnzB1rH -----END CERTIFICATE-----Generated at Thu Jul 3 07:05:24 2025 by rpki-client