$ rpki-client -vvf rpki.apnic.net/member_repository/A917BB1B/D9B9C88C7F3611ECA90BCA3AC4F9AE02/1jZSRQ6nVZE88xr8-popIaSK4aQ.mft File: 1jZSRQ6nVZE88xr8-popIaSK4aQ.mft (raw, json) Hash identifier: ZQosgCu9oSUnEtCfDLtYIj2TKFvCiItclyxAafuepoo= Subject key identifier: 04:96:96:16:21:E6:46:00:20:B8:8F:DA:38:D8:A4:74:84:2C:31:36 Authority key identifier: D6:36:52:45:0E:A7:55:91:3C:F3:1A:FC:FA:9A:29:21:A4:8A:E1:A4 Certificate issuer: /CN=A917BB1B/serialNumber=D63652450EA755913CF31AFCFA9A2921A48AE1A4 Certificate serial: 03FF Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1jZSRQ6nVZE88xr8-popIaSK4aQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917BB1B/D9B9C88C7F3611ECA90BCA3AC4F9AE02/1jZSRQ6nVZE88xr8-popIaSK4aQ.mft Manifest number: 03F8 Signing time: Thu 03 Jul 2025 00:49:56 +0000 Manifest this update: Thu 03 Jul 2025 00:49:56 +0000 Manifest next update: Thu 10 Jul 2025 00:49:56 +0000 Files and hashes: 1: 1jZSRQ6nVZE88xr8-popIaSK4aQ.crl (hash: 5OZjksKpuo/3BgcprHO1ZgbtaP66lTh5g5oUsz5zGNk=) 2: E69DB7E67F7911EC86DE4B56C4F9AE02.roa (hash: SCsr6a/OxC+h0TbqqqQWA1WP6sx9Kte4TE8O/kgTqE0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917BB1B/D9B9C88C7F3611ECA90BCA3AC4F9AE02/1jZSRQ6nVZE88xr8-popIaSK4aQ.crl rsync://rpki.apnic.net/member_repository/A917BB1B/D9B9C88C7F3611ECA90BCA3AC4F9AE02/1jZSRQ6nVZE88xr8-popIaSK4aQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1jZSRQ6nVZE88xr8-popIaSK4aQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 10 Jul 2025 00:49:55 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1023 (0x3ff) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917BB1B, serialNumber=D63652450EA755913CF31AFCFA9A2921A48AE1A4 Validity Not Before: Jul 3 00:49:56 2025 GMT Not After : Jul 10 00:49:56 2025 GMT Subject: CN=6865d3b4-8181 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:df:c1:ca:3e:5b:16:18:4d:40:bc:53:79:70:d6: 65:73:69:40:77:e7:4f:77:08:00:01:c9:3b:10:14: 41:1c:3c:25:e2:d1:35:3a:a4:c7:ea:ea:cf:7b:3a: 24:43:67:1d:98:2e:78:38:04:9a:18:6b:e1:af:37: b2:ca:25:93:c4:e1:93:ab:ca:0f:fd:c1:34:c9:2c: a2:5d:9d:2d:f9:6b:5c:71:b6:95:5e:91:46:31:8a: 11:14:47:90:9b:85:1f:d9:0e:c7:d9:be:4d:45:df: 30:45:b3:c6:7b:85:6f:d3:7d:f2:db:9e:48:f9:0f: b0:24:39:65:6b:9e:97:3a:15:9b:6f:8d:fa:a8:b2: d3:5a:ca:4a:d7:cc:95:1c:ed:d5:4f:57:8f:35:b0: cb:f8:32:f4:b7:bc:3d:0c:5f:ab:82:be:97:17:fc: fa:df:3e:b9:cf:f4:3f:ef:53:e9:d3:62:2b:a8:4b: e1:c0:7a:c8:db:3a:d5:20:49:e7:0f:70:bc:c2:e2: a5:8a:14:54:2c:08:db:b0:98:87:67:87:62:5c:79: 49:0e:3f:de:c8:cb:38:ec:b7:e5:24:e3:55:81:61: e0:89:d3:f1:c2:16:a0:bc:8e:1e:8f:f7:c5:65:e4: 7d:fa:1d:c8:6f:3b:5d:a1:76:3a:1e:e8:01:c3:82: 97:a9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 04:96:96:16:21:E6:46:00:20:B8:8F:DA:38:D8:A4:74:84:2C:31:36 X509v3 Authority Key Identifier: keyid:D6:36:52:45:0E:A7:55:91:3C:F3:1A:FC:FA:9A:29:21:A4:8A:E1:A4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917BB1B/D9B9C88C7F3611ECA90BCA3AC4F9AE02/1jZSRQ6nVZE88xr8-popIaSK4aQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1jZSRQ6nVZE88xr8-popIaSK4aQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917BB1B/D9B9C88C7F3611ECA90BCA3AC4F9AE02/1jZSRQ6nVZE88xr8-popIaSK4aQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 9a:38:a1:b2:9e:51:69:80:d1:f8:a3:a6:f6:95:32:66:ad:0a: ce:23:a4:02:b8:b2:92:0d:4d:30:1b:67:d8:f0:0d:09:79:27: 38:3c:c8:f0:ae:d0:29:17:40:49:f4:1e:43:2a:d2:9d:0a:a2: b4:29:d3:4d:8f:eb:11:2c:80:a2:6a:f4:72:31:cc:92:20:f8: 2c:b5:fd:eb:58:59:a5:2a:5a:85:ff:59:05:14:b8:ea:93:c8: 93:03:99:82:8a:c2:09:f0:98:0f:02:f6:79:d7:d2:6c:21:56: ce:f0:c0:40:4d:c8:3b:73:a9:41:12:6d:7e:aa:f5:1d:c5:bd: 4c:02:9f:f6:e8:9f:b5:bd:24:00:cc:1e:a4:e4:9b:fc:16:24: 2b:33:67:e2:cb:66:8f:1c:63:fd:3e:ca:46:2c:67:71:71:c5: 56:f0:69:2a:4c:d0:33:1c:18:31:d1:fa:e1:2f:ce:96:7e:cb: d4:31:4b:21:69:70:80:fe:94:38:7e:ef:b5:07:01:f1:14:56: b2:6c:07:6b:14:96:27:e1:c0:4c:86:6c:31:7b:31:ea:c7:8f: 52:7e:a3:38:43:95:a9:3e:f3:2b:34:ad:28:6e:48:a8:71:9d: 16:76:65:32:f8:5a:90:38:b2:7e:63:e3:39:c4:00:dd:0b:46: 38:28:2a:79 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICA/8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0JCMUIxMTAvBgNVBAUTKEQ2MzY1MjQ1MEVBNzU1OTEzQ0YzMUFGQ0ZBOUEyOTIx QTQ4QUUxQTQwHhcNMjUwNzAzMDA0OTU2WhcNMjUwNzEwMDA0OTU2WjAYMRYwFAYD VQQDEw02ODY1ZDNiNC04MTgxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA38HKPlsWGE1AvFN5cNZlc2lAd+dPdwgAAck7EBRBHDwl4tE1OqTH6urPezok Q2cdmC54OASaGGvhrzeyyiWTxOGTq8oP/cE0ySyiXZ0t+WtccbaVXpFGMYoRFEeQ m4Uf2Q7H2b5NRd8wRbPGe4Vv033y255I+Q+wJDlla56XOhWbb436qLLTWspK18yV HO3VT1ePNbDL+DL0t7w9DF+rgr6XF/z63z65z/Q/71Pp02IrqEvhwHrI2zrVIEnn D3C8wuKlihRULAjbsJiHZ4diXHlJDj/eyMs47LflJONVgWHgidPxwhagvI4ej/fF ZeR9+h3IbztdoXY6HugBw4KXqQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFASWlhYh 5kYAILiP2jjYpHSELDE2MB8GA1UdIwQYMBaAFNY2UkUOp1WRPPMa/PqaKSGkiuGk MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3QkIxQi9EOUI5Qzg4QzdG MzYxMUVDQTkwQkNBM0FDNEY5QUUwMi8xalpTUlE2blZaRTg4eHI4LXBvcElhU0s0 YVEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzFqWlNSUTZuVlpFODh4cjgtcG9wSWFTSzRhUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 QkIxQi9EOUI5Qzg4QzdGMzYxMUVDQTkwQkNBM0FDNEY5QUUwMi8xalpTUlE2blZa RTg4eHI4LXBvcElhU0s0YVEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCaOKGynlFpgNH4o6b2lTJmrQrOI6QCuLKSDU0wG2fY8A0JeSc4PMjw rtApF0BJ9B5DKtKdCqK0KdNNj+sRLICiavRyMcySIPgstf3rWFmlKlqF/1kFFLjq k8iTA5mCisIJ8JgPAvZ519JsIVbO8MBATcg7c6lBEm1+qvUdxb1MAp/26J+1vSQA zB6k5Jv8FiQrM2fiy2aPHGP9PspGLGdxccVW8GkqTNAzHBgx0frhL86WfsvUMUsh aXCA/pQ4fu+1BwHxFFaybAdrFJYn4cBMhmwxezHqx49SfqM4Q5WpPvMrNK0obkio cZ0WdmUy+FqQOLJ+Y+M5xADdC0Y4KCp5 -----END CERTIFICATE-----Generated at Thu Jul 3 16:58:04 2025 by rpki-client