$ rpki-client -vvf rpki.apnic.net/member_repository/A917C81C/D19AEE3EFF1011EB9BD13D6CC4F9AE02/PzsvWzuuUqa1aSyvkqJVSwbahj0.mft File: PzsvWzuuUqa1aSyvkqJVSwbahj0.mft (raw, json) Hash identifier: t1i3Z2h77WySPihfaae8T3gU1aWzNqnsdZA3y/sfj+A= Subject key identifier: DE:41:C1:31:ED:BA:19:BF:06:39:5A:60:9B:EC:8A:C4:69:F8:08:61 Authority key identifier: 3F:3B:2F:5B:3B:AE:52:A6:B5:69:2C:AF:92:A2:55:4B:06:DA:86:3D Certificate issuer: /CN=A917C81C/serialNumber=3F3B2F5B3BAE52A6B5692CAF92A2554B06DA863D Certificate serial: 0538 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PzsvWzuuUqa1aSyvkqJVSwbahj0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917C81C/D19AEE3EFF1011EB9BD13D6CC4F9AE02/PzsvWzuuUqa1aSyvkqJVSwbahj0.mft Manifest number: 0533 Signing time: Mon 30 Jun 2025 23:55:15 +0000 Manifest this update: Mon 30 Jun 2025 23:55:14 +0000 Manifest next update: Mon 07 Jul 2025 23:55:14 +0000 Files and hashes: 1: PzsvWzuuUqa1aSyvkqJVSwbahj0.crl (hash: BU5mgDYA7IXdppY3xrp6ku46vef9ZiohvJ6EDddFcOM=) 2: 1953EB90FF1B11EBA5CEF970C4F9AE02.roa (hash: GyNWMA5uS2CM++CZD9BiRxHkePo3mscOl1IpeulPgT0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917C81C/D19AEE3EFF1011EB9BD13D6CC4F9AE02/PzsvWzuuUqa1aSyvkqJVSwbahj0.crl rsync://rpki.apnic.net/member_repository/A917C81C/D19AEE3EFF1011EB9BD13D6CC4F9AE02/PzsvWzuuUqa1aSyvkqJVSwbahj0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PzsvWzuuUqa1aSyvkqJVSwbahj0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 07 Jul 2025 23:55:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1336 (0x538) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917C81C, serialNumber=3F3B2F5B3BAE52A6B5692CAF92A2554B06DA863D Validity Not Before: Jun 30 23:55:14 2025 GMT Not After : Jul 7 23:55:14 2025 GMT Subject: CN=686323e3-b493 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ac:3d:49:9e:5e:7d:cd:59:d7:ca:df:f1:16:e9: 9b:a6:63:12:49:04:1c:4f:6f:d9:dd:de:e6:39:bb: 76:c7:9e:c4:b2:e6:a2:76:8d:7f:c2:b4:56:14:db: 60:cc:06:0d:61:f3:63:50:96:2c:07:69:32:95:64: 67:39:20:a0:88:24:fa:a4:00:9b:1a:eb:71:9c:02: fa:eb:ad:8a:75:73:21:6b:8f:91:cf:f6:03:61:0f: af:db:31:16:80:87:8f:07:7e:c3:84:c0:89:2c:e7: 13:7f:f1:62:a0:72:c8:b3:c5:7c:05:b1:b7:03:97: 5a:40:ea:6c:37:0f:76:2a:78:ff:27:e5:c7:83:53: 56:3d:d3:85:e9:9a:e2:35:5a:8f:e9:5f:19:5f:90: 5a:94:5f:70:5e:bc:25:97:fd:81:5e:4c:31:93:47: a4:f8:e3:9e:59:5b:92:87:b8:71:b2:a0:fc:9a:c3: 5f:f3:f8:f6:a7:71:8c:cf:db:7b:bf:3a:12:64:02: 0f:c8:a6:2e:fd:5c:a0:15:9d:ce:dc:33:7f:48:9d: 09:52:80:8a:ae:08:66:5b:9e:63:98:b8:a5:47:3a: f9:8c:d7:76:78:41:96:46:c1:b6:f3:f4:a9:82:98: 21:f0:b2:ab:f6:16:86:a4:41:9e:53:3d:cb:67:02: 70:31 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DE:41:C1:31:ED:BA:19:BF:06:39:5A:60:9B:EC:8A:C4:69:F8:08:61 X509v3 Authority Key Identifier: keyid:3F:3B:2F:5B:3B:AE:52:A6:B5:69:2C:AF:92:A2:55:4B:06:DA:86:3D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917C81C/D19AEE3EFF1011EB9BD13D6CC4F9AE02/PzsvWzuuUqa1aSyvkqJVSwbahj0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PzsvWzuuUqa1aSyvkqJVSwbahj0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917C81C/D19AEE3EFF1011EB9BD13D6CC4F9AE02/PzsvWzuuUqa1aSyvkqJVSwbahj0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 52:fb:0b:46:df:bb:32:d1:2f:1b:00:9b:cd:0c:3b:ae:c2:68: b5:32:9f:c3:36:26:81:1e:23:06:fb:da:82:5b:cc:67:76:fc: 2f:7d:b2:a9:01:42:46:0e:0b:96:89:4c:d2:be:55:7d:26:2b: 74:f5:7f:e6:8d:81:56:38:01:71:ee:d8:eb:a3:60:ae:6a:a3: 3e:d5:2d:5e:96:dc:59:c2:02:13:3b:12:1b:f6:47:4d:e2:80: 8a:31:71:6c:e7:6c:06:4d:80:84:b9:a7:71:82:92:de:99:c4: 32:96:51:39:c2:3d:a1:d6:81:1c:e7:23:86:55:dd:60:70:f6: 1c:65:e0:e5:8d:9c:55:82:0e:94:b2:2f:7e:b5:1e:2b:95:8b: 62:9f:9b:a1:82:fe:91:e9:c0:dc:5d:b8:f2:fc:08:bb:56:ee: fc:da:67:0d:5d:ee:e9:98:91:80:e2:99:ef:03:94:a7:3d:3d: 22:4f:04:e1:d3:d6:91:d1:6d:cf:db:36:cf:24:e5:6a:75:bd: e3:34:39:a9:51:3e:ae:69:6c:d7:d6:7d:7a:d1:9a:1e:24:57: 02:b4:ea:37:00:77:5f:fe:ef:f7:a1:84:35:9f:4a:cc:bd:79: a2:95:35:f1:0b:cf:5a:09:2d:1f:41:4b:62:53:0d:78:d9:6a: 96:e8:58:94 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBTgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0M4MUMxMTAvBgNVBAUTKDNGM0IyRjVCM0JBRTUyQTZCNTY5MkNBRjkyQTI1NTRC MDZEQTg2M0QwHhcNMjUwNjMwMjM1NTE0WhcNMjUwNzA3MjM1NTE0WjAYMRYwFAYD VQQDEw02ODYzMjNlMy1iNDkzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArD1Jnl59zVnXyt/xFumbpmMSSQQcT2/Z3d7mObt2x57Esuaido1/wrRWFNtg zAYNYfNjUJYsB2kylWRnOSCgiCT6pACbGutxnAL6662KdXMha4+Rz/YDYQ+v2zEW gIePB37DhMCJLOcTf/FioHLIs8V8BbG3A5daQOpsNw92Knj/J+XHg1NWPdOF6Zri NVqP6V8ZX5BalF9wXrwll/2BXkwxk0ek+OOeWVuSh7hxsqD8msNf8/j2p3GMz9t7 vzoSZAIPyKYu/VygFZ3O3DN/SJ0JUoCKrghmW55jmLilRzr5jNd2eEGWRsG28/Sp gpgh8LKr9haGpEGeUz3LZwJwMQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFN5BwTHt uhm/BjlaYJvsisRp+AhhMB8GA1UdIwQYMBaAFD87L1s7rlKmtWksr5KiVUsG2oY9 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3QzgxQy9EMTlBRUUzRUZG MTAxMUVCOUJEMTNENkNDNEY5QUUwMi9QenN2V3p1dVVxYTFhU3l2a3FKVlN3YmFo ajAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1B6c3ZXenV1VXFhMWFTeXZrcUpWU3diYWhqMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 QzgxQy9EMTlBRUUzRUZGMTAxMUVCOUJEMTNENkNDNEY5QUUwMi9QenN2V3p1dVVx YTFhU3l2a3FKVlN3YmFoajAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBS+wtG37sy0S8bAJvNDDuuwmi1Mp/DNiaBHiMG+9qCW8xndvwvfbKp AUJGDguWiUzSvlV9Jit09X/mjYFWOAFx7tjro2CuaqM+1S1eltxZwgITOxIb9kdN 4oCKMXFs52wGTYCEuadxgpLemcQyllE5wj2h1oEc5yOGVd1gcPYcZeDljZxVgg6U si9+tR4rlYtin5uhgv6R6cDcXbjy/Ai7Vu782mcNXe7pmJGA4pnvA5SnPT0iTwTh 09aR0W3P2zbPJOVqdb3jNDmpUT6uaWzX1n160ZoeJFcCtOo3AHdf/u/3oYQ1n0rM vXmilTXxC89aCS0fQUtiUw142WqW6FiU -----END CERTIFICATE-----Generated at Tue Jul 1 15:02:05 2025 by rpki-client