$ rpki-client -vvf rpki.apnic.net/member_repository/A9197A8F/63ACD5F459DB11EEA737FE0AC4F9AE02/bZYGiLbecUGnIYmOngc-FneP7zU.mft File: bZYGiLbecUGnIYmOngc-FneP7zU.mft (raw, json) Hash identifier: xNRORkHmB/7sIdGn/sz8kQSu4dpHFAXY3mCM1PUS3S0= Subject key identifier: 54:3B:76:12:27:36:E0:1B:A5:3F:38:D1:DD:67:59:6A:FA:9D:9C:74 Authority key identifier: 6D:96:06:88:B6:DE:71:41:A7:21:89:8E:9E:07:3E:16:77:8F:EF:35 Certificate issuer: /CN=A9197A8F/serialNumber=6D960688B6DE7141A721898E9E073E16778FEF35 Certificate serial: 0152 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bZYGiLbecUGnIYmOngc-FneP7zU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9197A8F/63ACD5F459DB11EEA737FE0AC4F9AE02/bZYGiLbecUGnIYmOngc-FneP7zU.mft Manifest number: 014E Signing time: Sun 29 Jun 2025 03:20:16 +0000 Manifest this update: Sun 29 Jun 2025 03:20:16 +0000 Manifest next update: Sun 06 Jul 2025 03:20:16 +0000 Files and hashes: 1: bZYGiLbecUGnIYmOngc-FneP7zU.crl (hash: h4GbgMKFr72hKpTdGDKu5TMe79oXa7ttKLnhib0CNGQ=) 2: A663285A59DE11EE85CFCB12C4F9AE02.roa (hash: X/pG7qc3+7qr+qWCl38L4oCPzOU3+0jR+niOHWQizTQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9197A8F/63ACD5F459DB11EEA737FE0AC4F9AE02/bZYGiLbecUGnIYmOngc-FneP7zU.crl rsync://rpki.apnic.net/member_repository/A9197A8F/63ACD5F459DB11EEA737FE0AC4F9AE02/bZYGiLbecUGnIYmOngc-FneP7zU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bZYGiLbecUGnIYmOngc-FneP7zU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 06 Jul 2025 03:20:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 338 (0x152) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9197A8F, serialNumber=6D960688B6DE7141A721898E9E073E16778FEF35 Validity Not Before: Jun 29 03:20:16 2025 GMT Not After : Jul 6 03:20:16 2025 GMT Subject: CN=6860b0f0-3613 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:17:1b:98:73:dc:97:a6:a4:a7:49:a3:31:e3: a5:1f:33:03:8d:6b:09:81:3b:d5:b2:f8:87:86:4a: 35:ea:12:98:8f:5f:4e:27:3a:63:e1:97:bf:5d:13: 81:3d:a0:e4:15:a1:85:40:a3:66:9e:3f:bd:02:cc: 81:55:f9:b4:55:d6:1d:f0:6d:46:db:08:5e:d2:75: f2:d6:ed:23:6e:c6:5e:81:a4:74:b1:62:7c:4f:54: 25:c7:bb:14:3a:ed:68:b4:ce:88:10:e2:18:21:d5: 3c:20:32:2e:89:64:73:36:d0:22:d1:6e:73:94:b3: 4f:9d:ba:1f:51:1d:1d:aa:a4:9a:81:de:32:88:10: 46:a1:80:4c:e5:8c:78:7c:bd:ba:37:c3:07:a7:b1: fa:c6:47:11:03:4c:b6:f7:71:9b:ed:79:8a:96:93: 45:d9:cb:e4:a9:c6:6b:f3:a8:53:0f:55:dd:9d:0b: f2:1b:98:0d:f4:ea:f2:9c:1d:70:23:30:d7:91:0a: 07:22:ef:6c:95:cc:bb:c3:9a:c3:35:15:31:46:20: ba:02:c9:eb:8a:2c:30:bb:74:5a:d5:40:0f:2f:64: b5:14:ac:e8:9f:26:d9:10:43:cb:26:59:81:3b:8e: 6a:48:c3:c5:6e:f3:86:29:35:69:b0:94:ba:5e:0b: 69:73 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 54:3B:76:12:27:36:E0:1B:A5:3F:38:D1:DD:67:59:6A:FA:9D:9C:74 X509v3 Authority Key Identifier: keyid:6D:96:06:88:B6:DE:71:41:A7:21:89:8E:9E:07:3E:16:77:8F:EF:35 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9197A8F/63ACD5F459DB11EEA737FE0AC4F9AE02/bZYGiLbecUGnIYmOngc-FneP7zU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bZYGiLbecUGnIYmOngc-FneP7zU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9197A8F/63ACD5F459DB11EEA737FE0AC4F9AE02/bZYGiLbecUGnIYmOngc-FneP7zU.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption b2:92:2d:d3:46:38:23:4e:8f:0b:58:a3:db:43:9e:84:fa:f2: ed:a1:0a:f4:56:e6:f0:da:93:94:f2:5c:a7:cc:01:4a:e6:46: c9:d2:64:02:2a:4f:91:7b:7e:96:e7:c4:a3:d8:de:05:65:94: 9b:1d:aa:1f:75:a2:ef:55:21:1f:58:f2:13:4c:a6:a5:9a:5c: b8:66:a3:f1:fb:4f:2c:31:7f:13:8b:75:2c:93:ae:3b:4d:5c: d8:93:ee:4b:43:7e:65:4e:4a:53:f9:5e:33:9a:60:25:97:af: c1:80:45:89:d7:d9:98:42:14:6c:b8:6c:8e:7c:da:93:9a:32: fa:3f:97:6e:7c:fd:08:19:fa:d5:d8:67:c5:b5:e0:b5:1d:93: 3f:aa:8f:f6:66:2e:16:e8:53:78:e3:28:ed:2b:f1:6d:9d:b4: 65:be:d4:f2:95:e2:97:23:ee:ee:9a:df:4e:a2:9b:3a:ee:aa: a7:1d:f9:4f:da:9e:ab:5a:2f:d9:5e:cc:c4:e0:5c:18:10:49: 0f:6f:b1:c3:f6:fb:eb:11:e7:67:6f:5e:9b:93:9e:47:49:d4: a5:b9:1f:57:d9:28:da:ca:02:eb:71:b3:f2:bd:5c:b4:00:ef: 05:eb:9b:07:df:41:75:30:f5:af:df:6a:21:09:fb:8e:72:28: df:b3:89:aa -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAVIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTdBOEYxMTAvBgNVBAUTKDZEOTYwNjg4QjZERTcxNDFBNzIxODk4RTlFMDczRTE2 Nzc4RkVGMzUwHhcNMjUwNjI5MDMyMDE2WhcNMjUwNzA2MDMyMDE2WjAYMRYwFAYD VQQDEw02ODYwYjBmMC0zNjEzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtRcbmHPcl6akp0mjMeOlHzMDjWsJgTvVsviHhko16hKYj19OJzpj4Ze/XROB PaDkFaGFQKNmnj+9AsyBVfm0VdYd8G1G2whe0nXy1u0jbsZegaR0sWJ8T1Qlx7sU Ou1otM6IEOIYIdU8IDIuiWRzNtAi0W5zlLNPnbofUR0dqqSagd4yiBBGoYBM5Yx4 fL26N8MHp7H6xkcRA0y293Gb7XmKlpNF2cvkqcZr86hTD1XdnQvyG5gN9OrynB1w IzDXkQoHIu9slcy7w5rDNRUxRiC6Asnriiwwu3Ra1UAPL2S1FKzonybZEEPLJlmB O45qSMPFbvOGKTVpsJS6XgtpcwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFFQ7dhIn NuAbpT840d1nWWr6nZx0MB8GA1UdIwQYMBaAFG2WBoi23nFBpyGJjp4HPhZ3j+81 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5N0E4Ri82M0FDRDVGNDU5 REIxMUVFQTczN0ZFMEFDNEY5QUUwMi9iWllHaUxiZWNVR25JWW1PbmdjLUZuZVA3 elUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2JaWUdpTGJlY1VHbklZbU9uZ2MtRm5lUDd6VS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 N0E4Ri82M0FDRDVGNDU5REIxMUVFQTczN0ZFMEFDNEY5QUUwMi9iWllHaUxiZWNV R25JWW1PbmdjLUZuZVA3elUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCyki3TRjgjTo8LWKPbQ56E+vLtoQr0Vubw2pOU8lynzAFK5kbJ0mQC Kk+Re36W58Sj2N4FZZSbHaofdaLvVSEfWPITTKalmly4ZqPx+08sMX8Ti3Usk647 TVzYk+5LQ35lTkpT+V4zmmAll6/BgEWJ19mYQhRsuGyOfNqTmjL6P5dufP0IGfrV 2GfFteC1HZM/qo/2Zi4W6FN44yjtK/FtnbRlvtTyleKXI+7umt9Oops67qqnHflP 2p6rWi/ZXszE4FwYEEkPb7HD9vvrEednb16bk55HSdSluR9X2SjaygLrcbPyvVy0 AO8F65sH30F1MPWv32ohCfuOcijfs4mq -----END CERTIFICATE-----Generated at Sun Jun 29 19:59:52 2025 by rpki-client