$ rpki-client -vvf rpki.apnic.net/member_repository/A91C8EDF/F46ADDE67C5711EDBF213767C4F9AE02/Cjz8fzlaNLq-MbjKRiPTHHao2fo.mft File: Cjz8fzlaNLq-MbjKRiPTHHao2fo.mft (raw, json) Hash identifier: QGA7D0TVpjM/7WwDa+JRqy1Uhv5gP/3xndlGT41Gm4k= Subject key identifier: 1D:03:E1:1A:C6:88:01:F7:DF:7B:F4:5C:98:75:DB:0F:7D:EC:52:73 Authority key identifier: 0A:3C:FC:7F:39:5A:34:BA:BE:31:B8:CA:46:23:D3:1C:76:A8:D9:FA Certificate issuer: /CN=A91C8EDF/serialNumber=0A3CFC7F395A34BABE31B8CA4623D31C76A8D9FA Certificate serial: 01E9 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Cjz8fzlaNLq-MbjKRiPTHHao2fo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C8EDF/F46ADDE67C5711EDBF213767C4F9AE02/Cjz8fzlaNLq-MbjKRiPTHHao2fo.mft Manifest number: 01E5 Signing time: Sun 29 Jun 2025 01:55:10 +0000 Manifest this update: Sun 29 Jun 2025 01:55:09 +0000 Manifest next update: Sun 06 Jul 2025 01:55:09 +0000 Files and hashes: 1: Cjz8fzlaNLq-MbjKRiPTHHao2fo.crl (hash: EjwnATtR9Z7dgAc4xZHcDSXCpLvwHwdhluist0WGPbE=) 2: 6ABFAA607C5A11EDB5D8DA67C4F9AE02.roa (hash: UPzNqHZtzAjVZqphmOfv2Hp1UJdFW2/M83hc9R8RBqA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C8EDF/F46ADDE67C5711EDBF213767C4F9AE02/Cjz8fzlaNLq-MbjKRiPTHHao2fo.crl rsync://rpki.apnic.net/member_repository/A91C8EDF/F46ADDE67C5711EDBF213767C4F9AE02/Cjz8fzlaNLq-MbjKRiPTHHao2fo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Cjz8fzlaNLq-MbjKRiPTHHao2fo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 06 Jul 2025 01:55:09 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 489 (0x1e9) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C8EDF, serialNumber=0A3CFC7F395A34BABE31B8CA4623D31C76A8D9FA Validity Not Before: Jun 29 01:55:09 2025 GMT Not After : Jul 6 01:55:09 2025 GMT Subject: CN=68609cfd-061f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:44:e6:8d:00:4d:5b:91:65:8e:5a:ce:29:7c: 91:65:18:3a:ce:2e:df:e5:56:ad:c0:84:88:ee:d4: 25:e0:c5:56:51:11:2c:af:bf:30:f4:ae:72:32:f0: 36:15:cf:c9:fc:f4:d1:34:6a:4d:bb:8e:9f:4e:d2: 7b:de:35:9e:5c:7a:f7:6a:02:8a:9e:a4:e2:de:26: f4:77:f4:b1:b7:4d:5d:1d:e8:a7:77:f5:93:18:6a: b7:cf:d4:5d:85:49:fc:28:1b:db:f7:5f:cc:54:0a: 9e:41:e4:65:1a:1c:5b:5e:36:c3:06:03:6b:60:2c: 4f:78:d1:bf:85:10:be:58:d1:b2:ef:02:0c:8c:24: 15:40:2a:ec:b2:e4:e2:84:87:bd:d0:88:40:99:f2: 20:4f:6d:2a:45:f8:bc:c7:65:78:3c:85:09:53:24: 26:6a:8c:0b:99:c1:c0:ef:bd:95:5e:10:ce:0e:e2: ac:d6:9a:64:5a:c2:2b:68:91:a8:ba:68:cf:1a:95: 30:09:f7:d2:ec:7b:68:d0:57:10:7b:bf:ab:60:da: b3:0a:b5:d7:09:79:86:08:2f:44:4e:d6:75:e0:3b: 1f:8f:64:2a:8e:13:ac:62:9e:12:f7:ca:06:59:66: 7f:82:b1:4c:b8:a1:70:1d:f7:b5:fd:30:fc:e9:fd: ba:5b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1D:03:E1:1A:C6:88:01:F7:DF:7B:F4:5C:98:75:DB:0F:7D:EC:52:73 X509v3 Authority Key Identifier: keyid:0A:3C:FC:7F:39:5A:34:BA:BE:31:B8:CA:46:23:D3:1C:76:A8:D9:FA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C8EDF/F46ADDE67C5711EDBF213767C4F9AE02/Cjz8fzlaNLq-MbjKRiPTHHao2fo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Cjz8fzlaNLq-MbjKRiPTHHao2fo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C8EDF/F46ADDE67C5711EDBF213767C4F9AE02/Cjz8fzlaNLq-MbjKRiPTHHao2fo.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 9a:8d:0a:f3:89:f8:47:34:15:6b:04:c6:93:8c:c2:88:90:09: b2:42:18:ef:2c:65:f8:c4:ac:b3:9c:3d:42:c3:24:f8:d1:c2: 11:36:42:ac:f2:16:cd:97:6e:e9:34:e3:2a:c6:b4:78:d7:a7: 66:68:86:16:b7:55:38:a4:e0:21:43:f7:fe:14:79:ee:cf:f5: de:de:32:60:b8:69:0b:72:4e:71:04:a4:08:80:38:71:0d:bc: 88:59:3d:ee:8d:3a:03:ee:d4:40:6b:e3:4d:e3:9c:0f:20:ab: cf:86:4c:e9:97:9b:55:dd:74:e3:a4:02:91:c0:3e:8d:45:f0: 07:72:38:00:01:94:60:63:81:7d:2a:5a:92:6c:67:81:de:59: 08:52:59:9a:9a:81:97:0a:14:d1:75:94:30:45:3e:d7:ab:a6: f5:ac:bc:03:12:b7:bb:96:9b:af:f1:f3:a5:0c:d9:a7:a5:5a: ae:76:de:1b:10:84:61:41:4f:81:93:8a:79:f1:7a:9c:c5:e5: 45:a9:a0:10:88:41:78:98:1c:4d:2e:36:5d:0b:f7:93:e0:1f: 39:f6:af:f1:3a:2d:16:13:a3:9d:be:e4:1f:04:ad:cb:95:bf: c4:7e:18:1f:3f:d3:bb:d4:58:84:78:c7:8a:d7:57:07:b0:13: b1:6c:97:e5 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAekwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzhFREYxMTAvBgNVBAUTKDBBM0NGQzdGMzk1QTM0QkFCRTMxQjhDQTQ2MjNEMzFD NzZBOEQ5RkEwHhcNMjUwNjI5MDE1NTA5WhcNMjUwNzA2MDE1NTA5WjAYMRYwFAYD VQQDEw02ODYwOWNmZC0wNjFmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAv0TmjQBNW5FljlrOKXyRZRg6zi7f5VatwISI7tQl4MVWUREsr78w9K5yMvA2 Fc/J/PTRNGpNu46fTtJ73jWeXHr3agKKnqTi3ib0d/Sxt01dHeind/WTGGq3z9Rd hUn8KBvb91/MVAqeQeRlGhxbXjbDBgNrYCxPeNG/hRC+WNGy7wIMjCQVQCrssuTi hIe90IhAmfIgT20qRfi8x2V4PIUJUyQmaowLmcHA772VXhDODuKs1ppkWsIraJGo umjPGpUwCffS7Hto0FcQe7+rYNqzCrXXCXmGCC9ETtZ14Dsfj2QqjhOsYp4S98oG WWZ/grFMuKFwHfe1/TD86f26WwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFB0D4RrG iAH333v0XJh12w997FJzMB8GA1UdIwQYMBaAFAo8/H85WjS6vjG4ykYj0xx2qNn6 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDOEVERi9GNDZBRERFNjdD NTcxMUVEQkYyMTM3NjdDNEY5QUUwMi9Dano4ZnpsYU5McS1NYmpLUmlQVEhIYW8y Zm8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0NqejhmemxhTkxxLU1iaktSaVBUSEhhbzJmby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD OEVERi9GNDZBRERFNjdDNTcxMUVEQkYyMTM3NjdDNEY5QUUwMi9Dano4ZnpsYU5M cS1NYmpLUmlQVEhIYW8yZm8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCajQrzifhHNBVrBMaTjMKIkAmyQhjvLGX4xKyznD1CwyT40cIRNkKs 8hbNl27pNOMqxrR416dmaIYWt1U4pOAhQ/f+FHnuz/Xe3jJguGkLck5xBKQIgDhx DbyIWT3ujToD7tRAa+NN45wPIKvPhkzpl5tV3XTjpAKRwD6NRfAHcjgAAZRgY4F9 KlqSbGeB3lkIUlmamoGXChTRdZQwRT7Xq6b1rLwDEre7lpuv8fOlDNmnpVqudt4b EIRhQU+Bk4p58XqcxeVFqaAQiEF4mBxNLjZdC/eT4B859q/xOi0WE6OdvuQfBK3L lb/EfhgfP9O71FiEeMeK11cHsBOxbJfl -----END CERTIFICATE-----Generated at Sun Jun 29 17:45:31 2025 by rpki-client