$ rpki-client -vvf rpki.apnic.net/member_repository/A91DEB2E/6FC8BFDE8C2111EDB2B2F30AC4F9AE02/CZyBX8poKm4oYE_pYv0QcVgn6V0.mft File: CZyBX8poKm4oYE_pYv0QcVgn6V0.mft (raw, json) Hash identifier: 7YiHkQCW4vBeiqlFug0MmebGfk4cgrZAYl2rRKWcuvE= Subject key identifier: 89:AC:0B:F6:04:F7:CC:A2:1D:62:6F:E0:23:F9:C1:C5:A8:FF:A1:E5 Authority key identifier: 09:9C:81:5F:CA:68:2A:6E:28:60:4F:E9:62:FD:10:71:58:27:E9:5D Certificate issuer: /CN=A91DEB2E/serialNumber=099C815FCA682A6E28604FE962FD10715827E95D Certificate serial: 01DB Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CZyBX8poKm4oYE_pYv0QcVgn6V0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91DEB2E/6FC8BFDE8C2111EDB2B2F30AC4F9AE02/CZyBX8poKm4oYE_pYv0QcVgn6V0.mft Manifest number: 01D5 Signing time: Thu 03 Jul 2025 02:54:22 +0000 Manifest this update: Thu 03 Jul 2025 02:54:21 +0000 Manifest next update: Thu 10 Jul 2025 02:54:21 +0000 Files and hashes: 1: CZyBX8poKm4oYE_pYv0QcVgn6V0.crl (hash: hjwTZwGNTHQPdujwTssTKMHqZH5TDQV4N+4pOA2e2K0=) 2: 3CB103648C2511EDB64DB410C4F9AE02.roa (hash: MmbQus/ep65NlWLekYokD81GuyXquRa4J0H16aokObA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91DEB2E/6FC8BFDE8C2111EDB2B2F30AC4F9AE02/CZyBX8poKm4oYE_pYv0QcVgn6V0.crl rsync://rpki.apnic.net/member_repository/A91DEB2E/6FC8BFDE8C2111EDB2B2F30AC4F9AE02/CZyBX8poKm4oYE_pYv0QcVgn6V0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CZyBX8poKm4oYE_pYv0QcVgn6V0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 10 Jul 2025 02:54:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 475 (0x1db) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DEB2E, serialNumber=099C815FCA682A6E28604FE962FD10715827E95D Validity Not Before: Jul 3 02:54:21 2025 GMT Not After : Jul 10 02:54:21 2025 GMT Subject: CN=6865f0dd-2f6d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a5:63:f6:3b:64:a7:45:a4:10:0e:3d:1b:71:92: 0d:22:d9:73:1c:e8:19:bf:4f:0f:2a:db:3d:ab:92: de:fb:bb:a7:17:1a:6d:a0:54:2c:6d:4f:82:8b:4a: 1a:bd:d2:f5:b9:41:9a:29:13:62:8e:fd:ab:df:b4: 99:ab:7b:22:e3:b5:0b:2c:0a:0a:f5:5d:11:b0:84: 5b:7d:ca:4c:fa:f2:23:a1:59:bf:44:21:4b:5b:ce: ae:a8:76:08:ed:7d:e0:f1:2f:bc:7c:e6:79:ec:ca: e9:4c:da:d3:1d:87:02:ba:6d:31:9f:5d:18:5a:b7: cf:7b:29:d0:e2:5c:b0:da:aa:17:c1:42:96:1d:7a: 57:39:f3:8a:1f:da:6b:42:8e:85:0c:87:5e:c8:f4: 5e:94:6a:0f:b1:89:e2:af:b3:f9:e9:1f:70:da:83: 9e:92:b7:21:0f:ee:e9:ad:4b:b2:0e:b3:b5:c5:95: 45:ea:43:e0:9a:96:95:22:3c:67:a7:e9:87:39:32: 80:5e:de:4f:20:d4:01:bd:e9:92:d5:04:ed:26:b5: 06:ec:ea:53:89:69:b7:75:dd:9f:4f:ae:e5:b0:37: 72:4e:4e:95:96:35:74:9c:6d:d7:66:13:35:cb:e1: 20:6b:5a:98:b7:6a:75:31:cb:94:dd:22:7b:df:bf: 87:e5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 89:AC:0B:F6:04:F7:CC:A2:1D:62:6F:E0:23:F9:C1:C5:A8:FF:A1:E5 X509v3 Authority Key Identifier: keyid:09:9C:81:5F:CA:68:2A:6E:28:60:4F:E9:62:FD:10:71:58:27:E9:5D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91DEB2E/6FC8BFDE8C2111EDB2B2F30AC4F9AE02/CZyBX8poKm4oYE_pYv0QcVgn6V0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CZyBX8poKm4oYE_pYv0QcVgn6V0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DEB2E/6FC8BFDE8C2111EDB2B2F30AC4F9AE02/CZyBX8poKm4oYE_pYv0QcVgn6V0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption b8:0d:19:ae:71:28:b7:94:50:9e:59:56:a8:9c:a3:90:6e:f7: 2e:15:47:bf:f2:67:0e:c9:1d:c2:cb:64:7e:78:c3:04:be:d1: 2a:31:e1:94:02:63:53:64:44:de:51:e1:cf:00:7d:03:c9:a8: 53:66:6b:62:a5:d2:9c:ae:73:86:38:24:68:f7:91:55:3e:12: b2:70:61:63:04:ef:2b:cd:bd:02:9b:dd:54:d4:55:9e:00:6e: bc:14:e3:97:76:ec:24:ac:34:80:a7:b1:8a:52:30:9b:36:59: e9:c2:ae:84:0f:11:e4:6d:2c:37:c6:85:ad:61:16:db:2d:fa: 40:e8:d2:60:65:c8:11:98:cc:57:10:30:74:92:4a:1e:d7:e0: dc:a1:2d:51:58:71:30:9d:99:77:d7:d2:0d:fd:a9:f7:a2:e0: f7:86:b5:ad:94:00:38:82:fd:65:a8:b3:21:97:65:99:87:c6: b8:22:1d:8d:65:56:04:50:f8:37:9f:a4:b5:cd:f8:ea:9a:fd: 45:3f:a7:d1:32:73:97:92:8d:db:2a:29:50:6a:27:99:2c:13: 69:58:a5:be:c5:54:7b:49:0d:28:c6:5e:72:82:01:4b:ed:6f: 71:9c:1c:53:3d:4c:44:a2:e5:c7:cd:ce:db:bb:56:a1:e1:db: c1:4a:f4:8f -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAdswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx REVCMkUxMTAvBgNVBAUTKDA5OUM4MTVGQ0E2ODJBNkUyODYwNEZFOTYyRkQxMDcx NTgyN0U5NUQwHhcNMjUwNzAzMDI1NDIxWhcNMjUwNzEwMDI1NDIxWjAYMRYwFAYD VQQDEw02ODY1ZjBkZC0yZjZkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEApWP2O2SnRaQQDj0bcZINItlzHOgZv08PKts9q5Le+7unFxptoFQsbU+Ci0oa vdL1uUGaKRNijv2r37SZq3si47ULLAoK9V0RsIRbfcpM+vIjoVm/RCFLW86uqHYI 7X3g8S+8fOZ57MrpTNrTHYcCum0xn10YWrfPeynQ4lyw2qoXwUKWHXpXOfOKH9pr Qo6FDIdeyPRelGoPsYnir7P56R9w2oOekrchD+7prUuyDrO1xZVF6kPgmpaVIjxn p+mHOTKAXt5PINQBvemS1QTtJrUG7OpTiWm3dd2fT67lsDdyTk6VljV0nG3XZhM1 y+Ega1qYt2p1McuU3SJ737+H5QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFImsC/YE 98yiHWJv4CP5wcWo/6HlMB8GA1UdIwQYMBaAFAmcgV/KaCpuKGBP6WL9EHFYJ+ld MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFERUIyRS82RkM4QkZERThD MjExMUVEQjJCMkYzMEFDNEY5QUUwMi9DWnlCWDhwb0ttNG9ZRV9wWXYwUWNWZ242 VjAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0NaeUJYOHBvS200b1lFX3BZdjBRY1ZnbjZWMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE RUIyRS82RkM4QkZERThDMjExMUVEQjJCMkYzMEFDNEY5QUUwMi9DWnlCWDhwb0tt NG9ZRV9wWXYwUWNWZ242VjAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQC4DRmucSi3lFCeWVaonKOQbvcuFUe/8mcOyR3Cy2R+eMMEvtEqMeGU AmNTZETeUeHPAH0DyahTZmtipdKcrnOGOCRo95FVPhKycGFjBO8rzb0Cm91U1FWe AG68FOOXduwkrDSAp7GKUjCbNlnpwq6EDxHkbSw3xoWtYRbbLfpA6NJgZcgRmMxX EDB0kkoe1+DcoS1RWHEwnZl319IN/an3ouD3hrWtlAA4gv1lqLMhl2WZh8a4Ih2N ZVYEUPg3n6S1zfjqmv1FP6fRMnOXko3bKilQaieZLBNpWKW+xVR7SQ0oxl5yggFL 7W9xnBxTPUxEouXHzc7bu1ah4dvBSvSP -----END CERTIFICATE-----Generated at Thu Jul 3 07:04:28 2025 by rpki-client