$ rpki-client -vvf rpki.apnic.net/member_repository/A91E7ED9/F8E0B3B2DBA211EAA88F2066C4F9AE02/z2aDdOx1q1ys0upzBRX3t3ZN2SE.mft File: z2aDdOx1q1ys0upzBRX3t3ZN2SE.mft (raw, json) Hash identifier: qGf/i729IUmM23w2xu2iyaZnq3UkpTKZlN6z1V4SUDE= Subject key identifier: 7D:9F:47:C1:6E:21:15:70:E2:15:23:11:BE:00:ED:2E:76:91:BE:21 Authority key identifier: CF:66:83:74:EC:75:AB:5C:AC:D2:EA:73:05:15:F7:B7:76:4D:D9:21 Certificate issuer: /CN=A91E7ED9/serialNumber=CF668374EC75AB5CACD2EA730515F7B7764DD921 Certificate serial: 0823 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/z2aDdOx1q1ys0upzBRX3t3ZN2SE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E7ED9/F8E0B3B2DBA211EAA88F2066C4F9AE02/z2aDdOx1q1ys0upzBRX3t3ZN2SE.mft Manifest number: 081D Signing time: Fri 04 Jul 2025 21:10:08 +0000 Manifest this update: Fri 04 Jul 2025 21:10:08 +0000 Manifest next update: Fri 11 Jul 2025 21:10:08 +0000 Files and hashes: 1: z2aDdOx1q1ys0upzBRX3t3ZN2SE.crl (hash: cyb0Pah2oQIugIoac4lZikhH8ujBm0jtvQqAPWwSaRw=) 2: DE349762DBA311EA8DE35866C4F9AE02.roa (hash: W9BGV+7n/b6h+ZEgu/zCV5dkMkakdYDRjim1ueZv/vs=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E7ED9/F8E0B3B2DBA211EAA88F2066C4F9AE02/z2aDdOx1q1ys0upzBRX3t3ZN2SE.crl rsync://rpki.apnic.net/member_repository/A91E7ED9/F8E0B3B2DBA211EAA88F2066C4F9AE02/z2aDdOx1q1ys0upzBRX3t3ZN2SE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/z2aDdOx1q1ys0upzBRX3t3ZN2SE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 10 Jul 2025 03:15:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2083 (0x823) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E7ED9, serialNumber=CF668374EC75AB5CACD2EA730515F7B7764DD921 Validity Not Before: Jul 4 21:10:08 2025 GMT Not After : Jul 11 21:10:08 2025 GMT Subject: CN=68684330-2aea Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:da:d7:43:51:16:0e:b7:87:80:24:a3:3b:0c:eb: 65:28:28:da:80:4d:31:a0:86:f5:c3:c1:ce:12:5c: 9d:46:38:ca:6f:8a:7d:76:33:ad:42:a0:4a:d2:6e: 87:73:48:8e:25:4f:06:df:b2:7c:53:4f:f0:30:25: 8b:50:5d:27:ce:27:ea:91:8f:cb:34:ae:76:5b:4a: 42:db:f2:7f:fd:b3:e9:0e:db:34:36:ae:ec:1c:2b: 14:ae:19:22:e3:4e:6c:bd:67:62:c2:4d:59:6e:8e: ab:7f:4a:c8:3f:09:30:24:fc:55:ec:06:71:14:47: 94:7f:1d:e7:6a:e8:e0:d0:36:05:50:a0:ad:82:35: 02:62:22:48:22:a2:46:37:61:5d:93:38:d3:da:56: 25:81:dc:ea:b2:75:db:fd:79:1d:9d:81:4c:c6:bd: 90:58:68:fa:99:54:df:3c:89:a9:04:77:1e:d5:1e: 51:6d:7d:c2:a4:44:6a:00:86:8a:64:93:5a:5c:f9: 60:62:7c:f8:ff:9e:fd:ff:33:a1:0a:fb:0c:e6:ef: 8d:6d:7f:be:c2:86:c0:65:7b:3b:4c:ab:0b:74:be: 96:e6:e3:eb:a2:34:03:cb:e5:ba:fd:1d:53:16:0e: 8a:b5:f3:8c:1f:9e:d5:51:e5:5a:b1:e3:00:fa:83: b0:f7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7D:9F:47:C1:6E:21:15:70:E2:15:23:11:BE:00:ED:2E:76:91:BE:21 X509v3 Authority Key Identifier: keyid:CF:66:83:74:EC:75:AB:5C:AC:D2:EA:73:05:15:F7:B7:76:4D:D9:21 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E7ED9/F8E0B3B2DBA211EAA88F2066C4F9AE02/z2aDdOx1q1ys0upzBRX3t3ZN2SE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/z2aDdOx1q1ys0upzBRX3t3ZN2SE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E7ED9/F8E0B3B2DBA211EAA88F2066C4F9AE02/z2aDdOx1q1ys0upzBRX3t3ZN2SE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 36:7c:e1:d1:35:26:f3:0b:8a:e4:ee:b7:fe:77:86:e0:51:e0: 05:24:9c:05:6e:58:b5:61:84:d9:36:ac:0d:c4:60:47:93:9e: 88:94:a9:12:5b:51:06:7a:a5:e9:f4:70:67:47:93:00:05:56: f7:23:66:74:88:c1:45:c7:46:2e:48:29:94:eb:f8:48:47:ae: eb:14:53:6f:57:94:61:2d:71:7a:f4:5d:ac:2a:1d:a0:56:79: e5:cf:4c:1d:2d:b3:41:d2:4c:8d:ac:1c:ee:e1:e9:06:07:70: 10:a7:6f:e7:ef:9d:d2:e9:c1:e5:b1:38:d2:ef:8d:e8:a6:89: fe:41:38:05:88:fd:9a:47:09:7e:8f:ea:90:47:59:8b:5f:05: 3a:99:51:54:8b:5b:f4:c1:90:49:2b:12:47:85:bb:cd:dd:3b: 05:32:25:24:d3:43:16:2c:26:e1:15:0b:c5:3e:63:8e:76:68: d6:79:94:da:b1:a8:a0:4a:5f:57:4f:2f:e8:a6:46:ad:e8:f7: 78:f2:6d:3d:56:f4:22:dc:6f:3d:f9:0a:b0:29:24:36:22:13: 6e:43:d4:82:17:2d:77:3e:61:24:ea:38:0c:66:2f:82:e6:db: b2:b9:c3:16:41:d2:76:f7:23:0b:84:ec:23:8e:d0:b9:ae:e8: 92:38:c6:91 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCCMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTdFRDkxMTAvBgNVBAUTKENGNjY4Mzc0RUM3NUFCNUNBQ0QyRUE3MzA1MTVGN0I3 NzY0REQ5MjEwHhcNMjUwNzA0MjExMDA4WhcNMjUwNzExMjExMDA4WjAYMRYwFAYD VQQDEw02ODY4NDMzMC0yYWVhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA2tdDURYOt4eAJKM7DOtlKCjagE0xoIb1w8HOElydRjjKb4p9djOtQqBK0m6H c0iOJU8G37J8U0/wMCWLUF0nzifqkY/LNK52W0pC2/J//bPpDts0Nq7sHCsUrhki 405svWdiwk1Zbo6rf0rIPwkwJPxV7AZxFEeUfx3naujg0DYFUKCtgjUCYiJIIqJG N2FdkzjT2lYlgdzqsnXb/XkdnYFMxr2QWGj6mVTfPImpBHce1R5RbX3CpERqAIaK ZJNaXPlgYnz4/579/zOhCvsM5u+NbX++wobAZXs7TKsLdL6W5uProjQDy+W6/R1T Fg6KtfOMH57VUeVaseMA+oOw9wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFH2fR8Fu IRVw4hUjEb4A7S52kb4hMB8GA1UdIwQYMBaAFM9mg3TsdatcrNLqcwUV97d2Tdkh MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFN0VEOS9GOEUwQjNCMkRC QTIxMUVBQTg4RjIwNjZDNEY5QUUwMi96MmFEZE94MXExeXMwdXB6QlJYM3QzWk4y U0UuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3oyYURkT3gxcTF5czB1cHpCUlgzdDNaTjJTRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF N0VEOS9GOEUwQjNCMkRCQTIxMUVBQTg4RjIwNjZDNEY5QUUwMi96MmFEZE94MXEx eXMwdXB6QlJYM3QzWk4yU0UubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA2fOHRNSbzC4rk7rf+d4bgUeAFJJwFbli1YYTZNqwNxGBHk56IlKkS W1EGeqXp9HBnR5MABVb3I2Z0iMFFx0YuSCmU6/hIR67rFFNvV5RhLXF69F2sKh2g Vnnlz0wdLbNB0kyNrBzu4ekGB3AQp2/n753S6cHlsTjS743opon+QTgFiP2aRwl+ j+qQR1mLXwU6mVFUi1v0wZBJKxJHhbvN3TsFMiUk00MWLCbhFQvFPmOOdmjWeZTa saigSl9XTy/opkat6Pd48m09VvQi3G89+QqwKSQ2IhNuQ9SCFy13PmEk6jgMZi+C 5tuyucMWQdJ29yMLhOwjjtC5ruiSOMaR -----END CERTIFICATE-----Generated at Sun Jul 6 01:32:29 2025 by rpki-client