$ rpki-client -vvf rpki.apnic.net/member_repository/A916A3EE/5B97A8B8701211EB8907BB1FC4F9AE02/aWryPZMpXC9f3fMqlVE7Ldu_zhs.mft File: aWryPZMpXC9f3fMqlVE7Ldu_zhs.mft (raw, json) Hash identifier: Dk5FszkNGz/yLXHqpDLVeNCPkeuOBIxvGL3oBdfCSk8= Subject key identifier: C2:1C:A4:98:8B:2A:D5:B4:42:AD:9C:75:30:45:64:E1:57:30:6F:21 Authority key identifier: 69:6A:F2:3D:93:29:5C:2F:5F:DD:F3:2A:95:51:3B:2D:DB:BF:CE:1B Certificate issuer: /CN=A916A3EE/serialNumber=696AF23D93295C2F5FDDF32A95513B2DDBBFCE1B Certificate serial: 06AD Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aWryPZMpXC9f3fMqlVE7Ldu_zhs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A916A3EE/5B97A8B8701211EB8907BB1FC4F9AE02/aWryPZMpXC9f3fMqlVE7Ldu_zhs.mft Manifest number: 06A8 Signing time: Fri 18 Jul 2025 22:27:15 +0000 Manifest this update: Fri 18 Jul 2025 22:27:14 +0000 Manifest next update: Fri 25 Jul 2025 22:27:14 +0000 Files and hashes: 1: aWryPZMpXC9f3fMqlVE7Ldu_zhs.crl (hash: b7AgfUZESNacDi4nEKTCFlzRTmwDkUE5Av3LnCrO3Ak=) 2: 76F5B630701311EB9C85DF1FC4F9AE02.roa (hash: qir+UT8zyDGjYz1YRKkq2v/pYcPeSxEZXiWVhwGwNRY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A916A3EE/5B97A8B8701211EB8907BB1FC4F9AE02/aWryPZMpXC9f3fMqlVE7Ldu_zhs.crl rsync://rpki.apnic.net/member_repository/A916A3EE/5B97A8B8701211EB8907BB1FC4F9AE02/aWryPZMpXC9f3fMqlVE7Ldu_zhs.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aWryPZMpXC9f3fMqlVE7Ldu_zhs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 25 Jul 2025 22:27:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1709 (0x6ad) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A916A3EE, serialNumber=696AF23D93295C2F5FDDF32A95513B2DDBBFCE1B Validity Not Before: Jul 18 22:27:14 2025 GMT Not After : Jul 25 22:27:14 2025 GMT Subject: CN=687aca43-3633 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cd:1e:e9:e1:6c:cb:0f:cc:34:0c:83:56:86:ff: 39:d6:85:20:ea:7c:25:17:d8:0a:52:9e:12:fc:ba: 7c:bd:0e:16:64:60:3f:f4:be:fd:6d:19:bb:66:09: d6:07:1e:6f:19:78:b6:25:9c:c7:11:e7:af:2b:1b: 22:8a:29:74:30:e8:bf:84:16:4f:83:e2:3d:a5:63: a7:4f:2e:c6:7d:0e:73:d0:b8:86:13:a8:c7:0d:aa: b3:31:f1:ed:72:75:a3:56:9f:d4:63:c5:03:5c:52: 70:c6:40:de:f6:cd:4f:92:e6:44:82:e8:cf:01:0c: a5:ff:45:45:85:1c:b7:c6:be:54:d6:de:a5:b8:49: f0:2c:35:75:aa:db:a9:93:12:06:86:8f:a6:58:65: ca:8e:d9:a3:6a:10:08:10:01:97:7b:96:16:06:02: ea:0c:f0:d3:ac:48:a0:a7:11:fd:d8:d3:68:e6:97: cb:1b:66:00:a1:5c:c7:fc:91:21:1f:56:d6:05:02: 26:39:f0:48:52:7d:ec:f1:48:91:ba:14:d4:7d:4d: ab:29:80:10:7d:c2:82:96:4e:58:80:1c:6c:07:5c: 80:6c:8c:a7:33:11:42:e8:ff:d9:19:89:a0:5e:13: 87:d9:7a:62:45:9e:15:16:39:9b:b4:b1:e8:95:d5: c0:53 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C2:1C:A4:98:8B:2A:D5:B4:42:AD:9C:75:30:45:64:E1:57:30:6F:21 X509v3 Authority Key Identifier: keyid:69:6A:F2:3D:93:29:5C:2F:5F:DD:F3:2A:95:51:3B:2D:DB:BF:CE:1B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A916A3EE/5B97A8B8701211EB8907BB1FC4F9AE02/aWryPZMpXC9f3fMqlVE7Ldu_zhs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aWryPZMpXC9f3fMqlVE7Ldu_zhs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A916A3EE/5B97A8B8701211EB8907BB1FC4F9AE02/aWryPZMpXC9f3fMqlVE7Ldu_zhs.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption ae:2b:03:f5:f3:b9:3c:a9:14:4f:8e:38:8b:44:87:77:bc:c1: 18:80:df:30:dd:08:e5:23:ce:2d:39:80:60:37:30:c7:32:6a: 60:38:6d:d1:9f:97:5e:a0:79:72:c4:30:f7:3a:e7:5b:cf:48: 49:3c:25:9e:89:33:cb:b2:92:6e:a1:50:77:0f:41:9e:f4:08: b3:76:57:09:d9:4b:0d:09:f8:5a:65:eb:b3:25:41:5c:72:58: 38:e2:d3:c1:0a:f4:ae:ad:3e:71:27:e3:db:5d:3f:73:55:6c: 2b:93:61:a0:a5:5a:33:66:9c:a4:6d:d3:14:c2:f8:af:34:91: da:cb:6b:89:fb:59:f8:57:70:c7:3c:53:58:b0:e5:96:e6:0d: f3:5a:2b:06:6c:fe:f1:72:a6:58:a7:4e:e5:8a:25:19:6d:43: db:c8:85:d5:94:f0:cc:ad:4d:7a:65:44:b5:2f:e9:0d:93:0b: 54:2f:de:32:94:66:88:94:14:8c:38:8d:c9:27:5c:ef:0e:c3: 2b:94:ec:97:93:ef:04:35:6e:60:29:c7:c9:91:3a:e5:b2:d8: e6:20:ec:0b:01:35:59:53:7c:92:96:de:0e:54:a9:fa:b3:0c: 57:06:2e:ea:3c:f0:7e:09:3f:14:17:12:22:21:f8:d2:06:6b: 5c:3e:90:eb -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBq0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NkEzRUUxMTAvBgNVBAUTKDY5NkFGMjNEOTMyOTVDMkY1RkRERjMyQTk1NTEzQjJE REJCRkNFMUIwHhcNMjUwNzE4MjIyNzE0WhcNMjUwNzI1MjIyNzE0WjAYMRYwFAYD VQQDEw02ODdhY2E0My0zNjMzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzR7p4WzLD8w0DINWhv851oUg6nwlF9gKUp4S/Lp8vQ4WZGA/9L79bRm7ZgnW Bx5vGXi2JZzHEeevKxsiiil0MOi/hBZPg+I9pWOnTy7GfQ5z0LiGE6jHDaqzMfHt cnWjVp/UY8UDXFJwxkDe9s1PkuZEgujPAQyl/0VFhRy3xr5U1t6luEnwLDV1qtup kxIGho+mWGXKjtmjahAIEAGXe5YWBgLqDPDTrEigpxH92NNo5pfLG2YAoVzH/JEh H1bWBQImOfBIUn3s8UiRuhTUfU2rKYAQfcKClk5YgBxsB1yAbIynMxFC6P/ZGYmg XhOH2XpiRZ4VFjmbtLHoldXAUwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFMIcpJiL KtW0Qq2cdTBFZOFXMG8hMB8GA1UdIwQYMBaAFGlq8j2TKVwvX93zKpVROy3bv84b MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2QTNFRS81Qjk3QThCODcw MTIxMUVCODkwN0JCMUZDNEY5QUUwMi9hV3J5UFpNcFhDOWYzZk1xbFZFN0xkdV96 aHMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2FXcnlQWk1wWEM5ZjNmTXFsVkU3TGR1X3pocy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 QTNFRS81Qjk3QThCODcwMTIxMUVCODkwN0JCMUZDNEY5QUUwMi9hV3J5UFpNcFhD OWYzZk1xbFZFN0xkdV96aHMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCuKwP187k8qRRPjjiLRId3vMEYgN8w3QjlI84tOYBgNzDHMmpgOG3R n5deoHlyxDD3Oudbz0hJPCWeiTPLspJuoVB3D0Ge9AizdlcJ2UsNCfhaZeuzJUFc clg44tPBCvSurT5xJ+PbXT9zVWwrk2GgpVozZpykbdMUwvivNJHay2uJ+1n4V3DH PFNYsOWW5g3zWisGbP7xcqZYp07liiUZbUPbyIXVlPDMrU16ZUS1L+kNkwtUL94y lGaIlBSMOI3JJ1zvDsMrlOyXk+8ENW5gKcfJkTrlstjmIOwLATVZU3ySlt4OVKn6 swxXBi7qPPB+CT8UFxIiIfjSBmtcPpDr -----END CERTIFICATE-----Generated at Sun Jul 20 11:34:13 2025 by rpki-client