$ rpki-client -vvf rpki.apnic.net/member_repository/A913B7B2/40665008416F11EAB5C7CA65C4F9AE02/CZJdtntKud9gBue9K8HY7cjMfhk.mft File: CZJdtntKud9gBue9K8HY7cjMfhk.mft (raw, json) Hash identifier: BGg0r5WtpsGHrN8WWpVEn6dTqJ8dtR72WC4zbfdzjb0= Subject key identifier: F8:39:74:4F:73:B5:83:0C:E9:89:4F:B5:A1:85:AB:2C:8F:21:57:62 Authority key identifier: 09:92:5D:B6:7B:4A:B9:DF:60:06:E7:BD:2B:C1:D8:ED:C8:CC:7E:19 Certificate issuer: /CN=A913B7B2/serialNumber=09925DB67B4AB9DF6006E7BD2BC1D8EDC8CC7E19 Certificate serial: 0B1F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CZJdtntKud9gBue9K8HY7cjMfhk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A913B7B2/40665008416F11EAB5C7CA65C4F9AE02/CZJdtntKud9gBue9K8HY7cjMfhk.mft Manifest number: 0B0E Signing time: Fri 30 May 2025 19:27:55 +0000 Manifest this update: Fri 30 May 2025 19:27:55 +0000 Manifest next update: Fri 06 Jun 2025 19:27:55 +0000 Files and hashes: 1: CZJdtntKud9gBue9K8HY7cjMfhk.crl (hash: tTE2PD6noNTmYHf7NdSKjoxJj/FzclxvzPedV9uawmc=) 2: 6808E6322F1C11EDA3E29B09C4F9AE02.roa (hash: vqIiC5denoz8Yiz6UodWvD7t0BBX+gY3rEG+abpRC2o=) 3: 6932258C2F1C11EDA3E29B09C4F9AE02.roa (hash: lSOlJAUUKdf/oxORuEf9BSblv8TlMMz6ihd34X0wQsM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A913B7B2/40665008416F11EAB5C7CA65C4F9AE02/CZJdtntKud9gBue9K8HY7cjMfhk.crl rsync://rpki.apnic.net/member_repository/A913B7B2/40665008416F11EAB5C7CA65C4F9AE02/CZJdtntKud9gBue9K8HY7cjMfhk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CZJdtntKud9gBue9K8HY7cjMfhk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 06 Jun 2025 19:27:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2847 (0xb1f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A913B7B2, serialNumber=09925DB67B4AB9DF6006E7BD2BC1D8EDC8CC7E19 Validity Not Before: May 30 19:27:55 2025 GMT Not After : Jun 6 19:27:55 2025 GMT Subject: CN=683a06bb-cf20 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a9:1e:7b:84:ad:5b:28:40:73:04:f5:80:f4:79: ce:fc:a4:c7:df:d9:c1:9e:7c:a4:42:14:ba:32:44: 6e:92:27:59:53:c7:a8:26:fc:f6:9f:10:d1:94:a2: b4:a2:7e:c0:d1:77:8e:82:4e:60:e9:27:2d:7e:e8: ad:e6:67:78:0f:5f:c1:61:cf:7e:29:3b:5d:89:3c: 1b:8b:20:e7:79:0b:49:5b:2e:89:bb:4d:d7:7b:8b: 0f:e7:07:ba:a1:4b:9c:54:e3:4c:2c:42:13:92:1e: a2:a7:21:25:73:d5:26:04:85:d1:3c:9e:ca:aa:a5: 2d:fa:2f:95:8c:d4:24:b3:10:86:02:45:82:82:98: ce:18:fe:9c:4b:94:16:cf:5b:da:3f:13:03:89:5e: 51:d1:e6:87:8e:93:e1:cb:8f:77:e0:2c:7f:0a:74: 88:d5:ec:d4:7e:ab:54:70:1c:43:99:44:ab:72:08: db:ac:78:7d:b4:92:eb:4f:da:97:8c:83:ea:cc:39: af:a2:3a:0e:78:18:94:7e:02:5f:bd:11:13:39:dd: d7:c7:80:46:60:35:4d:ed:2d:7e:ff:3b:4f:f0:65: f3:f7:35:e9:84:42:2f:8e:04:8f:68:aa:fe:df:a6: 27:9b:fd:e4:b4:ab:57:90:e4:88:e2:a5:fc:6a:20: d3:81 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F8:39:74:4F:73:B5:83:0C:E9:89:4F:B5:A1:85:AB:2C:8F:21:57:62 X509v3 Authority Key Identifier: keyid:09:92:5D:B6:7B:4A:B9:DF:60:06:E7:BD:2B:C1:D8:ED:C8:CC:7E:19 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A913B7B2/40665008416F11EAB5C7CA65C4F9AE02/CZJdtntKud9gBue9K8HY7cjMfhk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CZJdtntKud9gBue9K8HY7cjMfhk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A913B7B2/40665008416F11EAB5C7CA65C4F9AE02/CZJdtntKud9gBue9K8HY7cjMfhk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 83:fb:75:0a:5a:94:9b:ab:4b:7a:bb:b7:82:9b:0e:2c:f2:5d: cb:5a:94:17:23:d3:c4:b7:d5:62:a8:0f:c5:cd:9f:f8:74:90: e2:ba:cb:79:48:6c:e5:46:45:88:d6:93:2a:e7:5b:80:21:81: 31:68:55:ff:ee:41:66:94:ce:34:76:55:ff:79:c9:27:40:51: 43:d5:55:e0:7b:bb:8c:3f:72:67:f9:19:34:2e:9d:dd:32:ae: 6b:f5:77:35:61:6b:e6:63:53:0f:eb:47:53:55:fe:69:64:7e: d7:28:b4:dc:55:8d:d8:8a:e4:ed:94:7c:32:c6:94:c6:2e:53: 8c:23:a6:62:c8:d1:7f:5c:26:41:a2:ea:a0:cb:c7:5b:16:43: c0:c6:92:f6:3e:d8:8d:0b:d6:4c:0f:8f:e2:c1:e6:ad:cb:7e: af:93:5c:ca:1b:b1:b7:cd:d5:61:c6:d5:28:41:52:2e:f4:d1: a7:8a:ea:9f:3b:36:90:e0:c8:f7:5f:ed:52:3f:37:1d:49:88: cd:05:09:65:02:5a:2c:bc:f9:39:86:96:29:0d:5a:27:9a:0b: b1:44:74:ec:4a:9b:75:d5:87:6a:a7:03:52:14:d0:70:2f:04: b0:d8:66:c6:16:f1:d7:d2:d4:d8:03:3e:d1:ce:10:f2:d8:e9: a2:76:82:5c -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCx8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx M0I3QjIxMTAvBgNVBAUTKDA5OTI1REI2N0I0QUI5REY2MDA2RTdCRDJCQzFEOEVE QzhDQzdFMTkwHhcNMjUwNTMwMTkyNzU1WhcNMjUwNjA2MTkyNzU1WjAYMRYwFAYD VQQDEw02ODNhMDZiYi1jZjIwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqR57hK1bKEBzBPWA9HnO/KTH39nBnnykQhS6MkRukidZU8eoJvz2nxDRlKK0 on7A0XeOgk5g6Sctfuit5md4D1/BYc9+KTtdiTwbiyDneQtJWy6Ju03Xe4sP5we6 oUucVONMLEITkh6ipyElc9UmBIXRPJ7KqqUt+i+VjNQksxCGAkWCgpjOGP6cS5QW z1vaPxMDiV5R0eaHjpPhy4934Cx/CnSI1ezUfqtUcBxDmUSrcgjbrHh9tJLrT9qX jIPqzDmvojoOeBiUfgJfvRETOd3Xx4BGYDVN7S1+/ztP8GXz9zXphEIvjgSPaKr+ 36Ynm/3ktKtXkOSI4qX8aiDTgQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFPg5dE9z tYMM6YlPtaGFqyyPIVdiMB8GA1UdIwQYMBaAFAmSXbZ7SrnfYAbnvSvB2O3IzH4Z MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzQjdCMi80MDY2NTAwODQx NkYxMUVBQjVDN0NBNjVDNEY5QUUwMi9DWkpkdG50S3VkOWdCdWU5SzhIWTdjak1m aGsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0NaSmR0bnRLdWQ5Z0J1ZTlLOEhZN2NqTWZoay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz QjdCMi80MDY2NTAwODQxNkYxMUVBQjVDN0NBNjVDNEY5QUUwMi9DWkpkdG50S3Vk OWdCdWU5SzhIWTdjak1maGsubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCD+3UKWpSbq0t6u7eCmw4s8l3LWpQXI9PEt9ViqA/FzZ/4dJDiust5 SGzlRkWI1pMq51uAIYExaFX/7kFmlM40dlX/ecknQFFD1VXge7uMP3Jn+Rk0Lp3d Mq5r9Xc1YWvmY1MP60dTVf5pZH7XKLTcVY3YiuTtlHwyxpTGLlOMI6ZiyNF/XCZB ouqgy8dbFkPAxpL2PtiNC9ZMD4/iweaty36vk1zKG7G3zdVhxtUoQVIu9NGniuqf OzaQ4Mj3X+1SPzcdSYjNBQllAlosvPk5hpYpDVonmguxRHTsSpt11YdqpwNSFNBw LwSw2GbGFvHX0tTYAz7RzhDy2OmidoJc -----END CERTIFICATE-----Generated at Sat May 31 17:10:22 2025 by rpki-client