$ rpki-client -vvf rpki.apnic.net/member_repository/A91899BB/88C2F15E885811EB96CE6817C4F9AE02/ZfYWHHNtGpxBkf38x6T4JM4RIy0.mft File: ZfYWHHNtGpxBkf38x6T4JM4RIy0.mft (raw, json) Hash identifier: G06XYGwbpEE8Xbt0/5IvoxtrFNnY50SHWmIqJyw6vvA= Subject key identifier: FA:F4:0D:AE:23:F5:80:9F:1F:44:D3:36:4F:48:7E:5B:17:F5:F6:22 Authority key identifier: 65:F6:16:1C:73:6D:1A:9C:41:91:FD:FC:C7:A4:F8:24:CE:11:23:2D Certificate issuer: /CN=A91899BB/serialNumber=65F6161C736D1A9C4191FDFCC7A4F824CE11232D Certificate serial: 0661 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ZfYWHHNtGpxBkf38x6T4JM4RIy0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91899BB/88C2F15E885811EB96CE6817C4F9AE02/ZfYWHHNtGpxBkf38x6T4JM4RIy0.mft Manifest number: 065F Signing time: Thu 03 Jul 2025 00:32:41 +0000 Manifest this update: Thu 03 Jul 2025 00:32:41 +0000 Manifest next update: Thu 10 Jul 2025 00:32:41 +0000 Files and hashes: 1: ZfYWHHNtGpxBkf38x6T4JM4RIy0.crl (hash: ILnjYpiiSqbnBVibRkzINEf79HvUUWz8hhcNu7VNgG4=) 2: 54CB555C57A311F09664E82DC4F9AE02.roa (hash: POZE+H9XHhkiQ7gss75Xc9Cmj2rXvVlOeUNyrwPPxT4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91899BB/88C2F15E885811EB96CE6817C4F9AE02/ZfYWHHNtGpxBkf38x6T4JM4RIy0.crl rsync://rpki.apnic.net/member_repository/A91899BB/88C2F15E885811EB96CE6817C4F9AE02/ZfYWHHNtGpxBkf38x6T4JM4RIy0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ZfYWHHNtGpxBkf38x6T4JM4RIy0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 10 Jul 2025 00:32:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1633 (0x661) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91899BB, serialNumber=65F6161C736D1A9C4191FDFCC7A4F824CE11232D Validity Not Before: Jul 3 00:32:41 2025 GMT Not After : Jul 10 00:32:41 2025 GMT Subject: CN=6865cfa9-eb9d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9f:e8:76:53:38:f1:96:d1:dd:c6:9e:f1:a1:1e: 60:0c:f2:1a:4e:c0:dc:35:fa:cb:b0:b0:9c:ae:49: 94:89:cd:1b:f6:22:e9:0c:bc:b9:6e:76:db:6b:63: c3:7a:5d:b8:b6:9c:27:64:c4:91:3f:ab:06:94:b2: b3:79:14:a6:17:14:e8:00:ba:a4:d1:87:f3:ee:3a: 44:cc:a1:30:fe:4a:6a:36:e1:7e:c6:06:1a:5a:34: 1f:35:9a:50:96:47:ab:ee:c7:58:a9:61:da:2f:f2: 62:13:be:59:b3:74:c8:14:2b:57:91:cd:70:e8:4d: 31:e5:6b:1b:cc:c0:be:9c:8c:63:98:bc:eb:fa:d4: 45:67:a6:8c:c7:b0:9a:5e:fa:90:b4:6e:57:2a:4c: c0:d0:fa:1c:df:18:7d:0c:5c:9d:df:5f:e4:76:db: 3c:83:2f:5b:95:0b:8f:13:74:e5:c0:cf:ff:ea:b7: af:eb:0b:c1:b6:0e:c8:cc:1c:5b:b6:87:01:4b:c9: a8:57:d1:4e:85:49:83:32:60:02:85:5b:d0:56:d0: 05:73:dd:f4:14:3f:01:93:bb:20:f2:ef:1e:b9:bc: c4:54:22:c7:12:66:d0:48:b4:cb:62:48:43:89:89: 39:30:5c:31:f0:ed:d8:49:ee:ac:5a:b5:49:09:79: 83:f1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FA:F4:0D:AE:23:F5:80:9F:1F:44:D3:36:4F:48:7E:5B:17:F5:F6:22 X509v3 Authority Key Identifier: keyid:65:F6:16:1C:73:6D:1A:9C:41:91:FD:FC:C7:A4:F8:24:CE:11:23:2D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91899BB/88C2F15E885811EB96CE6817C4F9AE02/ZfYWHHNtGpxBkf38x6T4JM4RIy0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ZfYWHHNtGpxBkf38x6T4JM4RIy0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91899BB/88C2F15E885811EB96CE6817C4F9AE02/ZfYWHHNtGpxBkf38x6T4JM4RIy0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 87:d1:8a:47:6d:af:6e:7f:1a:6b:bc:0c:3e:63:d1:22:37:08: 04:fe:40:1a:ac:08:56:25:ec:bf:eb:f6:fa:93:1b:ba:0d:be: fe:72:ef:19:29:74:a5:08:62:6d:e7:0f:b5:99:1a:94:08:e5: d9:aa:6c:7b:67:a1:ce:cd:e7:a5:7c:f0:a0:5f:bf:a7:66:3d: 3f:da:9c:3f:9f:a0:d3:6b:cd:27:93:2b:39:6a:a0:ff:6c:0a: a4:1c:eb:81:57:b3:4c:37:a0:90:de:43:7a:62:ec:fc:00:57: 9c:08:fc:1f:61:74:20:ef:11:55:d0:1a:ba:b4:8e:4e:86:70: ef:4f:ac:38:e4:6f:bf:13:3d:b5:e6:7c:80:23:ee:a2:48:1d: c9:a0:93:dd:46:98:91:3b:fc:4b:ca:8c:94:81:00:48:cf:96: 8a:13:1d:0b:b6:f0:5f:64:e2:e8:3b:8e:ff:fb:1c:85:0c:92: c8:2d:d3:1b:34:bd:1c:23:07:ee:d6:a3:1c:b2:3c:56:a4:ff: d2:fe:0e:14:7d:15:fa:43:72:91:cc:fe:a5:a7:ed:96:fd:56: 7b:68:72:c6:66:55:8e:49:22:33:28:8f:43:33:c9:ba:6f:67: ad:22:05:f9:1b:69:41:d2:5d:af:c0:27:a6:2c:e9:bf:af:76: 8f:5b:e4:6d -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBmEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx ODk5QkIxMTAvBgNVBAUTKDY1RjYxNjFDNzM2RDFBOUM0MTkxRkRGQ0M3QTRGODI0 Q0UxMTIzMkQwHhcNMjUwNzAzMDAzMjQxWhcNMjUwNzEwMDAzMjQxWjAYMRYwFAYD VQQDEw02ODY1Y2ZhOS1lYjlkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAn+h2UzjxltHdxp7xoR5gDPIaTsDcNfrLsLCcrkmUic0b9iLpDLy5bnbba2PD el24tpwnZMSRP6sGlLKzeRSmFxToALqk0Yfz7jpEzKEw/kpqNuF+xgYaWjQfNZpQ lker7sdYqWHaL/JiE75Zs3TIFCtXkc1w6E0x5WsbzMC+nIxjmLzr+tRFZ6aMx7Ca XvqQtG5XKkzA0Poc3xh9DFyd31/kdts8gy9blQuPE3TlwM//6rev6wvBtg7IzBxb tocBS8moV9FOhUmDMmAChVvQVtAFc930FD8Bk7sg8u8eubzEVCLHEmbQSLTLYkhD iYk5MFwx8O3YSe6sWrVJCXmD8QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFPr0Da4j 9YCfH0TTNk9IflsX9fYiMB8GA1UdIwQYMBaAFGX2FhxzbRqcQZH9/Mek+CTOESMt MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4OTlCQi84OEMyRjE1RTg4 NTgxMUVCOTZDRTY4MTdDNEY5QUUwMi9aZllXSEhOdEdweEJrZjM4eDZUNEpNNFJJ eTAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1pmWVdISE50R3B4QmtmMzh4NlQ0Sk00Ukl5MC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 OTlCQi84OEMyRjE1RTg4NTgxMUVCOTZDRTY4MTdDNEY5QUUwMi9aZllXSEhOdEdw eEJrZjM4eDZUNEpNNFJJeTAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCH0YpHba9ufxprvAw+Y9EiNwgE/kAarAhWJey/6/b6kxu6Db7+cu8Z KXSlCGJt5w+1mRqUCOXZqmx7Z6HOzeelfPCgX7+nZj0/2pw/n6DTa80nkys5aqD/ bAqkHOuBV7NMN6CQ3kN6Yuz8AFecCPwfYXQg7xFV0Bq6tI5OhnDvT6w45G+/Ez21 5nyAI+6iSB3JoJPdRpiRO/xLyoyUgQBIz5aKEx0LtvBfZOLoO47/+xyFDJLILdMb NL0cIwfu1qMcsjxWpP/S/g4UfRX6Q3KRzP6lp+2W/VZ7aHLGZlWOSSIzKI9DM8m6 b2etIgX5G2lB0l2vwCemLOm/r3aPW+Rt -----END CERTIFICATE-----Generated at Thu Jul 3 05:39:33 2025 by rpki-client