$ rpki-client -vvf rpki.apnic.net/member_repository/A91AB055/4ABBC01CF55511EEACF1234BC4F9AE02/mZsvZTnCPq60aeZ1OfstyTPZgEA.mft File: mZsvZTnCPq60aeZ1OfstyTPZgEA.mft (raw, json) Hash identifier: XZj7klTpD/MC+xcgPcBjfkFmNFWWzY12t17EV+RwfOY= Subject key identifier: 51:4E:98:BE:26:61:39:9C:E3:72:84:39:41:D1:8F:A6:BA:E7:64:B8 Authority key identifier: 99:9B:2F:65:39:C2:3E:AE:B4:69:E6:75:39:FB:2D:C9:33:D9:80:40 Certificate issuer: /CN=A91AB055/serialNumber=999B2F6539C23EAEB469E67539FB2DC933D98040 Certificate serial: E8 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/mZsvZTnCPq60aeZ1OfstyTPZgEA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91AB055/4ABBC01CF55511EEACF1234BC4F9AE02/mZsvZTnCPq60aeZ1OfstyTPZgEA.mft Manifest number: E6 Signing time: Thu 03 Jul 2025 05:34:20 +0000 Manifest this update: Thu 03 Jul 2025 05:34:20 +0000 Manifest next update: Thu 10 Jul 2025 05:34:20 +0000 Files and hashes: 1: mZsvZTnCPq60aeZ1OfstyTPZgEA.crl (hash: N7MJMKKE/KC9JDcj8xlrZw8leE6QGhsfmmS/tXRCg1I=) 2: 83CA613CF55611EE8CE6274DC4F9AE02.roa (hash: BonjniXMbmI4yDYc3ynOZLv8pgVSOdRZa/c5jpsq0Ug=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91AB055/4ABBC01CF55511EEACF1234BC4F9AE02/mZsvZTnCPq60aeZ1OfstyTPZgEA.crl rsync://rpki.apnic.net/member_repository/A91AB055/4ABBC01CF55511EEACF1234BC4F9AE02/mZsvZTnCPq60aeZ1OfstyTPZgEA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/mZsvZTnCPq60aeZ1OfstyTPZgEA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 10 Jul 2025 03:15:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 232 (0xe8) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91AB055, serialNumber=999B2F6539C23EAEB469E67539FB2DC933D98040 Validity Not Before: Jul 3 05:34:20 2025 GMT Not After : Jul 10 05:34:20 2025 GMT Subject: CN=6866165c-099b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:2a:a0:bc:07:c2:cf:aa:9e:08:03:35:3f:1a: 95:ef:24:f5:43:01:c6:44:f2:b0:fd:0f:9e:5c:1f: 17:a4:eb:96:40:bf:8e:b7:34:c6:57:e4:7a:b9:60: 14:8f:7c:ad:05:cc:d2:e9:2d:4a:00:da:89:a7:0b: 66:a7:8c:b0:33:7a:d2:cf:08:86:90:d9:9e:db:b7: 1d:ec:af:02:e1:15:a2:6f:05:d7:61:81:eb:5a:69: 19:d1:ad:df:0b:ea:53:15:2d:85:48:50:1c:a4:8d: 0d:0c:e8:c8:fa:94:8c:fb:2d:06:16:11:66:6d:48: 71:12:10:eb:a6:d4:19:f6:60:16:0c:5c:09:c5:be: 02:a3:99:99:4d:91:54:91:2c:99:aa:77:e5:7f:ad: 3e:48:99:bb:c8:9f:ab:17:66:a3:12:eb:fc:34:9f: 4e:02:fa:07:e3:e7:f3:6d:4f:a5:de:e3:dc:5c:c8: 0e:30:a1:af:f4:54:4b:dc:a6:0e:7d:34:03:eb:d8: 31:0e:3e:08:04:d8:26:52:7b:81:b6:01:e1:09:b2: 44:8b:04:01:c4:df:99:31:fe:17:40:b3:9d:90:05: 9e:7a:d8:37:4a:26:1f:c6:c2:bf:e5:4d:2d:94:d5: 10:3f:09:9b:c7:93:58:e6:b5:74:9d:03:ad:24:a0: df:9b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 51:4E:98:BE:26:61:39:9C:E3:72:84:39:41:D1:8F:A6:BA:E7:64:B8 X509v3 Authority Key Identifier: keyid:99:9B:2F:65:39:C2:3E:AE:B4:69:E6:75:39:FB:2D:C9:33:D9:80:40 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91AB055/4ABBC01CF55511EEACF1234BC4F9AE02/mZsvZTnCPq60aeZ1OfstyTPZgEA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/mZsvZTnCPq60aeZ1OfstyTPZgEA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91AB055/4ABBC01CF55511EEACF1234BC4F9AE02/mZsvZTnCPq60aeZ1OfstyTPZgEA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption da:b2:a5:5a:5d:76:e7:6e:1c:8d:b3:00:86:e8:44:d4:f9:4f: 66:94:82:21:79:7f:00:4d:b8:2e:d8:d8:b8:6f:fc:d4:56:e4: 48:e3:2c:d9:fb:60:85:de:0a:5a:0a:49:5b:32:65:1d:89:05: f7:8f:4b:73:62:ef:c8:2e:25:54:2b:96:2b:7c:49:0e:00:62: 58:2e:e5:53:b5:a5:64:12:bd:50:14:64:90:c5:b6:dd:6d:f5: 3b:8b:0c:ad:e5:d0:ff:c4:a2:fb:37:18:01:03:7c:74:ff:0d: 6a:dd:77:3c:e7:9e:e5:bf:e2:9c:5f:38:34:fe:70:4f:9e:96: 4b:ff:1b:0c:4a:d4:9c:ed:0c:48:b6:e7:3d:5a:cd:bd:30:47: 85:e8:c5:82:c3:de:ef:e8:6c:ab:f7:20:63:5f:15:f2:b7:18: 13:1b:e8:c6:72:c4:21:7e:6a:7e:01:48:2b:32:43:c0:e6:bd: fd:67:16:31:34:80:bc:82:10:fb:f5:54:b0:00:a3:9a:c2:1c: c9:a4:e2:18:9d:fa:63:2a:f8:35:e9:28:49:1e:9a:9f:4c:7b: 9d:54:10:dc:82:52:62:f5:35:4c:ac:d5:be:b7:34:f5:24:2c: 05:18:e0:fa:b9:1a:45:ae:6d:0e:0e:cf:94:3b:36:9e:f6:3d: 6c:83:68:e3 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAOgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QUIwNTUxMTAvBgNVBAUTKDk5OUIyRjY1MzlDMjNFQUVCNDY5RTY3NTM5RkIyREM5 MzNEOTgwNDAwHhcNMjUwNzAzMDUzNDIwWhcNMjUwNzEwMDUzNDIwWjAYMRYwFAYD VQQDEw02ODY2MTY1Yy0wOTliMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtSqgvAfCz6qeCAM1PxqV7yT1QwHGRPKw/Q+eXB8XpOuWQL+OtzTGV+R6uWAU j3ytBczS6S1KANqJpwtmp4ywM3rSzwiGkNme27cd7K8C4RWibwXXYYHrWmkZ0a3f C+pTFS2FSFAcpI0NDOjI+pSM+y0GFhFmbUhxEhDrptQZ9mAWDFwJxb4Co5mZTZFU kSyZqnflf60+SJm7yJ+rF2ajEuv8NJ9OAvoH4+fzbU+l3uPcXMgOMKGv9FRL3KYO fTQD69gxDj4IBNgmUnuBtgHhCbJEiwQBxN+ZMf4XQLOdkAWeetg3SiYfxsK/5U0t lNUQPwmbx5NY5rV0nQOtJKDfmwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFFFOmL4m YTmc43KEOUHRj6a652S4MB8GA1UdIwQYMBaAFJmbL2U5wj6utGnmdTn7Lckz2YBA MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBQjA1NS80QUJCQzAxQ0Y1 NTUxMUVFQUNGMTIzNEJDNEY5QUUwMi9tWnN2WlRuQ1BxNjBhZVoxT2ZzdHlUUFpn RUEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL21ac3ZaVG5DUHE2MGFlWjFPZnN0eVRQWmdFQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB QjA1NS80QUJCQzAxQ0Y1NTUxMUVFQUNGMTIzNEJDNEY5QUUwMi9tWnN2WlRuQ1Bx NjBhZVoxT2ZzdHlUUFpnRUEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQDasqVaXXbnbhyNswCG6ETU+U9mlIIheX8ATbgu2Ni4b/zUVuRI4yzZ +2CF3gpaCklbMmUdiQX3j0tzYu/ILiVUK5YrfEkOAGJYLuVTtaVkEr1QFGSQxbbd bfU7iwyt5dD/xKL7NxgBA3x0/w1q3Xc8557lv+KcXzg0/nBPnpZL/xsMStSc7QxI tuc9Ws29MEeF6MWCw97v6Gyr9yBjXxXytxgTG+jGcsQhfmp+AUgrMkPA5r39ZxYx NIC8ghD79VSwAKOawhzJpOIYnfpjKvg16ShJHpqfTHudVBDcglJi9TVMrNW+tzT1 JCwFGOD6uRpFrm0ODs+UOzae9j1sg2jj -----END CERTIFICATE-----Generated at Fri Jul 4 02:56:22 2025 by rpki-client