$ rpki-client -vvf rpki.apnic.net/member_repository/A91B391F/58DB87F2457011EF9C8B8E71C4F9AE02/Zva4RKn4Ca4wexuc7kv9R8PHdxs.mft File: Zva4RKn4Ca4wexuc7kv9R8PHdxs.mft (raw, json) Hash identifier: S8MSUhf/+hQ7NEM6Ltp4ONnOEsuNh2r/8r5Rdc+Jq+Q= Subject key identifier: 93:F2:5E:F4:8A:FA:F2:BA:35:FF:62:6B:9B:0B:45:AD:B4:7F:A7:07 Authority key identifier: 66:F6:B8:44:A9:F8:09:AE:30:7B:1B:9C:EE:4B:FD:47:C3:C7:77:1B Certificate issuer: /CN=A91B391F/serialNumber=66F6B844A9F809AE307B1B9CEE4BFD47C3C7771B Certificate serial: B4 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Zva4RKn4Ca4wexuc7kv9R8PHdxs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B391F/58DB87F2457011EF9C8B8E71C4F9AE02/Zva4RKn4Ca4wexuc7kv9R8PHdxs.mft Manifest number: B3 Signing time: Thu 03 Jul 2025 06:10:31 +0000 Manifest this update: Thu 03 Jul 2025 06:10:30 +0000 Manifest next update: Thu 10 Jul 2025 06:10:30 +0000 Files and hashes: 1: Zva4RKn4Ca4wexuc7kv9R8PHdxs.crl (hash: V7AoBGVfXUm2HffIInS+lKOEvWjLmemRUm790xOyPZk=) 2: 5069A4E034B311F0B93A6228C4F9AE02.roa (hash: LjkQk5pWU/mOE2Q5+ogi7WUAZwgNRPqYtt1+W47MskQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B391F/58DB87F2457011EF9C8B8E71C4F9AE02/Zva4RKn4Ca4wexuc7kv9R8PHdxs.crl rsync://rpki.apnic.net/member_repository/A91B391F/58DB87F2457011EF9C8B8E71C4F9AE02/Zva4RKn4Ca4wexuc7kv9R8PHdxs.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Zva4RKn4Ca4wexuc7kv9R8PHdxs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 10 Jul 2025 03:15:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 180 (0xb4) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B391F, serialNumber=66F6B844A9F809AE307B1B9CEE4BFD47C3C7771B Validity Not Before: Jul 3 06:10:30 2025 GMT Not After : Jul 10 06:10:30 2025 GMT Subject: CN=68661ed7-6b61 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b1:f0:2d:ef:38:1e:21:73:da:c4:2b:7a:0c:01: 32:a8:86:1d:e5:60:e0:2c:8a:f9:e3:22:23:6b:f8: 97:ab:d6:05:30:b9:c0:a7:7f:dc:08:8b:c3:25:dd: 85:99:13:6e:53:40:62:b2:91:aa:fb:7d:ae:ee:2a: 27:5e:c4:5d:9a:58:79:3c:4f:40:96:66:f7:48:f5: cf:eb:b9:dd:9a:74:95:bb:96:eb:8f:6d:31:b9:5c: e7:9e:d1:6e:62:db:cf:a2:8e:51:98:71:84:a6:4a: c6:6e:bd:4a:65:93:09:11:71:14:13:35:8a:f3:d7: 29:c1:cf:ee:85:03:8d:66:97:d6:d0:18:7f:0e:7b: 24:bb:a8:be:42:bd:b3:39:aa:65:f7:2a:84:82:2b: 9b:6a:e5:df:53:c1:5b:9d:c7:73:3e:68:47:37:a4: f3:69:8d:4b:da:24:c0:5a:1d:f0:82:ea:68:ee:9e: 9a:41:fb:fe:fc:38:87:b2:5a:ee:76:f7:f5:1b:33: c2:ce:e9:cc:d1:e6:71:da:ff:b7:ec:97:1b:a6:c9: 35:23:c9:dd:23:a0:6a:a6:1f:c6:7c:a1:3d:ac:b1: ff:2e:38:46:1d:08:7d:f6:7a:b5:ac:46:cf:30:9b: 56:ab:6d:ad:da:95:d1:44:b8:41:c3:26:5b:fe:36: e8:3f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 93:F2:5E:F4:8A:FA:F2:BA:35:FF:62:6B:9B:0B:45:AD:B4:7F:A7:07 X509v3 Authority Key Identifier: keyid:66:F6:B8:44:A9:F8:09:AE:30:7B:1B:9C:EE:4B:FD:47:C3:C7:77:1B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B391F/58DB87F2457011EF9C8B8E71C4F9AE02/Zva4RKn4Ca4wexuc7kv9R8PHdxs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Zva4RKn4Ca4wexuc7kv9R8PHdxs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B391F/58DB87F2457011EF9C8B8E71C4F9AE02/Zva4RKn4Ca4wexuc7kv9R8PHdxs.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 25:d1:e6:c8:81:56:62:3e:42:d7:6b:69:01:ce:51:ee:c3:cf: 03:9e:eb:84:eb:1b:93:49:a3:d2:08:fa:67:0f:7c:6b:7a:5f: a2:4b:9b:87:ea:5e:6f:3c:a8:fc:95:27:8d:0a:0f:08:a3:95: e3:5e:71:b3:d5:ac:68:6f:81:b8:a9:72:66:1f:96:ed:b6:6b: 0b:63:d2:bf:6c:3b:1c:af:d2:73:4e:be:09:27:68:dd:e7:8b: ca:59:4b:f3:fc:6d:63:47:a6:d7:4b:dd:be:57:32:85:20:cd: 98:70:f2:99:3d:b8:2a:be:14:87:60:4a:63:e2:8d:07:8b:e8: ce:a4:1f:e4:03:24:71:c2:df:5d:05:d4:2d:15:78:aa:c1:af: c4:a2:94:2b:ab:6e:d0:0c:01:11:1a:ab:f8:c0:df:df:13:68: 03:5c:d3:4a:5e:59:96:5e:88:d8:c3:ac:ec:b9:f7:dd:25:25: e6:a9:09:bb:e4:7f:ef:98:cf:f8:ef:4a:12:2f:c8:ab:37:5d: 7e:56:d5:27:ae:99:36:54:63:ed:5e:57:b5:6a:fc:ac:3e:73: 64:7b:63:00:65:53:c2:0b:9a:78:92:6e:10:58:cf:2a:30:c6: df:d2:b3:2b:df:48:d8:bd:68:21:80:10:b3:78:07:20:cf:3e: fd:62:9e:d4 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICALQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjM5MUYxMTAvBgNVBAUTKDY2RjZCODQ0QTlGODA5QUUzMDdCMUI5Q0VFNEJGRDQ3 QzNDNzc3MUIwHhcNMjUwNzAzMDYxMDMwWhcNMjUwNzEwMDYxMDMwWjAYMRYwFAYD VQQDEw02ODY2MWVkNy02YjYxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsfAt7zgeIXPaxCt6DAEyqIYd5WDgLIr54yIja/iXq9YFMLnAp3/cCIvDJd2F mRNuU0BispGq+32u7ionXsRdmlh5PE9Almb3SPXP67ndmnSVu5brj20xuVznntFu YtvPoo5RmHGEpkrGbr1KZZMJEXEUEzWK89cpwc/uhQONZpfW0Bh/Dnsku6i+Qr2z Oapl9yqEgiubauXfU8FbncdzPmhHN6TzaY1L2iTAWh3wgupo7p6aQfv+/DiHslru dvf1GzPCzunM0eZx2v+37Jcbpsk1I8ndI6Bqph/GfKE9rLH/LjhGHQh99nq1rEbP MJtWq22t2pXRRLhBwyZb/jboPwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJPyXvSK +vK6Nf9ia5sLRa20f6cHMB8GA1UdIwQYMBaAFGb2uESp+AmuMHsbnO5L/UfDx3cb MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCMzkxRi81OERCODdGMjQ1 NzAxMUVGOUM4QjhFNzFDNEY5QUUwMi9admE0UktuNENhNHdleHVjN2t2OVI4UEhk eHMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1p2YTRSS240Q2E0d2V4dWM3a3Y5UjhQSGR4cy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC MzkxRi81OERCODdGMjQ1NzAxMUVGOUM4QjhFNzFDNEY5QUUwMi9admE0UktuNENh NHdleHVjN2t2OVI4UEhkeHMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAl0ebIgVZiPkLXa2kBzlHuw88DnuuE6xuTSaPSCPpnD3xrel+iS5uH 6l5vPKj8lSeNCg8Io5XjXnGz1axob4G4qXJmH5bttmsLY9K/bDscr9JzTr4JJ2jd 54vKWUvz/G1jR6bXS92+VzKFIM2YcPKZPbgqvhSHYEpj4o0Hi+jOpB/kAyRxwt9d BdQtFXiqwa/EopQrq27QDAERGqv4wN/fE2gDXNNKXlmWXojYw6zsuffdJSXmqQm7 5H/vmM/470oSL8irN11+VtUnrpk2VGPtXle1avysPnNke2MAZVPCC5p4km4QWM8q MMbf0rMr30jYvWghgBCzeAcgzz79Yp7U -----END CERTIFICATE-----Generated at Thu Jul 3 09:44:05 2025 by rpki-client