$ rpki-client -vvf rpki.apnic.net/member_repository/A91B9F08/3090D914A14C11E98475A82DC4F9AE02/zoytNWIakBLECzY3U3ykDj0H6M8.mft File: zoytNWIakBLECzY3U3ykDj0H6M8.mft (raw, json) Hash identifier: llqxmeMgag+IkYr1YEYVv+zJ7yYbzmIh6FKIJZxay4w= Subject key identifier: 60:1F:45:A8:4B:89:88:05:AD:6F:17:B2:9F:5F:15:4C:FB:1E:A9:52 Authority key identifier: CE:8C:AD:35:62:1A:90:12:C4:0B:36:37:53:7C:A4:0E:3D:07:E8:CF Certificate issuer: /CN=A91B9F08/serialNumber=CE8CAD35621A9012C40B3637537CA40E3D07E8CF Certificate serial: 0E5E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/zoytNWIakBLECzY3U3ykDj0H6M8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B9F08/3090D914A14C11E98475A82DC4F9AE02/zoytNWIakBLECzY3U3ykDj0H6M8.mft Manifest number: 0E4E Signing time: Sat 28 Jun 2025 17:33:43 +0000 Manifest this update: Sat 28 Jun 2025 17:33:42 +0000 Manifest next update: Sat 05 Jul 2025 17:33:42 +0000 Files and hashes: 1: zoytNWIakBLECzY3U3ykDj0H6M8.crl (hash: KwTngyw7wSa4Z2zw104s94GhbbrVxAK8Q7kunca2k0E=) 2: 8ADFF772924011ED867BE311C4F9AE02.roa (hash: am9c/5/9WUqfqDVJJkqHl1fMAMJ9WE34zLQ5kEncnkc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B9F08/3090D914A14C11E98475A82DC4F9AE02/zoytNWIakBLECzY3U3ykDj0H6M8.crl rsync://rpki.apnic.net/member_repository/A91B9F08/3090D914A14C11E98475A82DC4F9AE02/zoytNWIakBLECzY3U3ykDj0H6M8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/zoytNWIakBLECzY3U3ykDj0H6M8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 05 Jul 2025 17:33:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3678 (0xe5e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B9F08, serialNumber=CE8CAD35621A9012C40B3637537CA40E3D07E8CF Validity Not Before: Jun 28 17:33:42 2025 GMT Not After : Jul 5 17:33:42 2025 GMT Subject: CN=68602777-6509 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:dd:ec:41:00:92:bb:2b:6e:18:44:d7:bc:9d: 9d:8a:4b:8a:8a:0e:9d:86:cf:14:ac:78:8a:c0:83: f5:dc:59:36:80:ac:7c:58:f1:5e:a7:48:26:c7:10: 08:c5:a9:67:66:39:f1:fd:2d:56:79:84:2f:7e:61: 3f:5c:f1:8f:e8:d6:24:fc:5f:e0:29:d2:b3:1d:6e: 2c:92:e1:70:9f:9e:a8:74:fe:3e:64:c6:0e:3e:8c: 06:3f:c9:bf:91:62:9d:ae:d0:8c:a3:90:fb:f3:87: aa:81:f3:3b:e3:92:d4:cc:8d:20:82:92:aa:1d:92: 95:ad:0f:f4:17:f5:a4:31:c1:a1:eb:6d:20:e6:c7: 20:76:50:dd:2f:e1:6d:1a:8b:42:7e:51:25:af:40: de:38:6c:02:42:24:b8:9c:89:af:93:71:39:f9:19: 75:c8:c5:5b:64:6b:27:89:6c:dc:5e:9c:2a:dd:55: 21:c5:76:37:21:c9:bb:0f:a2:50:c3:40:fe:50:5c: 75:53:55:59:87:94:cd:6a:05:28:f2:0c:9a:d1:92: ff:4a:0f:73:8a:fa:ba:fd:62:8b:09:be:ec:f8:6b: 67:93:28:64:dc:da:e6:10:e7:31:4e:46:c3:f5:e2: 67:b4:fc:a5:8e:de:a2:1d:f8:93:ca:64:53:44:84: 98:4b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 60:1F:45:A8:4B:89:88:05:AD:6F:17:B2:9F:5F:15:4C:FB:1E:A9:52 X509v3 Authority Key Identifier: keyid:CE:8C:AD:35:62:1A:90:12:C4:0B:36:37:53:7C:A4:0E:3D:07:E8:CF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B9F08/3090D914A14C11E98475A82DC4F9AE02/zoytNWIakBLECzY3U3ykDj0H6M8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/zoytNWIakBLECzY3U3ykDj0H6M8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B9F08/3090D914A14C11E98475A82DC4F9AE02/zoytNWIakBLECzY3U3ykDj0H6M8.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 3d:4f:ee:08:1b:86:f8:e5:36:68:dc:c0:b3:ee:76:e6:a8:93: 3c:b3:de:d5:83:3e:6b:1a:82:52:f3:aa:2a:fb:b8:85:ad:be: 17:db:90:95:d7:da:ef:d0:10:93:04:70:d1:4a:c7:db:2b:ec: ac:cc:dd:6d:cc:4c:94:10:b8:86:d1:d0:c0:4d:2d:7a:1b:ca: 57:24:96:68:9f:ed:aa:51:db:f1:d5:60:af:36:8c:f0:2e:c0: cf:5e:f0:c7:94:95:a1:9a:f1:4d:20:b5:59:7a:0e:37:9b:15: f1:45:fd:da:09:f2:95:7d:6d:6d:5a:b3:b3:0c:e2:66:17:23: b3:ba:e8:03:4b:74:43:2d:35:68:e8:64:de:fc:91:08:24:57: 65:bd:8d:80:08:0b:e4:2e:c8:7f:0c:8d:91:5d:26:9d:29:d2: dd:66:d3:9c:38:e2:d9:67:94:10:5d:0d:2f:34:8a:80:75:98: 73:bf:00:ad:15:18:f7:b3:a1:16:39:fa:b1:7e:00:c0:ce:f3: 03:7a:d9:58:74:4b:be:b8:8a:34:84:f7:49:65:ec:84:ef:e4: 02:45:6b:7e:ce:11:65:87:20:f8:ff:a2:46:75:e9:27:7a:2f: d4:00:35:c6:6b:7d:56:c7:68:32:c3:71:ff:07:26:c4:f5:7d: f5:a4:53:32 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDl4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjlGMDgxMTAvBgNVBAUTKENFOENBRDM1NjIxQTkwMTJDNDBCMzYzNzUzN0NBNDBF M0QwN0U4Q0YwHhcNMjUwNjI4MTczMzQyWhcNMjUwNzA1MTczMzQyWjAYMRYwFAYD VQQDEw02ODYwMjc3Ny02NTA5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxN3sQQCSuytuGETXvJ2dikuKig6dhs8UrHiKwIP13Fk2gKx8WPFep0gmxxAI xalnZjnx/S1WeYQvfmE/XPGP6NYk/F/gKdKzHW4skuFwn56odP4+ZMYOPowGP8m/ kWKdrtCMo5D784eqgfM745LUzI0ggpKqHZKVrQ/0F/WkMcGh620g5scgdlDdL+Ft GotCflElr0DeOGwCQiS4nImvk3E5+Rl1yMVbZGsniWzcXpwq3VUhxXY3Icm7D6JQ w0D+UFx1U1VZh5TNagUo8gya0ZL/Sg9zivq6/WKLCb7s+Gtnkyhk3NrmEOcxTkbD 9eJntPyljt6iHfiTymRTRISYSwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFGAfRahL iYgFrW8Xsp9fFUz7HqlSMB8GA1UdIwQYMBaAFM6MrTViGpASxAs2N1N8pA49B+jP MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCOUYwOC8zMDkwRDkxNEEx NEMxMUU5ODQ3NUE4MkRDNEY5QUUwMi96b3l0TldJYWtCTEVDelkzVTN5a0RqMEg2 TTguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3pveXROV0lha0JMRUN6WTNVM3lrRGowSDZNOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC OUYwOC8zMDkwRDkxNEExNEMxMUU5ODQ3NUE4MkRDNEY5QUUwMi96b3l0TldJYWtC TEVDelkzVTN5a0RqMEg2TTgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA9T+4IG4b45TZo3MCz7nbmqJM8s97Vgz5rGoJS86oq+7iFrb4X25CV 19rv0BCTBHDRSsfbK+yszN1tzEyUELiG0dDATS16G8pXJJZon+2qUdvx1WCvNozw LsDPXvDHlJWhmvFNILVZeg43mxXxRf3aCfKVfW1tWrOzDOJmFyOzuugDS3RDLTVo 6GTe/JEIJFdlvY2ACAvkLsh/DI2RXSadKdLdZtOcOOLZZ5QQXQ0vNIqAdZhzvwCt FRj3s6EWOfqxfgDAzvMDetlYdEu+uIo0hPdJZeyE7+QCRWt+zhFlhyD4/6JGdekn ei/UADXGa31Wx2gyw3H/BybE9X31pFMy -----END CERTIFICATE-----Generated at Sun Jun 29 16:22:11 2025 by rpki-client