$ rpki-client -vvf rpki.apnic.net/member_repository/A91BEC31/3CF53622E4A411EFB276F25DC4F9AE02/Z9ecOxEW02-54XHWZY-PQ7U8cvo.mft File: Z9ecOxEW02-54XHWZY-PQ7U8cvo.mft (raw, json) Hash identifier: 46lQz/2XCW7TKiEb0hqlrUxTBOtVG++fk166wedaqOg= Subject key identifier: 67:17:65:CC:61:4F:0A:DC:F2:D2:CA:31:76:A9:33:D7:69:FC:32:4D Authority key identifier: 67:D7:9C:3B:11:16:D3:6F:B9:E1:71:D6:65:8F:8F:43:B5:3C:72:FA Certificate issuer: /CN=A91BEC31/serialNumber=67D79C3B1116D36FB9E171D6658F8F43B53C72FA Certificate serial: 4C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Z9ecOxEW02-54XHWZY-PQ7U8cvo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91BEC31/3CF53622E4A411EFB276F25DC4F9AE02/Z9ecOxEW02-54XHWZY-PQ7U8cvo.mft Manifest number: 4B Signing time: Sun 29 Jun 2025 06:22:12 +0000 Manifest this update: Sun 29 Jun 2025 06:22:11 +0000 Manifest next update: Sun 06 Jul 2025 06:22:11 +0000 Files and hashes: 1: Z9ecOxEW02-54XHWZY-PQ7U8cvo.crl (hash: Ki0OQN09l2529wWjE6UvtMq4U+ZNdAp5kyjwJF+/QAM=) 2: F8B0BFEEE4A411EF8C2D0460C4F9AE02.roa (hash: h0Bd3mrZsqytRvgmEj0DxUL66b35/lpEECIlTQlJZwE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91BEC31/3CF53622E4A411EFB276F25DC4F9AE02/Z9ecOxEW02-54XHWZY-PQ7U8cvo.crl rsync://rpki.apnic.net/member_repository/A91BEC31/3CF53622E4A411EFB276F25DC4F9AE02/Z9ecOxEW02-54XHWZY-PQ7U8cvo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Z9ecOxEW02-54XHWZY-PQ7U8cvo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 06 Jul 2025 06:22:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 76 (0x4c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91BEC31, serialNumber=67D79C3B1116D36FB9E171D6658F8F43B53C72FA Validity Not Before: Jun 29 06:22:11 2025 GMT Not After : Jul 6 06:22:11 2025 GMT Subject: CN=6860db93-53be Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:16:8a:ef:4f:0a:3e:ed:9d:29:ab:84:06:ac: ed:30:61:43:51:b5:da:a0:dd:90:09:e6:d2:9a:ea: ad:fb:e0:49:bd:57:84:e6:f9:72:4c:28:10:81:9c: 3d:a9:e5:57:b4:28:70:5b:4a:57:3b:d1:20:1c:c2: 67:08:d2:32:2c:96:5b:77:dc:d4:48:99:28:60:58: ab:67:4e:d2:34:4b:71:f6:5a:95:ac:bc:cc:9c:18: fa:05:d8:4a:87:68:06:4a:5e:0f:e3:ef:26:dc:f9: 54:70:43:e4:d5:28:b4:6e:45:5a:df:54:d0:35:93: 8c:7c:3b:11:73:97:18:b5:c7:f9:88:2e:61:33:3a: 1a:47:e8:e4:74:70:e2:36:99:e4:23:77:10:cc:88: 03:63:a8:30:cc:80:12:60:ca:7c:90:94:ca:5c:e4: f4:9a:a3:a7:c7:ba:04:9b:cc:c4:39:a4:1c:8c:3d: c3:1b:51:60:72:09:15:d2:84:77:ab:97:9f:73:6e: 5e:09:60:e7:29:4c:c3:86:c5:59:7e:fc:06:80:90: 6a:69:10:4d:67:a1:b3:fd:79:d2:23:49:ba:95:48: c6:03:42:7f:27:29:a5:80:f1:c7:85:65:10:a0:bc: 0c:ce:1a:4d:2a:b7:fb:83:9a:38:f6:9e:b8:e3:5c: 75:89 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 67:17:65:CC:61:4F:0A:DC:F2:D2:CA:31:76:A9:33:D7:69:FC:32:4D X509v3 Authority Key Identifier: keyid:67:D7:9C:3B:11:16:D3:6F:B9:E1:71:D6:65:8F:8F:43:B5:3C:72:FA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91BEC31/3CF53622E4A411EFB276F25DC4F9AE02/Z9ecOxEW02-54XHWZY-PQ7U8cvo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Z9ecOxEW02-54XHWZY-PQ7U8cvo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91BEC31/3CF53622E4A411EFB276F25DC4F9AE02/Z9ecOxEW02-54XHWZY-PQ7U8cvo.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 43:09:69:e5:c8:ae:62:24:8a:05:27:4d:e7:7d:46:16:ef:32: 8f:49:b4:02:68:d1:be:24:29:cb:fe:99:50:29:5a:81:ea:99: 37:e8:09:ce:06:ec:ee:49:08:0d:72:ed:b5:08:32:ce:2f:fe: 1e:20:fc:d6:d7:96:8a:cf:19:a1:b5:4f:eb:00:28:0a:34:f1: 2f:2f:31:c8:45:5a:71:85:61:04:61:85:67:88:75:9b:f4:10: 24:7e:57:bc:0d:86:9f:1a:7c:48:ed:d7:6f:e0:b3:6b:ef:b3: 25:5b:1d:d6:dc:f0:88:02:7b:57:f9:50:2a:58:de:c7:3b:3b: 63:21:86:98:3a:12:1f:6f:1a:6b:ee:a9:5d:00:10:e4:e0:b4: d0:cb:b2:db:d7:9f:1a:db:e4:71:75:bd:ad:35:b7:c4:16:98: e9:ce:d2:d4:e3:5e:c6:d7:48:e7:90:42:f5:38:98:16:71:eb: 23:6c:57:c5:b2:79:de:44:3f:fd:3c:08:8e:1d:c3:43:35:bf: ca:b3:50:c9:76:76:60:61:e5:22:55:cf:95:6a:40:b3:c4:10: 0e:b9:f9:8f:72:87:ab:ff:85:6d:b0:de:b1:3f:0e:b0:2c:ba: 8b:29:0c:4c:9f:5f:25:6b:50:98:e8:e7:a6:31:4a:2b:88:51: 2e:aa:be:29 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBTDANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFC RUMzMTExMC8GA1UEBRMoNjdENzlDM0IxMTE2RDM2RkI5RTE3MUQ2NjU4RjhGNDNC NTNDNzJGQTAeFw0yNTA2MjkwNjIyMTFaFw0yNTA3MDYwNjIyMTFaMBgxFjAUBgNV BAMTDTY4NjBkYjkzLTUzYmUwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQC+ForvTwo+7Z0pq4QGrO0wYUNRtdqg3ZAJ5tKa6q374Em9V4Tm+XJMKBCBnD2p 5Ve0KHBbSlc70SAcwmcI0jIsllt33NRImShgWKtnTtI0S3H2WpWsvMycGPoF2EqH aAZKXg/j7ybc+VRwQ+TVKLRuRVrfVNA1k4x8OxFzlxi1x/mILmEzOhpH6OR0cOI2 meQjdxDMiANjqDDMgBJgynyQlMpc5PSao6fHugSbzMQ5pByMPcMbUWByCRXShHer l59zbl4JYOcpTMOGxVl+/AaAkGppEE1nobP9edIjSbqVSMYDQn8nKaWA8ceFZRCg vAzOGk0qt/uDmjj2nrjjXHWJAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUZxdlzGFP Ctzy0soxdqkz12n8Mk0wHwYDVR0jBBgwFoAUZ9ecOxEW02+54XHWZY+PQ7U8cvow DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUJFQzMxLzNDRjUzNjIyRTRB NDExRUZCMjc2RjI1REM0RjlBRTAyL1o5ZWNPeEVXMDItNTRYSFdaWS1QUTdVOGN2 by5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvWjllY094RVcwMi01NFhIV1pZLVBRN1U4Y3ZvLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUJF QzMxLzNDRjUzNjIyRTRBNDExRUZCMjc2RjI1REM0RjlBRTAyL1o5ZWNPeEVXMDIt NTRYSFdaWS1QUTdVOGN2by5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAEMJaeXIrmIkigUnTed9RhbvMo9JtAJo0b4kKcv+mVApWoHqmTfoCc4G 7O5JCA1y7bUIMs4v/h4g/NbXlorPGaG1T+sAKAo08S8vMchFWnGFYQRhhWeIdZv0 ECR+V7wNhp8afEjt12/gs2vvsyVbHdbc8IgCe1f5UCpY3sc7O2Mhhpg6Eh9vGmvu qV0AEOTgtNDLstvXnxrb5HF1va01t8QWmOnO0tTjXsbXSOeQQvU4mBZx6yNsV8Wy ed5EP/08CI4dw0M1v8qzUMl2dmBh5SJVz5VqQLPEEA65+Y9yh6v/hW2w3rE/DrAs uospDEyfXyVrUJjo56YxSiuIUS6qvik= -----END CERTIFICATE-----Generated at Mon Jun 30 23:47:00 2025 by rpki-client