$ rpki-client -vvf rpki.apnic.net/member_repository/A91CE978/5DB555AAB8DA11EEBC4BEC2DC4F9AE02/RZTy7BffVsPQZUDzZtKvEYsxfx4.mft File: RZTy7BffVsPQZUDzZtKvEYsxfx4.mft (raw, json) Hash identifier: f/VZTnlPpJovyEYd2JrNPx5xUrMy1jRyiyNOLz9R7c4= Subject key identifier: 1F:6F:1B:E3:33:11:DE:1B:4C:64:56:F4:C0:43:F9:A7:98:B4:3E:55 Authority key identifier: 45:94:F2:EC:17:DF:56:C3:D0:65:40:F3:66:D2:AF:11:8B:31:7F:1E Certificate issuer: /CN=A91CE978/serialNumber=4594F2EC17DF56C3D06540F366D2AF118B317F1E Certificate serial: 0118 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/RZTy7BffVsPQZUDzZtKvEYsxfx4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CE978/5DB555AAB8DA11EEBC4BEC2DC4F9AE02/RZTy7BffVsPQZUDzZtKvEYsxfx4.mft Manifest number: 0115 Signing time: Wed 02 Jul 2025 14:55:31 +0000 Manifest this update: Wed 02 Jul 2025 14:55:30 +0000 Manifest next update: Wed 09 Jul 2025 14:55:30 +0000 Files and hashes: 1: RZTy7BffVsPQZUDzZtKvEYsxfx4.crl (hash: RC2NuwounMgHhLdbNvReLYfZYmW3+9VuyNJmgrTzorM=) 2: 30EAE110B9AD11EE83063243C4F9AE02.roa (hash: /mgu4P2twSDACdGUYPekQQEcvJH+CFlbuOsPxwdYvXg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CE978/5DB555AAB8DA11EEBC4BEC2DC4F9AE02/RZTy7BffVsPQZUDzZtKvEYsxfx4.crl rsync://rpki.apnic.net/member_repository/A91CE978/5DB555AAB8DA11EEBC4BEC2DC4F9AE02/RZTy7BffVsPQZUDzZtKvEYsxfx4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/RZTy7BffVsPQZUDzZtKvEYsxfx4.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 09 Jul 2025 14:55:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 280 (0x118) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CE978, serialNumber=4594F2EC17DF56C3D06540F366D2AF118B317F1E Validity Not Before: Jul 2 14:55:30 2025 GMT Not After : Jul 9 14:55:30 2025 GMT Subject: CN=68654863-49d4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9b:72:61:6f:40:ea:1b:91:6d:9d:ea:0d:5e:92: bd:b1:08:2a:54:6f:87:86:3f:0a:96:89:cf:42:ee: 2b:a9:f2:f7:4d:aa:4f:24:20:7c:0e:c1:34:fa:0b: 13:b0:d3:68:ca:55:64:cf:98:0d:f5:f4:27:59:33: 30:e5:9d:98:07:e7:c8:f6:23:37:0e:60:40:76:67: c6:18:bc:1a:16:85:da:ba:41:f1:af:0e:ba:5e:de: 3a:d0:19:df:76:0f:88:d4:b8:df:8b:d0:cc:5f:de: db:84:e5:6b:76:01:cb:1f:2f:c9:13:4b:6a:ae:b0: 4e:f4:d9:0c:b9:ed:9c:96:21:65:90:5b:44:f4:48: 7a:90:f4:2c:f3:55:0b:9d:6c:7b:5e:0c:23:0d:b4: c9:c0:ea:b8:d3:f8:33:c5:d2:64:10:b4:64:de:99: 0d:ae:96:d1:9d:c0:14:0a:75:fa:71:ac:73:cd:6c: 4a:cb:b8:16:86:03:61:5c:29:49:30:52:64:f9:f7: e7:88:dc:00:da:4f:a4:64:5c:d5:df:bd:8b:d3:f1: 9e:b3:a6:79:fd:f7:cb:30:89:8e:2e:53:82:c9:50: e7:71:ad:68:b6:7a:57:e9:04:2b:5a:c7:32:cc:09: b6:a4:9a:73:b5:ab:d6:89:0f:ce:81:af:41:f4:0a: d7:77 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1F:6F:1B:E3:33:11:DE:1B:4C:64:56:F4:C0:43:F9:A7:98:B4:3E:55 X509v3 Authority Key Identifier: keyid:45:94:F2:EC:17:DF:56:C3:D0:65:40:F3:66:D2:AF:11:8B:31:7F:1E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CE978/5DB555AAB8DA11EEBC4BEC2DC4F9AE02/RZTy7BffVsPQZUDzZtKvEYsxfx4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/RZTy7BffVsPQZUDzZtKvEYsxfx4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CE978/5DB555AAB8DA11EEBC4BEC2DC4F9AE02/RZTy7BffVsPQZUDzZtKvEYsxfx4.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 3b:c0:b4:4e:c1:39:7c:96:64:3a:12:ee:96:58:e7:cb:03:7e: 05:8a:32:42:d3:6d:6c:4e:5d:7c:2a:7a:3e:a1:cd:f7:85:8f: 16:05:b0:85:1a:ff:58:2b:0c:cc:18:5b:ac:87:15:94:4a:86: 21:09:1c:a1:51:c4:9b:ca:a9:87:06:8c:03:c2:8e:8b:83:03: b5:1b:21:bc:ac:2c:46:1e:3e:59:c5:ae:51:00:6c:e0:2e:5c: 6f:18:e8:9d:d9:bc:4a:d0:5f:28:f6:87:ed:5a:33:cd:c4:4a: d4:a1:ca:e7:b5:03:1a:9e:dd:b1:09:a1:f3:ba:e4:09:d2:d7: 5d:c1:09:a7:78:d2:e6:31:98:a9:f2:47:5a:a3:1d:f9:48:57: 62:07:74:dc:b7:b0:91:77:6b:e0:23:11:2d:cc:76:f0:24:df: fc:71:2c:08:46:2d:d4:6b:8b:95:1e:29:d6:11:3c:5f:6e:31: de:1c:2e:d1:b6:a1:2f:d3:37:45:92:c2:e8:e3:7d:48:12:96: 4f:0c:92:b5:f4:92:34:c7:e4:0e:05:6c:59:68:ba:93:09:ab: 1f:8a:c1:90:3c:25:38:4d:c7:5a:d9:f5:ef:73:51:05:25:07: 44:5a:4d:43:cb:fb:d6:2d:33:24:31:8d:64:f7:91:03:71:7e: 99:bc:20:d2 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICARgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Q0U5NzgxMTAvBgNVBAUTKDQ1OTRGMkVDMTdERjU2QzNEMDY1NDBGMzY2RDJBRjEx OEIzMTdGMUUwHhcNMjUwNzAyMTQ1NTMwWhcNMjUwNzA5MTQ1NTMwWjAYMRYwFAYD VQQDEw02ODY1NDg2My00OWQ0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAm3Jhb0DqG5FtneoNXpK9sQgqVG+Hhj8KlonPQu4rqfL3TapPJCB8DsE0+gsT sNNoylVkz5gN9fQnWTMw5Z2YB+fI9iM3DmBAdmfGGLwaFoXaukHxrw66Xt460Bnf dg+I1Ljfi9DMX97bhOVrdgHLHy/JE0tqrrBO9NkMue2cliFlkFtE9Eh6kPQs81UL nWx7XgwjDbTJwOq40/gzxdJkELRk3pkNrpbRncAUCnX6caxzzWxKy7gWhgNhXClJ MFJk+ffniNwA2k+kZFzV372L0/Ges6Z5/ffLMImOLlOCyVDnca1otnpX6QQrWscy zAm2pJpztavWiQ/Oga9B9ArXdwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFB9vG+Mz Ed4bTGRW9MBD+aeYtD5VMB8GA1UdIwQYMBaAFEWU8uwX31bD0GVA82bSrxGLMX8e MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDRTk3OC81REI1NTVBQUI4 REExMUVFQkM0QkVDMkRDNEY5QUUwMi9SWlR5N0JmZlZzUFFaVUR6WnRLdkVZc3hm eDQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL1JaVHk3QmZmVnNQUVpVRHpadEt2RVlzeGZ4NC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD RTk3OC81REI1NTVBQUI4REExMUVFQkM0QkVDMkRDNEY5QUUwMi9SWlR5N0JmZlZz UFFaVUR6WnRLdkVZc3hmeDQubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA7wLROwTl8lmQ6Eu6WWOfLA34FijJC021sTl18Kno+oc33hY8WBbCF Gv9YKwzMGFushxWUSoYhCRyhUcSbyqmHBowDwo6LgwO1GyG8rCxGHj5Zxa5RAGzg LlxvGOid2bxK0F8o9oftWjPNxErUocrntQMant2xCaHzuuQJ0tddwQmneNLmMZip 8kdaox35SFdiB3Tct7CRd2vgIxEtzHbwJN/8cSwIRi3Ua4uVHinWETxfbjHeHC7R tqEv0zdFksLo431IEpZPDJK19JI0x+QOBWxZaLqTCasfisGQPCU4Tcda2fXvc1EF JQdEWk1Dy/vWLTMkMY1k95EDcX6ZvCDS -----END CERTIFICATE-----Generated at Thu Jul 3 19:43:31 2025 by rpki-client