$ rpki-client -vvf rpki.apnic.net/member_repository/A91E4743/670F8092BB6F11EA961FB84EC4F9AE02/ZVQs7CgRH8VLo9Ku4z9M6Ht_kK0.mft File: ZVQs7CgRH8VLo9Ku4z9M6Ht_kK0.mft (raw, json) Hash identifier: 2gjYpGudM9WsY5TzH965z7Y0CPgtOV9jDe2GXR2+7LE= Subject key identifier: B4:B1:BE:E6:14:1A:E5:3D:58:DD:74:7F:24:80:90:AD:B2:20:31:8F Authority key identifier: 65:54:2C:EC:28:11:1F:C5:4B:A3:D2:AE:E3:3F:4C:E8:7B:7F:90:AD Certificate issuer: /CN=A91E4743/serialNumber=65542CEC28111FC54BA3D2AEE33F4CE87B7F90AD Certificate serial: 08BA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ZVQs7CgRH8VLo9Ku4z9M6Ht_kK0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E4743/670F8092BB6F11EA961FB84EC4F9AE02/ZVQs7CgRH8VLo9Ku4z9M6Ht_kK0.mft Manifest number: 08B1 Signing time: Mon 30 Jun 2025 20:44:18 +0000 Manifest this update: Mon 30 Jun 2025 20:44:18 +0000 Manifest next update: Mon 07 Jul 2025 20:44:17 +0000 Files and hashes: 1: ZVQs7CgRH8VLo9Ku4z9M6Ht_kK0.crl (hash: iNNt6wGYMBT7bTLHMPsqdQuIUnUzbJqVPzJXwH1NkNE=) 2: 1B2E0738BB7011EA93F7DE4EC4F9AE02.roa (hash: Kkq3FSGMJtrxAckL14K8lEjZBbSHWGV4MxpopXgePZY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E4743/670F8092BB6F11EA961FB84EC4F9AE02/ZVQs7CgRH8VLo9Ku4z9M6Ht_kK0.crl rsync://rpki.apnic.net/member_repository/A91E4743/670F8092BB6F11EA961FB84EC4F9AE02/ZVQs7CgRH8VLo9Ku4z9M6Ht_kK0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ZVQs7CgRH8VLo9Ku4z9M6Ht_kK0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 07 Jul 2025 20:44:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2234 (0x8ba) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E4743, serialNumber=65542CEC28111FC54BA3D2AEE33F4CE87B7F90AD Validity Not Before: Jun 30 20:44:18 2025 GMT Not After : Jul 7 20:44:17 2025 GMT Subject: CN=6862f722-00a3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dd:09:06:81:6c:08:9f:5d:b9:dd:70:f2:92:e9: a8:ed:c4:e5:e9:02:67:b2:68:fd:7f:ce:06:69:19: 0a:e1:9f:f0:45:1a:cd:d3:d7:eb:b5:ff:b0:fd:ad: d9:d9:2c:ed:21:e8:5e:35:18:68:50:50:f5:81:57: 16:5c:5e:ce:c4:1c:2b:7b:be:3f:70:41:0c:39:17: 74:e6:a8:cf:c9:80:2e:12:e9:5c:1d:f6:b4:17:c8: 0f:8e:6b:11:23:e9:fc:5c:3f:4f:f2:c1:f5:6c:c4: fe:94:6c:88:66:94:f7:85:67:44:b6:63:80:f8:f9: 56:4d:9b:69:01:86:4c:04:1b:41:0b:cd:cc:ef:fc: 75:0e:1f:76:ae:3f:e8:a3:f8:25:da:cc:c4:4f:ab: c1:bb:a0:c9:e4:9f:b3:49:fb:cb:7d:ba:83:e5:fb: b0:7e:6c:fc:87:51:fa:d1:5d:6b:f3:0d:40:e5:ce: 58:fc:7e:74:c4:af:8e:86:56:7d:09:43:36:83:0a: de:4a:96:bc:67:5e:49:9e:0c:87:cf:20:45:ca:38: 8f:01:df:32:de:4d:07:3f:e8:ed:d3:fe:e0:4a:60: 87:ee:95:2c:bb:dc:83:58:72:d0:cc:08:d7:54:b2: df:22:0e:fd:32:39:a2:0d:10:06:11:ea:17:69:0d: 35:3f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B4:B1:BE:E6:14:1A:E5:3D:58:DD:74:7F:24:80:90:AD:B2:20:31:8F X509v3 Authority Key Identifier: keyid:65:54:2C:EC:28:11:1F:C5:4B:A3:D2:AE:E3:3F:4C:E8:7B:7F:90:AD X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E4743/670F8092BB6F11EA961FB84EC4F9AE02/ZVQs7CgRH8VLo9Ku4z9M6Ht_kK0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ZVQs7CgRH8VLo9Ku4z9M6Ht_kK0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E4743/670F8092BB6F11EA961FB84EC4F9AE02/ZVQs7CgRH8VLo9Ku4z9M6Ht_kK0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 6a:0b:c4:93:c3:3a:e6:11:26:62:6c:26:f6:2d:50:73:25:f2: 99:0e:e5:74:b6:c4:f3:fd:ed:55:23:3d:44:9a:bf:e7:d3:5a: 3b:86:50:5b:23:8a:e4:64:1c:ae:1d:e5:8b:f7:27:54:54:ee: dc:d8:34:0d:1b:86:9f:77:d1:2b:36:fd:aa:d9:d4:59:f2:d8: d1:e8:e1:6a:1f:43:62:0b:0c:bd:b0:91:65:4c:cf:55:30:c9: c2:7c:38:f8:c3:68:c1:c9:e3:95:e1:05:61:1d:71:4e:67:ca: 7b:0e:0d:69:62:fc:4b:fd:ee:53:cb:01:5b:83:14:57:93:4b: 74:ec:e0:3a:92:3e:95:54:b3:ca:d3:9c:b1:bb:8d:fb:4b:3b: 45:bd:6a:c8:3a:28:07:5a:83:50:81:53:05:79:e4:2c:3c:4f: 0c:89:cc:1e:d6:5b:11:76:38:3e:c0:a4:41:7f:4a:f9:0d:82: c1:79:17:fa:4f:08:d4:7c:7b:3a:b9:b0:02:fb:19:b1:bf:e0: 1e:d9:8c:a7:c7:76:52:93:47:17:27:01:76:35:48:aa:ed:c6: 00:0b:63:40:45:22:04:53:16:9d:fb:3a:56:2e:28:d7:92:a2: c3:3c:d2:f0:40:44:78:79:b9:61:2a:eb:da:91:7e:05:83:29: 3b:b3:77:fa -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCLowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTQ3NDMxMTAvBgNVBAUTKDY1NTQyQ0VDMjgxMTFGQzU0QkEzRDJBRUUzM0Y0Q0U4 N0I3RjkwQUQwHhcNMjUwNjMwMjA0NDE4WhcNMjUwNzA3MjA0NDE3WjAYMRYwFAYD VQQDEw02ODYyZjcyMi0wMGEzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA3QkGgWwIn1253XDykumo7cTl6QJnsmj9f84GaRkK4Z/wRRrN09frtf+w/a3Z 2SztIeheNRhoUFD1gVcWXF7OxBwre74/cEEMORd05qjPyYAuEulcHfa0F8gPjmsR I+n8XD9P8sH1bMT+lGyIZpT3hWdEtmOA+PlWTZtpAYZMBBtBC83M7/x1Dh92rj/o o/gl2szET6vBu6DJ5J+zSfvLfbqD5fuwfmz8h1H60V1r8w1A5c5Y/H50xK+OhlZ9 CUM2gwreSpa8Z15JngyHzyBFyjiPAd8y3k0HP+jt0/7gSmCH7pUsu9yDWHLQzAjX VLLfIg79MjmiDRAGEeoXaQ01PwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFLSxvuYU GuU9WN10fySAkK2yIDGPMB8GA1UdIwQYMBaAFGVULOwoER/FS6PSruM/TOh7f5Ct MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFNDc0My82NzBGODA5MkJC NkYxMUVBOTYxRkI4NEVDNEY5QUUwMi9aVlFzN0NnUkg4VkxvOUt1NHo5TTZIdF9r SzAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1pWUXM3Q2dSSDhWTG85S3U0ejlNNkh0X2tLMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF NDc0My82NzBGODA5MkJCNkYxMUVBOTYxRkI4NEVDNEY5QUUwMi9aVlFzN0NnUkg4 VkxvOUt1NHo5TTZIdF9rSzAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBqC8STwzrmESZibCb2LVBzJfKZDuV0tsTz/e1VIz1Emr/n01o7hlBb I4rkZByuHeWL9ydUVO7c2DQNG4afd9ErNv2q2dRZ8tjR6OFqH0NiCwy9sJFlTM9V MMnCfDj4w2jByeOV4QVhHXFOZ8p7Dg1pYvxL/e5TywFbgxRXk0t07OA6kj6VVLPK 05yxu437SztFvWrIOigHWoNQgVMFeeQsPE8Micwe1lsRdjg+wKRBf0r5DYLBeRf6 TwjUfHs6ubAC+xmxv+Ae2Yynx3ZSk0cXJwF2NUiq7cYAC2NARSIEUxad+zpWLijX kqLDPNLwQER4eblhKuvakX4Fgyk7s3f6 -----END CERTIFICATE-----Generated at Wed Jul 2 02:22:27 2025 by rpki-client