$ rpki-client -vvf rpki.apnic.net/member_repository/A91EBC61/446BD7A2B6C411EFA24AA616C4F9AE02/ZNKz1lpcbM5NCNeP_tsoVrZB1qM.mft File: ZNKz1lpcbM5NCNeP_tsoVrZB1qM.mft (raw, json) Hash identifier: Etkxd+SSf3uurZX3Hw1enEQjZ44wEJPA37fsqUhlyLY= Subject key identifier: AF:B8:0F:E2:5F:98:15:A9:FC:95:07:37:B2:C1:89:50:07:4B:B9:F4 Authority key identifier: 64:D2:B3:D6:5A:5C:6C:CE:4D:08:D7:8F:FE:DB:28:56:B6:41:D6:A3 Certificate issuer: /CN=A91EBC61/serialNumber=64D2B3D65A5C6CCE4D08D78FFEDB2856B641D6A3 Certificate serial: 6B Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ZNKz1lpcbM5NCNeP_tsoVrZB1qM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91EBC61/446BD7A2B6C411EFA24AA616C4F9AE02/ZNKz1lpcbM5NCNeP_tsoVrZB1qM.mft Manifest number: 6A Signing time: Thu 03 Jul 2025 07:12:23 +0000 Manifest this update: Thu 03 Jul 2025 07:12:22 +0000 Manifest next update: Thu 10 Jul 2025 07:12:22 +0000 Files and hashes: 1: ZNKz1lpcbM5NCNeP_tsoVrZB1qM.crl (hash: b0Y+fEU3nDkofFHMLd7Nwr/dlkx9YpzkwcQd8hNs1g8=) 2: 8D26DADCB6C411EF99C3B758C4F9AE02.roa (hash: BCZ1HJoEZyrIFeiF3ZHLW8BBZXBaO4KH4xqAbBol+hw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91EBC61/446BD7A2B6C411EFA24AA616C4F9AE02/ZNKz1lpcbM5NCNeP_tsoVrZB1qM.crl rsync://rpki.apnic.net/member_repository/A91EBC61/446BD7A2B6C411EFA24AA616C4F9AE02/ZNKz1lpcbM5NCNeP_tsoVrZB1qM.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ZNKz1lpcbM5NCNeP_tsoVrZB1qM.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 10 Jul 2025 03:15:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 107 (0x6b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91EBC61, serialNumber=64D2B3D65A5C6CCE4D08D78FFEDB2856B641D6A3 Validity Not Before: Jul 3 07:12:22 2025 GMT Not After : Jul 10 07:12:22 2025 GMT Subject: CN=68662d56-3803 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a9:27:58:1f:1e:09:62:6b:6a:eb:70:8f:60:e3: a8:c7:8d:f2:08:e7:aa:5c:45:a3:d2:2b:0f:ba:6f: 06:c3:f8:2d:f2:4b:ab:a9:52:4c:07:f0:cc:1a:9f: de:ed:84:5a:c5:2a:8a:e5:a5:ae:73:8b:f7:f3:36: d7:65:1c:8f:b0:54:c0:7a:c9:ca:15:d7:99:43:c8: 5f:38:3d:09:4b:22:f5:3c:b8:ed:2e:c3:f8:38:1b: 9b:b2:7e:9f:c2:e0:4a:e5:4a:13:1c:e1:82:67:1f: 2e:a1:05:00:68:2e:ec:47:31:7f:c1:68:20:95:16: 1f:f0:53:2d:15:69:3e:66:1d:48:53:94:28:ab:c4: dd:00:7d:56:c4:86:4c:97:1d:c3:30:41:22:34:8c: 8f:89:08:49:ea:9c:cb:be:93:06:87:7d:b0:d3:b9: 09:ce:82:f0:7a:57:d0:bf:84:5d:cb:6c:6d:52:e3: 18:1d:b7:ff:50:03:aa:f7:c6:43:37:2f:e8:fc:45: f8:a4:a7:b1:19:bd:ab:50:7a:f7:6a:f0:53:c3:a2: e4:b2:a3:25:6d:fe:5c:a2:92:a5:24:ce:14:90:b5: 8b:bf:1c:0a:05:b4:ca:91:3e:3d:c4:e6:fc:b6:00: cc:5b:eb:32:6f:f6:07:cd:b0:71:a9:9f:c2:12:36: 4f:1f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AF:B8:0F:E2:5F:98:15:A9:FC:95:07:37:B2:C1:89:50:07:4B:B9:F4 X509v3 Authority Key Identifier: keyid:64:D2:B3:D6:5A:5C:6C:CE:4D:08:D7:8F:FE:DB:28:56:B6:41:D6:A3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91EBC61/446BD7A2B6C411EFA24AA616C4F9AE02/ZNKz1lpcbM5NCNeP_tsoVrZB1qM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ZNKz1lpcbM5NCNeP_tsoVrZB1qM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91EBC61/446BD7A2B6C411EFA24AA616C4F9AE02/ZNKz1lpcbM5NCNeP_tsoVrZB1qM.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 0e:c3:f9:7b:82:97:be:b5:1a:53:6d:8e:29:3c:13:46:95:ce: a4:51:8e:da:32:d3:78:93:17:86:07:52:34:0d:b5:10:23:1c: 4c:8c:8a:17:fb:55:d9:45:40:56:d1:12:dd:f6:09:09:6a:e8: ee:07:d8:49:db:59:e9:d0:78:04:a8:13:71:55:85:05:06:93: 89:14:81:30:ed:8f:fa:30:d6:ca:5b:1e:59:c9:46:59:9a:e8: ec:90:5d:05:17:42:df:59:6e:40:7d:15:e7:54:7e:47:fb:ab: 3a:d0:ea:26:c5:33:b3:30:2f:27:6e:f0:ee:6b:78:cb:13:a7: e8:cc:d3:46:50:4d:aa:bb:f6:80:2d:f5:89:2a:ea:2c:0b:3a: 10:1c:cc:23:52:51:27:c8:bd:09:f3:7e:51:61:29:4c:ba:8f: 54:12:10:67:1b:a7:20:29:47:7a:5d:5a:25:a5:22:c0:ba:f7: b5:31:1e:a4:f4:46:75:d8:db:87:f1:eb:64:ac:53:16:cc:38: 35:8b:e0:b2:06:88:70:ab:2c:71:48:be:67:7e:8e:43:6f:66: ac:20:fb:04:6d:da:22:64:85:32:a8:32:08:89:87:86:5e:06: b9:2f:9f:ba:10:cf:b0:30:e3:6e:83:1d:20:68:dc:b8:a0:7c: 8d:be:52:ad -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBazANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFF QkM2MTExMC8GA1UEBRMoNjREMkIzRDY1QTVDNkNDRTREMDhENzhGRkVEQjI4NTZC NjQxRDZBMzAeFw0yNTA3MDMwNzEyMjJaFw0yNTA3MTAwNzEyMjJaMBgxFjAUBgNV BAMTDTY4NjYyZDU2LTM4MDMwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCpJ1gfHglia2rrcI9g46jHjfII56pcRaPSKw+6bwbD+C3yS6upUkwH8Mwan97t hFrFKorlpa5zi/fzNtdlHI+wVMB6ycoV15lDyF84PQlLIvU8uO0uw/g4G5uyfp/C 4ErlShMc4YJnHy6hBQBoLuxHMX/BaCCVFh/wUy0VaT5mHUhTlCirxN0AfVbEhkyX HcMwQSI0jI+JCEnqnMu+kwaHfbDTuQnOgvB6V9C/hF3LbG1S4xgdt/9QA6r3xkM3 L+j8Rfikp7EZvatQevdq8FPDouSyoyVt/lyikqUkzhSQtYu/HAoFtMqRPj3E5vy2 AMxb6zJv9gfNsHGpn8ISNk8fAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUr7gP4l+Y Fan8lQc3ssGJUAdLufQwHwYDVR0jBBgwFoAUZNKz1lpcbM5NCNeP/tsoVrZB1qMw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUVCQzYxLzQ0NkJEN0EyQjZD NDExRUZBMjRBQTYxNkM0RjlBRTAyL1pOS3oxbHBjYk01TkNOZVBfdHNvVnJaQjFx TS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvWk5LejFscGNiTTVOQ05lUF90c29WclpCMXFNLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUVC QzYxLzQ0NkJEN0EyQjZDNDExRUZBMjRBQTYxNkM0RjlBRTAyL1pOS3oxbHBjYk01 TkNOZVBfdHNvVnJaQjFxTS5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAA7D+XuCl761GlNtjik8E0aVzqRRjtoy03iTF4YHUjQNtRAjHEyMihf7 VdlFQFbREt32CQlq6O4H2EnbWenQeASoE3FVhQUGk4kUgTDtj/ow1spbHlnJRlma 6OyQXQUXQt9ZbkB9FedUfkf7qzrQ6ibFM7MwLydu8O5reMsTp+jM00ZQTaq79oAt 9Ykq6iwLOhAczCNSUSfIvQnzflFhKUy6j1QSEGcbpyApR3pdWiWlIsC697UxHqT0 RnXY24fx62SsUxbMODWL4LIGiHCrLHFIvmd+jkNvZqwg+wRt2iJkhTKoMgiJh4Ze Brkvn7oQz7Aw426DHSBo3LigfI2+Uq0= -----END CERTIFICATE-----Generated at Thu Jul 3 23:44:41 2025 by rpki-client