$ rpki-client -vvf rpki.apnic.net/member_repository/A91EBFB0/A3AB43B2F87C11E9AA2CF158C4F9AE02/zIUJ0x-2Oo3da_LT2Ex7wLK6P8A.mft File: zIUJ0x-2Oo3da_LT2Ex7wLK6P8A.mft (raw, json) Hash identifier: scjH91qrOQDwvloyEZu0F3Mlvn3KZCKmpzcwVTamFoE= Subject key identifier: 41:01:49:EC:9E:C9:79:E7:53:3D:CA:E3:D7:2B:B2:2D:C0:35:94:88 Authority key identifier: CC:85:09:D3:1F:B6:3A:8D:DD:6B:F2:D3:D8:4C:7B:C0:B2:BA:3F:C0 Certificate issuer: /CN=A91EBFB0/serialNumber=CC8509D31FB63A8DDD6BF2D3D84C7BC0B2BA3FC0 Certificate serial: 0C97 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/zIUJ0x-2Oo3da_LT2Ex7wLK6P8A.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91EBFB0/A3AB43B2F87C11E9AA2CF158C4F9AE02/zIUJ0x-2Oo3da_LT2Ex7wLK6P8A.mft Manifest number: 0C91 Signing time: Mon 30 Jun 2025 18:24:46 +0000 Manifest this update: Mon 30 Jun 2025 18:24:46 +0000 Manifest next update: Mon 07 Jul 2025 18:24:46 +0000 Files and hashes: 1: zIUJ0x-2Oo3da_LT2Ex7wLK6P8A.crl (hash: wFRcOAW+QQz1sH97au/JuI7Mpy7uGVa1nMV5z2W0TMI=) 2: F690CAECF87D11E9A746D05BC4F9AE02.roa (hash: tPAGXaSYisbjEXVlWGxE30ABgdsZwLOrekyu2J6vfbg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91EBFB0/A3AB43B2F87C11E9AA2CF158C4F9AE02/zIUJ0x-2Oo3da_LT2Ex7wLK6P8A.crl rsync://rpki.apnic.net/member_repository/A91EBFB0/A3AB43B2F87C11E9AA2CF158C4F9AE02/zIUJ0x-2Oo3da_LT2Ex7wLK6P8A.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/zIUJ0x-2Oo3da_LT2Ex7wLK6P8A.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 07 Jul 2025 18:24:45 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3223 (0xc97) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91EBFB0, serialNumber=CC8509D31FB63A8DDD6BF2D3D84C7BC0B2BA3FC0 Validity Not Before: Jun 30 18:24:46 2025 GMT Not After : Jul 7 18:24:46 2025 GMT Subject: CN=6862d66e-1141 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ec:4b:e0:a1:8b:f7:98:cb:08:83:fd:b9:05:10: 60:fb:db:8d:69:b1:da:d6:00:66:2a:7f:16:5b:c1: f3:11:79:30:28:97:0d:97:dd:4f:42:b1:c1:8c:2e: f6:47:7d:02:ae:74:2c:35:ec:08:94:98:8c:83:c9: 2b:4b:fd:5d:77:93:3b:55:8a:ff:e8:e9:79:1d:04: b4:e9:27:9f:a9:79:17:5c:c0:37:58:8a:02:9a:8d: 1e:78:95:24:00:c5:59:84:fc:8f:0c:ce:53:ce:98: 74:af:e1:cc:1a:0d:9f:22:b3:c3:d2:bc:55:ca:de: ac:a7:32:2e:cc:8a:6c:f7:bf:ff:3c:ea:ac:ae:79: c6:da:76:23:8b:1b:d4:86:df:7b:bb:62:d7:4f:d6: 5a:64:9c:71:b8:6e:0d:05:47:04:6f:4d:a0:c9:2e: 35:84:80:07:8a:70:7a:7c:67:1e:70:4a:9d:9b:3a: 7a:c1:88:18:18:3e:7d:e5:c1:4c:9d:eb:7c:84:65: 3d:e2:31:bc:22:d3:95:00:7a:6b:29:ab:9e:01:be: 51:83:5a:ed:8f:8e:5f:f3:44:55:72:64:46:ae:ba: af:21:9d:bb:45:6e:8f:75:0b:b6:31:3f:32:4f:7b: 1f:1e:f6:50:71:09:e3:2f:35:b9:7b:b0:0c:76:6b: d1:63 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 41:01:49:EC:9E:C9:79:E7:53:3D:CA:E3:D7:2B:B2:2D:C0:35:94:88 X509v3 Authority Key Identifier: keyid:CC:85:09:D3:1F:B6:3A:8D:DD:6B:F2:D3:D8:4C:7B:C0:B2:BA:3F:C0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91EBFB0/A3AB43B2F87C11E9AA2CF158C4F9AE02/zIUJ0x-2Oo3da_LT2Ex7wLK6P8A.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/zIUJ0x-2Oo3da_LT2Ex7wLK6P8A.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91EBFB0/A3AB43B2F87C11E9AA2CF158C4F9AE02/zIUJ0x-2Oo3da_LT2Ex7wLK6P8A.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 96:6b:5a:f7:a1:4d:f8:6c:6d:2e:ec:5c:bf:85:63:3e:3f:57: 07:98:83:40:7e:fc:e1:83:30:44:1f:12:28:62:0b:5c:6c:17: 49:98:80:c0:ee:92:58:2a:1a:d3:6e:1f:68:cb:88:94:2e:76: 05:50:c6:58:e5:80:36:ce:5f:ab:77:02:50:f4:dd:7f:8b:bb: 0e:89:23:ec:cb:8f:a7:53:b5:be:d5:48:34:06:ab:4f:06:02: 6a:d0:3a:dd:b4:31:76:e7:6b:34:b2:5e:f7:67:b5:df:ff:98: 5c:c0:ba:1d:1b:fd:28:b0:a1:4d:f4:8b:74:00:51:15:18:45: 1e:ee:86:f7:eb:fe:1e:00:dd:c5:c6:49:a4:47:53:45:9b:be: 2e:fb:a1:7a:d2:04:b7:c4:59:70:96:86:58:f6:d2:7d:f3:dc: 42:aa:ff:88:3c:4c:da:47:b3:2e:e8:9a:a9:7c:0e:01:67:e1: 64:21:f9:e3:8c:c0:b7:37:8f:5b:58:6c:f1:82:07:82:23:ce: af:a5:eb:ab:b6:d9:7d:03:6d:01:c7:99:a2:95:0c:26:3b:6e: a6:b0:3c:c4:83:f8:09:a9:60:e1:80:1f:42:a3:d5:a9:72:da: 6b:a4:76:d0:fc:ce:d5:bc:6c:38:fe:7b:d5:18:72:f5:ab:e9: 4a:d7:72:c3 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDJcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RUJGQjAxMTAvBgNVBAUTKENDODUwOUQzMUZCNjNBOERERDZCRjJEM0Q4NEM3QkMw QjJCQTNGQzAwHhcNMjUwNjMwMTgyNDQ2WhcNMjUwNzA3MTgyNDQ2WjAYMRYwFAYD VQQDEw02ODYyZDY2ZS0xMTQxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA7EvgoYv3mMsIg/25BRBg+9uNabHa1gBmKn8WW8HzEXkwKJcNl91PQrHBjC72 R30CrnQsNewIlJiMg8krS/1dd5M7VYr/6Ol5HQS06SefqXkXXMA3WIoCmo0eeJUk AMVZhPyPDM5Tzph0r+HMGg2fIrPD0rxVyt6spzIuzIps97//POqsrnnG2nYjixvU ht97u2LXT9ZaZJxxuG4NBUcEb02gyS41hIAHinB6fGcecEqdmzp6wYgYGD595cFM net8hGU94jG8ItOVAHprKaueAb5Rg1rtj45f80RVcmRGrrqvIZ27RW6PdQu2MT8y T3sfHvZQcQnjLzW5e7AMdmvRYwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFEEBSeye yXnnUz3K49crsi3ANZSIMB8GA1UdIwQYMBaAFMyFCdMftjqN3Wvy09hMe8Cyuj/A MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFQkZCMC9BM0FCNDNCMkY4 N0MxMUU5QUEyQ0YxNThDNEY5QUUwMi96SVVKMHgtMk9vM2RhX0xUMkV4N3dMSzZQ OEEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3pJVUoweC0yT28zZGFfTFQyRXg3d0xLNlA4QS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF QkZCMC9BM0FCNDNCMkY4N0MxMUU5QUEyQ0YxNThDNEY5QUUwMi96SVVKMHgtMk9v M2RhX0xUMkV4N3dMSzZQOEEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCWa1r3oU34bG0u7Fy/hWM+P1cHmINAfvzhgzBEHxIoYgtcbBdJmIDA 7pJYKhrTbh9oy4iULnYFUMZY5YA2zl+rdwJQ9N1/i7sOiSPsy4+nU7W+1Ug0BqtP BgJq0DrdtDF252s0sl73Z7Xf/5hcwLodG/0osKFN9It0AFEVGEUe7ob36/4eAN3F xkmkR1NFm74u+6F60gS3xFlwloZY9tJ989xCqv+IPEzaR7Mu6JqpfA4BZ+FkIfnj jMC3N49bWGzxggeCI86vpeurttl9A20Bx5milQwmO26msDzEg/gJqWDhgB9Co9Wp ctprpHbQ/M7VvGw4/nvVGHL1q+lK13LD -----END CERTIFICATE-----Generated at Tue Jul 1 16:56:53 2025 by rpki-client