$ rpki-client -vvf rpki.apnic.net/member_repository/A91ED8E0/EE2D5326B94711EA8A649E76C4F9AE02/zFQZyKeLzVOtFxxbdKQHHZU5UEk.mft File: zFQZyKeLzVOtFxxbdKQHHZU5UEk.mft (raw, json) Hash identifier: k1FuZaP5pTrLIqHlSdjX/iCzM1m1ALNBSZOZ659HRi8= Subject key identifier: 7B:4C:D0:15:DC:94:D8:5D:1C:26:D9:5E:44:C8:9B:BC:27:AC:FE:FE Authority key identifier: CC:54:19:C8:A7:8B:CD:53:AD:17:1C:5B:74:A4:07:1D:95:39:50:49 Certificate issuer: /CN=A91ED8E0/serialNumber=CC5419C8A78BCD53AD171C5B74A4071D95395049 Certificate serial: 08D7 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/zFQZyKeLzVOtFxxbdKQHHZU5UEk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91ED8E0/EE2D5326B94711EA8A649E76C4F9AE02/zFQZyKeLzVOtFxxbdKQHHZU5UEk.mft Manifest number: 08C4 Signing time: Fri 04 Jul 2025 20:50:15 +0000 Manifest this update: Fri 04 Jul 2025 20:50:15 +0000 Manifest next update: Fri 11 Jul 2025 20:50:15 +0000 Files and hashes: 1: zFQZyKeLzVOtFxxbdKQHHZU5UEk.crl (hash: OucJytMf1FW3p8jkUdbtWiMMvMR10ppjZ2tE9qdlE30=) 2: 2BEC62FA5DA011EF8E541175C4F9AE02.roa (hash: Lf66bh+3Et1Lkm6u/02OMdLBMs0RMDBcaf4uO2zLo2Q=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91ED8E0/EE2D5326B94711EA8A649E76C4F9AE02/zFQZyKeLzVOtFxxbdKQHHZU5UEk.crl rsync://rpki.apnic.net/member_repository/A91ED8E0/EE2D5326B94711EA8A649E76C4F9AE02/zFQZyKeLzVOtFxxbdKQHHZU5UEk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/zFQZyKeLzVOtFxxbdKQHHZU5UEk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 10 Jul 2025 03:15:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2263 (0x8d7) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91ED8E0, serialNumber=CC5419C8A78BCD53AD171C5B74A4071D95395049 Validity Not Before: Jul 4 20:50:15 2025 GMT Not After : Jul 11 20:50:15 2025 GMT Subject: CN=68683e87-06ad Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e1:73:6c:07:d0:46:c1:6a:bd:f3:fd:41:40:54: d0:fd:c8:f4:19:36:46:9b:70:4f:98:8e:c8:de:f9: 43:7a:bd:6d:9e:79:b3:8f:4d:99:23:57:c8:8b:56: 90:26:07:0f:93:db:4f:b1:e7:9e:ce:63:56:12:6f: 11:4c:33:2e:06:37:da:82:88:ef:49:32:17:b5:42: 5b:ce:66:01:e3:d8:97:c7:b2:86:cc:75:ee:7c:36: 88:9c:bf:79:64:e8:c6:ba:2d:b5:c2:45:c2:36:91: 24:f8:47:a9:e0:60:56:7b:e8:46:e0:0f:57:ba:f8: a1:36:8e:9b:ae:c8:33:a2:6c:56:79:f0:4c:22:83: ee:59:56:41:31:c6:fb:9d:c4:ca:4c:02:02:ff:87: 23:79:85:b7:6e:a4:52:27:1d:22:16:e9:23:80:8e: 94:83:c4:d5:90:2e:df:03:86:84:dd:25:b3:d3:0a: 52:ee:c6:45:d8:72:8b:7b:d1:8f:d3:ed:4e:4c:d3: da:3d:05:69:12:35:9a:b9:6d:e1:c6:60:7b:b0:e9: 8d:85:7c:06:6a:81:8f:da:d4:d7:dd:42:1e:5e:09: 23:39:eb:05:f9:47:19:83:50:24:16:dd:04:28:10: 8c:6b:99:c4:1f:a5:b0:ad:39:17:d1:51:32:30:f2: 98:83 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7B:4C:D0:15:DC:94:D8:5D:1C:26:D9:5E:44:C8:9B:BC:27:AC:FE:FE X509v3 Authority Key Identifier: keyid:CC:54:19:C8:A7:8B:CD:53:AD:17:1C:5B:74:A4:07:1D:95:39:50:49 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91ED8E0/EE2D5326B94711EA8A649E76C4F9AE02/zFQZyKeLzVOtFxxbdKQHHZU5UEk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/zFQZyKeLzVOtFxxbdKQHHZU5UEk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91ED8E0/EE2D5326B94711EA8A649E76C4F9AE02/zFQZyKeLzVOtFxxbdKQHHZU5UEk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption ab:e3:c4:80:42:41:f6:35:1f:07:74:74:97:07:c4:f8:82:17: c3:87:2d:25:a2:24:cf:fa:bd:20:87:3c:92:17:79:f0:11:da: 64:1b:c9:ac:26:f9:82:a4:8f:98:a9:62:7d:78:8b:70:d2:5f: d6:46:7f:65:a9:d9:a2:00:a4:30:3a:42:9b:90:4f:da:37:67: a8:0a:25:c8:5b:a1:9c:3d:11:c0:f0:c8:56:ba:fa:f5:f2:54: e6:97:b2:45:60:e3:bc:6e:98:93:8c:cf:40:90:f1:64:a4:2b: a3:7c:dc:a0:82:b0:6a:b5:00:e3:7c:cf:60:6d:57:98:9e:d3: ef:7b:1b:09:af:e7:32:e8:ee:5e:05:56:06:83:c0:82:e4:a4: 46:77:44:3e:a1:04:2f:22:ad:0f:3c:a7:10:f5:26:cc:5f:db: bf:52:9e:ef:10:1e:c7:a7:c3:23:ac:e0:43:cc:0f:5c:53:54: e3:e7:c3:44:a9:a2:94:71:97:9d:60:e5:2d:94:4a:82:1b:d6: 63:ce:f3:64:8c:d3:9b:3b:42:97:77:01:e0:85:2f:bc:40:cf: 53:c0:fa:4e:59:86:13:5f:19:30:5c:c6:15:ed:4d:e4:f8:33: 35:18:c6:23:a5:13:b9:2a:e3:08:f1:37:2e:97:e5:17:4f:c0: 22:32:21:a1 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCNcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RUQ4RTAxMTAvBgNVBAUTKENDNTQxOUM4QTc4QkNENTNBRDE3MUM1Qjc0QTQwNzFE OTUzOTUwNDkwHhcNMjUwNzA0MjA1MDE1WhcNMjUwNzExMjA1MDE1WjAYMRYwFAYD VQQDEw02ODY4M2U4Ny0wNmFkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA4XNsB9BGwWq98/1BQFTQ/cj0GTZGm3BPmI7I3vlDer1tnnmzj02ZI1fIi1aQ JgcPk9tPseeezmNWEm8RTDMuBjfagojvSTIXtUJbzmYB49iXx7KGzHXufDaInL95 ZOjGui21wkXCNpEk+Eep4GBWe+hG4A9XuvihNo6brsgzomxWefBMIoPuWVZBMcb7 ncTKTAIC/4cjeYW3bqRSJx0iFukjgI6Ug8TVkC7fA4aE3SWz0wpS7sZF2HKLe9GP 0+1OTNPaPQVpEjWauW3hxmB7sOmNhXwGaoGP2tTX3UIeXgkjOesF+UcZg1AkFt0E KBCMa5nEH6WwrTkX0VEyMPKYgwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFHtM0BXc lNhdHCbZXkTIm7wnrP7+MB8GA1UdIwQYMBaAFMxUGcini81TrRccW3SkBx2VOVBJ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFRDhFMC9FRTJENTMyNkI5 NDcxMUVBOEE2NDlFNzZDNEY5QUUwMi96RlFaeUtlTHpWT3RGeHhiZEtRSEhaVTVV RWsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3pGUVp5S2VMelZPdEZ4eGJkS1FISFpVNVVFay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF RDhFMC9FRTJENTMyNkI5NDcxMUVBOEE2NDlFNzZDNEY5QUUwMi96RlFaeUtlTHpW T3RGeHhiZEtRSEhaVTVVRWsubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCr48SAQkH2NR8HdHSXB8T4ghfDhy0loiTP+r0ghzySF3nwEdpkG8ms JvmCpI+YqWJ9eItw0l/WRn9lqdmiAKQwOkKbkE/aN2eoCiXIW6GcPRHA8MhWuvr1 8lTml7JFYOO8bpiTjM9AkPFkpCujfNyggrBqtQDjfM9gbVeYntPvexsJr+cy6O5e BVYGg8CC5KRGd0Q+oQQvIq0PPKcQ9SbMX9u/Up7vEB7Hp8MjrOBDzA9cU1Tj58NE qaKUcZedYOUtlEqCG9ZjzvNkjNObO0KXdwHghS+8QM9TwPpOWYYTXxkwXMYV7U3k +DM1GMYjpRO5KuMI8Tcul+UXT8AiMiGh -----END CERTIFICATE-----Generated at Sun Jul 6 01:02:10 2025 by rpki-client