$ rpki-client -vvf rpki.apnic.net/member_repository/A91180E8/3A9FAC54E9D611EF8D04B677C4F9AE02/Z_KbNaiUKqa39Brvs0oGdv1pUJc.mft File: Z_KbNaiUKqa39Brvs0oGdv1pUJc.mft (raw, json) Hash identifier: iYqvvCT7EkGn3y1q09rWm73oag21VhHf1xxvI3S4y7Y= Subject key identifier: 77:B0:39:4F:3B:D5:7E:75:33:65:83:01:3A:A1:02:1D:2B:7D:BD:0B Authority key identifier: 67:F2:9B:35:A8:94:2A:A6:B7:F4:1A:EF:B3:4A:06:76:FD:69:50:97 Certificate issuer: /CN=A91180E8/serialNumber=67F29B35A8942AA6B7F41AEFB34A0676FD695097 Certificate serial: 42 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Z_KbNaiUKqa39Brvs0oGdv1pUJc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91180E8/3A9FAC54E9D611EF8D04B677C4F9AE02/Z_KbNaiUKqa39Brvs0oGdv1pUJc.mft Manifest number: 41 Signing time: Thu 19 Jun 2025 06:48:53 +0000 Manifest this update: Thu 19 Jun 2025 06:48:53 +0000 Manifest next update: Thu 26 Jun 2025 06:48:53 +0000 Files and hashes: 1: Z_KbNaiUKqa39Brvs0oGdv1pUJc.crl (hash: J4Y0HyFTySovam7SuyqitWXrmkbPsirRpKr/AsWjuZI=) 2: E368BEF2E9D611EFAC604979C4F9AE02.roa (hash: HfXLWtads28iS5LrLz0AFXei2F6BGIFKfg02w7QPxkY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91180E8/3A9FAC54E9D611EF8D04B677C4F9AE02/Z_KbNaiUKqa39Brvs0oGdv1pUJc.crl rsync://rpki.apnic.net/member_repository/A91180E8/3A9FAC54E9D611EF8D04B677C4F9AE02/Z_KbNaiUKqa39Brvs0oGdv1pUJc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Z_KbNaiUKqa39Brvs0oGdv1pUJc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 26 Jun 2025 06:48:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 66 (0x42) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91180E8, serialNumber=67F29B35A8942AA6B7F41AEFB34A0676FD695097 Validity Not Before: Jun 19 06:48:53 2025 GMT Not After : Jun 26 06:48:53 2025 GMT Subject: CN=6853b2d5-3322 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:8a:86:72:5e:b0:de:eb:05:66:20:1d:22:15: bd:b9:fc:d3:cf:aa:e5:2a:26:a4:4b:e5:90:7c:bf: 28:1d:f6:9f:26:b8:28:bc:4f:21:cb:d9:43:86:3b: ee:f0:02:8e:2c:94:c1:f3:34:f3:09:dc:20:9a:52: 33:38:b5:bc:32:f9:9f:34:d3:fd:52:21:66:69:43: 71:b6:3a:ed:ad:53:09:b0:3b:7a:5e:d3:44:13:e5: 10:4a:f8:c7:3e:3e:a2:ca:b9:03:8f:ec:d3:83:34: 05:8e:a2:3b:72:3e:84:9c:ef:6a:3b:18:6b:c0:9a: 8b:d6:09:c5:ce:53:67:5b:7c:38:e9:c8:6a:34:a3: 59:76:d5:ef:3c:0b:04:60:20:01:d2:31:43:79:9f: 45:d8:bd:1b:02:81:26:d2:d7:10:3c:c4:e9:89:c7: 07:d5:08:11:eb:0e:ff:c8:78:94:72:f0:61:d0:f3: be:95:ad:9b:a2:20:4f:c5:fa:08:a6:53:35:87:8a: 06:b4:dc:b9:bf:17:2f:79:5b:60:f8:0f:c7:e0:87: 86:f2:19:0e:62:0e:ad:97:18:09:20:70:2d:29:ca: 3e:62:31:1b:06:eb:b6:fb:68:b9:ba:b6:36:d7:0a: 57:d6:4d:c0:db:73:97:f0:18:a3:e1:4f:f7:96:a9: bc:49 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 77:B0:39:4F:3B:D5:7E:75:33:65:83:01:3A:A1:02:1D:2B:7D:BD:0B X509v3 Authority Key Identifier: keyid:67:F2:9B:35:A8:94:2A:A6:B7:F4:1A:EF:B3:4A:06:76:FD:69:50:97 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91180E8/3A9FAC54E9D611EF8D04B677C4F9AE02/Z_KbNaiUKqa39Brvs0oGdv1pUJc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Z_KbNaiUKqa39Brvs0oGdv1pUJc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91180E8/3A9FAC54E9D611EF8D04B677C4F9AE02/Z_KbNaiUKqa39Brvs0oGdv1pUJc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 82:df:ba:63:0f:d9:e6:9c:8b:23:b9:02:3a:be:c8:49:91:d9: 34:90:30:9e:56:b2:9c:35:1e:f4:61:e2:7b:63:51:6a:9d:e0: bf:32:cb:d1:0c:92:48:b4:d6:18:bb:af:fa:9d:75:7b:2f:ae: a4:40:21:7a:c6:05:f4:0c:7f:15:e3:09:f6:bf:66:92:a8:9e: 10:2b:84:27:9a:01:b7:43:6f:79:8d:81:c7:c6:fd:71:3f:fb: ae:f6:1f:71:07:4f:a8:c1:ec:73:0e:44:21:c8:28:45:23:7b: 53:99:1f:7c:1b:6b:de:7a:f5:4d:2c:87:38:cc:5d:e1:bc:f7: fa:10:10:33:17:7a:6a:86:82:a7:e4:49:6c:eb:32:a1:66:2e: 35:1a:c1:ae:ff:df:d1:e3:60:20:6d:ce:fa:93:fa:b7:01:9a: 72:01:8a:3a:95:f1:99:2e:4d:1a:40:97:7d:95:64:b8:9d:34: 7b:d7:81:14:2a:9e:7e:77:fd:14:3f:fc:a6:ab:fd:72:e0:9a: 21:d2:1e:b2:b7:c1:f6:b4:65:03:9b:f1:3b:d2:48:a9:01:96: 53:0e:76:fd:e7:da:ba:ba:dc:b8:34:52:24:23:29:67:4e:76: b9:0f:a1:14:9e:8f:6c:d1:c0:98:85:96:ea:72:19:16:d8:cb: 40:7c:a9:c3 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBQjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTEx ODBFODExMC8GA1UEBRMoNjdGMjlCMzVBODk0MkFBNkI3RjQxQUVGQjM0QTA2NzZG RDY5NTA5NzAeFw0yNTA2MTkwNjQ4NTNaFw0yNTA2MjYwNjQ4NTNaMBgxFjAUBgNV BAMTDTY4NTNiMmQ1LTMzMjIwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQC2ioZyXrDe6wVmIB0iFb25/NPPquUqJqRL5ZB8vygd9p8muCi8TyHL2UOGO+7w Ao4slMHzNPMJ3CCaUjM4tbwy+Z800/1SIWZpQ3G2Ou2tUwmwO3pe00QT5RBK+Mc+ PqLKuQOP7NODNAWOojtyPoSc72o7GGvAmovWCcXOU2dbfDjpyGo0o1l21e88CwRg IAHSMUN5n0XYvRsCgSbS1xA8xOmJxwfVCBHrDv/IeJRy8GHQ876VrZuiIE/F+gim UzWHiga03Lm/Fy95W2D4D8fgh4byGQ5iDq2XGAkgcC0pyj5iMRsG67b7aLm6tjbX ClfWTcDbc5fwGKPhT/eWqbxJAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUd7A5TzvV fnUzZYMBOqECHSt9vQswHwYDVR0jBBgwFoAUZ/KbNaiUKqa39Brvs0oGdv1pUJcw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTE4MEU4LzNBOUZBQzU0RTlE NjExRUY4RDA0QjY3N0M0RjlBRTAyL1pfS2JOYWlVS3FhMzlCcnZzMG9HZHYxcFVK Yy5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvWl9LYk5haVVLcWEzOUJydnMwb0dkdjFwVUpjLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTE4 MEU4LzNBOUZBQzU0RTlENjExRUY4RDA0QjY3N0M0RjlBRTAyL1pfS2JOYWlVS3Fh MzlCcnZzMG9HZHYxcFVKYy5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAILfumMP2eaciyO5Ajq+yEmR2TSQMJ5Wspw1HvRh4ntjUWqd4L8yy9EM kki01hi7r/qddXsvrqRAIXrGBfQMfxXjCfa/ZpKonhArhCeaAbdDb3mNgcfG/XE/ +672H3EHT6jB7HMORCHIKEUje1OZH3wba9569U0shzjMXeG89/oQEDMXemqGgqfk SWzrMqFmLjUawa7/39HjYCBtzvqT+rcBmnIBijqV8ZkuTRpAl32VZLidNHvXgRQq nn53/RQ//Kar/XLgmiHSHrK3wfa0ZQOb8TvSSKkBllMOdv3n2rq63Lg0UiQjKWdO drkPoRSej2zRwJiFlupyGRbYy0B8qcM= -----END CERTIFICATE-----Generated at Fri Jun 20 01:53:15 2025 by rpki-client