$ rpki-client -vvf rpki.apnic.net/member_repository/A91565C6/D265B0C6F41F11EF81708868C4F9AE02/zVNcfrMaQKP9uKxNXVd6-dbFiEg.mft File: zVNcfrMaQKP9uKxNXVd6-dbFiEg.mft (raw, json) Hash identifier: WrDHe0Q45qNxGCk7q2av7gKokKWGxEW6lMA8OND/UzU= Subject key identifier: 64:9F:32:6C:E0:C1:C5:73:85:33:8F:56:14:7D:AE:2C:AE:06:3C:14 Authority key identifier: CD:53:5C:7E:B3:1A:40:A3:FD:B8:AC:4D:5D:57:7A:F9:D6:C5:88:48 Certificate issuer: /CN=A91565C6/serialNumber=CD535C7EB31A40A3FDB8AC4D5D577AF9D6C58848 Certificate serial: 3C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/zVNcfrMaQKP9uKxNXVd6-dbFiEg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91565C6/D265B0C6F41F11EF81708868C4F9AE02/zVNcfrMaQKP9uKxNXVd6-dbFiEg.mft Manifest number: 3A Signing time: Sun 15 Jun 2025 06:38:23 +0000 Manifest this update: Sun 15 Jun 2025 06:38:22 +0000 Manifest next update: Sun 22 Jun 2025 06:38:22 +0000 Files and hashes: 1: zVNcfrMaQKP9uKxNXVd6-dbFiEg.crl (hash: rYfgD0LTJmGuNwcwvoKipkqzohmV8iE1JNtxdfZNJ+4=) 2: 296C92D0F5B611EFB7E6426EC4F9AE02.roa (hash: DAG2avo3wM4Iv7tiFSCw0I7iwE7NYk5jbcu93twLDNo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91565C6/D265B0C6F41F11EF81708868C4F9AE02/zVNcfrMaQKP9uKxNXVd6-dbFiEg.crl rsync://rpki.apnic.net/member_repository/A91565C6/D265B0C6F41F11EF81708868C4F9AE02/zVNcfrMaQKP9uKxNXVd6-dbFiEg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/zVNcfrMaQKP9uKxNXVd6-dbFiEg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 22 Jun 2025 06:38:21 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 60 (0x3c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91565C6, serialNumber=CD535C7EB31A40A3FDB8AC4D5D577AF9D6C58848 Validity Not Before: Jun 15 06:38:22 2025 GMT Not After : Jun 22 06:38:22 2025 GMT Subject: CN=684e6a5e-9606 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:1a:3c:f0:ab:cc:52:f1:1d:9d:02:b6:28:ef: af:77:fd:3e:b1:e3:37:79:1e:b1:de:a7:8b:c7:5e: 3d:0d:23:1f:3c:8f:ae:8f:27:a2:5f:e4:a4:5b:1a: e9:4e:07:84:b7:36:80:eb:66:50:f7:e8:ab:91:81: c0:22:81:26:26:57:86:4e:83:82:81:a7:21:50:77: 8b:ac:fb:2a:83:7b:88:8d:6a:b4:82:20:69:e9:aa: 12:56:91:ce:4f:05:e1:29:8d:e5:31:8c:25:ed:33: 31:62:4d:4e:a6:04:2f:e5:8a:56:04:dd:8f:55:92: 62:85:ce:c3:56:5b:10:49:81:97:70:b2:26:01:24: 3b:e1:2a:b0:e4:a3:a1:8b:cf:78:dd:ad:01:ca:a6: e4:9c:a9:80:7c:b0:a2:bd:9c:28:2f:dd:eb:b8:8a: 49:58:a1:ff:0a:3b:69:bb:05:93:b4:51:63:81:ac: 8a:2c:60:4a:8d:a2:db:fe:72:05:c9:43:d5:bf:0e: 6d:4c:06:4b:aa:f6:5e:e3:5d:fb:c4:aa:2d:36:99: 23:84:c2:aa:f0:fa:f8:f4:ce:dc:11:02:a2:bc:c7: e3:bd:78:f9:87:87:1f:bf:32:63:87:e2:01:39:44: dc:2d:d6:7b:cd:e4:b9:0b:d9:fd:c0:e9:b1:82:29: b7:23 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 64:9F:32:6C:E0:C1:C5:73:85:33:8F:56:14:7D:AE:2C:AE:06:3C:14 X509v3 Authority Key Identifier: keyid:CD:53:5C:7E:B3:1A:40:A3:FD:B8:AC:4D:5D:57:7A:F9:D6:C5:88:48 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91565C6/D265B0C6F41F11EF81708868C4F9AE02/zVNcfrMaQKP9uKxNXVd6-dbFiEg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/zVNcfrMaQKP9uKxNXVd6-dbFiEg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91565C6/D265B0C6F41F11EF81708868C4F9AE02/zVNcfrMaQKP9uKxNXVd6-dbFiEg.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption e6:07:52:39:cf:a1:83:40:1c:f5:2e:cd:d7:6c:da:da:89:6d: 87:38:5b:f5:ea:67:5a:b8:28:93:0c:8c:7e:2e:fe:a9:66:39: 87:cc:ae:9e:16:2e:2e:5e:83:d8:c0:ad:1b:fa:d7:c5:fd:0c: 87:44:9c:c4:f8:58:8d:60:5d:0c:7d:4a:48:44:c2:22:55:a9: 25:cf:28:0d:d5:52:76:01:45:14:3a:c2:27:00:85:5e:c7:51: 1c:1d:e5:69:0d:8a:82:0b:41:ef:4c:23:96:cb:69:2c:d1:cb: 37:49:93:46:ed:de:92:53:a8:66:f1:16:20:30:79:80:c6:52: 24:0a:be:9d:32:d9:a9:6c:fc:16:a9:fa:3a:71:0b:ed:fd:a4: 7c:91:25:c3:78:4e:ea:f7:c5:43:51:01:f4:9d:53:af:37:d3: 7b:c4:56:6c:b2:b2:50:6e:fd:cd:bc:3b:bb:ff:39:22:d0:ea: 3a:81:61:78:b7:70:7d:32:cc:38:33:52:6d:3d:92:c8:5f:f2: f4:c1:21:dc:fc:92:20:91:f8:d3:82:15:69:31:a7:28:b3:02: e9:c5:28:e5:6f:a6:83:ad:78:74:0f:a2:73:0e:d2:60:86:ab: c5:7f:ca:36:58:5b:e8:ad:58:e6:ac:7d:84:92:57:bc:cf:c5: 6f:40:75:1e -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBPDANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE1 NjVDNjExMC8GA1UEBRMoQ0Q1MzVDN0VCMzFBNDBBM0ZEQjhBQzRENUQ1NzdBRjlE NkM1ODg0ODAeFw0yNTA2MTUwNjM4MjJaFw0yNTA2MjIwNjM4MjJaMBgxFjAUBgNV BAMTDTY4NGU2YTVlLTk2MDYwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQC7Gjzwq8xS8R2dArYo7693/T6x4zd5HrHep4vHXj0NIx88j66PJ6Jf5KRbGulO B4S3NoDrZlD36KuRgcAigSYmV4ZOg4KBpyFQd4us+yqDe4iNarSCIGnpqhJWkc5P BeEpjeUxjCXtMzFiTU6mBC/lilYE3Y9VkmKFzsNWWxBJgZdwsiYBJDvhKrDko6GL z3jdrQHKpuScqYB8sKK9nCgv3eu4iklYof8KO2m7BZO0UWOBrIosYEqNotv+cgXJ Q9W/Dm1MBkuq9l7jXfvEqi02mSOEwqrw+vj0ztwRAqK8x+O9ePmHhx+/MmOH4gE5 RNwt1nvN5LkL2f3A6bGCKbcjAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUZJ8ybODB xXOFM49WFH2uLK4GPBQwHwYDVR0jBBgwFoAUzVNcfrMaQKP9uKxNXVd6+dbFiEgw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTU2NUM2L0QyNjVCMEM2RjQx RjExRUY4MTcwODg2OEM0RjlBRTAyL3pWTmNmck1hUUtQOXVLeE5YVmQ2LWRiRmlF Zy5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvelZOY2ZyTWFRS1A5dUt4TlhWZDYtZGJGaUVnLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTU2 NUM2L0QyNjVCMEM2RjQxRjExRUY4MTcwODg2OEM0RjlBRTAyL3pWTmNmck1hUUtQ OXVLeE5YVmQ2LWRiRmlFZy5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAOYHUjnPoYNAHPUuzdds2tqJbYc4W/XqZ1q4KJMMjH4u/qlmOYfMrp4W Li5eg9jArRv618X9DIdEnMT4WI1gXQx9SkhEwiJVqSXPKA3VUnYBRRQ6wicAhV7H URwd5WkNioILQe9MI5bLaSzRyzdJk0bt3pJTqGbxFiAweYDGUiQKvp0y2als/Bap +jpxC+39pHyRJcN4Tur3xUNRAfSdU68303vEVmyyslBu/c28O7v/OSLQ6jqBYXi3 cH0yzDgzUm09kshf8vTBIdz8kiCR+NOCFWkxpyizAunFKOVvpoOteHQPonMO0mCG q8V/yjZYW+itWOasfYSSV7zPxW9AdR4= -----END CERTIFICATE-----Generated at Mon Jun 16 17:22:06 2025 by rpki-client