$ rpki-client -vvf rpki.apnic.net/member_repository/A917C71E/C78E4A721CA811EA8CBB4543C4F9AE02/tZsFZqgqmDvebfHF3kxYLJvKg5I.mft File: tZsFZqgqmDvebfHF3kxYLJvKg5I.mft (raw, json) Hash identifier: ZM0RIgRUeTc72OIvVFi+ha2TqUTLXmLXKeC2Xi0pVWA= Subject key identifier: 49:11:CB:39:EF:7F:FB:3C:10:71:2B:0E:69:2D:E5:3A:9A:31:EE:15 Authority key identifier: B5:9B:05:66:A8:2A:98:3B:DE:6D:F1:C5:DE:4C:58:2C:9B:CA:83:92 Certificate issuer: /CN=A917C71E/serialNumber=B59B0566A82A983BDE6DF1C5DE4C582C9BCA8392 Certificate serial: 0BFE Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tZsFZqgqmDvebfHF3kxYLJvKg5I.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917C71E/C78E4A721CA811EA8CBB4543C4F9AE02/tZsFZqgqmDvebfHF3kxYLJvKg5I.mft Manifest number: 0BE5 Signing time: Thu 12 Jun 2025 18:41:17 +0000 Manifest this update: Thu 12 Jun 2025 18:41:17 +0000 Manifest next update: Thu 19 Jun 2025 18:41:17 +0000 Files and hashes: 1: tZsFZqgqmDvebfHF3kxYLJvKg5I.crl (hash: +lpW6d1UkfSLW0/ShLYjdFk0+oNZQ9a6iqYQazKyotQ=) 2: CFF8393A232C11F0B9CB2044C4F9AE02.roa (hash: nfqNeR+bbEfavJF+ova8yLO5QWoKeC1GYyFqfwg0csE=) 3: CB46AC50509111EF9E40402FC4F9AE02.roa (hash: ad0J4ZFgNbW6j5IO3p20cgw4SuRj+wZOS+Yi86cuNgg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917C71E/C78E4A721CA811EA8CBB4543C4F9AE02/tZsFZqgqmDvebfHF3kxYLJvKg5I.crl rsync://rpki.apnic.net/member_repository/A917C71E/C78E4A721CA811EA8CBB4543C4F9AE02/tZsFZqgqmDvebfHF3kxYLJvKg5I.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tZsFZqgqmDvebfHF3kxYLJvKg5I.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 19 Jun 2025 18:41:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3070 (0xbfe) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917C71E, serialNumber=B59B0566A82A983BDE6DF1C5DE4C582C9BCA8392 Validity Not Before: Jun 12 18:41:17 2025 GMT Not After : Jun 19 18:41:17 2025 GMT Subject: CN=684b1f4d-35c3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:62:87:b6:e3:b0:29:02:ed:21:37:b6:a2:54: 72:ea:e6:2a:a0:49:8f:91:dd:a1:4e:a7:4b:b2:9d: 15:e9:ac:80:ff:0e:1f:72:c4:5d:71:55:f6:c6:c0: 85:83:1d:e2:55:54:03:17:af:69:d4:05:16:19:8d: 0e:18:66:26:0f:a5:3a:7b:db:1f:cf:99:1b:e5:aa: b2:e8:e0:ca:ef:26:25:36:6c:da:fd:37:df:f9:32: f4:fe:82:49:3b:56:15:ca:19:62:c4:f1:cd:4c:b5: 32:96:7f:f8:df:e0:a7:6f:31:e4:14:09:af:df:2f: 0d:57:02:e5:65:9b:f8:4b:aa:be:db:3d:0d:6b:32: f9:ee:c5:7b:24:9b:cc:1c:f9:83:ad:95:7d:b3:74: 5a:9f:f5:c5:db:2d:66:a7:51:28:05:2a:a8:2b:84: 59:c3:ae:08:5b:c1:b2:16:69:57:40:29:80:9f:9f: 06:b2:31:ad:ca:03:18:bc:42:b4:32:b2:09:e4:59: 4b:30:31:d9:12:e8:de:ae:5e:c3:c1:c1:b9:8b:2c: 7e:66:f4:c0:14:3a:c8:8f:53:7c:67:48:3a:94:1e: 3f:b3:68:f9:f8:99:cf:39:98:e3:12:3f:37:3e:33: 8a:f6:30:0e:3f:9e:ca:cc:55:0b:ef:d4:40:d4:00: c1:97 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 49:11:CB:39:EF:7F:FB:3C:10:71:2B:0E:69:2D:E5:3A:9A:31:EE:15 X509v3 Authority Key Identifier: keyid:B5:9B:05:66:A8:2A:98:3B:DE:6D:F1:C5:DE:4C:58:2C:9B:CA:83:92 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917C71E/C78E4A721CA811EA8CBB4543C4F9AE02/tZsFZqgqmDvebfHF3kxYLJvKg5I.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tZsFZqgqmDvebfHF3kxYLJvKg5I.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917C71E/C78E4A721CA811EA8CBB4543C4F9AE02/tZsFZqgqmDvebfHF3kxYLJvKg5I.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a3:bd:a7:4e:2b:73:48:42:8a:a3:a1:b8:76:e3:b4:c1:34:dc: 73:48:c5:c6:1d:c8:3a:f4:45:22:90:3d:68:bc:c9:c8:fb:ae: 15:b5:a1:fd:15:91:03:ba:49:71:76:81:55:32:1b:26:ae:7f: 91:46:a5:82:e1:05:54:9c:01:b6:83:5f:80:0d:04:95:99:6a: 02:53:3d:b2:da:72:1f:8e:3f:33:19:01:b0:99:4a:11:23:36: e6:9f:84:6f:61:ad:d1:82:f0:81:33:ad:a3:3c:1b:5a:11:c6: ab:8f:d8:13:9d:bb:d6:c5:e9:5b:51:7c:35:80:84:6b:05:ea: a4:32:af:4b:a3:da:18:f2:a8:88:4a:7c:06:35:09:d1:35:7b: 1a:86:f2:7c:0f:4b:8c:67:55:e2:6d:09:e8:0c:39:e8:78:df: d8:62:fc:12:fc:fc:b7:e8:b7:a9:eb:8b:1b:60:19:37:17:42: 7b:02:73:ab:de:19:43:af:e0:a7:c0:14:f5:fc:48:d7:41:f6: 51:3b:fb:fa:2d:ef:f5:ca:64:cb:a8:89:1e:bc:bb:ad:52:9c: a0:e9:10:2d:a5:ec:cf:24:23:cb:6a:f3:9d:39:92:3d:5c:04: e8:79:77:c6:56:f0:b1:a0:84:a8:19:86:86:3c:ae:57:ba:1e: 17:39:95:84 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICC/4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0M3MUUxMTAvBgNVBAUTKEI1OUIwNTY2QTgyQTk4M0JERTZERjFDNURFNEM1ODJD OUJDQTgzOTIwHhcNMjUwNjEyMTg0MTE3WhcNMjUwNjE5MTg0MTE3WjAYMRYwFAYD VQQDEw02ODRiMWY0ZC0zNWMzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvmKHtuOwKQLtITe2olRy6uYqoEmPkd2hTqdLsp0V6ayA/w4fcsRdcVX2xsCF gx3iVVQDF69p1AUWGY0OGGYmD6U6e9sfz5kb5aqy6ODK7yYlNmza/Tff+TL0/oJJ O1YVyhlixPHNTLUyln/43+CnbzHkFAmv3y8NVwLlZZv4S6q+2z0NazL57sV7JJvM HPmDrZV9s3Ran/XF2y1mp1EoBSqoK4RZw64IW8GyFmlXQCmAn58GsjGtygMYvEK0 MrIJ5FlLMDHZEujerl7DwcG5iyx+ZvTAFDrIj1N8Z0g6lB4/s2j5+JnPOZjjEj83 PjOK9jAOP57KzFUL79RA1ADBlwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFEkRyznv f/s8EHErDmkt5TqaMe4VMB8GA1UdIwQYMBaAFLWbBWaoKpg73m3xxd5MWCybyoOS MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3QzcxRS9DNzhFNEE3MjFD QTgxMUVBOENCQjQ1NDNDNEY5QUUwMi90WnNGWnFncW1EdmViZkhGM2t4WUxKdktn NUkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3Rac0ZacWdxbUR2ZWJmSEYza3hZTEp2S2c1SS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 QzcxRS9DNzhFNEE3MjFDQTgxMUVBOENCQjQ1NDNDNEY5QUUwMi90WnNGWnFncW1E dmViZkhGM2t4WUxKdktnNUkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCjvadOK3NIQoqjobh247TBNNxzSMXGHcg69EUikD1ovMnI+64VtaH9 FZEDuklxdoFVMhsmrn+RRqWC4QVUnAG2g1+ADQSVmWoCUz2y2nIfjj8zGQGwmUoR Izbmn4RvYa3RgvCBM62jPBtaEcarj9gTnbvWxelbUXw1gIRrBeqkMq9Lo9oY8qiI SnwGNQnRNXsahvJ8D0uMZ1XibQnoDDnoeN/YYvwS/Py36Lep64sbYBk3F0J7AnOr 3hlDr+CnwBT1/EjXQfZRO/v6Le/1ymTLqIkevLutUpyg6RAtpezPJCPLavOdOZI9 XAToeXfGVvCxoISoGYaGPK5Xuh4XOZWE -----END CERTIFICATE-----Generated at Sat Jun 14 19:28:52 2025 by rpki-client