$ rpki-client -vvf rpki.apnic.net/member_repository/A91A4517/406F904C6AE611E491914687C4F9AE02/Z187oflqnh7CsBN2YsdU2x0eAHM.mft File: Z187oflqnh7CsBN2YsdU2x0eAHM.mft (raw, json) Hash identifier: 3Xy9lwR/zC+0CGXPMg3LVWGrVPmd8XvX28Zq8kDYqxs= Subject key identifier: 87:66:B0:C7:B8:7A:AF:8A:80:36:51:BC:79:C1:88:E7:E7:72:7C:3C Authority key identifier: 67:5F:3B:A1:F9:6A:9E:1E:C2:B0:13:76:62:C7:54:DB:1D:1E:00:73 Certificate issuer: /CN=A91A4517/serialNumber=675F3BA1F96A9E1EC2B0137662C754DB1D1E0073 Certificate serial: 291A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Z187oflqnh7CsBN2YsdU2x0eAHM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A4517/406F904C6AE611E491914687C4F9AE02/Z187oflqnh7CsBN2YsdU2x0eAHM.mft Manifest number: 28FA Signing time: Sat 14 Jun 2025 15:34:57 +0000 Manifest this update: Sat 14 Jun 2025 15:34:57 +0000 Manifest next update: Sat 21 Jun 2025 15:34:57 +0000 Files and hashes: 1: Z187oflqnh7CsBN2YsdU2x0eAHM.crl (hash: SbGg57iBlYuTNM2RA36E7AZGV1y5iWwesqGwqwdOEp0=) 2: F4246CDA561811E98A165872C4F9AE02.roa (hash: C/PaFQfpTy7SRBE+0XzPzL+bck/ugVag2KSCjWGbACs=) 3: 5B0D0BFE04D411EAA7E3F81FC4F9AE02.roa (hash: NPaRLQzlfeRDFfVjFZGdCoMjhFrE57rsZhCE/YcIOww=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A4517/406F904C6AE611E491914687C4F9AE02/Z187oflqnh7CsBN2YsdU2x0eAHM.crl rsync://rpki.apnic.net/member_repository/A91A4517/406F904C6AE611E491914687C4F9AE02/Z187oflqnh7CsBN2YsdU2x0eAHM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Z187oflqnh7CsBN2YsdU2x0eAHM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 21 Jun 2025 15:34:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 10522 (0x291a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A4517, serialNumber=675F3BA1F96A9E1EC2B0137662C754DB1D1E0073 Validity Not Before: Jun 14 15:34:57 2025 GMT Not After : Jun 21 15:34:57 2025 GMT Subject: CN=684d96a1-bd1b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9b:0b:fb:37:7c:90:b4:27:cf:6c:5a:3a:6d:d8: 34:c1:df:d9:88:66:01:b1:cb:87:66:88:75:e7:c6: b3:53:69:57:68:a3:82:fb:eb:ff:92:d4:c3:c0:d5: d0:1a:d0:26:cc:b7:97:79:b2:d4:03:b4:60:bd:e5: 08:eb:ef:ba:29:ca:ea:10:aa:bc:13:c0:4d:b7:47: 53:ad:11:41:39:66:cd:02:44:02:b3:a9:a8:2b:ad: 84:67:9f:2b:07:0f:04:83:eb:56:9c:c2:c1:36:0d: f6:6f:09:3d:74:bb:4e:43:17:71:ae:ce:c7:3a:fc: 0c:e6:53:ac:a5:c1:e3:11:ca:fd:d9:97:40:ad:3b: 05:6e:01:25:8a:8c:dd:14:21:88:9a:4f:f5:f0:57: 88:f3:63:b7:fe:3e:41:84:07:83:d3:ea:dc:58:06: cc:9b:85:28:c2:f3:59:91:d5:87:f3:e5:77:18:b0: ba:d2:7f:ed:b2:37:ef:f7:a1:f0:7b:54:6d:9f:a1: 77:c7:07:fd:6e:6c:44:35:a7:00:12:c8:fb:97:39: eb:1b:70:3e:85:cd:de:23:f5:2a:72:e3:f6:b4:31: 75:8e:a8:91:80:f9:50:24:6b:ce:94:6d:66:33:d6: f3:7e:bb:15:34:f0:33:71:ba:ea:34:14:0a:08:79: bc:83 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 87:66:B0:C7:B8:7A:AF:8A:80:36:51:BC:79:C1:88:E7:E7:72:7C:3C X509v3 Authority Key Identifier: keyid:67:5F:3B:A1:F9:6A:9E:1E:C2:B0:13:76:62:C7:54:DB:1D:1E:00:73 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A4517/406F904C6AE611E491914687C4F9AE02/Z187oflqnh7CsBN2YsdU2x0eAHM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Z187oflqnh7CsBN2YsdU2x0eAHM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A4517/406F904C6AE611E491914687C4F9AE02/Z187oflqnh7CsBN2YsdU2x0eAHM.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption e0:7b:77:47:00:3e:11:dd:28:13:16:6f:8d:4f:ae:0e:a6:03: 6c:b6:51:99:f9:f2:54:46:ef:0b:1d:10:04:9f:7e:82:aa:74: 85:70:9d:80:92:01:4e:3f:57:64:5e:c4:ec:48:33:bf:fd:91: db:5d:7c:f1:b1:f4:17:ff:5c:e2:2a:0b:7e:ac:74:6c:c7:dd: a5:69:cd:cf:69:8a:2a:ed:74:cd:1c:94:20:74:a4:c4:fd:56: fb:12:8e:9a:98:35:b9:09:ec:a9:52:ac:e3:a2:88:c6:9a:88: 21:12:10:c6:29:30:e8:bc:48:82:4a:a8:ad:39:d7:06:c6:ff: 1a:f0:ff:b2:f9:f4:99:30:5b:e1:c0:61:6e:d7:c0:03:e8:d4: 01:61:5e:86:72:0b:86:39:95:55:dd:ca:88:0b:4b:6b:96:e9: 53:b7:61:c5:70:1d:41:7d:f0:2e:b9:cb:e4:2e:1c:63:18:f1: 64:fd:d0:7a:8d:3e:2a:89:85:9f:9e:43:76:b6:46:05:f0:df: 9f:06:3e:7f:33:34:43:4a:92:ac:bd:db:ac:95:7f:ee:1d:9f: 2b:2c:0d:f5:8a:3e:54:d7:4f:ec:10:b1:15:d8:41:a8:d0:e7: 7f:19:9f:9d:62:e5:b9:1c:fa:c6:77:54:f1:10:ea:ea:8e:a8: 9c:b2:9a:13 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICKRowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTQ1MTcxMTAvBgNVBAUTKDY3NUYzQkExRjk2QTlFMUVDMkIwMTM3NjYyQzc1NERC MUQxRTAwNzMwHhcNMjUwNjE0MTUzNDU3WhcNMjUwNjIxMTUzNDU3WjAYMRYwFAYD VQQDEw02ODRkOTZhMS1iZDFiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAmwv7N3yQtCfPbFo6bdg0wd/ZiGYBscuHZoh158azU2lXaKOC++v/ktTDwNXQ GtAmzLeXebLUA7RgveUI6++6KcrqEKq8E8BNt0dTrRFBOWbNAkQCs6moK62EZ58r Bw8Eg+tWnMLBNg32bwk9dLtOQxdxrs7HOvwM5lOspcHjEcr92ZdArTsFbgEliozd FCGImk/18FeI82O3/j5BhAeD0+rcWAbMm4UowvNZkdWH8+V3GLC60n/tsjfv96Hw e1Rtn6F3xwf9bmxENacAEsj7lznrG3A+hc3eI/UqcuP2tDF1jqiRgPlQJGvOlG1m M9bzfrsVNPAzcbrqNBQKCHm8gwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFIdmsMe4 eq+KgDZRvHnBiOfncnw8MB8GA1UdIwQYMBaAFGdfO6H5ap4ewrATdmLHVNsdHgBz MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBNDUxNy80MDZGOTA0QzZB RTYxMUU0OTE5MTQ2ODdDNEY5QUUwMi9aMTg3b2ZscW5oN0NzQk4yWXNkVTJ4MGVB SE0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1oxODdvZmxxbmg3Q3NCTjJZc2RVMngwZUFITS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB NDUxNy80MDZGOTA0QzZBRTYxMUU0OTE5MTQ2ODdDNEY5QUUwMi9aMTg3b2ZscW5o N0NzQk4yWXNkVTJ4MGVBSE0ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQDge3dHAD4R3SgTFm+NT64OpgNstlGZ+fJURu8LHRAEn36CqnSFcJ2A kgFOP1dkXsTsSDO//ZHbXXzxsfQX/1ziKgt+rHRsx92lac3PaYoq7XTNHJQgdKTE /Vb7Eo6amDW5CeypUqzjoojGmoghEhDGKTDovEiCSqitOdcGxv8a8P+y+fSZMFvh wGFu18AD6NQBYV6GcguGOZVV3cqIC0trlulTt2HFcB1BffAuucvkLhxjGPFk/dB6 jT4qiYWfnkN2tkYF8N+fBj5/MzRDSpKsvduslX/uHZ8rLA31ij5U10/sELEV2EGo 0Od/GZ+dYuW5HPrGd1TxEOrqjqicspoT -----END CERTIFICATE-----Generated at Sat Jun 14 19:35:59 2025 by rpki-client