$ rpki-client -vvf rpki.apnic.net/member_repository/A91A4B1A/5DD48AB689F211E69E5F6339C4F9AE02/zhFGgP9vTZvD8YgNYQ1q7urr8NQ.mft File: zhFGgP9vTZvD8YgNYQ1q7urr8NQ.mft (raw, json) Hash identifier: XTYyj907SyzfybkFUOmLT3LgM+kBdOm5IHWsUlGhgQc= Subject key identifier: C3:E7:E7:A7:57:85:D8:70:C2:26:0F:DE:CE:B3:78:D6:7A:03:64:03 Authority key identifier: CE:11:46:80:FF:6F:4D:9B:C3:F1:88:0D:61:0D:6A:EE:EA:EB:F0:D4 Certificate issuer: /CN=A91A4B1A/serialNumber=CE114680FF6F4D9BC3F1880D610D6AEEEAEBF0D4 Certificate serial: 1E20 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/zhFGgP9vTZvD8YgNYQ1q7urr8NQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A4B1A/5DD48AB689F211E69E5F6339C4F9AE02/zhFGgP9vTZvD8YgNYQ1q7urr8NQ.mft Manifest number: 1E0F Signing time: Sat 14 Jun 2025 16:03:19 +0000 Manifest this update: Sat 14 Jun 2025 16:03:19 +0000 Manifest next update: Sat 21 Jun 2025 16:03:19 +0000 Files and hashes: 1: zhFGgP9vTZvD8YgNYQ1q7urr8NQ.crl (hash: yP4kP2hX5L8nph9r+fU795jeBUb/wMqOnAXyALtolJc=) 2: 4A6679EC14DF11EEAB46A86DC4F9AE02.roa (hash: yY5rZMTsOpnGO6cAR5A6bi22J/lJ789z+ED1oN3orxw=) 3: 4B52A44814DF11EEAB46A86DC4F9AE02.roa (hash: 36rBW03tvoWvEp5FFhkEkP0PegguzR76VTv8hEMsFNk=) 4: 1DBC9D405DB411EEA017251AC4F9AE02.roa (hash: 2w+ZZZiHGzET+UAGMpulJr633xByME/2FAJYerduoZE=) 5: 4CE75372B9DE11EEBC5B0D21C4F9AE02.roa (hash: yps3mcP7HEC1/XDzl5d78p6GLXVPbcsPt7pEv3x1HZA=) 6: 4999305414DF11EEAB46A86DC4F9AE02.roa (hash: Bl17bhrifD1PMrI4c5ur7v5yVCt37LP+FsjpzcQgt1k=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A4B1A/5DD48AB689F211E69E5F6339C4F9AE02/zhFGgP9vTZvD8YgNYQ1q7urr8NQ.crl rsync://rpki.apnic.net/member_repository/A91A4B1A/5DD48AB689F211E69E5F6339C4F9AE02/zhFGgP9vTZvD8YgNYQ1q7urr8NQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/zhFGgP9vTZvD8YgNYQ1q7urr8NQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 21 Jun 2025 16:03:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7712 (0x1e20) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A4B1A, serialNumber=CE114680FF6F4D9BC3F1880D610D6AEEEAEBF0D4 Validity Not Before: Jun 14 16:03:19 2025 GMT Not After : Jun 21 16:03:19 2025 GMT Subject: CN=684d9d47-4d5a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b2:d4:ed:45:21:fe:08:88:6d:f9:f2:d0:14:dc: 9a:a3:2c:33:24:28:e5:09:41:8f:1c:a8:16:9c:53: df:fb:76:97:f9:b7:74:4d:a9:c8:b0:ef:c3:20:fc: e0:cd:72:d1:e9:56:13:19:5f:d1:da:8a:bb:84:6c: c0:8e:3e:ad:5d:e7:a9:8d:21:c3:96:88:b6:d2:10: 59:b6:44:a1:66:8d:20:b0:ac:8f:64:6a:98:13:2a: 47:03:d5:33:62:bc:6a:aa:a9:f8:39:d8:51:3e:27: c1:13:6e:a4:f4:f3:14:f1:10:b5:80:13:b7:23:b0: 30:cb:05:30:cf:f2:aa:d4:8f:ec:76:26:e0:d2:8f: 76:96:7a:59:5a:2e:cd:0f:7d:ce:83:49:ae:69:50: c6:0e:97:e4:9b:17:e0:ea:4f:46:88:54:85:28:26: 73:d9:7e:bd:25:47:a9:e5:ff:1d:c0:de:c2:1a:a0: 55:53:9c:39:56:c3:0e:0a:f2:9e:aa:01:91:18:52: 0a:c7:97:d8:50:77:f9:6c:85:56:3e:63:e4:85:07: 67:d6:0f:c0:50:ac:46:93:37:91:2b:1e:60:9a:8e: 63:ab:a8:4c:f6:bf:47:1a:9f:df:65:d3:19:33:d4: 63:c1:30:ff:4e:f1:4c:5e:e8:4f:9e:6a:6a:a7:f1: 8a:07 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C3:E7:E7:A7:57:85:D8:70:C2:26:0F:DE:CE:B3:78:D6:7A:03:64:03 X509v3 Authority Key Identifier: keyid:CE:11:46:80:FF:6F:4D:9B:C3:F1:88:0D:61:0D:6A:EE:EA:EB:F0:D4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A4B1A/5DD48AB689F211E69E5F6339C4F9AE02/zhFGgP9vTZvD8YgNYQ1q7urr8NQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/zhFGgP9vTZvD8YgNYQ1q7urr8NQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A4B1A/5DD48AB689F211E69E5F6339C4F9AE02/zhFGgP9vTZvD8YgNYQ1q7urr8NQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 55:92:93:53:4a:bb:31:a2:d4:d7:34:2a:b7:7d:12:d8:2f:8b: 7f:46:7f:95:a8:8e:1b:dd:9b:f0:e1:86:c2:82:62:41:c8:89: 7c:f8:23:73:74:94:ef:b9:61:d2:65:7f:f9:2b:f0:0b:d2:cc: 8c:09:e7:08:52:a0:6f:5c:0b:65:69:cf:b3:07:e6:12:ac:1e: ee:38:84:cd:d7:d1:43:64:33:e2:65:86:e9:33:5a:c1:e9:0c: 06:d1:4c:05:8e:e1:44:cd:fa:ca:c8:6a:27:38:bf:ea:14:70: 34:eb:11:a4:23:80:a1:0e:5d:13:c6:0d:c8:8d:1c:28:10:60: a6:81:16:a7:9c:9f:5b:6a:8f:60:71:f2:a8:88:fd:27:f5:a9: 46:cb:7a:71:19:ec:67:79:61:af:08:d4:42:91:73:fc:3c:fd: 88:bd:c4:c2:a5:cb:f2:b7:b0:95:51:dc:c2:5e:a2:71:b5:08: f6:2b:18:72:6d:3f:d7:03:1a:85:8a:bf:7e:d9:9a:f5:ec:aa: 5d:8d:ef:be:3d:c9:67:5e:b5:cf:87:b9:9a:57:aa:62:8f:3f: 11:9d:93:b3:75:bb:72:f2:23:33:39:aa:ef:95:2f:11:62:85: c1:c3:87:55:49:69:b9:4c:83:2e:ef:45:e8:2f:9f:d4:11:92: 14:d3:16:82 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICHiAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTRCMUExMTAvBgNVBAUTKENFMTE0NjgwRkY2RjREOUJDM0YxODgwRDYxMEQ2QUVF RUFFQkYwRDQwHhcNMjUwNjE0MTYwMzE5WhcNMjUwNjIxMTYwMzE5WjAYMRYwFAYD VQQDEw02ODRkOWQ0Ny00ZDVhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAstTtRSH+CIht+fLQFNyaoywzJCjlCUGPHKgWnFPf+3aX+bd0TanIsO/DIPzg zXLR6VYTGV/R2oq7hGzAjj6tXeepjSHDloi20hBZtkShZo0gsKyPZGqYEypHA9Uz Yrxqqqn4OdhRPifBE26k9PMU8RC1gBO3I7AwywUwz/Kq1I/sdibg0o92lnpZWi7N D33Og0muaVDGDpfkmxfg6k9GiFSFKCZz2X69JUep5f8dwN7CGqBVU5w5VsMOCvKe qgGRGFIKx5fYUHf5bIVWPmPkhQdn1g/AUKxGkzeRKx5gmo5jq6hM9r9HGp/fZdMZ M9RjwTD/TvFMXuhPnmpqp/GKBwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFMPn56dX hdhwwiYP3s6zeNZ6A2QDMB8GA1UdIwQYMBaAFM4RRoD/b02bw/GIDWENau7q6/DU MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBNEIxQS81REQ0OEFCNjg5 RjIxMUU2OUU1RjYzMzlDNEY5QUUwMi96aEZHZ1A5dlRadkQ4WWdOWVExcTd1cnI4 TlEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3poRkdnUDl2VFp2RDhZZ05ZUTFxN3VycjhOUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB NEIxQS81REQ0OEFCNjg5RjIxMUU2OUU1RjYzMzlDNEY5QUUwMi96aEZHZ1A5dlRa dkQ4WWdOWVExcTd1cnI4TlEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBVkpNTSrsxotTXNCq3fRLYL4t/Rn+VqI4b3Zvw4YbCgmJByIl8+CNz dJTvuWHSZX/5K/AL0syMCecIUqBvXAtlac+zB+YSrB7uOITN19FDZDPiZYbpM1rB 6QwG0UwFjuFEzfrKyGonOL/qFHA06xGkI4ChDl0Txg3IjRwoEGCmgRannJ9bao9g cfKoiP0n9alGy3pxGexneWGvCNRCkXP8PP2IvcTCpcvyt7CVUdzCXqJxtQj2Kxhy bT/XAxqFir9+2Zr17Kpdje++PclnXrXPh7maV6pijz8RnZOzdbty8iMzOarvlS8R YoXBw4dVSWm5TIMu70XoL5/UEZIU0xaC -----END CERTIFICATE-----Generated at Sat Jun 14 19:39:54 2025 by rpki-client