$ rpki-client -vvf rpki.apnic.net/member_repository/A91A7150/5842E9E092C011EB8AA5A920C4F9AE02/ZzeGJRGhdM3TidNT8ODnLJdzzoQ.mft File: ZzeGJRGhdM3TidNT8ODnLJdzzoQ.mft (raw, json) Hash identifier: kVEonp4k1KhngwCboyVTPPXZsVAAP6mAugLGNyEz2nA= Subject key identifier: DD:03:44:36:92:5E:DD:5F:53:0D:AB:C6:F0:11:5D:59:A8:48:34:8C Authority key identifier: 67:37:86:25:11:A1:74:CD:D3:89:D3:53:F0:E0:E7:2C:97:73:CE:84 Certificate issuer: /CN=A91A7150/serialNumber=6737862511A174CDD389D353F0E0E72C9773CE84 Certificate serial: 0649 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ZzeGJRGhdM3TidNT8ODnLJdzzoQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A7150/5842E9E092C011EB8AA5A920C4F9AE02/ZzeGJRGhdM3TidNT8ODnLJdzzoQ.mft Manifest number: 0643 Signing time: Wed 18 Jun 2025 22:29:40 +0000 Manifest this update: Wed 18 Jun 2025 22:29:40 +0000 Manifest next update: Wed 25 Jun 2025 22:29:40 +0000 Files and hashes: 1: ZzeGJRGhdM3TidNT8ODnLJdzzoQ.crl (hash: MnFdN8ZORxr07Pvwta0IoHc0ebCDCMQMbKPKPsp4q4k=) 2: BA7F7BA892C211EBBBF0055FC4F9AE02.roa (hash: DxARsL+2J5rkvhwXm2iR36A3nQFpWBmz2UuZUXtaoP8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A7150/5842E9E092C011EB8AA5A920C4F9AE02/ZzeGJRGhdM3TidNT8ODnLJdzzoQ.crl rsync://rpki.apnic.net/member_repository/A91A7150/5842E9E092C011EB8AA5A920C4F9AE02/ZzeGJRGhdM3TidNT8ODnLJdzzoQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ZzeGJRGhdM3TidNT8ODnLJdzzoQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 25 Jun 2025 22:29:39 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1609 (0x649) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A7150, serialNumber=6737862511A174CDD389D353F0E0E72C9773CE84 Validity Not Before: Jun 18 22:29:40 2025 GMT Not After : Jun 25 22:29:40 2025 GMT Subject: CN=68533dd4-821f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d4:b7:4b:14:05:0a:80:10:cc:f5:35:72:d6:95: c8:0e:64:b1:6a:e9:e7:b5:53:f7:e2:92:42:28:95: fb:f7:ec:58:b7:e1:c7:a6:bd:33:65:66:bc:55:92: 73:06:3a:f0:78:c3:e0:33:4a:88:1c:e6:ea:9a:97: 02:7e:43:fe:f4:55:9b:a2:f5:e4:d5:30:9a:a9:e1: 3a:ab:af:9f:70:25:df:26:c7:f8:4f:de:68:ed:1b: 40:96:5e:db:73:91:b7:81:15:76:3b:81:f3:a9:ca: 21:6d:46:2c:59:6b:6d:fd:eb:b5:26:50:68:57:e0: 2f:a2:18:0b:52:47:74:5e:c5:0f:95:7d:12:2c:7c: 0b:88:4f:49:b9:eb:1d:18:0e:ef:c6:5b:66:2f:56: 33:c3:2a:28:b1:62:e5:47:cd:ab:85:63:08:37:5e: 78:80:c3:e6:c0:df:1e:7b:45:1c:8f:f0:91:17:90: 54:92:1c:8f:96:98:94:af:2e:5b:a9:6a:7d:18:6c: ca:77:6e:8e:1c:53:ef:bb:70:b8:56:81:74:f1:e1: b8:e2:95:e1:e1:0d:30:37:31:83:91:b6:7d:93:47: a7:ff:41:93:95:f2:b3:9b:68:3a:03:b5:03:f8:0d: 68:c2:2d:24:cb:a9:a9:2c:62:e7:26:27:8f:9f:4e: 4e:35 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DD:03:44:36:92:5E:DD:5F:53:0D:AB:C6:F0:11:5D:59:A8:48:34:8C X509v3 Authority Key Identifier: keyid:67:37:86:25:11:A1:74:CD:D3:89:D3:53:F0:E0:E7:2C:97:73:CE:84 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A7150/5842E9E092C011EB8AA5A920C4F9AE02/ZzeGJRGhdM3TidNT8ODnLJdzzoQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ZzeGJRGhdM3TidNT8ODnLJdzzoQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A7150/5842E9E092C011EB8AA5A920C4F9AE02/ZzeGJRGhdM3TidNT8ODnLJdzzoQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 05:e9:05:74:c3:2b:bd:cd:3b:cb:a6:58:8d:c3:5a:d3:92:af: 4f:7e:08:e1:b8:33:81:40:65:3b:8f:db:a7:a9:ac:69:b2:da: 51:3c:ee:df:f6:14:53:57:e3:cd:75:33:fc:b7:4d:ce:26:43: c0:ec:1e:02:9f:f9:3f:e3:be:af:1e:4b:d0:59:8d:4c:73:5f: 63:8b:ec:f0:03:f5:1a:d1:bf:ac:4c:24:f7:d4:1c:24:d4:6b: fd:4e:a3:59:b5:bb:8e:80:c7:ee:58:90:3a:69:18:f4:2e:b3: e3:29:c7:15:5d:49:58:44:c7:cc:0d:89:69:ac:7e:3d:8b:ee: 13:6d:04:aa:99:bd:8a:ba:52:e5:85:11:d3:f4:b2:90:82:db: cf:cf:ed:d6:cc:e4:95:2f:2f:4b:ba:f4:34:ce:5f:e1:71:09: dc:9f:41:32:99:0a:26:ed:31:52:c5:86:f6:5f:65:54:8b:de: a0:ea:33:b3:66:6e:08:a0:ab:80:1d:4d:58:a5:b6:b6:ca:f0: a9:8e:d1:11:1a:8e:e4:af:9c:43:2f:e5:2a:44:b9:f1:d0:ee: 61:47:48:83:9b:1b:78:47:6e:b4:90:55:52:ff:75:e4:65:48: 6d:33:46:bd:e9:ca:6d:4e:de:94:3f:14:e0:56:0b:ae:5c:c2: 33:e7:d7:aa -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBkkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTcxNTAxMTAvBgNVBAUTKDY3Mzc4NjI1MTFBMTc0Q0REMzg5RDM1M0YwRTBFNzJD OTc3M0NFODQwHhcNMjUwNjE4MjIyOTQwWhcNMjUwNjI1MjIyOTQwWjAYMRYwFAYD VQQDEw02ODUzM2RkNC04MjFmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1LdLFAUKgBDM9TVy1pXIDmSxaunntVP34pJCKJX79+xYt+HHpr0zZWa8VZJz BjrweMPgM0qIHObqmpcCfkP+9FWbovXk1TCaqeE6q6+fcCXfJsf4T95o7RtAll7b c5G3gRV2O4HzqcohbUYsWWtt/eu1JlBoV+AvohgLUkd0XsUPlX0SLHwLiE9Juesd GA7vxltmL1YzwyoosWLlR82rhWMIN154gMPmwN8ee0Ucj/CRF5BUkhyPlpiUry5b qWp9GGzKd26OHFPvu3C4VoF08eG44pXh4Q0wNzGDkbZ9k0en/0GTlfKzm2g6A7UD +A1owi0ky6mpLGLnJiePn05ONQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFN0DRDaS Xt1fUw2rxvARXVmoSDSMMB8GA1UdIwQYMBaAFGc3hiURoXTN04nTU/Dg5yyXc86E MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBNzE1MC81ODQyRTlFMDky QzAxMUVCOEFBNUE5MjBDNEY5QUUwMi9aemVHSlJHaGRNM1RpZE5UOE9EbkxKZHp6 b1EuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1p6ZUdKUkdoZE0zVGlkTlQ4T0RuTEpkenpvUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB NzE1MC81ODQyRTlFMDkyQzAxMUVCOEFBNUE5MjBDNEY5QUUwMi9aemVHSlJHaGRN M1RpZE5UOE9EbkxKZHp6b1EubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAF6QV0wyu9zTvLpliNw1rTkq9PfgjhuDOBQGU7j9unqaxpstpRPO7f 9hRTV+PNdTP8t03OJkPA7B4Cn/k/476vHkvQWY1Mc19ji+zwA/Ua0b+sTCT31Bwk 1Gv9TqNZtbuOgMfuWJA6aRj0LrPjKccVXUlYRMfMDYlprH49i+4TbQSqmb2KulLl hRHT9LKQgtvPz+3WzOSVLy9LuvQ0zl/hcQncn0EymQom7TFSxYb2X2VUi96g6jOz Zm4IoKuAHU1Ypba2yvCpjtERGo7kr5xDL+UqRLnx0O5hR0iDmxt4R260kFVS/3Xk ZUhtM0a96cptTt6UPxTgVguuXMIz59eq -----END CERTIFICATE-----Generated at Fri Jun 20 17:35:02 2025 by rpki-client