$ rpki-client -vvf rpki.apnic.net/member_repository/A91A8219/EC0A70F8EA8011E78B42A432C4F9AE02/ZVPDwhgLl-LrN8tx9qHOqnuVykc.mft File: ZVPDwhgLl-LrN8tx9qHOqnuVykc.mft (raw, json) Hash identifier: /ayLyQcsz8QrvPgE6nzR6wMQWMuYiDkYkwwjasc3NX0= Subject key identifier: EF:A4:63:10:69:41:69:0D:22:71:62:DB:92:2C:A2:6D:74:A2:0F:42 Authority key identifier: 65:53:C3:C2:18:0B:97:E2:EB:37:CB:71:F6:A1:CE:AA:7B:95:CA:47 Certificate issuer: /CN=A91A8219/serialNumber=6553C3C2180B97E2EB37CB71F6A1CEAA7B95CA47 Certificate serial: 1713 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ZVPDwhgLl-LrN8tx9qHOqnuVykc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A8219/EC0A70F8EA8011E78B42A432C4F9AE02/ZVPDwhgLl-LrN8tx9qHOqnuVykc.mft Manifest number: 1707 Signing time: Sat 14 Jun 2025 16:35:55 +0000 Manifest this update: Sat 14 Jun 2025 16:35:54 +0000 Manifest next update: Sat 21 Jun 2025 16:35:54 +0000 Files and hashes: 1: ZVPDwhgLl-LrN8tx9qHOqnuVykc.crl (hash: y+XlpwxFnjTCvT1MY+kzbhZHJ4nRxqtcix0hJBBsGhg=) 2: 314E917C651E11E8A8903D42C4F9AE02.roa (hash: PelwRr9hgP7dCYd5KU90WVUNYfa/KyN0aFEd88yUz4U=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A8219/EC0A70F8EA8011E78B42A432C4F9AE02/ZVPDwhgLl-LrN8tx9qHOqnuVykc.crl rsync://rpki.apnic.net/member_repository/A91A8219/EC0A70F8EA8011E78B42A432C4F9AE02/ZVPDwhgLl-LrN8tx9qHOqnuVykc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ZVPDwhgLl-LrN8tx9qHOqnuVykc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 21 Jun 2025 16:35:53 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5907 (0x1713) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A8219, serialNumber=6553C3C2180B97E2EB37CB71F6A1CEAA7B95CA47 Validity Not Before: Jun 14 16:35:54 2025 GMT Not After : Jun 21 16:35:54 2025 GMT Subject: CN=684da4ea-d32b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9a:f6:f1:40:f3:e9:b1:76:0d:45:e2:b0:76:6c: 00:29:e1:f4:a1:fe:2e:22:c2:60:2d:90:a5:33:5f: 27:2a:90:3e:37:19:22:ad:db:7e:bd:c9:cd:30:1d: d2:71:7e:cc:49:30:e5:28:be:a7:4b:8d:9c:6a:77: 1c:c7:ae:6e:10:8f:d9:56:51:f0:75:eb:83:da:b7: 15:66:2c:24:a6:57:65:c6:95:fc:1a:c0:19:4c:2e: ad:27:4d:21:83:ef:30:38:95:74:56:7d:51:24:0a: c4:00:69:2b:88:ec:bb:72:e6:a0:cb:bd:26:ec:8b: ff:f3:48:02:d8:57:9c:f7:51:a2:f1:44:7c:32:07: 01:1d:1c:b7:99:d3:9c:41:46:db:01:bb:2b:f0:0d: 86:c5:9a:68:b8:a6:3c:86:f6:4c:ba:7d:6e:85:2b: 35:c7:4b:57:6f:62:6b:27:08:ca:a8:30:f2:2a:92: 36:93:2f:e2:6d:93:36:cc:86:bd:5f:47:09:2a:4a: 0b:e6:fc:f2:08:67:af:a8:53:8c:9b:2f:93:47:91: ff:ef:f9:c9:95:f0:db:27:2f:f9:20:a6:99:e7:d0: a9:37:36:87:c0:79:59:d8:c7:c5:ed:37:9b:99:3a: 3e:3b:0c:d2:49:47:55:d5:2c:a5:ba:43:8c:ca:5d: 7e:d1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EF:A4:63:10:69:41:69:0D:22:71:62:DB:92:2C:A2:6D:74:A2:0F:42 X509v3 Authority Key Identifier: keyid:65:53:C3:C2:18:0B:97:E2:EB:37:CB:71:F6:A1:CE:AA:7B:95:CA:47 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A8219/EC0A70F8EA8011E78B42A432C4F9AE02/ZVPDwhgLl-LrN8tx9qHOqnuVykc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ZVPDwhgLl-LrN8tx9qHOqnuVykc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A8219/EC0A70F8EA8011E78B42A432C4F9AE02/ZVPDwhgLl-LrN8tx9qHOqnuVykc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 2e:d8:27:b4:38:ad:f1:8c:52:04:54:87:5f:de:34:dd:2b:64: 0c:a0:a5:de:4b:45:1d:3f:01:a3:16:0d:16:05:f0:99:02:06: a9:b6:bb:2c:70:9f:8e:a2:4d:68:30:ad:ad:e7:24:50:8d:4c: 73:49:49:1e:fe:df:12:16:de:e4:a6:74:23:29:25:27:76:dd: 38:8f:57:cc:04:6f:42:fb:e5:34:99:60:48:e2:25:66:cd:8d: 61:e6:f2:57:c5:3f:9f:2e:42:34:54:9d:90:bf:83:22:75:da: f6:30:6c:51:a2:30:dd:fd:f2:80:f5:9a:c7:a3:be:39:5c:d1: 21:12:f6:75:f0:11:67:07:38:93:dc:29:ea:9d:a9:9f:bb:e5: d1:66:d3:c2:af:c7:9f:73:7e:d1:07:c4:4b:0d:43:3a:c8:b7: 17:f2:bf:9f:8d:69:ca:48:7b:a3:ff:a3:37:1f:c8:9a:c2:1e: 08:89:65:4f:63:1b:6b:ea:84:f6:ac:b4:12:f1:fb:b9:ee:39: 0a:b9:5c:cc:ee:09:ab:e4:3b:f2:1a:fe:a3:99:02:e1:2f:f6: 88:4e:ea:3d:43:0f:9e:49:cf:95:ce:33:91:52:f2:a7:c1:ab: 40:ba:8c:61:6d:29:b8:51:d6:f8:bd:a4:13:46:8d:db:a7:fb: 2e:79:9e:2e -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICFxMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTgyMTkxMTAvBgNVBAUTKDY1NTNDM0MyMTgwQjk3RTJFQjM3Q0I3MUY2QTFDRUFB N0I5NUNBNDcwHhcNMjUwNjE0MTYzNTU0WhcNMjUwNjIxMTYzNTU0WjAYMRYwFAYD VQQDEw02ODRkYTRlYS1kMzJiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAmvbxQPPpsXYNReKwdmwAKeH0of4uIsJgLZClM18nKpA+Nxkirdt+vcnNMB3S cX7MSTDlKL6nS42canccx65uEI/ZVlHwdeuD2rcVZiwkpldlxpX8GsAZTC6tJ00h g+8wOJV0Vn1RJArEAGkriOy7cuagy70m7Iv/80gC2Fec91Gi8UR8MgcBHRy3mdOc QUbbAbsr8A2GxZpouKY8hvZMun1uhSs1x0tXb2JrJwjKqDDyKpI2ky/ibZM2zIa9 X0cJKkoL5vzyCGevqFOMmy+TR5H/7/nJlfDbJy/5IKaZ59CpNzaHwHlZ2MfF7Teb mTo+OwzSSUdV1SylukOMyl1+0QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFO+kYxBp QWkNInFi25Isom10og9CMB8GA1UdIwQYMBaAFGVTw8IYC5fi6zfLcfahzqp7lcpH MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBODIxOS9FQzBBNzBGOEVB ODAxMUU3OEI0MkE0MzJDNEY5QUUwMi9aVlBEd2hnTGwtTHJOOHR4OXFIT3FudVZ5 a2MuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1pWUER3aGdMbC1Mck44dHg5cUhPcW51VnlrYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB ODIxOS9FQzBBNzBGOEVBODAxMUU3OEI0MkE0MzJDNEY5QUUwMi9aVlBEd2hnTGwt THJOOHR4OXFIT3FudVZ5a2MubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAu2Ce0OK3xjFIEVIdf3jTdK2QMoKXeS0UdPwGjFg0WBfCZAgaptrss cJ+Ook1oMK2t5yRQjUxzSUke/t8SFt7kpnQjKSUndt04j1fMBG9C++U0mWBI4iVm zY1h5vJXxT+fLkI0VJ2Qv4Middr2MGxRojDd/fKA9ZrHo745XNEhEvZ18BFnBziT 3Cnqnamfu+XRZtPCr8efc37RB8RLDUM6yLcX8r+fjWnKSHuj/6M3H8iawh4IiWVP Yxtr6oT2rLQS8fu57jkKuVzM7gmr5DvyGv6jmQLhL/aITuo9Qw+eSc+VzjORUvKn watAuoxhbSm4Udb4vaQTRo3bp/sueZ4u -----END CERTIFICATE-----Generated at Sun Jun 15 10:24:05 2025 by rpki-client