$ rpki-client -vvf rpki.apnic.net/member_repository/A91B8C12/3ED0852691A611EDB72C5956C4F9AE02/zI7F8Y4keEmlxwbphTthhkju8qY.mft File: zI7F8Y4keEmlxwbphTthhkju8qY.mft (raw, json) Hash identifier: sRpe4aMc7fTXM/WP+H5P/nLwAbZu12r3b6G0YjECR50= Subject key identifier: CD:9F:74:FD:C9:31:BC:46:85:01:50:7A:F6:32:4B:CF:09:30:1E:4F Authority key identifier: CC:8E:C5:F1:8E:24:78:49:A5:C7:06:E9:85:3B:61:86:48:EE:F2:A6 Certificate issuer: /CN=A91B8C12/serialNumber=CC8EC5F18E247849A5C706E9853B618648EEF2A6 Certificate serial: 01C8 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/zI7F8Y4keEmlxwbphTthhkju8qY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B8C12/3ED0852691A611EDB72C5956C4F9AE02/zI7F8Y4keEmlxwbphTthhkju8qY.mft Manifest number: 01C5 Signing time: Sun 15 Jun 2025 02:14:41 +0000 Manifest this update: Sun 15 Jun 2025 02:14:40 +0000 Manifest next update: Sun 22 Jun 2025 02:14:40 +0000 Files and hashes: 1: zI7F8Y4keEmlxwbphTthhkju8qY.crl (hash: aWiI5ozyC5Ho6ebWYQ9Qk+bkbPiZdl6ZGj3zo05TN8E=) 2: F9141F4891AA11EDBEE1242EC4F9AE02.roa (hash: wW1wDfapN4aqyKsyA7zutue+89v5koktR+64VobzRks=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B8C12/3ED0852691A611EDB72C5956C4F9AE02/zI7F8Y4keEmlxwbphTthhkju8qY.crl rsync://rpki.apnic.net/member_repository/A91B8C12/3ED0852691A611EDB72C5956C4F9AE02/zI7F8Y4keEmlxwbphTthhkju8qY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/zI7F8Y4keEmlxwbphTthhkju8qY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 22 Jun 2025 02:14:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 456 (0x1c8) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B8C12, serialNumber=CC8EC5F18E247849A5C706E9853B618648EEF2A6 Validity Not Before: Jun 15 02:14:40 2025 GMT Not After : Jun 22 02:14:40 2025 GMT Subject: CN=684e2c90-8f5a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:fe:bd:08:0b:04:37:23:3f:96:9b:52:96:16:24: 8f:e1:c1:1b:1d:f4:23:75:6d:8e:56:dc:66:0e:da: 08:dd:80:fa:ab:ac:08:00:47:8b:d6:38:76:fc:2d: 1a:5a:0f:63:2b:f6:03:83:2c:41:1d:82:7a:06:a6: 2e:76:53:2c:28:86:d4:98:df:08:02:ee:f1:58:d8: a5:7b:9b:74:b5:f6:6f:79:98:fa:8f:20:e2:60:8c: 83:06:d1:c4:76:e8:4f:56:f0:fe:ae:61:a8:35:7d: fe:89:7b:be:06:8c:0d:8a:e0:52:84:3d:3d:e7:84: ab:e6:16:21:51:83:89:79:14:39:96:6d:08:c2:a8: 5f:25:88:0d:78:6a:44:73:d7:a0:b1:f2:d4:46:27: 5c:d6:a1:fa:e6:3b:4d:ed:dd:a5:4b:ff:d4:13:83: 89:35:11:79:7c:67:b0:8b:68:56:4c:04:1c:99:52: dc:f9:38:39:79:74:8f:05:cc:ea:d9:2e:9f:2e:da: 4d:d0:f0:ec:bd:00:34:b3:5a:17:5d:68:32:9e:a9: 89:7f:c4:6d:af:72:d2:78:64:fb:28:2d:1f:c1:f2: a2:a4:1e:26:97:44:e9:8d:20:09:3a:97:03:f9:ab: 4f:22:a0:91:e8:66:2a:70:ab:4c:06:cb:95:80:9d: b8:83 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CD:9F:74:FD:C9:31:BC:46:85:01:50:7A:F6:32:4B:CF:09:30:1E:4F X509v3 Authority Key Identifier: keyid:CC:8E:C5:F1:8E:24:78:49:A5:C7:06:E9:85:3B:61:86:48:EE:F2:A6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B8C12/3ED0852691A611EDB72C5956C4F9AE02/zI7F8Y4keEmlxwbphTthhkju8qY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/zI7F8Y4keEmlxwbphTthhkju8qY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B8C12/3ED0852691A611EDB72C5956C4F9AE02/zI7F8Y4keEmlxwbphTthhkju8qY.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 73:3c:8b:68:b6:99:10:bc:ca:83:35:de:08:a6:55:24:4e:b3: 79:a8:b0:2d:b0:89:0e:1a:3c:d0:ef:05:a4:8d:3b:e7:8b:1c: 03:32:d7:f5:18:c4:ce:f7:87:06:44:88:93:90:71:4d:e5:7f: 48:46:82:14:58:4b:d8:24:19:51:c3:b8:02:22:e9:09:f8:6b: cf:6c:28:d7:8c:5d:25:bf:19:f2:c1:8b:9b:78:88:62:78:85: bd:75:38:77:b2:8f:44:61:1f:fd:78:13:b9:00:fc:a2:29:e6: 22:23:8b:37:af:6b:0e:d3:8b:a9:ee:b5:0e:5b:29:6c:0b:23: ec:19:37:33:ae:bd:4a:62:9d:dc:4b:ec:b4:b5:9a:f7:07:9f: 39:83:0f:3f:bf:7a:30:72:b6:1c:0e:23:b8:ca:c9:14:d7:21: 10:be:c2:b5:2b:f1:1b:af:af:18:0a:76:9d:14:c3:c9:83:01: cd:64:87:ae:cd:01:ab:31:c9:39:55:0d:63:0f:18:98:76:cb: 41:27:96:f2:fa:67:67:63:bd:4e:e1:3e:71:02:6c:ab:a2:c8: 0e:9d:b2:2d:37:71:83:cb:59:12:2d:6c:31:dd:a4:17:f6:b8: d9:e6:aa:3c:e9:af:c0:18:9a:fe:1e:ea:89:c8:58:8a:f7:f0: df:04:43:99 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAcgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjhDMTIxMTAvBgNVBAUTKENDOEVDNUYxOEUyNDc4NDlBNUM3MDZFOTg1M0I2MTg2 NDhFRUYyQTYwHhcNMjUwNjE1MDIxNDQwWhcNMjUwNjIyMDIxNDQwWjAYMRYwFAYD VQQDEw02ODRlMmM5MC04ZjVhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA/r0ICwQ3Iz+Wm1KWFiSP4cEbHfQjdW2OVtxmDtoI3YD6q6wIAEeL1jh2/C0a Wg9jK/YDgyxBHYJ6BqYudlMsKIbUmN8IAu7xWNile5t0tfZveZj6jyDiYIyDBtHE duhPVvD+rmGoNX3+iXu+BowNiuBShD0954Sr5hYhUYOJeRQ5lm0IwqhfJYgNeGpE c9egsfLURidc1qH65jtN7d2lS//UE4OJNRF5fGewi2hWTAQcmVLc+Tg5eXSPBczq 2S6fLtpN0PDsvQA0s1oXXWgynqmJf8Rtr3LSeGT7KC0fwfKipB4ml0TpjSAJOpcD +atPIqCR6GYqcKtMBsuVgJ24gwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFM2fdP3J MbxGhQFQevYyS88JMB5PMB8GA1UdIwQYMBaAFMyOxfGOJHhJpccG6YU7YYZI7vKm MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCOEMxMi8zRUQwODUyNjkx QTYxMUVEQjcyQzU5NTZDNEY5QUUwMi96STdGOFk0a2VFbWx4d2JwaFR0aGhranU4 cVkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3pJN0Y4WTRrZUVtbHh3YnBoVHRoaGtqdThxWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC OEMxMi8zRUQwODUyNjkxQTYxMUVEQjcyQzU5NTZDNEY5QUUwMi96STdGOFk0a2VF bWx4d2JwaFR0aGhranU4cVkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBzPItotpkQvMqDNd4IplUkTrN5qLAtsIkOGjzQ7wWkjTvnixwDMtf1 GMTO94cGRIiTkHFN5X9IRoIUWEvYJBlRw7gCIukJ+GvPbCjXjF0lvxnywYubeIhi eIW9dTh3so9EYR/9eBO5APyiKeYiI4s3r2sO04up7rUOWylsCyPsGTczrr1KYp3c S+y0tZr3B585gw8/v3owcrYcDiO4yskU1yEQvsK1K/Ebr68YCnadFMPJgwHNZIeu zQGrMck5VQ1jDxiYdstBJ5by+mdnY71O4T5xAmyrosgOnbItN3GDy1kSLWwx3aQX 9rjZ5qo86a/AGJr+HuqJyFiK9/DfBEOZ -----END CERTIFICATE-----Generated at Sun Jun 15 09:51:12 2025 by rpki-client