$ rpki-client -vvf rpki.apnic.net/member_repository/A91C6DD8/F04852421D8611E286118CDE08B02CD2/_Z_UV0WCGIOHdsDcCO-2FVIB42g.mft File: _Z_UV0WCGIOHdsDcCO-2FVIB42g.mft (raw, json) Hash identifier: HmWM/POTxuE2wam1Pl+HK7BL5Y3AVcvntiX7i6nf5dw= Subject key identifier: D7:94:D2:A5:33:56:50:22:D5:15:FE:61:E0:05:10:AC:F9:33:3C:2F Authority key identifier: FD:9F:D4:57:45:82:18:83:87:76:C0:DC:08:EF:B6:15:52:01:E3:68 Certificate issuer: /CN=A91C6DD8/serialNumber=FD9FD457458218838776C0DC08EFB6155201E368 Certificate serial: 34F2 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_Z_UV0WCGIOHdsDcCO-2FVIB42g.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C6DD8/F04852421D8611E286118CDE08B02CD2/_Z_UV0WCGIOHdsDcCO-2FVIB42g.mft Manifest number: 34C3 Signing time: Mon 16 Jun 2025 14:27:19 +0000 Manifest this update: Mon 16 Jun 2025 14:27:18 +0000 Manifest next update: Mon 23 Jun 2025 14:27:18 +0000 Files and hashes: 1: _Z_UV0WCGIOHdsDcCO-2FVIB42g.crl (hash: Gp6btPyeTwZULlIeH+PUQAinQSJNnzG/cKEXyEdFRds=) 2: 2DED29046A8E11EF948C2811C4F9AE02.roa (hash: mhSDrNTd50cS8wLIGVZl7Ze3yEkifRrR2iMHOlgICfE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C6DD8/F04852421D8611E286118CDE08B02CD2/_Z_UV0WCGIOHdsDcCO-2FVIB42g.crl rsync://rpki.apnic.net/member_repository/A91C6DD8/F04852421D8611E286118CDE08B02CD2/_Z_UV0WCGIOHdsDcCO-2FVIB42g.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_Z_UV0WCGIOHdsDcCO-2FVIB42g.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 23 Jun 2025 14:27:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13554 (0x34f2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C6DD8, serialNumber=FD9FD457458218838776C0DC08EFB6155201E368 Validity Not Before: Jun 16 14:27:18 2025 GMT Not After : Jun 23 14:27:18 2025 GMT Subject: CN=685029c6-5167 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:05:c3:3a:68:36:2b:18:ef:52:5c:26:fa:7a: e1:14:11:f8:09:09:5c:96:85:46:0b:05:83:e4:9b: f7:3d:2b:1d:a5:fb:95:65:20:6d:3a:d0:de:53:3d: ed:e6:87:61:c9:a7:f6:72:c4:05:a4:b8:41:f4:5a: 55:90:8f:4f:b1:83:31:a6:6d:e7:db:5c:b8:01:14: ed:b0:34:0f:99:a6:e0:bb:72:a7:57:a4:8b:f4:34: 1d:65:53:66:07:05:3f:a6:96:3c:e5:9d:ee:17:40: f7:3c:e3:7d:2f:9d:18:37:49:c2:ef:b1:6a:51:a6: a5:35:6b:8f:b1:e1:00:bf:46:a8:82:a7:93:ba:ff: 51:32:31:8c:a4:4a:07:83:82:77:76:63:b6:74:aa: fd:b5:49:1c:c0:d5:dd:57:c5:cc:9a:1e:e6:83:2a: 14:2c:ee:91:1d:20:e3:9f:75:b8:3a:a4:c9:37:83: 15:1f:06:d0:69:2d:20:41:3f:14:70:d9:be:83:d8: 58:ea:ba:e6:e3:06:93:d3:fd:5b:15:bb:0e:59:da: d9:4d:fa:07:08:4d:d7:94:91:99:71:d5:f6:73:6f: c4:c1:57:69:1c:3e:a8:d1:1a:00:47:3f:e8:5f:6d: 0d:81:08:dd:16:e7:a2:d7:2f:8c:22:86:92:df:9c: 62:fb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D7:94:D2:A5:33:56:50:22:D5:15:FE:61:E0:05:10:AC:F9:33:3C:2F X509v3 Authority Key Identifier: keyid:FD:9F:D4:57:45:82:18:83:87:76:C0:DC:08:EF:B6:15:52:01:E3:68 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C6DD8/F04852421D8611E286118CDE08B02CD2/_Z_UV0WCGIOHdsDcCO-2FVIB42g.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_Z_UV0WCGIOHdsDcCO-2FVIB42g.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C6DD8/F04852421D8611E286118CDE08B02CD2/_Z_UV0WCGIOHdsDcCO-2FVIB42g.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 0a:75:6f:b6:9a:94:ab:96:34:d5:52:8c:cf:ed:0d:98:21:c3: 65:80:b7:70:88:c6:db:6e:a2:cf:db:38:3e:ea:61:b6:4d:64: 71:33:8d:1c:0d:b2:0c:d4:46:53:1f:be:ff:7f:e7:ef:b4:4b: 54:7a:4a:7c:0c:28:ec:3d:4f:49:69:30:84:1c:73:a5:fb:e2: 56:eb:77:04:81:a6:27:36:03:cd:9c:5b:1f:b5:54:c9:8d:13: 32:0f:a6:9f:2d:f1:b2:58:2f:1b:ba:c4:30:29:67:e4:b9:aa: e5:c6:11:9b:0b:81:c1:9c:29:ef:00:04:4f:7f:b5:76:4b:36: da:a5:b6:eb:fe:8f:04:28:e7:c7:fa:35:b7:77:56:4c:0b:80: e8:81:f8:96:ce:c2:86:b0:f1:c4:9a:dc:e1:9d:7e:99:b8:39: 03:d3:19:17:32:8b:df:ad:b2:40:92:37:10:ed:9f:b9:12:9e: b1:f8:7f:0f:e7:d1:e2:9d:92:0a:b4:22:7d:df:66:4d:33:ea: 5c:60:93:24:d2:13:5a:c3:5f:73:a1:64:ee:e9:89:c4:b4:a7: f6:73:df:c0:26:dd:2f:04:d7:36:59:e7:f0:1c:dc:60:0d:92: bb:6f:df:10:a0:92:27:c3:a8:92:0e:db:f6:fa:3d:53:4b:a2: 28:17:bb:06 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICNPIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzZERDgxMTAvBgNVBAUTKEZEOUZENDU3NDU4MjE4ODM4Nzc2QzBEQzA4RUZCNjE1 NTIwMUUzNjgwHhcNMjUwNjE2MTQyNzE4WhcNMjUwNjIzMTQyNzE4WjAYMRYwFAYD VQQDEw02ODUwMjljNi01MTY3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtgXDOmg2KxjvUlwm+nrhFBH4CQlcloVGCwWD5Jv3PSsdpfuVZSBtOtDeUz3t 5odhyaf2csQFpLhB9FpVkI9PsYMxpm3n21y4ARTtsDQPmabgu3KnV6SL9DQdZVNm BwU/ppY85Z3uF0D3PON9L50YN0nC77FqUaalNWuPseEAv0aogqeTuv9RMjGMpEoH g4J3dmO2dKr9tUkcwNXdV8XMmh7mgyoULO6RHSDjn3W4OqTJN4MVHwbQaS0gQT8U cNm+g9hY6rrm4waT0/1bFbsOWdrZTfoHCE3XlJGZcdX2c2/EwVdpHD6o0RoARz/o X20NgQjdFuei1y+MIoaS35xi+wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFNeU0qUz VlAi1RX+YeAFEKz5MzwvMB8GA1UdIwQYMBaAFP2f1FdFghiDh3bA3AjvthVSAeNo MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDNkREOC9GMDQ4NTI0MjFE ODYxMUUyODYxMThDREUwOEIwMkNEMi9fWl9VVjBXQ0dJT0hkc0RjQ08tMkZWSUI0 MmcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL19aX1VWMFdDR0lPSGRzRGNDTy0yRlZJQjQyZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD NkREOC9GMDQ4NTI0MjFEODYxMUUyODYxMThDREUwOEIwMkNEMi9fWl9VVjBXQ0dJ T0hkc0RjQ08tMkZWSUI0MmcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAKdW+2mpSrljTVUozP7Q2YIcNlgLdwiMbbbqLP2zg+6mG2TWRxM40c DbIM1EZTH77/f+fvtEtUekp8DCjsPU9JaTCEHHOl++JW63cEgaYnNgPNnFsftVTJ jRMyD6afLfGyWC8busQwKWfkuarlxhGbC4HBnCnvAARPf7V2Szbapbbr/o8EKOfH +jW3d1ZMC4DogfiWzsKGsPHEmtzhnX6ZuDkD0xkXMovfrbJAkjcQ7Z+5Ep6x+H8P 59HinZIKtCJ932ZNM+pcYJMk0hNaw19zoWTu6YnEtKf2c9/AJt0vBNc2WefwHNxg DZK7b98QoJInw6iSDtv2+j1TS6IoF7sG -----END CERTIFICATE-----Generated at Tue Jun 17 16:39:07 2025 by rpki-client