$ rpki-client -vvf rpki.apnic.net/member_repository/A91D493B/DBAD37A0CAAE11EC8241280DC4F9AE02/zIO7bQqhd53qFp7bpKQCKN4hvXs.mft File: zIO7bQqhd53qFp7bpKQCKN4hvXs.mft (raw, json) Hash identifier: 4wny9LE7cFmwU0LeEfwu+jnkmrDjej7y/VzvK2KiLEU= Subject key identifier: 7A:5E:66:AE:6F:DD:83:E6:30:F0:2C:D0:C6:35:C2:C4:30:F9:0B:B0 Authority key identifier: CC:83:BB:6D:0A:A1:77:9D:EA:16:9E:DB:A4:A4:02:28:DE:21:BD:7B Certificate issuer: /CN=A91D493B/serialNumber=CC83BB6D0AA1779DEA169EDBA4A40228DE21BD7B Certificate serial: 0333 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/zIO7bQqhd53qFp7bpKQCKN4hvXs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D493B/DBAD37A0CAAE11EC8241280DC4F9AE02/zIO7bQqhd53qFp7bpKQCKN4hvXs.mft Manifest number: 032E Signing time: Thu 19 Jun 2025 00:56:35 +0000 Manifest this update: Thu 19 Jun 2025 00:56:34 +0000 Manifest next update: Thu 26 Jun 2025 00:56:34 +0000 Files and hashes: 1: zIO7bQqhd53qFp7bpKQCKN4hvXs.crl (hash: bPzkyc3buiG+uB7PzBoO9I0abxRE6ciLA9LCvdN0EC8=) 2: 684DDD32CAB311ECBBCE9843C4F9AE02.roa (hash: qH/kmALWQxd9w+o7ml/PHWheO95UYxgo26aceJX0/p4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D493B/DBAD37A0CAAE11EC8241280DC4F9AE02/zIO7bQqhd53qFp7bpKQCKN4hvXs.crl rsync://rpki.apnic.net/member_repository/A91D493B/DBAD37A0CAAE11EC8241280DC4F9AE02/zIO7bQqhd53qFp7bpKQCKN4hvXs.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/zIO7bQqhd53qFp7bpKQCKN4hvXs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 26 Jun 2025 00:56:34 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 819 (0x333) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D493B, serialNumber=CC83BB6D0AA1779DEA169EDBA4A40228DE21BD7B Validity Not Before: Jun 19 00:56:34 2025 GMT Not After : Jun 26 00:56:34 2025 GMT Subject: CN=68536043-bb74 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:da:6e:40:7f:d2:de:94:45:cd:d2:32:a4:10:a4: e9:a4:5e:89:8d:77:d7:85:a7:0e:ae:8e:63:54:02: d5:7a:c2:b8:ce:66:41:bb:c7:ef:d1:00:8a:2d:b4: 35:e8:ed:94:9d:39:c4:51:20:0d:ec:93:ef:62:9e: b1:17:e4:37:2b:cf:08:4f:61:e5:43:87:8d:16:5d: 31:16:8f:87:c0:e0:cd:bf:55:80:d5:0f:19:fa:9f: 83:4e:a3:bf:e4:95:36:2b:91:49:d4:d2:7e:20:44: 64:3a:37:7d:de:de:49:a8:2b:88:e5:32:12:30:99: 15:5f:19:e8:05:93:b1:4c:f3:86:56:02:90:9a:75: 80:89:e2:93:34:fe:9d:f1:3e:8f:db:1e:1d:f1:6b: 0d:07:9e:48:8f:cb:93:03:26:c8:c8:1c:90:13:ee: 66:0b:64:2c:54:26:dd:7e:d1:af:e2:0e:7a:37:fc: 1d:d7:85:21:26:d2:82:b0:23:a6:1e:fa:34:3d:10: 6d:8e:34:b7:c6:0e:fe:a1:bc:a1:bf:08:62:b4:32: 46:66:9f:c9:6a:ad:b3:c1:d9:85:72:2c:21:54:dd: 38:ad:6f:af:48:66:9b:1f:1a:3a:88:b4:f5:df:21: d8:a1:83:66:9e:00:ac:f2:8f:54:e4:3c:c9:0d:bd: a0:d5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7A:5E:66:AE:6F:DD:83:E6:30:F0:2C:D0:C6:35:C2:C4:30:F9:0B:B0 X509v3 Authority Key Identifier: keyid:CC:83:BB:6D:0A:A1:77:9D:EA:16:9E:DB:A4:A4:02:28:DE:21:BD:7B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D493B/DBAD37A0CAAE11EC8241280DC4F9AE02/zIO7bQqhd53qFp7bpKQCKN4hvXs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/zIO7bQqhd53qFp7bpKQCKN4hvXs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D493B/DBAD37A0CAAE11EC8241280DC4F9AE02/zIO7bQqhd53qFp7bpKQCKN4hvXs.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 92:36:c3:42:b6:ba:5e:c3:f5:b5:06:e7:a0:33:a6:7f:3f:dc: 03:09:ab:2b:83:45:14:23:5b:14:f6:5e:44:2e:a9:79:41:4b: 64:1e:c1:fc:8b:aa:97:91:c8:5b:c3:da:2e:e4:fb:b4:27:a4: 03:3e:84:d2:dd:e1:18:ee:d2:dc:87:a2:41:26:87:11:3d:7d: cc:cf:dd:9e:8b:e7:8f:a4:70:16:cf:a3:14:18:41:1c:75:ca: da:93:ed:da:ee:8a:9e:22:5e:fd:1e:62:5e:ec:9c:52:43:bb: 16:0c:ac:ae:63:1f:51:d9:f1:18:01:42:0e:25:3e:e9:b0:fc: b3:ea:39:e4:82:af:d3:c8:e1:8f:9a:64:74:aa:b5:a6:ae:1f: 58:86:6e:77:33:b3:37:25:00:9c:37:71:51:b0:56:35:30:b3: 08:4e:7e:eb:f4:c5:05:6c:81:d2:e9:e0:fd:50:52:1e:c3:e4: a8:7b:de:b1:21:9a:1b:c8:f0:49:9e:9b:00:d8:a1:4a:6d:c8: 9f:63:b3:d0:17:d0:60:9c:b3:2f:f2:4f:67:f0:be:63:59:50: 12:1a:e8:48:23:64:ea:9e:50:d2:94:60:9c:f5:ef:ba:84:42: cc:b3:a2:50:f2:b7:73:58:36:e4:5f:0e:42:4d:26:93:db:07: 74:82:7e:cc -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAzMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDQ5M0IxMTAvBgNVBAUTKENDODNCQjZEMEFBMTc3OURFQTE2OUVEQkE0QTQwMjI4 REUyMUJEN0IwHhcNMjUwNjE5MDA1NjM0WhcNMjUwNjI2MDA1NjM0WjAYMRYwFAYD VQQDEw02ODUzNjA0My1iYjc0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA2m5Af9LelEXN0jKkEKTppF6JjXfXhacOro5jVALVesK4zmZBu8fv0QCKLbQ1 6O2UnTnEUSAN7JPvYp6xF+Q3K88IT2HlQ4eNFl0xFo+HwODNv1WA1Q8Z+p+DTqO/ 5JU2K5FJ1NJ+IERkOjd93t5JqCuI5TISMJkVXxnoBZOxTPOGVgKQmnWAieKTNP6d 8T6P2x4d8WsNB55Ij8uTAybIyByQE+5mC2QsVCbdftGv4g56N/wd14UhJtKCsCOm Hvo0PRBtjjS3xg7+obyhvwhitDJGZp/Jaq2zwdmFciwhVN04rW+vSGabHxo6iLT1 3yHYoYNmngCs8o9U5DzJDb2g1QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFHpeZq5v 3YPmMPAs0MY1wsQw+QuwMB8GA1UdIwQYMBaAFMyDu20KoXed6hae26SkAijeIb17 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFENDkzQi9EQkFEMzdBMENB QUUxMUVDODI0MTI4MERDNEY5QUUwMi96SU83YlFxaGQ1M3FGcDdicEtRQ0tONGh2 WHMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3pJTzdiUXFoZDUzcUZwN2JwS1FDS040aHZYcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE NDkzQi9EQkFEMzdBMENBQUUxMUVDODI0MTI4MERDNEY5QUUwMi96SU83YlFxaGQ1 M3FGcDdicEtRQ0tONGh2WHMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCSNsNCtrpew/W1BuegM6Z/P9wDCasrg0UUI1sU9l5ELql5QUtkHsH8 i6qXkchbw9ou5Pu0J6QDPoTS3eEY7tLch6JBJocRPX3Mz92ei+ePpHAWz6MUGEEc dcrak+3a7oqeIl79HmJe7JxSQ7sWDKyuYx9R2fEYAUIOJT7psPyz6jnkgq/TyOGP mmR0qrWmrh9Yhm53M7M3JQCcN3FRsFY1MLMITn7r9MUFbIHS6eD9UFIew+Soe96x IZobyPBJnpsA2KFKbcifY7PQF9BgnLMv8k9n8L5jWVASGuhII2TqnlDSlGCc9e+6 hELMs6JQ8rdzWDbkXw5CTSaT2wd0gn7M -----END CERTIFICATE-----Generated at Fri Jun 20 07:48:01 2025 by rpki-client