$ rpki-client -vvf rpki.apnic.net/member_repository/A91E4D9B/F5BAA3D8C80011EA87D44A78C4F9AE02/z4nWqxHn1Hqhe0MJxypytxy6R64.mft File: z4nWqxHn1Hqhe0MJxypytxy6R64.mft (raw, json) Hash identifier: FTflnuhWwM0aVMTXqvXNdFBSM6quIRDvpoVGhClILtA= Subject key identifier: C3:74:FF:20:F1:E9:38:83:D8:9E:EA:AE:0E:6B:ED:06:FE:B9:CF:A5 Authority key identifier: CF:89:D6:AB:11:E7:D4:7A:A1:7B:43:09:C7:2A:72:B7:1C:BA:47:AE Certificate issuer: /CN=A91E4D9B/serialNumber=CF89D6AB11E7D47AA17B4309C72A72B71CBA47AE Certificate serial: 0871 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/z4nWqxHn1Hqhe0MJxypytxy6R64.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E4D9B/F5BAA3D8C80011EA87D44A78C4F9AE02/z4nWqxHn1Hqhe0MJxypytxy6R64.mft Manifest number: 0867 Signing time: Thu 12 Jun 2025 20:26:16 +0000 Manifest this update: Thu 12 Jun 2025 20:26:15 +0000 Manifest next update: Thu 19 Jun 2025 20:26:15 +0000 Files and hashes: 1: z4nWqxHn1Hqhe0MJxypytxy6R64.crl (hash: 4yM/NOw9nRO4LMRAbPNtMFxnr8IB39EAh1y9QTMnfek=) 2: CCF7B8AA22B811ECAD21FB20C4F9AE02.roa (hash: jP9WQeUuHByQOgvhcc4yViwwc1IsiLi4j4kFeZuXSLA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E4D9B/F5BAA3D8C80011EA87D44A78C4F9AE02/z4nWqxHn1Hqhe0MJxypytxy6R64.crl rsync://rpki.apnic.net/member_repository/A91E4D9B/F5BAA3D8C80011EA87D44A78C4F9AE02/z4nWqxHn1Hqhe0MJxypytxy6R64.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/z4nWqxHn1Hqhe0MJxypytxy6R64.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 19 Jun 2025 20:26:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2161 (0x871) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E4D9B, serialNumber=CF89D6AB11E7D47AA17B4309C72A72B71CBA47AE Validity Not Before: Jun 12 20:26:15 2025 GMT Not After : Jun 19 20:26:15 2025 GMT Subject: CN=684b37e7-2a59 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ea:b3:f3:2b:fa:9d:07:f5:c1:49:d7:7e:9c:87: 14:27:a4:b4:31:77:47:19:7b:4e:f2:6e:df:53:78: 14:14:32:5b:cc:2b:25:fe:66:8c:06:e4:3a:2b:f9: 32:a2:bf:18:ec:62:96:cd:28:5c:bb:b5:5a:a5:ba: 47:32:ea:23:f0:e6:77:50:a0:8d:51:2a:d2:7b:9d: 21:eb:0b:f5:94:46:dc:2e:f5:fd:6b:75:41:3a:c8: 68:e9:b8:31:c9:80:8d:c2:59:c1:46:63:6d:74:e8: 93:75:ab:56:f1:d3:96:24:19:6c:c0:db:65:89:c5: 9b:7d:e8:2d:78:8d:9c:68:0c:46:06:0d:e3:ef:e1: a5:46:30:a7:da:19:00:da:80:6d:b5:76:45:2b:23: 01:4e:e1:2b:38:ab:7d:28:16:6c:66:bd:91:26:e8: 0d:29:3b:19:c5:1e:e1:46:ac:ff:06:77:ee:f8:ef: 89:98:40:ad:e0:a6:29:47:aa:5d:cd:ec:73:2e:58: 1c:b4:f6:2f:12:c6:1c:23:d2:c9:26:cd:92:ad:20: eb:7e:5e:32:3e:4a:5c:09:e7:6b:5b:bd:fc:f2:ba: cf:1f:ad:e6:99:e7:80:dd:2b:f2:b8:d6:72:8d:a1: 95:6c:5d:c5:38:c1:b8:51:03:93:5b:e8:d9:cf:3a: ac:33 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C3:74:FF:20:F1:E9:38:83:D8:9E:EA:AE:0E:6B:ED:06:FE:B9:CF:A5 X509v3 Authority Key Identifier: keyid:CF:89:D6:AB:11:E7:D4:7A:A1:7B:43:09:C7:2A:72:B7:1C:BA:47:AE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E4D9B/F5BAA3D8C80011EA87D44A78C4F9AE02/z4nWqxHn1Hqhe0MJxypytxy6R64.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/z4nWqxHn1Hqhe0MJxypytxy6R64.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E4D9B/F5BAA3D8C80011EA87D44A78C4F9AE02/z4nWqxHn1Hqhe0MJxypytxy6R64.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 80:bd:aa:38:16:4f:b7:f1:06:6c:40:28:01:e2:70:04:57:6c: 8b:fc:fc:ee:f0:ab:f3:23:ff:53:cf:de:89:33:40:a3:b5:a4: a7:26:46:c2:2d:48:e2:da:44:a6:ad:27:fe:b1:85:24:ff:ec: 9e:df:8a:cd:d9:07:0b:cb:73:31:67:e2:e0:81:9d:3d:84:b5: 15:56:f3:9b:47:40:05:67:91:64:8d:7b:fe:ca:e8:48:56:dd: 42:0b:d2:d3:2c:62:d8:8f:0e:58:01:86:97:23:6d:63:ca:99: 2a:26:a6:15:47:1f:9e:2b:e8:3f:2a:68:b7:59:68:f6:73:f6: 4a:77:40:85:e6:8a:5c:78:1a:59:20:12:96:da:c8:8a:b0:a9: b5:eb:49:45:07:0f:26:a6:a0:69:c0:64:6e:c7:57:a4:e5:e0: 61:31:63:75:50:2b:1c:5e:2f:76:e9:f6:ac:49:cb:e2:2c:ae: 13:9d:bb:26:1e:2b:5e:d4:72:d2:a6:46:88:dc:82:79:bb:cb: cb:49:47:49:fc:50:65:3b:ec:20:9c:bc:d0:bb:d7:90:cb:72: ce:85:01:84:9c:ba:ce:9e:84:c2:8e:be:05:d6:d2:da:09:c9: f1:28:f1:ea:d9:6f:d5:c8:52:68:29:42:0c:99:7f:07:ac:67: 2a:5e:ef:b3 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCHEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTREOUIxMTAvBgNVBAUTKENGODlENkFCMTFFN0Q0N0FBMTdCNDMwOUM3MkE3MkI3 MUNCQTQ3QUUwHhcNMjUwNjEyMjAyNjE1WhcNMjUwNjE5MjAyNjE1WjAYMRYwFAYD VQQDEw02ODRiMzdlNy0yYTU5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA6rPzK/qdB/XBSdd+nIcUJ6S0MXdHGXtO8m7fU3gUFDJbzCsl/maMBuQ6K/ky or8Y7GKWzShcu7VapbpHMuoj8OZ3UKCNUSrSe50h6wv1lEbcLvX9a3VBOsho6bgx yYCNwlnBRmNtdOiTdatW8dOWJBlswNtlicWbfegteI2caAxGBg3j7+GlRjCn2hkA 2oBttXZFKyMBTuErOKt9KBZsZr2RJugNKTsZxR7hRqz/Bnfu+O+JmECt4KYpR6pd zexzLlgctPYvEsYcI9LJJs2SrSDrfl4yPkpcCedrW7388rrPH63mmeeA3SvyuNZy jaGVbF3FOMG4UQOTW+jZzzqsMwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFMN0/yDx 6TiD2J7qrg5r7Qb+uc+lMB8GA1UdIwQYMBaAFM+J1qsR59R6oXtDCccqcrccukeu MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFNEQ5Qi9GNUJBQTNEOEM4 MDAxMUVBODdENDRBNzhDNEY5QUUwMi96NG5XcXhIbjFIcWhlME1KeHlweXR4eTZS NjQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3o0bldxeEhuMUhxaGUwTUp4eXB5dHh5NlI2NC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF NEQ5Qi9GNUJBQTNEOEM4MDAxMUVBODdENDRBNzhDNEY5QUUwMi96NG5XcXhIbjFI cWhlME1KeHlweXR4eTZSNjQubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCAvao4Fk+38QZsQCgB4nAEV2yL/Pzu8KvzI/9Tz96JM0CjtaSnJkbC LUji2kSmrSf+sYUk/+ye34rN2QcLy3MxZ+LggZ09hLUVVvObR0AFZ5FkjXv+yuhI Vt1CC9LTLGLYjw5YAYaXI21jypkqJqYVRx+eK+g/Kmi3WWj2c/ZKd0CF5opceBpZ IBKW2siKsKm160lFBw8mpqBpwGRux1ek5eBhMWN1UCscXi926fasScviLK4Tnbsm Hite1HLSpkaI3IJ5u8vLSUdJ/FBlO+wgnLzQu9eQy3LOhQGEnLrOnoTCjr4F1tLa CcnxKPHq2W/VyFJoKUIMmX8HrGcqXu+z -----END CERTIFICATE-----Generated at Sat Jun 14 19:31:32 2025 by rpki-client