$ rpki-client -vvf rpki.apnic.net/member_repository/A91EFC94/A8CD016494DA11EF89086D21C4F9AE02/ZTy4p1ENubbBon2HfSEh5t9CGYI.mft File: ZTy4p1ENubbBon2HfSEh5t9CGYI.mft (raw, json) Hash identifier: ZHq1iklfpzSQgLm6KLSo7XXhNcmhOY7wT/C6sku+XA8= Subject key identifier: 41:2A:D0:33:A7:26:DF:3C:01:56:D4:9F:41:F4:56:72:D6:AB:A8:63 Authority key identifier: 65:3C:B8:A7:51:0D:B9:B6:C1:A2:7D:87:7D:21:21:E6:DF:42:19:82 Certificate issuer: /CN=A91EFC94/serialNumber=653CB8A7510DB9B6C1A27D877D2121E6DF421982 Certificate serial: 82 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ZTy4p1ENubbBon2HfSEh5t9CGYI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91EFC94/A8CD016494DA11EF89086D21C4F9AE02/ZTy4p1ENubbBon2HfSEh5t9CGYI.mft Manifest number: 7E Signing time: Tue 17 Jun 2025 05:40:59 +0000 Manifest this update: Tue 17 Jun 2025 05:40:59 +0000 Manifest next update: Tue 24 Jun 2025 05:40:59 +0000 Files and hashes: 1: ZTy4p1ENubbBon2HfSEh5t9CGYI.crl (hash: WjU7JG9cny1n4rq/0gV0xotyt55I8rBJqlY/ktZOl+c=) 2: 1A4E810A9C4711EFBCAF2961C4F9AE02.roa (hash: H/SNFy0blXHf51g3f4tDsQMfyr+dfN3zT3EjfHQV3so=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91EFC94/A8CD016494DA11EF89086D21C4F9AE02/ZTy4p1ENubbBon2HfSEh5t9CGYI.crl rsync://rpki.apnic.net/member_repository/A91EFC94/A8CD016494DA11EF89086D21C4F9AE02/ZTy4p1ENubbBon2HfSEh5t9CGYI.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ZTy4p1ENubbBon2HfSEh5t9CGYI.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 24 Jun 2025 05:40:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 130 (0x82) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91EFC94, serialNumber=653CB8A7510DB9B6C1A27D877D2121E6DF421982 Validity Not Before: Jun 17 05:40:59 2025 GMT Not After : Jun 24 05:40:59 2025 GMT Subject: CN=6850ffeb-3e98 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f6:f2:ec:17:3e:5d:4f:b2:e1:cb:eb:b6:7e:ee: 14:d2:e9:5b:8a:d5:c6:24:44:9c:e5:28:31:90:08: 47:aa:0c:83:60:6f:76:61:52:27:49:fe:7b:8c:10: ba:d4:53:48:4b:b2:7c:c6:a0:48:eb:c9:b6:b8:4a: 48:5e:c0:2d:bb:03:d1:57:23:d6:10:aa:c6:85:5a: ca:75:70:b4:25:d5:70:b7:b9:f1:96:93:b6:d3:6b: f5:df:d9:f3:fe:0a:81:63:c3:59:a1:2f:7b:10:ae: b1:5b:1d:7d:f6:4b:7b:62:82:21:e7:47:8b:f7:da: 54:c0:a1:b4:fc:4b:b5:c0:ef:10:07:53:d0:b0:83: e0:31:8e:bf:7f:75:2e:9f:c2:23:81:44:93:8b:00: 2d:08:20:22:64:50:34:19:5d:2d:a8:0b:2a:cb:85: 6a:c6:de:49:ae:f3:ec:7d:f6:d0:a3:6f:32:9c:c8: c0:a9:81:b1:de:67:a9:71:b1:fb:b8:a2:6b:8e:67: cf:08:19:35:b6:2f:0d:44:a8:e2:e6:d0:75:72:31: cd:78:42:84:0d:d1:e8:42:c6:d7:5c:7c:65:ce:4a: 7c:cf:05:6b:2b:c2:29:32:05:8b:00:c0:a1:f1:71: 4a:e0:8d:b0:3a:dd:13:20:9c:61:83:ef:c1:8a:e9: d0:df Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 41:2A:D0:33:A7:26:DF:3C:01:56:D4:9F:41:F4:56:72:D6:AB:A8:63 X509v3 Authority Key Identifier: keyid:65:3C:B8:A7:51:0D:B9:B6:C1:A2:7D:87:7D:21:21:E6:DF:42:19:82 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91EFC94/A8CD016494DA11EF89086D21C4F9AE02/ZTy4p1ENubbBon2HfSEh5t9CGYI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ZTy4p1ENubbBon2HfSEh5t9CGYI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91EFC94/A8CD016494DA11EF89086D21C4F9AE02/ZTy4p1ENubbBon2HfSEh5t9CGYI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 9b:ad:99:93:b0:a5:fa:d9:b2:b6:f9:37:07:35:48:9f:7c:25: 92:a7:6f:75:85:cb:8d:09:b9:f7:46:e4:8f:b5:e3:3e:31:22: cc:32:6a:4b:ef:69:6f:93:51:5e:77:2a:7e:b0:31:c9:ea:cb: c4:91:67:d5:8f:6b:fd:db:04:b0:ee:5d:3a:06:c4:ee:dc:ce: f3:d8:f9:b4:52:cf:07:8e:ac:7a:20:62:b1:fa:9a:b8:7d:14: 53:42:e6:fc:24:63:38:08:1a:86:b6:20:1e:15:49:0b:cb:98: 0b:3c:8c:85:15:f3:41:cd:96:cd:9f:b3:60:50:78:c0:c6:0c: d5:22:ec:8c:bd:c2:fc:6e:64:48:29:47:46:6d:d2:82:5b:32: 6b:38:33:c1:56:08:4f:6d:f1:17:b3:f4:4f:e1:1d:11:32:d8: e9:68:49:7a:cc:6f:50:37:f8:53:38:23:d7:68:36:9c:d0:6e: f0:40:e5:13:6a:87:63:21:42:37:99:43:86:1b:d5:06:da:ca: 86:9b:5c:38:31:04:62:05:81:54:e9:16:c8:62:05:4d:99:f5: 51:c4:38:d8:11:20:11:0c:d4:ce:27:02:12:1c:f2:53:ad:53: 27:3b:f7:a0:c8:9b:02:a9:bc:58:bd:f1:7e:e1:ef:03:99:ab: c7:50:04:41 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAIIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RUZDOTQxMTAvBgNVBAUTKDY1M0NCOEE3NTEwREI5QjZDMUEyN0Q4NzdEMjEyMUU2 REY0MjE5ODIwHhcNMjUwNjE3MDU0MDU5WhcNMjUwNjI0MDU0MDU5WjAYMRYwFAYD VQQDEw02ODUwZmZlYi0zZTk4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA9vLsFz5dT7Lhy+u2fu4U0ulbitXGJESc5SgxkAhHqgyDYG92YVInSf57jBC6 1FNIS7J8xqBI68m2uEpIXsAtuwPRVyPWEKrGhVrKdXC0JdVwt7nxlpO202v139nz /gqBY8NZoS97EK6xWx199kt7YoIh50eL99pUwKG0/Eu1wO8QB1PQsIPgMY6/f3Uu n8IjgUSTiwAtCCAiZFA0GV0tqAsqy4Vqxt5JrvPsffbQo28ynMjAqYGx3mepcbH7 uKJrjmfPCBk1ti8NRKji5tB1cjHNeEKEDdHoQsbXXHxlzkp8zwVrK8IpMgWLAMCh 8XFK4I2wOt0TIJxhg+/BiunQ3wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFEEq0DOn Jt88AVbUn0H0VnLWq6hjMB8GA1UdIwQYMBaAFGU8uKdRDbm2waJ9h30hIebfQhmC MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFRkM5NC9BOENEMDE2NDk0 REExMUVGODkwODZEMjFDNEY5QUUwMi9aVHk0cDFFTnViYkJvbjJIZlNFaDV0OUNH WUkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL1pUeTRwMUVOdWJiQm9uMkhmU0VoNXQ5Q0dZSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF RkM5NC9BOENEMDE2NDk0REExMUVGODkwODZEMjFDNEY5QUUwMi9aVHk0cDFFTnVi YkJvbjJIZlNFaDV0OUNHWUkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCbrZmTsKX62bK2+TcHNUiffCWSp291hcuNCbn3RuSPteM+MSLMMmpL 72lvk1Fedyp+sDHJ6svEkWfVj2v92wSw7l06BsTu3M7z2Pm0Us8Hjqx6IGKx+pq4 fRRTQub8JGM4CBqGtiAeFUkLy5gLPIyFFfNBzZbNn7NgUHjAxgzVIuyMvcL8bmRI KUdGbdKCWzJrODPBVghPbfEXs/RP4R0RMtjpaEl6zG9QN/hTOCPXaDac0G7wQOUT aodjIUI3mUOGG9UG2sqGm1w4MQRiBYFU6RbIYgVNmfVRxDjYESARDNTOJwISHPJT rVMnO/egyJsCqbxYvfF+4e8DmavHUARB -----END CERTIFICATE-----Generated at Wed Jun 18 16:43:35 2025 by rpki-client