$ rpki-client -vvf rpki.apnic.net/member_repository/A91F67BB/BDFBF1860E3E11E9836F4014C4F9AE02/zFkhdtiMQj-IWbUYtq0zT_92dAk.mft File: zFkhdtiMQj-IWbUYtq0zT_92dAk.mft (raw, json) Hash identifier: MgOQDInLDqXzXANvK2wl3152TK/MLVPrCI7njyttaUU= Subject key identifier: BC:D2:0D:84:A9:C0:23:08:0E:CC:D1:EF:90:8A:F4:62:F6:92:61:12 Authority key identifier: CC:59:21:76:D8:8C:42:3F:88:59:B5:18:B6:AD:33:4F:FF:76:74:09 Certificate issuer: /CN=A91F67BB/serialNumber=CC592176D88C423F8859B518B6AD334FFF767409 Certificate serial: 1152 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/zFkhdtiMQj-IWbUYtq0zT_92dAk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F67BB/BDFBF1860E3E11E9836F4014C4F9AE02/zFkhdtiMQj-IWbUYtq0zT_92dAk.mft Manifest number: 1133 Signing time: Mon 16 Jun 2025 17:17:09 +0000 Manifest this update: Mon 16 Jun 2025 17:17:09 +0000 Manifest next update: Mon 23 Jun 2025 17:17:09 +0000 Files and hashes: 1: zFkhdtiMQj-IWbUYtq0zT_92dAk.crl (hash: 27x6eNQmWVFYN9sHhCIBo8Ftpp2jsRjKj+tXuWJyYPQ=) 2: 23A0D39C0F1D11E991F4271EC4F9AE02.roa (hash: LI5814/1mo8RhGHDIyDmTnyAaT8jPK8eiZW8nnVoECM=) 3: 5488F6EA0F1A11E9B3F2A713C4F9AE02.roa (hash: KE984DbFRTO0XDJnJvkUh9nTQI9OdADddfHh/b8sXns=) 4: 53BDA2F60F1A11E9B3F2A713C4F9AE02.roa (hash: tG0xAoHX5Jrg4VXIV0PMgN27hGtGNiwPzNpPEMcc5ZU=) 5: 552292460F1A11E9B3F2A713C4F9AE02.roa (hash: NlRxG3SgenSihBb1Uz1mdp6In7PIY3SWzoat7OXr7O8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F67BB/BDFBF1860E3E11E9836F4014C4F9AE02/zFkhdtiMQj-IWbUYtq0zT_92dAk.crl rsync://rpki.apnic.net/member_repository/A91F67BB/BDFBF1860E3E11E9836F4014C4F9AE02/zFkhdtiMQj-IWbUYtq0zT_92dAk.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/zFkhdtiMQj-IWbUYtq0zT_92dAk.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 23 Jun 2025 16:49:24 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4434 (0x1152) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F67BB, serialNumber=CC592176D88C423F8859B518B6AD334FFF767409 Validity Not Before: Jun 16 17:17:09 2025 GMT Not After : Jun 23 17:17:09 2025 GMT Subject: CN=68505195-d69a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:be:db:1f:01:97:08:5d:36:ae:bd:d6:2e:d4: 6b:d9:e3:30:61:cd:61:83:b0:c5:e4:04:a8:89:8c: e1:56:fe:bb:3d:81:85:b7:d4:3a:89:33:17:e9:c3: d1:59:0c:9a:de:e0:67:79:03:0f:2b:43:5c:42:56: 5e:f5:0a:04:c4:9f:2a:7f:52:7f:a0:f4:c7:aa:dd: 78:b6:f3:10:30:bc:1a:0b:0a:d2:0b:e1:b4:25:3c: f5:2b:58:fa:56:a7:4e:d7:55:40:97:7b:be:0e:97: 29:14:35:84:7a:0c:4c:68:84:5b:5a:f9:89:45:3f: 3d:6d:96:a5:cb:5c:b9:03:7a:ff:fe:52:5e:62:5f: b9:0b:c4:ee:a7:07:52:5d:56:e3:ce:06:e9:13:45: 56:4b:59:bd:94:d3:4c:b6:63:10:52:78:29:97:ea: ae:c7:93:71:c8:b9:53:df:57:c1:56:69:c7:57:8d: 07:e0:33:05:9d:d1:1d:a7:c8:50:d0:32:f4:18:7d: 2a:62:df:d0:5c:20:28:88:b9:0c:72:83:7e:db:94: cf:12:43:32:ef:51:14:23:4f:a9:35:fe:5d:32:75: f5:81:14:8d:69:99:0e:23:da:8e:85:c4:39:62:22: e3:c3:9c:b1:10:42:bf:61:80:06:17:bc:7d:5a:cd: 28:bf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BC:D2:0D:84:A9:C0:23:08:0E:CC:D1:EF:90:8A:F4:62:F6:92:61:12 X509v3 Authority Key Identifier: keyid:CC:59:21:76:D8:8C:42:3F:88:59:B5:18:B6:AD:33:4F:FF:76:74:09 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F67BB/BDFBF1860E3E11E9836F4014C4F9AE02/zFkhdtiMQj-IWbUYtq0zT_92dAk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/zFkhdtiMQj-IWbUYtq0zT_92dAk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F67BB/BDFBF1860E3E11E9836F4014C4F9AE02/zFkhdtiMQj-IWbUYtq0zT_92dAk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 5f:13:83:35:0a:40:5c:02:8e:0f:45:ec:84:11:75:b5:eb:ac: c4:29:61:1c:da:d1:8f:a6:21:42:af:65:c9:04:b0:ae:db:a6: 68:98:eb:0f:7c:c4:f2:24:d3:6c:77:49:75:b9:03:de:92:ef: e1:82:d8:99:32:1c:14:02:ee:08:16:eb:89:2b:dd:c2:d0:c0: 12:32:70:69:74:de:1e:3d:f3:73:03:fe:ed:6c:08:44:86:03: 35:23:31:2b:34:ae:4a:cd:51:6b:77:85:b7:49:e7:85:70:c1: 75:44:a1:f2:48:37:15:cc:61:ae:34:69:c3:b1:27:c5:47:3b: ae:7f:60:50:fe:d4:15:da:64:eb:72:7b:ef:27:dd:dd:43:dd: 66:85:27:22:37:e0:54:29:6a:e7:0b:84:d6:59:68:ce:60:9c: c0:06:2f:ea:8d:3c:56:99:94:8d:4d:dc:ce:04:86:72:0a:40: e1:e8:d9:da:2f:19:ce:80:e7:06:f9:3f:1d:fa:bb:3c:0f:ce: 06:54:1d:95:a1:eb:b4:1b:32:b1:a3:f4:1b:5c:2f:ce:c6:6b: e2:92:e5:cc:1c:b0:7a:35:ea:80:f8:bf:a9:e1:93:0b:0f:3e: 5a:52:3f:f6:e7:ce:64:18:be:11:a3:a1:c9:ed:65:82:e3:88: 6e:5a:f7:a5 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICEVIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjY3QkIxMTAvBgNVBAUTKENDNTkyMTc2RDg4QzQyM0Y4ODU5QjUxOEI2QUQzMzRG RkY3Njc0MDkwHhcNMjUwNjE2MTcxNzA5WhcNMjUwNjIzMTcxNzA5WjAYMRYwFAYD VQQDEw02ODUwNTE5NS1kNjlhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwL7bHwGXCF02rr3WLtRr2eMwYc1hg7DF5ASoiYzhVv67PYGFt9Q6iTMX6cPR WQya3uBneQMPK0NcQlZe9QoExJ8qf1J/oPTHqt14tvMQMLwaCwrSC+G0JTz1K1j6 VqdO11VAl3u+DpcpFDWEegxMaIRbWvmJRT89bZaly1y5A3r//lJeYl+5C8TupwdS XVbjzgbpE0VWS1m9lNNMtmMQUngpl+qux5NxyLlT31fBVmnHV40H4DMFndEdp8hQ 0DL0GH0qYt/QXCAoiLkMcoN+25TPEkMy71EUI0+pNf5dMnX1gRSNaZkOI9qOhcQ5 YiLjw5yxEEK/YYAGF7x9Ws0ovwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFLzSDYSp wCMIDszR75CK9GL2kmESMB8GA1UdIwQYMBaAFMxZIXbYjEI/iFm1GLatM0//dnQJ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGNjdCQi9CREZCRjE4NjBF M0UxMUU5ODM2RjQwMTRDNEY5QUUwMi96RmtoZHRpTVFqLUlXYlVZdHEwelRfOTJk QWsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL3pGa2hkdGlNUWotSVdiVVl0cTB6VF85MmRBay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG NjdCQi9CREZCRjE4NjBFM0UxMUU5ODM2RjQwMTRDNEY5QUUwMi96RmtoZHRpTVFq LUlXYlVZdHEwelRfOTJkQWsubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBfE4M1CkBcAo4PReyEEXW166zEKWEc2tGPpiFCr2XJBLCu26ZomOsP fMTyJNNsd0l1uQPeku/hgtiZMhwUAu4IFuuJK93C0MASMnBpdN4ePfNzA/7tbAhE hgM1IzErNK5KzVFrd4W3SeeFcMF1RKHySDcVzGGuNGnDsSfFRzuuf2BQ/tQV2mTr cnvvJ93dQ91mhSciN+BUKWrnC4TWWWjOYJzABi/qjTxWmZSNTdzOBIZyCkDh6Nna LxnOgOcG+T8d+rs8D84GVB2Voeu0GzKxo/QbXC/OxmvikuXMHLB6NeqA+L+p4ZML Dz5aUj/2585kGL4Ro6HJ7WWC44huWvel -----END CERTIFICATE-----Generated at Mon Jun 16 22:14:53 2025 by rpki-client