$ rpki-client -vvf rpki.apnic.net/member_repository/A91F8F9B/F902E5305DBD11EF8A06ED40C4F9AE02/z7sDj9uDhlQgSWKYCtIhyUFdXP8.mft File: z7sDj9uDhlQgSWKYCtIhyUFdXP8.mft (raw, json) Hash identifier: C2ryZGg8nZSl5uu+uWWroZhiA4a2d9gFokU/80N0BSU= Subject key identifier: 03:BF:03:9B:05:9D:B1:FB:CD:BE:F7:64:95:DF:DD:A1:C4:0D:F0:2F Authority key identifier: CF:BB:03:8F:DB:83:86:54:20:49:62:98:0A:D2:21:C9:41:5D:5C:FF Certificate issuer: /CN=A91F8F9B/serialNumber=CFBB038FDB838654204962980AD221C9415D5CFF Certificate serial: 9D Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/z7sDj9uDhlQgSWKYCtIhyUFdXP8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F8F9B/F902E5305DBD11EF8A06ED40C4F9AE02/z7sDj9uDhlQgSWKYCtIhyUFdXP8.mft Manifest number: 9C Signing time: Thu 19 Jun 2025 05:37:10 +0000 Manifest this update: Thu 19 Jun 2025 05:37:10 +0000 Manifest next update: Thu 26 Jun 2025 05:37:10 +0000 Files and hashes: 1: z7sDj9uDhlQgSWKYCtIhyUFdXP8.crl (hash: 8UBP+/9P5TYtbRxxHTjv3h2ISFyzCW+ar9avplk2xZ8=) 2: 7143C5B85DBF11EFB8714857C4F9AE02.roa (hash: ap2qykakUMtuugznllb9ElqWzxnqoH122Li4BLMbH9U=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F8F9B/F902E5305DBD11EF8A06ED40C4F9AE02/z7sDj9uDhlQgSWKYCtIhyUFdXP8.crl rsync://rpki.apnic.net/member_repository/A91F8F9B/F902E5305DBD11EF8A06ED40C4F9AE02/z7sDj9uDhlQgSWKYCtIhyUFdXP8.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/z7sDj9uDhlQgSWKYCtIhyUFdXP8.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 26 Jun 2025 05:37:09 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 157 (0x9d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F8F9B, serialNumber=CFBB038FDB838654204962980AD221C9415D5CFF Validity Not Before: Jun 19 05:37:10 2025 GMT Not After : Jun 26 05:37:10 2025 GMT Subject: CN=6853a206-3ee1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:da:db:d7:8b:44:be:95:06:2c:26:66:0a:0d:f7: 9d:14:0f:1c:65:e6:b9:07:81:e3:9f:ba:2d:68:10: 78:e5:09:08:13:d1:7c:45:26:79:ca:2b:94:f6:9b: d4:9d:3a:81:5f:2e:0e:a2:e7:0e:e4:8f:0b:7e:1e: 21:e2:3e:b4:3c:81:b3:68:d3:d5:ac:bd:a4:fb:96: 4e:8d:10:68:c8:47:b5:fd:fc:4d:72:e7:52:a1:69: b5:d5:bc:56:ce:f0:c0:aa:07:af:16:d0:86:95:1e: f6:0d:bb:fc:27:2f:e4:59:25:72:dc:e3:b0:6f:50: 96:5e:fe:d0:52:1d:9a:55:1e:39:2e:c0:f8:c6:e8: 93:f2:25:b8:80:69:63:3d:5c:1b:07:96:1a:c5:7a: 86:8f:84:69:27:d4:76:38:02:e2:ea:97:9a:c6:36: f9:18:46:0a:a9:59:fc:74:c6:f0:cb:aa:9f:59:61: 9d:52:4f:c8:b1:89:b8:01:f8:41:44:a1:c5:a4:36: 2b:7f:bb:42:ca:71:d7:cb:e8:f7:89:98:ec:5a:57: ff:77:5a:b1:3a:e9:90:4c:7e:eb:49:53:64:4c:d8: 83:78:0e:0f:64:b9:98:22:1e:22:27:8e:5d:70:aa: 02:8c:ef:0a:26:20:09:83:7e:aa:5a:63:58:c1:91: 69:3f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 03:BF:03:9B:05:9D:B1:FB:CD:BE:F7:64:95:DF:DD:A1:C4:0D:F0:2F X509v3 Authority Key Identifier: keyid:CF:BB:03:8F:DB:83:86:54:20:49:62:98:0A:D2:21:C9:41:5D:5C:FF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F8F9B/F902E5305DBD11EF8A06ED40C4F9AE02/z7sDj9uDhlQgSWKYCtIhyUFdXP8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/z7sDj9uDhlQgSWKYCtIhyUFdXP8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F8F9B/F902E5305DBD11EF8A06ED40C4F9AE02/z7sDj9uDhlQgSWKYCtIhyUFdXP8.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 6f:87:ba:4e:94:51:42:e9:fa:5e:1e:24:d5:f1:1b:00:21:ba: 24:c5:2f:dc:ef:82:0e:d9:20:aa:9b:97:c4:ad:d7:89:ba:96: a5:db:90:13:8c:8f:41:f2:dd:f0:0b:b5:49:a4:0b:e7:41:52: e5:7d:fa:e1:27:01:71:24:43:4a:49:cf:f6:d6:c2:b3:8b:63: 71:c7:88:ef:67:59:51:3a:bf:00:3a:a9:37:61:4d:fc:7e:d6: 56:d1:21:68:5d:7e:be:53:15:b5:fd:b0:06:35:83:ce:b1:5f: 45:ab:54:3b:31:c9:75:41:b1:73:1d:f2:65:f3:01:36:99:4a: 87:3f:f3:09:68:83:c3:18:4f:4f:d0:51:9d:ca:d0:00:99:a2: 2d:6d:14:da:e0:a9:e0:15:2d:31:22:ac:67:bd:48:99:99:3c: a9:78:8a:c0:28:b0:64:f7:e5:70:ee:17:58:94:ee:4d:11:2a: 2e:a6:7b:fd:15:22:b7:3a:95:37:fe:a1:04:bd:62:da:78:7d: 71:47:ac:8c:2f:48:ca:f3:65:de:97:5f:5b:55:aa:8a:85:50: 73:ad:c1:be:31:fb:be:96:f3:3b:82:af:7e:bd:02:65:9b:23: e0:b9:31:c6:dd:ab:1f:dc:6f:ef:ac:46:bd:c5:5c:f2:87:7e: 88:a6:5e:d0 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAJ0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjhGOUIxMTAvBgNVBAUTKENGQkIwMzhGREI4Mzg2NTQyMDQ5NjI5ODBBRDIyMUM5 NDE1RDVDRkYwHhcNMjUwNjE5MDUzNzEwWhcNMjUwNjI2MDUzNzEwWjAYMRYwFAYD VQQDEw02ODUzYTIwNi0zZWUxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA2tvXi0S+lQYsJmYKDfedFA8cZea5B4Hjn7otaBB45QkIE9F8RSZ5yiuU9pvU nTqBXy4OoucO5I8Lfh4h4j60PIGzaNPVrL2k+5ZOjRBoyEe1/fxNcudSoWm11bxW zvDAqgevFtCGlR72Dbv8Jy/kWSVy3OOwb1CWXv7QUh2aVR45LsD4xuiT8iW4gGlj PVwbB5YaxXqGj4RpJ9R2OALi6peaxjb5GEYKqVn8dMbwy6qfWWGdUk/IsYm4AfhB RKHFpDYrf7tCynHXy+j3iZjsWlf/d1qxOumQTH7rSVNkTNiDeA4PZLmYIh4iJ45d cKoCjO8KJiAJg36qWmNYwZFpPwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFAO/A5sF nbH7zb73ZJXf3aHEDfAvMB8GA1UdIwQYMBaAFM+7A4/bg4ZUIElimArSIclBXVz/ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGOEY5Qi9GOTAyRTUzMDVE QkQxMUVGOEEwNkVENDBDNEY5QUUwMi96N3NEajl1RGhsUWdTV0tZQ3RJaHlVRmRY UDguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL3o3c0RqOXVEaGxRZ1NXS1lDdEloeVVGZFhQOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG OEY5Qi9GOTAyRTUzMDVEQkQxMUVGOEEwNkVENDBDNEY5QUUwMi96N3NEajl1RGhs UWdTV0tZQ3RJaHlVRmRYUDgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBvh7pOlFFC6fpeHiTV8RsAIbokxS/c74IO2SCqm5fErdeJupal25AT jI9B8t3wC7VJpAvnQVLlffrhJwFxJENKSc/21sKzi2Nxx4jvZ1lROr8AOqk3YU38 ftZW0SFoXX6+UxW1/bAGNYPOsV9Fq1Q7Mcl1QbFzHfJl8wE2mUqHP/MJaIPDGE9P 0FGdytAAmaItbRTa4KngFS0xIqxnvUiZmTypeIrAKLBk9+Vw7hdYlO5NESoupnv9 FSK3OpU3/qEEvWLaeH1xR6yML0jK82Xel19bVaqKhVBzrcG+Mfu+lvM7gq9+vQJl myPguTHG3asf3G/vrEa9xVzyh36Ipl7Q -----END CERTIFICATE-----Generated at Thu Jun 19 20:09:06 2025 by rpki-client