$ rpki-client -vvf rpki.apnic.net/member_repository/A91FBA0C/41531B0CAECD11EE86F1B249C4F9AE02/zVzVkJE-T4mvPRym4p-rPAZ9IU4.mft File: zVzVkJE-T4mvPRym4p-rPAZ9IU4.mft (raw, json) Hash identifier: CmGxEVZaSzDxrDg3PbGawPV0prycG+DXxq5enUK73tw= Subject key identifier: 91:79:49:76:27:57:D1:8F:A7:65:C6:CD:FF:FB:97:46:3E:EC:1D:51 Authority key identifier: CD:5C:D5:90:91:3E:4F:89:AF:3D:1C:A6:E2:9F:AB:3C:06:7D:21:4E Certificate issuer: /CN=A91FBA0C/serialNumber=CD5CD590913E4F89AF3D1CA6E29FAB3C067D214E Certificate serial: 0111 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/zVzVkJE-T4mvPRym4p-rPAZ9IU4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91FBA0C/41531B0CAECD11EE86F1B249C4F9AE02/zVzVkJE-T4mvPRym4p-rPAZ9IU4.mft Manifest number: 010E Signing time: Sun 15 Jun 2025 04:06:23 +0000 Manifest this update: Sun 15 Jun 2025 04:06:22 +0000 Manifest next update: Sun 22 Jun 2025 04:06:22 +0000 Files and hashes: 1: zVzVkJE-T4mvPRym4p-rPAZ9IU4.crl (hash: DZfM55UYmTNN0c95xqZBzY7MJ3WefW2ScoNMD9lDZ2U=) 2: 91056478AF6A11EE93DDE73AC4F9AE02.roa (hash: ewevHTVGmqHpvpOV2d+aqrkd9ftzXTkReJQtB5PG940=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91FBA0C/41531B0CAECD11EE86F1B249C4F9AE02/zVzVkJE-T4mvPRym4p-rPAZ9IU4.crl rsync://rpki.apnic.net/member_repository/A91FBA0C/41531B0CAECD11EE86F1B249C4F9AE02/zVzVkJE-T4mvPRym4p-rPAZ9IU4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/zVzVkJE-T4mvPRym4p-rPAZ9IU4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 22 Jun 2025 02:50:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 273 (0x111) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91FBA0C, serialNumber=CD5CD590913E4F89AF3D1CA6E29FAB3C067D214E Validity Not Before: Jun 15 04:06:22 2025 GMT Not After : Jun 22 04:06:22 2025 GMT Subject: CN=684e46bf-c6da Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:3c:3b:db:51:3f:64:6c:aa:20:70:2f:5b:02: 82:8f:76:14:5e:2b:d7:9e:b9:14:e0:8a:50:73:2e: 43:9e:3b:ec:3c:f6:b7:cb:92:56:46:ae:5c:63:31: b6:3f:29:81:e5:db:c2:5f:6b:dd:7f:e7:33:77:ab: 41:6a:88:93:c2:b3:96:26:ec:a6:77:46:2c:f9:04: 37:2a:31:55:96:5f:f2:20:69:f7:b1:c8:46:10:ac: 6e:f3:a2:a7:21:e3:d0:09:ff:ce:dc:54:90:68:b1: e5:8e:b8:c9:50:c2:fb:c4:17:60:d7:6b:1a:a5:6e: 09:a1:89:fb:6f:96:38:19:09:5b:01:05:a9:f2:00: 63:d5:cf:06:23:49:52:5e:f1:c9:6a:67:24:c8:a3: 98:97:e5:c5:24:b7:94:19:85:d7:4d:9e:3f:6e:cc: 6e:1e:04:69:6c:14:fe:a7:b8:5d:29:34:45:ee:ef: ed:f7:39:58:8c:f4:9e:6c:4a:3f:76:e1:12:5c:90: ff:1c:bb:8c:33:cf:5a:d2:44:57:ba:e0:bb:f4:b0: bb:1d:23:2c:d0:be:65:54:0a:55:3f:49:d8:71:85: b6:83:5f:d7:54:ed:08:80:f7:40:fc:a5:01:b6:2c: a7:04:80:69:d1:94:cd:b1:0f:d2:6e:fa:e7:35:d4: ca:65 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 91:79:49:76:27:57:D1:8F:A7:65:C6:CD:FF:FB:97:46:3E:EC:1D:51 X509v3 Authority Key Identifier: keyid:CD:5C:D5:90:91:3E:4F:89:AF:3D:1C:A6:E2:9F:AB:3C:06:7D:21:4E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91FBA0C/41531B0CAECD11EE86F1B249C4F9AE02/zVzVkJE-T4mvPRym4p-rPAZ9IU4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/zVzVkJE-T4mvPRym4p-rPAZ9IU4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91FBA0C/41531B0CAECD11EE86F1B249C4F9AE02/zVzVkJE-T4mvPRym4p-rPAZ9IU4.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 9b:0a:90:9b:59:1c:04:89:28:c8:63:55:2f:c1:3b:5d:4c:3c: 7f:c6:48:8f:d0:33:a6:0d:ab:b0:9b:83:ee:db:03:4f:5c:96: 45:1a:ef:2d:44:d5:37:c1:fb:ef:8a:5c:b5:58:f2:ba:50:47: 8c:9b:bf:95:22:43:db:13:6d:89:16:fa:94:2a:12:89:6b:1e: 48:37:56:f9:e3:6e:a3:95:4b:d3:a5:5c:c3:77:65:cf:a5:ed: f8:ce:76:fb:e9:dd:a8:09:31:b1:e9:91:29:3f:fb:f2:91:03: 94:5f:f6:19:35:3d:eb:44:3d:5f:9f:55:0c:79:2c:5b:df:18: 9d:76:0e:82:8e:95:ab:b4:c7:f8:37:0c:e0:5d:82:69:cb:e7: 5c:d8:1f:a0:8d:75:f5:e1:75:13:07:3a:c8:70:c0:29:7d:de: 48:3e:3d:e7:b2:d9:ae:ee:eb:d9:f0:98:9b:69:33:f9:e5:9f: f5:75:c1:0d:d9:35:a1:84:5d:6e:01:ae:3a:17:02:e1:a7:b9: 90:1e:aa:f7:61:95:ee:37:5b:4f:94:f9:48:70:6a:a9:01:e7: cd:f2:6c:b2:8f:68:e1:68:c3:52:43:8c:a7:b3:48:2a:1c:86: f5:2e:84:77:87:e5:1c:4d:74:4b:f7:44:a1:2b:41:7b:fa:0b: dc:ed:fc:da -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAREwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RkJBMEMxMTAvBgNVBAUTKENENUNENTkwOTEzRTRGODlBRjNEMUNBNkUyOUZBQjND MDY3RDIxNEUwHhcNMjUwNjE1MDQwNjIyWhcNMjUwNjIyMDQwNjIyWjAYMRYwFAYD VQQDEw02ODRlNDZiZi1jNmRhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuzw721E/ZGyqIHAvWwKCj3YUXivXnrkU4IpQcy5DnjvsPPa3y5JWRq5cYzG2 PymB5dvCX2vdf+czd6tBaoiTwrOWJuymd0Ys+QQ3KjFVll/yIGn3schGEKxu86Kn IePQCf/O3FSQaLHljrjJUML7xBdg12sapW4JoYn7b5Y4GQlbAQWp8gBj1c8GI0lS XvHJamckyKOYl+XFJLeUGYXXTZ4/bsxuHgRpbBT+p7hdKTRF7u/t9zlYjPSebEo/ duESXJD/HLuMM89a0kRXuuC79LC7HSMs0L5lVApVP0nYcYW2g1/XVO0IgPdA/KUB tiynBIBp0ZTNsQ/SbvrnNdTKZQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJF5SXYn V9GPp2XGzf/7l0Y+7B1RMB8GA1UdIwQYMBaAFM1c1ZCRPk+Jrz0cpuKfqzwGfSFO MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGQkEwQy80MTUzMUIwQ0FF Q0QxMUVFODZGMUIyNDlDNEY5QUUwMi96VnpWa0pFLVQ0bXZQUnltNHAtclBBWjlJ VTQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3pWelZrSkUtVDRtdlBSeW00cC1yUEFaOUlVNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG QkEwQy80MTUzMUIwQ0FFQ0QxMUVFODZGMUIyNDlDNEY5QUUwMi96VnpWa0pFLVQ0 bXZQUnltNHAtclBBWjlJVTQubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCbCpCbWRwEiSjIY1UvwTtdTDx/xkiP0DOmDauwm4Pu2wNPXJZFGu8t RNU3wfvvily1WPK6UEeMm7+VIkPbE22JFvqUKhKJax5IN1b5426jlUvTpVzDd2XP pe34znb76d2oCTGx6ZEpP/vykQOUX/YZNT3rRD1fn1UMeSxb3xiddg6CjpWrtMf4 NwzgXYJpy+dc2B+gjXX14XUTBzrIcMApfd5IPj3nstmu7uvZ8JibaTP55Z/1dcEN 2TWhhF1uAa46FwLhp7mQHqr3YZXuN1tPlPlIcGqpAefN8myyj2jhaMNSQ4yns0gq HIb1LoR3h+UcTXRL90ShK0F7+gvc7fza -----END CERTIFICATE-----Generated at Sun Jun 15 08:38:09 2025 by rpki-client