$ rpki-client -vvf rpki.apnic.net/member_repository/A912E87E/8428B9E6A1CF11EF878E6061C4F9AE02/z3nGX0tVAQ-yXObEW4yRnbCToy0.mft File: z3nGX0tVAQ-yXObEW4yRnbCToy0.mft (raw, json) Hash identifier: gKWatqytOGWxxQ6nhHCaHtQnWw22+9aB6pX6zw6yoMM= Subject key identifier: 07:24:F1:4F:A2:66:5F:59:52:0D:E5:03:1E:0F:BF:36:0A:A3:C7:26 Authority key identifier: CF:79:C6:5F:4B:55:01:0F:B2:5C:E6:C4:5B:8C:91:9D:B0:93:A3:2D Certificate issuer: /CN=A912E87E/serialNumber=CF79C65F4B55010FB25CE6C45B8C919DB093A32D Certificate serial: 6A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/z3nGX0tVAQ-yXObEW4yRnbCToy0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A912E87E/8428B9E6A1CF11EF878E6061C4F9AE02/z3nGX0tVAQ-yXObEW4yRnbCToy0.mft Manifest number: 68 Signing time: Sat 31 May 2025 06:33:08 +0000 Manifest this update: Sat 31 May 2025 06:33:08 +0000 Manifest next update: Sat 07 Jun 2025 06:33:08 +0000 Files and hashes: 1: z3nGX0tVAQ-yXObEW4yRnbCToy0.crl (hash: IHr7hiMzgUVhJswL0tjyYV4Kgt6yDeIPVVRe3wi1+2E=) 2: A48892E4DE4A11EFACE66748C4F9AE02.roa (hash: pAKMszCIjt6MmJA/GOLnpRTl7JGqEZooCz2JSaSabrA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A912E87E/8428B9E6A1CF11EF878E6061C4F9AE02/z3nGX0tVAQ-yXObEW4yRnbCToy0.crl rsync://rpki.apnic.net/member_repository/A912E87E/8428B9E6A1CF11EF878E6061C4F9AE02/z3nGX0tVAQ-yXObEW4yRnbCToy0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/z3nGX0tVAQ-yXObEW4yRnbCToy0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 07 Jun 2025 06:33:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 106 (0x6a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A912E87E, serialNumber=CF79C65F4B55010FB25CE6C45B8C919DB093A32D Validity Not Before: May 31 06:33:08 2025 GMT Not After : Jun 7 06:33:08 2025 GMT Subject: CN=683aa2a4-4c52 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e7:b2:5f:59:85:b4:e9:d0:1b:53:d9:45:9c:a3: 2d:8f:35:3b:69:9f:ca:0f:8e:0f:5f:dd:ac:bb:4f: 21:3b:7b:5c:8d:03:e0:f8:e8:d9:46:b4:dc:56:bb: 0b:91:3d:22:53:7c:dd:e6:3e:c2:7c:8f:87:94:56: 9c:a7:a0:a4:92:44:87:ad:1e:04:19:40:97:f6:0c: f4:7a:5f:13:d6:2f:de:ca:38:54:13:4e:66:6a:06: 41:e6:9a:fd:a4:8d:1e:5d:d4:07:79:34:4c:93:91: e4:a7:5c:07:5b:90:19:f8:fd:71:ee:8f:3f:6b:e0: f6:04:7d:7d:03:2a:01:7c:30:b0:2a:e3:06:ae:97: 6d:ff:4f:e8:f4:10:11:ea:d6:47:45:2c:f5:6b:6d: fd:6a:2b:da:b7:67:f7:c3:e8:0d:18:a3:2f:df:a6: cd:34:b5:ff:4e:79:79:c0:3a:49:74:3d:db:26:04: 63:05:2c:38:16:2a:ca:c4:e9:ac:82:fc:23:3a:ca: b8:c1:71:54:33:ef:14:c9:71:0e:27:b6:05:da:5c: 6c:54:bf:4d:86:b2:03:9c:a5:d8:f5:c4:44:3c:65: 59:26:36:f3:50:d2:82:57:2c:b6:58:65:aa:03:6e: 55:85:ee:4f:6b:20:f8:f0:65:fb:b4:ea:df:d3:53: 95:79 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 07:24:F1:4F:A2:66:5F:59:52:0D:E5:03:1E:0F:BF:36:0A:A3:C7:26 X509v3 Authority Key Identifier: keyid:CF:79:C6:5F:4B:55:01:0F:B2:5C:E6:C4:5B:8C:91:9D:B0:93:A3:2D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A912E87E/8428B9E6A1CF11EF878E6061C4F9AE02/z3nGX0tVAQ-yXObEW4yRnbCToy0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/z3nGX0tVAQ-yXObEW4yRnbCToy0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A912E87E/8428B9E6A1CF11EF878E6061C4F9AE02/z3nGX0tVAQ-yXObEW4yRnbCToy0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption af:95:a5:75:8b:70:3d:0b:93:82:9b:05:3a:ed:e6:d5:ae:6d: 99:65:37:8a:c4:e2:d2:48:0f:9c:2d:38:e7:84:17:e4:b3:d1: f4:33:da:f2:3f:cc:c3:c2:2b:83:bf:d1:5d:a6:bd:56:84:36: 4f:fc:69:63:56:37:5a:25:cf:a2:58:96:1b:e7:69:be:f3:57: 49:76:6e:44:5b:f8:f3:39:65:81:44:e4:74:1e:03:aa:4f:19: 22:f0:0a:da:08:bc:98:1b:a9:ea:20:42:84:42:7c:35:8d:fc: 73:c8:ea:94:55:25:f5:73:e4:9f:09:9b:5e:9a:3f:52:41:19: 54:c4:a0:a0:0f:48:26:aa:b3:bc:34:07:b5:2f:82:5d:1e:d3: 71:6f:74:86:70:75:6f:ad:88:d4:be:3f:cd:e5:ff:0d:a2:a1: 39:38:2b:4e:e9:14:82:4b:79:4e:48:e5:d6:b3:69:83:15:bb: 1f:44:83:d1:53:aa:d8:bb:2d:8a:5a:cb:29:d5:84:b5:61:48: ae:c7:03:a9:30:63:91:d6:d1:d3:f3:ce:39:bb:b5:c8:cd:01: e1:c8:81:27:97:34:92:a9:48:e7:33:9b:93:ad:c6:9c:af:49: 6e:1b:3a:12:1b:f5:bf:64:d8:9c:ee:0e:b6:93:d3:35:8e:a8: 91:34:24:30 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBajANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTEy RTg3RTExMC8GA1UEBRMoQ0Y3OUM2NUY0QjU1MDEwRkIyNUNFNkM0NUI4QzkxOURC MDkzQTMyRDAeFw0yNTA1MzEwNjMzMDhaFw0yNTA2MDcwNjMzMDhaMBgxFjAUBgNV BAMTDTY4M2FhMmE0LTRjNTIwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDnsl9ZhbTp0BtT2UWcoy2PNTtpn8oPjg9f3ay7TyE7e1yNA+D46NlGtNxWuwuR PSJTfN3mPsJ8j4eUVpynoKSSRIetHgQZQJf2DPR6XxPWL97KOFQTTmZqBkHmmv2k jR5d1Ad5NEyTkeSnXAdbkBn4/XHujz9r4PYEfX0DKgF8MLAq4waul23/T+j0EBHq 1kdFLPVrbf1qK9q3Z/fD6A0Yoy/fps00tf9OeXnAOkl0PdsmBGMFLDgWKsrE6ayC /CM6yrjBcVQz7xTJcQ4ntgXaXGxUv02GsgOcpdj1xEQ8ZVkmNvNQ0oJXLLZYZaoD blWF7k9rIPjwZfu06t/TU5V5AgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUByTxT6Jm X1lSDeUDHg+/NgqjxyYwHwYDVR0jBBgwFoAUz3nGX0tVAQ+yXObEW4yRnbCToy0w DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTJFODdFLzg0MjhCOUU2QTFD RjExRUY4NzhFNjA2MUM0RjlBRTAyL3ozbkdYMHRWQVEteVhPYkVXNHlSbmJDVG95 MC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvejNuR1gwdFZBUS15WE9iRVc0eVJuYkNUb3kwLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTJF ODdFLzg0MjhCOUU2QTFDRjExRUY4NzhFNjA2MUM0RjlBRTAyL3ozbkdYMHRWQVEt eVhPYkVXNHlSbmJDVG95MC5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAK+VpXWLcD0Lk4KbBTrt5tWubZllN4rE4tJID5wtOOeEF+Sz0fQz2vI/ zMPCK4O/0V2mvVaENk/8aWNWN1olz6JYlhvnab7zV0l2bkRb+PM5ZYFE5HQeA6pP GSLwCtoIvJgbqeogQoRCfDWN/HPI6pRVJfVz5J8Jm16aP1JBGVTEoKAPSCaqs7w0 B7Uvgl0e03FvdIZwdW+tiNS+P83l/w2ioTk4K07pFIJLeU5I5dazaYMVux9Eg9FT qti7LYpayynVhLVhSK7HA6kwY5HW0dPzzjm7tcjNAeHIgSeXNJKpSOczm5Otxpyv SW4bOhIb9b9k2JzuDraT0zWOqJE0JDA= -----END CERTIFICATE-----Generated at Sat May 31 17:28:51 2025 by rpki-client