$ rpki-client -vvf rpki.apnic.net/member_repository/A91752F4/80164F4EF8BC11E2AD91813B5911EA32/Z-1VajxcS_wnyhWKWXdWTDIHzso.mft File: Z-1VajxcS_wnyhWKWXdWTDIHzso.mft (raw, json) Hash identifier: wF2OestCxd+dEHuM9kF2Pbsvc60zic7CL1yiUigjCTw= Subject key identifier: 0E:72:51:B1:0A:46:6D:DD:8F:1F:66:0E:A0:69:54:E7:D7:0A:06:66 Authority key identifier: 67:ED:55:6A:3C:5C:4B:FC:27:CA:15:8A:59:77:56:4C:32:07:CE:CA Certificate issuer: /CN=A91752F4/serialNumber=67ED556A3C5C4BFC27CA158A5977564C3207CECA Certificate serial: 3046 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Z-1VajxcS_wnyhWKWXdWTDIHzso.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91752F4/80164F4EF8BC11E2AD91813B5911EA32/Z-1VajxcS_wnyhWKWXdWTDIHzso.mft Manifest number: 3037 Signing time: Fri 06 Jun 2025 15:32:08 +0000 Manifest this update: Fri 06 Jun 2025 15:32:07 +0000 Manifest next update: Fri 13 Jun 2025 15:32:07 +0000 Files and hashes: 1: Z-1VajxcS_wnyhWKWXdWTDIHzso.crl (hash: uFikjIp9f5fVUY+c99IaKKa2rnxMdjb0JvUSM/kZCBA=) 2: 22E2E3C24E2911EF8BEE8E10C4F9AE02.roa (hash: hQKUzdzJskNaUaPGl2kmEUdrCcgwSNhHBQ7D6gtHv6A=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91752F4/80164F4EF8BC11E2AD91813B5911EA32/Z-1VajxcS_wnyhWKWXdWTDIHzso.crl rsync://rpki.apnic.net/member_repository/A91752F4/80164F4EF8BC11E2AD91813B5911EA32/Z-1VajxcS_wnyhWKWXdWTDIHzso.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Z-1VajxcS_wnyhWKWXdWTDIHzso.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 13 Jun 2025 15:32:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 12358 (0x3046) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91752F4, serialNumber=67ED556A3C5C4BFC27CA158A5977564C3207CECA Validity Not Before: Jun 6 15:32:07 2025 GMT Not After : Jun 13 15:32:07 2025 GMT Subject: CN=684309f8-008c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a7:6a:71:33:e5:49:71:60:f3:da:de:ae:2c:eb: bf:f1:42:97:39:32:a8:29:8d:1d:12:cc:de:d3:51: 55:5c:53:5c:26:6b:e9:ed:86:3c:9a:c8:4b:ba:06: fb:5b:95:45:55:09:23:36:f1:c7:60:46:c4:1e:9f: 58:0c:16:5b:16:70:8c:e1:97:c4:cc:2e:77:21:0a: 93:fb:18:5d:a8:95:98:20:5d:59:f3:8d:28:8b:93: b4:18:54:d8:3f:49:c6:e2:5a:20:d7:c3:59:a9:c6: de:6d:fb:b7:bd:55:95:2e:3f:f3:f5:d3:76:a5:09: a3:a1:ab:8b:2b:b7:5b:88:15:df:94:06:d3:f4:d3: e6:65:3f:e2:99:f0:86:72:38:55:6e:c8:fe:71:1c: d6:80:96:91:70:fb:dc:30:8a:61:ca:95:71:b1:3f: 51:24:45:d6:61:11:0e:60:be:b5:51:13:6e:79:63: af:15:45:88:f6:b2:0b:81:ff:95:ea:58:74:54:89: dc:35:e3:4d:af:fc:7e:c5:8a:82:f7:aa:59:50:3e: 14:d3:be:d6:c1:74:00:fe:a3:3d:ef:dc:ca:64:1e: 60:28:81:0e:f2:85:71:c5:ca:21:d0:c9:28:51:ed: 15:0c:d7:1b:9d:2e:c6:fb:53:ac:21:7b:f0:9f:f9: e5:75 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0E:72:51:B1:0A:46:6D:DD:8F:1F:66:0E:A0:69:54:E7:D7:0A:06:66 X509v3 Authority Key Identifier: keyid:67:ED:55:6A:3C:5C:4B:FC:27:CA:15:8A:59:77:56:4C:32:07:CE:CA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91752F4/80164F4EF8BC11E2AD91813B5911EA32/Z-1VajxcS_wnyhWKWXdWTDIHzso.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Z-1VajxcS_wnyhWKWXdWTDIHzso.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91752F4/80164F4EF8BC11E2AD91813B5911EA32/Z-1VajxcS_wnyhWKWXdWTDIHzso.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 83:80:8e:c8:8c:b6:2b:11:0d:ba:c9:c8:ec:50:0b:e1:36:48: cd:45:b1:09:2c:7c:6d:e4:e0:78:bc:93:03:d9:d4:f7:61:5c: 22:d3:25:5d:d4:0c:09:21:40:5b:a5:43:d0:9d:7f:68:82:08: ec:6d:b8:6e:ef:bf:72:0d:06:fc:c2:73:2e:5c:8c:79:8a:b0: ea:21:3d:2d:00:fb:28:73:dd:39:1d:c9:be:b8:24:c0:3f:4d: 54:1c:ae:56:3f:3a:9c:1d:4d:03:e6:6e:40:e1:9e:3b:0c:35: 1a:51:e0:7f:e4:7f:7f:76:13:5f:09:f9:ba:f8:01:bd:db:ed: 66:e9:e9:c3:29:ae:df:86:27:b8:90:e4:03:b3:1f:c3:b6:7c: 6d:37:f5:61:e2:45:f5:dc:e0:d1:2c:14:8f:ba:ac:d9:8e:55: 54:e9:15:eb:d7:2c:4e:47:b2:f4:67:59:b7:72:1d:ea:02:02: c6:5f:9c:bc:fe:c0:ca:2e:6d:3c:57:8d:f5:e0:45:d7:87:6f: 31:3b:41:c0:df:71:9c:86:de:61:8f:9c:ab:65:fb:d4:fe:f4: e4:0b:78:36:81:ec:c3:74:0e:15:da:f2:a8:95:37:d6:94:f6: 94:9f:bc:08:3d:41:4a:a0:8c:81:0a:5a:a7:2d:19:ff:71:54: 3b:02:8d:70 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICMEYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzUyRjQxMTAvBgNVBAUTKDY3RUQ1NTZBM0M1QzRCRkMyN0NBMTU4QTU5Nzc1NjRD MzIwN0NFQ0EwHhcNMjUwNjA2MTUzMjA3WhcNMjUwNjEzMTUzMjA3WjAYMRYwFAYD VQQDEw02ODQzMDlmOC0wMDhjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAp2pxM+VJcWDz2t6uLOu/8UKXOTKoKY0dEsze01FVXFNcJmvp7YY8mshLugb7 W5VFVQkjNvHHYEbEHp9YDBZbFnCM4ZfEzC53IQqT+xhdqJWYIF1Z840oi5O0GFTY P0nG4log18NZqcbebfu3vVWVLj/z9dN2pQmjoauLK7dbiBXflAbT9NPmZT/imfCG cjhVbsj+cRzWgJaRcPvcMIphypVxsT9RJEXWYREOYL61URNueWOvFUWI9rILgf+V 6lh0VIncNeNNr/x+xYqC96pZUD4U077WwXQA/qM979zKZB5gKIEO8oVxxcoh0Mko Ue0VDNcbnS7G+1OsIXvwn/nldQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFA5yUbEK Rm3djx9mDqBpVOfXCgZmMB8GA1UdIwQYMBaAFGftVWo8XEv8J8oVill3VkwyB87K MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3NTJGNC84MDE2NEY0RUY4 QkMxMUUyQUQ5MTgxM0I1OTExRUEzMi9aLTFWYWp4Y1Nfd255aFdLV1hkV1RESUh6 c28uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1otMVZhanhjU193bnloV0tXWGRXVERJSHpzby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 NTJGNC84MDE2NEY0RUY4QkMxMUUyQUQ5MTgxM0I1OTExRUEzMi9aLTFWYWp4Y1Nf d255aFdLV1hkV1RESUh6c28ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCDgI7IjLYrEQ26ycjsUAvhNkjNRbEJLHxt5OB4vJMD2dT3YVwi0yVd 1AwJIUBbpUPQnX9oggjsbbhu779yDQb8wnMuXIx5irDqIT0tAPsoc905Hcm+uCTA P01UHK5WPzqcHU0D5m5A4Z47DDUaUeB/5H9/dhNfCfm6+AG92+1m6enDKa7fhie4 kOQDsx/DtnxtN/Vh4kX13ODRLBSPuqzZjlVU6RXr1yxOR7L0Z1m3ch3qAgLGX5y8 /sDKLm08V4314EXXh28xO0HA33Gcht5hj5yrZfvU/vTkC3g2gezDdA4V2vKolTfW lPaUn7wIPUFKoIyBClqnLRn/cVQ7Ao1w -----END CERTIFICATE-----Generated at Sat Jun 7 05:38:39 2025 by rpki-client