$ rpki-client -vvf rpki.apnic.net/member_repository/A918031D/ED463BC64EEE11EFB1D33030C4F9AE02/ZpvKCpDeWAORqO5km-TvvjbOhBg.mft File: ZpvKCpDeWAORqO5km-TvvjbOhBg.mft (raw, json) Hash identifier: HpfLC/5KX7BXI9fj2vg20QxoEVI9Q2Dz4cyr/Jzngss= Subject key identifier: 1B:B6:C5:F3:3D:93:7A:38:D2:58:BE:F8:4B:80:B6:77:3A:1E:2B:1C Authority key identifier: 66:9B:CA:0A:90:DE:58:03:91:A8:EE:64:9B:E4:EF:BE:36:CE:84:18 Certificate issuer: /CN=A918031D/serialNumber=669BCA0A90DE580391A8EE649BE4EFBE36CE8418 Certificate serial: A5 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ZpvKCpDeWAORqO5km-TvvjbOhBg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918031D/ED463BC64EEE11EFB1D33030C4F9AE02/ZpvKCpDeWAORqO5km-TvvjbOhBg.mft Manifest number: A3 Signing time: Wed 11 Jun 2025 05:35:33 +0000 Manifest this update: Wed 11 Jun 2025 05:35:33 +0000 Manifest next update: Wed 18 Jun 2025 05:35:33 +0000 Files and hashes: 1: ZpvKCpDeWAORqO5km-TvvjbOhBg.crl (hash: xW9heeO9AZTZFrH/ZuXVWG57QSebtxGV07pNM+HWcWo=) 2: 314597D64EEF11EF8BACFA30C4F9AE02.roa (hash: NfFMnt+VEyqSWVwOi+J918td9eREww3K9CdjnLDT82w=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918031D/ED463BC64EEE11EFB1D33030C4F9AE02/ZpvKCpDeWAORqO5km-TvvjbOhBg.crl rsync://rpki.apnic.net/member_repository/A918031D/ED463BC64EEE11EFB1D33030C4F9AE02/ZpvKCpDeWAORqO5km-TvvjbOhBg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ZpvKCpDeWAORqO5km-TvvjbOhBg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 18 Jun 2025 05:35:32 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 165 (0xa5) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918031D, serialNumber=669BCA0A90DE580391A8EE649BE4EFBE36CE8418 Validity Not Before: Jun 11 05:35:33 2025 GMT Not After : Jun 18 05:35:33 2025 GMT Subject: CN=684915a5-5561 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e0:de:57:ed:8e:61:82:e1:c3:eb:91:27:7f:2e: b0:f0:b2:db:7e:56:af:14:2a:72:10:34:82:98:70: 3e:07:6c:86:7a:53:d2:6f:f0:11:7b:72:11:e0:dc: 1e:d7:fe:f8:e7:80:8b:48:b0:22:25:1f:de:30:75: 8b:21:3c:43:4e:c7:6b:e9:ec:d4:4f:84:18:45:ff: 71:73:d3:4b:ec:9f:11:b5:a5:61:d6:3d:b5:99:34: b9:52:2d:3a:0b:1d:09:9c:51:20:88:9f:58:83:fc: 33:bf:3e:63:2c:2e:ba:23:0c:70:2c:ca:e5:0b:59: b0:fc:bd:ee:a1:7f:4a:ad:19:c6:d7:b5:6a:29:e8: ff:fc:e5:83:37:57:52:ca:b3:56:52:ce:67:37:6c: 7b:b7:44:98:3c:fb:e1:85:ab:0d:84:7c:05:20:f0: e4:5e:e7:7d:40:17:f6:38:e6:c1:4a:f1:a0:32:d1: 54:9b:2a:55:91:b3:4f:c5:03:18:cb:0b:b9:dd:1a: 4e:64:da:6f:0f:9a:14:d5:40:28:f1:b6:b0:ba:81: 6c:54:31:e7:4b:30:bd:a7:26:1c:aa:49:d3:50:e3: 45:ab:af:51:11:7d:ce:48:a5:44:eb:4c:7c:b4:02: 36:50:67:56:ce:9e:a2:dc:28:81:d7:17:4b:d5:57: d6:43 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1B:B6:C5:F3:3D:93:7A:38:D2:58:BE:F8:4B:80:B6:77:3A:1E:2B:1C X509v3 Authority Key Identifier: keyid:66:9B:CA:0A:90:DE:58:03:91:A8:EE:64:9B:E4:EF:BE:36:CE:84:18 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918031D/ED463BC64EEE11EFB1D33030C4F9AE02/ZpvKCpDeWAORqO5km-TvvjbOhBg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ZpvKCpDeWAORqO5km-TvvjbOhBg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918031D/ED463BC64EEE11EFB1D33030C4F9AE02/ZpvKCpDeWAORqO5km-TvvjbOhBg.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption b1:91:b1:bd:50:da:c2:a8:45:dc:65:ce:73:17:c7:43:77:8e: 50:bf:c2:3d:d7:a5:06:9c:42:74:be:b3:af:7e:d3:d5:89:64: 76:ba:8c:89:4b:0a:df:b2:e0:d1:68:63:86:c9:e4:f3:a6:c2: e3:a1:a8:ad:50:98:32:16:33:88:13:a2:77:ea:fd:c7:26:0a: 02:08:18:82:c3:c1:c3:3a:e7:ec:3a:f4:48:51:30:93:b3:f4: bd:34:7f:12:8a:0c:0f:f0:7b:c1:30:54:93:77:fd:7e:0c:51: c8:8c:a2:c9:de:c6:40:23:f3:ed:13:86:52:2b:e2:da:7a:20: 70:63:ac:42:e3:e7:4a:5b:56:90:2a:45:4c:ec:6a:c0:a5:da: e4:88:ac:8d:97:2e:ec:0c:fe:fb:ac:ee:77:9d:e8:35:c5:09: 3e:db:49:a6:1e:b1:36:3f:5c:30:9d:1d:a2:fa:b4:04:6f:16: 86:dd:7b:da:04:87:41:3b:9a:02:df:df:e7:c4:16:dd:c4:dd: 49:10:17:d0:38:27:9c:2f:d3:6f:93:15:39:42:65:0f:d7:63: a7:0c:17:2b:a0:45:80:7c:a3:9f:66:4a:88:27:66:62:92:e6: 05:9f:37:eb:22:ca:5b:ca:6f:80:a9:67:a9:f9:9c:e9:77:b6: 6f:4b:fa:5d -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAKUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx ODAzMUQxMTAvBgNVBAUTKDY2OUJDQTBBOTBERTU4MDM5MUE4RUU2NDlCRTRFRkJF MzZDRTg0MTgwHhcNMjUwNjExMDUzNTMzWhcNMjUwNjE4MDUzNTMzWjAYMRYwFAYD VQQDEw02ODQ5MTVhNS01NTYxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA4N5X7Y5hguHD65Enfy6w8LLbflavFCpyEDSCmHA+B2yGelPSb/ARe3IR4Nwe 1/7454CLSLAiJR/eMHWLITxDTsdr6ezUT4QYRf9xc9NL7J8RtaVh1j21mTS5Ui06 Cx0JnFEgiJ9Yg/wzvz5jLC66IwxwLMrlC1mw/L3uoX9KrRnG17VqKej//OWDN1dS yrNWUs5nN2x7t0SYPPvhhasNhHwFIPDkXud9QBf2OObBSvGgMtFUmypVkbNPxQMY ywu53RpOZNpvD5oU1UAo8bawuoFsVDHnSzC9pyYcqknTUONFq69REX3OSKVE60x8 tAI2UGdWzp6i3CiB1xdL1VfWQwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFBu2xfM9 k3o40li++EuAtnc6HiscMB8GA1UdIwQYMBaAFGabygqQ3lgDkajuZJvk7742zoQY MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4MDMxRC9FRDQ2M0JDNjRF RUUxMUVGQjFEMzMwMzBDNEY5QUUwMi9acHZLQ3BEZVdBT1JxTzVrbS1UdnZqYk9o QmcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1pwdktDcERlV0FPUnFPNWttLVR2dmpiT2hCZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 MDMxRC9FRDQ2M0JDNjRFRUUxMUVGQjFEMzMwMzBDNEY5QUUwMi9acHZLQ3BEZVdB T1JxTzVrbS1UdnZqYk9oQmcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCxkbG9UNrCqEXcZc5zF8dDd45Qv8I916UGnEJ0vrOvftPViWR2uoyJ SwrfsuDRaGOGyeTzpsLjoaitUJgyFjOIE6J36v3HJgoCCBiCw8HDOufsOvRIUTCT s/S9NH8SigwP8HvBMFSTd/1+DFHIjKLJ3sZAI/PtE4ZSK+LaeiBwY6xC4+dKW1aQ KkVM7GrApdrkiKyNly7sDP77rO53neg1xQk+20mmHrE2P1wwnR2i+rQEbxaG3Xva BIdBO5oC39/nxBbdxN1JEBfQOCecL9NvkxU5QmUP12OnDBcroEWAfKOfZkqIJ2Zi kuYFnzfrIspbym+AqWep+Zzpd7ZvS/pd -----END CERTIFICATE-----Generated at Wed Jun 11 12:34:16 2025 by rpki-client