$ rpki-client -vvf rpki.apnic.net/member_repository/A918031D/ED463BC64EEE11EFB1D33030C4F9AE02/ZpvKCpDeWAORqO5km-TvvjbOhBg.mft File: ZpvKCpDeWAORqO5km-TvvjbOhBg.mft (raw, json) Hash identifier: knKfXqwl/Po8PLzHwgxGadfDhuySdb4xEoPn1N/8aeA= Subject key identifier: 8D:BD:D6:59:29:EE:B4:D0:31:D0:C7:F2:41:CB:72:CC:CD:D9:8D:D2 Authority key identifier: 66:9B:CA:0A:90:DE:58:03:91:A8:EE:64:9B:E4:EF:BE:36:CE:84:18 Certificate issuer: /CN=A918031D/serialNumber=669BCA0A90DE580391A8EE649BE4EFBE36CE8418 Certificate serial: A6 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ZpvKCpDeWAORqO5km-TvvjbOhBg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918031D/ED463BC64EEE11EFB1D33030C4F9AE02/ZpvKCpDeWAORqO5km-TvvjbOhBg.mft Manifest number: A4 Signing time: Fri 13 Jun 2025 05:07:11 +0000 Manifest this update: Fri 13 Jun 2025 05:07:10 +0000 Manifest next update: Fri 20 Jun 2025 05:07:10 +0000 Files and hashes: 1: ZpvKCpDeWAORqO5km-TvvjbOhBg.crl (hash: DSySkPIEXjbuoQyiK2+jncVgL+nDAJcQLlftijqbE9A=) 2: 314597D64EEF11EF8BACFA30C4F9AE02.roa (hash: NfFMnt+VEyqSWVwOi+J918td9eREww3K9CdjnLDT82w=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918031D/ED463BC64EEE11EFB1D33030C4F9AE02/ZpvKCpDeWAORqO5km-TvvjbOhBg.crl rsync://rpki.apnic.net/member_repository/A918031D/ED463BC64EEE11EFB1D33030C4F9AE02/ZpvKCpDeWAORqO5km-TvvjbOhBg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ZpvKCpDeWAORqO5km-TvvjbOhBg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 20 Jun 2025 05:07:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 166 (0xa6) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918031D, serialNumber=669BCA0A90DE580391A8EE649BE4EFBE36CE8418 Validity Not Before: Jun 13 05:07:10 2025 GMT Not After : Jun 20 05:07:10 2025 GMT Subject: CN=684bb1ff-a48a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b3:b8:12:df:ea:92:9b:8c:e6:b6:81:0f:39:a9: 5e:d3:c1:39:e8:d1:a8:e2:5a:a6:4f:9c:a3:03:1a: 84:e3:f4:c2:e6:af:57:e8:27:3a:58:24:4a:70:9f: 2a:73:c2:a6:a5:c9:aa:d8:d2:e1:e8:22:76:c8:2a: 5b:2c:cc:42:ba:10:bc:a3:a4:67:2c:b1:d8:12:e1: e8:43:60:87:c3:44:02:0c:75:c4:a8:1b:31:a9:af: 4e:c4:bb:7d:5f:7c:7a:cb:43:25:63:c2:a1:0d:86: c6:2a:8f:0b:0e:b2:58:76:b3:e7:98:20:4c:75:2c: ad:e9:91:33:bc:3a:7b:6d:d6:06:43:bc:fe:dc:73: 3b:09:12:72:f8:d9:81:07:55:10:5b:3a:53:49:87: 7d:6b:33:95:7b:07:79:4a:5a:11:32:ae:ba:9f:e1: 30:1d:59:5d:e1:de:01:8d:23:c1:86:d3:eb:9e:0a: 05:36:cb:89:a6:89:f4:47:d4:8d:c8:c2:64:24:4d: fc:f0:b6:25:77:ed:1e:1b:ea:32:e0:13:a2:44:37: 58:57:62:12:95:6f:a1:79:40:6c:fa:4b:7d:b2:9b: 86:ff:36:81:2e:a4:73:89:36:96:6b:80:2e:d2:4c: ee:87:10:40:5f:33:3f:f4:d2:90:db:58:9e:e2:32: e7:fd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8D:BD:D6:59:29:EE:B4:D0:31:D0:C7:F2:41:CB:72:CC:CD:D9:8D:D2 X509v3 Authority Key Identifier: keyid:66:9B:CA:0A:90:DE:58:03:91:A8:EE:64:9B:E4:EF:BE:36:CE:84:18 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918031D/ED463BC64EEE11EFB1D33030C4F9AE02/ZpvKCpDeWAORqO5km-TvvjbOhBg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ZpvKCpDeWAORqO5km-TvvjbOhBg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918031D/ED463BC64EEE11EFB1D33030C4F9AE02/ZpvKCpDeWAORqO5km-TvvjbOhBg.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 3b:1c:72:94:82:d5:92:ec:ff:09:e8:0a:02:64:9f:e8:7e:2c: 80:d1:84:37:e6:28:0c:60:97:1e:6c:13:69:c2:25:e5:df:5b: d2:8f:d3:60:b3:df:34:29:59:97:b8:96:42:de:85:48:89:30: c9:2b:df:b2:0a:1c:9b:0c:3b:3e:12:d6:1f:5a:d0:e1:e8:03: d5:af:9e:0c:4e:df:37:94:79:21:3d:50:1a:84:35:3c:f0:6e: db:4d:c1:49:6f:df:c8:47:e6:75:a5:f9:41:82:b3:cf:43:52: f7:d9:be:2a:db:16:a4:60:89:5a:ac:6c:b4:cd:94:7e:ae:53: 66:75:4a:8b:25:34:89:5f:4e:65:10:57:f7:d9:c5:53:52:e5: 6c:9c:52:b6:14:a3:94:f8:3d:cb:c4:04:71:9a:42:aa:34:c7: 7e:ee:31:08:20:59:52:c0:d2:f5:06:25:67:78:99:54:42:f6: 5c:b7:da:1b:bc:de:d4:25:fe:d6:8b:d9:c0:1d:64:82:f1:63: 8d:c3:fc:86:a1:a6:8c:e7:00:d2:f9:b5:68:a8:ea:b4:18:2e: 30:84:31:75:b8:a8:96:2a:49:b9:1d:de:fc:f5:e4:bf:cc:48: e8:4c:b3:a4:2a:c9:b9:81:0a:f8:b2:63:b5:c6:dc:e2:2b:e5: 85:d5:fc:b8 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAKYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx ODAzMUQxMTAvBgNVBAUTKDY2OUJDQTBBOTBERTU4MDM5MUE4RUU2NDlCRTRFRkJF MzZDRTg0MTgwHhcNMjUwNjEzMDUwNzEwWhcNMjUwNjIwMDUwNzEwWjAYMRYwFAYD VQQDEw02ODRiYjFmZi1hNDhhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAs7gS3+qSm4zmtoEPOale08E56NGo4lqmT5yjAxqE4/TC5q9X6Cc6WCRKcJ8q c8Kmpcmq2NLh6CJ2yCpbLMxCuhC8o6RnLLHYEuHoQ2CHw0QCDHXEqBsxqa9OxLt9 X3x6y0MlY8KhDYbGKo8LDrJYdrPnmCBMdSyt6ZEzvDp7bdYGQ7z+3HM7CRJy+NmB B1UQWzpTSYd9azOVewd5SloRMq66n+EwHVld4d4BjSPBhtPrngoFNsuJpon0R9SN yMJkJE388LYld+0eG+oy4BOiRDdYV2ISlW+heUBs+kt9spuG/zaBLqRziTaWa4Au 0kzuhxBAXzM/9NKQ21ie4jLn/QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFI291lkp 7rTQMdDH8kHLcszN2Y3SMB8GA1UdIwQYMBaAFGabygqQ3lgDkajuZJvk7742zoQY MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4MDMxRC9FRDQ2M0JDNjRF RUUxMUVGQjFEMzMwMzBDNEY5QUUwMi9acHZLQ3BEZVdBT1JxTzVrbS1UdnZqYk9o QmcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1pwdktDcERlV0FPUnFPNWttLVR2dmpiT2hCZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 MDMxRC9FRDQ2M0JDNjRFRUUxMUVGQjFEMzMwMzBDNEY5QUUwMi9acHZLQ3BEZVdB T1JxTzVrbS1UdnZqYk9oQmcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA7HHKUgtWS7P8J6AoCZJ/ofiyA0YQ35igMYJcebBNpwiXl31vSj9Ng s980KVmXuJZC3oVIiTDJK9+yChybDDs+EtYfWtDh6APVr54MTt83lHkhPVAahDU8 8G7bTcFJb9/IR+Z1pflBgrPPQ1L32b4q2xakYIlarGy0zZR+rlNmdUqLJTSJX05l EFf32cVTUuVsnFK2FKOU+D3LxARxmkKqNMd+7jEIIFlSwNL1BiVneJlUQvZct9ob vN7UJf7Wi9nAHWSC8WONw/yGoaaM5wDS+bVoqOq0GC4whDF1uKiWKkm5Hd789eS/ zEjoTLOkKsm5gQr4smO1xtziK+WF1fy4 -----END CERTIFICATE-----Generated at Fri Jun 13 23:22:09 2025 by rpki-client