$ rpki-client -vvf rpki.apnic.net/member_repository/A918031D/ED463BC64EEE11EFB1D33030C4F9AE02/ZpvKCpDeWAORqO5km-TvvjbOhBg.mft File: ZpvKCpDeWAORqO5km-TvvjbOhBg.mft (raw, json) Hash identifier: lGFxMQZ8PnmI/N75Nl4u8O7acUBK3NF0g9xnTLqO2d0= Subject key identifier: 37:F5:64:83:0F:86:28:CA:7A:13:3B:5C:6C:0A:71:7C:07:18:0F:5D Authority key identifier: 66:9B:CA:0A:90:DE:58:03:91:A8:EE:64:9B:E4:EF:BE:36:CE:84:18 Certificate issuer: /CN=A918031D/serialNumber=669BCA0A90DE580391A8EE649BE4EFBE36CE8418 Certificate serial: A4 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ZpvKCpDeWAORqO5km-TvvjbOhBg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918031D/ED463BC64EEE11EFB1D33030C4F9AE02/ZpvKCpDeWAORqO5km-TvvjbOhBg.mft Manifest number: A2 Signing time: Mon 09 Jun 2025 05:11:08 +0000 Manifest this update: Mon 09 Jun 2025 05:11:07 +0000 Manifest next update: Mon 16 Jun 2025 05:11:07 +0000 Files and hashes: 1: ZpvKCpDeWAORqO5km-TvvjbOhBg.crl (hash: UkMtMwiW/N6tjm2CZnS0C6JRH/EEgxKKnJ7ioAMoISU=) 2: 314597D64EEF11EF8BACFA30C4F9AE02.roa (hash: NfFMnt+VEyqSWVwOi+J918td9eREww3K9CdjnLDT82w=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918031D/ED463BC64EEE11EFB1D33030C4F9AE02/ZpvKCpDeWAORqO5km-TvvjbOhBg.crl rsync://rpki.apnic.net/member_repository/A918031D/ED463BC64EEE11EFB1D33030C4F9AE02/ZpvKCpDeWAORqO5km-TvvjbOhBg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ZpvKCpDeWAORqO5km-TvvjbOhBg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 16 Jun 2025 05:11:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 164 (0xa4) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918031D, serialNumber=669BCA0A90DE580391A8EE649BE4EFBE36CE8418 Validity Not Before: Jun 9 05:11:07 2025 GMT Not After : Jun 16 05:11:07 2025 GMT Subject: CN=68466ceb-e74c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:fe:57:e9:87:0f:fe:01:5e:63:dc:dd:df:34: 8c:44:0a:52:7a:cd:07:0f:dd:60:6d:6b:48:87:3e: 3f:fa:ee:e4:88:00:dd:14:1f:10:68:8d:7c:fb:bb: 09:d8:6f:1c:4c:e5:2f:81:b3:4e:3b:13:38:11:68: 58:a9:b4:47:14:95:69:96:57:da:b5:c1:ed:7e:fc: b0:a1:8a:6f:a2:e3:49:4d:ed:81:98:ca:a2:db:8c: e1:68:08:7a:24:30:a1:7e:a2:da:05:c8:5b:04:dd: 7e:87:7a:bc:e6:50:bc:16:f3:1a:0d:21:33:85:ca: 17:9d:33:67:50:fb:d5:93:a1:d3:ed:84:e6:09:68: 22:e1:fd:3e:7d:47:85:e8:b0:86:d7:a3:7f:eb:ab: 92:c4:e9:6c:ea:37:e0:4e:93:f3:d3:0a:64:fa:65: 76:4d:0a:75:40:32:7e:dc:1e:2e:77:2f:61:53:49: ec:05:b0:4d:fb:ec:58:0f:8e:94:95:ad:96:0b:90: 4d:7b:97:a8:55:c0:39:16:1d:e3:74:b4:f8:8d:3f: 97:c7:06:92:35:b9:d6:ca:8e:1f:91:ff:5d:fb:c0: f3:61:68:43:87:7b:8a:75:2e:77:c0:39:ca:06:b6: 24:53:b6:87:f9:1d:e1:f0:d1:bc:e3:6f:6e:7b:30: f9:85 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 37:F5:64:83:0F:86:28:CA:7A:13:3B:5C:6C:0A:71:7C:07:18:0F:5D X509v3 Authority Key Identifier: keyid:66:9B:CA:0A:90:DE:58:03:91:A8:EE:64:9B:E4:EF:BE:36:CE:84:18 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918031D/ED463BC64EEE11EFB1D33030C4F9AE02/ZpvKCpDeWAORqO5km-TvvjbOhBg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ZpvKCpDeWAORqO5km-TvvjbOhBg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918031D/ED463BC64EEE11EFB1D33030C4F9AE02/ZpvKCpDeWAORqO5km-TvvjbOhBg.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 5e:ac:27:ac:7d:61:4c:5d:0d:78:ec:4a:e8:e1:42:17:d8:6b: f4:12:21:23:61:00:b0:cb:f2:f6:ca:79:57:ae:89:b5:7a:70: 57:fd:83:23:f6:06:db:00:69:34:c0:18:41:65:60:f7:70:7b: 87:b5:63:6b:5e:8a:16:48:13:28:b3:89:29:fd:85:80:57:c2: aa:53:e5:9d:54:7f:28:0f:1f:ae:6b:36:b1:4d:b9:9c:a7:20: 74:74:02:45:99:ae:67:b3:d9:e9:d4:f5:c1:3b:2b:47:c7:6e: 0c:fc:52:40:82:03:8d:54:12:76:5b:e4:53:be:f3:88:14:1b: ec:ce:ad:3f:25:1b:d5:55:91:6b:9a:e0:0e:7d:7c:64:32:d0: 45:29:14:fb:b6:66:c1:a7:65:b7:32:9e:19:0a:d6:ee:5b:97: 39:9b:49:18:7c:cd:c9:9a:12:33:4c:d9:e8:a8:3b:2a:6d:14: 9b:7a:7f:7d:d2:66:69:e8:1e:7b:ec:37:0e:af:57:c2:76:d4: ec:26:3a:7e:42:14:1b:01:e3:33:d6:93:64:63:0c:db:3a:5d: 56:71:a4:07:db:26:37:1f:24:26:cc:20:2e:6f:45:13:e0:fc: 7f:4b:02:82:64:92:67:21:ef:18:4b:29:33:d8:1b:d4:1b:16: 34:c6:fd:4a -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAKQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx ODAzMUQxMTAvBgNVBAUTKDY2OUJDQTBBOTBERTU4MDM5MUE4RUU2NDlCRTRFRkJF MzZDRTg0MTgwHhcNMjUwNjA5MDUxMTA3WhcNMjUwNjE2MDUxMTA3WjAYMRYwFAYD VQQDEw02ODQ2NmNlYi1lNzRjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvP5X6YcP/gFeY9zd3zSMRApSes0HD91gbWtIhz4/+u7kiADdFB8QaI18+7sJ 2G8cTOUvgbNOOxM4EWhYqbRHFJVpllfatcHtfvywoYpvouNJTe2BmMqi24zhaAh6 JDChfqLaBchbBN1+h3q85lC8FvMaDSEzhcoXnTNnUPvVk6HT7YTmCWgi4f0+fUeF 6LCG16N/66uSxOls6jfgTpPz0wpk+mV2TQp1QDJ+3B4udy9hU0nsBbBN++xYD46U la2WC5BNe5eoVcA5Fh3jdLT4jT+XxwaSNbnWyo4fkf9d+8DzYWhDh3uKdS53wDnK BrYkU7aH+R3h8NG8429uezD5hQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFDf1ZIMP hijKehM7XGwKcXwHGA9dMB8GA1UdIwQYMBaAFGabygqQ3lgDkajuZJvk7742zoQY MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4MDMxRC9FRDQ2M0JDNjRF RUUxMUVGQjFEMzMwMzBDNEY5QUUwMi9acHZLQ3BEZVdBT1JxTzVrbS1UdnZqYk9o QmcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1pwdktDcERlV0FPUnFPNWttLVR2dmpiT2hCZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 MDMxRC9FRDQ2M0JDNjRFRUUxMUVGQjFEMzMwMzBDNEY5QUUwMi9acHZLQ3BEZVdB T1JxTzVrbS1UdnZqYk9oQmcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBerCesfWFMXQ147Ero4UIX2Gv0EiEjYQCwy/L2ynlXrom1enBX/YMj 9gbbAGk0wBhBZWD3cHuHtWNrXooWSBMos4kp/YWAV8KqU+WdVH8oDx+uazaxTbmc pyB0dAJFma5ns9np1PXBOytHx24M/FJAggONVBJ2W+RTvvOIFBvszq0/JRvVVZFr muAOfXxkMtBFKRT7tmbBp2W3Mp4ZCtbuW5c5m0kYfM3JmhIzTNnoqDsqbRSben99 0mZp6B577DcOr1fCdtTsJjp+QhQbAeMz1pNkYwzbOl1WcaQH2yY3HyQmzCAub0UT 4Px/SwKCZJJnIe8YSykz2BvUGxY0xv1K -----END CERTIFICATE-----Generated at Mon Jun 9 19:04:44 2025 by rpki-client