$ rpki-client -vvf rpki.apnic.net/member_repository/A918134E/2BFF1412BB5D11EE83302073C4F9AE02/ZTiBnzv0kyyggsFGry_qy--HjLg.mft File: ZTiBnzv0kyyggsFGry_qy--HjLg.mft (raw, json) Hash identifier: 2QdyOYYY7dC5MlzNKH6xKPq1qu2rmdHZPUW61MbVeOE= Subject key identifier: FD:3F:1A:AB:88:A2:05:4F:F3:47:71:A7:94:69:3E:72:92:5E:A2:C2 Authority key identifier: 65:38:81:9F:3B:F4:93:2C:A0:82:C1:46:AF:2F:EA:CB:EF:87:8C:B8 Certificate issuer: /CN=A918134E/serialNumber=6538819F3BF4932CA082C146AF2FEACBEF878CB8 Certificate serial: 0105 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ZTiBnzv0kyyggsFGry_qy--HjLg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918134E/2BFF1412BB5D11EE83302073C4F9AE02/ZTiBnzv0kyyggsFGry_qy--HjLg.mft Manifest number: 0102 Signing time: Sat 07 Jun 2025 04:39:47 +0000 Manifest this update: Sat 07 Jun 2025 04:39:47 +0000 Manifest next update: Sat 14 Jun 2025 04:39:47 +0000 Files and hashes: 1: ZTiBnzv0kyyggsFGry_qy--HjLg.crl (hash: FmUnGPuAouiiCVfQJFOumJ3u8IW9e6fvWns05shXFs4=) 2: F8672B3EBB5D11EEB6706D74C4F9AE02.roa (hash: swMzWxPUqu2w8enIQOaAGC2JS9Sa03i552bDyyqge7k=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918134E/2BFF1412BB5D11EE83302073C4F9AE02/ZTiBnzv0kyyggsFGry_qy--HjLg.crl rsync://rpki.apnic.net/member_repository/A918134E/2BFF1412BB5D11EE83302073C4F9AE02/ZTiBnzv0kyyggsFGry_qy--HjLg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ZTiBnzv0kyyggsFGry_qy--HjLg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 14 Jun 2025 04:39:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 261 (0x105) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918134E, serialNumber=6538819F3BF4932CA082C146AF2FEACBEF878CB8 Validity Not Before: Jun 7 04:39:47 2025 GMT Not After : Jun 14 04:39:47 2025 GMT Subject: CN=6843c293-0b0d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:f8:7e:57:8e:eb:2b:c2:58:03:cd:78:7c:b7: 9e:07:85:8c:65:97:ff:fd:d4:fe:00:c1:1a:36:7f: b1:f9:31:da:24:b2:31:c2:33:5f:ed:1b:82:14:62: db:f5:ae:e7:ab:27:b9:2e:1d:32:6f:01:db:b2:c1: a9:71:e5:56:72:f4:6d:d6:0a:69:a6:50:67:71:bb: 64:1c:fd:f3:76:dd:d2:98:cd:57:03:61:8a:54:58: 6f:00:38:9f:4e:73:1d:05:93:44:38:0a:b1:cc:6b: 83:f3:0a:a9:95:c0:80:c8:b5:66:ab:ae:e9:c8:c6: 38:1a:01:6b:6f:f7:ca:3a:32:6c:e8:75:da:d3:df: f7:ac:fa:ba:df:eb:df:6d:bb:d9:31:86:22:ad:df: d4:ec:ea:f5:91:54:7c:a2:f6:94:28:8c:33:d9:0e: 8e:ef:86:54:d8:dd:9b:65:56:80:74:1c:bd:a2:71: f2:54:d0:05:02:e4:75:67:b5:dc:82:c5:b2:09:54: a4:7d:70:7b:95:da:28:98:eb:02:d0:03:47:25:8f: 76:05:2b:d8:61:f3:ef:7f:84:3b:58:4d:1a:de:d3: bf:b8:01:93:0b:3c:8c:78:cb:c5:56:49:89:de:de: 3c:1b:a5:f0:d8:da:95:6f:0d:91:69:34:39:93:37: 34:b1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FD:3F:1A:AB:88:A2:05:4F:F3:47:71:A7:94:69:3E:72:92:5E:A2:C2 X509v3 Authority Key Identifier: keyid:65:38:81:9F:3B:F4:93:2C:A0:82:C1:46:AF:2F:EA:CB:EF:87:8C:B8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918134E/2BFF1412BB5D11EE83302073C4F9AE02/ZTiBnzv0kyyggsFGry_qy--HjLg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ZTiBnzv0kyyggsFGry_qy--HjLg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918134E/2BFF1412BB5D11EE83302073C4F9AE02/ZTiBnzv0kyyggsFGry_qy--HjLg.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption e7:82:86:3a:1e:a3:65:9b:aa:77:41:86:63:25:a4:16:2a:19: 2e:2b:f1:22:9c:d1:f2:58:31:c7:7b:a9:a2:73:8d:87:59:68: 07:f5:40:bc:c2:85:03:19:2f:86:91:25:bc:55:a0:b3:bb:cb: ce:d9:7d:7a:1c:33:67:f8:eb:34:cf:69:1a:7f:22:60:40:64: b6:e0:89:50:2a:32:d7:59:f5:42:9f:d2:15:24:a5:67:a2:b4: 38:51:a3:44:4e:07:db:04:00:ca:f2:e1:2a:08:7f:9a:44:b1: e5:31:5e:4f:23:96:e5:00:b7:f0:58:36:4e:74:0d:73:32:1d: 7b:a8:ec:97:f2:9a:9c:92:fb:5b:78:52:42:62:8b:6f:58:f1: cd:ac:48:ea:70:08:8a:0b:40:13:ed:eb:c1:bd:95:0c:bd:77: b3:10:bd:dd:bb:1d:03:87:fb:af:34:58:49:7e:5c:8b:fc:88: da:61:b3:89:7a:f6:1c:a5:48:3e:3e:4a:fe:2a:8e:8e:37:fa: 18:c7:98:92:a2:41:ba:67:81:68:4a:5f:6b:eb:48:4c:80:02: 0f:7a:6e:09:c5:d4:b7:5f:f2:d3:5a:fa:5b:f3:9a:01:fd:b1: 65:4d:20:1b:b5:84:b4:44:f0:d0:c7:c6:c8:d9:f4:d3:57:0b: 75:ec:ad:2f -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAQUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx ODEzNEUxMTAvBgNVBAUTKDY1Mzg4MTlGM0JGNDkzMkNBMDgyQzE0NkFGMkZFQUNC RUY4NzhDQjgwHhcNMjUwNjA3MDQzOTQ3WhcNMjUwNjE0MDQzOTQ3WjAYMRYwFAYD VQQDEw02ODQzYzI5My0wYjBkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAt/h+V47rK8JYA814fLeeB4WMZZf//dT+AMEaNn+x+THaJLIxwjNf7RuCFGLb 9a7nqye5Lh0ybwHbssGpceVWcvRt1gppplBncbtkHP3zdt3SmM1XA2GKVFhvADif TnMdBZNEOAqxzGuD8wqplcCAyLVmq67pyMY4GgFrb/fKOjJs6HXa09/3rPq63+vf bbvZMYYird/U7Or1kVR8ovaUKIwz2Q6O74ZU2N2bZVaAdBy9onHyVNAFAuR1Z7Xc gsWyCVSkfXB7ldoomOsC0ANHJY92BSvYYfPvf4Q7WE0a3tO/uAGTCzyMeMvFVkmJ 3t48G6Xw2NqVbw2RaTQ5kzc0sQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFP0/GquI ogVP80dxp5RpPnKSXqLCMB8GA1UdIwQYMBaAFGU4gZ879JMsoILBRq8v6svvh4y4 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4MTM0RS8yQkZGMTQxMkJC NUQxMUVFODMzMDIwNzNDNEY5QUUwMi9aVGlCbnp2MGt5eWdnc0ZHcnlfcXktLUhq TGcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1pUaUJuenYwa3l5Z2dzRkdyeV9xeS0tSGpMZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 MTM0RS8yQkZGMTQxMkJCNUQxMUVFODMzMDIwNzNDNEY5QUUwMi9aVGlCbnp2MGt5 eWdnc0ZHcnlfcXktLUhqTGcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQDngoY6HqNlm6p3QYZjJaQWKhkuK/EinNHyWDHHe6mic42HWWgH9UC8 woUDGS+GkSW8VaCzu8vO2X16HDNn+Os0z2kafyJgQGS24IlQKjLXWfVCn9IVJKVn orQ4UaNETgfbBADK8uEqCH+aRLHlMV5PI5blALfwWDZOdA1zMh17qOyX8pqckvtb eFJCYotvWPHNrEjqcAiKC0AT7evBvZUMvXezEL3dux0Dh/uvNFhJflyL/IjaYbOJ evYcpUg+Pkr+Ko6ON/oYx5iSokG6Z4FoSl9r60hMgAIPem4JxdS3X/LTWvpb85oB /bFlTSAbtYS0RPDQx8bI2fTTVwt17K0v -----END CERTIFICATE-----Generated at Sun Jun 8 23:32:20 2025 by rpki-client