$ rpki-client -vvf rpki.apnic.net/member_repository/A91A4517/406F904C6AE611E491914687C4F9AE02/Z187oflqnh7CsBN2YsdU2x0eAHM.mft File: Z187oflqnh7CsBN2YsdU2x0eAHM.mft (raw, json) Hash identifier: OSk65Lr0gEY6nyixstHpePlbqaS6C+cfbKFE20JR34A= Subject key identifier: 4F:D8:4C:09:F1:F3:12:3B:BA:6D:F2:EE:BE:F7:B1:0F:B5:02:1A:DB Authority key identifier: 67:5F:3B:A1:F9:6A:9E:1E:C2:B0:13:76:62:C7:54:DB:1D:1E:00:73 Certificate issuer: /CN=A91A4517/serialNumber=675F3BA1F96A9E1EC2B0137662C754DB1D1E0073 Certificate serial: 2913 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Z187oflqnh7CsBN2YsdU2x0eAHM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A4517/406F904C6AE611E491914687C4F9AE02/Z187oflqnh7CsBN2YsdU2x0eAHM.mft Manifest number: 28F3 Signing time: Sat 31 May 2025 15:34:39 +0000 Manifest this update: Sat 31 May 2025 15:34:38 +0000 Manifest next update: Sat 07 Jun 2025 15:34:38 +0000 Files and hashes: 1: Z187oflqnh7CsBN2YsdU2x0eAHM.crl (hash: eDsEFjblHBk2qkiN0efyEr5WW+OLVz0z4pkikeA2QkE=) 2: F4246CDA561811E98A165872C4F9AE02.roa (hash: C/PaFQfpTy7SRBE+0XzPzL+bck/ugVag2KSCjWGbACs=) 3: 5B0D0BFE04D411EAA7E3F81FC4F9AE02.roa (hash: NPaRLQzlfeRDFfVjFZGdCoMjhFrE57rsZhCE/YcIOww=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A4517/406F904C6AE611E491914687C4F9AE02/Z187oflqnh7CsBN2YsdU2x0eAHM.crl rsync://rpki.apnic.net/member_repository/A91A4517/406F904C6AE611E491914687C4F9AE02/Z187oflqnh7CsBN2YsdU2x0eAHM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Z187oflqnh7CsBN2YsdU2x0eAHM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 07 Jun 2025 15:34:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 10515 (0x2913) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A4517, serialNumber=675F3BA1F96A9E1EC2B0137662C754DB1D1E0073 Validity Not Before: May 31 15:34:38 2025 GMT Not After : Jun 7 15:34:38 2025 GMT Subject: CN=683b218f-2e62 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:1c:b6:b3:d2:8f:c6:2a:ac:d0:38:3f:e2:6c: 75:0c:cc:78:2e:f8:32:f8:e5:f4:83:41:f1:be:f8: d8:f9:d1:05:ed:29:d2:24:8e:83:cf:6f:74:14:ca: 7d:21:1d:37:5c:3a:39:bc:f9:76:54:14:41:c0:f4: 6f:62:db:68:34:40:dc:4c:9b:21:2f:cc:0a:f8:7b: 67:b8:8b:54:66:80:5f:5e:4e:aa:83:b1:53:e9:f3: 6d:69:68:5b:ec:a2:4e:f1:fe:09:1a:e0:2f:1d:d5: c4:15:82:cd:4d:60:fb:0d:01:b2:88:78:1a:28:07: de:74:b5:b3:33:12:47:f8:f5:33:be:54:02:60:00: 31:0f:50:7f:da:93:45:2d:3a:f8:44:1c:f0:00:5b: 99:94:e0:ff:c4:47:16:30:27:86:25:a7:83:81:19: a6:88:c2:2b:e5:6a:cf:72:5c:3b:ff:bc:e3:1e:0c: f3:55:d9:8e:d8:a2:63:04:96:73:96:1c:e9:59:f7: 70:aa:46:cd:87:58:47:8b:78:69:ac:12:db:d8:23: 67:eb:b5:7f:61:91:50:7f:3b:2c:48:06:e5:d4:a7: d6:a7:66:7a:b7:b3:67:25:bb:66:cf:69:12:5a:4c: 20:1d:4f:76:be:bb:66:9c:93:75:27:18:90:80:dd: 39:eb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4F:D8:4C:09:F1:F3:12:3B:BA:6D:F2:EE:BE:F7:B1:0F:B5:02:1A:DB X509v3 Authority Key Identifier: keyid:67:5F:3B:A1:F9:6A:9E:1E:C2:B0:13:76:62:C7:54:DB:1D:1E:00:73 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A4517/406F904C6AE611E491914687C4F9AE02/Z187oflqnh7CsBN2YsdU2x0eAHM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Z187oflqnh7CsBN2YsdU2x0eAHM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A4517/406F904C6AE611E491914687C4F9AE02/Z187oflqnh7CsBN2YsdU2x0eAHM.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption de:1f:78:19:66:f8:67:55:7d:80:ba:fc:54:4f:61:87:a9:65: b6:36:87:fc:25:a7:7c:94:ea:6a:7a:1e:59:15:d8:f4:77:2b: 10:65:3c:cb:54:02:6d:fc:77:8b:89:da:84:2d:af:a4:9b:2e: ab:4d:8a:ee:d1:c5:a1:a7:7b:f9:c2:f5:d2:4b:d3:11:fc:0b: 7a:d9:fd:f6:bd:61:db:cc:d9:a5:22:75:92:3b:90:d3:b1:98: 68:82:87:de:46:1f:c7:42:95:57:9d:e0:8f:07:74:43:51:f0: 43:08:67:76:2a:f7:52:6f:5b:57:2b:df:bf:19:06:0c:01:68: 66:ed:94:c4:ab:c0:8a:84:32:54:c1:d6:47:05:d9:31:3f:66: a6:0b:20:a2:83:12:df:64:78:3e:69:00:1d:d1:b4:ab:83:67: 64:67:dc:57:99:39:f3:2a:30:90:36:30:8e:83:4a:4b:a5:c6: 42:97:52:4f:1d:60:cb:f2:64:24:7c:f9:cd:59:a9:e7:35:fe: 3a:77:1b:85:c3:a7:37:27:7c:b6:52:21:6d:11:b2:e3:3d:bb: bc:04:66:df:6c:90:2b:a0:7d:cf:c5:3f:23:4d:d3:36:42:a8: 59:9b:1e:4d:72:0a:5d:9f:3b:a1:01:40:f7:c3:b5:15:12:ac: 74:f7:07:08 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICKRMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTQ1MTcxMTAvBgNVBAUTKDY3NUYzQkExRjk2QTlFMUVDMkIwMTM3NjYyQzc1NERC MUQxRTAwNzMwHhcNMjUwNTMxMTUzNDM4WhcNMjUwNjA3MTUzNDM4WjAYMRYwFAYD VQQDEw02ODNiMjE4Zi0yZTYyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvRy2s9KPxiqs0Dg/4mx1DMx4Lvgy+OX0g0HxvvjY+dEF7SnSJI6Dz290FMp9 IR03XDo5vPl2VBRBwPRvYttoNEDcTJshL8wK+HtnuItUZoBfXk6qg7FT6fNtaWhb 7KJO8f4JGuAvHdXEFYLNTWD7DQGyiHgaKAfedLWzMxJH+PUzvlQCYAAxD1B/2pNF LTr4RBzwAFuZlOD/xEcWMCeGJaeDgRmmiMIr5WrPclw7/7zjHgzzVdmO2KJjBJZz lhzpWfdwqkbNh1hHi3hprBLb2CNn67V/YZFQfzssSAbl1KfWp2Z6t7NnJbtmz2kS WkwgHU92vrtmnJN1JxiQgN056wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFE/YTAnx 8xI7um3y7r73sQ+1AhrbMB8GA1UdIwQYMBaAFGdfO6H5ap4ewrATdmLHVNsdHgBz MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBNDUxNy80MDZGOTA0QzZB RTYxMUU0OTE5MTQ2ODdDNEY5QUUwMi9aMTg3b2ZscW5oN0NzQk4yWXNkVTJ4MGVB SE0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1oxODdvZmxxbmg3Q3NCTjJZc2RVMngwZUFITS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB NDUxNy80MDZGOTA0QzZBRTYxMUU0OTE5MTQ2ODdDNEY5QUUwMi9aMTg3b2ZscW5o N0NzQk4yWXNkVTJ4MGVBSE0ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQDeH3gZZvhnVX2AuvxUT2GHqWW2Nof8Jad8lOpqeh5ZFdj0dysQZTzL VAJt/HeLidqELa+kmy6rTYru0cWhp3v5wvXSS9MR/At62f32vWHbzNmlInWSO5DT sZhogofeRh/HQpVXneCPB3RDUfBDCGd2KvdSb1tXK9+/GQYMAWhm7ZTEq8CKhDJU wdZHBdkxP2amCyCigxLfZHg+aQAd0bSrg2dkZ9xXmTnzKjCQNjCOg0pLpcZCl1JP HWDL8mQkfPnNWannNf46dxuFw6c3J3y2UiFtEbLjPbu8BGbfbJAroH3PxT8jTdM2 QqhZmx5NcgpdnzuhAUD3w7UVEqx09wcI -----END CERTIFICATE-----Generated at Mon Jun 2 07:15:14 2025 by rpki-client