$ rpki-client -vvf rpki.apnic.net/member_repository/A91A4B1A/5DD48AB689F211E69E5F6339C4F9AE02/zhFGgP9vTZvD8YgNYQ1q7urr8NQ.mft File: zhFGgP9vTZvD8YgNYQ1q7urr8NQ.mft (raw, json) Hash identifier: CYLqmJvUlyecRGGjd8v0/zqw4knUSzdTxeANzorDxe0= Subject key identifier: 2E:C2:F2:7A:F8:8C:C9:C2:04:4E:E8:E7:11:8B:51:0A:9F:94:81:B2 Authority key identifier: CE:11:46:80:FF:6F:4D:9B:C3:F1:88:0D:61:0D:6A:EE:EA:EB:F0:D4 Certificate issuer: /CN=A91A4B1A/serialNumber=CE114680FF6F4D9BC3F1880D610D6AEEEAEBF0D4 Certificate serial: 1E19 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/zhFGgP9vTZvD8YgNYQ1q7urr8NQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A4B1A/5DD48AB689F211E69E5F6339C4F9AE02/zhFGgP9vTZvD8YgNYQ1q7urr8NQ.mft Manifest number: 1E08 Signing time: Sat 31 May 2025 16:03:41 +0000 Manifest this update: Sat 31 May 2025 16:03:41 +0000 Manifest next update: Sat 07 Jun 2025 16:03:41 +0000 Files and hashes: 1: zhFGgP9vTZvD8YgNYQ1q7urr8NQ.crl (hash: AnN8OduKm+4lSPbeYsrH1CiuSu5PKiVo1SMDtNJY7oE=) 2: 4A6679EC14DF11EEAB46A86DC4F9AE02.roa (hash: yY5rZMTsOpnGO6cAR5A6bi22J/lJ789z+ED1oN3orxw=) 3: 4B52A44814DF11EEAB46A86DC4F9AE02.roa (hash: 36rBW03tvoWvEp5FFhkEkP0PegguzR76VTv8hEMsFNk=) 4: 1DBC9D405DB411EEA017251AC4F9AE02.roa (hash: 2w+ZZZiHGzET+UAGMpulJr633xByME/2FAJYerduoZE=) 5: 4CE75372B9DE11EEBC5B0D21C4F9AE02.roa (hash: yps3mcP7HEC1/XDzl5d78p6GLXVPbcsPt7pEv3x1HZA=) 6: 4999305414DF11EEAB46A86DC4F9AE02.roa (hash: Bl17bhrifD1PMrI4c5ur7v5yVCt37LP+FsjpzcQgt1k=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A4B1A/5DD48AB689F211E69E5F6339C4F9AE02/zhFGgP9vTZvD8YgNYQ1q7urr8NQ.crl rsync://rpki.apnic.net/member_repository/A91A4B1A/5DD48AB689F211E69E5F6339C4F9AE02/zhFGgP9vTZvD8YgNYQ1q7urr8NQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/zhFGgP9vTZvD8YgNYQ1q7urr8NQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 07 Jun 2025 16:03:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7705 (0x1e19) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A4B1A, serialNumber=CE114680FF6F4D9BC3F1880D610D6AEEEAEBF0D4 Validity Not Before: May 31 16:03:41 2025 GMT Not After : Jun 7 16:03:41 2025 GMT Subject: CN=683b285d-c891 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ae:6a:6b:fc:25:b2:22:39:97:b9:54:10:cb:48: 3d:ce:5e:d4:31:4f:81:28:4f:f5:07:e1:11:69:06: ab:aa:61:90:75:33:b7:da:87:b7:56:15:2b:b9:2b: 21:7a:f1:8e:9f:f1:f6:33:95:da:d7:7e:c3:c0:20: 64:a2:57:11:f8:8b:43:98:f9:b6:3d:16:0f:82:da: 8c:ed:01:6a:b4:29:9e:64:54:18:cb:df:7c:a0:d2: 91:f8:1a:39:0b:3c:ef:ca:13:06:29:c8:ca:a9:ee: 9e:70:9f:35:52:54:bb:c0:2e:bf:4d:8d:90:fa:32: a1:d1:56:fb:85:d0:50:4b:02:7f:43:a5:f9:33:54: 89:71:a3:1d:97:52:37:5f:af:dd:71:e3:6c:36:ef: e2:54:2f:7f:b8:02:14:3c:a1:2e:08:0f:83:1c:25: be:b3:af:36:a6:cc:a8:e4:53:e5:bd:02:8a:ce:ef: 41:04:8d:b0:2c:f7:61:6a:86:46:7d:8c:72:92:48: 3e:58:9e:58:3d:cc:87:b6:b9:60:eb:27:31:bf:b1: 00:91:4f:61:0e:b6:08:a2:34:e4:34:cd:c1:5b:98: af:ee:02:cc:a6:0a:6a:27:ac:a7:c1:bc:37:9f:9e: d6:36:f4:23:a4:87:02:f0:68:cc:ef:75:5e:1d:92: 55:c7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2E:C2:F2:7A:F8:8C:C9:C2:04:4E:E8:E7:11:8B:51:0A:9F:94:81:B2 X509v3 Authority Key Identifier: keyid:CE:11:46:80:FF:6F:4D:9B:C3:F1:88:0D:61:0D:6A:EE:EA:EB:F0:D4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A4B1A/5DD48AB689F211E69E5F6339C4F9AE02/zhFGgP9vTZvD8YgNYQ1q7urr8NQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/zhFGgP9vTZvD8YgNYQ1q7urr8NQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A4B1A/5DD48AB689F211E69E5F6339C4F9AE02/zhFGgP9vTZvD8YgNYQ1q7urr8NQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 2e:b9:8c:59:77:9d:3a:05:53:77:03:91:fd:b1:c8:25:7e:3f: 3a:67:1f:80:33:3a:a9:6c:47:bd:be:97:1f:f3:7a:03:09:74: 75:4c:e5:54:5c:3e:d7:70:0d:0f:2f:6a:f6:30:c1:05:96:6c: c5:7f:59:f8:e2:7d:f2:a6:40:20:d2:88:b8:ec:f0:7f:4b:dd: 3b:47:fa:0b:eb:c2:12:17:52:e7:7b:4f:e0:42:9e:92:a1:42: 74:94:72:23:b7:71:7a:4c:83:13:68:d3:f7:da:5f:72:54:09: c2:e2:98:24:56:d7:c8:fc:0e:cf:83:3b:23:a7:ba:2b:e0:0a: 74:25:d1:35:cf:d8:3f:80:96:7d:c8:fc:1b:25:87:bf:61:17: 2a:ee:32:47:3d:2f:11:26:d0:45:dc:87:ab:6e:58:4b:50:59: 66:8b:61:90:3f:02:ab:aa:55:98:31:53:aa:08:79:bf:2a:0b: d8:54:6d:e6:b9:c3:e8:f7:5f:62:59:e9:68:63:0f:f3:47:d7: c2:49:1b:3c:3d:47:f7:bf:93:38:c8:1c:e4:fe:c8:c4:95:2b: 98:53:60:14:85:69:45:1a:d7:5e:e6:9b:ce:4a:49:21:13:ce: 7f:91:3c:05:c2:56:43:cd:7e:de:54:db:06:23:f1:4d:43:50: 24:7c:8d:c2 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICHhkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTRCMUExMTAvBgNVBAUTKENFMTE0NjgwRkY2RjREOUJDM0YxODgwRDYxMEQ2QUVF RUFFQkYwRDQwHhcNMjUwNTMxMTYwMzQxWhcNMjUwNjA3MTYwMzQxWjAYMRYwFAYD VQQDEw02ODNiMjg1ZC1jODkxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArmpr/CWyIjmXuVQQy0g9zl7UMU+BKE/1B+ERaQarqmGQdTO32oe3VhUruSsh evGOn/H2M5Xa137DwCBkolcR+ItDmPm2PRYPgtqM7QFqtCmeZFQYy998oNKR+Bo5 CzzvyhMGKcjKqe6ecJ81UlS7wC6/TY2Q+jKh0Vb7hdBQSwJ/Q6X5M1SJcaMdl1I3 X6/dceNsNu/iVC9/uAIUPKEuCA+DHCW+s682psyo5FPlvQKKzu9BBI2wLPdhaoZG fYxykkg+WJ5YPcyHtrlg6ycxv7EAkU9hDrYIojTkNM3BW5iv7gLMpgpqJ6ynwbw3 n57WNvQjpIcC8GjM73VeHZJVxwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFC7C8nr4 jMnCBE7o5xGLUQqflIGyMB8GA1UdIwQYMBaAFM4RRoD/b02bw/GIDWENau7q6/DU MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBNEIxQS81REQ0OEFCNjg5 RjIxMUU2OUU1RjYzMzlDNEY5QUUwMi96aEZHZ1A5dlRadkQ4WWdOWVExcTd1cnI4 TlEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3poRkdnUDl2VFp2RDhZZ05ZUTFxN3VycjhOUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB NEIxQS81REQ0OEFCNjg5RjIxMUU2OUU1RjYzMzlDNEY5QUUwMi96aEZHZ1A5dlRa dkQ4WWdOWVExcTd1cnI4TlEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAuuYxZd506BVN3A5H9scglfj86Zx+AMzqpbEe9vpcf83oDCXR1TOVU XD7XcA0PL2r2MMEFlmzFf1n44n3ypkAg0oi47PB/S907R/oL68ISF1Lne0/gQp6S oUJ0lHIjt3F6TIMTaNP32l9yVAnC4pgkVtfI/A7Pgzsjp7or4Ap0JdE1z9g/gJZ9 yPwbJYe/YRcq7jJHPS8RJtBF3IerblhLUFlmi2GQPwKrqlWYMVOqCHm/KgvYVG3m ucPo919iWeloYw/zR9fCSRs8PUf3v5M4yBzk/sjElSuYU2AUhWlFGtde5pvOSkkh E85/kTwFwlZDzX7eVNsGI/FNQ1AkfI3C -----END CERTIFICATE-----Generated at Sat May 31 17:57:50 2025 by rpki-client