$ rpki-client -vvf rpki.apnic.net/member_repository/A91A6CD6/65E6DBD69CA911EB8AFF0F37C4F9AE02/zFYVfHLcxpczY2dD21AIdZMtpB8.mft File: zFYVfHLcxpczY2dD21AIdZMtpB8.mft (raw, json) Hash identifier: Exx2a9oJ75XejBFdNFw4OxJ2GscBXQMN9Ks7pezPh8A= Subject key identifier: 32:D2:B1:C6:9A:C3:A5:08:E4:AF:DB:82:8D:DB:7C:C5:64:C5:3E:73 Authority key identifier: CC:56:15:7C:72:DC:C6:97:33:63:67:43:DB:50:08:75:93:2D:A4:1F Certificate issuer: /CN=A91A6CD6/serialNumber=CC56157C72DCC69733636743DB500875932DA41F Certificate serial: 0629 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/zFYVfHLcxpczY2dD21AIdZMtpB8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A6CD6/65E6DBD69CA911EB8AFF0F37C4F9AE02/zFYVfHLcxpczY2dD21AIdZMtpB8.mft Manifest number: 0623 Signing time: Fri 06 Jun 2025 22:48:47 +0000 Manifest this update: Fri 06 Jun 2025 22:48:47 +0000 Manifest next update: Fri 13 Jun 2025 22:48:47 +0000 Files and hashes: 1: zFYVfHLcxpczY2dD21AIdZMtpB8.crl (hash: dPJYiY8Sol/e6LHP+MdiqfNZCL4CQYg8+bZASCZ6vvk=) 2: A210E7309CAB11EBAB87D43AC4F9AE02.roa (hash: G4Iff29ujs2wSeu37iPDIUnNuvGFMJft5LK0116SXEs=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A6CD6/65E6DBD69CA911EB8AFF0F37C4F9AE02/zFYVfHLcxpczY2dD21AIdZMtpB8.crl rsync://rpki.apnic.net/member_repository/A91A6CD6/65E6DBD69CA911EB8AFF0F37C4F9AE02/zFYVfHLcxpczY2dD21AIdZMtpB8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/zFYVfHLcxpczY2dD21AIdZMtpB8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 13 Jun 2025 22:48:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1577 (0x629) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A6CD6, serialNumber=CC56157C72DCC69733636743DB500875932DA41F Validity Not Before: Jun 6 22:48:47 2025 GMT Not After : Jun 13 22:48:47 2025 GMT Subject: CN=6843704f-1bc3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d3:d1:96:bc:6a:ab:22:04:72:55:37:79:8f:94: 6a:46:bf:61:2c:58:9a:c2:f8:29:97:86:d7:eb:d3: 82:e6:ed:64:24:6c:68:34:fa:90:79:d4:44:df:79: 8c:13:b3:9d:2d:95:ed:f2:31:b0:0e:c5:1a:72:f8: 0c:c6:be:e7:24:73:5f:50:d0:3d:67:d6:83:ed:a4: 75:96:96:4c:07:93:d6:4c:27:84:2c:ae:77:db:09: 7c:60:89:61:82:c6:5e:a7:9f:6a:9d:1a:8a:57:97: 7b:01:42:55:79:66:24:b1:59:51:97:f3:5a:0e:a4: b0:8f:79:a3:05:ad:ca:86:0f:7c:98:7b:b3:c1:4f: 1d:49:c1:36:0e:04:54:cc:e6:76:f6:2a:62:61:ba: ae:8e:d3:8c:65:10:a2:c1:be:09:97:8b:5a:22:26: f5:ae:88:92:7d:d1:bb:ca:0d:ab:8a:3a:3e:18:ac: 44:e0:02:a4:ba:f1:c0:ad:ad:1e:d3:ba:9c:cd:8b: 9e:0f:e8:cc:8e:85:7e:67:71:c7:e7:27:ba:eb:09: 00:77:a7:61:a4:a9:83:99:c7:35:45:ee:1e:f5:b6: 45:32:18:80:0e:cc:ca:ba:7f:31:19:34:be:6d:c8: 59:ae:d7:48:23:24:5e:9e:5a:6d:ef:bf:43:97:68: 7b:59 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 32:D2:B1:C6:9A:C3:A5:08:E4:AF:DB:82:8D:DB:7C:C5:64:C5:3E:73 X509v3 Authority Key Identifier: keyid:CC:56:15:7C:72:DC:C6:97:33:63:67:43:DB:50:08:75:93:2D:A4:1F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A6CD6/65E6DBD69CA911EB8AFF0F37C4F9AE02/zFYVfHLcxpczY2dD21AIdZMtpB8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/zFYVfHLcxpczY2dD21AIdZMtpB8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A6CD6/65E6DBD69CA911EB8AFF0F37C4F9AE02/zFYVfHLcxpczY2dD21AIdZMtpB8.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 45:18:01:c9:48:2c:b0:a3:9b:55:d8:49:51:60:13:e7:29:e6: b8:8d:42:e3:24:c4:c0:d1:79:da:b0:ce:eb:6a:87:ac:95:05: d7:54:ea:be:d9:9d:fc:6d:b0:6b:85:e7:50:e1:6a:e8:9b:f7: 31:fa:61:7e:96:4f:ec:30:40:a4:a8:d6:4b:f4:a8:80:e9:bb: 49:6a:4c:fd:1a:c8:97:d6:db:a0:57:9b:32:63:eb:cb:5d:df: d3:29:4a:b2:34:da:60:5a:97:0e:fc:d3:8e:99:50:4a:17:2a: 77:b0:74:37:e9:79:4e:ee:98:aa:6e:71:bb:19:8e:8e:8a:0e: 39:85:00:3d:3b:a1:00:a9:0d:97:8b:32:d6:cb:3c:29:36:18: 3a:c1:f0:33:78:28:a6:6d:49:ac:46:8f:93:1b:fb:ba:63:e8: fa:a7:f6:da:94:71:ab:8b:5e:ef:ff:2d:de:d3:36:a0:ca:82: d5:ed:a8:1c:ae:fa:38:ae:38:45:92:f7:a9:01:c5:2d:75:55: a1:82:cf:99:ef:45:59:50:1a:c0:8c:48:26:78:29:97:9c:53: 42:ce:2c:f3:f2:b7:82:d1:e9:0b:6c:d2:df:b4:4f:db:94:28: 02:db:92:59:50:52:9e:b8:f7:da:a7:a1:6c:d4:b0:36:68:32: 94:aa:c7:92 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBikwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTZDRDYxMTAvBgNVBAUTKENDNTYxNTdDNzJEQ0M2OTczMzYzNjc0M0RCNTAwODc1 OTMyREE0MUYwHhcNMjUwNjA2MjI0ODQ3WhcNMjUwNjEzMjI0ODQ3WjAYMRYwFAYD VQQDEw02ODQzNzA0Zi0xYmMzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA09GWvGqrIgRyVTd5j5RqRr9hLFiawvgpl4bX69OC5u1kJGxoNPqQedRE33mM E7OdLZXt8jGwDsUacvgMxr7nJHNfUNA9Z9aD7aR1lpZMB5PWTCeELK532wl8YIlh gsZep59qnRqKV5d7AUJVeWYksVlRl/NaDqSwj3mjBa3Khg98mHuzwU8dScE2DgRU zOZ29ipiYbqujtOMZRCiwb4Jl4taIib1roiSfdG7yg2rijo+GKxE4AKkuvHAra0e 07qczYueD+jMjoV+Z3HH5ye66wkAd6dhpKmDmcc1Re4e9bZFMhiADszKun8xGTS+ bchZrtdIIyRenlpt779Dl2h7WQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFDLSscaa w6UI5K/bgo3bfMVkxT5zMB8GA1UdIwQYMBaAFMxWFXxy3MaXM2NnQ9tQCHWTLaQf MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBNkNENi82NUU2REJENjlD QTkxMUVCOEFGRjBGMzdDNEY5QUUwMi96RllWZkhMY3hwY3pZMmREMjFBSWRaTXRw QjguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3pGWVZmSExjeHBjelkyZEQyMUFJZFpNdHBCOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB NkNENi82NUU2REJENjlDQTkxMUVCOEFGRjBGMzdDNEY5QUUwMi96RllWZkhMY3hw Y3pZMmREMjFBSWRaTXRwQjgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBFGAHJSCywo5tV2ElRYBPnKea4jULjJMTA0XnasM7raoeslQXXVOq+ 2Z38bbBrhedQ4Wrom/cx+mF+lk/sMECkqNZL9KiA6btJakz9GsiX1tugV5syY+vL Xd/TKUqyNNpgWpcO/NOOmVBKFyp3sHQ36XlO7piqbnG7GY6Oig45hQA9O6EAqQ2X izLWyzwpNhg6wfAzeCimbUmsRo+TG/u6Y+j6p/balHGri17v/y3e0zagyoLV7agc rvo4rjhFkvepAcUtdVWhgs+Z70VZUBrAjEgmeCmXnFNCzizz8reC0ekLbNLftE/b lCgC25JZUFKeuPfap6Fs1LA2aDKUqseS -----END CERTIFICATE-----Generated at Sat Jun 7 06:23:41 2025 by rpki-client