$ rpki-client -vvf rpki.apnic.net/member_repository/A91A8219/EC0A70F8EA8011E78B42A432C4F9AE02/ZVPDwhgLl-LrN8tx9qHOqnuVykc.mft File: ZVPDwhgLl-LrN8tx9qHOqnuVykc.mft (raw, json) Hash identifier: hUEG+VXl974OmijjKc4tTW05Iv8neObuBx8SQi+wp/g= Subject key identifier: AF:1C:39:DA:8F:D0:47:59:63:DB:96:B2:D2:F9:AF:56:B4:5A:7F:38 Authority key identifier: 65:53:C3:C2:18:0B:97:E2:EB:37:CB:71:F6:A1:CE:AA:7B:95:CA:47 Certificate issuer: /CN=A91A8219/serialNumber=6553C3C2180B97E2EB37CB71F6A1CEAA7B95CA47 Certificate serial: 170E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ZVPDwhgLl-LrN8tx9qHOqnuVykc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A8219/EC0A70F8EA8011E78B42A432C4F9AE02/ZVPDwhgLl-LrN8tx9qHOqnuVykc.mft Manifest number: 1702 Signing time: Wed 04 Jun 2025 16:40:08 +0000 Manifest this update: Wed 04 Jun 2025 16:40:07 +0000 Manifest next update: Wed 11 Jun 2025 16:40:07 +0000 Files and hashes: 1: ZVPDwhgLl-LrN8tx9qHOqnuVykc.crl (hash: AAMD8ndHv26tIqEakEyXPloqIpK18LJ2wzeTQlINVec=) 2: 314E917C651E11E8A8903D42C4F9AE02.roa (hash: PelwRr9hgP7dCYd5KU90WVUNYfa/KyN0aFEd88yUz4U=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A8219/EC0A70F8EA8011E78B42A432C4F9AE02/ZVPDwhgLl-LrN8tx9qHOqnuVykc.crl rsync://rpki.apnic.net/member_repository/A91A8219/EC0A70F8EA8011E78B42A432C4F9AE02/ZVPDwhgLl-LrN8tx9qHOqnuVykc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ZVPDwhgLl-LrN8tx9qHOqnuVykc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 11 Jun 2025 16:40:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5902 (0x170e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A8219, serialNumber=6553C3C2180B97E2EB37CB71F6A1CEAA7B95CA47 Validity Not Before: Jun 4 16:40:07 2025 GMT Not After : Jun 11 16:40:07 2025 GMT Subject: CN=684076e8-f588 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d2:ed:e8:45:b6:5e:0f:83:bd:3e:5a:71:c9:f3: b7:c5:b9:a2:da:19:7b:a6:b4:a3:3a:a1:c5:d6:6b: 19:10:e0:5b:16:ae:c8:08:b5:f5:b5:28:7e:ae:30: ee:c2:f0:aa:5d:c8:95:cb:d8:65:df:d8:d4:ee:4a: fa:17:bd:1f:ed:b9:9f:cc:98:75:ff:c0:bd:74:d0: b3:78:c1:af:c6:b4:bd:16:fa:b6:aa:77:4b:66:8c: 8a:3a:68:68:03:01:2f:1e:8d:85:55:1a:d4:b1:65: eb:ff:78:17:37:90:4f:88:04:1a:1d:81:92:18:e3: 14:38:2c:44:14:5a:3c:1b:1d:c9:22:70:46:da:da: 3e:00:b1:93:cd:bc:74:45:38:c7:8f:76:31:0e:aa: ec:a0:70:77:c4:7e:6b:9b:59:5b:fb:f6:83:aa:03: fa:b1:3f:8c:ef:65:5e:4a:2a:35:e6:c4:c5:f1:43: 9b:cb:52:7a:9a:84:56:7b:7b:49:08:0b:7c:8f:06: b4:92:d5:50:31:ba:28:f2:be:6b:93:bf:db:83:c7: 24:14:cd:26:2c:36:6e:99:4e:46:28:5d:12:2d:06: 19:19:99:5c:e4:68:c7:e9:54:c9:96:d0:2d:cc:33: 40:0d:0d:09:b3:44:84:55:63:12:e2:3f:2c:f8:81: 7b:8b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AF:1C:39:DA:8F:D0:47:59:63:DB:96:B2:D2:F9:AF:56:B4:5A:7F:38 X509v3 Authority Key Identifier: keyid:65:53:C3:C2:18:0B:97:E2:EB:37:CB:71:F6:A1:CE:AA:7B:95:CA:47 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A8219/EC0A70F8EA8011E78B42A432C4F9AE02/ZVPDwhgLl-LrN8tx9qHOqnuVykc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ZVPDwhgLl-LrN8tx9qHOqnuVykc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A8219/EC0A70F8EA8011E78B42A432C4F9AE02/ZVPDwhgLl-LrN8tx9qHOqnuVykc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 19:7e:fc:2a:e3:5d:38:a1:23:75:62:aa:98:df:7e:31:54:dd: f5:da:8b:63:6f:f4:c3:49:cb:b6:4c:f7:1b:65:d5:4b:cf:03: 93:19:21:da:8d:cb:5d:be:99:45:d2:0c:32:05:6d:8b:d4:31: 67:55:f0:d5:37:47:65:a5:f4:8f:0b:5c:b7:17:a5:16:5f:dd: 76:21:c1:7b:bd:f8:a8:3b:78:de:96:c0:2f:de:cd:e9:df:92: ef:99:78:bc:4e:7f:90:d0:09:37:13:1b:e6:76:b4:d1:fe:8a: 35:77:f7:6c:a4:3b:38:40:a4:9c:d6:ae:75:2b:a3:79:87:97: 1d:e4:37:1f:ef:a9:c2:1c:be:ab:f0:11:ba:20:18:35:de:9f: ef:35:e0:d4:2d:83:6b:b6:8d:d9:78:91:f6:9b:0a:3a:ae:d7: 35:42:e0:4b:61:f6:58:24:8b:eb:e2:01:99:98:6a:f2:7a:5e: 78:e6:15:a9:55:b0:aa:85:6a:92:14:ae:58:6a:fb:c7:27:a2: b7:23:c8:cf:cb:f1:33:54:11:c6:51:5c:fc:f3:70:f8:c2:b9: 10:4d:0e:19:7a:29:b2:fa:a1:43:1d:1c:1d:8e:51:a0:56:04: 11:da:1c:52:dc:07:43:67:2f:d4:8a:25:c8:b3:8f:78:5f:e1: 7a:31:8f:9b -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICFw4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTgyMTkxMTAvBgNVBAUTKDY1NTNDM0MyMTgwQjk3RTJFQjM3Q0I3MUY2QTFDRUFB N0I5NUNBNDcwHhcNMjUwNjA0MTY0MDA3WhcNMjUwNjExMTY0MDA3WjAYMRYwFAYD VQQDEw02ODQwNzZlOC1mNTg4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0u3oRbZeD4O9PlpxyfO3xbmi2hl7prSjOqHF1msZEOBbFq7ICLX1tSh+rjDu wvCqXciVy9hl39jU7kr6F70f7bmfzJh1/8C9dNCzeMGvxrS9Fvq2qndLZoyKOmho AwEvHo2FVRrUsWXr/3gXN5BPiAQaHYGSGOMUOCxEFFo8Gx3JInBG2to+ALGTzbx0 RTjHj3YxDqrsoHB3xH5rm1lb+/aDqgP6sT+M72VeSio15sTF8UOby1J6moRWe3tJ CAt8jwa0ktVQMboo8r5rk7/bg8ckFM0mLDZumU5GKF0SLQYZGZlc5GjH6VTJltAt zDNADQ0Js0SEVWMS4j8s+IF7iwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFK8cOdqP 0EdZY9uWstL5r1a0Wn84MB8GA1UdIwQYMBaAFGVTw8IYC5fi6zfLcfahzqp7lcpH MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBODIxOS9FQzBBNzBGOEVB ODAxMUU3OEI0MkE0MzJDNEY5QUUwMi9aVlBEd2hnTGwtTHJOOHR4OXFIT3FudVZ5 a2MuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1pWUER3aGdMbC1Mck44dHg5cUhPcW51VnlrYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB ODIxOS9FQzBBNzBGOEVBODAxMUU3OEI0MkE0MzJDNEY5QUUwMi9aVlBEd2hnTGwt THJOOHR4OXFIT3FudVZ5a2MubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAZfvwq4104oSN1YqqY334xVN312otjb/TDScu2TPcbZdVLzwOTGSHa jctdvplF0gwyBW2L1DFnVfDVN0dlpfSPC1y3F6UWX912IcF7vfioO3jelsAv3s3p 35LvmXi8Tn+Q0Ak3ExvmdrTR/oo1d/dspDs4QKSc1q51K6N5h5cd5Dcf76nCHL6r 8BG6IBg13p/vNeDULYNrto3ZeJH2mwo6rtc1QuBLYfZYJIvr4gGZmGryel545hWp VbCqhWqSFK5YavvHJ6K3I8jPy/EzVBHGUVz883D4wrkQTQ4Zeimy+qFDHRwdjlGg VgQR2hxS3AdDZy/UiiXIs494X+F6MY+b -----END CERTIFICATE-----Generated at Thu Jun 5 19:58:57 2025 by rpki-client