$ rpki-client -vvf rpki.apnic.net/member_repository/A91B391F/58DB87F2457011EF9C8B8E71C4F9AE02/Zva4RKn4Ca4wexuc7kv9R8PHdxs.mft File: Zva4RKn4Ca4wexuc7kv9R8PHdxs.mft (raw, json) Hash identifier: VK1/KbTw24wZ9PoMoSwnuHhJzfCGZQAANpliq13ly7w= Subject key identifier: C3:A2:FB:BC:6D:FB:54:3C:FE:61:52:A6:2B:9F:0F:00:1E:C1:9B:17 Authority key identifier: 66:F6:B8:44:A9:F8:09:AE:30:7B:1B:9C:EE:4B:FD:47:C3:C7:77:1B Certificate issuer: /CN=A91B391F/serialNumber=66F6B844A9F809AE307B1B9CEE4BFD47C3C7771B Certificate serial: A3 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Zva4RKn4Ca4wexuc7kv9R8PHdxs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B391F/58DB87F2457011EF9C8B8E71C4F9AE02/Zva4RKn4Ca4wexuc7kv9R8PHdxs.mft Manifest number: A2 Signing time: Sat 31 May 2025 05:46:36 +0000 Manifest this update: Sat 31 May 2025 05:46:36 +0000 Manifest next update: Sat 07 Jun 2025 05:46:35 +0000 Files and hashes: 1: Zva4RKn4Ca4wexuc7kv9R8PHdxs.crl (hash: ODu4s2PmXu9G+NG4hRyxJBz4C3FcRjMy8D4E6v3pOs4=) 2: 5069A4E034B311F0B93A6228C4F9AE02.roa (hash: LjkQk5pWU/mOE2Q5+ogi7WUAZwgNRPqYtt1+W47MskQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B391F/58DB87F2457011EF9C8B8E71C4F9AE02/Zva4RKn4Ca4wexuc7kv9R8PHdxs.crl rsync://rpki.apnic.net/member_repository/A91B391F/58DB87F2457011EF9C8B8E71C4F9AE02/Zva4RKn4Ca4wexuc7kv9R8PHdxs.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Zva4RKn4Ca4wexuc7kv9R8PHdxs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 07 Jun 2025 05:46:35 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 163 (0xa3) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B391F, serialNumber=66F6B844A9F809AE307B1B9CEE4BFD47C3C7771B Validity Not Before: May 31 05:46:36 2025 GMT Not After : Jun 7 05:46:35 2025 GMT Subject: CN=683a97bc-266a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a8:e0:e8:74:7b:83:5c:b3:8f:f7:88:20:7c:97: 76:e9:66:7b:0d:38:d6:14:0d:a5:0f:6a:52:2e:4b: 5f:88:db:ea:90:a1:81:bd:f4:c4:c5:45:ca:30:11: 6b:b8:53:6c:36:f5:f7:8c:a6:cd:ed:2e:3e:93:22: 3c:2d:15:19:cb:8a:29:92:8b:e5:88:ea:dc:4c:b3: 2e:00:56:de:26:73:97:60:93:a7:3c:39:0b:ed:9d: 5e:1e:76:5f:8f:eb:9a:0b:c1:8c:59:d8:8a:12:a8: df:43:d1:c0:32:f2:c3:fd:ce:76:b1:b1:3f:03:14: 33:2d:db:71:e1:85:89:13:bb:87:da:15:d2:48:f9: 27:31:b0:82:87:3e:4f:18:ed:2c:df:92:62:cb:cf: 6e:39:5e:dc:44:3c:63:22:8a:63:21:bd:c3:a1:40: f7:81:cb:a5:7c:b3:3e:01:21:4d:89:45:c9:60:7c: ef:fd:d4:23:2e:b5:18:9a:2f:51:e6:6e:11:b2:d3: b7:94:bc:05:83:ae:2c:40:52:92:92:9b:1b:20:fa: 18:2f:ca:ba:78:9d:66:8d:9d:b2:45:73:9a:11:f6: 93:12:be:ed:58:91:90:4b:07:73:cf:be:e4:12:86: f8:3d:36:e8:95:2f:7f:a1:e4:15:1d:d4:14:23:e1: 16:3b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C3:A2:FB:BC:6D:FB:54:3C:FE:61:52:A6:2B:9F:0F:00:1E:C1:9B:17 X509v3 Authority Key Identifier: keyid:66:F6:B8:44:A9:F8:09:AE:30:7B:1B:9C:EE:4B:FD:47:C3:C7:77:1B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B391F/58DB87F2457011EF9C8B8E71C4F9AE02/Zva4RKn4Ca4wexuc7kv9R8PHdxs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Zva4RKn4Ca4wexuc7kv9R8PHdxs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B391F/58DB87F2457011EF9C8B8E71C4F9AE02/Zva4RKn4Ca4wexuc7kv9R8PHdxs.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 09:d2:88:6d:5b:d8:87:d8:01:ff:f0:67:05:be:54:4b:3f:83: 1e:bc:4a:a1:30:1d:0c:e7:3d:fd:fb:02:3a:c4:cd:96:a1:cb: 99:49:84:19:43:e2:9c:7f:8a:66:b5:2f:8e:dd:6d:b7:1e:ab: 2b:23:18:24:19:0a:38:f8:b6:41:e9:95:c9:5c:46:5d:b7:e6: 7d:15:81:5e:43:ef:49:e6:be:4c:e3:5f:45:7f:19:18:a5:34: 09:79:44:ea:1b:05:91:cc:76:13:82:f2:58:cf:10:bf:b4:55: 45:68:98:69:95:93:db:66:e9:5e:28:a9:de:23:1e:d2:fa:c5: fa:1d:95:e0:28:2c:7f:85:36:b5:a0:9c:3a:8f:2d:66:39:7b: 5c:87:b8:14:c1:17:0f:52:38:07:a2:a9:a1:a2:3f:dd:c7:06: 03:20:3b:46:c9:7b:a0:44:d2:29:61:59:76:a8:b8:8a:a4:ca: a0:d6:27:1a:3d:51:a4:f3:f7:0b:9d:50:bd:37:83:1e:a5:5b: a0:7e:a4:26:ee:21:ea:62:a6:12:61:a5:b3:14:d0:6b:01:84: af:a4:fc:c6:37:bf:1d:c4:0a:d5:c9:9a:40:8d:1c:b1:ed:a2: 49:2d:95:24:8f:ed:8d:2c:8c:22:fa:49:ef:e2:ff:1f:5f:d1: 34:9c:03:73 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAKMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjM5MUYxMTAvBgNVBAUTKDY2RjZCODQ0QTlGODA5QUUzMDdCMUI5Q0VFNEJGRDQ3 QzNDNzc3MUIwHhcNMjUwNTMxMDU0NjM2WhcNMjUwNjA3MDU0NjM1WjAYMRYwFAYD VQQDEw02ODNhOTdiYy0yNjZhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqODodHuDXLOP94ggfJd26WZ7DTjWFA2lD2pSLktfiNvqkKGBvfTExUXKMBFr uFNsNvX3jKbN7S4+kyI8LRUZy4opkovliOrcTLMuAFbeJnOXYJOnPDkL7Z1eHnZf j+uaC8GMWdiKEqjfQ9HAMvLD/c52sbE/AxQzLdtx4YWJE7uH2hXSSPknMbCChz5P GO0s35Jiy89uOV7cRDxjIopjIb3DoUD3gculfLM+ASFNiUXJYHzv/dQjLrUYmi9R 5m4RstO3lLwFg64sQFKSkpsbIPoYL8q6eJ1mjZ2yRXOaEfaTEr7tWJGQSwdzz77k Eob4PTbolS9/oeQVHdQUI+EWOwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFMOi+7xt +1Q8/mFSpiufDwAewZsXMB8GA1UdIwQYMBaAFGb2uESp+AmuMHsbnO5L/UfDx3cb MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCMzkxRi81OERCODdGMjQ1 NzAxMUVGOUM4QjhFNzFDNEY5QUUwMi9admE0UktuNENhNHdleHVjN2t2OVI4UEhk eHMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1p2YTRSS240Q2E0d2V4dWM3a3Y5UjhQSGR4cy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC MzkxRi81OERCODdGMjQ1NzAxMUVGOUM4QjhFNzFDNEY5QUUwMi9admE0UktuNENh NHdleHVjN2t2OVI4UEhkeHMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAJ0ohtW9iH2AH/8GcFvlRLP4MevEqhMB0M5z39+wI6xM2WocuZSYQZ Q+Kcf4pmtS+O3W23HqsrIxgkGQo4+LZB6ZXJXEZdt+Z9FYFeQ+9J5r5M419FfxkY pTQJeUTqGwWRzHYTgvJYzxC/tFVFaJhplZPbZuleKKneIx7S+sX6HZXgKCx/hTa1 oJw6jy1mOXtch7gUwRcPUjgHoqmhoj/dxwYDIDtGyXugRNIpYVl2qLiKpMqg1ica PVGk8/cLnVC9N4MepVugfqQm7iHqYqYSYaWzFNBrAYSvpPzGN78dxArVyZpAjRyx 7aJJLZUkj+2NLIwi+knv4v8fX9E0nANz -----END CERTIFICATE-----Generated at Sat May 31 17:47:16 2025 by rpki-client