$ rpki-client -vvf rpki.apnic.net/member_repository/A91CE978/5DB555AAB8DA11EEBC4BEC2DC4F9AE02/RZTy7BffVsPQZUDzZtKvEYsxfx4.mft File: RZTy7BffVsPQZUDzZtKvEYsxfx4.mft (raw, json) Hash identifier: fOih6xLyMQua2qDiVFLwlPFU+vz8c0lko3CsyhJ1nVU= Subject key identifier: 02:B7:04:67:22:25:79:1B:7E:29:2E:1A:6D:0B:FB:DB:DE:11:10:78 Authority key identifier: 45:94:F2:EC:17:DF:56:C3:D0:65:40:F3:66:D2:AF:11:8B:31:7F:1E Certificate issuer: /CN=A91CE978/serialNumber=4594F2EC17DF56C3D06540F366D2AF118B317F1E Certificate serial: 0109 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/RZTy7BffVsPQZUDzZtKvEYsxfx4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CE978/5DB555AAB8DA11EEBC4BEC2DC4F9AE02/RZTy7BffVsPQZUDzZtKvEYsxfx4.mft Manifest number: 0106 Signing time: Mon 02 Jun 2025 14:54:27 +0000 Manifest this update: Mon 02 Jun 2025 14:54:27 +0000 Manifest next update: Mon 09 Jun 2025 14:54:27 +0000 Files and hashes: 1: RZTy7BffVsPQZUDzZtKvEYsxfx4.crl (hash: Z+LKUGs90Iq4kmMZjPL6VKqKnQLcDKWsPEQSuXTwdYg=) 2: 30EAE110B9AD11EE83063243C4F9AE02.roa (hash: /mgu4P2twSDACdGUYPekQQEcvJH+CFlbuOsPxwdYvXg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CE978/5DB555AAB8DA11EEBC4BEC2DC4F9AE02/RZTy7BffVsPQZUDzZtKvEYsxfx4.crl rsync://rpki.apnic.net/member_repository/A91CE978/5DB555AAB8DA11EEBC4BEC2DC4F9AE02/RZTy7BffVsPQZUDzZtKvEYsxfx4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/RZTy7BffVsPQZUDzZtKvEYsxfx4.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Jun 2025 14:54:26 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 265 (0x109) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CE978, serialNumber=4594F2EC17DF56C3D06540F366D2AF118B317F1E Validity Not Before: Jun 2 14:54:27 2025 GMT Not After : Jun 9 14:54:27 2025 GMT Subject: CN=683dbb23-42df Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:8d:dd:f1:4f:bc:54:4d:96:cb:ff:64:0a:e1: a4:66:d7:49:88:c3:55:dc:ef:f8:3b:cc:fb:1f:6e: 14:2a:e2:0e:b7:0c:44:ef:e8:7b:6b:27:b9:5f:f2: c6:51:20:c9:c3:bd:da:c2:90:99:46:2f:84:67:c5: 6f:41:90:94:30:de:78:fe:82:0c:88:ef:9c:29:6a: 3f:2c:74:e8:fb:47:92:74:07:8f:10:21:14:83:58: ec:76:88:82:3d:9c:a0:5d:e4:4d:be:19:3f:3a:29: d4:df:15:0b:e0:e8:cf:63:91:21:23:66:e7:63:32: f7:ee:a7:46:f8:ac:30:94:99:7b:c7:9b:47:b7:62: ac:ca:fb:ff:3a:bb:4f:9b:ed:71:f7:54:98:d5:fd: c0:c8:30:91:7a:e7:f2:25:51:ad:0c:88:55:ea:0e: c2:07:97:51:93:27:a0:71:93:7a:5c:53:b4:ec:bd: 55:73:76:37:9c:7d:53:fa:f2:c8:31:37:56:da:92: f0:7e:d1:f9:67:2d:78:8c:65:c3:64:31:fd:2f:52: 37:18:c9:c6:fb:12:09:a7:68:39:22:31:21:76:89: 6a:f0:84:cf:e8:08:0b:39:3b:94:16:fb:90:0f:59: ca:cb:e7:1c:ed:53:61:57:df:a2:b6:e4:67:fc:54: 5e:bb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 02:B7:04:67:22:25:79:1B:7E:29:2E:1A:6D:0B:FB:DB:DE:11:10:78 X509v3 Authority Key Identifier: keyid:45:94:F2:EC:17:DF:56:C3:D0:65:40:F3:66:D2:AF:11:8B:31:7F:1E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CE978/5DB555AAB8DA11EEBC4BEC2DC4F9AE02/RZTy7BffVsPQZUDzZtKvEYsxfx4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/RZTy7BffVsPQZUDzZtKvEYsxfx4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CE978/5DB555AAB8DA11EEBC4BEC2DC4F9AE02/RZTy7BffVsPQZUDzZtKvEYsxfx4.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 03:51:26:d9:f2:da:ea:09:55:17:9c:65:00:c4:3f:23:14:8a: f8:89:03:6a:82:35:bb:25:1b:1a:4d:81:61:11:a2:13:79:92: e7:2f:7b:e0:60:8f:86:72:74:b0:f4:c6:89:18:61:50:92:4c: 61:4b:62:f7:96:45:f6:95:f2:f3:a9:41:c2:e3:d3:75:dc:b7: 97:ac:4b:cf:90:44:50:dc:ce:8d:97:41:94:84:29:10:fe:66: a8:71:45:4e:17:68:80:e3:17:20:45:e3:21:0d:2f:07:30:a7: 63:a9:52:bf:46:ab:67:e8:2d:d4:4b:9e:97:0a:66:ab:ca:1a: d2:fa:ec:cd:b2:41:a4:cd:46:23:75:51:b7:e4:9c:75:4d:b3: 52:ce:0e:d8:49:96:e8:b7:a0:d2:67:fb:c8:cb:e6:b7:c2:6a: f0:37:48:c1:37:5e:27:9a:f4:03:41:53:72:84:e3:f7:75:a0: d4:ed:ec:f4:7a:1c:2d:42:82:c3:aa:26:ee:a2:e0:9e:2a:29: 1a:c2:35:30:7d:a5:9d:46:b7:1e:89:90:2f:9e:eb:30:0c:52: 08:76:30:c4:4c:aa:ef:a8:f7:39:49:df:2b:13:77:8c:0e:ae: 32:60:37:54:78:aa:cc:da:41:f3:35:6c:5a:64:54:6a:5d:30: 68:b9:61:f5 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAQkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Q0U5NzgxMTAvBgNVBAUTKDQ1OTRGMkVDMTdERjU2QzNEMDY1NDBGMzY2RDJBRjEx OEIzMTdGMUUwHhcNMjUwNjAyMTQ1NDI3WhcNMjUwNjA5MTQ1NDI3WjAYMRYwFAYD VQQDEw02ODNkYmIyMy00MmRmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvo3d8U+8VE2Wy/9kCuGkZtdJiMNV3O/4O8z7H24UKuIOtwxE7+h7aye5X/LG USDJw73awpCZRi+EZ8VvQZCUMN54/oIMiO+cKWo/LHTo+0eSdAePECEUg1jsdoiC PZygXeRNvhk/OinU3xUL4OjPY5EhI2bnYzL37qdG+KwwlJl7x5tHt2Ksyvv/OrtP m+1x91SY1f3AyDCReufyJVGtDIhV6g7CB5dRkyegcZN6XFO07L1Vc3Y3nH1T+vLI MTdW2pLwftH5Zy14jGXDZDH9L1I3GMnG+xIJp2g5IjEhdolq8ITP6AgLOTuUFvuQ D1nKy+cc7VNhV9+ituRn/FReuwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFAK3BGci JXkbfikuGm0L+9veERB4MB8GA1UdIwQYMBaAFEWU8uwX31bD0GVA82bSrxGLMX8e MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDRTk3OC81REI1NTVBQUI4 REExMUVFQkM0QkVDMkRDNEY5QUUwMi9SWlR5N0JmZlZzUFFaVUR6WnRLdkVZc3hm eDQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL1JaVHk3QmZmVnNQUVpVRHpadEt2RVlzeGZ4NC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD RTk3OC81REI1NTVBQUI4REExMUVFQkM0QkVDMkRDNEY5QUUwMi9SWlR5N0JmZlZz UFFaVUR6WnRLdkVZc3hmeDQubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQADUSbZ8trqCVUXnGUAxD8jFIr4iQNqgjW7JRsaTYFhEaITeZLnL3vg YI+GcnSw9MaJGGFQkkxhS2L3lkX2lfLzqUHC49N13LeXrEvPkERQ3M6Nl0GUhCkQ /maocUVOF2iA4xcgReMhDS8HMKdjqVK/Rqtn6C3US56XCmaryhrS+uzNskGkzUYj dVG35Jx1TbNSzg7YSZbot6DSZ/vIy+a3wmrwN0jBN14nmvQDQVNyhOP3daDU7ez0 ehwtQoLDqibuouCeKikawjUwfaWdRrceiZAvnuswDFIIdjDETKrvqPc5Sd8rE3eM Dq4yYDdUeKrM2kHzNWxaZFRqXTBouWH1 -----END CERTIFICATE-----Generated at Tue Jun 3 23:33:30 2025 by rpki-client