$ rpki-client -vvf rpki.apnic.net/member_repository/A91D462A/4CBD3F8450D511E79313AE12C4F9AE02/z3Ess4nuhNoZypgd5jD1Cf9EzUU.mft File: z3Ess4nuhNoZypgd5jD1Cf9EzUU.mft (raw, json) Hash identifier: XsvCqMFivc/5pMmb40TmDvqGVtiSmeywMI0mhlIKYSc= Subject key identifier: E3:89:34:9B:67:03:4B:25:64:26:3E:C5:29:98:56:E8:FA:24:BE:05 Authority key identifier: CF:71:2C:B3:89:EE:84:DA:19:CA:98:1D:E6:30:F5:09:FF:44:CD:45 Certificate issuer: /CN=A91D462A/serialNumber=CF712CB389EE84DA19CA981DE630F509FF44CD45 Certificate serial: 1A3D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/z3Ess4nuhNoZypgd5jD1Cf9EzUU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D462A/4CBD3F8450D511E79313AE12C4F9AE02/z3Ess4nuhNoZypgd5jD1Cf9EzUU.mft Manifest number: 1A21 Signing time: Wed 04 Jun 2025 16:24:07 +0000 Manifest this update: Wed 04 Jun 2025 16:24:06 +0000 Manifest next update: Wed 11 Jun 2025 16:24:06 +0000 Files and hashes: 1: z3Ess4nuhNoZypgd5jD1Cf9EzUU.crl (hash: clR4JPOZHna8PWlGkNr56xHHHof3KkAzHR1jZC8JsA0=) 2: 84559BB01D4611EDBB06705BC4F9AE02.roa (hash: nliRTAkVAtJ8FfxKEHQS9HqVovT0tZ32fPM48Sk/l8k=) 3: F39D90EE561B11EFB51A9149C4F9AE02.roa (hash: EijUWJlocJ1+GHXxh5XIDZa+yD2/CG2e199ekLmtdEY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D462A/4CBD3F8450D511E79313AE12C4F9AE02/z3Ess4nuhNoZypgd5jD1Cf9EzUU.crl rsync://rpki.apnic.net/member_repository/A91D462A/4CBD3F8450D511E79313AE12C4F9AE02/z3Ess4nuhNoZypgd5jD1Cf9EzUU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/z3Ess4nuhNoZypgd5jD1Cf9EzUU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 11 Jun 2025 16:24:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6717 (0x1a3d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D462A, serialNumber=CF712CB389EE84DA19CA981DE630F509FF44CD45 Validity Not Before: Jun 4 16:24:06 2025 GMT Not After : Jun 11 16:24:06 2025 GMT Subject: CN=68407326-cbad Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:aa:f4:19:d6:a5:0a:4a:bb:21:3c:71:a5:67:37: 7b:90:b2:1d:26:66:e2:29:67:85:a9:8d:a0:d7:0e: 38:76:62:26:20:ea:4b:25:a4:c6:39:12:45:ba:a1: d0:be:da:96:49:73:89:b2:d6:2a:99:34:99:78:9f: 56:57:4a:3c:9c:37:7b:f3:62:d4:d3:11:b8:6c:b1: 96:40:96:09:02:e6:a6:71:3e:1c:e6:72:6a:8f:3a: 68:b6:44:5e:d7:b5:07:fa:44:30:9d:9b:62:9d:fb: 67:25:ce:ba:f5:6b:11:9b:d0:0a:54:b3:8c:17:e2: 05:f3:8c:21:df:68:1f:95:57:ab:b4:39:b5:ec:0e: 9d:f7:83:30:ef:c0:eb:4b:b2:37:22:8a:a2:3d:11: 21:2b:84:45:49:4e:1a:04:19:7f:18:05:09:e8:83: 19:86:d1:0d:08:49:9d:57:32:65:be:3e:c3:f1:ed: 97:9c:57:0b:b3:b4:e7:60:c3:74:4d:86:7e:c9:65: a5:00:3c:ce:07:53:ae:e5:77:56:d3:61:9a:f3:5b: e4:1c:3b:ad:47:45:87:dc:33:dc:dc:13:a0:b5:30: 53:76:18:5a:f5:e0:38:4f:c8:a4:9d:e8:69:be:f8: 29:19:5f:77:4b:0b:eb:e4:ee:e9:ad:72:26:b3:39: 7a:39 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E3:89:34:9B:67:03:4B:25:64:26:3E:C5:29:98:56:E8:FA:24:BE:05 X509v3 Authority Key Identifier: keyid:CF:71:2C:B3:89:EE:84:DA:19:CA:98:1D:E6:30:F5:09:FF:44:CD:45 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D462A/4CBD3F8450D511E79313AE12C4F9AE02/z3Ess4nuhNoZypgd5jD1Cf9EzUU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/z3Ess4nuhNoZypgd5jD1Cf9EzUU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D462A/4CBD3F8450D511E79313AE12C4F9AE02/z3Ess4nuhNoZypgd5jD1Cf9EzUU.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 23:91:fe:33:76:6a:6e:ab:eb:e2:24:74:00:1a:22:d3:fa:67: d3:45:e5:7d:0f:aa:ad:20:1d:87:3a:ab:fb:f4:ed:f4:82:cf: 50:99:e6:b1:d0:b8:24:5e:6c:ec:1e:57:28:2b:e8:4c:52:01: b9:76:3c:fa:98:b7:a7:07:dc:c8:ca:14:7a:66:1f:fd:18:05: 6c:b0:62:55:c5:ce:99:de:57:27:2e:ee:bd:b3:ae:a4:73:ae: 06:2f:36:1b:bc:71:20:0c:28:c9:7d:c8:c8:6b:65:cf:f9:ce: de:14:68:0a:5f:74:d9:58:08:3c:2e:eb:c7:e6:e3:ba:1a:a8: 35:c0:f2:3a:ba:f7:ae:54:20:22:90:4d:e5:de:bc:af:7d:7f: 0b:ce:c7:c8:05:0c:c9:38:34:89:dd:83:d8:8a:94:35:35:50: 12:eb:f2:49:ea:fe:04:4a:48:79:5f:c0:ef:9e:c6:a9:6a:28: d9:0e:8f:f9:e7:2d:aa:d1:e1:0a:03:01:a2:e3:7b:c7:28:0b: c3:9d:76:98:cc:ea:80:04:66:c2:6d:80:67:a3:9f:b4:2f:3f: 68:98:e7:7b:3d:b9:da:82:7c:43:e0:89:28:86:77:12:a0:8e: c5:47:07:0f:51:05:de:a2:a2:6b:82:21:ae:f0:24:3a:87:2a: 74:61:78:60 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICGj0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDQ2MkExMTAvBgNVBAUTKENGNzEyQ0IzODlFRTg0REExOUNBOTgxREU2MzBGNTA5 RkY0NENENDUwHhcNMjUwNjA0MTYyNDA2WhcNMjUwNjExMTYyNDA2WjAYMRYwFAYD VQQDEw02ODQwNzMyNi1jYmFkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqvQZ1qUKSrshPHGlZzd7kLIdJmbiKWeFqY2g1w44dmImIOpLJaTGORJFuqHQ vtqWSXOJstYqmTSZeJ9WV0o8nDd782LU0xG4bLGWQJYJAuamcT4c5nJqjzpotkRe 17UH+kQwnZtinftnJc669WsRm9AKVLOMF+IF84wh32gflVertDm17A6d94Mw78Dr S7I3IoqiPREhK4RFSU4aBBl/GAUJ6IMZhtENCEmdVzJlvj7D8e2XnFcLs7TnYMN0 TYZ+yWWlADzOB1Ou5XdW02Ga81vkHDutR0WH3DPc3BOgtTBTdhha9eA4T8iknehp vvgpGV93Swvr5O7prXImszl6OQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFOOJNJtn A0slZCY+xSmYVuj6JL4FMB8GA1UdIwQYMBaAFM9xLLOJ7oTaGcqYHeYw9Qn/RM1F MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFENDYyQS80Q0JEM0Y4NDUw RDUxMUU3OTMxM0FFMTJDNEY5QUUwMi96M0VzczRudWhOb1p5cGdkNWpEMUNmOUV6 VVUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3ozRXNzNG51aE5vWnlwZ2Q1akQxQ2Y5RXpVVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE NDYyQS80Q0JEM0Y4NDUwRDUxMUU3OTMxM0FFMTJDNEY5QUUwMi96M0VzczRudWhO b1p5cGdkNWpEMUNmOUV6VVUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAjkf4zdmpuq+viJHQAGiLT+mfTReV9D6qtIB2HOqv79O30gs9Qmeax 0LgkXmzsHlcoK+hMUgG5djz6mLenB9zIyhR6Zh/9GAVssGJVxc6Z3lcnLu69s66k c64GLzYbvHEgDCjJfcjIa2XP+c7eFGgKX3TZWAg8LuvH5uO6Gqg1wPI6uveuVCAi kE3l3ryvfX8LzsfIBQzJODSJ3YPYipQ1NVAS6/JJ6v4ESkh5X8DvnsapaijZDo/5 5y2q0eEKAwGi43vHKAvDnXaYzOqABGbCbYBno5+0Lz9omOd7PbnagnxD4IkohncS oI7FRwcPUQXeoqJrgiGu8CQ6hyp0YXhg -----END CERTIFICATE-----Generated at Thu Jun 5 19:13:26 2025 by rpki-client