$ rpki-client -vvf rpki.apnic.net/member_repository/A91DA13E/4E8531CA06B511EB9372D32BC4F9AE02/Z_O5-qoQ0gywF_B_zJoVTYi2Y6A.mft File: Z_O5-qoQ0gywF_B_zJoVTYi2Y6A.mft (raw, json) Hash identifier: DXhL8ne4q2Z9R+rKitdulqxWHiBaLm357Im22H7doac= Subject key identifier: C6:8E:3A:BD:77:AA:29:EA:B3:D1:FC:5C:4D:78:27:B7:8C:65:CE:1D Authority key identifier: 67:F3:B9:FA:AA:10:D2:0C:B0:17:F0:7F:CC:9A:15:4D:88:B6:63:A0 Certificate issuer: /CN=A91DA13E/serialNumber=67F3B9FAAA10D20CB017F07FCC9A154D88B663A0 Certificate serial: 07AD Authority info access: rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/Z_O5-qoQ0gywF_B_zJoVTYi2Y6A.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91DA13E/4E8531CA06B511EB9372D32BC4F9AE02/Z_O5-qoQ0gywF_B_zJoVTYi2Y6A.mft Manifest number: 07A5 Signing time: Mon 02 Jun 2025 21:28:15 +0000 Manifest this update: Mon 02 Jun 2025 21:28:15 +0000 Manifest next update: Mon 09 Jun 2025 21:28:15 +0000 Files and hashes: 1: Z_O5-qoQ0gywF_B_zJoVTYi2Y6A.crl (hash: vXueR+Y20Ge72+LjSo1+biDuSsWq9bB6Tm7GAgDP3Ig=) 2: 28D471BA06B611EBBBFD6B2CC4F9AE02.roa (hash: HoL2YghFB7YWFU4WTrloNVMNxIJl1VYwbkYTUbUT8RI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91DA13E/4E8531CA06B511EB9372D32BC4F9AE02/Z_O5-qoQ0gywF_B_zJoVTYi2Y6A.crl rsync://rpki.apnic.net/member_repository/A91DA13E/4E8531CA06B511EB9372D32BC4F9AE02/Z_O5-qoQ0gywF_B_zJoVTYi2Y6A.mft rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/Z_O5-qoQ0gywF_B_zJoVTYi2Y6A.cer rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.crl rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DPzneFf88B852ZpitKpi5hWedvg.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Jun 2025 21:28:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1965 (0x7ad) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DA13E, serialNumber=67F3B9FAAA10D20CB017F07FCC9A154D88B663A0 Validity Not Before: Jun 2 21:28:15 2025 GMT Not After : Jun 9 21:28:15 2025 GMT Subject: CN=683e176f-d7d5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:0d:ef:38:f0:b3:15:ce:06:48:9b:5a:a6:cd: fc:6c:d9:e6:20:28:a2:2f:63:7a:80:14:5a:6a:f3: b2:7d:b5:80:f7:6f:e6:ce:4f:b5:23:20:38:52:a9: 2d:61:85:a5:0d:73:72:f8:ab:ec:0d:9e:21:99:8c: 93:af:92:df:5d:f1:da:82:dc:77:b7:a6:3e:46:fe: 92:96:af:54:6c:c0:ac:c5:ce:e9:4c:b6:ae:2b:e1: 5c:0d:14:26:53:73:34:e9:e8:38:77:c7:d7:f4:a4: 4f:fc:ba:e8:20:8e:cd:5f:b1:ec:e0:85:b2:ef:5e: ba:af:9a:1a:51:91:4a:64:e8:9b:39:d7:81:51:4e: 59:f6:bb:55:48:7c:a5:ec:69:49:7c:18:4e:43:e7: 82:33:c2:24:14:0f:8a:ad:18:72:4c:df:53:a6:d7: b0:eb:25:aa:6a:8d:9b:4b:17:de:96:ff:03:03:2f: d3:20:55:0e:de:91:6e:e9:5a:87:f8:60:20:6d:29: 0b:e5:f3:3e:52:7d:e2:ab:86:dc:bb:f0:55:f8:d1: 49:63:85:ac:e9:1b:bb:54:bf:b7:b0:cf:6f:be:21: a8:03:47:b2:54:b6:4f:52:60:ab:14:a9:84:c8:02: 09:d7:da:83:4e:30:93:1e:d5:fe:ab:19:dc:5c:76: 8c:eb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C6:8E:3A:BD:77:AA:29:EA:B3:D1:FC:5C:4D:78:27:B7:8C:65:CE:1D X509v3 Authority Key Identifier: keyid:67:F3:B9:FA:AA:10:D2:0C:B0:17:F0:7F:CC:9A:15:4D:88:B6:63:A0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91DA13E/4E8531CA06B511EB9372D32BC4F9AE02/Z_O5-qoQ0gywF_B_zJoVTYi2Y6A.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/Z_O5-qoQ0gywF_B_zJoVTYi2Y6A.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DA13E/4E8531CA06B511EB9372D32BC4F9AE02/Z_O5-qoQ0gywF_B_zJoVTYi2Y6A.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 16:12:fc:93:72:e3:56:64:91:87:b0:29:6f:82:b6:bd:f2:4c: fa:7f:b7:f4:d7:ab:60:ca:a5:b2:d1:5b:16:7d:6c:0a:c9:55: 18:55:33:2a:b8:42:0e:ab:3f:39:82:0e:0a:06:f3:7e:27:f2: a5:b2:31:61:10:cc:3d:7c:23:26:db:ee:49:f3:d6:7b:8e:68: d0:79:a9:4a:e2:7d:49:06:30:fe:0d:e7:d4:4a:1e:62:e2:c7: fd:95:4e:00:9d:5f:3e:4c:cd:f9:e0:e1:04:86:09:60:57:a8: 7f:50:ac:52:a3:48:78:d3:9c:fc:1b:c1:52:ef:01:e6:83:83: 2c:c1:58:70:4e:43:51:dd:3d:7f:e9:56:da:5f:c6:52:64:20: 6e:a1:53:6b:97:86:74:82:09:e8:b5:e6:18:90:f8:6f:88:e2: 95:6c:f6:69:71:99:e1:71:5b:a9:30:14:79:03:67:1f:d3:1c: 90:6f:d8:df:30:7c:11:06:01:3a:3f:4c:51:c8:dc:d1:f8:79: 0a:dd:48:27:7b:27:80:81:d0:db:79:74:b2:c1:2d:03:16:85: 00:53:14:8c:a7:be:fa:a2:42:e7:68:c8:92:64:35:b4:09:27: ba:01:0a:57:38:2c:65:6d:83:d2:7c:3c:16:05:2e:6b:54:2c: ea:64:3c:5b -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICB60wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx REExM0UxMTAvBgNVBAUTKDY3RjNCOUZBQUExMEQyMENCMDE3RjA3RkNDOUExNTRE ODhCNjYzQTAwHhcNMjUwNjAyMjEyODE1WhcNMjUwNjA5MjEyODE1WjAYMRYwFAYD VQQDEw02ODNlMTc2Zi1kN2Q1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuw3vOPCzFc4GSJtaps38bNnmICiiL2N6gBRaavOyfbWA92/mzk+1IyA4Uqkt YYWlDXNy+KvsDZ4hmYyTr5LfXfHagtx3t6Y+Rv6Slq9UbMCsxc7pTLauK+FcDRQm U3M06eg4d8fX9KRP/LroII7NX7Hs4IWy7166r5oaUZFKZOibOdeBUU5Z9rtVSHyl 7GlJfBhOQ+eCM8IkFA+KrRhyTN9Tptew6yWqao2bSxfelv8DAy/TIFUO3pFu6VqH +GAgbSkL5fM+Un3iq4bcu/BV+NFJY4Ws6Ru7VL+3sM9vviGoA0eyVLZPUmCrFKmE yAIJ19qDTjCTHtX+qxncXHaM6wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFMaOOr13 qinqs9H8XE14J7eMZc4dMB8GA1UdIwQYMBaAFGfzufqqENIMsBfwf8yaFU2ItmOg MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEQTEzRS80RTg1MzFDQTA2 QjUxMUVCOTM3MkQzMkJDNEY5QUUwMi9aX081LXFvUTBneXdGX0JfekpvVlRZaTJZ NkEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzMjJBNUY0MUQ2NjExRTJBM0YyN0Y3Qzcy RkQxRkYyL1pfTzUtcW9RMGd5d0ZfQl96Sm9WVFlpMlk2QS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE QTEzRS80RTg1MzFDQTA2QjUxMUVCOTM3MkQzMkJDNEY5QUUwMi9aX081LXFvUTBn eXdGX0JfekpvVlRZaTJZNkEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAWEvyTcuNWZJGHsClvgra98kz6f7f016tgyqWy0VsWfWwKyVUYVTMq uEIOqz85gg4KBvN+J/KlsjFhEMw9fCMm2+5J89Z7jmjQealK4n1JBjD+DefUSh5i 4sf9lU4AnV8+TM354OEEhglgV6h/UKxSo0h405z8G8FS7wHmg4MswVhwTkNR3T1/ 6VbaX8ZSZCBuoVNrl4Z0ggnoteYYkPhviOKVbPZpcZnhcVupMBR5A2cf0xyQb9jf MHwRBgE6P0xRyNzR+HkK3UgneyeAgdDbeXSywS0DFoUAUxSMp776okLnaMiSZDW0 CSe6AQpXOCxlbYPSfDwWBS5rVCzqZDxb -----END CERTIFICATE-----Generated at Wed Jun 4 00:01:52 2025 by rpki-client