$ rpki-client -vvf rpki.apnic.net/member_repository/A91DDCB6/E883DFD6CC3D11EA8BC45C29C4F9AE02/Zd_y7j-bsuskVR4dGPHWPewKbhc.mft File: Zd_y7j-bsuskVR4dGPHWPewKbhc.mft (raw, json) Hash identifier: VkSGJtR/ImR4CBcjcFgQ5/Yzx0Q2JqvxP40IkxkuFPo= Subject key identifier: D4:6A:04:94:75:DF:84:D2:FD:FA:AB:61:FD:71:5A:11:C9:7F:01:37 Authority key identifier: 65:DF:F2:EE:3F:9B:B2:EB:24:55:1E:1D:18:F1:D6:3D:EC:0A:6E:17 Certificate issuer: /CN=A91DDCB6/serialNumber=65DFF2EE3F9BB2EB24551E1D18F1D63DEC0A6E17 Certificate serial: 0861 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/Zd_y7j-bsuskVR4dGPHWPewKbhc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91DDCB6/E883DFD6CC3D11EA8BC45C29C4F9AE02/Zd_y7j-bsuskVR4dGPHWPewKbhc.mft Manifest number: 0855 Signing time: Mon 02 Jun 2025 20:55:24 +0000 Manifest this update: Mon 02 Jun 2025 20:55:23 +0000 Manifest next update: Mon 09 Jun 2025 20:55:23 +0000 Files and hashes: 1: Zd_y7j-bsuskVR4dGPHWPewKbhc.crl (hash: lWlmTKU1Tj+4T2BBZCISWDN33GzEmqDkJoIdirrC5PI=) 2: 36023BC6D29D11EAA11F7F51C4F9AE02.roa (hash: ef1HFtGWmHcKz9CuwiCCXSfT1VQsZ1MT51qDrYk3OoI=) 3: A7034AFA7F8411EC9036F64CC4F9AE02.roa (hash: f9tQPToB76p1pPXGROGF6QphrQQvfLBw4Gw3PGjwt1Y=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91DDCB6/E883DFD6CC3D11EA8BC45C29C4F9AE02/Zd_y7j-bsuskVR4dGPHWPewKbhc.crl rsync://rpki.apnic.net/member_repository/A91DDCB6/E883DFD6CC3D11EA8BC45C29C4F9AE02/Zd_y7j-bsuskVR4dGPHWPewKbhc.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/Zd_y7j-bsuskVR4dGPHWPewKbhc.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Jun 2025 20:55:22 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2145 (0x861) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DDCB6, serialNumber=65DFF2EE3F9BB2EB24551E1D18F1D63DEC0A6E17 Validity Not Before: Jun 2 20:55:23 2025 GMT Not After : Jun 9 20:55:23 2025 GMT Subject: CN=683e0fbb-1321 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9e:1f:1d:60:53:43:8c:53:43:14:5c:eb:b2:3c: bb:2c:52:10:76:a0:c8:bb:c7:2e:9d:06:e4:20:25: c3:f1:1b:0c:02:da:75:12:31:81:10:61:be:92:86: 8b:d6:ee:14:a5:65:af:42:99:f6:59:04:68:72:f9: b5:24:82:fa:a4:01:4e:57:27:f9:0e:78:89:ad:f6: a9:75:58:e7:ad:0e:b5:ea:d8:86:21:12:bf:b0:71: b9:cc:3c:52:47:c6:ce:8b:ce:37:34:f7:25:18:d3: 89:09:f1:d8:1d:4a:21:be:ad:c4:5f:31:46:0f:2d: 9a:81:42:cb:b0:5b:8c:ea:0c:fd:d6:da:9d:78:27: 40:61:c1:16:a5:32:17:1f:86:c5:8a:7c:54:9b:0e: 9f:ee:be:ac:1a:fb:5d:3b:a0:16:10:b6:67:58:71: 1b:93:b1:71:9c:7c:bc:46:37:56:3b:34:3b:8f:50: 31:4f:fc:4e:2a:63:20:a4:4a:b7:50:ec:e5:22:56: 88:a5:9e:71:68:ef:11:d9:3c:75:bd:7d:22:89:30: 37:c4:22:5c:12:ef:b7:b0:1b:5c:c4:45:d7:8e:ee: d9:fd:0b:9d:61:0c:02:12:c5:05:e3:b4:b0:15:2b: b6:41:33:23:68:17:01:af:5f:bd:6f:65:76:43:fb: af:17 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D4:6A:04:94:75:DF:84:D2:FD:FA:AB:61:FD:71:5A:11:C9:7F:01:37 X509v3 Authority Key Identifier: keyid:65:DF:F2:EE:3F:9B:B2:EB:24:55:1E:1D:18:F1:D6:3D:EC:0A:6E:17 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91DDCB6/E883DFD6CC3D11EA8BC45C29C4F9AE02/Zd_y7j-bsuskVR4dGPHWPewKbhc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/Zd_y7j-bsuskVR4dGPHWPewKbhc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DDCB6/E883DFD6CC3D11EA8BC45C29C4F9AE02/Zd_y7j-bsuskVR4dGPHWPewKbhc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 5f:8f:86:8d:27:3e:91:2f:14:25:72:c1:bf:c3:e9:4a:6b:94: 57:35:7c:66:02:41:83:37:00:e6:57:9c:60:2a:93:46:3f:26: 0a:39:ac:b6:e0:06:18:d4:64:e0:6b:6d:45:6f:e5:65:84:88: 08:61:d8:6c:7a:06:8d:2c:46:10:b9:16:d7:a0:15:12:52:ec: d4:68:c3:6b:c4:e9:0e:7f:bc:74:f0:3e:c4:33:65:f1:90:15: 83:21:8c:84:36:fa:0a:a9:2a:2c:df:6d:a1:dd:bd:9d:5b:16: e3:04:76:0e:51:51:6a:c8:70:d0:e9:a8:23:51:ee:21:c3:cc: 01:c8:1b:bb:7a:4e:95:5b:82:3f:e4:1f:ba:71:e3:06:6f:5d: 53:e6:91:76:12:fe:9f:1c:44:13:ae:83:92:75:d5:8f:c9:12: d8:73:4a:cf:bb:c5:3b:69:18:2d:90:22:26:c8:59:bb:9e:d5: 30:36:bb:4b:64:a0:e1:fe:66:c4:63:d9:75:0e:cc:46:48:64: 0a:23:ec:b2:89:c8:07:87:9e:83:92:03:68:52:ea:c4:1b:17: 86:85:6f:f4:72:26:2b:af:48:78:09:4f:02:49:3f:05:b4:1b: 89:29:db:97:bc:35:28:9a:d2:33:d7:0c:fd:d1:02:ec:a1:6d: b4:fe:49:be -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCGEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RERDQjYxMTAvBgNVBAUTKDY1REZGMkVFM0Y5QkIyRUIyNDU1MUUxRDE4RjFENjNE RUMwQTZFMTcwHhcNMjUwNjAyMjA1NTIzWhcNMjUwNjA5MjA1NTIzWjAYMRYwFAYD VQQDEw02ODNlMGZiYi0xMzIxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAnh8dYFNDjFNDFFzrsjy7LFIQdqDIu8cunQbkICXD8RsMAtp1EjGBEGG+koaL 1u4UpWWvQpn2WQRocvm1JIL6pAFOVyf5DniJrfapdVjnrQ616tiGIRK/sHG5zDxS R8bOi843NPclGNOJCfHYHUohvq3EXzFGDy2agULLsFuM6gz91tqdeCdAYcEWpTIX H4bFinxUmw6f7r6sGvtdO6AWELZnWHEbk7FxnHy8RjdWOzQ7j1AxT/xOKmMgpEq3 UOzlIlaIpZ5xaO8R2Tx1vX0iiTA3xCJcEu+3sBtcxEXXju7Z/QudYQwCEsUF47Sw FSu2QTMjaBcBr1+9b2V2Q/uvFwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFNRqBJR1 34TS/fqrYf1xWhHJfwE3MB8GA1UdIwQYMBaAFGXf8u4/m7LrJFUeHRjx1j3sCm4X MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFERENCNi9FODgzREZENkND M0QxMUVBOEJDNDVDMjlDNEY5QUUwMi9aZF95N2otYnN1c2tWUjRkR1BIV1Bld0ti aGMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL1pkX3k3ai1ic3Vza1ZSNGRHUEhXUGV3S2JoYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE RENCNi9FODgzREZENkNDM0QxMUVBOEJDNDVDMjlDNEY5QUUwMi9aZF95N2otYnN1 c2tWUjRkR1BIV1Bld0tiaGMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBfj4aNJz6RLxQlcsG/w+lKa5RXNXxmAkGDNwDmV5xgKpNGPyYKOay2 4AYY1GTga21Fb+VlhIgIYdhsegaNLEYQuRbXoBUSUuzUaMNrxOkOf7x08D7EM2Xx kBWDIYyENvoKqSos322h3b2dWxbjBHYOUVFqyHDQ6agjUe4hw8wByBu7ek6VW4I/ 5B+6ceMGb11T5pF2Ev6fHEQTroOSddWPyRLYc0rPu8U7aRgtkCImyFm7ntUwNrtL ZKDh/mbEY9l1DsxGSGQKI+yyicgHh56DkgNoUurEGxeGhW/0ciYrr0h4CU8CST8F tBuJKduXvDUomtIz1wz90QLsoW20/km+ -----END CERTIFICATE-----Generated at Tue Jun 3 23:41:53 2025 by rpki-client