$ rpki-client -vvf rpki.apnic.net/member_repository/A91EA6A1/315B7E08FF7B11EDA62DF10EC4F9AE02/zdfMWZTjQE5sI66UKlkhi1fFwTE.mft File: zdfMWZTjQE5sI66UKlkhi1fFwTE.mft (raw, json) Hash identifier: s3sAeOnjHXfUqM3UEVhAi3Oc3uP6lJOiORfHf1IyW4s= Subject key identifier: C1:3A:D9:09:D8:B9:C4:3D:FB:C2:81:23:EA:B1:C3:30:99:4B:B0:32 Authority key identifier: CD:D7:CC:59:94:E3:40:4E:6C:23:AE:94:2A:59:21:8B:57:C5:C1:31 Certificate issuer: /CN=A91EA6A1/serialNumber=CDD7CC5994E3404E6C23AE942A59218B57C5C131 Certificate serial: 0185 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/zdfMWZTjQE5sI66UKlkhi1fFwTE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91EA6A1/315B7E08FF7B11EDA62DF10EC4F9AE02/zdfMWZTjQE5sI66UKlkhi1fFwTE.mft Manifest number: 017C Signing time: Sat 07 Jun 2025 03:17:29 +0000 Manifest this update: Sat 07 Jun 2025 03:17:28 +0000 Manifest next update: Sat 14 Jun 2025 03:17:28 +0000 Files and hashes: 1: zdfMWZTjQE5sI66UKlkhi1fFwTE.crl (hash: BkSclPV4QfyW3GoFwGMaTmcItKP7k1WvhHjtAqBjy5k=) 2: 1D45B78003C211EEB2272068C4F9AE02.roa (hash: F77Ohmhr+pSmcNMBmLDootHjfm49x1IrVzvlaFQhQZo=) 3: 1E7F6B9603C211EEB2272068C4F9AE02.roa (hash: T4SsvxhOJ8NmSlYF5F0QyIn0S5EcCqMNYfFfIGZadlw=) 4: 1DDE652A03C211EEB2272068C4F9AE02.roa (hash: 3jNUoCccmrM56z8z19CQSeUZl708g7HitdvgnX+ByM8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91EA6A1/315B7E08FF7B11EDA62DF10EC4F9AE02/zdfMWZTjQE5sI66UKlkhi1fFwTE.crl rsync://rpki.apnic.net/member_repository/A91EA6A1/315B7E08FF7B11EDA62DF10EC4F9AE02/zdfMWZTjQE5sI66UKlkhi1fFwTE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/zdfMWZTjQE5sI66UKlkhi1fFwTE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 14 Jun 2025 03:17:28 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 389 (0x185) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91EA6A1, serialNumber=CDD7CC5994E3404E6C23AE942A59218B57C5C131 Validity Not Before: Jun 7 03:17:28 2025 GMT Not After : Jun 14 03:17:28 2025 GMT Subject: CN=6843af49-b6e2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c7:df:b8:25:98:bc:65:27:e6:fb:47:bb:e8:4b: c5:27:61:3d:01:61:2e:8c:82:40:a2:70:fd:f7:6e: 7c:37:23:99:dc:f2:7e:f3:ed:93:35:46:9a:c5:f5: 1f:55:53:1e:e6:af:70:4e:72:48:60:63:cb:c4:33: 1f:15:de:bc:4b:db:14:75:8a:a8:50:c3:82:c9:fd: da:a5:21:9d:62:e8:db:6b:c3:e7:8d:cb:94:af:47: 14:c1:19:d0:ef:fc:ca:3e:6e:f5:1d:7e:8f:b8:bb: 5f:6e:b5:cb:9a:96:99:e7:bd:d2:3b:96:86:95:b3: db:38:ea:20:9f:ba:16:f5:f4:37:84:09:77:c6:e3: 98:04:56:c6:fa:81:56:1b:6b:14:72:4e:14:89:04: 28:f5:a1:52:6a:ec:69:d2:49:f7:43:e1:23:5f:c7: b5:44:92:f5:5a:4f:c2:fc:96:fc:ce:b3:47:ab:b7: dd:95:b7:7b:77:76:22:99:b3:87:27:fd:5f:98:37: bf:83:3d:43:c1:e4:e0:3c:b3:c7:ba:c9:1a:62:b2: e8:f2:a0:3b:31:34:cc:5b:51:a8:9f:65:91:a2:6f: d8:6e:8f:97:ad:9a:00:8e:18:2c:bf:80:b5:97:3d: 61:ac:43:84:6d:84:10:91:f1:3b:23:99:0e:38:53: 5c:9d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C1:3A:D9:09:D8:B9:C4:3D:FB:C2:81:23:EA:B1:C3:30:99:4B:B0:32 X509v3 Authority Key Identifier: keyid:CD:D7:CC:59:94:E3:40:4E:6C:23:AE:94:2A:59:21:8B:57:C5:C1:31 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91EA6A1/315B7E08FF7B11EDA62DF10EC4F9AE02/zdfMWZTjQE5sI66UKlkhi1fFwTE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/zdfMWZTjQE5sI66UKlkhi1fFwTE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91EA6A1/315B7E08FF7B11EDA62DF10EC4F9AE02/zdfMWZTjQE5sI66UKlkhi1fFwTE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 9a:e0:fd:cf:b0:97:52:83:26:3c:2c:3a:40:4e:1a:e5:35:2f: 92:a7:7d:56:2b:0a:be:eb:b4:bc:87:94:49:94:93:52:f4:66: cc:a7:cd:76:59:4d:6c:d7:78:38:a4:23:00:53:82:4d:74:0d: 09:ed:40:e8:01:e1:1c:93:10:dd:8b:6e:4f:f8:a9:c3:1d:55: 82:94:68:fd:2f:7c:7d:d8:06:8a:d3:8c:8e:4a:7b:f5:fd:a5: f0:12:9b:9e:a7:62:6f:bb:19:04:45:b3:fd:19:1a:10:6c:04: 2f:21:b5:c5:7f:47:f7:a9:bd:6e:68:d1:c1:43:ed:fc:d2:a0: 73:8f:10:cd:5f:9b:01:0e:b8:c8:1f:7c:61:f9:4e:57:84:db: 7f:06:97:6a:9d:bf:b0:75:f8:90:c8:8e:b6:be:7a:74:33:1f: bd:d8:e6:bf:c9:d9:f7:24:4a:b9:c3:e8:aa:99:fc:e2:bb:0d: f5:f5:98:51:65:2b:07:00:0c:ee:c2:80:2c:85:1e:fc:fb:74: ac:3a:1f:0a:59:2d:d5:06:ac:2a:c9:7d:68:79:2b:65:8c:7c: ba:5d:10:73:12:c0:5a:2e:5a:cb:57:aa:70:eb:d7:4a:29:c3: 62:f0:db:da:f8:37:15:46:5c:de:fc:8e:84:0d:3e:97:92:c4: 00:c8:76:de -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAYUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RUE2QTExMTAvBgNVBAUTKENERDdDQzU5OTRFMzQwNEU2QzIzQUU5NDJBNTkyMThC NTdDNUMxMzEwHhcNMjUwNjA3MDMxNzI4WhcNMjUwNjE0MDMxNzI4WjAYMRYwFAYD VQQDEw02ODQzYWY0OS1iNmUyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAx9+4JZi8ZSfm+0e76EvFJ2E9AWEujIJAonD99258NyOZ3PJ+8+2TNUaaxfUf VVMe5q9wTnJIYGPLxDMfFd68S9sUdYqoUMOCyf3apSGdYujba8PnjcuUr0cUwRnQ 7/zKPm71HX6PuLtfbrXLmpaZ573SO5aGlbPbOOogn7oW9fQ3hAl3xuOYBFbG+oFW G2sUck4UiQQo9aFSauxp0kn3Q+EjX8e1RJL1Wk/C/Jb8zrNHq7fdlbd7d3YimbOH J/1fmDe/gz1DweTgPLPHuskaYrLo8qA7MTTMW1Gon2WRom/Ybo+XrZoAjhgsv4C1 lz1hrEOEbYQQkfE7I5kOOFNcnQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFME62QnY ucQ9+8KBI+qxwzCZS7AyMB8GA1UdIwQYMBaAFM3XzFmU40BObCOulCpZIYtXxcEx MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFQTZBMS8zMTVCN0UwOEZG N0IxMUVEQTYyREYxMEVDNEY5QUUwMi96ZGZNV1pUalFFNXNJNjZVS2xraGkxZkZ3 VEUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3pkZk1XWlRqUUU1c0k2NlVLbGtoaTFmRndURS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF QTZBMS8zMTVCN0UwOEZGN0IxMUVEQTYyREYxMEVDNEY5QUUwMi96ZGZNV1pUalFF NXNJNjZVS2xraGkxZkZ3VEUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCa4P3PsJdSgyY8LDpAThrlNS+Sp31WKwq+67S8h5RJlJNS9GbMp812 WU1s13g4pCMAU4JNdA0J7UDoAeEckxDdi25P+KnDHVWClGj9L3x92AaK04yOSnv1 /aXwEpuep2JvuxkERbP9GRoQbAQvIbXFf0f3qb1uaNHBQ+380qBzjxDNX5sBDrjI H3xh+U5XhNt/Bpdqnb+wdfiQyI62vnp0Mx+92Oa/ydn3JEq5w+iqmfziuw319ZhR ZSsHAAzuwoAshR78+3SsOh8KWS3VBqwqyX1oeStljHy6XRBzEsBaLlrLV6pw69dK KcNi8Nva+DcVRlze/I6EDT6XksQAyHbe -----END CERTIFICATE-----Generated at Mon Jun 9 03:27:49 2025 by rpki-client