$ rpki-client -vvf rpki.apnic.net/member_repository/A91F67BB/BDFBF1860E3E11E9836F4014C4F9AE02/zFkhdtiMQj-IWbUYtq0zT_92dAk.mft File: zFkhdtiMQj-IWbUYtq0zT_92dAk.mft (raw, json) Hash identifier: OHlbU7LM/cuRkeiJSASKAfswxD1OopWrNtUzm1OzJHU= Subject key identifier: 10:06:95:8D:D7:05:6F:52:86:9B:46:C4:43:2E:DB:AC:A1:26:57:71 Authority key identifier: CC:59:21:76:D8:8C:42:3F:88:59:B5:18:B6:AD:33:4F:FF:76:74:09 Certificate issuer: /CN=A91F67BB/serialNumber=CC592176D88C423F8859B518B6AD334FFF767409 Certificate serial: 114B Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/zFkhdtiMQj-IWbUYtq0zT_92dAk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F67BB/BDFBF1860E3E11E9836F4014C4F9AE02/zFkhdtiMQj-IWbUYtq0zT_92dAk.mft Manifest number: 112C Signing time: Mon 02 Jun 2025 17:26:45 +0000 Manifest this update: Mon 02 Jun 2025 17:26:45 +0000 Manifest next update: Mon 09 Jun 2025 17:26:45 +0000 Files and hashes: 1: zFkhdtiMQj-IWbUYtq0zT_92dAk.crl (hash: GqhjF/MT8lHUYAvxd29tggXUSPE2sIyrdpFybPqXolA=) 2: 23A0D39C0F1D11E991F4271EC4F9AE02.roa (hash: LI5814/1mo8RhGHDIyDmTnyAaT8jPK8eiZW8nnVoECM=) 3: 5488F6EA0F1A11E9B3F2A713C4F9AE02.roa (hash: KE984DbFRTO0XDJnJvkUh9nTQI9OdADddfHh/b8sXns=) 4: 53BDA2F60F1A11E9B3F2A713C4F9AE02.roa (hash: tG0xAoHX5Jrg4VXIV0PMgN27hGtGNiwPzNpPEMcc5ZU=) 5: 552292460F1A11E9B3F2A713C4F9AE02.roa (hash: NlRxG3SgenSihBb1Uz1mdp6In7PIY3SWzoat7OXr7O8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F67BB/BDFBF1860E3E11E9836F4014C4F9AE02/zFkhdtiMQj-IWbUYtq0zT_92dAk.crl rsync://rpki.apnic.net/member_repository/A91F67BB/BDFBF1860E3E11E9836F4014C4F9AE02/zFkhdtiMQj-IWbUYtq0zT_92dAk.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/zFkhdtiMQj-IWbUYtq0zT_92dAk.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Jun 2025 17:26:44 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4427 (0x114b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F67BB, serialNumber=CC592176D88C423F8859B518B6AD334FFF767409 Validity Not Before: Jun 2 17:26:45 2025 GMT Not After : Jun 9 17:26:45 2025 GMT Subject: CN=683dded5-7aab Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a6:ab:fd:04:36:63:e2:41:1b:f8:b2:5c:60:3f: 15:4a:72:23:dc:8a:93:62:19:d9:36:32:50:ab:2e: 3a:49:e3:8b:8e:fe:8b:df:88:af:2d:7b:88:00:04: 8a:b7:17:1e:5d:42:b0:c9:5b:9b:26:92:2b:dc:db: 66:94:b3:91:0c:f3:63:18:d9:60:6f:db:cb:15:f7: 3d:63:f3:7c:11:b0:9b:5e:a9:47:46:f0:62:f2:e9: 70:06:76:8f:54:4d:18:f2:0b:75:6f:8a:f6:06:cf: e3:03:d6:79:72:da:9b:5d:ed:9b:d7:65:42:3e:d9: 73:ad:c3:f4:89:00:68:5b:6e:73:2e:a5:10:d1:c0: ba:f4:ce:7f:13:04:5e:49:95:97:49:f6:78:4c:e3: 10:19:f6:23:32:6c:ad:e3:0e:3b:80:f9:50:f5:78: 09:1a:e0:5c:4d:6e:97:fb:0d:cf:f5:34:e2:06:c3: 38:29:4e:90:ea:9a:97:04:15:b8:7b:c3:8a:ac:e4: a4:9a:9e:51:7e:e8:4f:fa:4c:21:e9:d3:c0:eb:93: c8:da:35:59:29:fd:9f:28:82:c7:0a:50:6b:5e:4d: 42:1d:7e:d4:de:85:b5:ef:26:89:09:39:fb:6b:71: 21:85:a9:0e:1d:c7:91:43:50:7e:ba:4e:66:d7:1b: a4:f1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 10:06:95:8D:D7:05:6F:52:86:9B:46:C4:43:2E:DB:AC:A1:26:57:71 X509v3 Authority Key Identifier: keyid:CC:59:21:76:D8:8C:42:3F:88:59:B5:18:B6:AD:33:4F:FF:76:74:09 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F67BB/BDFBF1860E3E11E9836F4014C4F9AE02/zFkhdtiMQj-IWbUYtq0zT_92dAk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/zFkhdtiMQj-IWbUYtq0zT_92dAk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F67BB/BDFBF1860E3E11E9836F4014C4F9AE02/zFkhdtiMQj-IWbUYtq0zT_92dAk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption c6:30:62:8f:11:bc:08:6f:3c:16:05:15:3b:9b:3d:9b:71:53: 0a:08:7c:7d:7f:0d:76:8b:89:ec:fb:31:34:2a:9b:c3:16:9e: fb:87:15:c1:e4:76:26:c3:d9:15:fd:8f:7a:6c:64:01:87:f4: 31:49:5d:cc:27:97:e8:a5:1b:34:87:37:6f:53:07:ad:b3:8f: eb:12:25:4e:ce:8d:a4:62:8e:bb:2c:eb:06:d8:d6:6d:8a:5d: 77:fa:de:13:46:34:5e:17:83:16:ec:82:f7:0e:3d:4e:32:66: 0d:1a:a9:84:2e:d4:53:ba:22:0f:f4:03:bc:ff:14:5c:47:07: d7:31:49:0a:4e:e1:01:ca:53:af:6c:3b:41:41:03:97:bc:8e: 11:81:9f:b1:e0:9a:70:be:2e:d4:14:53:ee:cd:d0:03:f5:bd: 19:be:a6:cb:db:a9:14:67:69:18:70:23:d3:c3:14:c3:fc:ee: de:42:88:c9:cb:f2:1f:61:0a:ac:91:86:6a:5e:3c:bc:87:4e: c9:cb:31:ab:b1:78:1f:c0:3d:71:16:95:30:de:e8:d6:99:ab: 55:dc:c2:68:d5:24:f0:0d:1c:cb:b1:70:eb:d9:f9:f2:e9:0d: d9:a4:ec:d6:3d:8b:b7:a6:8f:c4:80:da:15:e9:cf:7d:9e:e7: 31:04:06:c4 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICEUswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjY3QkIxMTAvBgNVBAUTKENDNTkyMTc2RDg4QzQyM0Y4ODU5QjUxOEI2QUQzMzRG RkY3Njc0MDkwHhcNMjUwNjAyMTcyNjQ1WhcNMjUwNjA5MTcyNjQ1WjAYMRYwFAYD VQQDEw02ODNkZGVkNS03YWFiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEApqv9BDZj4kEb+LJcYD8VSnIj3IqTYhnZNjJQqy46SeOLjv6L34ivLXuIAASK txceXUKwyVubJpIr3NtmlLORDPNjGNlgb9vLFfc9Y/N8EbCbXqlHRvBi8ulwBnaP VE0Y8gt1b4r2Bs/jA9Z5ctqbXe2b12VCPtlzrcP0iQBoW25zLqUQ0cC69M5/EwRe SZWXSfZ4TOMQGfYjMmyt4w47gPlQ9XgJGuBcTW6X+w3P9TTiBsM4KU6Q6pqXBBW4 e8OKrOSkmp5RfuhP+kwh6dPA65PI2jVZKf2fKILHClBrXk1CHX7U3oW17yaJCTn7 a3EhhakOHceRQ1B+uk5m1xuk8QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFBAGlY3X BW9ShptGxEMu26yhJldxMB8GA1UdIwQYMBaAFMxZIXbYjEI/iFm1GLatM0//dnQJ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGNjdCQi9CREZCRjE4NjBF M0UxMUU5ODM2RjQwMTRDNEY5QUUwMi96RmtoZHRpTVFqLUlXYlVZdHEwelRfOTJk QWsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL3pGa2hkdGlNUWotSVdiVVl0cTB6VF85MmRBay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG NjdCQi9CREZCRjE4NjBFM0UxMUU5ODM2RjQwMTRDNEY5QUUwMi96RmtoZHRpTVFq LUlXYlVZdHEwelRfOTJkQWsubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQDGMGKPEbwIbzwWBRU7mz2bcVMKCHx9fw12i4ns+zE0KpvDFp77hxXB 5HYmw9kV/Y96bGQBh/QxSV3MJ5fopRs0hzdvUwets4/rEiVOzo2kYo67LOsG2NZt il13+t4TRjReF4MW7IL3Dj1OMmYNGqmELtRTuiIP9AO8/xRcRwfXMUkKTuEBylOv bDtBQQOXvI4RgZ+x4Jpwvi7UFFPuzdAD9b0ZvqbL26kUZ2kYcCPTwxTD/O7eQojJ y/IfYQqskYZqXjy8h07JyzGrsXgfwD1xFpUw3ujWmatV3MJo1STwDRzLsXDr2fny 6Q3ZpOzWPYu3po/EgNoV6c99nucxBAbE -----END CERTIFICATE-----Generated at Tue Jun 3 23:43:28 2025 by rpki-client