$ rpki-client -vvf rpki.apnic.net/member_repository/A91FDC78/15474008AEAC11EAA6C1D761C4F9AE02/zFfgNkMaXqPBcqpyg0Aa88StXFk.mft File: zFfgNkMaXqPBcqpyg0Aa88StXFk.mft (raw, json) Hash identifier: dK6YhmB3BqWhbY/8RHqc/3FLbyYnSjGVawogdhOsejU= Subject key identifier: 04:3B:A7:38:C3:4F:EB:B6:0A:B8:4F:E7:CC:56:4F:34:9D:C2:02:C4 Authority key identifier: CC:57:E0:36:43:1A:5E:A3:C1:72:AA:72:83:40:1A:F3:C4:AD:5C:59 Certificate issuer: /CN=A91FDC78/serialNumber=CC57E036431A5EA3C172AA7283401AF3C4AD5C59 Certificate serial: 08F8 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/zFfgNkMaXqPBcqpyg0Aa88StXFk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91FDC78/15474008AEAC11EAA6C1D761C4F9AE02/zFfgNkMaXqPBcqpyg0Aa88StXFk.mft Manifest number: 08EA Signing time: Fri 30 May 2025 20:38:41 +0000 Manifest this update: Fri 30 May 2025 20:38:41 +0000 Manifest next update: Fri 06 Jun 2025 20:38:41 +0000 Files and hashes: 1: zFfgNkMaXqPBcqpyg0Aa88StXFk.crl (hash: sn/8gOY8gLkYoJoROnUJmYyWTx/TT9dF18PSgTvE3v0=) 2: 6BC3CFFCAEAF11EAB092EE6BC4F9AE02.roa (hash: SybMfJLj0+vEkXuaQthUd0H8Z1vNjBlLLQ9rhZgOuPQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91FDC78/15474008AEAC11EAA6C1D761C4F9AE02/zFfgNkMaXqPBcqpyg0Aa88StXFk.crl rsync://rpki.apnic.net/member_repository/A91FDC78/15474008AEAC11EAA6C1D761C4F9AE02/zFfgNkMaXqPBcqpyg0Aa88StXFk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/zFfgNkMaXqPBcqpyg0Aa88StXFk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 06 Jun 2025 20:38:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2296 (0x8f8) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91FDC78, serialNumber=CC57E036431A5EA3C172AA7283401AF3C4AD5C59 Validity Not Before: May 30 20:38:41 2025 GMT Not After : Jun 6 20:38:41 2025 GMT Subject: CN=683a1751-b309 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ab:8e:1f:6d:7b:d5:3e:9c:9f:89:e6:cf:e1:2b: d6:7c:3a:4e:fc:56:96:ce:d2:03:13:f8:f4:d3:9b: 65:2c:67:90:cf:c7:61:34:04:01:de:07:dd:3b:0d: a1:7d:50:fa:b9:5c:d7:4c:85:33:19:ac:5a:f6:53: 7f:7b:85:d1:45:d9:fd:03:da:41:07:f8:7f:0e:17: 65:e9:11:d8:36:59:5e:a5:16:d3:af:4d:06:4f:c9: 48:d7:8d:9b:48:15:1e:52:8e:ab:af:16:43:18:ac: 36:7c:3e:67:86:ba:87:67:16:8c:8d:84:6a:20:31: f9:03:db:99:78:de:57:2f:4f:54:54:72:c3:5b:01: 2b:71:b7:a7:04:5a:74:81:bb:c0:4a:6c:e4:5d:55: 7a:4d:3e:98:a5:3a:24:42:95:bc:7f:0d:53:d4:11: 3b:fd:d5:76:0f:42:3a:e4:6b:8b:9f:4e:6a:e2:d7: 91:76:9b:8f:9f:01:48:66:eb:ba:de:46:46:2f:5f: 15:ed:d1:40:a9:b1:b3:fb:57:6f:cc:18:73:2d:dc: dd:79:1d:7b:8b:d7:a3:27:11:2e:18:9e:33:ec:ae: ad:9c:f1:fb:7b:e6:18:3b:b6:8f:8e:4a:5c:da:9e: c0:d6:e2:7d:60:fb:bd:72:a9:4b:fd:a3:41:82:dc: a4:b5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 04:3B:A7:38:C3:4F:EB:B6:0A:B8:4F:E7:CC:56:4F:34:9D:C2:02:C4 X509v3 Authority Key Identifier: keyid:CC:57:E0:36:43:1A:5E:A3:C1:72:AA:72:83:40:1A:F3:C4:AD:5C:59 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91FDC78/15474008AEAC11EAA6C1D761C4F9AE02/zFfgNkMaXqPBcqpyg0Aa88StXFk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/zFfgNkMaXqPBcqpyg0Aa88StXFk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91FDC78/15474008AEAC11EAA6C1D761C4F9AE02/zFfgNkMaXqPBcqpyg0Aa88StXFk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 77:db:95:42:73:f0:a3:79:b1:ce:f4:0d:03:18:20:77:ba:53: cc:3b:ba:f1:d6:ba:7e:7a:88:0d:79:cc:38:a5:79:6d:09:5c: fd:40:c6:7b:3c:e5:8f:e5:c6:80:92:78:08:d6:94:a7:f7:8f: ad:98:1c:8f:4d:72:c2:61:72:91:b2:b5:12:1d:42:61:03:43: 46:dc:b0:06:c6:f4:9a:d9:72:27:d8:03:be:b9:9c:ac:f9:af: ef:50:67:1a:e2:0d:8b:b9:f4:cc:f6:2a:19:f7:f6:37:f6:2d: 75:05:4c:40:22:f2:ad:d2:82:cf:07:1c:52:6e:77:39:62:f8: 84:a3:73:fa:27:d0:ed:7c:d7:46:b2:89:e1:5f:26:59:b5:6d: 14:a0:1c:c5:6d:c6:53:c9:f9:5f:21:42:48:36:0f:80:fa:5a: ed:bc:5b:3f:4c:b6:87:dc:4a:86:52:5c:9d:d0:dc:86:b8:28: 8e:8a:c6:2a:25:34:0e:bc:d0:56:85:c4:3e:2f:1e:40:0c:68: 35:34:d3:a8:04:89:d0:e7:9d:9f:9f:4c:59:f3:08:58:12:21: 4c:2a:b5:be:25:87:e2:50:a5:d7:cb:38:c0:3d:76:11:2e:ac: e4:1b:97:73:d9:64:24:fa:16:cb:2d:0b:eb:b9:07:d8:5f:03: 89:f9:4a:dc -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCPgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RkRDNzgxMTAvBgNVBAUTKENDNTdFMDM2NDMxQTVFQTNDMTcyQUE3MjgzNDAxQUYz QzRBRDVDNTkwHhcNMjUwNTMwMjAzODQxWhcNMjUwNjA2MjAzODQxWjAYMRYwFAYD VQQDEw02ODNhMTc1MS1iMzA5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAq44fbXvVPpyfiebP4SvWfDpO/FaWztIDE/j005tlLGeQz8dhNAQB3gfdOw2h fVD6uVzXTIUzGaxa9lN/e4XRRdn9A9pBB/h/Dhdl6RHYNllepRbTr00GT8lI142b SBUeUo6rrxZDGKw2fD5nhrqHZxaMjYRqIDH5A9uZeN5XL09UVHLDWwErcbenBFp0 gbvASmzkXVV6TT6YpTokQpW8fw1T1BE7/dV2D0I65GuLn05q4teRdpuPnwFIZuu6 3kZGL18V7dFAqbGz+1dvzBhzLdzdeR17i9ejJxEuGJ4z7K6tnPH7e+YYO7aPjkpc 2p7A1uJ9YPu9cqlL/aNBgtyktQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFAQ7pzjD T+u2CrhP58xWTzSdwgLEMB8GA1UdIwQYMBaAFMxX4DZDGl6jwXKqcoNAGvPErVxZ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGREM3OC8xNTQ3NDAwOEFF QUMxMUVBQTZDMUQ3NjFDNEY5QUUwMi96RmZnTmtNYVhxUEJjcXB5ZzBBYTg4U3RY RmsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3pGZmdOa01hWHFQQmNxcHlnMEFhODhTdFhGay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG REM3OC8xNTQ3NDAwOEFFQUMxMUVBQTZDMUQ3NjFDNEY5QUUwMi96RmZnTmtNYVhx UEJjcXB5ZzBBYTg4U3RYRmsubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB325VCc/CjebHO9A0DGCB3ulPMO7rx1rp+eogNecw4pXltCVz9QMZ7 POWP5caAkngI1pSn94+tmByPTXLCYXKRsrUSHUJhA0NG3LAGxvSa2XIn2AO+uZys +a/vUGca4g2LufTM9ioZ9/Y39i11BUxAIvKt0oLPBxxSbnc5YviEo3P6J9DtfNdG sonhXyZZtW0UoBzFbcZTyflfIUJINg+A+lrtvFs/TLaH3EqGUlyd0NyGuCiOisYq JTQOvNBWhcQ+Lx5ADGg1NNOoBInQ552fn0xZ8whYEiFMKrW+JYfiUKXXyzjAPXYR LqzkG5dz2WQk+hbLLQvruQfYXwOJ+Urc -----END CERTIFICATE-----Generated at Sat May 31 17:45:08 2025 by rpki-client