$ rpki-client -vvf rpki.apnic.net/member_repository/A917BBF1/245DC5CA0AF711EAA85A5D1AC4F9AE02/ZUCRhgKOxUzUW1g0_77K9LePGcI.mft File: ZUCRhgKOxUzUW1g0_77K9LePGcI.mft (raw, json) Hash identifier: I/XDfiJF/JS8q7IxOmtOa8qdgxcQEhx+9qfkhroSi3g= Subject key identifier: 6B:FA:62:94:29:62:B6:45:F5:A4:7F:95:A6:DC:77:93:CA:6F:A7:1B Authority key identifier: 65:40:91:86:02:8E:C5:4C:D4:5B:58:34:FF:BE:CA:F4:B7:8F:19:C2 Certificate issuer: /CN=A917BBF1/serialNumber=65409186028EC54CD45B5834FFBECAF4B78F19C2 Certificate serial: 0C3F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ZUCRhgKOxUzUW1g0_77K9LePGcI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917BBF1/245DC5CA0AF711EAA85A5D1AC4F9AE02/ZUCRhgKOxUzUW1g0_77K9LePGcI.mft Manifest number: 0C25 Signing time: Thu 24 Apr 2025 18:33:15 +0000 Manifest this update: Thu 24 Apr 2025 18:33:15 +0000 Manifest next update: Thu 01 May 2025 18:33:15 +0000 Files and hashes: 1: ZUCRhgKOxUzUW1g0_77K9LePGcI.crl (hash: vWnsosuftamqKhtFIbCVqeAaEGob+X01veEMgZjj7nQ=) 2: 7136F65A37A811EE94E32169C4F9AE02.roa (hash: k8QKeKvOcm3atVDcEJg6MmKWLZSx6mGrjHPmscLBCDI=) 3: 1B54858065B711EE93D6ED6DC4F9AE02.roa (hash: 2MxCJYfvpN2/WDss7B4Jv4sIh2MvUP8VKJ1MtNugmSc=) 4: FF4F13D4448711ECA80CFC34C4F9AE02.roa (hash: Lum2cofSNoPumFBaR2DxKDAktprJD0nZPj1gi1bjrYI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917BBF1/245DC5CA0AF711EAA85A5D1AC4F9AE02/ZUCRhgKOxUzUW1g0_77K9LePGcI.crl rsync://rpki.apnic.net/member_repository/A917BBF1/245DC5CA0AF711EAA85A5D1AC4F9AE02/ZUCRhgKOxUzUW1g0_77K9LePGcI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ZUCRhgKOxUzUW1g0_77K9LePGcI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 01 May 2025 18:33:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3135 (0xc3f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917BBF1, serialNumber=65409186028EC54CD45B5834FFBECAF4B78F19C2 Validity Not Before: Apr 24 18:33:15 2025 GMT Not After : May 1 18:33:15 2025 GMT Subject: CN=680a83eb-56af Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c6:0f:fa:63:01:28:f9:63:5e:9f:0c:f6:33:fe: 23:6f:c6:83:e4:96:e1:c2:86:1d:da:85:3e:a6:49: 42:76:bb:59:f0:d6:ac:61:d6:85:c3:35:48:2b:64: b0:e1:71:eb:eb:a6:3a:21:8c:78:52:c4:5e:c7:42: 9c:86:8f:d1:f8:58:c4:31:55:91:f5:94:40:87:3b: 9a:b3:c2:c0:c4:0d:1d:59:0c:ad:78:8d:9e:fb:d8: 97:e2:b4:9f:4f:15:93:2f:26:6b:98:7a:2c:dc:a8: ec:81:7f:29:b7:d7:18:b3:5b:34:c0:c2:c0:39:84: a0:58:0a:e7:4c:d0:33:0c:8d:5d:74:62:4b:da:34: 2b:05:93:de:8f:ff:68:31:b5:d7:9d:ca:e8:a3:24: a2:8a:0e:ad:35:15:1b:36:1f:0f:6a:0e:0f:00:d7: 78:d2:34:45:e0:78:ad:f3:29:e0:6a:15:ea:6b:0f: ec:89:71:28:47:fa:59:c6:6b:27:bc:bc:58:0d:64: 37:c4:a4:90:84:cd:dc:52:83:54:35:88:b7:a3:72: 21:e5:a8:5e:c0:ae:9d:fe:95:f7:06:b7:87:89:7c: 6e:16:d4:43:3d:e2:63:b3:85:e6:88:b1:fe:4b:ca: 01:da:e0:ad:0b:1d:ac:53:5b:c3:4a:e8:1e:e7:17: 9b:ff Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6B:FA:62:94:29:62:B6:45:F5:A4:7F:95:A6:DC:77:93:CA:6F:A7:1B X509v3 Authority Key Identifier: keyid:65:40:91:86:02:8E:C5:4C:D4:5B:58:34:FF:BE:CA:F4:B7:8F:19:C2 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917BBF1/245DC5CA0AF711EAA85A5D1AC4F9AE02/ZUCRhgKOxUzUW1g0_77K9LePGcI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ZUCRhgKOxUzUW1g0_77K9LePGcI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917BBF1/245DC5CA0AF711EAA85A5D1AC4F9AE02/ZUCRhgKOxUzUW1g0_77K9LePGcI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 3f:41:b5:07:3d:1a:75:1c:70:70:0d:fe:8f:cc:47:4f:6d:8e: b8:18:6b:96:5f:2f:32:ed:b1:93:ec:eb:42:93:b6:c9:bf:38: 19:83:12:3b:ea:d6:6f:31:4e:6a:8d:56:6d:ad:d4:03:67:f5: ca:a2:ce:d6:37:f4:cf:b9:93:30:28:5f:af:34:ea:a6:ca:14: c9:33:f8:89:b4:ab:ad:4e:49:a4:1d:b1:d3:07:47:01:a8:32: d8:19:fc:dc:2b:21:5e:f4:0f:95:ec:e7:9a:8c:4c:6e:7d:45: e7:21:22:0a:d6:45:f2:d2:b2:ab:ab:71:82:c4:d8:20:1a:48: 85:8e:bc:3b:62:b3:04:06:29:5c:1e:0e:e8:aa:ad:5f:66:fe: 5f:44:99:21:1a:82:ec:95:a9:a0:bc:49:1a:3b:25:b8:8f:2c: 6c:c7:c6:40:31:02:c4:a7:5e:cd:95:7a:b4:22:db:96:ef:2f: 03:5b:a6:15:d1:a8:ee:3d:6b:73:c5:8e:a2:e9:28:c5:b0:8d: b5:69:54:b6:d8:7e:81:5a:dd:52:fa:14:50:b4:02:ac:b1:69: 10:23:16:a9:cc:d2:af:ae:51:c3:74:d9:90:86:45:3d:41:39: b1:b1:ad:81:84:8d:51:18:a7:26:05:f0:61:f4:2d:19:1b:c5: fe:74:88:b2 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDD8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0JCRjExMTAvBgNVBAUTKDY1NDA5MTg2MDI4RUM1NENENDVCNTgzNEZGQkVDQUY0 Qjc4RjE5QzIwHhcNMjUwNDI0MTgzMzE1WhcNMjUwNTAxMTgzMzE1WjAYMRYwFAYD VQQDEw02ODBhODNlYi01NmFmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxg/6YwEo+WNenwz2M/4jb8aD5JbhwoYd2oU+pklCdrtZ8NasYdaFwzVIK2Sw 4XHr66Y6IYx4UsRex0Kcho/R+FjEMVWR9ZRAhzuas8LAxA0dWQyteI2e+9iX4rSf TxWTLyZrmHos3KjsgX8pt9cYs1s0wMLAOYSgWArnTNAzDI1ddGJL2jQrBZPej/9o MbXXncrooySiig6tNRUbNh8Pag4PANd40jRF4Hit8yngahXqaw/siXEoR/pZxmsn vLxYDWQ3xKSQhM3cUoNUNYi3o3Ih5ahewK6d/pX3BreHiXxuFtRDPeJjs4XmiLH+ S8oB2uCtCx2sU1vDSuge5xeb/wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFGv6YpQp YrZF9aR/labcd5PKb6cbMB8GA1UdIwQYMBaAFGVAkYYCjsVM1FtYNP++yvS3jxnC MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3QkJGMS8yNDVEQzVDQTBB RjcxMUVBQTg1QTVEMUFDNEY5QUUwMi9aVUNSaGdLT3hVelVXMWcwXzc3SzlMZVBH Y0kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1pVQ1JoZ0tPeFV6VVcxZzBfNzdLOUxlUEdjSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 QkJGMS8yNDVEQzVDQTBBRjcxMUVBQTg1QTVEMUFDNEY5QUUwMi9aVUNSaGdLT3hV elVXMWcwXzc3SzlMZVBHY0kubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA/QbUHPRp1HHBwDf6PzEdPbY64GGuWXy8y7bGT7OtCk7bJvzgZgxI7 6tZvMU5qjVZtrdQDZ/XKos7WN/TPuZMwKF+vNOqmyhTJM/iJtKutTkmkHbHTB0cB qDLYGfzcKyFe9A+V7OeajExufUXnISIK1kXy0rKrq3GCxNggGkiFjrw7YrMEBilc Hg7oqq1fZv5fRJkhGoLslamgvEkaOyW4jyxsx8ZAMQLEp17NlXq0ItuW7y8DW6YV 0ajuPWtzxY6i6SjFsI21aVS22H6BWt1S+hRQtAKssWkQIxapzNKvrlHDdNmQhkU9 QTmxsa2BhI1RGKcmBfBh9C0ZG8X+dIiy -----END CERTIFICATE-----Generated at Sat Apr 26 05:21:41 2025 by rpki-client