$ rpki-client -vvf rpki.apnic.net/member_repository/A91A9B3E/DAB1C3A68CFB11ED92E25B61C4F9AE02/zuNPo5_yhfcuIp2ihivBDkiPukE.mft File: zuNPo5_yhfcuIp2ihivBDkiPukE.mft (raw, json) Hash identifier: n8Kc8nUPayQ9x1wPv2RaYWhOYZnb6ZVnMPJdJj3ksu8= Subject key identifier: AB:68:F3:2F:CA:C4:D9:79:9F:7A:79:DE:B7:F7:3B:49:CF:45:FE:A4 Authority key identifier: CE:E3:4F:A3:9F:F2:85:F7:2E:22:9D:A2:86:2B:C1:0E:48:8F:BA:41 Certificate issuer: /CN=A91A9B3E/serialNumber=CEE34FA39FF285F72E229DA2862BC10E488FBA41 Certificate serial: 01B7 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/zuNPo5_yhfcuIp2ihivBDkiPukE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A9B3E/DAB1C3A68CFB11ED92E25B61C4F9AE02/zuNPo5_yhfcuIp2ihivBDkiPukE.mft Manifest number: 01B1 Signing time: Fri 25 Apr 2025 02:21:33 +0000 Manifest this update: Fri 25 Apr 2025 02:21:33 +0000 Manifest next update: Fri 02 May 2025 02:21:33 +0000 Files and hashes: 1: zuNPo5_yhfcuIp2ihivBDkiPukE.crl (hash: MmDM6gn5Dxu5/2SWA4Pejm1YC/1xy6OexTLjeaoYdBY=) 2: 819F7A60CF8B11EDAE77B351C4F9AE02.roa (hash: 4hy1f5KhPhwHVnBrwdKHHsp/qGx5VbOvDT16foHwuRM=) 3: 1AB255C68CFF11EDB7BDD865C4F9AE02.roa (hash: l3pw7Z4d1Nkw0APH0xp6K2791IsFOtCcx1C4farScNI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A9B3E/DAB1C3A68CFB11ED92E25B61C4F9AE02/zuNPo5_yhfcuIp2ihivBDkiPukE.crl rsync://rpki.apnic.net/member_repository/A91A9B3E/DAB1C3A68CFB11ED92E25B61C4F9AE02/zuNPo5_yhfcuIp2ihivBDkiPukE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/zuNPo5_yhfcuIp2ihivBDkiPukE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 02 May 2025 02:21:32 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 439 (0x1b7) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A9B3E, serialNumber=CEE34FA39FF285F72E229DA2862BC10E488FBA41 Validity Not Before: Apr 25 02:21:33 2025 GMT Not After : May 2 02:21:33 2025 GMT Subject: CN=680af1ad-f867 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dd:e6:46:57:2b:26:c4:af:1f:b5:04:32:c2:c6: 8b:74:7b:32:63:de:ba:31:18:51:c2:9c:4b:cd:53: e2:bc:72:5d:67:a1:cb:e0:9f:61:41:81:64:48:9c: 72:e4:0f:61:91:ac:aa:36:91:37:e7:1c:84:69:65: 69:4d:f0:4e:db:d9:88:0f:c3:ae:c0:f9:42:7c:f4: 55:a7:e5:de:30:e7:00:c4:27:37:be:d8:b9:ca:d0: bf:94:05:c2:56:20:c5:ae:8b:b4:74:09:34:5c:57: fa:a2:f7:1e:2e:df:d9:b7:7c:3b:fb:5e:4f:6b:d5: 80:5f:c3:e5:c5:d4:61:e8:dd:d6:1e:9a:77:3e:4e: 33:2e:61:20:34:b9:18:91:5a:3e:c1:8b:e7:91:c9: 9e:b9:84:4d:37:00:ad:5f:bb:f5:c9:c3:e0:3b:56: c0:8c:93:74:d7:d5:77:78:23:f3:9b:54:15:b4:f4: 4d:e7:c7:a8:35:a7:c6:42:4e:d8:1c:ac:c6:bc:71: e3:14:0f:7b:0e:fe:dd:20:b7:e9:fc:a0:4e:16:40: 7e:bf:ad:1d:8b:38:e6:70:d7:87:ff:ec:02:a0:67: a4:f5:4f:74:9d:99:aa:f9:b4:66:e1:36:0c:24:4d: de:2e:07:da:bf:4b:49:3d:df:4c:e6:f9:df:70:2a: b6:0b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AB:68:F3:2F:CA:C4:D9:79:9F:7A:79:DE:B7:F7:3B:49:CF:45:FE:A4 X509v3 Authority Key Identifier: keyid:CE:E3:4F:A3:9F:F2:85:F7:2E:22:9D:A2:86:2B:C1:0E:48:8F:BA:41 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A9B3E/DAB1C3A68CFB11ED92E25B61C4F9AE02/zuNPo5_yhfcuIp2ihivBDkiPukE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/zuNPo5_yhfcuIp2ihivBDkiPukE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A9B3E/DAB1C3A68CFB11ED92E25B61C4F9AE02/zuNPo5_yhfcuIp2ihivBDkiPukE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 32:a3:64:f3:e4:e3:de:c5:8b:f7:f2:81:91:17:81:40:4c:ca: ed:8a:72:d2:13:07:d8:6e:2b:10:91:63:70:ae:52:9b:e4:d5: 7d:cd:54:08:17:23:bf:73:12:16:3b:9a:4d:0e:46:b8:35:a0: c5:ff:28:02:f8:9d:ab:c2:9e:57:68:55:d1:c1:f9:7b:61:f2: 2e:b1:ff:74:3d:c7:19:48:c6:62:d3:71:35:57:bb:e2:03:bb: 5c:a2:b8:ca:56:37:77:f4:e0:34:db:8e:36:61:3a:ba:d3:88: 7c:84:e8:2e:a2:8a:3a:f5:28:92:b9:73:4b:a7:be:4a:18:1b: f1:df:77:db:5c:65:e8:ad:7c:4a:21:59:4a:e7:d2:8f:1a:6d: 42:1b:fc:1b:29:bd:22:33:a8:69:0f:31:96:c7:79:43:fc:21: c2:21:dc:41:7e:f2:3a:b3:97:94:a1:1b:6f:4b:34:32:d6:27: ff:07:f2:73:2a:5d:fe:fb:0f:e2:23:55:00:fc:8e:09:24:7f: 3e:59:b9:22:63:43:86:87:db:e5:37:dc:45:1c:bf:2a:7a:38: f5:18:70:38:78:0b:58:f9:c4:f8:83:dc:10:84:82:73:5a:a4: 71:0e:cf:d7:52:26:84:c9:8f:7d:9d:a0:69:09:d2:d3:e6:14: 6f:31:9f:84 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAbcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTlCM0UxMTAvBgNVBAUTKENFRTM0RkEzOUZGMjg1RjcyRTIyOURBMjg2MkJDMTBF NDg4RkJBNDEwHhcNMjUwNDI1MDIyMTMzWhcNMjUwNTAyMDIyMTMzWjAYMRYwFAYD VQQDEw02ODBhZjFhZC1mODY3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA3eZGVysmxK8ftQQywsaLdHsyY966MRhRwpxLzVPivHJdZ6HL4J9hQYFkSJxy 5A9hkayqNpE35xyEaWVpTfBO29mID8OuwPlCfPRVp+XeMOcAxCc3vti5ytC/lAXC ViDFrou0dAk0XFf6ovceLt/Zt3w7+15Pa9WAX8PlxdRh6N3WHpp3Pk4zLmEgNLkY kVo+wYvnkcmeuYRNNwCtX7v1ycPgO1bAjJN019V3eCPzm1QVtPRN58eoNafGQk7Y HKzGvHHjFA97Dv7dILfp/KBOFkB+v60dizjmcNeH/+wCoGek9U90nZmq+bRm4TYM JE3eLgfav0tJPd9M5vnfcCq2CwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFKto8y/K xNl5n3p53rf3O0nPRf6kMB8GA1UdIwQYMBaAFM7jT6Of8oX3LiKdooYrwQ5Ij7pB MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBOUIzRS9EQUIxQzNBNjhD RkIxMUVEOTJFMjVCNjFDNEY5QUUwMi96dU5QbzVfeWhmY3VJcDJpaGl2QkRraVB1 a0UuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3p1TlBvNV95aGZjdUlwMmloaXZCRGtpUHVrRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB OUIzRS9EQUIxQzNBNjhDRkIxMUVEOTJFMjVCNjFDNEY5QUUwMi96dU5QbzVfeWhm Y3VJcDJpaGl2QkRraVB1a0UubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAyo2Tz5OPexYv38oGRF4FATMrtinLSEwfYbisQkWNwrlKb5NV9zVQI FyO/cxIWO5pNDka4NaDF/ygC+J2rwp5XaFXRwfl7YfIusf90PccZSMZi03E1V7vi A7tcorjKVjd39OA02442YTq604h8hOguooo69SiSuXNLp75KGBvx33fbXGXorXxK IVlK59KPGm1CG/wbKb0iM6hpDzGWx3lD/CHCIdxBfvI6s5eUoRtvSzQy1if/B/Jz Kl3++w/iI1UA/I4JJH8+WbkiY0OGh9vlN9xFHL8qejj1GHA4eAtY+cT4g9wQhIJz WqRxDs/XUiaEyY99naBpCdLT5hRvMZ+E -----END CERTIFICATE-----Generated at Sat Apr 26 15:25:57 2025 by rpki-client