$ rpki-client -vvf rpki.apnic.net/member_repository/A91A9B3E/DAB1C3A68CFB11ED92E25B61C4F9AE02/zuNPo5_yhfcuIp2ihivBDkiPukE.mft File: zuNPo5_yhfcuIp2ihivBDkiPukE.mft (raw, json) Hash identifier: q+RCT8w+i6K/ei/bkW7LXScUWocYIsXIP9qJC5OHRDk= Subject key identifier: 57:0A:D0:D5:8C:A7:C5:3E:BF:AE:91:5B:96:8C:2A:56:A3:04:C3:4C Authority key identifier: CE:E3:4F:A3:9F:F2:85:F7:2E:22:9D:A2:86:2B:C1:0E:48:8F:BA:41 Certificate issuer: /CN=A91A9B3E/serialNumber=CEE34FA39FF285F72E229DA2862BC10E488FBA41 Certificate serial: 01CF Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/zuNPo5_yhfcuIp2ihivBDkiPukE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A9B3E/DAB1C3A68CFB11ED92E25B61C4F9AE02/zuNPo5_yhfcuIp2ihivBDkiPukE.mft Manifest number: 01C9 Signing time: Fri 13 Jun 2025 01:59:55 +0000 Manifest this update: Fri 13 Jun 2025 01:59:54 +0000 Manifest next update: Fri 20 Jun 2025 01:59:54 +0000 Files and hashes: 1: zuNPo5_yhfcuIp2ihivBDkiPukE.crl (hash: ngW4bhCD3RilaJEfXVXMdrPc5AFuxH8M5JZMQnfmBB4=) 2: 819F7A60CF8B11EDAE77B351C4F9AE02.roa (hash: 4hy1f5KhPhwHVnBrwdKHHsp/qGx5VbOvDT16foHwuRM=) 3: 1AB255C68CFF11EDB7BDD865C4F9AE02.roa (hash: l3pw7Z4d1Nkw0APH0xp6K2791IsFOtCcx1C4farScNI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A9B3E/DAB1C3A68CFB11ED92E25B61C4F9AE02/zuNPo5_yhfcuIp2ihivBDkiPukE.crl rsync://rpki.apnic.net/member_repository/A91A9B3E/DAB1C3A68CFB11ED92E25B61C4F9AE02/zuNPo5_yhfcuIp2ihivBDkiPukE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/zuNPo5_yhfcuIp2ihivBDkiPukE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 20 Jun 2025 01:59:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 463 (0x1cf) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A9B3E, serialNumber=CEE34FA39FF285F72E229DA2862BC10E488FBA41 Validity Not Before: Jun 13 01:59:54 2025 GMT Not After : Jun 20 01:59:54 2025 GMT Subject: CN=684b861b-4545 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b0:a5:3f:ba:dd:32:7e:92:ad:b2:7f:4b:e4:f5: 9d:51:be:d8:af:b1:c3:05:ac:98:03:fc:9e:df:bc: e6:09:cf:69:8b:a8:5c:60:3e:92:5b:da:69:13:36: c8:bc:68:97:04:1c:45:83:e3:d7:18:95:84:a1:9d: 25:90:df:50:84:0a:2d:80:19:c2:e5:2a:2c:62:ac: 66:f1:c0:e9:d1:a5:87:0a:6d:5a:32:64:23:8d:5b: 55:b3:6a:c8:5e:b8:8d:3a:57:40:6a:2e:74:31:d8: 72:2f:2e:6f:30:92:ec:1b:db:87:81:aa:a8:b0:16: b7:8a:b5:68:b5:8e:27:9c:78:f5:00:e1:d5:f8:08: e1:b8:e7:cc:af:15:35:56:8f:81:62:9e:08:06:af: e7:4c:6c:56:03:1c:ea:c1:1b:dc:dc:76:e9:f6:46: e7:f7:8a:65:9c:24:4b:f3:b5:5f:98:b7:c7:99:1f: d7:7f:50:e6:5e:16:b4:82:f6:31:bc:01:3d:ab:d6: 83:08:35:65:35:5b:ae:5b:8f:e5:b7:fe:00:7e:73: 74:80:d8:a5:99:81:60:62:cd:ae:3f:2d:fd:2d:e0: cc:1a:23:1a:3f:43:28:9f:a3:92:75:60:b4:8e:f2: 24:9f:18:44:68:fb:d7:61:eb:17:96:62:51:18:8e: e2:af Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 57:0A:D0:D5:8C:A7:C5:3E:BF:AE:91:5B:96:8C:2A:56:A3:04:C3:4C X509v3 Authority Key Identifier: keyid:CE:E3:4F:A3:9F:F2:85:F7:2E:22:9D:A2:86:2B:C1:0E:48:8F:BA:41 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A9B3E/DAB1C3A68CFB11ED92E25B61C4F9AE02/zuNPo5_yhfcuIp2ihivBDkiPukE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/zuNPo5_yhfcuIp2ihivBDkiPukE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A9B3E/DAB1C3A68CFB11ED92E25B61C4F9AE02/zuNPo5_yhfcuIp2ihivBDkiPukE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 47:65:83:cb:bf:b2:5f:b0:ac:92:dc:fa:3a:26:d7:10:28:37: 22:7c:22:44:6c:97:27:b5:06:9b:4d:0c:e9:e9:fa:23:07:a3: 12:8a:db:31:76:e8:a3:2c:df:f8:c7:42:e7:a0:0d:1b:51:b1: da:de:ce:2a:49:f3:22:db:99:9c:5a:aa:f8:32:89:d5:f8:b9: 7e:85:26:d1:7e:db:b5:de:c3:52:64:76:7d:fc:1a:1e:71:a9: 67:4f:c1:52:ae:fe:a4:4b:00:ba:60:47:31:96:5f:6f:19:af: f9:27:7f:10:45:95:92:29:97:fe:90:fe:ce:ee:5b:f1:39:4f: a0:ac:43:54:45:e8:f3:7b:3c:f3:d2:84:fe:b9:be:c7:1c:e2: 8e:1b:ac:c3:16:b0:3b:bc:5f:1c:23:f1:b4:17:b9:74:2c:60: f2:4a:10:12:bb:16:d3:76:79:e5:79:3d:75:64:78:f4:8a:5d: a6:fc:f1:bd:fa:96:fb:f7:67:9f:94:cc:61:79:2b:8a:3f:5d: dc:3a:70:b9:d8:22:69:31:3e:7a:12:12:8e:9f:15:a8:7b:fb: 74:b8:47:67:1f:03:bd:bc:80:27:a6:b3:eb:5f:7b:05:89:64: d0:89:6f:78:47:e7:63:0d:6b:89:79:24:ad:7f:ba:8b:fb:d4: be:e0:a7:b4 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAc8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTlCM0UxMTAvBgNVBAUTKENFRTM0RkEzOUZGMjg1RjcyRTIyOURBMjg2MkJDMTBF NDg4RkJBNDEwHhcNMjUwNjEzMDE1OTU0WhcNMjUwNjIwMDE1OTU0WjAYMRYwFAYD VQQDEw02ODRiODYxYi00NTQ1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsKU/ut0yfpKtsn9L5PWdUb7Yr7HDBayYA/ye37zmCc9pi6hcYD6SW9ppEzbI vGiXBBxFg+PXGJWEoZ0lkN9QhAotgBnC5SosYqxm8cDp0aWHCm1aMmQjjVtVs2rI XriNOldAai50MdhyLy5vMJLsG9uHgaqosBa3irVotY4nnHj1AOHV+AjhuOfMrxU1 Vo+BYp4IBq/nTGxWAxzqwRvc3Hbp9kbn94plnCRL87VfmLfHmR/Xf1DmXha0gvYx vAE9q9aDCDVlNVuuW4/lt/4AfnN0gNilmYFgYs2uPy39LeDMGiMaP0Mon6OSdWC0 jvIknxhEaPvXYesXlmJRGI7irwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFFcK0NWM p8U+v66RW5aMKlajBMNMMB8GA1UdIwQYMBaAFM7jT6Of8oX3LiKdooYrwQ5Ij7pB MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBOUIzRS9EQUIxQzNBNjhD RkIxMUVEOTJFMjVCNjFDNEY5QUUwMi96dU5QbzVfeWhmY3VJcDJpaGl2QkRraVB1 a0UuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3p1TlBvNV95aGZjdUlwMmloaXZCRGtpUHVrRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB OUIzRS9EQUIxQzNBNjhDRkIxMUVEOTJFMjVCNjFDNEY5QUUwMi96dU5QbzVfeWhm Y3VJcDJpaGl2QkRraVB1a0UubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBHZYPLv7JfsKyS3Po6JtcQKDcifCJEbJcntQabTQzp6fojB6MSitsx duijLN/4x0LnoA0bUbHa3s4qSfMi25mcWqr4MonV+Ll+hSbRftu13sNSZHZ9/Boe calnT8FSrv6kSwC6YEcxll9vGa/5J38QRZWSKZf+kP7O7lvxOU+grENURejzezzz 0oT+ub7HHOKOG6zDFrA7vF8cI/G0F7l0LGDyShASuxbTdnnleT11ZHj0il2m/PG9 +pb792eflMxheSuKP13cOnC52CJpMT56EhKOnxWoe/t0uEdnHwO9vIAnprPrX3sF iWTQiW94R+djDWuJeSStf7qL+9S+4Ke0 -----END CERTIFICATE-----Generated at Sat Jun 14 19:40:41 2025 by rpki-client