$ rpki-client -vvf rpki.apnic.net/member_repository/A91AAE63/5E966394CA0911ED81B6F63CC4F9AE02/zHxfJ4CoDTxmayv2kVPyBIS-7nE.mft File: zHxfJ4CoDTxmayv2kVPyBIS-7nE.mft (raw, json) Hash identifier: MLjIwwhBGH0uCHyv1r2UwTXxkfNVxTsj9uNhxiP0Md8= Subject key identifier: 95:6B:36:A4:1D:F9:9A:F9:9E:47:A4:85:0A:45:05:34:7C:5C:66:E4 Authority key identifier: CC:7C:5F:27:80:A8:0D:3C:66:6B:2B:F6:91:53:F2:04:84:BE:EE:71 Certificate issuer: /CN=A91AAE63/serialNumber=CC7C5F2780A80D3C666B2BF69153F20484BEEE71 Certificate serial: 01A5 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/zHxfJ4CoDTxmayv2kVPyBIS-7nE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91AAE63/5E966394CA0911ED81B6F63CC4F9AE02/zHxfJ4CoDTxmayv2kVPyBIS-7nE.mft Manifest number: 01A2 Signing time: Sun 15 Jun 2025 02:34:10 +0000 Manifest this update: Sun 15 Jun 2025 02:34:09 +0000 Manifest next update: Sun 22 Jun 2025 02:34:09 +0000 Files and hashes: 1: zHxfJ4CoDTxmayv2kVPyBIS-7nE.crl (hash: Ipq+8j+yfyP32081pKa6kYVD9XXs520QVr8/0dAlJb0=) 2: 5DCF3814CA0E11ED9251861DC4F9AE02.roa (hash: QPqR58JeNFPJi8H+5XnKJrf+9hDaJRDjHQAg1P1N4n8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91AAE63/5E966394CA0911ED81B6F63CC4F9AE02/zHxfJ4CoDTxmayv2kVPyBIS-7nE.crl rsync://rpki.apnic.net/member_repository/A91AAE63/5E966394CA0911ED81B6F63CC4F9AE02/zHxfJ4CoDTxmayv2kVPyBIS-7nE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/zHxfJ4CoDTxmayv2kVPyBIS-7nE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 22 Jun 2025 02:34:09 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 421 (0x1a5) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91AAE63, serialNumber=CC7C5F2780A80D3C666B2BF69153F20484BEEE71 Validity Not Before: Jun 15 02:34:09 2025 GMT Not After : Jun 22 02:34:09 2025 GMT Subject: CN=684e3122-09df Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d7:ae:e8:fa:18:fe:3f:38:47:82:ff:f7:60:ea: bd:5a:3a:df:a5:aa:28:c9:69:de:85:7b:b4:3e:f8: 58:11:46:c4:fa:cc:29:82:cf:a2:46:03:3e:5a:93: 41:f1:a1:a2:05:38:23:2d:fe:2d:75:97:aa:86:cb: 52:07:da:c7:c4:a2:44:5d:c8:cb:25:dc:d2:5a:2a: 7b:cf:74:53:dd:07:b6:e2:a3:08:be:f4:ca:e1:d5: fe:8e:b3:81:47:a5:70:b7:43:90:6b:0c:7f:85:e0: a5:8f:9d:31:f9:ec:ad:45:fb:fe:fc:15:8f:6c:c7: 2f:60:4a:e8:bb:6e:4e:b7:c6:70:e9:bd:70:45:74: 0f:52:42:06:58:0d:02:53:f1:78:58:4c:e1:15:47: f7:e7:99:6c:2b:e7:b8:f6:d0:5a:39:63:f6:59:de: ce:de:5a:24:8d:5a:08:f5:d2:63:65:13:a1:7c:e1: 3c:3d:e2:b7:37:11:bb:9c:58:38:ff:83:48:c9:c9: a9:ab:32:50:24:88:75:e1:37:2d:c3:5e:bb:d7:75: 41:ba:a9:b5:0d:98:fd:c7:13:81:cd:77:6d:06:ed: e4:46:2b:e0:56:ab:9c:c1:4c:24:07:03:1c:7a:7f: dc:0b:01:8b:59:60:99:b6:8c:8e:0c:08:f1:20:bd: 29:f9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 95:6B:36:A4:1D:F9:9A:F9:9E:47:A4:85:0A:45:05:34:7C:5C:66:E4 X509v3 Authority Key Identifier: keyid:CC:7C:5F:27:80:A8:0D:3C:66:6B:2B:F6:91:53:F2:04:84:BE:EE:71 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91AAE63/5E966394CA0911ED81B6F63CC4F9AE02/zHxfJ4CoDTxmayv2kVPyBIS-7nE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/zHxfJ4CoDTxmayv2kVPyBIS-7nE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91AAE63/5E966394CA0911ED81B6F63CC4F9AE02/zHxfJ4CoDTxmayv2kVPyBIS-7nE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 7e:0b:5b:56:19:a7:c2:6e:05:f8:fd:46:0b:72:fa:75:34:19: 0d:77:6e:7f:f5:53:4a:af:17:ef:4a:18:e2:28:b4:08:63:05: 33:a3:41:8d:4b:0e:3c:35:dc:47:d6:2d:18:bd:00:b3:41:6a: 2f:00:5d:8c:cf:0c:1d:5a:70:2b:22:34:e5:01:13:4d:e0:a4: 49:a3:15:64:7b:01:ca:f9:b4:ba:d5:e3:ba:ca:72:8d:13:64: 84:55:51:32:58:e7:b5:66:06:7d:2e:d5:0a:ab:cf:ce:b0:7a: 77:a7:a2:82:94:7f:61:4d:50:85:90:04:90:a5:06:48:b6:ae: 27:4c:02:76:15:9d:a2:76:31:6e:c5:df:74:3d:05:30:86:8d: d9:2b:9b:e5:90:cf:02:95:b1:3e:2d:b6:b7:d2:82:02:a6:7f: 31:dd:a3:de:3b:1f:21:3e:40:70:c4:dc:ab:65:1f:5b:ef:67: 78:8f:c2:51:2c:37:c1:af:d6:5e:ad:b6:c5:e7:89:15:7b:07: a3:f9:f9:a3:5b:5d:8a:dc:3b:9b:26:44:d5:4c:50:75:78:2c: 70:d9:b5:d4:67:0d:48:ca:6e:72:6c:92:4d:ce:be:bf:f7:72: b1:a1:5c:80:f8:8b:64:90:7d:1e:28:0e:d5:c2:dc:90:47:7c: 3b:b5:d7:ab -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAaUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QUFFNjMxMTAvBgNVBAUTKENDN0M1RjI3ODBBODBEM0M2NjZCMkJGNjkxNTNGMjA0 ODRCRUVFNzEwHhcNMjUwNjE1MDIzNDA5WhcNMjUwNjIyMDIzNDA5WjAYMRYwFAYD VQQDEw02ODRlMzEyMi0wOWRmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA167o+hj+PzhHgv/3YOq9WjrfpaooyWnehXu0PvhYEUbE+swpgs+iRgM+WpNB 8aGiBTgjLf4tdZeqhstSB9rHxKJEXcjLJdzSWip7z3RT3Qe24qMIvvTK4dX+jrOB R6Vwt0OQawx/heClj50x+eytRfv+/BWPbMcvYErou25Ot8Zw6b1wRXQPUkIGWA0C U/F4WEzhFUf355lsK+e49tBaOWP2Wd7O3lokjVoI9dJjZROhfOE8PeK3NxG7nFg4 /4NIycmpqzJQJIh14Tctw16713VBuqm1DZj9xxOBzXdtBu3kRivgVqucwUwkBwMc en/cCwGLWWCZtoyODAjxIL0p+QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJVrNqQd +Zr5nkekhQpFBTR8XGbkMB8GA1UdIwQYMBaAFMx8XyeAqA08Zmsr9pFT8gSEvu5x MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBQUU2My81RTk2NjM5NENB MDkxMUVEODFCNkY2M0NDNEY5QUUwMi96SHhmSjRDb0RUeG1heXYya1ZQeUJJUy03 bkUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3pIeGZKNENvRFR4bWF5djJrVlB5QklTLTduRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB QUU2My81RTk2NjM5NENBMDkxMUVEODFCNkY2M0NDNEY5QUUwMi96SHhmSjRDb0RU eG1heXYya1ZQeUJJUy03bkUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB+C1tWGafCbgX4/UYLcvp1NBkNd25/9VNKrxfvShjiKLQIYwUzo0GN Sw48NdxH1i0YvQCzQWovAF2MzwwdWnArIjTlARNN4KRJoxVkewHK+bS61eO6ynKN E2SEVVEyWOe1ZgZ9LtUKq8/OsHp3p6KClH9hTVCFkASQpQZItq4nTAJ2FZ2idjFu xd90PQUwho3ZK5vlkM8ClbE+Lba30oICpn8x3aPeOx8hPkBwxNyrZR9b72d4j8JR LDfBr9ZerbbF54kVewej+fmjW12K3DubJkTVTFB1eCxw2bXUZw1Iym5ybJJNzr6/ 93KxoVyA+ItkkH0eKA7VwtyQR3w7tder -----END CERTIFICATE-----Generated at Sun Jun 15 23:09:42 2025 by rpki-client