$ rpki-client -vvf rpki.apnic.net/member_repository/A91B80C2/FE48ABF406B211EFBCE0345CC4F9AE02/zuB8hxTxkngTnSOWBQQ-zGvb0yI.mft File: zuB8hxTxkngTnSOWBQQ-zGvb0yI.mft (raw, json) Hash identifier: jmVRzpwOJItDngciJ6E4NzkEv/zkFlJZvVqiMGM9svs= Subject key identifier: 53:BD:95:D3:FD:BC:67:14:F5:2D:37:18:A5:C1:50:0E:1C:55:E5:54 Authority key identifier: CE:E0:7C:87:14:F1:92:78:13:9D:23:96:05:04:3E:CC:6B:DB:D3:22 Certificate issuer: /CN=A91B80C2/serialNumber=CEE07C8714F19278139D239605043ECC6BDBD322 Certificate serial: F0 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/zuB8hxTxkngTnSOWBQQ-zGvb0yI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B80C2/FE48ABF406B211EFBCE0345CC4F9AE02/zuB8hxTxkngTnSOWBQQ-zGvb0yI.mft Manifest number: E4 Signing time: Fri 13 Jun 2025 04:36:19 +0000 Manifest this update: Fri 13 Jun 2025 04:36:18 +0000 Manifest next update: Fri 20 Jun 2025 04:36:18 +0000 Files and hashes: 1: zuB8hxTxkngTnSOWBQQ-zGvb0yI.crl (hash: i68VGG/yftC49V2kAWPj+WE5H6weecNf4PAZdTsrVxM=) 2: 33FB0E48FD2211EFA419DA72C4F9AE02.roa (hash: hGFJA7vbBE7czUFInCqw+SAQ5MusDF01ceEYN+8+xgQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B80C2/FE48ABF406B211EFBCE0345CC4F9AE02/zuB8hxTxkngTnSOWBQQ-zGvb0yI.crl rsync://rpki.apnic.net/member_repository/A91B80C2/FE48ABF406B211EFBCE0345CC4F9AE02/zuB8hxTxkngTnSOWBQQ-zGvb0yI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/zuB8hxTxkngTnSOWBQQ-zGvb0yI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 20 Jun 2025 04:36:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 240 (0xf0) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B80C2, serialNumber=CEE07C8714F19278139D239605043ECC6BDBD322 Validity Not Before: Jun 13 04:36:18 2025 GMT Not After : Jun 20 04:36:18 2025 GMT Subject: CN=684baac3-cae8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:03:35:3b:35:7d:a8:86:12:bd:57:b6:76:64: b1:67:b7:65:c0:55:81:9f:33:78:30:19:bb:45:77: 20:46:57:ea:95:da:f1:50:7e:4a:d6:42:87:05:d5: 6a:db:50:90:f7:26:ca:b4:4c:b0:2b:bf:86:44:4b: ac:cb:02:1c:00:47:a7:9e:2c:e2:e2:f9:de:92:b3: b3:54:42:58:a3:50:ac:1f:fa:58:d9:ad:e7:f0:a1: 8c:67:42:e4:7e:c7:55:43:a2:5a:3c:50:1e:4a:91: ab:53:f7:ec:7c:54:5a:84:e0:1b:1f:82:60:47:03: 0f:a7:d4:08:e5:c3:6f:47:00:28:82:2b:a7:28:4f: 9e:1f:31:6e:66:96:e1:40:af:28:dc:1f:ac:ef:c9: 67:96:40:3a:07:3a:43:36:b7:5c:29:59:c7:24:d7: 2a:bf:be:55:6d:1f:68:d9:6c:f9:67:27:30:24:2f: 9e:a4:64:f5:38:51:c4:47:90:bc:a2:26:46:53:0e: 79:50:3e:d7:a5:06:d8:21:1a:bc:65:b7:d6:fd:88: 78:fe:f9:f6:18:94:29:ba:3c:e1:85:eb:d3:4c:3e: 45:d8:0f:3f:e9:60:4e:f2:4e:43:4f:74:7a:4f:6e: 65:00:c6:f3:b6:95:23:fc:93:13:7c:5f:01:e5:d8: 77:59 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 53:BD:95:D3:FD:BC:67:14:F5:2D:37:18:A5:C1:50:0E:1C:55:E5:54 X509v3 Authority Key Identifier: keyid:CE:E0:7C:87:14:F1:92:78:13:9D:23:96:05:04:3E:CC:6B:DB:D3:22 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B80C2/FE48ABF406B211EFBCE0345CC4F9AE02/zuB8hxTxkngTnSOWBQQ-zGvb0yI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/zuB8hxTxkngTnSOWBQQ-zGvb0yI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B80C2/FE48ABF406B211EFBCE0345CC4F9AE02/zuB8hxTxkngTnSOWBQQ-zGvb0yI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 6e:96:74:d0:69:fb:57:1d:5f:1a:91:e3:c7:58:19:0b:f3:bc: 9c:71:88:68:14:f6:47:fb:a5:59:22:70:6b:ad:40:1c:5e:18: bf:8c:5d:2d:b8:fa:9e:f6:b3:e9:53:8a:3a:ea:f1:7f:ef:2f: 33:66:bb:58:25:eb:9e:15:50:ea:6a:cc:0a:ec:0e:59:60:ff: db:c1:4a:19:27:19:00:b9:ad:f3:e0:26:44:d6:3b:50:a1:49: c8:c7:82:d9:8d:9e:8d:6b:09:71:9d:cc:81:cf:df:ba:33:10: bb:0e:68:1d:3b:b4:f5:25:93:d0:5e:65:b5:0e:d7:1d:93:e5: 14:69:7f:af:45:e0:5e:ea:0c:bc:e1:8e:b0:fd:9e:5b:81:44: a6:c2:27:2b:7f:0d:48:89:96:d6:11:2e:2e:12:19:99:52:3d: 29:8f:0a:e8:3e:63:6a:bf:24:36:c0:b1:51:dc:c9:2b:c7:69: bc:7f:5e:a8:ef:77:2f:1c:64:dd:05:5c:3a:bd:82:9a:c2:67: 82:51:71:1c:fe:bb:c6:19:c9:b3:c4:a3:17:42:3a:35:c3:03: 50:05:6a:ae:6c:6e:c8:41:b9:17:d8:8d:73:bc:5a:a8:5b:6c: 74:f1:8a:5f:92:9d:92:a7:59:2a:5b:8f:7a:ff:89:48:c5:ad: 5b:87:c2:d9 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAPAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjgwQzIxMTAvBgNVBAUTKENFRTA3Qzg3MTRGMTkyNzgxMzlEMjM5NjA1MDQzRUND NkJEQkQzMjIwHhcNMjUwNjEzMDQzNjE4WhcNMjUwNjIwMDQzNjE4WjAYMRYwFAYD VQQDEw02ODRiYWFjMy1jYWU4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwgM1OzV9qIYSvVe2dmSxZ7dlwFWBnzN4MBm7RXcgRlfqldrxUH5K1kKHBdVq 21CQ9ybKtEywK7+GREusywIcAEennizi4vnekrOzVEJYo1CsH/pY2a3n8KGMZ0Lk fsdVQ6JaPFAeSpGrU/fsfFRahOAbH4JgRwMPp9QI5cNvRwAogiunKE+eHzFuZpbh QK8o3B+s78lnlkA6BzpDNrdcKVnHJNcqv75VbR9o2Wz5ZycwJC+epGT1OFHER5C8 oiZGUw55UD7XpQbYIRq8ZbfW/Yh4/vn2GJQpujzhhevTTD5F2A8/6WBO8k5DT3R6 T25lAMbztpUj/JMTfF8B5dh3WQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFFO9ldP9 vGcU9S03GKXBUA4cVeVUMB8GA1UdIwQYMBaAFM7gfIcU8ZJ4E50jlgUEPsxr29Mi MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCODBDMi9GRTQ4QUJGNDA2 QjIxMUVGQkNFMDM0NUNDNEY5QUUwMi96dUI4aHhUeGtuZ1RuU09XQlFRLXpHdmIw eUkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3p1QjhoeFR4a25nVG5TT1dCUVEtekd2YjB5SS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC ODBDMi9GRTQ4QUJGNDA2QjIxMUVGQkNFMDM0NUNDNEY5QUUwMi96dUI4aHhUeGtu Z1RuU09XQlFRLXpHdmIweUkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBulnTQaftXHV8akePHWBkL87yccYhoFPZH+6VZInBrrUAcXhi/jF0t uPqe9rPpU4o66vF/7y8zZrtYJeueFVDqaswK7A5ZYP/bwUoZJxkAua3z4CZE1jtQ oUnIx4LZjZ6NawlxncyBz9+6MxC7DmgdO7T1JZPQXmW1Dtcdk+UUaX+vReBe6gy8 4Y6w/Z5bgUSmwicrfw1IiZbWES4uEhmZUj0pjwroPmNqvyQ2wLFR3Mkrx2m8f16o 73cvHGTdBVw6vYKawmeCUXEc/rvGGcmzxKMXQjo1wwNQBWqubG7IQbkX2I1zvFqo W2x08Ypfkp2Sp1kqW496/4lIxa1bh8LZ -----END CERTIFICATE-----Generated at Sat Jun 14 17:26:10 2025 by rpki-client