$ rpki-client -vvf rpki.apnic.net/member_repository/A91B80C2/FE48ABF406B211EFBCE0345CC4F9AE02/zuB8hxTxkngTnSOWBQQ-zGvb0yI.mft File: zuB8hxTxkngTnSOWBQQ-zGvb0yI.mft (raw, json) Hash identifier: 3pSHK5+Mbtu63DkY8ODcVX7U5iw1bhbKE0pxTMkgsH8= Subject key identifier: D9:9B:EB:34:71:19:E9:F7:5C:8B:98:D3:E7:E9:75:52:93:05:9B:FC Authority key identifier: CE:E0:7C:87:14:F1:92:78:13:9D:23:96:05:04:3E:CC:6B:DB:D3:22 Certificate issuer: /CN=A91B80C2/serialNumber=CEE07C8714F19278139D239605043ECC6BDBD322 Certificate serial: D8 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/zuB8hxTxkngTnSOWBQQ-zGvb0yI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B80C2/FE48ABF406B211EFBCE0345CC4F9AE02/zuB8hxTxkngTnSOWBQQ-zGvb0yI.mft Manifest number: CC Signing time: Fri 25 Apr 2025 04:57:38 +0000 Manifest this update: Fri 25 Apr 2025 04:57:38 +0000 Manifest next update: Fri 02 May 2025 04:57:38 +0000 Files and hashes: 1: zuB8hxTxkngTnSOWBQQ-zGvb0yI.crl (hash: 3F4YJxPsLPH1uBq3Q1dKrtlZ80N6G5v8saQBFZ+LtrA=) 2: 33FB0E48FD2211EFA419DA72C4F9AE02.roa (hash: hGFJA7vbBE7czUFInCqw+SAQ5MusDF01ceEYN+8+xgQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B80C2/FE48ABF406B211EFBCE0345CC4F9AE02/zuB8hxTxkngTnSOWBQQ-zGvb0yI.crl rsync://rpki.apnic.net/member_repository/A91B80C2/FE48ABF406B211EFBCE0345CC4F9AE02/zuB8hxTxkngTnSOWBQQ-zGvb0yI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/zuB8hxTxkngTnSOWBQQ-zGvb0yI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 02 May 2025 04:57:37 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 216 (0xd8) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B80C2, serialNumber=CEE07C8714F19278139D239605043ECC6BDBD322 Validity Not Before: Apr 25 04:57:38 2025 GMT Not After : May 2 04:57:38 2025 GMT Subject: CN=680b1642-0254 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d2:95:d2:2d:eb:64:2e:80:25:42:a8:d3:69:61: f7:17:6c:b1:d7:a9:18:d3:43:36:9b:98:39:c0:15: ff:48:16:e3:8b:96:bc:a8:67:f2:0e:2c:7b:a0:c2: f4:d6:43:97:9d:d4:33:4d:39:0d:54:84:86:59:1b: e5:81:d2:5d:a6:46:3b:32:99:49:25:57:7e:fe:65: ee:ea:29:88:3d:ed:19:96:da:82:8f:af:a7:d1:6e: 6d:d5:53:2b:da:c6:ec:8e:68:ef:ba:9d:be:a7:d5: e6:a5:15:a3:8a:bb:1c:7c:99:65:5b:42:a9:ec:f7: cd:ea:09:4f:c1:3d:3e:d6:5f:e8:fa:00:00:f0:24: 67:54:0e:40:18:da:d2:c9:43:b6:3c:0e:cc:40:64: 6a:27:7d:98:c2:2f:b6:95:e7:d6:04:31:9d:0d:3c: fb:eb:af:0f:62:79:a0:00:a7:22:c4:0c:cc:02:f4: 36:69:16:5c:a0:b8:f5:cf:2b:c3:44:31:ca:8a:d5: 2e:07:b7:32:31:80:6b:ec:6b:23:c3:a1:01:0d:bd: 18:17:42:03:2b:6a:bf:b5:8d:30:a6:3d:d9:57:e8: 77:01:1b:a5:3b:0b:14:a5:be:4a:fb:89:f7:28:12: e9:5b:85:29:54:8e:21:f5:7d:d5:9a:13:19:e5:bf: b3:f1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D9:9B:EB:34:71:19:E9:F7:5C:8B:98:D3:E7:E9:75:52:93:05:9B:FC X509v3 Authority Key Identifier: keyid:CE:E0:7C:87:14:F1:92:78:13:9D:23:96:05:04:3E:CC:6B:DB:D3:22 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B80C2/FE48ABF406B211EFBCE0345CC4F9AE02/zuB8hxTxkngTnSOWBQQ-zGvb0yI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/zuB8hxTxkngTnSOWBQQ-zGvb0yI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B80C2/FE48ABF406B211EFBCE0345CC4F9AE02/zuB8hxTxkngTnSOWBQQ-zGvb0yI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 05:1b:aa:e7:b6:59:1f:09:c9:11:eb:d1:d6:ad:ad:fd:07:a4: 35:82:c7:54:9e:da:e3:b9:b7:6a:74:88:d5:a5:71:12:a3:60: 11:88:53:9f:f5:b6:38:3d:5b:04:2b:65:52:e1:53:d8:e1:46: d5:0d:c7:2c:06:2e:87:03:63:06:cc:8a:1b:cc:c4:13:ee:83: 69:f0:e4:4d:31:64:d6:f7:2c:b3:4f:c7:5d:72:85:c7:0f:6f: 51:f8:72:b5:9d:5b:6a:d5:5a:e8:ea:36:5d:bd:90:13:04:d4: fe:d6:cb:47:1a:f2:7d:3b:55:cd:85:f8:0b:31:8f:d1:e9:df: 70:99:f5:65:f4:c6:69:83:68:02:ce:bc:b2:ed:01:65:ff:16: 79:31:59:29:fc:66:e2:47:66:74:b2:ab:33:f2:33:d2:88:1f: b7:31:3a:37:c3:09:7a:ef:8e:fa:77:cb:3e:71:9d:fa:14:20: 3c:23:24:29:69:d9:75:8f:76:17:1e:c2:b0:03:b9:fb:f3:83: 2b:1b:3e:0a:c1:a8:a4:f6:5f:72:ba:02:cb:1d:64:a8:3e:72: 18:d8:d4:31:ae:40:e9:0e:31:a2:28:bc:a5:44:0e:61:1c:4a: f3:7c:b1:15:a7:f1:00:40:d9:8e:5b:d9:87:68:a1:c5:78:0d: f8:ac:db:82 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICANgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjgwQzIxMTAvBgNVBAUTKENFRTA3Qzg3MTRGMTkyNzgxMzlEMjM5NjA1MDQzRUND NkJEQkQzMjIwHhcNMjUwNDI1MDQ1NzM4WhcNMjUwNTAyMDQ1NzM4WjAYMRYwFAYD VQQDEw02ODBiMTY0Mi0wMjU0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0pXSLetkLoAlQqjTaWH3F2yx16kY00M2m5g5wBX/SBbji5a8qGfyDix7oML0 1kOXndQzTTkNVISGWRvlgdJdpkY7MplJJVd+/mXu6imIPe0ZltqCj6+n0W5t1VMr 2sbsjmjvup2+p9XmpRWjirscfJllW0Kp7PfN6glPwT0+1l/o+gAA8CRnVA5AGNrS yUO2PA7MQGRqJ32Ywi+2lefWBDGdDTz7668PYnmgAKcixAzMAvQ2aRZcoLj1zyvD RDHKitUuB7cyMYBr7Gsjw6EBDb0YF0IDK2q/tY0wpj3ZV+h3ARulOwsUpb5K+4n3 KBLpW4UpVI4h9X3VmhMZ5b+z8QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFNmb6zRx Gen3XIuY0+fpdVKTBZv8MB8GA1UdIwQYMBaAFM7gfIcU8ZJ4E50jlgUEPsxr29Mi MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCODBDMi9GRTQ4QUJGNDA2 QjIxMUVGQkNFMDM0NUNDNEY5QUUwMi96dUI4aHhUeGtuZ1RuU09XQlFRLXpHdmIw eUkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3p1QjhoeFR4a25nVG5TT1dCUVEtekd2YjB5SS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC ODBDMi9GRTQ4QUJGNDA2QjIxMUVGQkNFMDM0NUNDNEY5QUUwMi96dUI4aHhUeGtu Z1RuU09XQlFRLXpHdmIweUkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAFG6rntlkfCckR69HWra39B6Q1gsdUntrjubdqdIjVpXESo2ARiFOf 9bY4PVsEK2VS4VPY4UbVDccsBi6HA2MGzIobzMQT7oNp8ORNMWTW9yyzT8ddcoXH D29R+HK1nVtq1Vro6jZdvZATBNT+1stHGvJ9O1XNhfgLMY/R6d9wmfVl9MZpg2gC zryy7QFl/xZ5MVkp/GbiR2Z0sqsz8jPSiB+3MTo3wwl67476d8s+cZ36FCA8IyQp adl1j3YXHsKwA7n784MrGz4Kwaik9l9yugLLHWSoPnIY2NQxrkDpDjGiKLylRA5h HErzfLEVp/EAQNmOW9mHaKHFeA34rNuC -----END CERTIFICATE-----Generated at Sat Apr 26 04:54:57 2025 by rpki-client