$ rpki-client -vvf rpki.apnic.net/member_repository/A91EBFB0/A3AB43B2F87C11E9AA2CF158C4F9AE02/zIUJ0x-2Oo3da_LT2Ex7wLK6P8A.mft File: zIUJ0x-2Oo3da_LT2Ex7wLK6P8A.mft (raw, json) Hash identifier: rkZoO0fpVnKHAQrghzAb5UhLeIjUSrOLkodRaq4N1HI= Subject key identifier: B2:49:51:37:EB:A7:FF:EA:54:85:18:20:62:09:92:0E:21:BC:E0:C8 Authority key identifier: CC:85:09:D3:1F:B6:3A:8D:DD:6B:F2:D3:D8:4C:7B:C0:B2:BA:3F:C0 Certificate issuer: /CN=A91EBFB0/serialNumber=CC8509D31FB63A8DDD6BF2D3D84C7BC0B2BA3FC0 Certificate serial: 0C8E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/zIUJ0x-2Oo3da_LT2Ex7wLK6P8A.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91EBFB0/A3AB43B2F87C11E9AA2CF158C4F9AE02/zIUJ0x-2Oo3da_LT2Ex7wLK6P8A.mft Manifest number: 0C88 Signing time: Thu 12 Jun 2025 18:05:03 +0000 Manifest this update: Thu 12 Jun 2025 18:05:02 +0000 Manifest next update: Thu 19 Jun 2025 18:05:02 +0000 Files and hashes: 1: zIUJ0x-2Oo3da_LT2Ex7wLK6P8A.crl (hash: UUcjqKh7poX2wEUZqtuO8XJRBs0FDXXI3G2L3l0cv68=) 2: F690CAECF87D11E9A746D05BC4F9AE02.roa (hash: tPAGXaSYisbjEXVlWGxE30ABgdsZwLOrekyu2J6vfbg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91EBFB0/A3AB43B2F87C11E9AA2CF158C4F9AE02/zIUJ0x-2Oo3da_LT2Ex7wLK6P8A.crl rsync://rpki.apnic.net/member_repository/A91EBFB0/A3AB43B2F87C11E9AA2CF158C4F9AE02/zIUJ0x-2Oo3da_LT2Ex7wLK6P8A.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/zIUJ0x-2Oo3da_LT2Ex7wLK6P8A.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 19 Jun 2025 18:05:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3214 (0xc8e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91EBFB0, serialNumber=CC8509D31FB63A8DDD6BF2D3D84C7BC0B2BA3FC0 Validity Not Before: Jun 12 18:05:02 2025 GMT Not After : Jun 19 18:05:02 2025 GMT Subject: CN=684b16ce-6de1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9b:9e:05:fa:27:7f:72:ab:c1:6d:51:64:d5:fc: 90:f5:96:b2:ec:29:12:06:72:b8:49:1b:23:c1:be: e6:f0:e3:d6:8e:06:5c:43:1c:33:a8:bf:2a:15:04: 5b:aa:4e:0e:d2:1f:c2:4d:46:da:4c:a3:7f:45:6a: d8:ce:b3:ae:4e:4d:e1:d8:b6:cc:88:88:a4:f7:3d: 04:4d:95:3c:fe:43:4d:c6:44:22:32:ed:a3:00:4b: 19:54:79:cb:b5:54:9f:ab:21:99:8b:59:9c:eb:bd: 1f:0b:2b:5a:a9:56:a9:5b:14:45:c4:ee:b3:5f:ff: ed:c8:be:74:9e:4d:25:0a:45:b4:cd:34:5b:fd:e6: f6:f9:42:a0:fc:0c:1a:01:37:eb:31:36:43:18:dc: 4a:3a:9e:8b:15:71:e5:58:92:78:e2:7a:66:9c:fd: 9f:f8:e6:ef:92:de:77:32:3f:80:b9:b2:ee:d8:8d: 83:eb:ab:65:9f:f3:be:4f:38:6a:38:1f:6e:83:3f: c1:0b:53:75:27:69:8c:6c:10:81:1c:2b:92:7f:8e: cf:5a:aa:2d:7c:f5:9b:b0:d0:0d:90:39:d1:1f:9e: 82:a5:fa:1f:ae:47:3e:89:7c:2a:6b:6a:a1:3b:6e: 4d:f3:8b:f6:16:5b:05:81:d0:a8:94:e8:ee:7c:ea: 14:b7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B2:49:51:37:EB:A7:FF:EA:54:85:18:20:62:09:92:0E:21:BC:E0:C8 X509v3 Authority Key Identifier: keyid:CC:85:09:D3:1F:B6:3A:8D:DD:6B:F2:D3:D8:4C:7B:C0:B2:BA:3F:C0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91EBFB0/A3AB43B2F87C11E9AA2CF158C4F9AE02/zIUJ0x-2Oo3da_LT2Ex7wLK6P8A.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/zIUJ0x-2Oo3da_LT2Ex7wLK6P8A.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91EBFB0/A3AB43B2F87C11E9AA2CF158C4F9AE02/zIUJ0x-2Oo3da_LT2Ex7wLK6P8A.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 35:11:3c:51:81:3a:15:d3:09:f5:ea:c4:79:e0:09:a4:49:0e: 55:25:d6:db:30:75:5d:08:2c:87:a8:68:18:c1:bd:01:b8:5e: 9a:b1:95:85:03:17:73:70:74:4b:17:64:22:a2:c5:1c:3f:ba: 1b:85:d8:9b:9a:5c:1c:21:82:7d:22:b9:54:85:b0:12:3c:c8: f7:0f:51:a4:a1:3c:82:a8:21:9d:be:d0:37:95:db:2e:0a:d7: 80:c7:d8:42:a0:15:67:f2:d2:bc:b6:62:a3:9f:db:70:89:9b: e2:65:4f:06:f3:5c:0f:3c:75:5b:af:91:56:94:b9:f5:6e:73: 59:4b:1f:d5:31:31:0a:4a:03:49:a0:58:25:05:92:88:9f:96: 64:0d:45:87:02:ba:7d:d6:c8:74:cb:d7:4b:f3:a7:f9:b0:67: 22:6c:c9:59:75:8f:d2:f1:23:64:91:37:bf:5c:cb:d0:b6:cc: 16:29:23:63:bc:51:b2:fb:f0:a1:aa:43:5f:f6:5f:43:5c:05: da:df:65:ed:8e:35:03:4d:d5:27:89:da:09:d2:10:f9:95:53: eb:1b:6a:d8:19:2c:6e:1c:57:c7:2d:c8:5c:29:6f:1d:30:b9: cc:fc:01:e0:15:ee:b1:17:4e:74:e4:81:2a:57:22:9c:10:e0: 5d:6c:a9:83 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDI4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RUJGQjAxMTAvBgNVBAUTKENDODUwOUQzMUZCNjNBOERERDZCRjJEM0Q4NEM3QkMw QjJCQTNGQzAwHhcNMjUwNjEyMTgwNTAyWhcNMjUwNjE5MTgwNTAyWjAYMRYwFAYD VQQDEw02ODRiMTZjZS02ZGUxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAm54F+id/cqvBbVFk1fyQ9Zay7CkSBnK4SRsjwb7m8OPWjgZcQxwzqL8qFQRb qk4O0h/CTUbaTKN/RWrYzrOuTk3h2LbMiIik9z0ETZU8/kNNxkQiMu2jAEsZVHnL tVSfqyGZi1mc670fCytaqVapWxRFxO6zX//tyL50nk0lCkW0zTRb/eb2+UKg/Awa ATfrMTZDGNxKOp6LFXHlWJJ44npmnP2f+Obvkt53Mj+AubLu2I2D66tln/O+Tzhq OB9ugz/BC1N1J2mMbBCBHCuSf47PWqotfPWbsNANkDnRH56Cpfofrkc+iXwqa2qh O25N84v2FlsFgdColOjufOoUtwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFLJJUTfr p//qVIUYIGIJkg4hvODIMB8GA1UdIwQYMBaAFMyFCdMftjqN3Wvy09hMe8Cyuj/A MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFQkZCMC9BM0FCNDNCMkY4 N0MxMUU5QUEyQ0YxNThDNEY5QUUwMi96SVVKMHgtMk9vM2RhX0xUMkV4N3dMSzZQ OEEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3pJVUoweC0yT28zZGFfTFQyRXg3d0xLNlA4QS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF QkZCMC9BM0FCNDNCMkY4N0MxMUU5QUEyQ0YxNThDNEY5QUUwMi96SVVKMHgtMk9v M2RhX0xUMkV4N3dMSzZQOEEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA1ETxRgToV0wn16sR54AmkSQ5VJdbbMHVdCCyHqGgYwb0BuF6asZWF AxdzcHRLF2QiosUcP7obhdibmlwcIYJ9IrlUhbASPMj3D1GkoTyCqCGdvtA3ldsu CteAx9hCoBVn8tK8tmKjn9twiZviZU8G81wPPHVbr5FWlLn1bnNZSx/VMTEKSgNJ oFglBZKIn5ZkDUWHArp91sh0y9dL86f5sGcibMlZdY/S8SNkkTe/XMvQtswWKSNj vFGy+/ChqkNf9l9DXAXa32XtjjUDTdUnidoJ0hD5lVPrG2rYGSxuHFfHLchcKW8d MLnM/AHgFe6xF0505IEqVyKcEOBdbKmD -----END CERTIFICATE-----Generated at Sat Jun 14 17:45:36 2025 by rpki-client