$ rpki-client -vvf rpki.apnic.net/member_repository/A91EBFB0/A3AB43B2F87C11E9AA2CF158C4F9AE02/zIUJ0x-2Oo3da_LT2Ex7wLK6P8A.mft File: zIUJ0x-2Oo3da_LT2Ex7wLK6P8A.mft (raw, json) Hash identifier: lZRMXlVIAcnsl7heomdGnFpKnLadaGsKm/55kGR4OOM= Subject key identifier: A4:88:04:5B:B0:A5:F8:C7:9F:16:55:86:2C:0E:35:F3:C4:B8:6D:DB Authority key identifier: CC:85:09:D3:1F:B6:3A:8D:DD:6B:F2:D3:D8:4C:7B:C0:B2:BA:3F:C0 Certificate issuer: /CN=A91EBFB0/serialNumber=CC8509D31FB63A8DDD6BF2D3D84C7BC0B2BA3FC0 Certificate serial: 0C75 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/zIUJ0x-2Oo3da_LT2Ex7wLK6P8A.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91EBFB0/A3AB43B2F87C11E9AA2CF158C4F9AE02/zIUJ0x-2Oo3da_LT2Ex7wLK6P8A.mft Manifest number: 0C6F Signing time: Thu 24 Apr 2025 18:13:10 +0000 Manifest this update: Thu 24 Apr 2025 18:13:10 +0000 Manifest next update: Thu 01 May 2025 18:13:10 +0000 Files and hashes: 1: zIUJ0x-2Oo3da_LT2Ex7wLK6P8A.crl (hash: 5xgJhkqeaYrcnES2ko8SDLtVuAUWDOOqfiuUvB0nNtA=) 2: F690CAECF87D11E9A746D05BC4F9AE02.roa (hash: tPAGXaSYisbjEXVlWGxE30ABgdsZwLOrekyu2J6vfbg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91EBFB0/A3AB43B2F87C11E9AA2CF158C4F9AE02/zIUJ0x-2Oo3da_LT2Ex7wLK6P8A.crl rsync://rpki.apnic.net/member_repository/A91EBFB0/A3AB43B2F87C11E9AA2CF158C4F9AE02/zIUJ0x-2Oo3da_LT2Ex7wLK6P8A.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/zIUJ0x-2Oo3da_LT2Ex7wLK6P8A.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 01 May 2025 18:13:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3189 (0xc75) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91EBFB0, serialNumber=CC8509D31FB63A8DDD6BF2D3D84C7BC0B2BA3FC0 Validity Not Before: Apr 24 18:13:10 2025 GMT Not After : May 1 18:13:10 2025 GMT Subject: CN=680a7f36-aa6f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cf:09:c8:07:a2:20:13:95:8a:1f:68:e3:53:e4: dd:7d:88:0b:cb:58:d4:fa:7c:27:81:44:a4:16:3c: e2:3c:2e:74:64:68:33:e1:4f:0d:e2:25:2c:1a:2d: 40:da:24:0f:b4:34:35:b7:de:2f:f8:ff:cf:a3:09: e3:82:be:5c:77:97:a9:03:5f:41:ff:40:60:fe:a4: 57:2d:6f:71:3d:c4:d6:83:4c:fd:bd:5b:5c:56:7e: 78:8c:91:40:60:1a:9d:fa:6a:5b:9c:c4:57:e8:27: 9e:3b:91:d6:f3:75:24:cc:9f:e1:97:5d:a7:82:d8: 33:33:ef:aa:02:a0:c6:ad:6e:89:93:e7:42:2a:20: c9:19:17:89:d5:b0:22:9b:39:d5:21:79:68:e8:17: 10:a2:2f:04:b5:83:11:6d:3e:fa:4a:50:2c:78:e9: 0f:f3:8f:e6:cc:4f:75:87:8e:32:ea:59:c5:cd:6d: 89:f5:a5:8a:76:e4:ac:75:c3:2b:fc:8d:34:f8:82: cd:df:49:0d:e5:56:b2:99:fd:dd:01:d1:4a:96:05: 48:8d:f1:89:c5:cf:b0:ef:f0:3f:bc:49:16:fa:8c: 56:91:6b:49:78:b0:7a:36:5f:c1:5b:61:92:5b:be: 4f:b5:6d:14:e3:31:07:79:e2:4d:3a:37:23:1a:e4: 32:dd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A4:88:04:5B:B0:A5:F8:C7:9F:16:55:86:2C:0E:35:F3:C4:B8:6D:DB X509v3 Authority Key Identifier: keyid:CC:85:09:D3:1F:B6:3A:8D:DD:6B:F2:D3:D8:4C:7B:C0:B2:BA:3F:C0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91EBFB0/A3AB43B2F87C11E9AA2CF158C4F9AE02/zIUJ0x-2Oo3da_LT2Ex7wLK6P8A.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/zIUJ0x-2Oo3da_LT2Ex7wLK6P8A.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91EBFB0/A3AB43B2F87C11E9AA2CF158C4F9AE02/zIUJ0x-2Oo3da_LT2Ex7wLK6P8A.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 33:68:6b:0c:b5:0d:0f:cd:a1:7c:de:70:04:a8:b7:70:a0:8a: 93:72:a4:22:d9:d8:bc:f9:13:d5:05:fe:11:96:05:80:d9:0f: 1d:d8:04:25:e7:b9:75:52:77:01:78:4b:a8:c5:b2:bb:47:a3: 0f:18:18:2c:0f:8b:f6:8a:0f:c2:e3:41:f4:a5:09:46:a9:dc: 03:13:d1:82:fb:8e:70:fa:7e:89:55:e9:46:2f:bd:4b:3a:98: bb:60:86:2e:5f:ff:be:6c:ca:9b:db:ca:e2:8e:17:03:40:39: ff:f3:4f:92:b7:77:7c:62:f6:5f:95:3d:3a:9f:35:bb:8b:83: 58:20:99:af:11:4e:62:39:5a:af:91:92:fb:24:58:68:29:5a: ab:22:3e:57:e9:27:cf:5e:b1:26:66:ab:48:f8:f8:55:02:05: 0b:21:6e:4e:3f:3f:e6:33:ef:23:58:c3:0b:0e:a6:9e:15:f6: 40:b4:01:ec:ed:ca:be:c9:08:4c:c9:a5:e9:ae:dc:ad:9a:39: 79:95:da:07:cd:b4:75:8c:b2:78:9f:00:ab:12:9f:e1:34:67: 3a:20:4c:5a:9b:dc:44:ce:af:16:b9:b0:5d:c1:7b:5e:c1:e5: 81:89:a0:fd:54:9a:3d:9f:3c:0a:f1:5d:3d:9f:24:78:02:96: 7a:1e:3a:93 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDHUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RUJGQjAxMTAvBgNVBAUTKENDODUwOUQzMUZCNjNBOERERDZCRjJEM0Q4NEM3QkMw QjJCQTNGQzAwHhcNMjUwNDI0MTgxMzEwWhcNMjUwNTAxMTgxMzEwWjAYMRYwFAYD VQQDEw02ODBhN2YzNi1hYTZmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzwnIB6IgE5WKH2jjU+TdfYgLy1jU+nwngUSkFjziPC50ZGgz4U8N4iUsGi1A 2iQPtDQ1t94v+P/Pownjgr5cd5epA19B/0Bg/qRXLW9xPcTWg0z9vVtcVn54jJFA YBqd+mpbnMRX6CeeO5HW83UkzJ/hl12ngtgzM++qAqDGrW6Jk+dCKiDJGReJ1bAi mznVIXlo6BcQoi8EtYMRbT76SlAseOkP84/mzE91h44y6lnFzW2J9aWKduSsdcMr /I00+ILN30kN5Vaymf3dAdFKlgVIjfGJxc+w7/A/vEkW+oxWkWtJeLB6Nl/BW2GS W75PtW0U4zEHeeJNOjcjGuQy3QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFKSIBFuw pfjHnxZVhiwONfPEuG3bMB8GA1UdIwQYMBaAFMyFCdMftjqN3Wvy09hMe8Cyuj/A MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFQkZCMC9BM0FCNDNCMkY4 N0MxMUU5QUEyQ0YxNThDNEY5QUUwMi96SVVKMHgtMk9vM2RhX0xUMkV4N3dMSzZQ OEEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3pJVUoweC0yT28zZGFfTFQyRXg3d0xLNlA4QS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF QkZCMC9BM0FCNDNCMkY4N0MxMUU5QUEyQ0YxNThDNEY5QUUwMi96SVVKMHgtMk9v M2RhX0xUMkV4N3dMSzZQOEEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAzaGsMtQ0PzaF83nAEqLdwoIqTcqQi2di8+RPVBf4RlgWA2Q8d2AQl 57l1UncBeEuoxbK7R6MPGBgsD4v2ig/C40H0pQlGqdwDE9GC+45w+n6JVelGL71L Opi7YIYuX/++bMqb28rijhcDQDn/80+St3d8YvZflT06nzW7i4NYIJmvEU5iOVqv kZL7JFhoKVqrIj5X6SfPXrEmZqtI+PhVAgULIW5OPz/mM+8jWMMLDqaeFfZAtAHs 7cq+yQhMyaXprtytmjl5ldoHzbR1jLJ4nwCrEp/hNGc6IExam9xEzq8WubBdwXte weWBiaD9VJo9nzwK8V09nyR4ApZ6HjqT -----END CERTIFICATE-----Generated at Sat Apr 26 04:21:50 2025 by rpki-client