$ rpki-client -vvf rpki.apnic.net/member_repository/A9111A27/662518BE6E3411EA841D426EC4F9AE02/zPWB9MM8pEQeGAfjlsXv51-oLdA.mft File: zPWB9MM8pEQeGAfjlsXv51-oLdA.mft (raw, json) Hash identifier: OoDh0V/sC2VVNPLgDb+dlBfS58SHFU7Fvl+HtlZ4Dtg= Subject key identifier: FD:A8:D7:00:AE:1B:AE:FB:5F:82:38:C0:1C:AC:BE:1E:42:BB:B0:2F Authority key identifier: CC:F5:81:F4:C3:3C:A4:44:1E:18:07:E3:96:C5:EF:E7:5F:A8:2D:D0 Certificate issuer: /CN=A9111A27/serialNumber=CCF581F4C33CA4441E1807E396C5EFE75FA82DD0 Certificate serial: 0A37 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/zPWB9MM8pEQeGAfjlsXv51-oLdA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9111A27/662518BE6E3411EA841D426EC4F9AE02/zPWB9MM8pEQeGAfjlsXv51-oLdA.mft Manifest number: 0A2D Signing time: Fri 30 May 2025 19:57:54 +0000 Manifest this update: Fri 30 May 2025 19:57:54 +0000 Manifest next update: Fri 06 Jun 2025 19:57:54 +0000 Files and hashes: 1: zPWB9MM8pEQeGAfjlsXv51-oLdA.crl (hash: tVbabkUFdCgt+Wf6Wgbr0Ll+jzTnDEK7Hnu0yi++7co=) 2: EECBCEBE6E3511EABDE26D73C4F9AE02.roa (hash: LPVTnB/0GHrJCLpXZVzzn+Fi+J75+p11hdRea2Hs9CM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9111A27/662518BE6E3411EA841D426EC4F9AE02/zPWB9MM8pEQeGAfjlsXv51-oLdA.crl rsync://rpki.apnic.net/member_repository/A9111A27/662518BE6E3411EA841D426EC4F9AE02/zPWB9MM8pEQeGAfjlsXv51-oLdA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/zPWB9MM8pEQeGAfjlsXv51-oLdA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 06 Jun 2025 19:57:53 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2615 (0xa37) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9111A27, serialNumber=CCF581F4C33CA4441E1807E396C5EFE75FA82DD0 Validity Not Before: May 30 19:57:54 2025 GMT Not After : Jun 6 19:57:54 2025 GMT Subject: CN=683a0dc2-27cf Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:01:00:26:9b:6f:ef:be:2f:81:80:23:6c:d1: 9c:a0:9a:35:d6:35:a0:c9:e6:84:a8:00:dc:e9:13: f9:87:50:1a:99:56:49:4a:54:7e:a7:32:f8:ff:c3: 7a:1a:60:d4:1d:b8:15:bb:22:1b:5d:33:a3:bf:38: 73:53:ee:9a:a5:f1:86:c6:03:41:d3:8d:21:bf:ad: 01:7b:4c:d5:63:ac:af:fd:e3:57:f5:e9:96:e5:5e: 84:29:0f:a2:ea:19:a0:3d:38:ad:fd:c4:46:f9:71: 9b:70:05:74:13:67:ba:3f:d8:6b:16:e1:23:18:8f: 26:17:c6:de:b0:63:08:83:19:3c:8a:27:76:fc:a7: 96:fa:31:4c:f2:d1:eb:82:e7:41:5f:50:84:f6:ee: e1:0b:52:7a:44:49:66:c4:cf:ed:79:f3:38:9c:a0: f0:20:fd:6b:78:f0:c3:14:d6:cd:d9:b2:bb:c2:67: 27:f4:be:d9:d5:45:65:dc:b7:15:e7:cb:8d:57:4c: a2:68:9e:76:50:c2:0c:0f:3c:ab:b5:d6:d6:c3:f0: db:78:47:7d:2b:37:02:2b:3a:1a:ae:66:aa:f1:a8: c2:07:d6:8f:15:02:85:36:d7:0c:cc:89:b3:f0:12: eb:49:c1:91:7b:0b:15:13:a1:07:6d:57:2c:05:16: 81:3b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FD:A8:D7:00:AE:1B:AE:FB:5F:82:38:C0:1C:AC:BE:1E:42:BB:B0:2F X509v3 Authority Key Identifier: keyid:CC:F5:81:F4:C3:3C:A4:44:1E:18:07:E3:96:C5:EF:E7:5F:A8:2D:D0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9111A27/662518BE6E3411EA841D426EC4F9AE02/zPWB9MM8pEQeGAfjlsXv51-oLdA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/zPWB9MM8pEQeGAfjlsXv51-oLdA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9111A27/662518BE6E3411EA841D426EC4F9AE02/zPWB9MM8pEQeGAfjlsXv51-oLdA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 7d:e0:0e:a9:a4:d3:59:b1:01:03:fa:eb:19:f0:50:2c:0c:5d: 78:d0:c7:a8:80:82:f6:25:45:88:d7:a6:0e:80:35:bb:74:fe: d6:30:ef:50:be:2d:40:58:f3:3a:c1:9d:34:77:cd:56:f4:c2: 75:57:6f:c7:40:ff:d0:34:19:d3:53:f5:af:84:7a:0b:5f:6e: 5d:e6:47:f4:74:63:5e:75:91:77:0d:ae:55:4f:ad:fc:94:6e: 81:11:5b:67:c9:77:a6:b4:00:05:14:c0:a1:c8:51:7f:6a:84: fb:3a:0f:7f:71:fc:25:28:68:37:0f:4c:48:2d:3d:3f:2f:27: a8:5e:e4:86:a3:e2:a5:61:94:74:d5:8f:b9:ac:05:fc:1b:26: 81:07:2a:86:ad:db:d4:e8:eb:ab:a5:97:91:9d:8b:37:7a:75: d8:78:6c:50:be:80:a7:6e:bc:8c:02:51:ed:72:7f:92:4a:a2: 98:7b:a5:c4:93:9f:f0:c0:35:c9:e3:46:53:b6:8b:a5:3b:17: 0d:0b:23:91:06:9f:3a:1f:6f:9c:46:b8:08:1d:a9:bb:8e:60: f8:95:a5:bf:db:6c:c1:a9:db:6f:ec:32:36:af:4f:86:39:21: ac:a7:70:62:5c:4c:91:7c:55:de:f1:75:ae:54:e9:b3:4f:ae: 8e:04:59:d1 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCjcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MTFBMjcxMTAvBgNVBAUTKENDRjU4MUY0QzMzQ0E0NDQxRTE4MDdFMzk2QzVFRkU3 NUZBODJERDAwHhcNMjUwNTMwMTk1NzU0WhcNMjUwNjA2MTk1NzU0WjAYMRYwFAYD VQQDEw02ODNhMGRjMi0yN2NmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvgEAJptv774vgYAjbNGcoJo11jWgyeaEqADc6RP5h1AamVZJSlR+pzL4/8N6 GmDUHbgVuyIbXTOjvzhzU+6apfGGxgNB040hv60Be0zVY6yv/eNX9emW5V6EKQ+i 6hmgPTit/cRG+XGbcAV0E2e6P9hrFuEjGI8mF8besGMIgxk8iid2/KeW+jFM8tHr gudBX1CE9u7hC1J6RElmxM/tefM4nKDwIP1rePDDFNbN2bK7wmcn9L7Z1UVl3LcV 58uNV0yiaJ52UMIMDzyrtdbWw/DbeEd9KzcCKzoarmaq8ajCB9aPFQKFNtcMzImz 8BLrScGRewsVE6EHbVcsBRaBOwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFP2o1wCu G677X4I4wBysvh5Cu7AvMB8GA1UdIwQYMBaAFMz1gfTDPKREHhgH45bF7+dfqC3Q MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExMUEyNy82NjI1MThCRTZF MzQxMUVBODQxRDQyNkVDNEY5QUUwMi96UFdCOU1NOHBFUWVHQWZqbHNYdjUxLW9M ZEEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3pQV0I5TU04cEVRZUdBZmpsc1h2NTEtb0xkQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx MUEyNy82NjI1MThCRTZFMzQxMUVBODQxRDQyNkVDNEY5QUUwMi96UFdCOU1NOHBF UWVHQWZqbHNYdjUxLW9MZEEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB94A6ppNNZsQED+usZ8FAsDF140MeogIL2JUWI16YOgDW7dP7WMO9Q vi1AWPM6wZ00d81W9MJ1V2/HQP/QNBnTU/WvhHoLX25d5kf0dGNedZF3Da5VT638 lG6BEVtnyXemtAAFFMChyFF/aoT7Og9/cfwlKGg3D0xILT0/LyeoXuSGo+KlYZR0 1Y+5rAX8GyaBByqGrdvU6OurpZeRnYs3enXYeGxQvoCnbryMAlHtcn+SSqKYe6XE k5/wwDXJ40ZTtoulOxcNCyORBp86H2+cRrgIHam7jmD4laW/22zBqdtv7DI2r0+G OSGsp3BiXEyRfFXe8XWuVOmzT66OBFnR -----END CERTIFICATE-----Generated at Sat May 31 17:39:12 2025 by rpki-client