$ rpki-client -vvf rpki.apnic.net/member_repository/A9127142/966185BA383C11EDB09F0214C4F9AE02/p-cZUtz7OVxCy9i8b1LwMpzHa2U.mft File: p-cZUtz7OVxCy9i8b1LwMpzHa2U.mft (raw, json) Hash identifier: AHen0ybc2ev3QrLVy4O/pIHVBj+3b0nX0R849hEyJYQ= Subject key identifier: 85:E0:FB:04:D6:4F:5F:4B:15:10:68:13:B3:46:7C:BC:FE:41:C1:52 Authority key identifier: A7:E7:19:52:DC:FB:39:5C:42:CB:D8:BC:6F:52:F0:32:9C:C7:6B:65 Certificate issuer: /CN=A9127142/serialNumber=A7E71952DCFB395C42CBD8BC6F52F0329CC76B65 Certificate serial: 0223 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/p-cZUtz7OVxCy9i8b1LwMpzHa2U.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9127142/966185BA383C11EDB09F0214C4F9AE02/p-cZUtz7OVxCy9i8b1LwMpzHa2U.mft Manifest number: 0217 Signing time: Sat 31 May 2025 02:11:30 +0000 Manifest this update: Sat 31 May 2025 02:11:29 +0000 Manifest next update: Sat 07 Jun 2025 02:11:29 +0000 Files and hashes: 1: p-cZUtz7OVxCy9i8b1LwMpzHa2U.crl (hash: rJNon91J9tTQ9BodmP1kPOypsbaFO0n32T7yDs6AO24=) 2: 3366A64616EE11F092BB8D27C4F9AE02.roa (hash: BqVy/ukdl/6/b56EtxQ8tAIR6Cjii/d5BEoVe0J+mjI=) 3: 2F902D58953E11EFA996495BC4F9AE02.roa (hash: 1g2p3b2YKG05onOBUGFQwxLWWfgUtvMtLCVSZMC3Z1k=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9127142/966185BA383C11EDB09F0214C4F9AE02/p-cZUtz7OVxCy9i8b1LwMpzHa2U.crl rsync://rpki.apnic.net/member_repository/A9127142/966185BA383C11EDB09F0214C4F9AE02/p-cZUtz7OVxCy9i8b1LwMpzHa2U.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/p-cZUtz7OVxCy9i8b1LwMpzHa2U.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 07 Jun 2025 02:11:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 547 (0x223) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9127142, serialNumber=A7E71952DCFB395C42CBD8BC6F52F0329CC76B65 Validity Not Before: May 31 02:11:29 2025 GMT Not After : Jun 7 02:11:29 2025 GMT Subject: CN=683a6552-f150 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e4:93:ab:2f:75:66:c9:b6:58:49:13:40:46:ee: 34:28:73:0f:29:8a:78:c9:2f:4a:29:82:13:ed:c9: e5:ba:74:e0:94:c2:26:ab:da:b9:94:48:15:d3:15: 6a:06:10:9c:e7:cc:e2:3f:0d:b6:f4:3a:1f:34:09: 02:66:7d:6f:cf:80:71:65:ad:be:2a:f9:ad:b1:fa: 93:cd:72:77:47:97:de:cf:1e:3d:e8:a8:70:58:70: c4:44:e5:a6:36:72:5c:9e:45:8c:df:a0:ef:34:be: e8:60:62:da:0f:80:95:eb:a7:ad:b6:de:86:9f:96: 3b:14:83:22:0f:b1:2d:e9:d9:53:8e:4b:4b:e2:60: be:5d:c3:40:25:24:fa:09:89:1d:22:2a:ed:28:42: d9:18:72:dc:9f:d3:71:e2:bc:03:8e:33:14:4e:18: dc:65:29:fa:ea:7d:48:97:a8:9e:39:30:5c:a4:79: 9f:f1:16:fc:62:1b:fe:02:4e:c7:e6:53:5c:05:e6: d9:7e:36:25:6a:f7:35:b2:a3:bf:a8:bf:9a:78:19: ff:cf:3f:3a:ca:7f:2f:35:9d:7d:44:d7:ef:4d:b0: 17:aa:f0:8b:cf:10:3f:59:61:12:c3:97:1e:f7:78: 8e:09:53:61:3f:bb:9e:d2:e6:1c:75:10:2b:d6:a1: 9e:fd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 85:E0:FB:04:D6:4F:5F:4B:15:10:68:13:B3:46:7C:BC:FE:41:C1:52 X509v3 Authority Key Identifier: keyid:A7:E7:19:52:DC:FB:39:5C:42:CB:D8:BC:6F:52:F0:32:9C:C7:6B:65 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9127142/966185BA383C11EDB09F0214C4F9AE02/p-cZUtz7OVxCy9i8b1LwMpzHa2U.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/p-cZUtz7OVxCy9i8b1LwMpzHa2U.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9127142/966185BA383C11EDB09F0214C4F9AE02/p-cZUtz7OVxCy9i8b1LwMpzHa2U.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 19:49:55:39:78:51:c0:7e:61:9d:9c:74:56:69:b5:97:09:99: fd:4b:84:85:71:35:ce:38:34:2a:14:7b:a8:72:b2:ee:b5:fb: 92:18:cf:5d:26:9f:35:77:0c:52:74:0b:4d:de:cf:37:ef:61: a5:7b:41:d7:53:e5:dd:d3:db:7a:7e:06:45:a2:53:e7:41:9c: 2f:85:26:b9:05:0e:f7:45:86:43:63:37:4b:0d:c5:4e:14:14: 21:34:6e:b6:10:90:93:37:12:3c:f1:16:2e:1a:aa:b3:f2:9b: ee:18:54:bc:59:dd:b1:aa:59:8e:a7:b7:f7:cf:0e:d9:15:90: bc:42:b3:82:d2:bb:27:7b:35:b9:27:42:4c:a5:49:66:7e:d6: 0e:8b:24:c6:c0:71:e4:8b:ff:e4:33:6d:5f:fd:08:45:b5:6e: 86:45:4c:56:fa:63:3e:d5:fd:24:57:ed:38:36:ab:ed:63:0f: fe:c0:2a:21:bc:89:97:d4:5a:be:34:ee:91:8b:e8:36:25:24: 5d:df:8e:54:4c:61:96:38:db:64:a9:a9:24:a2:9a:40:50:d7: 3d:8c:a3:24:72:6b:46:69:fa:88:da:26:23:cb:ff:5c:4e:06: 5f:04:9a:0a:0d:99:6e:88:c7:a3:5b:7b:c0:68:45:5d:10:61: 6f:ba:3c:9f -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAiMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MjcxNDIxMTAvBgNVBAUTKEE3RTcxOTUyRENGQjM5NUM0MkNCRDhCQzZGNTJGMDMy OUNDNzZCNjUwHhcNMjUwNTMxMDIxMTI5WhcNMjUwNjA3MDIxMTI5WjAYMRYwFAYD VQQDEw02ODNhNjU1Mi1mMTUwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA5JOrL3VmybZYSRNARu40KHMPKYp4yS9KKYIT7cnlunTglMImq9q5lEgV0xVq BhCc58ziPw229DofNAkCZn1vz4BxZa2+KvmtsfqTzXJ3R5fezx496KhwWHDEROWm NnJcnkWM36DvNL7oYGLaD4CV66ettt6Gn5Y7FIMiD7Et6dlTjktL4mC+XcNAJST6 CYkdIirtKELZGHLcn9Nx4rwDjjMUThjcZSn66n1Il6ieOTBcpHmf8Rb8Yhv+Ak7H 5lNcBebZfjYlavc1sqO/qL+aeBn/zz86yn8vNZ19RNfvTbAXqvCLzxA/WWESw5ce 93iOCVNhP7ue0uYcdRAr1qGe/QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFIXg+wTW T19LFRBoE7NGfLz+QcFSMB8GA1UdIwQYMBaAFKfnGVLc+zlcQsvYvG9S8DKcx2tl MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyNzE0Mi85NjYxODVCQTM4 M0MxMUVEQjA5RjAyMTRDNEY5QUUwMi9wLWNaVXR6N09WeEN5OWk4YjFMd01wekhh MlUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3AtY1pVdHo3T1Z4Q3k5aThiMUx3TXB6SGEyVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy NzE0Mi85NjYxODVCQTM4M0MxMUVEQjA5RjAyMTRDNEY5QUUwMi9wLWNaVXR6N09W eEN5OWk4YjFMd01wekhhMlUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAZSVU5eFHAfmGdnHRWabWXCZn9S4SFcTXOODQqFHuocrLutfuSGM9d Jp81dwxSdAtN3s8372Gle0HXU+Xd09t6fgZFolPnQZwvhSa5BQ73RYZDYzdLDcVO FBQhNG62EJCTNxI88RYuGqqz8pvuGFS8Wd2xqlmOp7f3zw7ZFZC8QrOC0rsnezW5 J0JMpUlmftYOiyTGwHHki//kM21f/QhFtW6GRUxW+mM+1f0kV+04NqvtYw/+wCoh vImX1Fq+NO6Ri+g2JSRd345UTGGWONtkqakkoppAUNc9jKMkcmtGafqI2iYjy/9c TgZfBJoKDZluiMejW3vAaEVdEGFvujyf -----END CERTIFICATE-----Generated at Sat May 31 16:40:40 2025 by rpki-client