$ rpki-client -vvf rpki.apnic.net/member_repository/A9128E00/8991EB9EE02011E982B37A3AC4F9AE02/z-PzHk8zetOBIBvzOgGmhfsBal4.mft File: z-PzHk8zetOBIBvzOgGmhfsBal4.mft (raw, json) Hash identifier: 6jVrQeSdWgZALK91K1cpVObXnYB0rBSQ4EbqUeXQ88c= Subject key identifier: EF:01:33:43:2E:1D:96:68:C8:E4:E7:8D:76:3A:C2:AD:46:87:CD:D4 Authority key identifier: CF:E3:F3:1E:4F:33:7A:D3:81:20:1B:F3:3A:01:A6:85:FB:01:6A:5E Certificate issuer: /CN=A9128E00/serialNumber=CFE3F31E4F337AD381201BF33A01A685FB016A5E Certificate serial: 0D0A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/z-PzHk8zetOBIBvzOgGmhfsBal4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9128E00/8991EB9EE02011E982B37A3AC4F9AE02/z-PzHk8zetOBIBvzOgGmhfsBal4.mft Manifest number: 0D02 Signing time: Fri 30 May 2025 18:16:24 +0000 Manifest this update: Fri 30 May 2025 18:16:23 +0000 Manifest next update: Fri 06 Jun 2025 18:16:23 +0000 Files and hashes: 1: z-PzHk8zetOBIBvzOgGmhfsBal4.crl (hash: DS+7YyuWkSvO+hUmeiveNyxV9taCT/R4erYT9k9d8Wk=) 2: D23C5270E02111E9B4A3923FC4F9AE02.roa (hash: zkAhSZ57x5i2z1ecY4hViVs+riusX3XK2gSVsFUEBsM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9128E00/8991EB9EE02011E982B37A3AC4F9AE02/z-PzHk8zetOBIBvzOgGmhfsBal4.crl rsync://rpki.apnic.net/member_repository/A9128E00/8991EB9EE02011E982B37A3AC4F9AE02/z-PzHk8zetOBIBvzOgGmhfsBal4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/z-PzHk8zetOBIBvzOgGmhfsBal4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 06 Jun 2025 18:16:22 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3338 (0xd0a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9128E00, serialNumber=CFE3F31E4F337AD381201BF33A01A685FB016A5E Validity Not Before: May 30 18:16:23 2025 GMT Not After : Jun 6 18:16:23 2025 GMT Subject: CN=6839f5f8-0234 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:99:d6:f5:82:e0:3d:93:cd:22:53:b3:55:b1:bf: bd:18:30:eb:7d:d0:dc:33:a7:a1:a0:c2:b5:f2:af: 95:14:ae:9a:92:a9:48:e1:b6:54:39:b0:1e:92:84: bb:5f:06:68:90:31:65:10:0c:fd:94:79:3f:78:69: 0b:21:97:94:4a:27:4d:91:39:7d:aa:b0:c0:e1:00: a4:03:86:3c:34:86:74:66:b0:f9:8a:e5:18:34:f8: b2:4b:b1:0d:53:98:d1:8e:d0:1e:18:4e:e1:2b:10: 73:aa:9d:89:5a:7c:4f:9d:3f:f4:7b:f6:fb:62:74: 57:74:d9:a0:c9:85:9a:88:e8:e3:c1:0f:cf:b3:16: 4f:17:69:2d:1c:b4:25:ba:26:fd:cb:fd:88:ec:9b: 2b:ed:05:d7:65:fc:59:12:c3:3b:60:98:fe:a8:33: f4:28:0d:3e:74:79:e7:3c:c8:8e:98:6c:d9:09:f8: 2b:23:4f:68:bb:55:54:4c:c1:fb:c6:93:96:35:05: da:b8:4a:26:07:ff:37:a1:dd:5c:86:e3:ac:b6:a8: 1b:6d:da:ba:a4:be:04:b4:68:3a:e8:ad:55:c3:2b: 4c:4b:10:0e:5d:09:77:aa:a6:50:5e:1a:06:b7:42: ef:b3:2e:32:6c:9b:92:4b:54:46:10:68:fc:0c:ea: 46:cb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EF:01:33:43:2E:1D:96:68:C8:E4:E7:8D:76:3A:C2:AD:46:87:CD:D4 X509v3 Authority Key Identifier: keyid:CF:E3:F3:1E:4F:33:7A:D3:81:20:1B:F3:3A:01:A6:85:FB:01:6A:5E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9128E00/8991EB9EE02011E982B37A3AC4F9AE02/z-PzHk8zetOBIBvzOgGmhfsBal4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/z-PzHk8zetOBIBvzOgGmhfsBal4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9128E00/8991EB9EE02011E982B37A3AC4F9AE02/z-PzHk8zetOBIBvzOgGmhfsBal4.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 12:eb:bc:c8:c1:4a:fe:48:a1:bd:c4:94:78:44:17:99:10:4c: cc:8c:55:47:97:6e:35:b8:94:85:84:22:18:73:8f:31:2a:45: 05:0b:55:fd:a0:a4:54:49:7f:45:c1:2a:2f:7d:e9:1a:89:66: 34:5e:8e:0e:88:a1:b1:44:af:78:52:62:bc:0e:fb:6b:d5:73: 9c:56:e5:97:29:64:f3:fb:ab:e9:5a:25:ca:d9:fa:0c:9a:0e: de:aa:90:6e:d6:8e:42:3a:95:9c:d4:35:24:95:da:ff:aa:e5: f0:ec:35:50:d8:82:3f:4e:d4:1c:33:d4:e3:df:66:5b:77:0d: 02:4b:01:90:b3:b2:e3:be:5f:01:3d:66:cc:c7:06:ae:af:1d: 17:74:c9:c6:9a:4a:9a:07:30:91:3b:7b:12:b4:d6:94:f3:20: 71:a0:36:b1:2c:ba:41:da:78:fb:06:91:f5:24:e4:74:60:c1: 81:a6:90:0d:73:63:e4:5e:7c:e0:10:18:69:ae:fa:54:4a:6b: f0:64:8c:b9:af:42:65:f6:a2:08:d0:60:da:90:5f:75:ff:88: 2a:33:42:4b:8b:27:2b:42:fc:e4:96:54:f6:ca:0c:41:44:30: 5c:a8:b2:9f:b6:ad:80:5d:bb:0b:d8:a6:31:6e:38:c4:5b:c4: dd:2c:0c:29 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDQowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MjhFMDAxMTAvBgNVBAUTKENGRTNGMzFFNEYzMzdBRDM4MTIwMUJGMzNBMDFBNjg1 RkIwMTZBNUUwHhcNMjUwNTMwMTgxNjIzWhcNMjUwNjA2MTgxNjIzWjAYMRYwFAYD VQQDEw02ODM5ZjVmOC0wMjM0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAmdb1guA9k80iU7NVsb+9GDDrfdDcM6ehoMK18q+VFK6akqlI4bZUObAekoS7 XwZokDFlEAz9lHk/eGkLIZeUSidNkTl9qrDA4QCkA4Y8NIZ0ZrD5iuUYNPiyS7EN U5jRjtAeGE7hKxBzqp2JWnxPnT/0e/b7YnRXdNmgyYWaiOjjwQ/PsxZPF2ktHLQl uib9y/2I7Jsr7QXXZfxZEsM7YJj+qDP0KA0+dHnnPMiOmGzZCfgrI09ou1VUTMH7 xpOWNQXauEomB/83od1chuOstqgbbdq6pL4EtGg66K1VwytMSxAOXQl3qqZQXhoG t0Lvsy4ybJuSS1RGEGj8DOpGywIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFO8BM0Mu HZZoyOTnjXY6wq1Gh83UMB8GA1UdIwQYMBaAFM/j8x5PM3rTgSAb8zoBpoX7AWpe MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyOEUwMC84OTkxRUI5RUUw MjAxMUU5ODJCMzdBM0FDNEY5QUUwMi96LVB6SGs4emV0T0JJQnZ6T2dHbWhmc0Jh bDQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3otUHpIazh6ZXRPQklCdnpPZ0dtaGZzQmFsNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy OEUwMC84OTkxRUI5RUUwMjAxMUU5ODJCMzdBM0FDNEY5QUUwMi96LVB6SGs4emV0 T0JJQnZ6T2dHbWhmc0JhbDQubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAS67zIwUr+SKG9xJR4RBeZEEzMjFVHl241uJSFhCIYc48xKkUFC1X9 oKRUSX9FwSovfekaiWY0Xo4OiKGxRK94UmK8Dvtr1XOcVuWXKWTz+6vpWiXK2foM mg7eqpBu1o5COpWc1DUkldr/quXw7DVQ2II/TtQcM9Tj32Zbdw0CSwGQs7Ljvl8B PWbMxwaurx0XdMnGmkqaBzCRO3sStNaU8yBxoDaxLLpB2nj7BpH1JOR0YMGBppAN c2PkXnzgEBhprvpUSmvwZIy5r0Jl9qII0GDakF91/4gqM0JLiycrQvzkllT2ygxB RDBcqLKftq2AXbsL2KYxbjjEW8TdLAwp -----END CERTIFICATE-----Generated at Sat May 31 17:45:03 2025 by rpki-client