$ rpki-client -vvf rpki.apnic.net/member_repository/A914D249/76CE8456E02511ECB2FB0E27C4F9AE02/zQysDn6E4-geSHYXTiwhQIUJQmk.mft File: zQysDn6E4-geSHYXTiwhQIUJQmk.mft (raw, json) Hash identifier: M3U+EiLywL6TGTRafgvFh34Yc2/B1Cb8Atq62K2Y5l8= Subject key identifier: 82:2F:32:5D:42:64:D0:F6:39:87:BC:E3:95:26:82:72:D9:8A:7C:5E Authority key identifier: CD:0C:AC:0E:7E:84:E3:E8:1E:48:76:17:4E:2C:21:40:85:09:42:69 Certificate issuer: /CN=A914D249/serialNumber=CD0CAC0E7E84E3E81E4876174E2C214085094269 Certificate serial: 0309 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/zQysDn6E4-geSHYXTiwhQIUJQmk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914D249/76CE8456E02511ECB2FB0E27C4F9AE02/zQysDn6E4-geSHYXTiwhQIUJQmk.mft Manifest number: 02FE Signing time: Sat 31 May 2025 01:30:01 +0000 Manifest this update: Sat 31 May 2025 01:30:01 +0000 Manifest next update: Sat 07 Jun 2025 01:30:01 +0000 Files and hashes: 1: zQysDn6E4-geSHYXTiwhQIUJQmk.crl (hash: b+ItSgZkgdCmhvn3BBQ8akSgB6jC+KlOAvW2p93gnhI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914D249/76CE8456E02511ECB2FB0E27C4F9AE02/zQysDn6E4-geSHYXTiwhQIUJQmk.crl rsync://rpki.apnic.net/member_repository/A914D249/76CE8456E02511ECB2FB0E27C4F9AE02/zQysDn6E4-geSHYXTiwhQIUJQmk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/zQysDn6E4-geSHYXTiwhQIUJQmk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 07 Jun 2025 01:30:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 777 (0x309) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914D249, serialNumber=CD0CAC0E7E84E3E81E4876174E2C214085094269 Validity Not Before: May 31 01:30:01 2025 GMT Not After : Jun 7 01:30:01 2025 GMT Subject: CN=683a5b99-2f7a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c9:90:2b:7f:6f:4a:24:5d:82:0c:10:02:1c:55: f5:34:81:dd:1d:22:59:8c:c3:42:85:4a:ee:57:61: 6f:fd:a7:86:4d:d0:84:3e:75:f9:ad:79:59:67:93: b8:b7:0f:72:fd:e8:28:a2:cf:1a:1d:94:f0:70:87: 0b:e5:46:52:b1:ab:7e:2a:93:e2:4e:bb:aa:61:2a: ac:fd:d8:70:05:cf:d4:4f:8c:d9:2b:83:d7:db:a2: ac:5e:cb:ae:f7:2e:11:25:8f:ea:b6:3d:97:c3:7c: c6:ae:66:92:92:b8:95:dc:f5:8d:d3:a7:0d:49:52: 03:df:a1:66:4a:5c:d0:e4:f6:b6:05:a1:2b:4d:e6: a1:72:41:c9:e2:68:f1:59:fa:c2:54:c5:56:5e:b4: 93:47:6c:2b:d9:b3:6a:35:9f:a5:87:6a:29:6b:04: 10:25:f8:ff:fc:7a:13:9a:fd:3b:5f:18:00:47:b9: 6d:69:fa:33:08:2b:ef:e7:e4:81:55:20:0a:1b:4a: 09:bb:ec:49:ec:5d:58:bc:9c:c8:6a:6d:eb:bd:79: 92:f3:bd:af:b5:a9:8e:04:f1:3f:24:02:54:6e:b7: 3d:37:27:87:60:23:ab:d2:8a:56:d4:f7:69:6f:96: c2:e8:03:52:38:7a:5b:db:f6:13:bf:b1:5f:4b:9e: 29:cf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 82:2F:32:5D:42:64:D0:F6:39:87:BC:E3:95:26:82:72:D9:8A:7C:5E X509v3 Authority Key Identifier: keyid:CD:0C:AC:0E:7E:84:E3:E8:1E:48:76:17:4E:2C:21:40:85:09:42:69 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914D249/76CE8456E02511ECB2FB0E27C4F9AE02/zQysDn6E4-geSHYXTiwhQIUJQmk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/zQysDn6E4-geSHYXTiwhQIUJQmk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914D249/76CE8456E02511ECB2FB0E27C4F9AE02/zQysDn6E4-geSHYXTiwhQIUJQmk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 13:85:1e:7d:2c:72:d2:97:e4:71:a6:2b:19:57:ca:10:7f:76: 0d:63:64:21:83:ae:35:d4:fa:d3:ed:85:b2:10:ba:03:06:83: 4e:4a:72:a1:87:16:2e:9a:8e:7d:e2:c0:ee:95:d2:73:af:84: 4a:38:12:98:2b:96:2f:96:b9:b0:70:93:bf:9f:e3:f8:18:84: 36:fe:03:3f:da:b2:55:10:0f:cd:c4:99:4f:d0:64:f4:b6:31: 47:36:26:34:86:79:08:bf:25:d9:de:15:e1:01:03:5d:0f:ea: 30:0d:7e:a2:88:a8:4c:26:a0:f3:b3:e8:dd:24:ef:3a:21:83: 3e:38:02:29:46:e9:97:37:4f:72:20:b8:49:49:dd:60:63:ea: 03:9e:d5:53:d6:64:25:74:88:6a:00:c4:be:e3:54:2e:75:cf: b0:1a:3a:65:ba:a1:b3:85:d2:6f:d1:b4:cb:31:87:f8:d4:56: 09:0c:d8:ad:67:f8:35:2c:69:03:f7:fd:25:cd:41:e2:6e:1c: 7f:fb:31:25:43:23:2e:cb:50:75:af:97:97:74:c2:5b:37:d3: 9f:84:6e:80:a3:bf:2f:cc:ef:81:d9:be:78:79:d1:30:64:84: a8:3d:8b:e5:7e:0c:8b:a5:31:a9:07:18:3d:a7:1b:a3:f7:fb: 70:cd:d6:14 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAwkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NEQyNDkxMTAvBgNVBAUTKENEMENBQzBFN0U4NEUzRTgxRTQ4NzYxNzRFMkMyMTQw ODUwOTQyNjkwHhcNMjUwNTMxMDEzMDAxWhcNMjUwNjA3MDEzMDAxWjAYMRYwFAYD VQQDEw02ODNhNWI5OS0yZjdhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyZArf29KJF2CDBACHFX1NIHdHSJZjMNChUruV2Fv/aeGTdCEPnX5rXlZZ5O4 tw9y/egoos8aHZTwcIcL5UZSsat+KpPiTruqYSqs/dhwBc/UT4zZK4PX26KsXsuu 9y4RJY/qtj2Xw3zGrmaSkriV3PWN06cNSVID36FmSlzQ5Pa2BaErTeahckHJ4mjx WfrCVMVWXrSTR2wr2bNqNZ+lh2opawQQJfj//HoTmv07XxgAR7ltafozCCvv5+SB VSAKG0oJu+xJ7F1YvJzIam3rvXmS872vtamOBPE/JAJUbrc9NyeHYCOr0opW1Pdp b5bC6ANSOHpb2/YTv7FfS54pzwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFIIvMl1C ZND2OYe845UmgnLZinxeMB8GA1UdIwQYMBaAFM0MrA5+hOPoHkh2F04sIUCFCUJp MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0RDI0OS83NkNFODQ1NkUw MjUxMUVDQjJGQjBFMjdDNEY5QUUwMi96UXlzRG42RTQtZ2VTSFlYVGl3aFFJVUpR bWsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3pReXNEbjZFNC1nZVNIWVhUaXdoUUlVSlFtay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 RDI0OS83NkNFODQ1NkUwMjUxMUVDQjJGQjBFMjdDNEY5QUUwMi96UXlzRG42RTQt Z2VTSFlYVGl3aFFJVUpRbWsubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAThR59LHLSl+RxpisZV8oQf3YNY2Qhg6411PrT7YWyELoDBoNOSnKh hxYumo594sDuldJzr4RKOBKYK5YvlrmwcJO/n+P4GIQ2/gM/2rJVEA/NxJlP0GT0 tjFHNiY0hnkIvyXZ3hXhAQNdD+owDX6iiKhMJqDzs+jdJO86IYM+OAIpRumXN09y ILhJSd1gY+oDntVT1mQldIhqAMS+41Qudc+wGjpluqGzhdJv0bTLMYf41FYJDNit Z/g1LGkD9/0lzUHibhx/+zElQyMuy1B1r5eXdMJbN9OfhG6Ao78vzO+B2b54edEw ZISoPYvlfgyLpTGpBxg9pxuj9/twzdYU -----END CERTIFICATE-----Generated at Sat May 31 17:46:31 2025 by rpki-client