$ rpki-client -vvf rpki.apnic.net/member_repository/A915451D/5CB1EA06B88E11EABA33AC61C4F9AE02/Zctcy-UxzE70Kh0wffe0XLDpdNk.mft File: Zctcy-UxzE70Kh0wffe0XLDpdNk.mft (raw, json) Hash identifier: e3Wn09oM63wF3BoDqqW3C8h6iyIway0cDOj22oZVkgc= Subject key identifier: 61:D8:65:52:52:52:9E:34:A7:2C:B9:4C:37:4B:9F:AF:45:5D:ED:43 Authority key identifier: 65:CB:5C:CB:E5:31:CC:4E:F4:2A:1D:30:7D:F7:B4:5C:B0:E9:74:D9 Certificate issuer: /CN=A915451D/serialNumber=65CB5CCBE531CC4EF42A1D307DF7B45CB0E974D9 Certificate serial: 08AE Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Zctcy-UxzE70Kh0wffe0XLDpdNk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A915451D/5CB1EA06B88E11EABA33AC61C4F9AE02/Zctcy-UxzE70Kh0wffe0XLDpdNk.mft Manifest number: 08A8 Signing time: Fri 30 May 2025 20:44:21 +0000 Manifest this update: Fri 30 May 2025 20:44:21 +0000 Manifest next update: Fri 06 Jun 2025 20:44:21 +0000 Files and hashes: 1: Zctcy-UxzE70Kh0wffe0XLDpdNk.crl (hash: p/eL5dnLKP0pNnfEjjCEE8TX/eKWKLBPSTYLGux81hQ=) 2: 593FC45EB89011EA8C060064C4F9AE02.roa (hash: GNTtQ5EmAt4jwHyNzDkJrVxnNcCezotTwTzcnNPHMDI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A915451D/5CB1EA06B88E11EABA33AC61C4F9AE02/Zctcy-UxzE70Kh0wffe0XLDpdNk.crl rsync://rpki.apnic.net/member_repository/A915451D/5CB1EA06B88E11EABA33AC61C4F9AE02/Zctcy-UxzE70Kh0wffe0XLDpdNk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Zctcy-UxzE70Kh0wffe0XLDpdNk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 06 Jun 2025 20:44:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2222 (0x8ae) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A915451D, serialNumber=65CB5CCBE531CC4EF42A1D307DF7B45CB0E974D9 Validity Not Before: May 30 20:44:21 2025 GMT Not After : Jun 6 20:44:21 2025 GMT Subject: CN=683a18a5-1a10 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f0:58:98:39:63:cf:71:f6:bf:4a:0b:10:71:96: e4:8c:ff:98:8d:0e:f5:a4:37:2e:de:15:78:c1:c5: 0d:15:76:b6:22:95:e7:e0:1f:b2:48:45:a1:ab:43: 3c:70:4d:9e:f3:b1:8d:85:26:17:cd:46:d2:e5:25: b6:1f:d7:d9:af:df:f4:ce:5d:c0:5e:44:1a:5f:59: 50:65:fe:74:eb:35:8c:51:e2:bf:02:a6:de:13:f4: a8:4b:48:9b:ef:57:0b:5d:fd:d9:42:2d:7b:a7:32: bc:e3:f7:19:f4:c1:22:5c:2c:b4:25:53:21:26:2c: 1d:8b:2e:3c:fa:cb:16:e6:e0:28:fd:b5:92:8f:2a: fd:52:9f:fa:b4:f1:a3:19:7e:b4:04:cf:5b:a6:9e: 9c:ff:a0:f9:4e:0b:fa:28:2c:aa:35:da:67:47:bc: 96:e1:ed:08:96:6d:66:dd:f0:58:2c:e0:b9:bf:12: 59:60:e7:52:e5:21:a2:12:8d:01:7e:83:e7:e0:fe: e8:f4:03:b5:ef:93:e0:ff:eb:f6:8a:2f:3a:e8:7c: 7a:90:4f:0d:62:2e:d4:e5:e1:31:e6:5b:c6:71:11: fc:ce:2c:5a:05:3c:5b:97:4e:c7:38:69:c9:c5:73: d0:b0:ab:07:3c:89:d6:91:97:40:7a:bc:07:a3:3c: 0d:cf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 61:D8:65:52:52:52:9E:34:A7:2C:B9:4C:37:4B:9F:AF:45:5D:ED:43 X509v3 Authority Key Identifier: keyid:65:CB:5C:CB:E5:31:CC:4E:F4:2A:1D:30:7D:F7:B4:5C:B0:E9:74:D9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A915451D/5CB1EA06B88E11EABA33AC61C4F9AE02/Zctcy-UxzE70Kh0wffe0XLDpdNk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Zctcy-UxzE70Kh0wffe0XLDpdNk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A915451D/5CB1EA06B88E11EABA33AC61C4F9AE02/Zctcy-UxzE70Kh0wffe0XLDpdNk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 37:f4:9a:67:2d:2f:97:d8:1a:c7:a8:a7:c3:49:6a:c2:90:19: 4f:02:f2:c5:9c:be:cb:e5:b6:43:57:36:a4:a8:a1:9b:61:50: 7e:f6:10:67:3a:d2:f1:ca:f1:18:db:fa:26:89:42:44:9b:18: 25:65:7e:45:51:1d:54:ff:c3:66:a3:1d:8e:69:83:14:0e:7d: 78:ee:fb:44:63:df:ea:56:c9:12:8f:ec:b0:92:3c:f9:f9:b0: 14:56:b3:b3:a3:21:56:d5:1f:8d:fa:1a:8d:96:f7:6e:6f:68: 3e:16:f1:13:ca:a3:ff:39:cd:42:97:06:9c:71:73:29:6e:aa: 15:41:ba:5e:08:3d:47:58:8c:a0:b2:99:67:7d:f9:b9:82:e9: 67:95:5f:52:56:fb:ad:61:19:ec:fc:9c:ad:a7:e5:5f:6d:82: 1e:b3:13:e8:9c:08:e8:41:3b:2a:33:9a:f1:41:29:8c:cd:77: 66:d1:52:52:07:9f:43:23:b2:c9:af:e2:d9:07:ad:db:d7:02: 6a:dc:7e:b2:fb:1f:e5:b7:18:39:c4:22:9b:71:32:bf:cb:90: 88:33:20:10:d4:c6:0b:16:53:ed:aa:dc:dc:07:3f:88:9a:9a: b9:2c:ad:9b:c3:2c:66:8c:32:a8:3d:0d:44:1e:fa:4b:a4:65: 23:4f:88:ab -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCK4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTQ1MUQxMTAvBgNVBAUTKDY1Q0I1Q0NCRTUzMUNDNEVGNDJBMUQzMDdERjdCNDVD QjBFOTc0RDkwHhcNMjUwNTMwMjA0NDIxWhcNMjUwNjA2MjA0NDIxWjAYMRYwFAYD VQQDEw02ODNhMThhNS0xYTEwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA8FiYOWPPcfa/SgsQcZbkjP+YjQ71pDcu3hV4wcUNFXa2IpXn4B+ySEWhq0M8 cE2e87GNhSYXzUbS5SW2H9fZr9/0zl3AXkQaX1lQZf506zWMUeK/AqbeE/SoS0ib 71cLXf3ZQi17pzK84/cZ9MEiXCy0JVMhJiwdiy48+ssW5uAo/bWSjyr9Up/6tPGj GX60BM9bpp6c/6D5Tgv6KCyqNdpnR7yW4e0Ilm1m3fBYLOC5vxJZYOdS5SGiEo0B foPn4P7o9AO175Pg/+v2ii866Hx6kE8NYi7U5eEx5lvGcRH8zixaBTxbl07HOGnJ xXPQsKsHPInWkZdAerwHozwNzwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFGHYZVJS Up40pyy5TDdLn69FXe1DMB8GA1UdIwQYMBaAFGXLXMvlMcxO9CodMH33tFyw6XTZ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1NDUxRC81Q0IxRUEwNkI4 OEUxMUVBQkEzM0FDNjFDNEY5QUUwMi9aY3RjeS1VeHpFNzBLaDB3ZmZlMFhMRHBk TmsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1pjdGN5LVV4ekU3MEtoMHdmZmUwWExEcGROay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 NDUxRC81Q0IxRUEwNkI4OEUxMUVBQkEzM0FDNjFDNEY5QUUwMi9aY3RjeS1VeHpF NzBLaDB3ZmZlMFhMRHBkTmsubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA39JpnLS+X2BrHqKfDSWrCkBlPAvLFnL7L5bZDVzakqKGbYVB+9hBn OtLxyvEY2/omiUJEmxglZX5FUR1U/8Nmox2OaYMUDn147vtEY9/qVskSj+ywkjz5 +bAUVrOzoyFW1R+N+hqNlvdub2g+FvETyqP/Oc1ClwaccXMpbqoVQbpeCD1HWIyg splnffm5gulnlV9SVvutYRns/Jytp+VfbYIesxPonAjoQTsqM5rxQSmMzXdm0VJS B59DI7LJr+LZB63b1wJq3H6y+x/ltxg5xCKbcTK/y5CIMyAQ1MYLFlPtqtzcBz+I mpq5LK2bwyxmjDKoPQ1EHvpLpGUjT4ir -----END CERTIFICATE-----Generated at Sat May 31 17:48:38 2025 by rpki-client