$ rpki-client -vvf rpki.apnic.net/member_repository/A91594AE/3D8B8C4852B511EAA4A9D20EC4F9AE02/zaR-Ch7rUl87Wg-vsvoNuzY7-k0.mft File: zaR-Ch7rUl87Wg-vsvoNuzY7-k0.mft (raw, json) Hash identifier: NQBz3xWuSe5dneKCIGbBJMWmjzCVLbzdtcFpGCckkrA= Subject key identifier: 0F:59:05:46:1C:F9:84:D7:DD:EF:0E:B3:0E:F4:4A:CB:DB:48:36:F4 Authority key identifier: CD:A4:7E:0A:1E:EB:52:5F:3B:5A:0F:AF:B2:FA:0D:BB:36:3B:FA:4D Certificate issuer: /CN=A91594AE/serialNumber=CDA47E0A1EEB525F3B5A0FAFB2FA0DBB363BFA4D Certificate serial: 0ABC Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/zaR-Ch7rUl87Wg-vsvoNuzY7-k0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91594AE/3D8B8C4852B511EAA4A9D20EC4F9AE02/zaR-Ch7rUl87Wg-vsvoNuzY7-k0.mft Manifest number: 0AB4 Signing time: Fri 30 May 2025 19:41:27 +0000 Manifest this update: Fri 30 May 2025 19:41:27 +0000 Manifest next update: Fri 06 Jun 2025 19:41:27 +0000 Files and hashes: 1: zaR-Ch7rUl87Wg-vsvoNuzY7-k0.crl (hash: wJdZUrqoWv13JSsKtdAPcbf04p5/m/LgW+yJ8/g/ESE=) 2: 38CAF4EC52B911EAACE8041BC4F9AE02.roa (hash: lj/CFwKu+N9KL+BN8rOtiVH/zU3sp7+mG9hyAnPkezU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91594AE/3D8B8C4852B511EAA4A9D20EC4F9AE02/zaR-Ch7rUl87Wg-vsvoNuzY7-k0.crl rsync://rpki.apnic.net/member_repository/A91594AE/3D8B8C4852B511EAA4A9D20EC4F9AE02/zaR-Ch7rUl87Wg-vsvoNuzY7-k0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/zaR-Ch7rUl87Wg-vsvoNuzY7-k0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 06 Jun 2025 19:41:26 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2748 (0xabc) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91594AE, serialNumber=CDA47E0A1EEB525F3B5A0FAFB2FA0DBB363BFA4D Validity Not Before: May 30 19:41:27 2025 GMT Not After : Jun 6 19:41:27 2025 GMT Subject: CN=683a09e7-5080 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c5:de:d9:58:f2:f0:2d:72:8f:e9:5c:d6:ab:65: 0f:23:64:7e:fb:e1:f0:b7:ca:4a:99:2a:d1:24:c2: 44:84:b1:ee:b6:28:4b:2a:5b:57:9e:78:90:f5:da: ae:6a:07:e2:64:d2:31:78:34:aa:b0:29:ff:43:d1: c6:08:8b:31:6b:a7:b9:d8:38:a4:c4:19:09:22:ea: 15:2f:fc:c1:e5:6e:f8:bc:f1:7a:81:00:0e:35:bf: 03:34:69:5f:5d:7a:5f:27:8c:7d:02:fc:a6:77:22: a8:13:83:1a:ad:b3:34:7d:6e:85:e2:7b:1f:cf:40: 2b:37:e3:d0:d7:7f:d2:cf:3c:23:c5:53:7b:bf:93: a5:af:07:f0:b7:75:68:b5:ff:11:59:d6:4b:89:1b: 91:33:61:e4:2d:17:df:ef:8f:a2:e9:2c:00:b9:fb: 35:33:b8:c0:ab:cc:8a:f8:cb:11:0d:04:8e:3a:d7: 48:07:aa:73:1d:62:b3:cc:93:93:50:1b:91:bd:28: f2:85:ad:0b:64:97:60:64:68:f0:4b:a2:1b:83:1b: 29:a4:8b:c7:4f:18:2d:0f:22:7d:2f:f6:c5:93:eb: ad:4f:77:66:e1:09:bb:d9:06:87:a0:ab:3e:49:f2: 53:01:c1:5d:0a:07:5c:fa:e0:48:fc:2d:d5:42:f3: 85:9b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0F:59:05:46:1C:F9:84:D7:DD:EF:0E:B3:0E:F4:4A:CB:DB:48:36:F4 X509v3 Authority Key Identifier: keyid:CD:A4:7E:0A:1E:EB:52:5F:3B:5A:0F:AF:B2:FA:0D:BB:36:3B:FA:4D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91594AE/3D8B8C4852B511EAA4A9D20EC4F9AE02/zaR-Ch7rUl87Wg-vsvoNuzY7-k0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/zaR-Ch7rUl87Wg-vsvoNuzY7-k0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91594AE/3D8B8C4852B511EAA4A9D20EC4F9AE02/zaR-Ch7rUl87Wg-vsvoNuzY7-k0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 30:cc:eb:ae:ab:20:40:c1:81:b4:ec:80:d0:18:4a:a5:1e:6e: ae:90:b9:a5:e3:8e:a0:f5:cf:90:84:82:67:45:1e:b0:7e:b4: 6e:94:72:3e:8c:82:81:b2:19:0f:88:68:1b:b7:43:04:18:d6: c6:58:87:e2:ef:34:25:09:23:73:8b:97:02:cc:82:82:49:7a: 69:3b:33:b1:00:be:55:33:99:a5:a3:3a:c3:04:aa:1b:f0:f3: db:1f:ba:f2:f5:e9:f5:d2:7f:ad:dd:59:b8:fa:c6:9b:e9:a9: cd:90:e4:d9:bd:c9:c8:b1:b9:89:d3:46:16:b2:b2:09:3d:55: 58:52:09:28:ac:ca:8b:6e:89:5d:95:9a:84:78:69:ab:d6:d3: 6f:96:e5:b9:a9:47:d3:b0:45:43:f4:d6:4a:6c:dc:64:8c:97: b0:e6:25:12:be:ae:35:80:90:54:76:09:e0:a4:f0:2f:ff:69: 16:1f:17:43:fb:c5:f8:5c:5e:7b:03:93:7a:66:a4:d5:12:2e: 5b:8e:5c:df:df:b4:37:f3:4e:ac:7e:14:7d:ba:d3:ff:91:50: 21:ed:65:4d:c1:c2:c7:22:3e:9b:52:de:df:b5:4d:f9:bc:78: e0:8d:81:f8:e4:8b:02:e1:49:7c:9c:a7:8f:d8:2e:cf:12:07: f8:5c:fb:fd -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCrwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTk0QUUxMTAvBgNVBAUTKENEQTQ3RTBBMUVFQjUyNUYzQjVBMEZBRkIyRkEwREJC MzYzQkZBNEQwHhcNMjUwNTMwMTk0MTI3WhcNMjUwNjA2MTk0MTI3WjAYMRYwFAYD VQQDEw02ODNhMDllNy01MDgwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxd7ZWPLwLXKP6VzWq2UPI2R+++Hwt8pKmSrRJMJEhLHutihLKltXnniQ9dqu agfiZNIxeDSqsCn/Q9HGCIsxa6e52DikxBkJIuoVL/zB5W74vPF6gQAONb8DNGlf XXpfJ4x9AvymdyKoE4MarbM0fW6F4nsfz0ArN+PQ13/SzzwjxVN7v5Olrwfwt3Vo tf8RWdZLiRuRM2HkLRff74+i6SwAufs1M7jAq8yK+MsRDQSOOtdIB6pzHWKzzJOT UBuRvSjyha0LZJdgZGjwS6IbgxsppIvHTxgtDyJ9L/bFk+utT3dm4Qm72QaHoKs+ SfJTAcFdCgdc+uBI/C3VQvOFmwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFA9ZBUYc +YTX3e8Osw70SsvbSDb0MB8GA1UdIwQYMBaAFM2kfgoe61JfO1oPr7L6Dbs2O/pN MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1OTRBRS8zRDhCOEM0ODUy QjUxMUVBQTRBOUQyMEVDNEY5QUUwMi96YVItQ2g3clVsODdXZy12c3ZvTnV6WTct azAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3phUi1DaDdyVWw4N1dnLXZzdm9OdXpZNy1rMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 OTRBRS8zRDhCOEM0ODUyQjUxMUVBQTRBOUQyMEVDNEY5QUUwMi96YVItQ2g3clVs ODdXZy12c3ZvTnV6WTctazAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAwzOuuqyBAwYG07IDQGEqlHm6ukLml446g9c+QhIJnRR6wfrRulHI+ jIKBshkPiGgbt0MEGNbGWIfi7zQlCSNzi5cCzIKCSXppOzOxAL5VM5mlozrDBKob 8PPbH7ry9en10n+t3Vm4+sab6anNkOTZvcnIsbmJ00YWsrIJPVVYUgkorMqLbold lZqEeGmr1tNvluW5qUfTsEVD9NZKbNxkjJew5iUSvq41gJBUdgngpPAv/2kWHxdD +8X4XF57A5N6ZqTVEi5bjlzf37Q3806sfhR9utP/kVAh7WVNwcLHIj6bUt7ftU35 vHjgjYH45IsC4Ul8nKeP2C7PEgf4XPv9 -----END CERTIFICATE-----Generated at Sat May 31 17:18:49 2025 by rpki-client