$ rpki-client -vvf rpki.apnic.net/member_repository/A91765CB/695515E0062811EEA714C263C4F9AE02/0Z0h9lpMk802wwczAhMPTmW38Ok.mft File: 0Z0h9lpMk802wwczAhMPTmW38Ok.mft (raw, json) Hash identifier: D5hanPkrGrXngqie9FlLINPdmOJMA/ww3MtBQJhESgM= Subject key identifier: 1A:A9:3A:2F:B0:5E:93:77:4B:CE:72:68:E5:B8:D1:ED:A2:B6:A5:2E Authority key identifier: D1:9D:21:F6:5A:4C:93:CD:36:C3:07:33:02:13:0F:4E:65:B7:F0:E9 Certificate issuer: /CN=A91765CB/serialNumber=D19D21F65A4C93CD36C3073302130F4E65B7F0E9 Certificate serial: 0181 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/0Z0h9lpMk802wwczAhMPTmW38Ok.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91765CB/695515E0062811EEA714C263C4F9AE02/0Z0h9lpMk802wwczAhMPTmW38Ok.mft Manifest number: 0179 Signing time: Sat 31 May 2025 03:28:09 +0000 Manifest this update: Sat 31 May 2025 03:28:08 +0000 Manifest next update: Sat 07 Jun 2025 03:28:08 +0000 Files and hashes: 1: 0Z0h9lpMk802wwczAhMPTmW38Ok.crl (hash: qtQiKfLuKZCZVG1DvDv90MR4j1u5U8i0GglRCvQPAxw=) 2: 5CBE3872145C11F0BFD6B347C4F9AE02.roa (hash: wN+RYivC51/sVMn5qM1gC8zTEDi66N47MLSR9Ot7lLw=) 3: 4C30AA30B08411EFA29E6722C4F9AE02.roa (hash: eyu3cJvMk8x/lB+NzC776MbDc6l8Tfm9D0VXNEV1yIM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91765CB/695515E0062811EEA714C263C4F9AE02/0Z0h9lpMk802wwczAhMPTmW38Ok.crl rsync://rpki.apnic.net/member_repository/A91765CB/695515E0062811EEA714C263C4F9AE02/0Z0h9lpMk802wwczAhMPTmW38Ok.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/0Z0h9lpMk802wwczAhMPTmW38Ok.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 07 Jun 2025 03:28:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 385 (0x181) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91765CB, serialNumber=D19D21F65A4C93CD36C3073302130F4E65B7F0E9 Validity Not Before: May 31 03:28:08 2025 GMT Not After : Jun 7 03:28:08 2025 GMT Subject: CN=683a7748-0078 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ab:3a:30:3a:ea:be:15:2b:2e:f0:72:46:a6:99: 61:75:1d:78:ab:7f:11:06:75:bd:bd:20:ec:90:29: 04:1e:4c:4e:7f:02:57:45:6d:7d:5c:e1:91:ab:d0: d0:b9:e3:aa:61:22:73:e1:42:7c:b2:a2:88:25:57: 10:2e:a5:2a:09:85:36:cb:06:c5:a9:b4:25:ef:f8: 0e:3e:c9:ca:33:4f:00:9a:03:19:c4:5f:68:01:cb: 47:97:98:7b:ca:81:44:37:13:b8:58:2a:88:3f:1c: 0c:6d:3f:d6:89:ba:51:de:a1:89:d1:e8:b9:86:58: 1e:ba:be:15:db:5c:78:a2:c4:11:d8:1a:ce:14:2e: 72:bd:ab:20:12:6c:eb:fb:ea:a7:c8:11:65:03:10: 6e:4d:3f:2e:7f:a8:f5:0a:4f:f4:c0:76:bd:ae:7d: 86:0b:f5:cd:4b:fc:9e:23:09:cd:94:a4:95:1d:58: c7:5b:9e:97:d5:b7:83:f2:7b:c0:b7:20:c2:97:4f: 2a:52:f8:68:b7:1d:46:32:28:be:52:73:f4:19:24: ae:66:06:a8:ca:b7:2c:9f:e7:49:6c:43:61:a1:94: f7:3e:fc:35:9e:ac:cc:eb:5e:6d:3a:97:fb:1f:8f: e2:33:6c:a6:06:4e:26:b9:66:b3:10:db:c1:43:26: 14:6f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1A:A9:3A:2F:B0:5E:93:77:4B:CE:72:68:E5:B8:D1:ED:A2:B6:A5:2E X509v3 Authority Key Identifier: keyid:D1:9D:21:F6:5A:4C:93:CD:36:C3:07:33:02:13:0F:4E:65:B7:F0:E9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91765CB/695515E0062811EEA714C263C4F9AE02/0Z0h9lpMk802wwczAhMPTmW38Ok.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/0Z0h9lpMk802wwczAhMPTmW38Ok.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91765CB/695515E0062811EEA714C263C4F9AE02/0Z0h9lpMk802wwczAhMPTmW38Ok.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 6a:87:40:b8:b6:b8:a4:5e:00:95:e8:0b:cc:2e:06:61:30:ad: 85:90:11:5f:ca:f9:45:6e:81:10:f3:e5:8d:9a:e8:53:1f:34: a5:86:bb:4f:d3:1b:1d:15:00:17:da:25:6c:e2:72:f8:d3:d6: 9e:56:5e:99:05:75:32:6a:5a:45:23:21:ae:37:55:1d:7a:af: 80:7e:4d:cf:ba:39:11:95:c6:19:f8:3f:08:a6:db:87:81:84: 1a:b9:e9:d6:20:2b:1c:95:a2:a3:60:25:6b:24:34:3e:e4:47: 83:78:07:6c:7e:67:51:f8:90:57:cb:b0:fa:9c:68:80:05:df: 63:8f:ba:43:53:80:8c:de:d6:91:ba:c3:c6:fa:cb:75:1c:29: a9:83:ab:d0:d4:a7:4e:e4:cf:a3:53:c8:14:a5:3e:64:83:63: cd:a7:20:69:a0:02:ee:04:6e:3b:a4:71:c2:02:f9:3f:d5:67: 22:0f:41:6b:a6:8f:22:63:c0:31:ba:90:ce:9c:65:d2:55:5b: 5f:0f:f0:e8:02:26:6e:0e:97:55:13:43:39:91:83:5a:d7:83: 45:c9:a7:70:0c:8c:09:75:ed:85:44:c3:44:e9:f8:df:86:6c: 29:b6:ae:4d:e1:b4:81:6c:65:5f:c9:2a:41:b2:5a:52:50:99: 70:9c:a8:68 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAYEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzY1Q0IxMTAvBgNVBAUTKEQxOUQyMUY2NUE0QzkzQ0QzNkMzMDczMzAyMTMwRjRF NjVCN0YwRTkwHhcNMjUwNTMxMDMyODA4WhcNMjUwNjA3MDMyODA4WjAYMRYwFAYD VQQDEw02ODNhNzc0OC0wMDc4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqzowOuq+FSsu8HJGpplhdR14q38RBnW9vSDskCkEHkxOfwJXRW19XOGRq9DQ ueOqYSJz4UJ8sqKIJVcQLqUqCYU2ywbFqbQl7/gOPsnKM08AmgMZxF9oActHl5h7 yoFENxO4WCqIPxwMbT/WibpR3qGJ0ei5hlgeur4V21x4osQR2BrOFC5yvasgEmzr ++qnyBFlAxBuTT8uf6j1Ck/0wHa9rn2GC/XNS/yeIwnNlKSVHVjHW56X1beD8nvA tyDCl08qUvhotx1GMii+UnP0GSSuZgaoyrcsn+dJbENhoZT3Pvw1nqzM615tOpf7 H4/iM2ymBk4muWazENvBQyYUbwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFBqpOi+w XpN3S85yaOW40e2itqUuMB8GA1UdIwQYMBaAFNGdIfZaTJPNNsMHMwITD05lt/Dp MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3NjVDQi82OTU1MTVFMDA2 MjgxMUVFQTcxNEMyNjNDNEY5QUUwMi8wWjBoOWxwTWs4MDJ3d2N6QWhNUFRtVzM4 T2suY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzBaMGg5bHBNazgwMnd3Y3pBaE1QVG1XMzhPay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 NjVDQi82OTU1MTVFMDA2MjgxMUVFQTcxNEMyNjNDNEY5QUUwMi8wWjBoOWxwTWs4 MDJ3d2N6QWhNUFRtVzM4T2subWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBqh0C4trikXgCV6AvMLgZhMK2FkBFfyvlFboEQ8+WNmuhTHzSlhrtP 0xsdFQAX2iVs4nL409aeVl6ZBXUyalpFIyGuN1Udeq+Afk3PujkRlcYZ+D8IptuH gYQauenWICsclaKjYCVrJDQ+5EeDeAdsfmdR+JBXy7D6nGiABd9jj7pDU4CM3taR usPG+st1HCmpg6vQ1KdO5M+jU8gUpT5kg2PNpyBpoALuBG47pHHCAvk/1WciD0Fr po8iY8AxupDOnGXSVVtfD/DoAiZuDpdVE0M5kYNa14NFyadwDIwJde2FRMNE6fjf hmwptq5N4bSBbGVfySpBslpSUJlwnKho -----END CERTIFICATE-----Generated at Sat May 31 17:56:28 2025 by rpki-client