$ rpki-client -vvf rpki.apnic.net/member_repository/A917CFD2/1D2A8942E6D311EAA63B2719C4F9AE02/9ZvGR-kMztyU6oWmLrjrGL0DUms.mft File: 9ZvGR-kMztyU6oWmLrjrGL0DUms.mft (raw, json) Hash identifier: mVE29RFZkTTspUJSmhCUHOy0w3c5YJiItklB4haVf7E= Subject key identifier: 9A:44:A9:12:11:A0:80:4B:1D:E1:AB:79:55:A0:94:DC:5E:62:DB:4E Authority key identifier: F5:9B:C6:47:E9:0C:CE:DC:94:EA:85:A6:2E:B8:EB:18:BD:03:52:6B Certificate issuer: /CN=A917CFD2/serialNumber=F59BC647E90CCEDC94EA85A62EB8EB18BD03526B Certificate serial: 0808 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/9ZvGR-kMztyU6oWmLrjrGL0DUms.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917CFD2/1D2A8942E6D311EAA63B2719C4F9AE02/9ZvGR-kMztyU6oWmLrjrGL0DUms.mft Manifest number: 07FA Signing time: Fri 30 May 2025 21:12:08 +0000 Manifest this update: Fri 30 May 2025 21:12:07 +0000 Manifest next update: Fri 06 Jun 2025 21:12:07 +0000 Files and hashes: 1: 9ZvGR-kMztyU6oWmLrjrGL0DUms.crl (hash: 772Ov7awjkQzsFHFw3rWWRKbkSJv55GfWxiAz6EB5dQ=) 2: EED16B2CEC4211EABC227339C4F9AE02.roa (hash: L4B2evBW9dTHQXVqbxeQ4CNrkuNZaT5qA9O5a+LAGeg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917CFD2/1D2A8942E6D311EAA63B2719C4F9AE02/9ZvGR-kMztyU6oWmLrjrGL0DUms.crl rsync://rpki.apnic.net/member_repository/A917CFD2/1D2A8942E6D311EAA63B2719C4F9AE02/9ZvGR-kMztyU6oWmLrjrGL0DUms.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/9ZvGR-kMztyU6oWmLrjrGL0DUms.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 06 Jun 2025 21:12:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2056 (0x808) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917CFD2, serialNumber=F59BC647E90CCEDC94EA85A62EB8EB18BD03526B Validity Not Before: May 30 21:12:07 2025 GMT Not After : Jun 6 21:12:07 2025 GMT Subject: CN=683a1f27-2b17 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c8:a5:e2:0d:dc:b0:b9:5f:d7:31:68:ee:b1:f3: 7c:e6:ec:07:67:e2:bd:98:b6:87:31:25:1e:26:1a: a6:d9:f4:00:6d:3b:b6:20:84:a1:b0:0b:22:0b:89: dc:7f:72:94:d4:17:e5:15:b6:c9:62:df:a7:40:15: 56:a1:4e:b4:f8:e0:4c:3d:67:19:84:37:bc:a5:8d: 16:41:85:68:75:1a:8a:e5:d2:f6:1a:cc:b5:7e:99: 7e:3a:4f:d6:c1:f7:82:71:68:9e:ef:3c:d6:3a:5f: 64:e5:f4:d8:58:9d:10:d4:6f:06:4d:90:e3:ac:dd: 53:7d:8a:1a:23:2b:ce:63:ac:f1:14:cd:42:c3:05: 3f:2c:ea:62:85:fe:2e:80:86:f2:4e:b9:43:4a:9f: 09:78:c1:25:d3:ac:56:a6:31:f2:d7:40:0c:58:51: 5e:f0:e6:30:eb:4b:6d:a7:90:a9:c8:a5:1b:14:e3: a6:47:bf:70:b1:e6:69:c4:db:b4:6a:32:c9:5a:c9: 14:44:53:0b:88:3c:43:9e:3b:36:7f:0d:61:ee:73: 72:8a:19:ea:fb:d6:fc:93:3a:e4:de:90:3d:a5:7b: 59:9a:ce:ed:32:3a:9f:7d:fd:f0:53:74:9d:38:ff: ee:64:64:17:da:ac:60:0d:b5:08:5a:fc:c0:87:de: 26:e9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9A:44:A9:12:11:A0:80:4B:1D:E1:AB:79:55:A0:94:DC:5E:62:DB:4E X509v3 Authority Key Identifier: keyid:F5:9B:C6:47:E9:0C:CE:DC:94:EA:85:A6:2E:B8:EB:18:BD:03:52:6B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917CFD2/1D2A8942E6D311EAA63B2719C4F9AE02/9ZvGR-kMztyU6oWmLrjrGL0DUms.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/9ZvGR-kMztyU6oWmLrjrGL0DUms.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917CFD2/1D2A8942E6D311EAA63B2719C4F9AE02/9ZvGR-kMztyU6oWmLrjrGL0DUms.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 55:86:6d:91:38:ce:5c:bc:3f:19:39:6c:61:f5:ee:98:90:bb: 1a:13:1f:50:4a:56:0a:82:3d:3e:d9:9f:41:f8:50:8f:fa:90: 97:3b:29:e6:ab:1e:ba:40:b5:22:6b:81:71:7e:b8:7f:41:27: e0:51:ff:7e:d4:5f:1d:02:2a:97:af:05:0a:20:0f:64:fe:fe: 58:8f:bd:ed:4d:73:d1:36:85:ba:c0:8f:21:87:fe:83:d0:c8: 68:32:16:5d:63:ad:ac:24:3b:51:d2:1b:b5:5c:07:28:b7:de: 32:40:f4:25:91:15:1f:eb:79:35:20:b1:f4:71:59:65:a6:80: b5:b4:93:0d:31:87:b1:d4:24:1f:35:9a:88:ff:44:f6:05:90: da:ce:02:42:cf:05:02:9a:1c:8f:1e:af:3a:65:10:76:2c:9e: 6e:ba:ed:1d:a4:fe:df:a4:4c:4b:ef:c9:5f:f8:b1:52:94:2b: fd:70:3d:ee:e5:44:f8:74:ed:8c:b2:ca:09:d1:eb:d2:c3:fc: 68:21:5b:e7:91:26:29:88:91:27:b2:19:3c:fe:f9:fb:6f:68: 08:84:f2:96:9b:a8:92:89:78:81:3d:b0:d6:0e:21:92:a0:62: b4:8f:b4:b6:4d:b4:25:22:50:64:a7:8b:80:7b:f4:ab:9a:98: 1a:f0:ef:57 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCAgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0NGRDIxMTAvBgNVBAUTKEY1OUJDNjQ3RTkwQ0NFREM5NEVBODVBNjJFQjhFQjE4 QkQwMzUyNkIwHhcNMjUwNTMwMjExMjA3WhcNMjUwNjA2MjExMjA3WjAYMRYwFAYD VQQDEw02ODNhMWYyNy0yYjE3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyKXiDdywuV/XMWjusfN85uwHZ+K9mLaHMSUeJhqm2fQAbTu2IIShsAsiC4nc f3KU1BflFbbJYt+nQBVWoU60+OBMPWcZhDe8pY0WQYVodRqK5dL2Gsy1fpl+Ok/W wfeCcWie7zzWOl9k5fTYWJ0Q1G8GTZDjrN1TfYoaIyvOY6zxFM1CwwU/LOpihf4u gIbyTrlDSp8JeMEl06xWpjHy10AMWFFe8OYw60ttp5CpyKUbFOOmR79wseZpxNu0 ajLJWskURFMLiDxDnjs2fw1h7nNyihnq+9b8kzrk3pA9pXtZms7tMjqfff3wU3Sd OP/uZGQX2qxgDbUIWvzAh94m6QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJpEqRIR oIBLHeGreVWglNxeYttOMB8GA1UdIwQYMBaAFPWbxkfpDM7clOqFpi646xi9A1Jr MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3Q0ZEMi8xRDJBODk0MkU2 RDMxMUVBQTYzQjI3MTlDNEY5QUUwMi85WnZHUi1rTXp0eVU2b1dtTHJqckdMMERV bXMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzladkdSLWtNenR5VTZvV21McmpyR0wwRFVtcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 Q0ZEMi8xRDJBODk0MkU2RDMxMUVBQTYzQjI3MTlDNEY5QUUwMi85WnZHUi1rTXp0 eVU2b1dtTHJqckdMMERVbXMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBVhm2ROM5cvD8ZOWxh9e6YkLsaEx9QSlYKgj0+2Z9B+FCP+pCXOynm qx66QLUia4Fxfrh/QSfgUf9+1F8dAiqXrwUKIA9k/v5Yj73tTXPRNoW6wI8hh/6D 0MhoMhZdY62sJDtR0hu1XAcot94yQPQlkRUf63k1ILH0cVllpoC1tJMNMYex1CQf NZqI/0T2BZDazgJCzwUCmhyPHq86ZRB2LJ5uuu0dpP7fpExL78lf+LFSlCv9cD3u 5UT4dO2MssoJ0evSw/xoIVvnkSYpiJEnshk8/vn7b2gIhPKWm6iSiXiBPbDWDiGS oGK0j7S2TbQlIlBkp4uAe/Srmpga8O9X -----END CERTIFICATE-----Generated at Sat May 31 17:18:50 2025 by rpki-client