$ rpki-client -vvf rpki.apnic.net/member_repository/A9182047/33ADB3E66E0011EC9A63BD6AC4F9AE02/ZQEq8FcQhrnqswNG9iS2MSpVHDg.mft File: ZQEq8FcQhrnqswNG9iS2MSpVHDg.mft (raw, json) Hash identifier: EgQwj8g0m+blQ+gCISyDxecnz9n3OztAQy/r3mLsE7E= Subject key identifier: AB:32:70:44:CD:0B:1F:B3:A8:93:73:B8:DB:2C:7E:09:F1:62:AD:2B Authority key identifier: 65:01:2A:F0:57:10:86:B9:EA:B3:03:46:F6:24:B6:31:2A:55:1C:38 Certificate issuer: /CN=A9182047/serialNumber=65012AF0571086B9EAB30346F624B6312A551C38 Certificate serial: 0430 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ZQEq8FcQhrnqswNG9iS2MSpVHDg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9182047/33ADB3E66E0011EC9A63BD6AC4F9AE02/ZQEq8FcQhrnqswNG9iS2MSpVHDg.mft Manifest number: 0420 Signing time: Sat 31 May 2025 00:37:11 +0000 Manifest this update: Sat 31 May 2025 00:37:10 +0000 Manifest next update: Sat 07 Jun 2025 00:37:10 +0000 Files and hashes: 1: ZQEq8FcQhrnqswNG9iS2MSpVHDg.crl (hash: J1N0jzk9QlPpcCTWaxCRu5rawdxSmgDirX1eBl79+PA=) 2: AA9C9BB8C92C11EF86608311C4F9AE02.roa (hash: m0D1A61qLoA//vf/I6KyJ5ofH8LCEJEjAffkeen66nM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9182047/33ADB3E66E0011EC9A63BD6AC4F9AE02/ZQEq8FcQhrnqswNG9iS2MSpVHDg.crl rsync://rpki.apnic.net/member_repository/A9182047/33ADB3E66E0011EC9A63BD6AC4F9AE02/ZQEq8FcQhrnqswNG9iS2MSpVHDg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ZQEq8FcQhrnqswNG9iS2MSpVHDg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 07 Jun 2025 00:37:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1072 (0x430) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9182047, serialNumber=65012AF0571086B9EAB30346F624B6312A551C38 Validity Not Before: May 31 00:37:10 2025 GMT Not After : Jun 7 00:37:10 2025 GMT Subject: CN=683a4f36-584c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:d7:43:08:17:ac:c6:19:ae:69:d5:77:99:1c: cd:65:84:f3:e1:cc:a7:a5:c9:c5:9d:02:68:ac:0d: a0:78:6f:ed:c9:56:16:ed:1e:04:e6:05:ba:82:30: df:8e:08:43:b8:8f:77:b6:d9:e3:a5:a2:79:9f:21: 98:79:d0:68:ca:6a:35:ae:bb:b7:2b:1f:43:19:c4: 9f:c0:c9:3a:9f:ad:c0:b1:c0:de:9d:38:eb:6b:62: ca:33:df:b0:9d:d6:5b:72:f9:fe:2f:36:ff:33:0f: 26:52:76:26:2f:57:5a:d5:ba:46:84:1c:99:0f:5e: 5a:ef:1c:0a:c1:52:0b:ae:63:35:eb:6c:5a:1c:bb: 95:48:8a:a3:1d:4d:ea:6e:13:ec:01:fa:d1:9d:00: 5e:31:ed:50:f2:e0:e7:d1:c3:09:e3:89:0a:1a:68: 4b:2b:1d:ac:1d:9a:74:94:63:b2:9d:55:ad:1e:c1: 02:e9:42:5e:4c:98:85:f5:a6:43:05:92:16:60:5b: e5:5d:e0:9d:6e:d4:5f:77:f4:15:1c:2f:3f:33:ab: b8:ef:e5:d7:65:4e:bb:f8:e7:57:14:11:25:5a:67: ad:83:70:a2:bf:47:d1:66:36:b2:16:c0:2f:f1:9c: 5a:7b:c5:b7:5c:ab:a5:5d:71:dc:84:5e:34:98:f0: 0c:63 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AB:32:70:44:CD:0B:1F:B3:A8:93:73:B8:DB:2C:7E:09:F1:62:AD:2B X509v3 Authority Key Identifier: keyid:65:01:2A:F0:57:10:86:B9:EA:B3:03:46:F6:24:B6:31:2A:55:1C:38 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9182047/33ADB3E66E0011EC9A63BD6AC4F9AE02/ZQEq8FcQhrnqswNG9iS2MSpVHDg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ZQEq8FcQhrnqswNG9iS2MSpVHDg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9182047/33ADB3E66E0011EC9A63BD6AC4F9AE02/ZQEq8FcQhrnqswNG9iS2MSpVHDg.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 80:23:f2:2a:e2:c1:59:2b:6e:8a:45:ef:5b:23:fc:e3:d0:2f: 84:5c:ec:2e:4e:12:10:24:97:c4:7c:4e:19:15:f6:d9:ab:89: ca:6b:7e:64:a3:9f:be:4f:7a:43:7b:bd:a9:17:69:57:e4:a9: b9:b7:39:f5:91:ee:84:8c:3f:2d:b6:db:4d:43:6d:0b:d5:c1: 97:e2:2b:ec:c5:e0:26:9f:77:e6:47:c2:81:77:22:1d:2d:56: f6:be:7d:c5:90:c1:73:9a:ae:58:3a:e4:2a:c8:92:a5:a7:a1: a5:b1:f6:d3:6b:ee:be:b5:31:04:1c:88:0c:83:15:2a:01:26: c3:ea:c0:3d:97:47:08:3e:bf:4e:86:45:0f:47:c4:2d:5a:f9: d9:76:10:53:af:8d:f8:4f:4e:7d:c1:79:6a:db:9b:fa:df:e6: 91:46:df:fe:ae:5b:13:20:5f:d3:35:a2:68:a4:f6:e6:00:a2: 12:66:7e:40:38:21:f5:0c:3a:ed:29:3f:37:50:f9:ed:f9:68: e5:ac:23:00:5e:03:da:7a:68:35:79:49:18:ab:a6:8d:1d:2c: ca:9b:53:ce:6c:c0:51:f8:22:9d:02:e3:c9:e6:79:b7:91:e6: 04:ff:b5:9b:8c:d0:23:74:52:ad:20:34:95:40:c5:c0:ba:50: e0:2e:8a:2f -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBDAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx ODIwNDcxMTAvBgNVBAUTKDY1MDEyQUYwNTcxMDg2QjlFQUIzMDM0NkY2MjRCNjMx MkE1NTFDMzgwHhcNMjUwNTMxMDAzNzEwWhcNMjUwNjA3MDAzNzEwWjAYMRYwFAYD VQQDEw02ODNhNGYzNi01ODRjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwtdDCBesxhmuadV3mRzNZYTz4cynpcnFnQJorA2geG/tyVYW7R4E5gW6gjDf jghDuI93ttnjpaJ5nyGYedBoymo1rru3Kx9DGcSfwMk6n63AscDenTjra2LKM9+w ndZbcvn+Lzb/Mw8mUnYmL1da1bpGhByZD15a7xwKwVILrmM162xaHLuVSIqjHU3q bhPsAfrRnQBeMe1Q8uDn0cMJ44kKGmhLKx2sHZp0lGOynVWtHsEC6UJeTJiF9aZD BZIWYFvlXeCdbtRfd/QVHC8/M6u47+XXZU67+OdXFBElWmetg3Civ0fRZjayFsAv 8Zxae8W3XKulXXHchF40mPAMYwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFKsycETN Cx+zqJNzuNssfgnxYq0rMB8GA1UdIwQYMBaAFGUBKvBXEIa56rMDRvYktjEqVRw4 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4MjA0Ny8zM0FEQjNFNjZF MDAxMUVDOUE2M0JENkFDNEY5QUUwMi9aUUVxOEZjUWhybnFzd05HOWlTMk1TcFZI RGcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1pRRXE4RmNRaHJucXN3Tkc5aVMyTVNwVkhEZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 MjA0Ny8zM0FEQjNFNjZFMDAxMUVDOUE2M0JENkFDNEY5QUUwMi9aUUVxOEZjUWhy bnFzd05HOWlTMk1TcFZIRGcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCAI/Iq4sFZK26KRe9bI/zj0C+EXOwuThIQJJfEfE4ZFfbZq4nKa35k o5++T3pDe72pF2lX5Km5tzn1ke6EjD8ttttNQ20L1cGX4ivsxeAmn3fmR8KBdyId LVb2vn3FkMFzmq5YOuQqyJKlp6GlsfbTa+6+tTEEHIgMgxUqASbD6sA9l0cIPr9O hkUPR8QtWvnZdhBTr434T059wXlq25v63+aRRt/+rlsTIF/TNaJopPbmAKISZn5A OCH1DDrtKT83UPnt+WjlrCMAXgPaemg1eUkYq6aNHSzKm1PObMBR+CKdAuPJ5nm3 keYE/7WbjNAjdFKtIDSVQMXAulDgLoov -----END CERTIFICATE-----Generated at Sat May 31 17:18:49 2025 by rpki-client