$ rpki-client -vvf rpki.apnic.net/member_repository/A918B61E/807F9254D54E11EE8CC96530C4F9AE02/zXuGlWvtndYhW-SF8McVuSDJp3A.mft File: zXuGlWvtndYhW-SF8McVuSDJp3A.mft (raw, json) Hash identifier: MVDUCaBMTurcdDFmClAs0TloJVU/znlZ4WbhqwwowFI= Subject key identifier: 6C:D0:96:DA:70:3C:B9:AA:B0:D8:24:AA:AC:64:7C:C8:5F:FB:76:B3 Authority key identifier: CD:7B:86:95:6B:ED:9D:D6:21:5B:E4:85:F0:C7:15:B9:20:C9:A7:70 Certificate issuer: /CN=A918B61E/serialNumber=CD7B86956BED9DD6215BE485F0C715B920C9A770 Certificate serial: EE Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/zXuGlWvtndYhW-SF8McVuSDJp3A.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918B61E/807F9254D54E11EE8CC96530C4F9AE02/zXuGlWvtndYhW-SF8McVuSDJp3A.mft Manifest number: EA Signing time: Sat 31 May 2025 04:58:57 +0000 Manifest this update: Sat 31 May 2025 04:58:57 +0000 Manifest next update: Sat 07 Jun 2025 04:58:57 +0000 Files and hashes: 1: zXuGlWvtndYhW-SF8McVuSDJp3A.crl (hash: CBtVEQssH2WYrro2u+hH2EcP4jDVQt15dCI1UsxMwQM=) 2: 60DF983AD54F11EE93ED1E3BC4F9AE02.roa (hash: KzdO+S8UaZA+5dqwU3YevT9OI76OGpIsZ7GNNEbB7Sc=) 3: 601B8CF6D54F11EE93ED1E3BC4F9AE02.roa (hash: 9rjLofEU8o84/eDpG2+v1chrVfPs+sqWqIrHcUhxjLs=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918B61E/807F9254D54E11EE8CC96530C4F9AE02/zXuGlWvtndYhW-SF8McVuSDJp3A.crl rsync://rpki.apnic.net/member_repository/A918B61E/807F9254D54E11EE8CC96530C4F9AE02/zXuGlWvtndYhW-SF8McVuSDJp3A.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/zXuGlWvtndYhW-SF8McVuSDJp3A.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 07 Jun 2025 04:58:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 238 (0xee) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918B61E, serialNumber=CD7B86956BED9DD6215BE485F0C715B920C9A770 Validity Not Before: May 31 04:58:57 2025 GMT Not After : Jun 7 04:58:57 2025 GMT Subject: CN=683a8c91-e41c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d6:9d:9a:7a:7d:cd:74:b6:c5:a7:d1:e4:57:f9: 71:ec:f2:5f:3a:cd:09:14:b8:0e:28:18:4c:df:0f: 4c:5a:d6:87:bd:01:bd:ea:bc:2b:9a:c4:a4:35:fc: 49:3a:a5:0b:96:e7:d1:28:c8:b2:a3:a1:a1:83:8a: 38:3b:06:1e:05:90:04:2a:0a:17:58:0a:f3:3e:69: 25:b8:5b:d4:f3:24:ac:53:86:3f:d9:43:dc:30:b1: 14:63:08:dd:1a:f2:c8:4d:43:8b:e6:1f:cf:d2:1c: 68:ef:51:5c:dd:d0:8a:f2:4e:ff:a3:75:61:16:23: b4:e1:25:84:65:93:35:ba:ee:95:aa:76:dd:c7:4d: ad:6e:af:1c:39:1e:1f:f6:ed:f2:76:7a:7c:63:e5: e5:ef:c5:d3:b7:5d:79:88:ec:82:b3:84:67:30:19: 07:3f:48:e4:31:31:69:66:6e:0f:63:4c:b3:43:88: 14:0e:da:01:d5:77:c8:59:89:24:d8:d6:1f:a4:9f: 8e:23:a0:ba:96:34:cc:49:34:c8:e4:c6:ec:69:99: 70:f3:c5:e8:e9:1a:01:aa:8a:aa:0c:94:9e:14:d2: 7a:70:ba:b9:1a:b1:82:5b:3d:69:b4:c0:bf:45:f3: 8a:ec:ab:3b:e7:cd:4b:96:3e:fa:fd:60:12:41:bc: 72:f9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6C:D0:96:DA:70:3C:B9:AA:B0:D8:24:AA:AC:64:7C:C8:5F:FB:76:B3 X509v3 Authority Key Identifier: keyid:CD:7B:86:95:6B:ED:9D:D6:21:5B:E4:85:F0:C7:15:B9:20:C9:A7:70 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918B61E/807F9254D54E11EE8CC96530C4F9AE02/zXuGlWvtndYhW-SF8McVuSDJp3A.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/zXuGlWvtndYhW-SF8McVuSDJp3A.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918B61E/807F9254D54E11EE8CC96530C4F9AE02/zXuGlWvtndYhW-SF8McVuSDJp3A.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 6d:87:8b:b7:89:9a:b5:45:c3:12:d1:f2:cf:29:87:51:ce:4e: af:c5:5d:9c:fb:34:9f:cf:56:88:2c:5f:c7:0d:a2:0a:8d:87: 10:c4:a5:3d:9c:81:b5:1e:97:3a:1a:4f:d8:2a:3d:04:d9:d4: 80:82:77:b9:7f:ba:0e:3d:8f:3d:82:a4:c3:93:3d:bf:1d:16: b2:b4:85:48:a1:fb:8b:9e:16:34:cf:43:65:47:4a:e9:a2:d1: 50:2e:49:c4:ee:6e:b8:df:29:d0:23:2a:e7:49:4d:5d:39:e6: 29:f2:b6:48:c3:7f:13:0c:7b:bc:43:e4:3f:b5:a3:87:74:d3: d6:52:28:39:44:a3:3b:9e:32:d2:f4:ed:4b:81:36:58:f4:57: 4a:c3:a7:59:a2:2b:a3:2b:90:55:ce:86:22:74:33:75:bb:ab: b8:55:3a:87:60:91:08:5e:8d:57:c5:31:a0:80:06:ca:49:8d: 97:2c:36:08:24:42:e6:02:e3:f7:99:3b:e5:bd:eb:1e:36:1f: 36:59:be:a6:62:ac:88:c4:93:94:1e:8f:4b:53:9d:6d:86:9b: a7:4b:06:83:e9:c0:57:4d:d6:e5:ed:6a:61:6a:a6:8f:12:32: 60:a8:88:57:48:5c:81:91:3d:7f:a7:d8:a9:d0:27:2d:0a:fd: f7:62:e3:02 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAO4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OEI2MUUxMTAvBgNVBAUTKENEN0I4Njk1NkJFRDlERDYyMTVCRTQ4NUYwQzcxNUI5 MjBDOUE3NzAwHhcNMjUwNTMxMDQ1ODU3WhcNMjUwNjA3MDQ1ODU3WjAYMRYwFAYD VQQDEw02ODNhOGM5MS1lNDFjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1p2aen3NdLbFp9HkV/lx7PJfOs0JFLgOKBhM3w9MWtaHvQG96rwrmsSkNfxJ OqULlufRKMiyo6Ghg4o4OwYeBZAEKgoXWArzPmkluFvU8ySsU4Y/2UPcMLEUYwjd GvLITUOL5h/P0hxo71Fc3dCK8k7/o3VhFiO04SWEZZM1uu6Vqnbdx02tbq8cOR4f 9u3ydnp8Y+Xl78XTt115iOyCs4RnMBkHP0jkMTFpZm4PY0yzQ4gUDtoB1XfIWYkk 2NYfpJ+OI6C6ljTMSTTI5MbsaZlw88Xo6RoBqoqqDJSeFNJ6cLq5GrGCWz1ptMC/ RfOK7Ks7581Llj76/WASQbxy+QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFGzQltpw PLmqsNgkqqxkfMhf+3azMB8GA1UdIwQYMBaAFM17hpVr7Z3WIVvkhfDHFbkgyadw MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4QjYxRS84MDdGOTI1NEQ1 NEUxMUVFOENDOTY1MzBDNEY5QUUwMi96WHVHbFd2dG5kWWhXLVNGOE1jVnVTREpw M0EuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3pYdUdsV3Z0bmRZaFctU0Y4TWNWdVNESnAzQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 QjYxRS84MDdGOTI1NEQ1NEUxMUVFOENDOTY1MzBDNEY5QUUwMi96WHVHbFd2dG5k WWhXLVNGOE1jVnVTREpwM0EubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBth4u3iZq1RcMS0fLPKYdRzk6vxV2c+zSfz1aILF/HDaIKjYcQxKU9 nIG1Hpc6Gk/YKj0E2dSAgne5f7oOPY89gqTDkz2/HRaytIVIofuLnhY0z0NlR0rp otFQLknE7m643ynQIyrnSU1dOeYp8rZIw38TDHu8Q+Q/taOHdNPWUig5RKM7njLS 9O1LgTZY9FdKw6dZoiujK5BVzoYidDN1u6u4VTqHYJEIXo1XxTGggAbKSY2XLDYI JELmAuP3mTvlveseNh82Wb6mYqyIxJOUHo9LU51thpunSwaD6cBXTdbl7WphaqaP EjJgqIhXSFyBkT1/p9ip0CctCv33YuMC -----END CERTIFICATE-----Generated at Sat May 31 17:46:31 2025 by rpki-client