$ rpki-client -vvf rpki.apnic.net/member_repository/A91AAE63/5E966394CA0911ED81B6F63CC4F9AE02/zHxfJ4CoDTxmayv2kVPyBIS-7nE.mft File: zHxfJ4CoDTxmayv2kVPyBIS-7nE.mft (raw, json) Hash identifier: rnbsvzRB5nEJCXENNkDjVM6OQy4HOgIyUMXJvdGgmJ8= Subject key identifier: F9:43:7E:DC:9A:2D:85:EB:9C:1E:2B:C4:19:EA:3B:33:32:DC:3B:23 Authority key identifier: CC:7C:5F:27:80:A8:0D:3C:66:6B:2B:F6:91:53:F2:04:84:BE:EE:71 Certificate issuer: /CN=A91AAE63/serialNumber=CC7C5F2780A80D3C666B2BF69153F20484BEEE71 Certificate serial: 019D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/zHxfJ4CoDTxmayv2kVPyBIS-7nE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91AAE63/5E966394CA0911ED81B6F63CC4F9AE02/zHxfJ4CoDTxmayv2kVPyBIS-7nE.mft Manifest number: 019A Signing time: Sat 31 May 2025 03:06:14 +0000 Manifest this update: Sat 31 May 2025 03:06:14 +0000 Manifest next update: Sat 07 Jun 2025 03:06:14 +0000 Files and hashes: 1: zHxfJ4CoDTxmayv2kVPyBIS-7nE.crl (hash: Wuec6UGxIiUGZK9pnHV61+XCDJjJwuW75sDZbQGJ9Oc=) 2: 5DCF3814CA0E11ED9251861DC4F9AE02.roa (hash: QPqR58JeNFPJi8H+5XnKJrf+9hDaJRDjHQAg1P1N4n8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91AAE63/5E966394CA0911ED81B6F63CC4F9AE02/zHxfJ4CoDTxmayv2kVPyBIS-7nE.crl rsync://rpki.apnic.net/member_repository/A91AAE63/5E966394CA0911ED81B6F63CC4F9AE02/zHxfJ4CoDTxmayv2kVPyBIS-7nE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/zHxfJ4CoDTxmayv2kVPyBIS-7nE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 07 Jun 2025 03:06:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 413 (0x19d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91AAE63, serialNumber=CC7C5F2780A80D3C666B2BF69153F20484BEEE71 Validity Not Before: May 31 03:06:14 2025 GMT Not After : Jun 7 03:06:14 2025 GMT Subject: CN=683a7226-6b9d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d0:f9:8a:a1:41:e6:2f:82:2d:6f:97:d6:15:60: 5a:15:63:20:c6:1f:c5:05:87:76:f9:5f:4a:94:8c: 67:0b:85:48:55:76:c7:95:de:c4:3d:b9:a3:93:bc: 00:30:25:54:23:e2:88:68:b4:de:ac:fa:ab:22:2c: 5c:17:21:cd:46:4d:11:3b:50:2e:f1:4d:94:96:b4: 9a:f0:fa:11:8e:b9:23:d5:c8:d4:79:5e:f2:de:28: 43:05:01:8d:06:fd:09:fe:83:0b:49:88:40:74:72: 4d:87:0d:15:33:a3:41:ba:6d:29:dc:f9:fb:dc:97: 64:fd:bc:3a:11:ea:23:54:a6:46:61:26:bb:f6:4a: 11:74:b3:51:f1:2b:65:83:44:ff:3c:16:57:54:b9: fd:da:21:72:d2:8c:37:8a:33:15:4d:8d:a7:12:1f: cb:9e:56:60:dc:a6:c9:8e:f8:ee:f9:62:99:a5:91: 4d:72:ab:d1:c5:5e:47:7c:51:9d:21:77:0c:51:a6: dc:fe:90:eb:08:02:ce:30:2b:00:ef:0d:74:58:2f: c5:72:15:65:fd:f1:2c:bd:93:f7:2c:af:89:cf:d8: 29:eb:d5:83:42:4e:05:7c:ce:ff:4f:8b:8e:4d:9b: 39:f8:89:95:41:68:a2:1f:44:01:82:ab:77:dc:16: 62:af Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F9:43:7E:DC:9A:2D:85:EB:9C:1E:2B:C4:19:EA:3B:33:32:DC:3B:23 X509v3 Authority Key Identifier: keyid:CC:7C:5F:27:80:A8:0D:3C:66:6B:2B:F6:91:53:F2:04:84:BE:EE:71 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91AAE63/5E966394CA0911ED81B6F63CC4F9AE02/zHxfJ4CoDTxmayv2kVPyBIS-7nE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/zHxfJ4CoDTxmayv2kVPyBIS-7nE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91AAE63/5E966394CA0911ED81B6F63CC4F9AE02/zHxfJ4CoDTxmayv2kVPyBIS-7nE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 3d:13:1a:70:0e:c6:1f:82:b7:aa:19:6f:1e:56:90:96:fb:4f: cc:7a:63:2d:8b:22:83:b5:3f:33:31:c3:12:6a:a3:69:bb:bb: bf:ee:7d:72:8c:ae:5a:d7:d1:64:c3:0c:03:94:e4:da:a6:5d: ee:e6:06:9e:e4:8d:83:36:29:f4:25:49:8a:af:1a:03:24:d1: 7e:f5:a9:de:f6:b8:91:f7:cb:b2:1a:33:51:a5:9d:44:81:13: 7a:65:e8:df:18:86:a5:c3:12:4f:07:7c:a2:c6:80:95:94:0c: 95:7d:c1:d1:ba:6f:f6:6c:de:d1:dd:3f:73:87:a6:bd:2a:6a: 96:fa:50:fc:f4:7f:65:ca:d8:96:19:ea:53:61:b5:a6:53:1e: a8:37:9b:ce:55:0a:3f:d3:c5:cb:1b:62:22:a8:95:a6:69:4b: 43:fc:a7:4d:65:59:9b:0d:9c:e4:9d:22:0f:e3:f4:eb:14:d8: e7:a4:87:a2:cc:2a:0d:38:9f:fa:37:c5:8e:73:86:10:65:f6: a5:a2:6d:42:2e:05:dd:b1:60:96:5b:24:64:2c:0b:84:ea:ea: 58:81:50:f9:d9:bb:a6:74:3e:9d:86:82:68:4d:c8:4b:ec:1b: da:c2:b3:d4:22:05:58:3d:e2:3e:92:d7:7b:33:ce:14:4c:ed: 52:11:ba:d4 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAZ0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QUFFNjMxMTAvBgNVBAUTKENDN0M1RjI3ODBBODBEM0M2NjZCMkJGNjkxNTNGMjA0 ODRCRUVFNzEwHhcNMjUwNTMxMDMwNjE0WhcNMjUwNjA3MDMwNjE0WjAYMRYwFAYD VQQDEw02ODNhNzIyNi02YjlkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0PmKoUHmL4Itb5fWFWBaFWMgxh/FBYd2+V9KlIxnC4VIVXbHld7EPbmjk7wA MCVUI+KIaLTerPqrIixcFyHNRk0RO1Au8U2UlrSa8PoRjrkj1cjUeV7y3ihDBQGN Bv0J/oMLSYhAdHJNhw0VM6NBum0p3Pn73Jdk/bw6EeojVKZGYSa79koRdLNR8Stl g0T/PBZXVLn92iFy0ow3ijMVTY2nEh/LnlZg3KbJjvju+WKZpZFNcqvRxV5HfFGd IXcMUabc/pDrCALOMCsA7w10WC/FchVl/fEsvZP3LK+Jz9gp69WDQk4FfM7/T4uO TZs5+ImVQWiiH0QBgqt33BZirwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFPlDftya LYXrnB4rxBnqOzMy3DsjMB8GA1UdIwQYMBaAFMx8XyeAqA08Zmsr9pFT8gSEvu5x MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBQUU2My81RTk2NjM5NENB MDkxMUVEODFCNkY2M0NDNEY5QUUwMi96SHhmSjRDb0RUeG1heXYya1ZQeUJJUy03 bkUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3pIeGZKNENvRFR4bWF5djJrVlB5QklTLTduRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB QUU2My81RTk2NjM5NENBMDkxMUVEODFCNkY2M0NDNEY5QUUwMi96SHhmSjRDb0RU eG1heXYya1ZQeUJJUy03bkUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA9ExpwDsYfgreqGW8eVpCW+0/MemMtiyKDtT8zMcMSaqNpu7u/7n1y jK5a19FkwwwDlOTapl3u5gae5I2DNin0JUmKrxoDJNF+9ane9riR98uyGjNRpZ1E gRN6ZejfGIalwxJPB3yixoCVlAyVfcHRum/2bN7R3T9zh6a9KmqW+lD89H9lytiW GepTYbWmUx6oN5vOVQo/08XLG2IiqJWmaUtD/KdNZVmbDZzknSIP4/TrFNjnpIei zCoNOJ/6N8WOc4YQZfalom1CLgXdsWCWWyRkLAuE6upYgVD52bumdD6dhoJoTchL 7BvawrPUIgVYPeI+ktd7M84UTO1SEbrU -----END CERTIFICATE-----Generated at Sat May 31 16:33:08 2025 by rpki-client