$ rpki-client -vvf rpki.apnic.net/member_repository/A91B1833/FE68E0B28E3311ECAD674675C4F9AE02/2zxJsbLapmnoFyU5XfcR6D-K09E.mft File: 2zxJsbLapmnoFyU5XfcR6D-K09E.mft (raw, json) Hash identifier: +MkzozktW8v+vLsAi1wmZ1LqUvmW88RNgY32Z1ao+ds= Subject key identifier: F4:9F:30:F5:78:A7:DD:7F:BB:AE:22:C1:CC:DA:1F:26:9C:B8:1A:D4 Authority key identifier: DB:3C:49:B1:B2:DA:A6:69:E8:17:25:39:5D:F7:11:E8:3F:8A:D3:D1 Certificate issuer: /CN=A91B1833/serialNumber=DB3C49B1B2DAA669E81725395DF711E83F8AD3D1 Certificate serial: 03C7 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2zxJsbLapmnoFyU5XfcR6D-K09E.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B1833/FE68E0B28E3311ECAD674675C4F9AE02/2zxJsbLapmnoFyU5XfcR6D-K09E.mft Manifest number: 03BD Signing time: Sat 31 May 2025 00:51:18 +0000 Manifest this update: Sat 31 May 2025 00:51:17 +0000 Manifest next update: Sat 07 Jun 2025 00:51:17 +0000 Files and hashes: 1: 2zxJsbLapmnoFyU5XfcR6D-K09E.crl (hash: g1awDpIedQx7nhLDjvfZW0XvZfk7/VlDk6qUZmjo2qY=) 2: 93CBDF448EE111EC9D298C83C4F9AE02.roa (hash: BUnFVKWXS5jIu8y5GkL7bgepdNyRdvPBw8U/+IQhx6g=) 3: 48ECA4C48EE411EC9936A210C4F9AE02.roa (hash: +5J/6WRU15WkYWy0ca5x0funlOBTzCAMAXyUc4i4gAY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B1833/FE68E0B28E3311ECAD674675C4F9AE02/2zxJsbLapmnoFyU5XfcR6D-K09E.crl rsync://rpki.apnic.net/member_repository/A91B1833/FE68E0B28E3311ECAD674675C4F9AE02/2zxJsbLapmnoFyU5XfcR6D-K09E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2zxJsbLapmnoFyU5XfcR6D-K09E.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 07 Jun 2025 00:51:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 967 (0x3c7) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B1833, serialNumber=DB3C49B1B2DAA669E81725395DF711E83F8AD3D1 Validity Not Before: May 31 00:51:17 2025 GMT Not After : Jun 7 00:51:17 2025 GMT Subject: CN=683a5285-2537 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b2:2f:0c:ca:b8:6e:ba:46:65:d1:d0:50:0a:c2: 35:86:ae:2f:af:cb:9a:19:04:db:99:c5:59:b7:4e: 4e:1f:8f:58:65:bf:2d:81:c3:b7:69:64:77:a5:76: 07:11:20:77:50:aa:eb:6a:2a:b3:89:78:3c:fa:cf: be:47:e7:77:fa:6a:62:78:d3:da:86:0b:37:02:5d: b2:04:9a:41:19:00:d1:b0:b9:55:bb:10:de:f2:e3: 26:97:fb:a1:18:74:33:f8:43:57:86:c2:52:a8:61: fa:65:b1:15:ba:d9:a9:84:67:f1:68:53:f2:9a:f7: 93:45:11:07:fd:71:be:cf:8f:14:79:81:9b:3f:c0: 9a:7c:19:8c:ee:7d:1f:17:d6:0d:92:de:7a:1f:e9: ca:10:4f:36:68:92:1b:eb:e7:1c:6b:9d:93:0f:e3: cd:37:68:9b:07:3e:c4:78:25:e5:02:4d:76:e3:92: 50:3e:ca:4b:97:f9:f0:ba:60:63:c9:6e:43:53:f6: 15:2f:ad:3e:2b:06:07:b1:95:0f:da:d3:cb:40:eb: c9:3a:65:99:fe:e0:c0:ba:0b:b1:74:0d:41:9a:94: 7a:1a:36:83:6a:3b:58:7a:6d:06:78:8f:0d:72:0f: 15:b2:17:c7:76:69:64:0d:ca:fb:31:f6:a2:0c:2c: ca:77 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F4:9F:30:F5:78:A7:DD:7F:BB:AE:22:C1:CC:DA:1F:26:9C:B8:1A:D4 X509v3 Authority Key Identifier: keyid:DB:3C:49:B1:B2:DA:A6:69:E8:17:25:39:5D:F7:11:E8:3F:8A:D3:D1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B1833/FE68E0B28E3311ECAD674675C4F9AE02/2zxJsbLapmnoFyU5XfcR6D-K09E.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2zxJsbLapmnoFyU5XfcR6D-K09E.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B1833/FE68E0B28E3311ECAD674675C4F9AE02/2zxJsbLapmnoFyU5XfcR6D-K09E.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a8:0f:d0:9b:48:f7:f8:6f:f2:df:0d:61:29:26:74:fa:53:a3: 4c:6f:3f:3e:da:f3:d0:77:8c:7a:d7:06:05:20:af:2b:c4:86: a6:0a:32:ec:c4:0e:55:67:e9:11:c4:ab:e7:8f:93:7c:fc:13: c8:f7:c0:0a:bb:0c:bc:26:67:80:eb:c6:4f:e8:11:a2:96:e3: ec:db:8b:32:c8:6f:09:98:ea:f4:0a:02:c3:55:15:05:36:84: 81:53:e8:a7:82:16:3a:45:1c:d3:d1:62:c7:f9:f0:0f:e7:82: 82:21:bd:96:db:fc:46:96:7c:4c:e1:a6:7d:0a:a2:6e:7e:72: 95:c4:30:77:6a:03:20:92:1b:c6:78:47:62:f4:dd:13:08:45: 64:22:40:a2:ce:d2:45:8d:24:2c:d9:ff:9c:64:fb:c7:fe:78: 42:c2:75:8e:83:1a:b5:32:1c:03:dc:70:41:5c:07:43:b8:c1: 1c:98:8e:1d:dd:d5:55:fc:e2:31:a5:20:8d:5f:85:e6:fa:60: 9c:11:db:b6:c3:b0:8d:e7:9a:c1:7c:9f:9d:bb:72:8d:35:b6: 40:ca:c5:f1:11:3f:70:6c:d4:1d:41:f5:e1:b2:4f:c6:d9:be: 93:c6:0c:d1:af:bd:d8:b0:ba:10:c6:d4:dd:31:5a:af:62:9b: ca:3e:33:f0 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICA8cwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjE4MzMxMTAvBgNVBAUTKERCM0M0OUIxQjJEQUE2NjlFODE3MjUzOTVERjcxMUU4 M0Y4QUQzRDEwHhcNMjUwNTMxMDA1MTE3WhcNMjUwNjA3MDA1MTE3WjAYMRYwFAYD VQQDEw02ODNhNTI4NS0yNTM3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsi8MyrhuukZl0dBQCsI1hq4vr8uaGQTbmcVZt05OH49YZb8tgcO3aWR3pXYH ESB3UKrraiqziXg8+s++R+d3+mpieNPahgs3Al2yBJpBGQDRsLlVuxDe8uMml/uh GHQz+ENXhsJSqGH6ZbEVutmphGfxaFPymveTRREH/XG+z48UeYGbP8CafBmM7n0f F9YNkt56H+nKEE82aJIb6+cca52TD+PNN2ibBz7EeCXlAk1245JQPspLl/nwumBj yW5DU/YVL60+KwYHsZUP2tPLQOvJOmWZ/uDAuguxdA1BmpR6GjaDajtYem0GeI8N cg8VshfHdmlkDcr7MfaiDCzKdwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFPSfMPV4 p91/u64iwczaHyacuBrUMB8GA1UdIwQYMBaAFNs8SbGy2qZp6BclOV33Eeg/itPR MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCMTgzMy9GRTY4RTBCMjhF MzMxMUVDQUQ2NzQ2NzVDNEY5QUUwMi8yenhKc2JMYXBtbm9GeVU1WGZjUjZELUsw OUUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzJ6eEpzYkxhcG1ub0Z5VTVYZmNSNkQtSzA5RS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC MTgzMy9GRTY4RTBCMjhFMzMxMUVDQUQ2NzQ2NzVDNEY5QUUwMi8yenhKc2JMYXBt bm9GeVU1WGZjUjZELUswOUUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCoD9CbSPf4b/LfDWEpJnT6U6NMbz8+2vPQd4x61wYFIK8rxIamCjLs xA5VZ+kRxKvnj5N8/BPI98AKuwy8JmeA68ZP6BGiluPs24syyG8JmOr0CgLDVRUF NoSBU+inghY6RRzT0WLH+fAP54KCIb2W2/xGlnxM4aZ9CqJufnKVxDB3agMgkhvG eEdi9N0TCEVkIkCiztJFjSQs2f+cZPvH/nhCwnWOgxq1MhwD3HBBXAdDuMEcmI4d 3dVV/OIxpSCNX4Xm+mCcEdu2w7CN55rBfJ+du3KNNbZAysXxET9wbNQdQfXhsk/G 2b6TxgzRr73YsLoQxtTdMVqvYpvKPjPw -----END CERTIFICATE-----Generated at Sat May 31 17:53:15 2025 by rpki-client