$ rpki-client -vvf rpki.apnic.net/member_repository/A91B74D6/DE22AD240CDF11EF9484E62AC4F9AE02/d0ZKhG930cTTZqMGuAaTn88qYBo.mft File: d0ZKhG930cTTZqMGuAaTn88qYBo.mft (raw, json) Hash identifier: Ww5FF2OtoBFVRKhkcdNyBp0aRLKYBH4vWDR1uH3tQU8= Subject key identifier: F3:88:3C:C0:17:AB:F3:0B:79:E1:98:9D:79:B2:9B:F3:4A:00:09:2E Authority key identifier: 77:46:4A:84:6F:77:D1:C4:D3:66:A3:06:B8:06:93:9F:CF:2A:60:1A Certificate issuer: /CN=A91B74D6/serialNumber=77464A846F77D1C4D366A306B806939FCF2A601A Certificate serial: D1 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/d0ZKhG930cTTZqMGuAaTn88qYBo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B74D6/DE22AD240CDF11EF9484E62AC4F9AE02/d0ZKhG930cTTZqMGuAaTn88qYBo.mft Manifest number: CC Signing time: Sat 31 May 2025 05:21:12 +0000 Manifest this update: Sat 31 May 2025 05:21:12 +0000 Manifest next update: Sat 07 Jun 2025 05:21:12 +0000 Files and hashes: 1: d0ZKhG930cTTZqMGuAaTn88qYBo.crl (hash: cUuatyn+vqnPwzCNn4H5CYFO7eD7t2oJvm4JIyqvRcM=) 2: ABD84FB00F8A11EF943CC917C4F9AE02.roa (hash: PDnutuYB/riFGiwE/DA4jtgTvwtaDb0EZnLNk2dEE1g=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B74D6/DE22AD240CDF11EF9484E62AC4F9AE02/d0ZKhG930cTTZqMGuAaTn88qYBo.crl rsync://rpki.apnic.net/member_repository/A91B74D6/DE22AD240CDF11EF9484E62AC4F9AE02/d0ZKhG930cTTZqMGuAaTn88qYBo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/d0ZKhG930cTTZqMGuAaTn88qYBo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 07 Jun 2025 05:21:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 209 (0xd1) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B74D6, serialNumber=77464A846F77D1C4D366A306B806939FCF2A601A Validity Not Before: May 31 05:21:12 2025 GMT Not After : Jun 7 05:21:12 2025 GMT Subject: CN=683a91c8-439e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c5:ed:5b:a4:4c:6d:2e:77:60:ed:ab:a4:f9:d7: ea:13:f2:49:27:13:3e:ed:28:9b:1a:8f:15:c2:56: 27:66:f9:18:6a:1f:c5:8a:d5:f4:71:45:fb:54:3c: 3e:a4:ca:29:33:f5:2b:bc:14:21:53:0b:a9:41:c4: 9a:ca:67:92:e6:63:05:00:d7:cf:0a:ce:be:96:ef: 29:d7:a1:28:13:01:5d:0a:1c:f4:11:f1:44:9c:d0: e2:a1:ff:b1:82:81:8d:31:bd:57:7e:bb:4c:6a:fa: c1:7c:63:c3:5c:b1:6b:97:fd:c4:e3:73:09:d5:8e: d6:60:71:5c:ef:4c:60:63:f7:ef:80:14:3f:c4:7f: 53:9f:5b:6a:49:4b:fd:c0:75:0a:21:65:8d:97:47: 93:f3:e5:e2:d8:b0:c2:47:12:bc:04:a8:cf:08:93: 64:4d:c9:c2:47:43:41:14:c6:e2:17:e4:b3:fc:db: ce:47:e9:87:d2:ed:12:90:b5:f2:fc:74:97:1a:9f: c4:71:56:1c:53:41:e5:13:2a:d1:76:39:ef:5b:a3: c6:da:b7:28:e4:1e:c6:59:28:10:91:bd:db:a7:c3: 3a:e1:e4:0f:ac:cc:65:48:8e:1a:8c:47:57:85:39: 90:99:68:91:f2:56:83:c8:cc:1a:fb:0f:f4:32:c6: e5:bd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F3:88:3C:C0:17:AB:F3:0B:79:E1:98:9D:79:B2:9B:F3:4A:00:09:2E X509v3 Authority Key Identifier: keyid:77:46:4A:84:6F:77:D1:C4:D3:66:A3:06:B8:06:93:9F:CF:2A:60:1A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B74D6/DE22AD240CDF11EF9484E62AC4F9AE02/d0ZKhG930cTTZqMGuAaTn88qYBo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/d0ZKhG930cTTZqMGuAaTn88qYBo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B74D6/DE22AD240CDF11EF9484E62AC4F9AE02/d0ZKhG930cTTZqMGuAaTn88qYBo.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 91:97:43:58:06:e9:70:d1:aa:33:9f:ea:25:5d:ac:c0:9e:ba: 14:0e:f9:e9:68:b3:2f:82:ac:58:a8:fc:54:cf:a1:ed:a7:99: f1:b5:40:95:a1:8f:78:de:7b:4b:45:f3:b2:71:30:60:0d:10: c8:93:4e:18:50:1a:09:b9:56:11:a6:ab:65:0e:35:96:a2:52: 0e:c5:29:ae:85:c0:20:83:c6:08:d4:c4:49:a0:e8:1e:ee:ef: b6:57:3a:35:a6:53:83:dd:52:07:9b:8e:e3:07:2d:fc:ff:a6: 12:33:d0:e1:eb:de:e8:de:ad:06:34:a9:b1:8b:76:ac:a9:e0: 77:2a:a1:7c:0e:7a:e6:00:e8:8f:1b:01:1d:bc:35:84:2a:09: f2:73:d6:46:90:8e:4c:c8:15:78:16:a6:c5:0b:66:a9:b7:09: 63:80:86:45:6a:81:9d:52:f6:b7:9a:65:b7:17:da:e2:21:0a: be:d7:75:37:a3:08:ae:df:5b:24:ac:d4:8e:c3:33:b9:8b:00: 29:d6:51:f8:e7:52:10:4e:b0:76:65:11:c0:4e:1a:0f:62:91: b1:5c:a2:c3:40:7b:35:67:1c:73:f7:b6:98:5c:cf:03:be:81: 95:bc:e9:75:c0:ea:f1:24:a8:56:24:9d:7f:71:b6:4b:a5:f2: fa:1b:45:64 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICANEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Qjc0RDYxMTAvBgNVBAUTKDc3NDY0QTg0NkY3N0QxQzREMzY2QTMwNkI4MDY5MzlG Q0YyQTYwMUEwHhcNMjUwNTMxMDUyMTEyWhcNMjUwNjA3MDUyMTEyWjAYMRYwFAYD VQQDEw02ODNhOTFjOC00MzllMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxe1bpExtLndg7auk+dfqE/JJJxM+7SibGo8VwlYnZvkYah/FitX0cUX7VDw+ pMopM/UrvBQhUwupQcSaymeS5mMFANfPCs6+lu8p16EoEwFdChz0EfFEnNDiof+x goGNMb1XfrtMavrBfGPDXLFrl/3E43MJ1Y7WYHFc70xgY/fvgBQ/xH9Tn1tqSUv9 wHUKIWWNl0eT8+Xi2LDCRxK8BKjPCJNkTcnCR0NBFMbiF+Sz/NvOR+mH0u0SkLXy /HSXGp/EcVYcU0HlEyrRdjnvW6PG2rco5B7GWSgQkb3bp8M64eQPrMxlSI4ajEdX hTmQmWiR8laDyMwa+w/0MsblvQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFPOIPMAX q/MLeeGYnXmym/NKAAkuMB8GA1UdIwQYMBaAFHdGSoRvd9HE02ajBrgGk5/PKmAa MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCNzRENi9ERTIyQUQyNDBD REYxMUVGOTQ4NEU2MkFDNEY5QUUwMi9kMFpLaEc5MzBjVFRacU1HdUFhVG44OHFZ Qm8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2QwWktoRzkzMGNUVFpxTUd1QWFUbjg4cVlCby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC NzRENi9ERTIyQUQyNDBDREYxMUVGOTQ4NEU2MkFDNEY5QUUwMi9kMFpLaEc5MzBj VFRacU1HdUFhVG44OHFZQm8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCRl0NYBulw0aozn+olXazAnroUDvnpaLMvgqxYqPxUz6Htp5nxtUCV oY943ntLRfOycTBgDRDIk04YUBoJuVYRpqtlDjWWolIOxSmuhcAgg8YI1MRJoOge 7u+2Vzo1plOD3VIHm47jBy38/6YSM9Dh697o3q0GNKmxi3asqeB3KqF8DnrmAOiP GwEdvDWEKgnyc9ZGkI5MyBV4FqbFC2aptwljgIZFaoGdUva3mmW3F9riIQq+13U3 owiu31skrNSOwzO5iwAp1lH451IQTrB2ZRHAThoPYpGxXKLDQHs1Zxxz97aYXM8D voGVvOl1wOrxJKhWJJ1/cbZLpfL6G0Vk -----END CERTIFICATE-----Generated at Sat May 31 17:07:42 2025 by rpki-client