$ rpki-client -vvf rpki.apnic.net/member_repository/A91BF23F/338B2F484A2F11EFAE96C915C4F9AE02/zNz_ISpraZpXC0qdF18WI3GDLKU.mft File: zNz_ISpraZpXC0qdF18WI3GDLKU.mft (raw, json) Hash identifier: PY3kFDJ/H8vGJlSbT6KfTA7zl1VCg7CST5wpIEBvKHk= Subject key identifier: 2A:39:3A:CA:6C:B1:BC:86:9C:59:90:FD:38:E8:32:22:C0:26:63:1D Authority key identifier: CC:DC:FF:21:2A:6B:69:9A:57:0B:4A:9D:17:5F:16:23:71:83:2C:A5 Certificate issuer: /CN=A91BF23F/serialNumber=CCDCFF212A6B699A570B4A9D175F162371832CA5 Certificate serial: A2 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/zNz_ISpraZpXC0qdF18WI3GDLKU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91BF23F/338B2F484A2F11EFAE96C915C4F9AE02/zNz_ISpraZpXC0qdF18WI3GDLKU.mft Manifest number: A0 Signing time: Sat 31 May 2025 05:49:48 +0000 Manifest this update: Sat 31 May 2025 05:49:47 +0000 Manifest next update: Sat 07 Jun 2025 05:49:47 +0000 Files and hashes: 1: zNz_ISpraZpXC0qdF18WI3GDLKU.crl (hash: lM7/bzh8bA48tjTUGQ0tAAt4wzdQ8tCByXCEk0pR8Gs=) 2: 00606C184A3011EFBC542C18C4F9AE02.roa (hash: Y3ZFXjyQq0LuHhQHwB/WF8wGIt775M6n4ea3rF+TXp4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91BF23F/338B2F484A2F11EFAE96C915C4F9AE02/zNz_ISpraZpXC0qdF18WI3GDLKU.crl rsync://rpki.apnic.net/member_repository/A91BF23F/338B2F484A2F11EFAE96C915C4F9AE02/zNz_ISpraZpXC0qdF18WI3GDLKU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/zNz_ISpraZpXC0qdF18WI3GDLKU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 07 Jun 2025 05:49:47 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 162 (0xa2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91BF23F, serialNumber=CCDCFF212A6B699A570B4A9D175F162371832CA5 Validity Not Before: May 31 05:49:47 2025 GMT Not After : Jun 7 05:49:47 2025 GMT Subject: CN=683a987c-1dd2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cc:66:70:86:99:04:07:4e:05:be:fb:e2:86:c4: 26:68:29:ac:8e:98:f9:38:47:f2:6c:78:da:36:35: ef:f4:17:c3:8f:51:8b:38:71:52:89:d8:0d:a2:ff: 3d:8b:2f:d0:d7:94:c6:14:5c:78:6c:9f:67:0d:14: bc:c3:cf:98:10:07:4b:19:b8:55:34:5c:4b:11:9a: 5c:e7:6b:25:76:3b:69:f8:28:a0:b5:aa:ee:62:37: 94:18:e1:f4:cf:99:57:01:5e:cd:23:c4:47:f0:32: 83:82:07:7d:7d:93:9e:f9:7b:4f:1c:14:b8:1e:db: b2:16:12:8a:05:67:83:0c:24:a1:38:bc:40:ee:e4: 73:f2:f6:1d:a5:4b:9e:d1:69:f3:5d:67:82:da:0c: 5b:55:84:6d:61:f7:c8:11:69:7b:2a:43:4a:c3:41: 67:3d:21:2c:1a:83:77:88:62:4c:cb:83:69:f3:1b: d4:2e:82:b4:12:86:b6:64:f8:15:20:38:3e:dd:70: fd:bf:3d:9f:fe:67:7a:a5:69:0b:32:f9:53:b4:78: 8a:1f:81:de:57:b0:a5:2b:d9:11:2b:dd:3b:de:ee: 16:a0:3f:aa:06:9e:a7:0d:99:af:f8:69:c1:a4:4d: 66:33:c4:e9:4d:75:ae:24:db:40:68:6b:f0:4e:39: 9b:3d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2A:39:3A:CA:6C:B1:BC:86:9C:59:90:FD:38:E8:32:22:C0:26:63:1D X509v3 Authority Key Identifier: keyid:CC:DC:FF:21:2A:6B:69:9A:57:0B:4A:9D:17:5F:16:23:71:83:2C:A5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91BF23F/338B2F484A2F11EFAE96C915C4F9AE02/zNz_ISpraZpXC0qdF18WI3GDLKU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/zNz_ISpraZpXC0qdF18WI3GDLKU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91BF23F/338B2F484A2F11EFAE96C915C4F9AE02/zNz_ISpraZpXC0qdF18WI3GDLKU.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 4f:39:de:f6:a6:7b:44:55:d5:3c:57:59:a8:d8:0c:f8:dd:f7: 61:e1:e6:21:c6:16:8a:9e:cf:b0:a6:13:e1:bc:85:2f:a8:4e: 6b:e3:58:af:d7:83:7d:3b:cf:0b:69:e1:40:73:18:ed:23:e7: dd:7a:46:7e:99:28:0b:3f:c0:b2:83:84:ba:77:71:be:44:39: d1:07:49:e2:a5:a2:ed:65:46:0f:19:8d:4e:7d:03:1c:fa:35: d7:59:cc:66:6e:b7:c1:b0:d9:dd:6e:af:10:0a:68:ca:06:83: fb:78:45:59:b2:0f:8c:98:dd:97:b6:02:3a:dc:95:6b:b8:c0: 02:8a:45:d3:87:7e:8f:e9:fb:14:22:12:87:2a:61:08:b0:9d: 8f:db:9f:3b:c7:42:60:8f:d7:ae:e7:ee:aa:f8:88:a1:ce:d5: 19:8b:6d:53:ed:45:d6:9e:8c:0e:a2:26:e5:de:a2:96:7d:da: aa:55:0d:13:e4:08:77:f4:50:d4:26:f7:29:9a:e1:78:41:c5: 83:00:aa:03:96:9c:da:cc:6c:14:80:7d:f0:7b:74:a7:eb:51: 80:1d:d1:1b:49:94:30:b0:10:45:5f:9b:ed:e4:48:9c:7c:73: 6d:40:1c:3d:2f:65:cc:4a:31:60:e1:56:08:b4:02:3e:35:03: 32:b8:c1:f1 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAKIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QkYyM0YxMTAvBgNVBAUTKENDRENGRjIxMkE2QjY5OUE1NzBCNEE5RDE3NUYxNjIz NzE4MzJDQTUwHhcNMjUwNTMxMDU0OTQ3WhcNMjUwNjA3MDU0OTQ3WjAYMRYwFAYD VQQDEw02ODNhOTg3Yy0xZGQyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzGZwhpkEB04FvvvihsQmaCmsjpj5OEfybHjaNjXv9BfDj1GLOHFSidgNov89 iy/Q15TGFFx4bJ9nDRS8w8+YEAdLGbhVNFxLEZpc52sldjtp+CigtaruYjeUGOH0 z5lXAV7NI8RH8DKDggd9fZOe+XtPHBS4HtuyFhKKBWeDDCShOLxA7uRz8vYdpUue 0WnzXWeC2gxbVYRtYffIEWl7KkNKw0FnPSEsGoN3iGJMy4Np8xvULoK0Eoa2ZPgV IDg+3XD9vz2f/md6pWkLMvlTtHiKH4HeV7ClK9kRK9073u4WoD+qBp6nDZmv+GnB pE1mM8TpTXWuJNtAaGvwTjmbPQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFCo5Osps sbyGnFmQ/TjoMiLAJmMdMB8GA1UdIwQYMBaAFMzc/yEqa2maVwtKnRdfFiNxgyyl MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCRjIzRi8zMzhCMkY0ODRB MkYxMUVGQUU5NkM5MTVDNEY5QUUwMi96TnpfSVNwcmFacFhDMHFkRjE4V0kzR0RM S1UuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3pOel9JU3ByYVpwWEMwcWRGMThXSTNHRExLVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC RjIzRi8zMzhCMkY0ODRBMkYxMUVGQUU5NkM5MTVDNEY5QUUwMi96TnpfSVNwcmFa cFhDMHFkRjE4V0kzR0RMS1UubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBPOd72pntEVdU8V1mo2Az43fdh4eYhxhaKns+wphPhvIUvqE5r41iv 14N9O88LaeFAcxjtI+fdekZ+mSgLP8Cyg4S6d3G+RDnRB0nipaLtZUYPGY1OfQMc +jXXWcxmbrfBsNndbq8QCmjKBoP7eEVZsg+MmN2XtgI63JVruMACikXTh36P6fsU IhKHKmEIsJ2P2587x0Jgj9eu5+6q+IihztUZi21T7UXWnowOoibl3qKWfdqqVQ0T 5Ah39FDUJvcpmuF4QcWDAKoDlpzazGwUgH3we3Sn61GAHdEbSZQwsBBFX5vt5Eic fHNtQBw9L2XMSjFg4VYItAI+NQMyuMHx -----END CERTIFICATE-----Generated at Sat May 31 16:35:00 2025 by rpki-client