$ rpki-client -vvf rpki.apnic.net/member_repository/A91C3869/75DA447C1F4D11EA90505762C4F9AE02/ZQWXw3xtTUdvSZVECzYEpnG7_bA.mft File: ZQWXw3xtTUdvSZVECzYEpnG7_bA.mft (raw, json) Hash identifier: AalX7Nr9QB6vlShNm8Oxfq2B+SZoOHSyhLZfbUV3VVM= Subject key identifier: 34:58:0E:B3:26:3F:AC:A1:DC:0F:02:CC:0E:CD:62:32:8E:73:74:8A Authority key identifier: 65:05:97:C3:7C:6D:4D:47:6F:49:95:44:0B:36:04:A6:71:BB:FD:B0 Certificate issuer: /CN=A91C3869/serialNumber=650597C37C6D4D476F4995440B3604A671BBFDB0 Certificate serial: 0BD7 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ZQWXw3xtTUdvSZVECzYEpnG7_bA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C3869/75DA447C1F4D11EA90505762C4F9AE02/ZQWXw3xtTUdvSZVECzYEpnG7_bA.mft Manifest number: 0BCA Signing time: Fri 30 May 2025 19:06:47 +0000 Manifest this update: Fri 30 May 2025 19:06:46 +0000 Manifest next update: Fri 06 Jun 2025 19:06:46 +0000 Files and hashes: 1: ZQWXw3xtTUdvSZVECzYEpnG7_bA.crl (hash: /P/Lea56h0oCLULpHKw0sZDvHPzzFmnudfnFtnj5DKE=) 2: 9D8E0AF4E18C11ECB1697F55C4F9AE02.roa (hash: AhG5EQmnKsHYz3IRggOMcJqSh+00kQLALDjFL//vrE8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C3869/75DA447C1F4D11EA90505762C4F9AE02/ZQWXw3xtTUdvSZVECzYEpnG7_bA.crl rsync://rpki.apnic.net/member_repository/A91C3869/75DA447C1F4D11EA90505762C4F9AE02/ZQWXw3xtTUdvSZVECzYEpnG7_bA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ZQWXw3xtTUdvSZVECzYEpnG7_bA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 06 Jun 2025 19:06:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3031 (0xbd7) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C3869, serialNumber=650597C37C6D4D476F4995440B3604A671BBFDB0 Validity Not Before: May 30 19:06:46 2025 GMT Not After : Jun 6 19:06:46 2025 GMT Subject: CN=683a01c7-dba0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b0:7d:42:30:7c:86:8a:1e:bf:4f:17:fb:32:6d: bb:42:e7:ac:8c:b2:37:3f:fc:39:57:20:99:90:a1: a7:34:4c:4b:3f:79:d3:95:29:35:27:9c:01:3d:6b: 83:2c:9a:27:2c:16:5f:01:cf:a2:c4:a6:f0:d4:4b: 35:2c:2e:f3:e7:f6:11:19:0a:75:40:43:e8:f1:c6: f7:f4:70:ce:65:71:d6:33:9e:b1:ae:09:9a:7d:dc: 92:3c:9a:28:2f:fd:47:76:59:de:5f:6b:95:ea:35: 12:e1:7b:bb:84:e6:9f:12:ff:f8:99:88:44:f5:b2: 76:db:f1:55:73:e0:0b:9f:87:74:41:36:01:2e:14: c2:05:5d:f9:2b:ae:5c:2b:ed:51:ef:a2:1a:4c:9d: 06:95:58:d8:df:c7:9e:b3:82:5c:eb:e1:3a:bf:6a: 06:6d:44:14:73:93:be:fd:54:95:7f:01:26:c2:b9: 0f:a1:5a:f6:be:38:78:82:f3:8d:a2:27:f7:98:61: 16:c0:36:d3:51:51:48:e6:3e:f6:34:39:95:b2:07: 4c:4f:b8:09:c5:72:44:36:b0:e6:04:6b:06:d4:3d: 13:90:80:d1:3e:a2:d6:ec:11:2b:eb:07:6d:0a:8a: 82:1c:c9:e5:de:f8:e3:af:57:77:75:86:2c:d3:06: 22:1d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 34:58:0E:B3:26:3F:AC:A1:DC:0F:02:CC:0E:CD:62:32:8E:73:74:8A X509v3 Authority Key Identifier: keyid:65:05:97:C3:7C:6D:4D:47:6F:49:95:44:0B:36:04:A6:71:BB:FD:B0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C3869/75DA447C1F4D11EA90505762C4F9AE02/ZQWXw3xtTUdvSZVECzYEpnG7_bA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ZQWXw3xtTUdvSZVECzYEpnG7_bA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C3869/75DA447C1F4D11EA90505762C4F9AE02/ZQWXw3xtTUdvSZVECzYEpnG7_bA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 24:56:13:b2:e4:59:d9:63:4f:c2:0c:dd:99:27:af:b3:27:87: 66:3e:7a:ba:a9:ae:aa:ec:18:36:61:ea:f8:d1:59:1d:d2:2e: fa:77:4d:fe:b8:cb:b6:8f:3d:24:ac:67:69:83:90:96:e7:9a: 94:94:c7:c5:ca:83:53:f9:66:8a:d6:aa:e6:33:5d:88:3f:77: 7c:5f:9b:0a:c3:2c:0f:0f:98:f6:8b:97:64:95:9b:dd:67:7f: d8:fa:89:b3:22:ce:22:0d:bb:e8:af:7e:4e:9f:50:4a:53:1f: dd:8c:71:6a:73:03:7b:9b:fc:5f:53:f8:84:59:08:60:ad:99: ff:5c:c5:32:22:e4:6f:94:ae:80:66:7a:81:20:0b:d6:68:3a: fa:2d:bc:40:b7:b4:97:8f:88:56:83:c3:25:0f:04:c1:51:ec: 87:f7:4f:5f:68:1a:83:8c:4d:3a:c8:5d:2b:91:54:a8:1b:25: ad:4f:3a:ba:75:7e:c5:70:2b:b8:6e:fb:60:ce:3b:d6:3b:b4: 06:b1:94:50:21:21:f0:fa:2b:5c:08:8a:53:76:4a:02:04:a2: 46:a1:4a:9a:05:2c:52:e8:b2:71:31:ff:40:ed:34:9e:84:b0: 1d:98:01:51:f6:15:6b:4e:fd:aa:d1:26:cd:36:2f:0e:b7:32: 0e:13:92:65 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICC9cwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzM4NjkxMTAvBgNVBAUTKDY1MDU5N0MzN0M2RDRENDc2RjQ5OTU0NDBCMzYwNEE2 NzFCQkZEQjAwHhcNMjUwNTMwMTkwNjQ2WhcNMjUwNjA2MTkwNjQ2WjAYMRYwFAYD VQQDEw02ODNhMDFjNy1kYmEwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsH1CMHyGih6/Txf7Mm27QuesjLI3P/w5VyCZkKGnNExLP3nTlSk1J5wBPWuD LJonLBZfAc+ixKbw1Es1LC7z5/YRGQp1QEPo8cb39HDOZXHWM56xrgmafdySPJoo L/1HdlneX2uV6jUS4Xu7hOafEv/4mYhE9bJ22/FVc+ALn4d0QTYBLhTCBV35K65c K+1R76IaTJ0GlVjY38ees4Jc6+E6v2oGbUQUc5O+/VSVfwEmwrkPoVr2vjh4gvON oif3mGEWwDbTUVFI5j72NDmVsgdMT7gJxXJENrDmBGsG1D0TkIDRPqLW7BEr6wdt CoqCHMnl3vjjr1d3dYYs0wYiHQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFDRYDrMm P6yh3A8CzA7NYjKOc3SKMB8GA1UdIwQYMBaAFGUFl8N8bU1Hb0mVRAs2BKZxu/2w MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDMzg2OS83NURBNDQ3QzFG NEQxMUVBOTA1MDU3NjJDNEY5QUUwMi9aUVdYdzN4dFRVZHZTWlZFQ3pZRXBuRzdf YkEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1pRV1h3M3h0VFVkdlNaVkVDellFcG5HN19iQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD Mzg2OS83NURBNDQ3QzFGNEQxMUVBOTA1MDU3NjJDNEY5QUUwMi9aUVdYdzN4dFRV ZHZTWlZFQ3pZRXBuRzdfYkEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAkVhOy5FnZY0/CDN2ZJ6+zJ4dmPnq6qa6q7Bg2Yer40Vkd0i76d03+ uMu2jz0krGdpg5CW55qUlMfFyoNT+WaK1qrmM12IP3d8X5sKwywPD5j2i5dklZvd Z3/Y+omzIs4iDbvor35On1BKUx/djHFqcwN7m/xfU/iEWQhgrZn/XMUyIuRvlK6A ZnqBIAvWaDr6LbxAt7SXj4hWg8MlDwTBUeyH909faBqDjE06yF0rkVSoGyWtTzq6 dX7FcCu4bvtgzjvWO7QGsZRQISHw+itcCIpTdkoCBKJGoUqaBSxS6LJxMf9A7TSe hLAdmAFR9hVrTv2q0SbNNi8OtzIOE5Jl -----END CERTIFICATE-----Generated at Sat May 31 15:53:30 2025 by rpki-client