$ rpki-client -vvf rpki.apnic.net/member_repository/A91CF848/CADAB7B22E6E11EDAEAB3E36C4F9AE02/2zU_lsDQLN1MHwjaG8Fp_uWNcyE.mft File: 2zU_lsDQLN1MHwjaG8Fp_uWNcyE.mft (raw, json) Hash identifier: tx+FEpWZPXL6tg/risoekEghfuH6N1/1AEhmZ5GlswI= Subject key identifier: FD:34:2F:34:C6:6D:89:22:69:5D:4C:3E:45:B3:0E:78:F5:96:61:6C Authority key identifier: DB:35:3F:96:C0:D0:2C:DD:4C:1F:08:DA:1B:C1:69:FE:E5:8D:73:21 Certificate issuer: /CN=A91CF848/serialNumber=DB353F96C0D02CDD4C1F08DA1BC169FEE58D7321 Certificate serial: 0226 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2zU_lsDQLN1MHwjaG8Fp_uWNcyE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CF848/CADAB7B22E6E11EDAEAB3E36C4F9AE02/2zU_lsDQLN1MHwjaG8Fp_uWNcyE.mft Manifest number: 0223 Signing time: Sat 31 May 2025 02:07:39 +0000 Manifest this update: Sat 31 May 2025 02:07:38 +0000 Manifest next update: Sat 07 Jun 2025 02:07:38 +0000 Files and hashes: 1: 2zU_lsDQLN1MHwjaG8Fp_uWNcyE.crl (hash: G53Y1fqlDFPv2/HL1aIIEp9wO1A6gXOosIFRfIqsx6I=) 2: E9399E722E7211EDAE100C3DC4F9AE02.roa (hash: D0U/04LVw+4iZc1LWZSDtE7FA2UlXVxHf7VWpO51OsQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CF848/CADAB7B22E6E11EDAEAB3E36C4F9AE02/2zU_lsDQLN1MHwjaG8Fp_uWNcyE.crl rsync://rpki.apnic.net/member_repository/A91CF848/CADAB7B22E6E11EDAEAB3E36C4F9AE02/2zU_lsDQLN1MHwjaG8Fp_uWNcyE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2zU_lsDQLN1MHwjaG8Fp_uWNcyE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 07 Jun 2025 02:07:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 550 (0x226) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CF848, serialNumber=DB353F96C0D02CDD4C1F08DA1BC169FEE58D7321 Validity Not Before: May 31 02:07:38 2025 GMT Not After : Jun 7 02:07:38 2025 GMT Subject: CN=683a646b-cfab Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:49:ac:bd:b6:f3:cf:52:2c:b7:15:19:e3:4e: 66:d0:44:2c:5e:63:0a:3f:84:da:c9:1a:21:46:9a: b0:c2:e6:29:87:bc:24:a6:8c:f4:3d:e0:b0:c6:31: d2:52:28:92:a6:87:db:34:07:c8:b1:92:d4:b3:b8: cd:9e:76:a0:f0:fd:34:6d:9b:5d:cf:7c:7b:12:5e: 82:20:35:2e:9a:5f:2a:9b:77:d9:c9:5c:80:91:5e: ff:a9:eb:2e:8d:db:70:93:80:9b:95:66:44:08:d0: 56:c0:7c:b8:ca:7b:7f:ab:33:0d:1a:6b:12:3c:71: 46:02:a9:07:d3:d6:39:d2:a7:ed:e4:aa:e2:2e:43: 0a:5b:75:b2:2c:ff:c6:94:ed:af:77:0e:19:ed:59: a6:9d:38:fc:ef:df:8d:dc:75:4b:2c:99:b1:80:ed: 13:b3:6b:2c:00:d9:19:d9:d0:6f:3c:4a:46:27:31: d0:5a:9b:9d:b9:71:f0:52:ad:90:39:ae:e6:1e:6e: 6d:fe:6e:c6:f8:0d:71:4a:75:0f:67:a7:d8:59:1b: c3:00:0c:08:d2:a4:3b:b9:7c:dd:0f:09:15:55:b3: b7:18:1b:3b:c6:6b:a2:18:a8:14:d3:81:e6:dc:63: 35:51:6a:2d:7c:82:67:3c:5c:55:71:e1:e9:8d:04: 83:07 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FD:34:2F:34:C6:6D:89:22:69:5D:4C:3E:45:B3:0E:78:F5:96:61:6C X509v3 Authority Key Identifier: keyid:DB:35:3F:96:C0:D0:2C:DD:4C:1F:08:DA:1B:C1:69:FE:E5:8D:73:21 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CF848/CADAB7B22E6E11EDAEAB3E36C4F9AE02/2zU_lsDQLN1MHwjaG8Fp_uWNcyE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2zU_lsDQLN1MHwjaG8Fp_uWNcyE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CF848/CADAB7B22E6E11EDAEAB3E36C4F9AE02/2zU_lsDQLN1MHwjaG8Fp_uWNcyE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 57:bc:93:33:ea:f4:47:f1:f3:09:dd:cb:42:0b:10:ed:7e:01: 59:f2:36:f9:3f:99:e7:6b:e2:17:56:43:01:5d:49:10:15:40: f7:17:76:a4:8f:bb:13:f8:67:73:ba:d3:e9:03:2e:83:15:ea: c5:39:09:49:dd:77:e9:56:01:3e:ec:3f:2c:45:f9:19:60:32: 54:3c:03:0d:79:e0:81:60:f8:d7:d8:da:f6:64:3b:e4:f0:c7: 8b:45:b9:20:e5:81:6a:2c:cd:74:d5:60:97:42:df:bd:9a:f1: d5:b8:c9:4c:b6:9c:b9:ca:af:fe:0e:27:84:b2:b2:27:72:6f: 78:e1:74:3a:4c:ce:4c:e2:ec:58:0c:3c:0e:7a:48:fb:a0:ff: 36:32:38:eb:9d:90:cc:b6:f7:cd:08:9e:44:e2:97:2e:4e:af: c9:63:75:31:bb:24:25:cd:26:be:72:b6:5d:65:26:11:c3:bd: 3d:96:03:0a:71:16:cd:91:57:59:08:83:49:b2:18:0b:7a:22: 43:15:64:0b:12:35:e1:03:47:83:06:27:36:8b:d7:8d:c9:0e: f4:66:bd:30:02:b0:4e:91:b2:f9:cb:1e:f7:63:1c:16:2c:40: 41:8a:dd:f9:c8:5c:4c:e9:eb:0a:be:e3:d8:e0:a7:c5:88:c6: ba:21:52:9a -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAiYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Q0Y4NDgxMTAvBgNVBAUTKERCMzUzRjk2QzBEMDJDREQ0QzFGMDhEQTFCQzE2OUZF RTU4RDczMjEwHhcNMjUwNTMxMDIwNzM4WhcNMjUwNjA3MDIwNzM4WjAYMRYwFAYD VQQDEw02ODNhNjQ2Yi1jZmFiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAt0msvbbzz1IstxUZ405m0EQsXmMKP4TayRohRpqwwuYph7wkpoz0PeCwxjHS UiiSpofbNAfIsZLUs7jNnnag8P00bZtdz3x7El6CIDUuml8qm3fZyVyAkV7/qesu jdtwk4CblWZECNBWwHy4ynt/qzMNGmsSPHFGAqkH09Y50qft5KriLkMKW3WyLP/G lO2vdw4Z7VmmnTj879+N3HVLLJmxgO0Ts2ssANkZ2dBvPEpGJzHQWpuduXHwUq2Q Oa7mHm5t/m7G+A1xSnUPZ6fYWRvDAAwI0qQ7uXzdDwkVVbO3GBs7xmuiGKgU04Hm 3GM1UWotfIJnPFxVceHpjQSDBwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFP00LzTG bYkiaV1MPkWzDnj1lmFsMB8GA1UdIwQYMBaAFNs1P5bA0CzdTB8I2hvBaf7ljXMh MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDRjg0OC9DQURBQjdCMjJF NkUxMUVEQUVBQjNFMzZDNEY5QUUwMi8yelVfbHNEUUxOMU1Id2phRzhGcF91V05j eUUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzJ6VV9sc0RRTE4xTUh3amFHOEZwX3VXTmN5RS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD Rjg0OC9DQURBQjdCMjJFNkUxMUVEQUVBQjNFMzZDNEY5QUUwMi8yelVfbHNEUUxO MU1Id2phRzhGcF91V05jeUUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBXvJMz6vRH8fMJ3ctCCxDtfgFZ8jb5P5nna+IXVkMBXUkQFUD3F3ak j7sT+GdzutPpAy6DFerFOQlJ3XfpVgE+7D8sRfkZYDJUPAMNeeCBYPjX2Nr2ZDvk 8MeLRbkg5YFqLM101WCXQt+9mvHVuMlMtpy5yq/+DieEsrIncm944XQ6TM5M4uxY DDwOekj7oP82MjjrnZDMtvfNCJ5E4pcuTq/JY3UxuyQlzSa+crZdZSYRw709lgMK cRbNkVdZCINJshgLeiJDFWQLEjXhA0eDBic2i9eNyQ70Zr0wArBOkbL5yx73YxwW LEBBit35yFxM6esKvuPY4KfFiMa6IVKa -----END CERTIFICATE-----Generated at Sat May 31 16:25:59 2025 by rpki-client