$ rpki-client -vvf rpki.apnic.net/member_repository/A91DE500/49E6FE46C72D11EE9C7C351DC4F9AE02/cz1KHp8pnM0_jnJKteer9Ci7GV0.mft File: cz1KHp8pnM0_jnJKteer9Ci7GV0.mft (raw, json) Hash identifier: zLZHGzaFxgm91RzxuEHEfFo3stSoo7LNN1M9Qfkr+GE= Subject key identifier: E4:EF:D4:B1:A2:D5:AE:19:F3:1D:68:8B:D7:C4:36:58:58:2D:ED:49 Authority key identifier: 73:3D:4A:1E:9F:29:9C:CD:3F:8E:72:4A:B5:E7:AB:F4:28:BB:19:5D Certificate issuer: /CN=A91DE500/serialNumber=733D4A1E9F299CCD3F8E724AB5E7ABF428BB195D Certificate serial: FE Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cz1KHp8pnM0_jnJKteer9Ci7GV0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91DE500/49E6FE46C72D11EE9C7C351DC4F9AE02/cz1KHp8pnM0_jnJKteer9Ci7GV0.mft Manifest number: FB Signing time: Sat 31 May 2025 04:52:17 +0000 Manifest this update: Sat 31 May 2025 04:52:17 +0000 Manifest next update: Sat 07 Jun 2025 04:52:17 +0000 Files and hashes: 1: cz1KHp8pnM0_jnJKteer9Ci7GV0.crl (hash: i0c1EJ5jmV1dnM2qwxFh19ENTBspNLW0gofeQSaz5l4=) 2: 0C897F3EE84111EFA819A335C4F9AE02.roa (hash: 5gQHbtykFLXuasC1zPt+ul7Apydf3ObCnPPOkuixA6c=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91DE500/49E6FE46C72D11EE9C7C351DC4F9AE02/cz1KHp8pnM0_jnJKteer9Ci7GV0.crl rsync://rpki.apnic.net/member_repository/A91DE500/49E6FE46C72D11EE9C7C351DC4F9AE02/cz1KHp8pnM0_jnJKteer9Ci7GV0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cz1KHp8pnM0_jnJKteer9Ci7GV0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 07 Jun 2025 04:52:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 254 (0xfe) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DE500, serialNumber=733D4A1E9F299CCD3F8E724AB5E7ABF428BB195D Validity Not Before: May 31 04:52:17 2025 GMT Not After : Jun 7 04:52:17 2025 GMT Subject: CN=683a8b01-7527 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:61:c4:d1:58:f5:ac:a4:27:45:51:b2:ff:09: a4:ea:6e:83:a3:ba:cb:6f:f5:8e:54:7b:80:b5:d4: 24:45:c4:b5:0f:a2:bd:c2:ab:c6:42:43:94:26:00: 46:48:a6:fb:12:8e:1c:5b:66:6b:76:23:16:e4:af: a6:f3:d0:9f:e0:09:ff:13:01:ea:05:b5:a4:38:c8: 45:67:a6:fb:da:63:ee:3a:a7:97:1f:69:93:e5:db: 2d:2f:61:d1:41:2f:1a:fc:6f:11:c5:8d:e5:ef:a1: 74:c4:f4:f7:bd:16:6b:5e:21:18:53:2f:ee:25:73: d9:ff:3e:dc:77:d7:68:df:1a:58:94:01:cd:62:28: c3:63:21:b8:fa:ce:e7:fa:2b:3a:ee:ad:b1:ac:3f: d0:7b:41:37:3a:33:76:2d:be:27:f0:12:a5:03:ba: f9:6e:6b:52:55:dc:d8:82:24:84:78:fd:65:e2:9f: ac:06:1d:8f:f2:2b:4d:dc:2d:61:5b:ce:73:8f:49: e4:16:7d:09:aa:40:bf:ba:60:3c:14:ad:31:7c:db: 25:9f:31:08:70:cc:8e:15:e5:1e:78:aa:8c:89:1c: 79:1b:f2:78:8e:8d:cf:4f:8e:82:65:0b:b6:55:08: 85:b7:9c:31:2c:81:d1:3b:0b:93:30:19:3e:e4:3b: 23:11 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E4:EF:D4:B1:A2:D5:AE:19:F3:1D:68:8B:D7:C4:36:58:58:2D:ED:49 X509v3 Authority Key Identifier: keyid:73:3D:4A:1E:9F:29:9C:CD:3F:8E:72:4A:B5:E7:AB:F4:28:BB:19:5D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91DE500/49E6FE46C72D11EE9C7C351DC4F9AE02/cz1KHp8pnM0_jnJKteer9Ci7GV0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cz1KHp8pnM0_jnJKteer9Ci7GV0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DE500/49E6FE46C72D11EE9C7C351DC4F9AE02/cz1KHp8pnM0_jnJKteer9Ci7GV0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 30:ee:3a:e8:22:1a:81:e6:ef:f2:7b:c4:0f:8b:3d:f5:c7:a7: 28:49:22:71:b3:9e:a1:ad:b2:e3:2c:9c:45:84:b8:a9:f8:c1: 19:74:51:ea:59:3c:fc:be:d3:a1:ac:f5:a5:a1:ed:f4:5e:d0: a4:36:ed:13:3d:c7:84:22:91:90:37:a4:ec:be:fb:8c:32:8c: 29:6e:2c:2a:eb:88:a6:7c:29:99:26:ca:4e:20:b8:0e:46:52: f9:8a:d5:e4:fd:76:f4:60:c5:40:60:40:79:df:e2:f2:fb:b4: 70:9a:83:e9:7d:4b:d3:fa:b6:b4:0e:9a:b1:1a:70:1b:ab:e5: f1:2d:8d:cf:2d:09:85:cb:2a:7f:8e:2d:84:b0:f9:b9:fd:42: 17:83:14:2a:ec:34:35:ed:91:21:89:1d:c0:3d:c0:c0:b7:35: 19:ae:63:fc:bf:fc:f3:bd:5d:c2:08:a0:c1:37:26:a0:91:35: 9b:e6:2d:2e:e1:3c:a0:b4:e0:23:e6:6a:8b:f2:f8:e0:18:8c: f4:1f:42:0f:7f:39:0e:86:f3:53:2d:32:68:b0:5a:cc:dc:2a: cb:87:50:8d:fb:01:3c:6c:de:3b:ed:bb:64:4b:4e:77:94:65: e5:74:45:a2:b6:a4:db:38:a7:f2:14:95:71:e2:20:07:e5:77: f4:e1:01:6c -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAP4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx REU1MDAxMTAvBgNVBAUTKDczM0Q0QTFFOUYyOTlDQ0QzRjhFNzI0QUI1RTdBQkY0 MjhCQjE5NUQwHhcNMjUwNTMxMDQ1MjE3WhcNMjUwNjA3MDQ1MjE3WjAYMRYwFAYD VQQDEw02ODNhOGIwMS03NTI3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvmHE0Vj1rKQnRVGy/wmk6m6Do7rLb/WOVHuAtdQkRcS1D6K9wqvGQkOUJgBG SKb7Eo4cW2ZrdiMW5K+m89Cf4An/EwHqBbWkOMhFZ6b72mPuOqeXH2mT5dstL2HR QS8a/G8RxY3l76F0xPT3vRZrXiEYUy/uJXPZ/z7cd9do3xpYlAHNYijDYyG4+s7n +is67q2xrD/Qe0E3OjN2Lb4n8BKlA7r5bmtSVdzYgiSEeP1l4p+sBh2P8itN3C1h W85zj0nkFn0JqkC/umA8FK0xfNslnzEIcMyOFeUeeKqMiRx5G/J4jo3PT46CZQu2 VQiFt5wxLIHROwuTMBk+5DsjEQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFOTv1LGi 1a4Z8x1oi9fENlhYLe1JMB8GA1UdIwQYMBaAFHM9Sh6fKZzNP45ySrXnq/Qouxld MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFERTUwMC80OUU2RkU0NkM3 MkQxMUVFOUM3QzM1MURDNEY5QUUwMi9jejFLSHA4cG5NMF9qbkpLdGVlcjlDaTdH VjAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2N6MUtIcDhwbk0wX2puSkt0ZWVyOUNpN0dWMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE RTUwMC80OUU2RkU0NkM3MkQxMUVFOUM3QzM1MURDNEY5QUUwMi9jejFLSHA4cG5N MF9qbkpLdGVlcjlDaTdHVjAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAw7jroIhqB5u/ye8QPiz31x6coSSJxs56hrbLjLJxFhLip+MEZdFHq WTz8vtOhrPWloe30XtCkNu0TPceEIpGQN6TsvvuMMowpbiwq64imfCmZJspOILgO RlL5itXk/Xb0YMVAYEB53+Ly+7RwmoPpfUvT+ra0DpqxGnAbq+XxLY3PLQmFyyp/ ji2EsPm5/UIXgxQq7DQ17ZEhiR3APcDAtzUZrmP8v/zzvV3CCKDBNyagkTWb5i0u 4TygtOAj5mqL8vjgGIz0H0IPfzkOhvNTLTJosFrM3CrLh1CN+wE8bN477btkS053 lGXldEWitqTbOKfyFJVx4iAH5Xf04QFs -----END CERTIFICATE-----Generated at Sat May 31 17:12:56 2025 by rpki-client