$ rpki-client -vvf rpki.apnic.net/member_repository/A91E4468/827524E88EE511EEA2EEDD12C4F9AE02/r_zmN5iBZebFG_v-vRKD1REkAZA.mft File: r_zmN5iBZebFG_v-vRKD1REkAZA.mft (raw, json) Hash identifier: m7Ml0qyXcnoBtdT4wYiJ7UthnC6hBFndozoL6thSlUM= Subject key identifier: 74:63:2C:48:68:F2:EA:98:23:C6:50:A1:CF:F7:10:57:42:E6:9D:A0 Authority key identifier: AF:FC:E6:37:98:81:65:E6:C5:1B:FB:FE:BD:12:83:D5:11:24:01:90 Certificate issuer: /CN=A91E4468/serialNumber=AFFCE637988165E6C51BFBFEBD1283D511240190 Certificate serial: 0129 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/r_zmN5iBZebFG_v-vRKD1REkAZA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E4468/827524E88EE511EEA2EEDD12C4F9AE02/r_zmN5iBZebFG_v-vRKD1REkAZA.mft Manifest number: 0121 Signing time: Sat 31 May 2025 04:26:12 +0000 Manifest this update: Sat 31 May 2025 04:26:11 +0000 Manifest next update: Sat 07 Jun 2025 04:26:11 +0000 Files and hashes: 1: r_zmN5iBZebFG_v-vRKD1REkAZA.crl (hash: Bf5W4WlYXd5wN3MvPGVPwQMcNVwLfiVHw13pH8SHW/4=) 2: C531DD12226F11EF8D24AD63C4F9AE02.roa (hash: a2/vehSWDoff6mLTg7VEADcM0ey8iDfcQQZxJYEqkDM=) 3: C608133C226F11EF8D24AD63C4F9AE02.roa (hash: GATUqbNDhKaVb/i1ZjCIO1rgwevFVCyWk8Ts83izVL4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E4468/827524E88EE511EEA2EEDD12C4F9AE02/r_zmN5iBZebFG_v-vRKD1REkAZA.crl rsync://rpki.apnic.net/member_repository/A91E4468/827524E88EE511EEA2EEDD12C4F9AE02/r_zmN5iBZebFG_v-vRKD1REkAZA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/r_zmN5iBZebFG_v-vRKD1REkAZA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 07 Jun 2025 04:26:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 297 (0x129) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E4468, serialNumber=AFFCE637988165E6C51BFBFEBD1283D511240190 Validity Not Before: May 31 04:26:11 2025 GMT Not After : Jun 7 04:26:11 2025 GMT Subject: CN=683a84e4-aae5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:af:2c:dd:d0:4f:ed:05:6e:b7:a0:82:f5:eb:86: 08:f6:14:a9:9c:07:67:13:89:ec:a4:2d:1d:64:8b: 2e:09:c3:f2:d7:52:c9:8e:a6:8c:e8:d0:15:4a:8a: b1:1c:b0:82:e7:a8:50:43:d1:2d:31:4e:84:a9:d5: fc:6f:a2:27:7e:4e:39:d9:f7:11:aa:c9:db:e4:e2: db:d2:e1:03:98:fe:8b:f9:af:9b:b2:99:b1:25:fa: 19:49:16:e2:de:a2:56:86:88:20:2e:88:97:95:f8: 61:92:51:2a:6d:6a:9b:65:88:e8:48:25:9c:46:78: 50:1c:dd:31:8b:63:48:51:da:46:cf:c5:af:43:cf: 8f:92:1b:e3:9a:6e:81:78:9a:3b:ad:2d:71:78:03: e6:3d:0c:50:85:45:2d:52:3d:03:45:47:1b:4c:19: f7:59:a0:80:29:2d:c8:3f:59:f9:00:be:48:6e:d4: 70:f8:c6:3a:59:85:c7:97:b3:7c:b6:2d:ea:2f:07: 23:7d:ee:22:a0:c0:bf:de:fa:e4:e6:91:ad:f1:a2: 10:71:ce:65:c8:d8:95:b7:66:3f:d5:d8:09:cf:ca: b6:80:f2:63:ad:1e:6e:3f:26:27:b2:e0:0e:84:07: f4:78:35:fe:7c:aa:00:5a:26:27:9e:7c:da:15:01: 55:7f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 74:63:2C:48:68:F2:EA:98:23:C6:50:A1:CF:F7:10:57:42:E6:9D:A0 X509v3 Authority Key Identifier: keyid:AF:FC:E6:37:98:81:65:E6:C5:1B:FB:FE:BD:12:83:D5:11:24:01:90 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E4468/827524E88EE511EEA2EEDD12C4F9AE02/r_zmN5iBZebFG_v-vRKD1REkAZA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/r_zmN5iBZebFG_v-vRKD1REkAZA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E4468/827524E88EE511EEA2EEDD12C4F9AE02/r_zmN5iBZebFG_v-vRKD1REkAZA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 9c:da:95:79:b0:84:6c:69:15:fb:bd:48:5f:b3:11:18:51:6f: f7:a4:f2:56:3a:bd:63:f0:41:85:9a:eb:60:7a:30:78:eb:59: 76:e4:05:ae:c4:db:81:c3:b8:6c:1b:11:09:68:d4:76:86:21: 0f:4e:c4:8f:53:6b:eb:0b:ee:a4:39:fa:9c:d2:a8:da:a4:76: 44:a7:8d:66:fb:62:ca:83:a5:5d:d2:8a:6f:7b:2f:14:6d:4c: a1:7c:cf:f7:2a:1b:1a:78:48:2e:e4:61:da:97:6d:86:77:72: 59:41:72:c1:38:66:1d:18:53:dd:fd:f1:66:ad:47:37:cc:c4: 56:16:47:f2:01:59:aa:5d:0d:2a:a7:fa:b4:63:ba:0a:42:14: e7:4b:d2:7f:5a:69:1c:b1:1d:36:ae:e6:68:8d:b8:41:d7:54: 40:d0:23:64:70:80:0d:6f:d2:65:37:37:f3:49:2b:c4:ec:ee: 27:c8:9c:bb:e0:44:a2:a7:07:16:3e:5c:cb:7d:37:f4:57:b8: 01:2d:1f:b8:f4:5b:8d:89:a0:a5:21:07:b8:de:d1:55:38:b6: bf:d5:c0:62:1f:39:a9:e0:62:51:73:21:03:c3:e4:47:4b:38: ca:56:b8:35:0d:ec:27:9f:65:80:8b:3d:47:23:06:fd:45:51: b7:e1:9e:11 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICASkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTQ0NjgxMTAvBgNVBAUTKEFGRkNFNjM3OTg4MTY1RTZDNTFCRkJGRUJEMTI4M0Q1 MTEyNDAxOTAwHhcNMjUwNTMxMDQyNjExWhcNMjUwNjA3MDQyNjExWjAYMRYwFAYD VQQDEw02ODNhODRlNC1hYWU1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAryzd0E/tBW63oIL164YI9hSpnAdnE4nspC0dZIsuCcPy11LJjqaM6NAVSoqx HLCC56hQQ9EtMU6EqdX8b6Infk452fcRqsnb5OLb0uEDmP6L+a+bspmxJfoZSRbi 3qJWhoggLoiXlfhhklEqbWqbZYjoSCWcRnhQHN0xi2NIUdpGz8WvQ8+Pkhvjmm6B eJo7rS1xeAPmPQxQhUUtUj0DRUcbTBn3WaCAKS3IP1n5AL5IbtRw+MY6WYXHl7N8 ti3qLwcjfe4ioMC/3vrk5pGt8aIQcc5lyNiVt2Y/1dgJz8q2gPJjrR5uPyYnsuAO hAf0eDX+fKoAWiYnnnzaFQFVfwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFHRjLEho 8uqYI8ZQoc/3EFdC5p2gMB8GA1UdIwQYMBaAFK/85jeYgWXmxRv7/r0Sg9URJAGQ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFNDQ2OC84Mjc1MjRFODhF RTUxMUVFQTJFRUREMTJDNEY5QUUwMi9yX3ptTjVpQlplYkZHX3YtdlJLRDFSRWtB WkEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3Jfem1ONWlCWmViRkdfdi12UktEMVJFa0FaQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF NDQ2OC84Mjc1MjRFODhFRTUxMUVFQTJFRUREMTJDNEY5QUUwMi9yX3ptTjVpQlpl YkZHX3YtdlJLRDFSRWtBWkEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCc2pV5sIRsaRX7vUhfsxEYUW/3pPJWOr1j8EGFmutgejB461l25AWu xNuBw7hsGxEJaNR2hiEPTsSPU2vrC+6kOfqc0qjapHZEp41m+2LKg6Vd0opvey8U bUyhfM/3KhsaeEgu5GHal22Gd3JZQXLBOGYdGFPd/fFmrUc3zMRWFkfyAVmqXQ0q p/q0Y7oKQhTnS9J/WmkcsR02ruZojbhB11RA0CNkcIANb9JlNzfzSSvE7O4nyJy7 4ESipwcWPlzLfTf0V7gBLR+49FuNiaClIQe43tFVOLa/1cBiHzmp4GJRcyEDw+RH SzjKVrg1Dewnn2WAiz1HIwb9RVG34Z4R -----END CERTIFICATE-----Generated at Sat May 31 16:56:18 2025 by rpki-client