$ rpki-client -vvf rpki.apnic.net/member_repository/A91EBFB0/A3AB43B2F87C11E9AA2CF158C4F9AE02/zIUJ0x-2Oo3da_LT2Ex7wLK6P8A.mft File: zIUJ0x-2Oo3da_LT2Ex7wLK6P8A.mft (raw, json) Hash identifier: FzXfLcrDxxec9y0BtCHBZ6zLhxpfmMrCRSvonIBmv/4= Subject key identifier: 3D:83:38:58:2C:2F:77:DE:EA:5A:B2:3D:A2:C7:C1:6C:45:03:C7:07 Authority key identifier: CC:85:09:D3:1F:B6:3A:8D:DD:6B:F2:D3:D8:4C:7B:C0:B2:BA:3F:C0 Certificate issuer: /CN=A91EBFB0/serialNumber=CC8509D31FB63A8DDD6BF2D3D84C7BC0B2BA3FC0 Certificate serial: 0C87 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/zIUJ0x-2Oo3da_LT2Ex7wLK6P8A.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91EBFB0/A3AB43B2F87C11E9AA2CF158C4F9AE02/zIUJ0x-2Oo3da_LT2Ex7wLK6P8A.mft Manifest number: 0C81 Signing time: Fri 30 May 2025 18:26:44 +0000 Manifest this update: Fri 30 May 2025 18:26:44 +0000 Manifest next update: Fri 06 Jun 2025 18:26:44 +0000 Files and hashes: 1: zIUJ0x-2Oo3da_LT2Ex7wLK6P8A.crl (hash: aTyBMP6zQlhGzT+be/oVtSqoCKAKxG+PpB39HdVakp0=) 2: F690CAECF87D11E9A746D05BC4F9AE02.roa (hash: tPAGXaSYisbjEXVlWGxE30ABgdsZwLOrekyu2J6vfbg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91EBFB0/A3AB43B2F87C11E9AA2CF158C4F9AE02/zIUJ0x-2Oo3da_LT2Ex7wLK6P8A.crl rsync://rpki.apnic.net/member_repository/A91EBFB0/A3AB43B2F87C11E9AA2CF158C4F9AE02/zIUJ0x-2Oo3da_LT2Ex7wLK6P8A.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/zIUJ0x-2Oo3da_LT2Ex7wLK6P8A.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 06 Jun 2025 18:26:43 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3207 (0xc87) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91EBFB0, serialNumber=CC8509D31FB63A8DDD6BF2D3D84C7BC0B2BA3FC0 Validity Not Before: May 30 18:26:44 2025 GMT Not After : Jun 6 18:26:44 2025 GMT Subject: CN=6839f864-319f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:97:33:27:a4:90:34:f2:e8:58:87:59:9d:fb:05: e0:c3:9a:6c:48:e5:c3:23:2f:e1:0d:65:98:82:92: f8:cf:79:41:3a:20:21:2e:ea:af:b7:b3:bd:09:a9: 5f:be:82:a0:ae:7e:6d:ee:c1:28:a1:82:f4:93:cd: 79:5b:40:fe:20:c9:23:23:20:be:b8:96:ff:14:36: f5:fa:46:31:da:1e:d1:e9:99:67:60:6c:03:7e:78: f4:97:6b:de:06:b4:eb:58:4f:ba:f6:cc:e8:65:0f: a4:d1:88:96:9f:c5:c6:ae:94:0a:83:43:42:eb:08: 8e:b6:9b:03:84:20:01:9c:41:62:8a:2a:47:35:64: d5:4c:f3:49:0b:e2:e8:98:64:ed:fb:2f:71:a4:09: 37:53:a5:1b:3a:3e:71:82:dc:a8:c5:7a:55:b7:8e: 57:74:ee:50:6b:7d:63:f4:22:3b:dd:dd:84:75:f3: ce:33:a0:2b:8d:34:13:df:62:7a:f6:57:14:40:eb: e9:47:f4:5d:4d:11:df:10:f3:80:20:26:30:d0:59: 88:f8:82:93:6c:03:a1:6c:b5:34:e8:cb:eb:48:9b: 7f:9f:52:81:77:7c:a8:6e:3f:be:bb:01:ad:75:dd: 5b:d2:ab:d6:f5:c3:99:81:75:56:2b:89:0d:da:ae: e9:2d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3D:83:38:58:2C:2F:77:DE:EA:5A:B2:3D:A2:C7:C1:6C:45:03:C7:07 X509v3 Authority Key Identifier: keyid:CC:85:09:D3:1F:B6:3A:8D:DD:6B:F2:D3:D8:4C:7B:C0:B2:BA:3F:C0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91EBFB0/A3AB43B2F87C11E9AA2CF158C4F9AE02/zIUJ0x-2Oo3da_LT2Ex7wLK6P8A.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/zIUJ0x-2Oo3da_LT2Ex7wLK6P8A.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91EBFB0/A3AB43B2F87C11E9AA2CF158C4F9AE02/zIUJ0x-2Oo3da_LT2Ex7wLK6P8A.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 56:64:9a:a9:62:9b:35:35:50:6c:5f:f7:9b:ea:a3:0d:8e:e2: 58:9f:90:63:ad:61:37:03:c6:f0:ed:53:0b:78:79:2b:de:c9: 91:64:d4:a9:8d:c6:d1:c3:c0:04:fd:63:28:37:d9:8a:61:5a: ca:cf:f4:81:f1:ba:0e:e7:e6:f3:4a:b3:24:61:54:15:17:84: 21:fa:e3:8b:a1:8e:6e:c3:97:d7:8b:a6:fd:76:16:f8:7c:57: 10:16:b2:5c:e2:a2:50:1b:b3:a9:93:6d:59:de:53:07:19:58: 38:be:54:f1:b2:29:55:e1:7b:ca:7c:54:a0:0a:56:c2:0a:4c: 49:b1:61:c9:33:b8:ee:06:87:e5:61:23:c2:a0:89:a0:cd:21: 7e:59:81:0d:11:6c:30:fb:63:02:7f:5d:33:24:9b:c7:ea:e3: 03:b8:d9:a8:bb:ba:56:00:47:ef:e0:1b:6e:7a:2a:e6:99:a1: 38:56:b5:10:9e:bb:e0:d4:8e:ea:18:7a:91:57:fa:16:b2:a4: ca:50:ba:8a:42:bb:b2:27:47:18:5a:95:a9:cc:b2:89:5f:e5: 67:1e:c5:8d:4e:c8:42:40:8f:ca:a1:79:5d:36:7e:60:26:e2: 2f:a4:8a:74:1e:95:f2:78:22:a0:69:92:c3:ff:a5:b1:7a:a6: d6:57:6e:04 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDIcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RUJGQjAxMTAvBgNVBAUTKENDODUwOUQzMUZCNjNBOERERDZCRjJEM0Q4NEM3QkMw QjJCQTNGQzAwHhcNMjUwNTMwMTgyNjQ0WhcNMjUwNjA2MTgyNjQ0WjAYMRYwFAYD VQQDEw02ODM5Zjg2NC0zMTlmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAlzMnpJA08uhYh1md+wXgw5psSOXDIy/hDWWYgpL4z3lBOiAhLuqvt7O9Calf voKgrn5t7sEooYL0k815W0D+IMkjIyC+uJb/FDb1+kYx2h7R6ZlnYGwDfnj0l2ve BrTrWE+69szoZQ+k0YiWn8XGrpQKg0NC6wiOtpsDhCABnEFiiipHNWTVTPNJC+Lo mGTt+y9xpAk3U6UbOj5xgtyoxXpVt45XdO5Qa31j9CI73d2EdfPOM6ArjTQT32J6 9lcUQOvpR/RdTRHfEPOAICYw0FmI+IKTbAOhbLU06MvrSJt/n1KBd3yobj++uwGt dd1b0qvW9cOZgXVWK4kN2q7pLQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFD2DOFgs L3fe6lqyPaLHwWxFA8cHMB8GA1UdIwQYMBaAFMyFCdMftjqN3Wvy09hMe8Cyuj/A MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFQkZCMC9BM0FCNDNCMkY4 N0MxMUU5QUEyQ0YxNThDNEY5QUUwMi96SVVKMHgtMk9vM2RhX0xUMkV4N3dMSzZQ OEEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3pJVUoweC0yT28zZGFfTFQyRXg3d0xLNlA4QS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF QkZCMC9BM0FCNDNCMkY4N0MxMUU5QUEyQ0YxNThDNEY5QUUwMi96SVVKMHgtMk9v M2RhX0xUMkV4N3dMSzZQOEEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBWZJqpYps1NVBsX/eb6qMNjuJYn5BjrWE3A8bw7VMLeHkr3smRZNSp jcbRw8AE/WMoN9mKYVrKz/SB8boO5+bzSrMkYVQVF4Qh+uOLoY5uw5fXi6b9dhb4 fFcQFrJc4qJQG7Opk21Z3lMHGVg4vlTxsilV4XvKfFSgClbCCkxJsWHJM7juBofl YSPCoImgzSF+WYENEWww+2MCf10zJJvH6uMDuNmou7pWAEfv4BtueirmmaE4VrUQ nrvg1I7qGHqRV/oWsqTKULqKQruyJ0cYWpWpzLKJX+VnHsWNTshCQI/KoXldNn5g JuIvpIp0HpXyeCKgaZLD/6WxeqbWV24E -----END CERTIFICATE-----Generated at Sat May 31 16:36:54 2025 by rpki-client