$ rpki-client -vvf rpki.apnic.net/member_repository/A91FA729/28B9D01CE5F811E79A7D8433C4F9AE02/zo4PK6SZxeWHsBXhBE8JjOYsp1g.mft File: zo4PK6SZxeWHsBXhBE8JjOYsp1g.mft (raw, json) Hash identifier: eI10rGWUZGpUmKE0wgJstNesLKoqFvLWuDMOcGE64Vw= Subject key identifier: 7B:B1:84:C6:AB:ED:51:D5:7A:D4:2A:1C:8A:42:44:8D:4A:43:64:A2 Authority key identifier: CE:8E:0F:2B:A4:99:C5:E5:87:B0:15:E1:04:4F:09:8C:E6:2C:A7:58 Certificate issuer: /CN=A91FA729/serialNumber=CE8E0F2BA499C5E587B015E1044F098CE62CA758 Certificate serial: 171D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/zo4PK6SZxeWHsBXhBE8JjOYsp1g.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91FA729/28B9D01CE5F811E79A7D8433C4F9AE02/zo4PK6SZxeWHsBXhBE8JjOYsp1g.mft Manifest number: 1713 Signing time: Sat 31 May 2025 16:37:31 +0000 Manifest this update: Sat 31 May 2025 16:37:31 +0000 Manifest next update: Sat 07 Jun 2025 16:37:31 +0000 Files and hashes: 1: zo4PK6SZxeWHsBXhBE8JjOYsp1g.crl (hash: ++58cmC4Anh77ZDNrmCg07ShO7uSQ4PfrD1rlwb8TPs=) 2: 4A81F344C34111EB855D7C84C4F9AE02.roa (hash: uASyVgC1Cwioz2zhPx4P08otp7ZGZ17OkqWd5dxa/vo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91FA729/28B9D01CE5F811E79A7D8433C4F9AE02/zo4PK6SZxeWHsBXhBE8JjOYsp1g.crl rsync://rpki.apnic.net/member_repository/A91FA729/28B9D01CE5F811E79A7D8433C4F9AE02/zo4PK6SZxeWHsBXhBE8JjOYsp1g.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/zo4PK6SZxeWHsBXhBE8JjOYsp1g.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 07 Jun 2025 16:34:43 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5917 (0x171d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91FA729, serialNumber=CE8E0F2BA499C5E587B015E1044F098CE62CA758 Validity Not Before: May 31 16:37:31 2025 GMT Not After : Jun 7 16:37:31 2025 GMT Subject: CN=683b304b-89b3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b1:ce:01:ab:d2:e4:7a:a3:0b:55:24:00:5f:03: d7:d0:d9:40:09:15:ae:0d:9b:90:1d:39:0f:8d:75: 0f:07:f2:32:f2:c6:a7:e1:33:a1:c0:b5:ae:00:4e: 06:0b:c7:3d:3c:0f:a2:24:c9:60:6a:d9:50:1d:4d: 1f:82:d3:93:d4:5b:74:a3:06:bd:87:96:a8:37:fb: fd:d0:49:4e:ec:00:e4:19:de:9a:a6:7b:80:8d:d7: 02:56:95:e0:4e:81:3e:c8:5d:a8:a7:23:37:32:5f: d6:90:e6:d5:b9:a8:93:5b:1d:fd:5b:59:aa:35:93: 9a:7e:08:be:a2:0e:fb:b9:64:23:e0:7c:30:48:a5: 33:ae:2f:3d:5b:48:18:38:fd:9b:d0:45:e7:e3:90: c7:5b:24:8d:e5:a5:e7:1f:5e:8c:f3:52:64:05:ee: b3:cd:e5:00:2e:d1:57:75:d1:8d:99:2a:6e:1d:e4: 1b:90:f3:2f:26:de:18:c3:1e:14:d7:21:98:b5:83: 11:97:40:06:29:56:c0:b9:da:bd:5c:e7:6f:fb:7b: b5:a3:b3:f0:55:af:22:6f:6a:64:39:68:32:24:58: 01:b3:2b:8c:75:89:62:b6:72:21:1f:2c:c6:c3:f2: 0b:af:c7:f5:6c:a4:0e:c1:87:f0:19:40:5d:69:79: 6d:61 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7B:B1:84:C6:AB:ED:51:D5:7A:D4:2A:1C:8A:42:44:8D:4A:43:64:A2 X509v3 Authority Key Identifier: keyid:CE:8E:0F:2B:A4:99:C5:E5:87:B0:15:E1:04:4F:09:8C:E6:2C:A7:58 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91FA729/28B9D01CE5F811E79A7D8433C4F9AE02/zo4PK6SZxeWHsBXhBE8JjOYsp1g.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/zo4PK6SZxeWHsBXhBE8JjOYsp1g.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91FA729/28B9D01CE5F811E79A7D8433C4F9AE02/zo4PK6SZxeWHsBXhBE8JjOYsp1g.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 12:44:49:90:c7:02:3f:22:8c:70:69:2a:b8:df:ae:a0:f4:f1: 1c:53:ff:f2:a8:92:3b:57:56:fd:21:39:ba:c2:16:3a:90:44: 3c:6a:42:b5:ac:b3:80:0a:33:12:1e:e7:9c:83:a5:11:44:f6: 1b:30:20:97:59:6c:c1:5b:96:b2:9d:76:4d:a9:f5:cb:70:bf: 36:07:4f:2d:c9:97:69:c1:94:ae:ce:08:ab:ea:96:8e:11:35: 3f:d8:56:bb:af:ca:c8:2b:de:e1:4c:b3:6a:04:08:fa:ff:ff: 8c:b6:07:7b:0e:cc:b1:5a:12:f2:b3:b1:bc:f1:3b:34:ba:f6: 8d:50:1c:28:9c:8d:0c:9e:6f:13:a4:14:12:23:26:4c:9b:f1: d7:f6:2a:16:38:8e:33:57:a4:30:11:d4:54:20:e6:91:06:1e: 5c:03:b0:29:62:f6:97:54:0d:6a:c8:71:53:2c:05:55:ec:0b: d0:81:ff:7a:f9:5b:fa:a5:60:f6:ce:cf:94:ed:33:8d:f2:91: be:76:0b:76:6f:a9:7d:b2:2b:81:41:b3:2b:8f:13:eb:46:1d: fa:4f:46:f5:38:cd:bd:c3:0b:ff:61:da:3c:89:77:0d:98:c1: e0:95:9f:86:2b:ad:09:fc:f2:a7:37:60:ac:51:43:3d:9a:c3: 34:c6:1a:50 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICFx0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RkE3MjkxMTAvBgNVBAUTKENFOEUwRjJCQTQ5OUM1RTU4N0IwMTVFMTA0NEYwOThD RTYyQ0E3NTgwHhcNMjUwNTMxMTYzNzMxWhcNMjUwNjA3MTYzNzMxWjAYMRYwFAYD VQQDEw02ODNiMzA0Yi04OWIzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsc4Bq9LkeqMLVSQAXwPX0NlACRWuDZuQHTkPjXUPB/Iy8san4TOhwLWuAE4G C8c9PA+iJMlgatlQHU0fgtOT1Ft0owa9h5aoN/v90ElO7ADkGd6apnuAjdcCVpXg ToE+yF2opyM3Ml/WkObVuaiTWx39W1mqNZOafgi+og77uWQj4HwwSKUzri89W0gY OP2b0EXn45DHWySN5aXnH16M81JkBe6zzeUALtFXddGNmSpuHeQbkPMvJt4Ywx4U 1yGYtYMRl0AGKVbAudq9XOdv+3u1o7PwVa8ib2pkOWgyJFgBsyuMdYlitnIhHyzG w/ILr8f1bKQOwYfwGUBdaXltYQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFHuxhMar 7VHVetQqHIpCRI1KQ2SiMB8GA1UdIwQYMBaAFM6ODyukmcXlh7AV4QRPCYzmLKdY MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGQTcyOS8yOEI5RDAxQ0U1 RjgxMUU3OUE3RDg0MzNDNEY5QUUwMi96bzRQSzZTWnhlV0hzQlhoQkU4SmpPWXNw MWcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3pvNFBLNlNaeGVXSHNCWGhCRThKak9Zc3AxZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG QTcyOS8yOEI5RDAxQ0U1RjgxMUU3OUE3RDg0MzNDNEY5QUUwMi96bzRQSzZTWnhl V0hzQlhoQkU4SmpPWXNwMWcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQASREmQxwI/IoxwaSq4366g9PEcU//yqJI7V1b9ITm6whY6kEQ8akK1 rLOACjMSHuecg6URRPYbMCCXWWzBW5aynXZNqfXLcL82B08tyZdpwZSuzgir6paO ETU/2Fa7r8rIK97hTLNqBAj6//+Mtgd7DsyxWhLys7G88Ts0uvaNUBwonI0Mnm8T pBQSIyZMm/HX9ioWOI4zV6QwEdRUIOaRBh5cA7ApYvaXVA1qyHFTLAVV7AvQgf96 +Vv6pWD2zs+U7TON8pG+dgt2b6l9siuBQbMrjxPrRh36T0b1OM29wwv/Ydo8iXcN mMHglZ+GK60J/PKnN2CsUUM9msM0xhpQ -----END CERTIFICATE-----Generated at Sat May 31 17:48:43 2025 by rpki-client