$ rpki-client -vvf rpki.apnic.net/member_repository/A9111A27/662518BE6E3411EA841D426EC4F9AE02/zPWB9MM8pEQeGAfjlsXv51-oLdA.mft File: zPWB9MM8pEQeGAfjlsXv51-oLdA.mft (raw, json) Hash identifier: KmoYQx/oD6zgwUR0yYj5XkEKpQnqz54WLMbCC1ikV/s= Subject key identifier: E6:79:40:20:2D:A1:59:F2:A1:B5:0C:0B:33:0B:3E:50:0B:D8:2D:9E Authority key identifier: CC:F5:81:F4:C3:3C:A4:44:1E:18:07:E3:96:C5:EF:E7:5F:A8:2D:D0 Certificate issuer: /CN=A9111A27/serialNumber=CCF581F4C33CA4441E1807E396C5EFE75FA82DD0 Certificate serial: 0A30 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/zPWB9MM8pEQeGAfjlsXv51-oLdA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9111A27/662518BE6E3411EA841D426EC4F9AE02/zPWB9MM8pEQeGAfjlsXv51-oLdA.mft Manifest number: 0A26 Signing time: Wed 14 May 2025 19:54:27 +0000 Manifest this update: Wed 14 May 2025 19:54:27 +0000 Manifest next update: Wed 21 May 2025 19:54:27 +0000 Files and hashes: 1: zPWB9MM8pEQeGAfjlsXv51-oLdA.crl (hash: PzZuia41IbWpgoNs29873eMs1CRdPRo0m5LPR/Zkcto=) 2: EECBCEBE6E3511EABDE26D73C4F9AE02.roa (hash: LPVTnB/0GHrJCLpXZVzzn+Fi+J75+p11hdRea2Hs9CM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9111A27/662518BE6E3411EA841D426EC4F9AE02/zPWB9MM8pEQeGAfjlsXv51-oLdA.crl rsync://rpki.apnic.net/member_repository/A9111A27/662518BE6E3411EA841D426EC4F9AE02/zPWB9MM8pEQeGAfjlsXv51-oLdA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/zPWB9MM8pEQeGAfjlsXv51-oLdA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 21 May 2025 19:54:26 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2608 (0xa30) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9111A27, serialNumber=CCF581F4C33CA4441E1807E396C5EFE75FA82DD0 Validity Not Before: May 14 19:54:27 2025 GMT Not After : May 21 19:54:27 2025 GMT Subject: CN=6824f4f3-f100 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d8:fa:ae:95:e7:1a:c8:1b:5a:fe:1c:ba:53:2e: 85:c4:e7:24:24:08:aa:9a:09:c6:e5:b7:34:ec:e4: b5:49:e5:51:92:3d:c6:40:b2:fa:16:57:99:85:e4: 38:0b:6a:0e:b9:b1:80:de:ec:57:1d:13:0a:8a:0e: 14:d9:d2:78:d3:47:55:e2:df:fb:6c:a9:9c:9d:bb: 50:c5:9c:f3:1c:55:7b:a7:5b:3b:4f:2c:e8:9e:27: 6f:15:a1:1d:56:a4:10:28:6c:95:ee:7b:d0:f6:7a: 01:70:21:3c:09:df:1f:b4:79:5a:8e:6a:1a:ec:a0: ae:02:f3:c4:ed:11:34:9d:9d:e7:8b:88:ae:db:dc: 7e:f9:fb:32:8e:ea:38:13:35:9d:90:e0:25:6d:54: 63:44:c7:06:6a:db:20:0b:f0:9b:0e:83:ac:81:87: 8a:fe:81:13:e8:91:50:32:27:63:b8:2f:a8:48:0a: 02:1d:2b:23:21:b9:78:c5:65:87:66:39:9a:c5:1f: ef:cf:f9:d8:ba:07:6b:e1:53:24:73:72:06:71:fb: 96:11:05:9b:3b:8c:f8:2a:5d:09:b3:4c:41:8f:fd: 7c:66:b2:7d:a8:e2:fc:13:98:af:ee:2c:4f:57:c1: 4a:43:36:d2:3b:92:bc:4e:ca:d2:b5:01:dc:2b:5c: 75:2b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E6:79:40:20:2D:A1:59:F2:A1:B5:0C:0B:33:0B:3E:50:0B:D8:2D:9E X509v3 Authority Key Identifier: keyid:CC:F5:81:F4:C3:3C:A4:44:1E:18:07:E3:96:C5:EF:E7:5F:A8:2D:D0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9111A27/662518BE6E3411EA841D426EC4F9AE02/zPWB9MM8pEQeGAfjlsXv51-oLdA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/zPWB9MM8pEQeGAfjlsXv51-oLdA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9111A27/662518BE6E3411EA841D426EC4F9AE02/zPWB9MM8pEQeGAfjlsXv51-oLdA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 7e:6c:5c:3f:a5:27:51:d0:36:63:e9:2e:4b:16:0d:b9:90:b4: 57:f8:e4:f0:19:07:41:a9:44:83:00:84:57:d8:c1:53:57:23: 5e:e3:88:a6:79:fb:78:c6:b6:a8:df:dc:45:44:3e:62:17:29: dd:9f:bc:83:c5:03:e5:0d:d4:99:c1:bc:5c:d9:e3:27:0e:3c: 7b:48:73:a6:21:20:eb:a1:51:0f:86:91:30:9a:6e:0a:78:06: 8f:18:36:95:13:04:01:92:ab:37:ad:35:25:fb:d3:b2:56:be: 31:c3:ca:31:c6:08:81:3f:96:7e:14:d7:97:f0:12:d0:88:02: b8:20:59:e8:4e:0f:f2:e8:d6:f4:e2:a4:55:1c:fa:5f:7d:ea: 44:1e:7e:23:7d:7c:b0:13:9f:22:e8:75:bb:4b:a6:62:48:67: 58:e7:9e:28:fb:28:1c:65:4b:c1:42:68:f5:b2:81:c7:31:c0: 1d:5e:4c:df:99:c0:2e:27:23:0c:ba:79:6e:09:76:f8:b7:09: c1:b0:7e:d0:e3:ae:b0:b8:7b:6a:60:b5:19:71:da:28:52:52: 53:15:60:38:a3:9e:b2:92:9d:2f:40:42:2b:51:e1:6c:6f:ad: 21:37:0f:3f:9e:ee:df:d6:25:ee:5f:7a:9d:e4:e1:d0:1d:ee: 44:2e:a3:4c -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCjAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MTFBMjcxMTAvBgNVBAUTKENDRjU4MUY0QzMzQ0E0NDQxRTE4MDdFMzk2QzVFRkU3 NUZBODJERDAwHhcNMjUwNTE0MTk1NDI3WhcNMjUwNTIxMTk1NDI3WjAYMRYwFAYD VQQDEw02ODI0ZjRmMy1mMTAwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA2PqulecayBta/hy6Uy6FxOckJAiqmgnG5bc07OS1SeVRkj3GQLL6FleZheQ4 C2oOubGA3uxXHRMKig4U2dJ400dV4t/7bKmcnbtQxZzzHFV7p1s7TyzonidvFaEd VqQQKGyV7nvQ9noBcCE8Cd8ftHlajmoa7KCuAvPE7RE0nZ3ni4iu29x++fsyjuo4 EzWdkOAlbVRjRMcGatsgC/CbDoOsgYeK/oET6JFQMidjuC+oSAoCHSsjIbl4xWWH ZjmaxR/vz/nYugdr4VMkc3IGcfuWEQWbO4z4Kl0Js0xBj/18ZrJ9qOL8E5iv7ixP V8FKQzbSO5K8TsrStQHcK1x1KwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFOZ5QCAt oVnyobUMCzMLPlAL2C2eMB8GA1UdIwQYMBaAFMz1gfTDPKREHhgH45bF7+dfqC3Q MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExMUEyNy82NjI1MThCRTZF MzQxMUVBODQxRDQyNkVDNEY5QUUwMi96UFdCOU1NOHBFUWVHQWZqbHNYdjUxLW9M ZEEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3pQV0I5TU04cEVRZUdBZmpsc1h2NTEtb0xkQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx MUEyNy82NjI1MThCRTZFMzQxMUVBODQxRDQyNkVDNEY5QUUwMi96UFdCOU1NOHBF UWVHQWZqbHNYdjUxLW9MZEEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB+bFw/pSdR0DZj6S5LFg25kLRX+OTwGQdBqUSDAIRX2MFTVyNe44im eft4xrao39xFRD5iFyndn7yDxQPlDdSZwbxc2eMnDjx7SHOmISDroVEPhpEwmm4K eAaPGDaVEwQBkqs3rTUl+9OyVr4xw8oxxgiBP5Z+FNeX8BLQiAK4IFnoTg/y6Nb0 4qRVHPpffepEHn4jfXywE58i6HW7S6ZiSGdY554o+ygcZUvBQmj1soHHMcAdXkzf mcAuJyMMunluCXb4twnBsH7Q466wuHtqYLUZcdooUlJTFWA4o56ykp0vQEIrUeFs b60hNw8/nu7f1iXuX3qd5OHQHe5ELqNM -----END CERTIFICATE-----Generated at Fri May 16 10:51:50 2025 by rpki-client