$ rpki-client -vvf rpki.apnic.net/member_repository/A912519D/B8280664C75A11EB81E99E19C4F9AE02/ZrnYT0M2qJ2E0eAuggp5aG4eUsQ.mft File: ZrnYT0M2qJ2E0eAuggp5aG4eUsQ.mft (raw, json) Hash identifier: phtFjb1RdwGl1mne1+JpkuE7G9eiuwJ52UB/FqDJQ6Q= Subject key identifier: E4:BB:D1:E5:FE:19:CF:AB:35:F4:DD:A6:3E:EC:BC:89:D5:20:F6:3F Authority key identifier: 66:B9:D8:4F:43:36:A8:9D:84:D1:E0:2E:82:0A:79:68:6E:1E:52:C4 Certificate issuer: /CN=A912519D/serialNumber=66B9D84F4336A89D84D1E02E820A79686E1E52C4 Certificate serial: 05B0 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ZrnYT0M2qJ2E0eAuggp5aG4eUsQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A912519D/B8280664C75A11EB81E99E19C4F9AE02/ZrnYT0M2qJ2E0eAuggp5aG4eUsQ.mft Manifest number: 05AB Signing time: Sat 10 May 2025 22:45:25 +0000 Manifest this update: Sat 10 May 2025 22:45:24 +0000 Manifest next update: Sat 17 May 2025 22:45:24 +0000 Files and hashes: 1: ZrnYT0M2qJ2E0eAuggp5aG4eUsQ.crl (hash: gHTah/gDFSCyas9GSuWzR7kOOr4YTX09cUx0Kdmcw1g=) 2: 10581DEAC75D11EBB00EBD1AC4F9AE02.roa (hash: JmgPCoqfxLnmCXZ9Kqg1cLPcucyGnFbjlpBzEMSmBKg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A912519D/B8280664C75A11EB81E99E19C4F9AE02/ZrnYT0M2qJ2E0eAuggp5aG4eUsQ.crl rsync://rpki.apnic.net/member_repository/A912519D/B8280664C75A11EB81E99E19C4F9AE02/ZrnYT0M2qJ2E0eAuggp5aG4eUsQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ZrnYT0M2qJ2E0eAuggp5aG4eUsQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 17 May 2025 22:45:24 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1456 (0x5b0) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A912519D, serialNumber=66B9D84F4336A89D84D1E02E820A79686E1E52C4 Validity Not Before: May 10 22:45:24 2025 GMT Not After : May 17 22:45:24 2025 GMT Subject: CN=681fd704-bc6a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:e4:6b:29:8b:01:98:75:b0:ff:1f:d1:cd:4b: cf:b4:9a:83:9c:33:da:4b:86:6e:2c:9f:f6:dc:1d: 20:fd:71:8c:d6:b6:ed:c6:56:23:69:63:64:3a:63: a5:c3:1c:d7:ef:11:3b:b2:63:d9:c4:d7:ed:8a:26: 82:4a:d7:17:72:3b:b0:9e:a4:08:66:06:56:1f:49: 8e:44:31:b4:e0:bf:d0:84:d3:5d:17:79:c4:2f:d1: 73:19:50:81:2d:ca:24:87:fa:60:c4:c5:ba:42:17: b9:39:e4:6c:6f:06:90:04:b9:76:e3:ce:78:a6:3b: 32:0d:e0:96:c9:7c:e2:d7:b9:34:46:b8:99:cd:bc: dc:ac:43:e6:2f:db:f0:cb:d5:af:81:79:e9:43:47: 57:5f:d7:b5:34:86:a7:c8:74:e5:01:8b:c6:2c:9e: a1:0e:53:d4:1a:30:8d:b8:2b:50:28:9d:52:c3:27: ef:32:c9:08:d0:40:35:f1:80:bf:97:f7:7a:31:ee: 50:64:33:f3:89:49:00:44:13:93:a2:be:b4:08:12: 33:b9:d8:a2:12:42:d9:0d:46:f8:de:3f:7c:0b:91: 55:52:d5:a9:b2:f0:5e:91:b0:b7:f4:53:42:0e:62: 47:e4:76:53:76:94:26:18:b4:ea:a9:2d:1f:65:09: 7b:e7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E4:BB:D1:E5:FE:19:CF:AB:35:F4:DD:A6:3E:EC:BC:89:D5:20:F6:3F X509v3 Authority Key Identifier: keyid:66:B9:D8:4F:43:36:A8:9D:84:D1:E0:2E:82:0A:79:68:6E:1E:52:C4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A912519D/B8280664C75A11EB81E99E19C4F9AE02/ZrnYT0M2qJ2E0eAuggp5aG4eUsQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ZrnYT0M2qJ2E0eAuggp5aG4eUsQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A912519D/B8280664C75A11EB81E99E19C4F9AE02/ZrnYT0M2qJ2E0eAuggp5aG4eUsQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 5e:e4:56:c8:b2:87:95:87:1a:8d:a5:02:e5:8b:d7:67:e8:74: 29:b1:f3:1e:2b:5e:c3:fa:3b:bc:a8:13:a5:68:55:c9:aa:52: da:4a:45:53:2e:86:1b:fe:3d:67:9a:1f:ff:2a:d6:37:f8:0d: cc:88:dc:20:45:d1:88:01:b5:7e:8e:cf:02:5b:c4:31:7d:8c: 84:30:d0:a7:c4:77:ca:4f:9b:63:86:3c:90:66:fb:95:94:75: 9b:82:c1:dd:90:aa:09:e7:6b:7c:98:55:03:67:c1:53:35:77: 99:f5:ba:7b:ac:72:89:8f:d6:c5:c8:a5:de:ce:6b:20:29:57: 38:e6:e4:9a:a4:c2:b2:ae:e4:bd:4b:7f:a6:c5:20:cc:bd:7e: a9:f8:9a:f6:a2:b1:5c:61:c1:fd:56:24:f9:d6:5c:55:30:f2: c7:b4:b2:bc:80:2a:a5:d3:a1:52:c0:c3:ea:fe:de:17:e6:5d: 97:63:1e:b5:98:19:b4:51:53:97:6f:39:9e:59:4d:6f:69:3e: 71:8e:97:69:ba:a8:d6:7a:bd:aa:63:76:d3:96:08:13:78:f5: 2f:d7:a9:4f:aa:b0:b8:b3:29:a6:dd:46:b9:ff:11:5c:f7:75: 35:9c:e4:7d:c8:e6:e6:b0:ca:c0:a4:6b:af:b6:86:b8:84:80: 5a:c6:d9:73 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBbAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MjUxOUQxMTAvBgNVBAUTKDY2QjlEODRGNDMzNkE4OUQ4NEQxRTAyRTgyMEE3OTY4 NkUxRTUyQzQwHhcNMjUwNTEwMjI0NTI0WhcNMjUwNTE3MjI0NTI0WjAYMRYwFAYD VQQDEw02ODFmZDcwNC1iYzZhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAueRrKYsBmHWw/x/RzUvPtJqDnDPaS4ZuLJ/23B0g/XGM1rbtxlYjaWNkOmOl wxzX7xE7smPZxNftiiaCStcXcjuwnqQIZgZWH0mORDG04L/QhNNdF3nEL9FzGVCB Lcokh/pgxMW6Qhe5OeRsbwaQBLl24854pjsyDeCWyXzi17k0RriZzbzcrEPmL9vw y9WvgXnpQ0dXX9e1NIanyHTlAYvGLJ6hDlPUGjCNuCtQKJ1SwyfvMskI0EA18YC/ l/d6Me5QZDPziUkARBOTor60CBIzudiiEkLZDUb43j98C5FVUtWpsvBekbC39FNC DmJH5HZTdpQmGLTqqS0fZQl75wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFOS70eX+ Gc+rNfTdpj7svInVIPY/MB8GA1UdIwQYMBaAFGa52E9DNqidhNHgLoIKeWhuHlLE MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyNTE5RC9CODI4MDY2NEM3 NUExMUVCODFFOTlFMTlDNEY5QUUwMi9acm5ZVDBNMnFKMkUwZUF1Z2dwNWFHNGVV c1EuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1pybllUME0ycUoyRTBlQXVnZ3A1YUc0ZVVzUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy NTE5RC9CODI4MDY2NEM3NUExMUVCODFFOTlFMTlDNEY5QUUwMi9acm5ZVDBNMnFK MkUwZUF1Z2dwNWFHNGVVc1EubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBe5FbIsoeVhxqNpQLli9dn6HQpsfMeK17D+ju8qBOlaFXJqlLaSkVT LoYb/j1nmh//KtY3+A3MiNwgRdGIAbV+js8CW8QxfYyEMNCnxHfKT5tjhjyQZvuV lHWbgsHdkKoJ52t8mFUDZ8FTNXeZ9bp7rHKJj9bFyKXezmsgKVc45uSapMKyruS9 S3+mxSDMvX6p+Jr2orFcYcH9ViT51lxVMPLHtLK8gCql06FSwMPq/t4X5l2XYx61 mBm0UVOXbzmeWU1vaT5xjpdpuqjWer2qY3bTlggTePUv16lPqrC4symm3Ua5/xFc 93U1nOR9yObmsMrApGuvtoa4hIBaxtlz -----END CERTIFICATE-----Generated at Mon May 12 07:16:18 2025 by rpki-client