$ rpki-client -vvf rpki.apnic.net/member_repository/A912C2B1/1DAEA22CD9FA11E98942894DC4F9AE02/zz57dCpMUuD49_jnQF-yu7z0yqM.mft File: zz57dCpMUuD49_jnQF-yu7z0yqM.mft (raw, json) Hash identifier: ycLZ4UXuEaFjugyo8JQK+CkQD8uKdECb3BB2kIfHURY= Subject key identifier: F2:1B:07:9A:53:03:0A:FF:CC:06:48:A2:4B:E0:43:E4:D1:4A:4E:46 Authority key identifier: CF:3E:7B:74:2A:4C:52:E0:F8:F7:F8:E7:40:5F:B2:BB:BC:F4:CA:A3 Certificate issuer: /CN=A912C2B1/serialNumber=CF3E7B742A4C52E0F8F7F8E7405FB2BBBCF4CAA3 Certificate serial: 0D4A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/zz57dCpMUuD49_jnQF-yu7z0yqM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A912C2B1/1DAEA22CD9FA11E98942894DC4F9AE02/zz57dCpMUuD49_jnQF-yu7z0yqM.mft Manifest number: 0D29 Signing time: Sat 10 May 2025 17:53:53 +0000 Manifest this update: Sat 10 May 2025 17:53:53 +0000 Manifest next update: Sat 17 May 2025 17:53:53 +0000 Files and hashes: 1: zz57dCpMUuD49_jnQF-yu7z0yqM.crl (hash: SOFVNCdXDReak3SegzBbfjNoUfQh+I6tApioQP1YpSs=) 2: 73E16BB27C4711EFACFB1228C4F9AE02.roa (hash: 8LOnykbqINKaZ+L5my3UzBmhmDiX2dGDooRzuen4vMo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A912C2B1/1DAEA22CD9FA11E98942894DC4F9AE02/zz57dCpMUuD49_jnQF-yu7z0yqM.crl rsync://rpki.apnic.net/member_repository/A912C2B1/1DAEA22CD9FA11E98942894DC4F9AE02/zz57dCpMUuD49_jnQF-yu7z0yqM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/zz57dCpMUuD49_jnQF-yu7z0yqM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 17 May 2025 17:53:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3402 (0xd4a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A912C2B1, serialNumber=CF3E7B742A4C52E0F8F7F8E7405FB2BBBCF4CAA3 Validity Not Before: May 10 17:53:53 2025 GMT Not After : May 17 17:53:53 2025 GMT Subject: CN=681f92b1-158f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a7:27:e0:26:b0:90:39:c5:82:84:77:33:40:ca: ed:c2:bc:1e:bc:84:45:ca:30:30:28:97:26:94:6d: 21:79:84:b3:3b:d3:50:40:6a:ef:92:f9:d8:ab:d9: 82:67:db:3f:e0:6f:87:21:e2:3e:bf:6b:24:02:ac: 02:d3:57:00:f7:2f:82:ad:ff:16:c8:d7:a4:42:d2: 09:19:35:e6:ae:87:d9:e1:aa:5c:96:9c:21:dd:54: 3f:b1:c0:17:cb:18:91:28:68:ea:cf:c3:de:0a:08: db:9d:5f:3c:5c:5e:56:36:d6:af:09:31:91:82:e7: bd:3e:57:03:ef:61:fe:c1:76:f5:03:3f:06:35:e9: 5e:73:08:9e:fd:e1:64:69:9a:32:f3:89:3d:be:b5: 44:99:eb:96:a9:c7:b0:96:67:06:5c:f1:1a:80:4a: f3:98:b6:08:f7:5c:f3:b0:78:8b:45:91:a9:6f:1e: 97:42:68:66:0c:bd:40:07:43:04:ac:90:ab:b4:8d: b4:3f:14:73:67:52:99:06:84:38:f9:8a:2d:88:c9: 24:e9:6d:cc:1b:57:d7:9e:b5:c9:84:6f:30:4a:f5: d1:b1:64:d5:6b:47:15:56:cd:a3:11:89:5d:eb:f9: 86:9e:ca:f0:ee:81:b9:d9:7f:1e:3e:5d:30:48:be: 77:bf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F2:1B:07:9A:53:03:0A:FF:CC:06:48:A2:4B:E0:43:E4:D1:4A:4E:46 X509v3 Authority Key Identifier: keyid:CF:3E:7B:74:2A:4C:52:E0:F8:F7:F8:E7:40:5F:B2:BB:BC:F4:CA:A3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A912C2B1/1DAEA22CD9FA11E98942894DC4F9AE02/zz57dCpMUuD49_jnQF-yu7z0yqM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/zz57dCpMUuD49_jnQF-yu7z0yqM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A912C2B1/1DAEA22CD9FA11E98942894DC4F9AE02/zz57dCpMUuD49_jnQF-yu7z0yqM.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 68:f3:90:10:95:8e:28:50:e0:8c:0d:f4:2f:a1:34:36:e0:2a: 03:73:76:5b:5a:b5:5f:12:fa:d6:45:2b:fa:90:d1:98:0e:97: 60:56:ec:ca:da:ab:62:5b:58:f2:0e:0f:17:56:8c:93:bc:46: 79:10:e0:80:21:1e:2f:e3:fb:c0:8c:55:db:31:33:0f:e7:89: 23:93:a6:89:c1:a7:e0:a3:31:d3:71:cf:6d:e7:44:71:a1:62: fb:6d:d9:43:31:c4:b8:10:c2:9a:e4:3d:c0:54:ac:1d:23:60: fd:0b:18:25:72:af:d8:b3:ea:25:e2:7c:ba:fc:7a:63:88:e3: 4f:2b:de:e0:49:81:e9:2b:4e:53:4f:03:0e:14:97:80:60:97: 8a:6e:d5:68:09:a9:ae:f9:4a:7c:c5:ed:fd:81:76:3c:73:89: 87:40:80:08:5b:a5:ae:84:58:ee:d7:e7:5e:32:23:13:11:a1: 18:66:66:43:fd:14:23:29:fd:9c:63:40:fa:03:80:b7:50:b5: ab:aa:46:8e:aa:b8:40:7e:e3:81:76:cb:eb:9f:38:e9:11:47: 09:a6:a5:b8:4e:7d:00:5b:0e:7d:a8:84:b8:86:9a:4a:00:72: 85:cd:bd:3b:51:93:06:3a:78:00:b0:eb:b3:91:da:aa:5a:12: ba:b0:0e:8c -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDUowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MkMyQjExMTAvBgNVBAUTKENGM0U3Qjc0MkE0QzUyRTBGOEY3RjhFNzQwNUZCMkJC QkNGNENBQTMwHhcNMjUwNTEwMTc1MzUzWhcNMjUwNTE3MTc1MzUzWjAYMRYwFAYD VQQDEw02ODFmOTJiMS0xNThmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEApyfgJrCQOcWChHczQMrtwrwevIRFyjAwKJcmlG0heYSzO9NQQGrvkvnYq9mC Z9s/4G+HIeI+v2skAqwC01cA9y+Crf8WyNekQtIJGTXmrofZ4apclpwh3VQ/scAX yxiRKGjqz8PeCgjbnV88XF5WNtavCTGRgue9PlcD72H+wXb1Az8GNelecwie/eFk aZoy84k9vrVEmeuWqcewlmcGXPEagErzmLYI91zzsHiLRZGpbx6XQmhmDL1AB0ME rJCrtI20PxRzZ1KZBoQ4+YotiMkk6W3MG1fXnrXJhG8wSvXRsWTVa0cVVs2jEYld 6/mGnsrw7oG52X8ePl0wSL53vwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFPIbB5pT Awr/zAZIokvgQ+TRSk5GMB8GA1UdIwQYMBaAFM8+e3QqTFLg+Pf450Bfsru89Mqj MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyQzJCMS8xREFFQTIyQ0Q5 RkExMUU5ODk0Mjg5NERDNEY5QUUwMi96ejU3ZENwTVV1RDQ5X2puUUYteXU3ejB5 cU0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3p6NTdkQ3BNVXVENDlfam5RRi15dTd6MHlxTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy QzJCMS8xREFFQTIyQ0Q5RkExMUU5ODk0Mjg5NERDNEY5QUUwMi96ejU3ZENwTVV1 RDQ5X2puUUYteXU3ejB5cU0ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBo85AQlY4oUOCMDfQvoTQ24CoDc3ZbWrVfEvrWRSv6kNGYDpdgVuzK 2qtiW1jyDg8XVoyTvEZ5EOCAIR4v4/vAjFXbMTMP54kjk6aJwafgozHTcc9t50Rx oWL7bdlDMcS4EMKa5D3AVKwdI2D9Cxglcq/Ys+ol4ny6/HpjiONPK97gSYHpK05T TwMOFJeAYJeKbtVoCamu+Up8xe39gXY8c4mHQIAIW6WuhFju1+deMiMTEaEYZmZD /RQjKf2cY0D6A4C3ULWrqkaOqrhAfuOBdsvrnzjpEUcJpqW4Tn0AWw59qIS4hppK AHKFzb07UZMGOngAsOuzkdqqWhK6sA6M -----END CERTIFICATE-----Generated at Sun May 11 10:18:19 2025 by rpki-client