$ rpki-client -vvf rpki.apnic.net/member_repository/A917BBF1/245DC5CA0AF711EAA85A5D1AC4F9AE02/ZUCRhgKOxUzUW1g0_77K9LePGcI.mft File: ZUCRhgKOxUzUW1g0_77K9LePGcI.mft (raw, json) Hash identifier: kZMQrQhq5kj3auY1y45nOUv2okWl/04TYJSQqNLvYMA= Subject key identifier: C7:8F:D4:E9:F9:F6:6D:EB:68:CA:76:D0:D5:AA:EA:AC:4B:FB:AB:93 Authority key identifier: 65:40:91:86:02:8E:C5:4C:D4:5B:58:34:FF:BE:CA:F4:B7:8F:19:C2 Certificate issuer: /CN=A917BBF1/serialNumber=65409186028EC54CD45B5834FFBECAF4B78F19C2 Certificate serial: 0C48 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ZUCRhgKOxUzUW1g0_77K9LePGcI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917BBF1/245DC5CA0AF711EAA85A5D1AC4F9AE02/ZUCRhgKOxUzUW1g0_77K9LePGcI.mft Manifest number: 0C2E Signing time: Mon 12 May 2025 18:28:15 +0000 Manifest this update: Mon 12 May 2025 18:28:14 +0000 Manifest next update: Mon 19 May 2025 18:28:14 +0000 Files and hashes: 1: ZUCRhgKOxUzUW1g0_77K9LePGcI.crl (hash: Hf2pVLIyn3N+rJwmq+Ta6E7mjRdktGGih0KA04Ppl/g=) 2: 7136F65A37A811EE94E32169C4F9AE02.roa (hash: k8QKeKvOcm3atVDcEJg6MmKWLZSx6mGrjHPmscLBCDI=) 3: 1B54858065B711EE93D6ED6DC4F9AE02.roa (hash: 2MxCJYfvpN2/WDss7B4Jv4sIh2MvUP8VKJ1MtNugmSc=) 4: FF4F13D4448711ECA80CFC34C4F9AE02.roa (hash: Lum2cofSNoPumFBaR2DxKDAktprJD0nZPj1gi1bjrYI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917BBF1/245DC5CA0AF711EAA85A5D1AC4F9AE02/ZUCRhgKOxUzUW1g0_77K9LePGcI.crl rsync://rpki.apnic.net/member_repository/A917BBF1/245DC5CA0AF711EAA85A5D1AC4F9AE02/ZUCRhgKOxUzUW1g0_77K9LePGcI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ZUCRhgKOxUzUW1g0_77K9LePGcI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 19 May 2025 18:28:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3144 (0xc48) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917BBF1, serialNumber=65409186028EC54CD45B5834FFBECAF4B78F19C2 Validity Not Before: May 12 18:28:14 2025 GMT Not After : May 19 18:28:14 2025 GMT Subject: CN=68223dbe-39e8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:9a:f0:33:59:f3:90:84:d6:25:e3:42:d4:84: d0:b0:57:a9:b5:ce:1f:78:ca:ae:a8:ec:68:f6:f2: 3a:b0:4a:68:6a:d7:19:a6:d8:17:5a:d4:46:6b:fa: 7f:5d:eb:5d:c6:5c:16:99:d9:87:6e:2b:a8:14:aa: df:2e:a2:92:60:77:0a:87:88:42:fd:86:78:27:84: 14:a2:4a:2c:aa:2e:9d:36:61:a3:31:17:74:15:75: 54:a1:50:3d:0c:22:19:d5:10:69:cc:c7:92:2c:26: 1a:b6:14:ca:78:0a:94:ce:d4:04:8a:57:4c:ed:93: af:1e:16:89:48:58:5f:00:3e:4b:5e:8c:d6:ae:d6: c1:25:9c:40:74:fc:00:a4:62:a1:77:a0:64:a9:54: 8f:d1:cf:08:51:6b:bd:da:43:d0:3d:7b:d1:83:8e: a9:15:19:d0:3e:45:e4:84:cb:28:d3:27:83:0b:fc: 22:29:69:49:eb:89:e3:e5:97:45:57:40:26:cf:ed: cc:c0:0f:f6:69:50:d6:9c:f5:47:1e:63:3e:50:52: 79:bb:f3:7c:96:4c:0a:45:5c:64:b8:8a:f9:ee:be: d2:dd:77:12:65:98:0b:b2:47:1d:e6:e2:5a:94:c9: ed:4e:2b:d7:c6:bf:02:12:6e:45:4b:97:dd:5f:8b: 61:cd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C7:8F:D4:E9:F9:F6:6D:EB:68:CA:76:D0:D5:AA:EA:AC:4B:FB:AB:93 X509v3 Authority Key Identifier: keyid:65:40:91:86:02:8E:C5:4C:D4:5B:58:34:FF:BE:CA:F4:B7:8F:19:C2 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917BBF1/245DC5CA0AF711EAA85A5D1AC4F9AE02/ZUCRhgKOxUzUW1g0_77K9LePGcI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ZUCRhgKOxUzUW1g0_77K9LePGcI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917BBF1/245DC5CA0AF711EAA85A5D1AC4F9AE02/ZUCRhgKOxUzUW1g0_77K9LePGcI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a6:5a:35:7a:6f:01:3e:43:b9:e2:f4:05:b6:f4:e5:65:8e:22: 86:4c:87:9f:75:25:41:22:f1:19:35:b8:a5:bf:54:41:f7:13: 14:ec:6f:c2:16:a5:ee:65:a0:42:5e:2b:02:e0:0a:dd:8e:78: 83:ae:67:fa:15:00:5e:9c:a3:45:f5:65:4f:cc:96:3c:83:ae: 21:6c:de:e3:7c:45:1b:4f:d6:a7:c0:40:31:5c:e0:d0:e3:fa: ec:e0:ef:93:0d:f3:8a:42:9b:09:b1:be:f7:3a:d4:20:3d:b7: 80:8a:67:75:ce:8e:a0:be:26:6d:4a:b9:a7:56:fb:12:48:7c: c4:11:57:5b:f1:fa:d6:fe:55:0d:83:bc:b8:77:c8:9e:71:ca: 76:b0:c2:5f:d1:3e:d3:94:3b:84:74:0e:06:7b:31:ca:98:4b: a4:8c:98:28:25:4e:e5:f9:61:29:d4:cc:40:60:21:59:80:0b: a8:ab:7e:f0:6e:04:57:9d:11:30:97:35:91:24:e7:59:da:20: a4:aa:6d:04:b3:20:41:c3:b0:8c:14:c8:23:93:1c:a8:12:0a: 11:e5:ae:6f:15:16:3d:f7:82:be:6d:2f:78:16:8f:03:f9:3f: 78:15:69:3c:5f:87:2b:f7:51:24:5b:8f:94:4f:73:70:55:9b: ea:c9:4c:4a -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDEgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0JCRjExMTAvBgNVBAUTKDY1NDA5MTg2MDI4RUM1NENENDVCNTgzNEZGQkVDQUY0 Qjc4RjE5QzIwHhcNMjUwNTEyMTgyODE0WhcNMjUwNTE5MTgyODE0WjAYMRYwFAYD VQQDEw02ODIyM2RiZS0zOWU4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxJrwM1nzkITWJeNC1ITQsFeptc4feMquqOxo9vI6sEpoatcZptgXWtRGa/p/ XetdxlwWmdmHbiuoFKrfLqKSYHcKh4hC/YZ4J4QUokosqi6dNmGjMRd0FXVUoVA9 DCIZ1RBpzMeSLCYathTKeAqUztQEildM7ZOvHhaJSFhfAD5LXozWrtbBJZxAdPwA pGKhd6BkqVSP0c8IUWu92kPQPXvRg46pFRnQPkXkhMso0yeDC/wiKWlJ64nj5ZdF V0Amz+3MwA/2aVDWnPVHHmM+UFJ5u/N8lkwKRVxkuIr57r7S3XcSZZgLskcd5uJa lMntTivXxr8CEm5FS5fdX4thzQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFMeP1On5 9m3raMp20NWq6qxL+6uTMB8GA1UdIwQYMBaAFGVAkYYCjsVM1FtYNP++yvS3jxnC MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3QkJGMS8yNDVEQzVDQTBB RjcxMUVBQTg1QTVEMUFDNEY5QUUwMi9aVUNSaGdLT3hVelVXMWcwXzc3SzlMZVBH Y0kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1pVQ1JoZ0tPeFV6VVcxZzBfNzdLOUxlUEdjSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 QkJGMS8yNDVEQzVDQTBBRjcxMUVBQTg1QTVEMUFDNEY5QUUwMi9aVUNSaGdLT3hV elVXMWcwXzc3SzlMZVBHY0kubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCmWjV6bwE+Q7ni9AW29OVljiKGTIefdSVBIvEZNbilv1RB9xMU7G/C FqXuZaBCXisC4ArdjniDrmf6FQBenKNF9WVPzJY8g64hbN7jfEUbT9anwEAxXODQ 4/rs4O+TDfOKQpsJsb73OtQgPbeAimd1zo6gviZtSrmnVvsSSHzEEVdb8frW/lUN g7y4d8ieccp2sMJf0T7TlDuEdA4GezHKmEukjJgoJU7l+WEp1MxAYCFZgAuoq37w bgRXnREwlzWRJOdZ2iCkqm0EsyBBw7CMFMgjkxyoEgoR5a5vFRY994K+bS94Fo8D +T94FWk8X4cr91EkW4+UT3NwVZvqyUxK -----END CERTIFICATE-----Generated at Wed May 14 03:47:18 2025 by rpki-client