$ rpki-client -vvf rpki.apnic.net/member_repository/A917E678/BEB333FA225111EAB2CB8469C4F9AE02/_zNBly3YofaHHt6Gmjod2SUorrY.mft File: _zNBly3YofaHHt6Gmjod2SUorrY.mft (raw, json) Hash identifier: y7LGpsGcxz1qIz4NcKiU8PpN62V79lhXdSWRbdwnJFg= Subject key identifier: 03:1E:C8:8F:CE:5B:0E:CB:32:09:32:36:4C:16:7D:D7:67:2A:CD:60 Authority key identifier: FF:33:41:97:2D:D8:A1:F6:87:1E:DE:86:9A:3A:1D:D9:25:28:AE:B6 Certificate issuer: /CN=A917E678/serialNumber=FF3341972DD8A1F6871EDE869A3A1DD92528AEB6 Certificate serial: 0CDB Authority info access: rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/_zNBly3YofaHHt6Gmjod2SUorrY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917E678/BEB333FA225111EAB2CB8469C4F9AE02/_zNBly3YofaHHt6Gmjod2SUorrY.mft Manifest number: 0C76 Signing time: Thu 15 May 2025 06:42:24 +0000 Manifest this update: Thu 15 May 2025 06:42:24 +0000 Manifest next update: Thu 22 May 2025 06:42:24 +0000 Files and hashes: 1: _zNBly3YofaHHt6Gmjod2SUorrY.crl (hash: mbd8kAhMfUB1Tl2sek/YV1gLjb2OGegCxrnTZiWyAsU=) 2: 69FDEAC6645511EFB98C143DC4F9AE02.roa (hash: OL9yx105s7LK6EsnOhe+XLOZ40wASVHJwc15W55t9pM=) 3: F4A77A06CED911ED9BC69385C4F9AE02.roa (hash: 3CFdx6XR3J9PdhVao7c8tK7DvtGCWPlPo7fHfVEStVA=) 4: 3D98B69C977111EFBB74DC15C4F9AE02.roa (hash: a2iRmlg2m5GY8J3NTYde5NYPta41lNT1DadTxynF/V0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917E678/BEB333FA225111EAB2CB8469C4F9AE02/_zNBly3YofaHHt6Gmjod2SUorrY.crl rsync://rpki.apnic.net/member_repository/A917E678/BEB333FA225111EAB2CB8469C4F9AE02/_zNBly3YofaHHt6Gmjod2SUorrY.mft rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/_zNBly3YofaHHt6Gmjod2SUorrY.cer rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.crl rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DPzneFf88B852ZpitKpi5hWedvg.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 22 May 2025 06:42:23 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3291 (0xcdb) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917E678, serialNumber=FF3341972DD8A1F6871EDE869A3A1DD92528AEB6 Validity Not Before: May 15 06:42:24 2025 GMT Not After : May 22 06:42:24 2025 GMT Subject: CN=68258cd0-b91d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ea:0f:cb:ed:6c:98:f4:bf:23:a8:bc:e5:d2:a4: 35:72:26:ef:3f:57:dc:25:bf:c4:3b:c5:d9:b2:a4: d9:7c:73:0e:3d:f6:22:a7:7f:6e:e3:28:fc:64:49: d2:2f:3c:6a:90:60:99:cc:f0:04:66:22:6e:dd:0e: 4d:40:13:b0:d5:ab:d5:0e:8e:57:aa:ce:7b:87:b7: a0:33:8b:c8:74:88:04:74:ff:fb:68:e6:ac:3b:98: e8:c6:eb:f5:4b:cd:db:67:be:4b:7e:0e:56:65:91: 64:81:4d:3c:97:c6:be:19:7d:1c:48:e3:65:76:a4: 2a:53:38:d2:73:d9:1f:41:08:fb:3a:3e:26:6f:ac: a3:6f:cb:3b:17:4d:f7:fa:21:31:e8:fb:1e:93:3b: 70:b5:be:8e:1a:ad:a3:a1:b4:01:49:2f:7c:ce:0d: 27:33:42:9f:e9:dd:25:ad:ea:b5:63:bb:50:66:73: 3e:ce:69:17:84:bc:65:6e:f3:1e:a5:7c:cd:5f:dc: da:5a:f4:af:0c:91:5c:1b:f2:f3:40:60:da:50:ad: 63:35:b5:dc:fd:a6:e4:3b:ab:c6:9c:f0:55:3b:02: ae:a3:ab:2b:0a:9a:29:21:6f:b3:5a:dd:56:6e:a3: 29:ce:0f:fb:93:5e:aa:64:01:f4:eb:5f:da:15:c8: da:63 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 03:1E:C8:8F:CE:5B:0E:CB:32:09:32:36:4C:16:7D:D7:67:2A:CD:60 X509v3 Authority Key Identifier: keyid:FF:33:41:97:2D:D8:A1:F6:87:1E:DE:86:9A:3A:1D:D9:25:28:AE:B6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917E678/BEB333FA225111EAB2CB8469C4F9AE02/_zNBly3YofaHHt6Gmjod2SUorrY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/_zNBly3YofaHHt6Gmjod2SUorrY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917E678/BEB333FA225111EAB2CB8469C4F9AE02/_zNBly3YofaHHt6Gmjod2SUorrY.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a4:b0:05:01:ff:4f:83:76:06:60:49:6a:53:13:ec:dc:80:d9: 69:49:c0:f6:bb:d2:cf:2a:e4:fb:7d:6d:7a:84:3f:1f:66:b3: 6c:96:9b:40:46:1f:1d:cd:c7:16:1b:2d:ef:fa:f2:47:0a:a4: 88:27:54:7f:b9:6e:32:59:ff:56:7d:0a:ba:4c:95:72:be:ca: 74:ae:12:87:de:e3:68:08:38:ca:b0:5d:cf:e3:f5:99:32:41: db:b6:fc:d4:57:09:3d:3a:ee:2c:bc:be:7d:2f:5a:c7:ef:d4: e3:bf:90:13:9a:d0:44:54:23:1a:c9:e6:fd:02:d1:62:a7:dc: f2:7c:50:0a:a8:1f:56:d6:d2:7f:34:94:5d:d5:0a:78:7a:93: 45:7b:1e:7c:93:5b:c1:6c:74:74:87:fc:0d:29:cb:f7:7e:e5: 54:5a:2a:4b:cf:b5:74:7a:75:2e:03:2f:62:2f:e3:ec:ed:66: 75:12:5e:38:5d:9c:f3:72:d3:99:8d:65:f0:2e:48:e4:1b:c7: 07:02:9b:c2:41:ca:0c:61:6a:34:9d:6e:dd:ad:68:f1:7d:9a: 37:fd:5a:89:97:aa:d3:96:a8:77:10:f2:c7:94:c4:92:3a:3b: c2:9e:97:57:9a:15:50:4f:9b:80:0f:09:6d:2f:dc:58:e1:a8: 82:d0:97:4a -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDNswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0U2NzgxMTAvBgNVBAUTKEZGMzM0MTk3MkREOEExRjY4NzFFREU4NjlBM0ExREQ5 MjUyOEFFQjYwHhcNMjUwNTE1MDY0MjI0WhcNMjUwNTIyMDY0MjI0WjAYMRYwFAYD VQQDEw02ODI1OGNkMC1iOTFkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA6g/L7WyY9L8jqLzl0qQ1cibvP1fcJb/EO8XZsqTZfHMOPfYip39u4yj8ZEnS LzxqkGCZzPAEZiJu3Q5NQBOw1avVDo5Xqs57h7egM4vIdIgEdP/7aOasO5joxuv1 S83bZ75Lfg5WZZFkgU08l8a+GX0cSONldqQqUzjSc9kfQQj7Oj4mb6yjb8s7F033 +iEx6Psekztwtb6OGq2jobQBSS98zg0nM0Kf6d0lreq1Y7tQZnM+zmkXhLxlbvMe pXzNX9zaWvSvDJFcG/LzQGDaUK1jNbXc/abkO6vGnPBVOwKuo6srCpopIW+zWt1W bqMpzg/7k16qZAH061/aFcjaYwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFAMeyI/O Ww7LMgkyNkwWfddnKs1gMB8GA1UdIwQYMBaAFP8zQZct2KH2hx7ehpo6HdklKK62 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3RTY3OC9CRUIzMzNGQTIy NTExMUVBQjJDQjg0NjlDNEY5QUUwMi9fek5CbHkzWW9mYUhIdDZHbWpvZDJTVW9y clkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzMjJBNUY0MUQ2NjExRTJBM0YyN0Y3Qzcy RkQxRkYyL196TkJseTNZb2ZhSEh0Nkdtam9kMlNVb3JyWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 RTY3OC9CRUIzMzNGQTIyNTExMUVBQjJDQjg0NjlDNEY5QUUwMi9fek5CbHkzWW9m YUhIdDZHbWpvZDJTVW9yclkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCksAUB/0+DdgZgSWpTE+zcgNlpScD2u9LPKuT7fW16hD8fZrNslptA Rh8dzccWGy3v+vJHCqSIJ1R/uW4yWf9WfQq6TJVyvsp0rhKH3uNoCDjKsF3P4/WZ MkHbtvzUVwk9Ou4svL59L1rH79Tjv5ATmtBEVCMayeb9AtFip9zyfFAKqB9W1tJ/ NJRd1Qp4epNFex58k1vBbHR0h/wNKcv3fuVUWipLz7V0enUuAy9iL+Ps7WZ1El44 XZzzctOZjWXwLkjkG8cHApvCQcoMYWo0nW7drWjxfZo3/VqJl6rTlqh3EPLHlMSS OjvCnpdXmhVQT5uADwltL9xY4aiC0JdK -----END CERTIFICATE-----Generated at Fri May 16 18:17:34 2025 by rpki-client