$ rpki-client -vvf rpki.apnic.net/member_repository/A91A9B3E/DAB1C3A68CFB11ED92E25B61C4F9AE02/zuNPo5_yhfcuIp2ihivBDkiPukE.mft File: zuNPo5_yhfcuIp2ihivBDkiPukE.mft (raw, json) Hash identifier: JwvVHK/6lWoS16JbZySsHTH5hs8oSh1mdxyObw0Vn6E= Subject key identifier: 8A:A2:6B:E0:EC:15:D6:4E:25:E6:BD:1D:D5:4B:B9:CE:5F:1C:30:CB Authority key identifier: CE:E3:4F:A3:9F:F2:85:F7:2E:22:9D:A2:86:2B:C1:0E:48:8F:BA:41 Certificate issuer: /CN=A91A9B3E/serialNumber=CEE34FA39FF285F72E229DA2862BC10E488FBA41 Certificate serial: 01C2 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/zuNPo5_yhfcuIp2ihivBDkiPukE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A9B3E/DAB1C3A68CFB11ED92E25B61C4F9AE02/zuNPo5_yhfcuIp2ihivBDkiPukE.mft Manifest number: 01BC Signing time: Sat 17 May 2025 02:46:25 +0000 Manifest this update: Sat 17 May 2025 02:46:24 +0000 Manifest next update: Sat 24 May 2025 02:46:24 +0000 Files and hashes: 1: zuNPo5_yhfcuIp2ihivBDkiPukE.crl (hash: 58A7FHc+leQ0c2cCkExqeFkJN+5JrT9duXufLpDPwm0=) 2: 819F7A60CF8B11EDAE77B351C4F9AE02.roa (hash: 4hy1f5KhPhwHVnBrwdKHHsp/qGx5VbOvDT16foHwuRM=) 3: 1AB255C68CFF11EDB7BDD865C4F9AE02.roa (hash: l3pw7Z4d1Nkw0APH0xp6K2791IsFOtCcx1C4farScNI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A9B3E/DAB1C3A68CFB11ED92E25B61C4F9AE02/zuNPo5_yhfcuIp2ihivBDkiPukE.crl rsync://rpki.apnic.net/member_repository/A91A9B3E/DAB1C3A68CFB11ED92E25B61C4F9AE02/zuNPo5_yhfcuIp2ihivBDkiPukE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/zuNPo5_yhfcuIp2ihivBDkiPukE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 24 May 2025 02:46:24 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 450 (0x1c2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A9B3E, serialNumber=CEE34FA39FF285F72E229DA2862BC10E488FBA41 Validity Not Before: May 17 02:46:24 2025 GMT Not After : May 24 02:46:24 2025 GMT Subject: CN=6827f881-0028 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:bc:bb:d3:4a:90:1c:a8:87:f0:87:79:b9:41: a3:d6:53:34:ae:c7:70:90:5f:14:69:d0:88:3c:54: 85:a8:46:95:4b:98:51:2d:fe:fb:db:0a:9d:99:85: f2:0e:08:49:f7:e7:c1:85:77:75:d0:fa:05:08:9b: 83:30:b2:e1:69:7d:7c:15:fb:37:93:27:63:1e:87: a7:33:a3:da:72:37:24:d8:fb:4c:36:1b:d9:19:10: c8:dc:0b:ad:50:e0:1b:1c:4c:15:c9:4a:ab:c8:49: 95:82:f6:67:8a:8f:2b:7f:60:b8:fb:13:b2:d2:b4: 08:29:dc:3e:ba:9d:a0:78:8f:17:1b:a4:f3:8f:9b: 92:31:ce:23:57:57:78:70:95:39:68:f7:a4:fc:2e: 8e:1d:2e:03:02:d7:da:c8:e4:d7:f4:16:07:a4:52: 01:cc:35:01:d7:66:e2:64:96:3f:22:16:ba:ba:69: 71:40:1c:a9:b4:8f:82:71:80:13:86:32:e9:db:c2: 9d:dc:40:fd:c8:f7:7c:6a:19:96:5c:0e:1d:55:65: 55:20:5f:db:7d:3b:a3:56:77:21:ab:cb:4f:7c:e6: 92:3a:bb:e2:89:98:87:af:45:57:f1:c8:a1:b8:bf: e5:23:e8:7c:93:dd:84:03:69:f0:a2:15:38:1d:43: 0e:7b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8A:A2:6B:E0:EC:15:D6:4E:25:E6:BD:1D:D5:4B:B9:CE:5F:1C:30:CB X509v3 Authority Key Identifier: keyid:CE:E3:4F:A3:9F:F2:85:F7:2E:22:9D:A2:86:2B:C1:0E:48:8F:BA:41 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A9B3E/DAB1C3A68CFB11ED92E25B61C4F9AE02/zuNPo5_yhfcuIp2ihivBDkiPukE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/zuNPo5_yhfcuIp2ihivBDkiPukE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A9B3E/DAB1C3A68CFB11ED92E25B61C4F9AE02/zuNPo5_yhfcuIp2ihivBDkiPukE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 00:26:ec:e2:e3:d7:f7:8c:b2:61:9b:a2:62:c0:19:1c:13:8b: d2:83:8e:85:8c:97:02:22:ab:ed:33:21:85:68:2b:89:ac:b3: c9:3f:4c:dd:80:88:1e:73:0f:71:f5:cf:c0:27:6e:96:14:68: 99:21:11:ec:24:20:14:52:e5:09:cd:84:d1:e6:be:d3:09:f8: 0c:8d:6b:5f:11:0a:78:7c:bd:a3:b5:05:d5:15:9a:89:fb:d3: df:c7:89:b8:77:7a:fe:43:48:04:19:0f:72:da:36:0f:b7:47: f7:52:95:15:1c:82:4f:3a:d7:ca:dc:9d:62:d9:f9:47:07:6e: 0d:a4:c4:0c:1c:88:36:70:8b:9e:41:96:df:c8:31:25:28:53: 83:38:98:7e:7f:e9:33:ed:a5:14:6b:1f:78:e8:de:32:ec:b0: f4:28:bc:65:23:2c:0a:ba:62:33:4b:4b:35:2b:c2:0d:f7:86: 2a:2b:21:92:31:0a:2a:d0:46:46:88:6b:15:44:45:e2:44:f2: 7e:6a:46:7b:49:97:bf:58:4d:50:26:16:4d:63:21:d5:03:55: 2e:ed:74:43:08:ea:05:1a:13:11:f1:e4:f2:8f:10:3d:98:61: cf:e3:0c:e5:5a:93:8f:19:10:95:7e:b7:8b:a4:7b:b9:86:36: d4:ba:2c:19 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAcIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTlCM0UxMTAvBgNVBAUTKENFRTM0RkEzOUZGMjg1RjcyRTIyOURBMjg2MkJDMTBF NDg4RkJBNDEwHhcNMjUwNTE3MDI0NjI0WhcNMjUwNTI0MDI0NjI0WjAYMRYwFAYD VQQDEw02ODI3Zjg4MS0wMDI4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtby700qQHKiH8Id5uUGj1lM0rsdwkF8UadCIPFSFqEaVS5hRLf772wqdmYXy DghJ9+fBhXd10PoFCJuDMLLhaX18Ffs3kydjHoenM6Pacjck2PtMNhvZGRDI3Aut UOAbHEwVyUqryEmVgvZnio8rf2C4+xOy0rQIKdw+up2geI8XG6Tzj5uSMc4jV1d4 cJU5aPek/C6OHS4DAtfayOTX9BYHpFIBzDUB12biZJY/Iha6umlxQByptI+CcYAT hjLp28Kd3ED9yPd8ahmWXA4dVWVVIF/bfTujVnchq8tPfOaSOrviiZiHr0VX8cih uL/lI+h8k92EA2nwohU4HUMOewIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFIqia+Ds FdZOJea9HdVLuc5fHDDLMB8GA1UdIwQYMBaAFM7jT6Of8oX3LiKdooYrwQ5Ij7pB MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBOUIzRS9EQUIxQzNBNjhD RkIxMUVEOTJFMjVCNjFDNEY5QUUwMi96dU5QbzVfeWhmY3VJcDJpaGl2QkRraVB1 a0UuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3p1TlBvNV95aGZjdUlwMmloaXZCRGtpUHVrRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB OUIzRS9EQUIxQzNBNjhDRkIxMUVEOTJFMjVCNjFDNEY5QUUwMi96dU5QbzVfeWhm Y3VJcDJpaGl2QkRraVB1a0UubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAAJuzi49f3jLJhm6JiwBkcE4vSg46FjJcCIqvtMyGFaCuJrLPJP0zd gIgecw9x9c/AJ26WFGiZIRHsJCAUUuUJzYTR5r7TCfgMjWtfEQp4fL2jtQXVFZqJ +9Pfx4m4d3r+Q0gEGQ9y2jYPt0f3UpUVHIJPOtfK3J1i2flHB24NpMQMHIg2cIue QZbfyDElKFODOJh+f+kz7aUUax946N4y7LD0KLxlIywKumIzS0s1K8IN94YqKyGS MQoq0EZGiGsVREXiRPJ+akZ7SZe/WE1QJhZNYyHVA1Uu7XRDCOoFGhMR8eTyjxA9 mGHP4wzlWpOPGRCVfreLpHu5hjbUuiwZ -----END CERTIFICATE-----Generated at Sat May 17 18:49:29 2025 by rpki-client