$ rpki-client -vvf rpki.apnic.net/member_repository/A91AAE63/5E966394CA0911ED81B6F63CC4F9AE02/zHxfJ4CoDTxmayv2kVPyBIS-7nE.mft File: zHxfJ4CoDTxmayv2kVPyBIS-7nE.mft (raw, json) Hash identifier: 2JHnKXoxCs6v+cink+u5cAQxmHtr7g3JzN6cYj4XMhk= Subject key identifier: 21:44:00:48:73:D6:B0:A4:52:95:95:F6:67:61:9D:26:CE:D9:D0:43 Authority key identifier: CC:7C:5F:27:80:A8:0D:3C:66:6B:2B:F6:91:53:F2:04:84:BE:EE:71 Certificate issuer: /CN=A91AAE63/serialNumber=CC7C5F2780A80D3C666B2BF69153F20484BEEE71 Certificate serial: 0193 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/zHxfJ4CoDTxmayv2kVPyBIS-7nE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91AAE63/5E966394CA0911ED81B6F63CC4F9AE02/zHxfJ4CoDTxmayv2kVPyBIS-7nE.mft Manifest number: 0190 Signing time: Fri 09 May 2025 02:40:47 +0000 Manifest this update: Fri 09 May 2025 02:40:46 +0000 Manifest next update: Fri 16 May 2025 02:40:46 +0000 Files and hashes: 1: zHxfJ4CoDTxmayv2kVPyBIS-7nE.crl (hash: XX6/9JY+sOzDQr/0oVPj6v6jjN64O/CY1iVInM249nw=) 2: 5DCF3814CA0E11ED9251861DC4F9AE02.roa (hash: QPqR58JeNFPJi8H+5XnKJrf+9hDaJRDjHQAg1P1N4n8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91AAE63/5E966394CA0911ED81B6F63CC4F9AE02/zHxfJ4CoDTxmayv2kVPyBIS-7nE.crl rsync://rpki.apnic.net/member_repository/A91AAE63/5E966394CA0911ED81B6F63CC4F9AE02/zHxfJ4CoDTxmayv2kVPyBIS-7nE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/zHxfJ4CoDTxmayv2kVPyBIS-7nE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 16 May 2025 02:40:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 403 (0x193) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91AAE63, serialNumber=CC7C5F2780A80D3C666B2BF69153F20484BEEE71 Validity Not Before: May 9 02:40:46 2025 GMT Not After : May 16 02:40:46 2025 GMT Subject: CN=681d6b2f-ae13 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:fc:9d:bb:32:0e:df:d1:a3:f6:ce:ae:de:32:a2: 91:e0:47:e8:be:86:5f:7a:b5:36:7d:15:88:3d:b1: ae:7c:84:71:07:da:af:5c:a5:4a:2b:f8:71:ac:d2: f1:2f:74:61:ba:19:2b:3a:c9:39:f7:3d:0f:5d:52: 6f:7e:8f:09:1c:ab:0a:c3:78:a6:0c:58:b4:45:b4: 45:fe:ad:d2:4b:38:05:83:d5:47:52:2b:d6:9f:f3: 33:d0:a4:64:8e:15:66:35:30:b6:ff:f2:4e:b7:78: ef:11:07:c5:eb:0b:26:4b:c9:7c:48:22:5a:4a:f0: d9:06:b7:7e:97:03:37:cc:9a:c1:12:72:77:ad:e4: 4a:49:d6:73:47:bc:09:35:37:1f:ea:ca:20:e8:e3: c2:89:73:7b:17:bf:c1:7a:66:7e:32:df:b0:31:e3: 06:3c:88:73:54:0b:1c:6a:36:96:01:0a:5a:2f:dd: 37:c4:76:13:73:b2:f2:75:8a:5a:c2:08:b9:9c:7b: c8:90:86:3c:ef:e4:ab:6d:0d:b1:be:a6:4f:e5:1e: 20:5c:a3:56:bb:75:c9:32:08:77:4b:4d:1c:a7:dc: aa:26:cf:91:e1:76:d0:8b:a9:cb:2a:f4:e0:db:33: ff:22:42:9f:f7:f5:85:19:9b:e1:0e:bf:7c:da:21: 47:af Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 21:44:00:48:73:D6:B0:A4:52:95:95:F6:67:61:9D:26:CE:D9:D0:43 X509v3 Authority Key Identifier: keyid:CC:7C:5F:27:80:A8:0D:3C:66:6B:2B:F6:91:53:F2:04:84:BE:EE:71 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91AAE63/5E966394CA0911ED81B6F63CC4F9AE02/zHxfJ4CoDTxmayv2kVPyBIS-7nE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/zHxfJ4CoDTxmayv2kVPyBIS-7nE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91AAE63/5E966394CA0911ED81B6F63CC4F9AE02/zHxfJ4CoDTxmayv2kVPyBIS-7nE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 42:82:b7:09:98:60:31:80:89:ec:2f:67:d7:7b:ba:27:e5:85: ca:6c:f1:56:69:bc:38:48:20:c2:c2:6f:d8:96:8a:25:4d:64: 2f:15:08:aa:fd:cf:84:2a:45:a8:ff:e8:1a:be:8f:38:26:ff: 33:31:df:f7:9c:0d:92:0c:59:72:f6:ef:68:53:31:22:94:f3: 8d:70:d2:1a:a6:11:5f:9e:0d:c4:3b:53:46:a8:60:ff:6f:68: 28:5a:c9:dc:5b:40:12:39:23:52:38:6c:ec:de:f7:04:b0:b7: 80:fb:29:47:6a:9d:f6:eb:82:0a:4f:46:dd:74:5b:31:35:16: bb:f5:68:18:f6:47:79:5a:f0:54:45:9c:c0:40:54:da:8c:28: 2c:36:3f:84:42:99:97:fe:b6:02:a8:3a:b7:8b:4c:a1:69:ea: 1f:aa:2a:be:2a:52:7f:1e:a2:40:55:4f:6d:84:d0:09:bd:42: 90:81:a1:46:f4:ce:4e:0a:fc:da:31:4b:c5:17:42:8a:c5:75: e6:44:2f:b1:4c:11:b6:57:9c:8a:e8:b5:9e:27:b1:da:50:a2: a5:08:5c:e9:de:07:6c:91:be:80:05:65:28:1f:1c:d4:85:37: 27:65:c3:4a:29:15:44:13:ad:c2:71:5b:dc:8d:cc:4f:43:af: 95:f7:99:89 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAZMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QUFFNjMxMTAvBgNVBAUTKENDN0M1RjI3ODBBODBEM0M2NjZCMkJGNjkxNTNGMjA0 ODRCRUVFNzEwHhcNMjUwNTA5MDI0MDQ2WhcNMjUwNTE2MDI0MDQ2WjAYMRYwFAYD VQQDEw02ODFkNmIyZi1hZTEzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA/J27Mg7f0aP2zq7eMqKR4EfovoZferU2fRWIPbGufIRxB9qvXKVKK/hxrNLx L3RhuhkrOsk59z0PXVJvfo8JHKsKw3imDFi0RbRF/q3SSzgFg9VHUivWn/Mz0KRk jhVmNTC2//JOt3jvEQfF6wsmS8l8SCJaSvDZBrd+lwM3zJrBEnJ3reRKSdZzR7wJ NTcf6sog6OPCiXN7F7/BemZ+Mt+wMeMGPIhzVAscajaWAQpaL903xHYTc7LydYpa wgi5nHvIkIY87+SrbQ2xvqZP5R4gXKNWu3XJMgh3S00cp9yqJs+R4XbQi6nLKvTg 2zP/IkKf9/WFGZvhDr982iFHrwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFCFEAEhz 1rCkUpWV9mdhnSbO2dBDMB8GA1UdIwQYMBaAFMx8XyeAqA08Zmsr9pFT8gSEvu5x MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBQUU2My81RTk2NjM5NENB MDkxMUVEODFCNkY2M0NDNEY5QUUwMi96SHhmSjRDb0RUeG1heXYya1ZQeUJJUy03 bkUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3pIeGZKNENvRFR4bWF5djJrVlB5QklTLTduRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB QUU2My81RTk2NjM5NENBMDkxMUVEODFCNkY2M0NDNEY5QUUwMi96SHhmSjRDb0RU eG1heXYya1ZQeUJJUy03bkUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBCgrcJmGAxgInsL2fXe7on5YXKbPFWabw4SCDCwm/YloolTWQvFQiq /c+EKkWo/+gavo84Jv8zMd/3nA2SDFly9u9oUzEilPONcNIaphFfng3EO1NGqGD/ b2goWsncW0ASOSNSOGzs3vcEsLeA+ylHap3264IKT0bddFsxNRa79WgY9kd5WvBU RZzAQFTajCgsNj+EQpmX/rYCqDq3i0yhaeofqiq+KlJ/HqJAVU9thNAJvUKQgaFG 9M5OCvzaMUvFF0KKxXXmRC+xTBG2V5yK6LWeJ7HaUKKlCFzp3gdskb6ABWUoHxzU hTcnZcNKKRVEE63CcVvcjcxPQ6+V95mJ -----END CERTIFICATE-----Generated at Sat May 10 09:54:01 2025 by rpki-client