$ rpki-client -vvf rpki.apnic.net/member_repository/A91B9F08/3090D914A14C11E98475A82DC4F9AE02/zoytNWIakBLECzY3U3ykDj0H6M8.mft File: zoytNWIakBLECzY3U3ykDj0H6M8.mft (raw, json) Hash identifier: PH1Q7TnbUG7jeiQ0qaHYc7n7CIqcf2S/8IFuUBA0M28= Subject key identifier: CD:D1:7F:4C:13:6A:5E:D1:4E:52:0F:DF:11:1D:FB:C2:21:C6:04:65 Authority key identifier: CE:8C:AD:35:62:1A:90:12:C4:0B:36:37:53:7C:A4:0E:3D:07:E8:CF Certificate issuer: /CN=A91B9F08/serialNumber=CE8CAD35621A9012C40B3637537CA40E3D07E8CF Certificate serial: 0E45 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/zoytNWIakBLECzY3U3ykDj0H6M8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B9F08/3090D914A14C11E98475A82DC4F9AE02/zoytNWIakBLECzY3U3ykDj0H6M8.mft Manifest number: 0E35 Signing time: Thu 08 May 2025 17:48:53 +0000 Manifest this update: Thu 08 May 2025 17:48:52 +0000 Manifest next update: Thu 15 May 2025 17:48:52 +0000 Files and hashes: 1: zoytNWIakBLECzY3U3ykDj0H6M8.crl (hash: qqCB+/aObQ/kG/vEyQ+crnyChgSjU/phVNagOiB1a3w=) 2: 8ADFF772924011ED867BE311C4F9AE02.roa (hash: am9c/5/9WUqfqDVJJkqHl1fMAMJ9WE34zLQ5kEncnkc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B9F08/3090D914A14C11E98475A82DC4F9AE02/zoytNWIakBLECzY3U3ykDj0H6M8.crl rsync://rpki.apnic.net/member_repository/A91B9F08/3090D914A14C11E98475A82DC4F9AE02/zoytNWIakBLECzY3U3ykDj0H6M8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/zoytNWIakBLECzY3U3ykDj0H6M8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 15 May 2025 17:48:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3653 (0xe45) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B9F08, serialNumber=CE8CAD35621A9012C40B3637537CA40E3D07E8CF Validity Not Before: May 8 17:48:52 2025 GMT Not After : May 15 17:48:52 2025 GMT Subject: CN=681cee84-247c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9c:88:7a:97:a7:52:11:0b:78:3a:6b:e2:a8:6f: 53:df:78:2f:94:77:6a:64:e7:9c:b2:1f:f0:81:de: 00:92:3b:85:01:0b:0e:51:cc:7c:aa:07:30:7a:6a: d2:f5:e6:13:bf:be:03:01:27:66:b1:0d:7f:5c:d0: d0:71:95:77:89:35:36:dc:f6:69:c9:14:72:32:d4: 8d:71:1d:a8:e4:c2:bc:d2:df:6b:0d:cc:e9:e5:a6: d8:1e:5d:55:74:d0:5b:36:d9:70:e4:e0:c1:d5:ba: 0c:12:d3:2f:5c:1f:69:e0:55:01:74:64:4a:3f:ee: 6b:0d:fd:24:64:ce:8a:8a:b7:99:eb:de:47:e5:b3: fd:14:9a:5a:db:99:b1:3c:59:25:3d:0e:4b:05:42: 04:c1:0b:4e:8f:51:d6:45:48:0a:f4:96:35:40:2b: dd:0e:96:c7:03:e5:50:78:35:18:b4:5d:d6:71:03: 6a:e1:29:5a:95:cb:df:a5:a0:99:f3:d6:42:e2:ab: 44:62:24:6c:93:78:ef:9f:c3:e9:18:0e:a7:99:db: fe:66:0c:fc:07:1f:de:57:c1:21:73:4c:66:72:48: de:ee:6e:16:17:b8:24:87:f9:ce:39:b6:0a:48:58: 04:b0:52:bc:62:d1:81:d6:ac:2e:21:bd:98:57:a7: 16:05 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CD:D1:7F:4C:13:6A:5E:D1:4E:52:0F:DF:11:1D:FB:C2:21:C6:04:65 X509v3 Authority Key Identifier: keyid:CE:8C:AD:35:62:1A:90:12:C4:0B:36:37:53:7C:A4:0E:3D:07:E8:CF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B9F08/3090D914A14C11E98475A82DC4F9AE02/zoytNWIakBLECzY3U3ykDj0H6M8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/zoytNWIakBLECzY3U3ykDj0H6M8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B9F08/3090D914A14C11E98475A82DC4F9AE02/zoytNWIakBLECzY3U3ykDj0H6M8.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a0:60:6f:bb:60:09:10:45:e1:37:fc:0d:09:db:b3:72:0d:b6: f3:21:fc:ab:e9:7d:ec:c7:46:e6:32:f6:5e:54:ac:36:af:2c: 82:d5:9f:38:51:bd:e6:88:1e:34:53:0f:0b:29:88:b4:42:17: 68:a6:4f:af:ba:77:9b:94:16:29:4d:03:8e:79:5e:a7:b1:9c: fb:58:b6:5b:4e:07:92:a8:6b:c9:7f:84:fd:4b:28:ef:50:63: 62:9c:d8:26:ac:1d:d8:37:44:5b:38:b2:2f:d6:de:cb:63:a5: 2e:21:22:57:97:82:04:65:88:5b:03:3f:09:f4:9f:cb:d8:49: db:6b:35:a3:14:8f:26:59:10:45:8e:42:4b:12:74:b9:46:61: b6:62:da:0f:fe:f3:ad:cb:01:83:63:bc:63:da:73:3f:bc:bd: 52:34:0d:5c:28:d6:76:5b:4e:e1:47:ef:6a:7c:7b:a0:b0:8f: 51:6a:c0:02:e1:78:f0:6b:4c:80:52:c5:32:69:13:c2:3e:91: a2:f8:f5:7c:ee:64:4e:69:eb:b7:f8:02:69:83:6b:36:9c:16: 1a:6b:65:03:f8:3e:cf:34:68:6a:45:50:ea:0c:9b:db:c7:29: de:2d:01:0b:63:c6:52:a9:5e:1c:ee:ec:ca:25:5b:a6:e2:e5: 47:b2:46:72 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDkUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjlGMDgxMTAvBgNVBAUTKENFOENBRDM1NjIxQTkwMTJDNDBCMzYzNzUzN0NBNDBF M0QwN0U4Q0YwHhcNMjUwNTA4MTc0ODUyWhcNMjUwNTE1MTc0ODUyWjAYMRYwFAYD VQQDEw02ODFjZWU4NC0yNDdjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAnIh6l6dSEQt4OmviqG9T33gvlHdqZOecsh/wgd4AkjuFAQsOUcx8qgcwemrS 9eYTv74DASdmsQ1/XNDQcZV3iTU23PZpyRRyMtSNcR2o5MK80t9rDczp5abYHl1V dNBbNtlw5ODB1boMEtMvXB9p4FUBdGRKP+5rDf0kZM6KireZ695H5bP9FJpa25mx PFklPQ5LBUIEwQtOj1HWRUgK9JY1QCvdDpbHA+VQeDUYtF3WcQNq4SlalcvfpaCZ 89ZC4qtEYiRsk3jvn8PpGA6nmdv+Zgz8Bx/eV8Ehc0xmckje7m4WF7gkh/nOObYK SFgEsFK8YtGB1qwuIb2YV6cWBQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFM3Rf0wT al7RTlIP3xEd+8IhxgRlMB8GA1UdIwQYMBaAFM6MrTViGpASxAs2N1N8pA49B+jP MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCOUYwOC8zMDkwRDkxNEEx NEMxMUU5ODQ3NUE4MkRDNEY5QUUwMi96b3l0TldJYWtCTEVDelkzVTN5a0RqMEg2 TTguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3pveXROV0lha0JMRUN6WTNVM3lrRGowSDZNOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC OUYwOC8zMDkwRDkxNEExNEMxMUU5ODQ3NUE4MkRDNEY5QUUwMi96b3l0TldJYWtC TEVDelkzVTN5a0RqMEg2TTgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCgYG+7YAkQReE3/A0J27NyDbbzIfyr6X3sx0bmMvZeVKw2ryyC1Z84 Ub3miB40Uw8LKYi0Qhdopk+vuneblBYpTQOOeV6nsZz7WLZbTgeSqGvJf4T9Syjv UGNinNgmrB3YN0RbOLIv1t7LY6UuISJXl4IEZYhbAz8J9J/L2EnbazWjFI8mWRBF jkJLEnS5RmG2YtoP/vOtywGDY7xj2nM/vL1SNA1cKNZ2W07hR+9qfHugsI9RasAC 4Xjwa0yAUsUyaRPCPpGi+PV87mROaeu3+AJpg2s2nBYaa2UD+D7PNGhqRVDqDJvb xyneLQELY8ZSqV4c7uzKJVum4uVHskZy -----END CERTIFICATE-----Generated at Sat May 10 03:22:23 2025 by rpki-client