$ rpki-client -vvf rpki.apnic.net/member_repository/A91BEC31/3CF53622E4A411EFB276F25DC4F9AE02/Z9ecOxEW02-54XHWZY-PQ7U8cvo.mft File: Z9ecOxEW02-54XHWZY-PQ7U8cvo.mft (raw, json) Hash identifier: wu72nGpV3mDUdZTCirn0OY4emehxDHJWZYXZe40H+b0= Subject key identifier: 72:72:60:94:66:0B:71:25:C5:F9:EE:0D:0B:AE:A4:97:EB:3A:79:65 Authority key identifier: 67:D7:9C:3B:11:16:D3:6F:B9:E1:71:D6:65:8F:8F:43:B5:3C:72:FA Certificate issuer: /CN=A91BEC31/serialNumber=67D79C3B1116D36FB9E171D6658F8F43B53C72FA Certificate serial: 34 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Z9ecOxEW02-54XHWZY-PQ7U8cvo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91BEC31/3CF53622E4A411EFB276F25DC4F9AE02/Z9ecOxEW02-54XHWZY-PQ7U8cvo.mft Manifest number: 33 Signing time: Sun 11 May 2025 06:22:02 +0000 Manifest this update: Sun 11 May 2025 06:22:02 +0000 Manifest next update: Sun 18 May 2025 06:22:02 +0000 Files and hashes: 1: Z9ecOxEW02-54XHWZY-PQ7U8cvo.crl (hash: LbPnjnRV1D0P0gMLhPLFMX0wdn3HtmJqWX+NUKd+v1g=) 2: F8B0BFEEE4A411EF8C2D0460C4F9AE02.roa (hash: h0Bd3mrZsqytRvgmEj0DxUL66b35/lpEECIlTQlJZwE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91BEC31/3CF53622E4A411EFB276F25DC4F9AE02/Z9ecOxEW02-54XHWZY-PQ7U8cvo.crl rsync://rpki.apnic.net/member_repository/A91BEC31/3CF53622E4A411EFB276F25DC4F9AE02/Z9ecOxEW02-54XHWZY-PQ7U8cvo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Z9ecOxEW02-54XHWZY-PQ7U8cvo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 18 May 2025 06:22:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 52 (0x34) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91BEC31, serialNumber=67D79C3B1116D36FB9E171D6658F8F43B53C72FA Validity Not Before: May 11 06:22:02 2025 GMT Not After : May 18 06:22:02 2025 GMT Subject: CN=6820420a-5fa6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a5:8d:9a:89:4c:6a:3b:0e:73:78:37:df:a2:e6: c7:9e:07:8a:71:19:aa:6f:c8:49:ed:76:0f:17:a6: 65:7a:ed:6d:d5:54:ab:1f:35:0b:f2:b6:4b:62:d6: ce:3d:7c:07:4c:d3:de:5c:8d:65:24:ce:10:11:e8: 7d:3b:9c:a6:52:9d:92:0c:01:d3:9a:ec:dd:1a:83: 95:44:95:89:af:cd:15:03:5d:e0:7e:40:3f:56:09: 75:93:a0:60:e3:cd:ee:0d:a8:46:10:74:63:2a:ae: c4:b1:44:de:46:a4:b6:af:18:48:c5:61:6b:8a:25: 01:30:34:bc:2b:66:6c:b6:90:0e:99:83:33:ef:cb: 8f:a5:7c:0a:1f:3d:c4:ef:1d:bf:bb:ca:01:d7:b6: 3f:49:15:49:ed:68:d3:66:c9:41:b1:19:2b:c0:d7: 87:cd:59:b2:c7:c5:ef:81:a3:03:eb:6a:75:de:fe: 67:a1:4a:e8:33:dc:c0:55:27:85:09:2d:35:c2:e8: df:77:c2:02:fc:2d:f0:f9:21:72:33:05:b2:60:b3: 69:85:69:11:58:f0:50:11:c2:45:b9:09:d5:66:2f: 83:c1:86:42:7d:38:1e:db:ea:e8:ca:1a:e5:e5:a2: be:b8:02:d1:79:c5:b8:63:3d:34:cd:63:e4:a5:b7: 0a:63 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 72:72:60:94:66:0B:71:25:C5:F9:EE:0D:0B:AE:A4:97:EB:3A:79:65 X509v3 Authority Key Identifier: keyid:67:D7:9C:3B:11:16:D3:6F:B9:E1:71:D6:65:8F:8F:43:B5:3C:72:FA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91BEC31/3CF53622E4A411EFB276F25DC4F9AE02/Z9ecOxEW02-54XHWZY-PQ7U8cvo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Z9ecOxEW02-54XHWZY-PQ7U8cvo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91BEC31/3CF53622E4A411EFB276F25DC4F9AE02/Z9ecOxEW02-54XHWZY-PQ7U8cvo.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 3a:53:3d:0e:67:9e:16:e5:d0:90:b5:dc:76:93:02:94:a3:da: cc:2e:bc:f7:81:da:b9:2f:97:25:9b:23:11:81:cf:44:e2:0f: 32:d8:8e:c6:5c:fc:49:12:0d:bc:c1:9d:ce:69:dc:c5:e5:4a: dd:40:e3:cf:9f:b1:f2:77:40:72:e2:8b:f0:9e:a2:25:2a:aa: 9e:43:ab:21:a9:a8:cb:57:7f:f6:2c:a5:e5:50:e5:54:31:1c: c9:43:ef:28:71:bc:fb:7b:0c:71:ed:c9:16:cc:4b:c0:15:e1: c8:76:c7:a2:1a:5c:4b:e2:0d:6c:66:28:ee:6b:d1:30:10:2d: 4f:6e:9e:c3:04:be:da:a1:96:86:e6:62:be:b4:36:0c:e3:19: 42:9e:44:a3:bf:7f:d5:21:4c:49:be:f0:80:7b:3a:65:91:29: 6b:70:f4:65:07:18:1e:4e:2c:00:36:81:76:38:b0:e3:9c:26: e7:c3:8d:23:00:44:a2:27:b2:fe:b7:96:b6:db:da:56:20:d0: 78:eb:01:3a:82:3a:f0:c8:fb:3f:af:a1:fd:98:4c:5a:48:58: 0a:ac:ab:c4:28:c7:64:c9:8f:18:78:17:ea:2a:d9:3d:d2:a0: 60:8c:fd:4d:b6:bd:08:3b:a0:3b:94:28:1c:a0:f6:f3:97:17: 8a:b4:18:6f -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBNDANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFC RUMzMTExMC8GA1UEBRMoNjdENzlDM0IxMTE2RDM2RkI5RTE3MUQ2NjU4RjhGNDNC NTNDNzJGQTAeFw0yNTA1MTEwNjIyMDJaFw0yNTA1MTgwNjIyMDJaMBgxFjAUBgNV BAMTDTY4MjA0MjBhLTVmYTYwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCljZqJTGo7DnN4N9+i5seeB4pxGapvyEntdg8XpmV67W3VVKsfNQvytkti1s49 fAdM095cjWUkzhAR6H07nKZSnZIMAdOa7N0ag5VElYmvzRUDXeB+QD9WCXWToGDj ze4NqEYQdGMqrsSxRN5GpLavGEjFYWuKJQEwNLwrZmy2kA6ZgzPvy4+lfAofPcTv Hb+7ygHXtj9JFUntaNNmyUGxGSvA14fNWbLHxe+BowPranXe/mehSugz3MBVJ4UJ LTXC6N93wgL8LfD5IXIzBbJgs2mFaRFY8FARwkW5CdVmL4PBhkJ9OB7b6ujKGuXl or64AtF5xbhjPTTNY+SltwpjAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUcnJglGYL cSXF+e4NC66kl+s6eWUwHwYDVR0jBBgwFoAUZ9ecOxEW02+54XHWZY+PQ7U8cvow DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUJFQzMxLzNDRjUzNjIyRTRB NDExRUZCMjc2RjI1REM0RjlBRTAyL1o5ZWNPeEVXMDItNTRYSFdaWS1QUTdVOGN2 by5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvWjllY094RVcwMi01NFhIV1pZLVBRN1U4Y3ZvLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUJF QzMxLzNDRjUzNjIyRTRBNDExRUZCMjc2RjI1REM0RjlBRTAyL1o5ZWNPeEVXMDIt NTRYSFdaWS1QUTdVOGN2by5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBADpTPQ5nnhbl0JC13HaTApSj2swuvPeB2rkvlyWbIxGBz0TiDzLYjsZc /EkSDbzBnc5p3MXlSt1A48+fsfJ3QHLii/CeoiUqqp5DqyGpqMtXf/YspeVQ5VQx HMlD7yhxvPt7DHHtyRbMS8AV4ch2x6IaXEviDWxmKO5r0TAQLU9unsMEvtqhlobm Yr60NgzjGUKeRKO/f9UhTEm+8IB7OmWRKWtw9GUHGB5OLAA2gXY4sOOcJufDjSMA RKInsv63lrbb2lYg0HjrATqCOvDI+z+vof2YTFpIWAqsq8Qox2TJjxh4F+oq2T3S oGCM/U22vQg7oDuUKByg9vOXF4q0GG8= -----END CERTIFICATE-----Generated at Tue May 13 00:00:37 2025 by rpki-client