$ rpki-client -vvf rpki.apnic.net/member_repository/A91E0D87/F683CEF221EB11EC92501819C4F9AE02/cl_Zd85zS7qZM_KUPcJpOfoGCKc.mft File: cl_Zd85zS7qZM_KUPcJpOfoGCKc.mft (raw, json) Hash identifier: QdQ3C1FAkf9Z7mhzk5pVB7pSP4TwCWhU9TwU+zPkMkU= Subject key identifier: 67:19:E9:D4:CE:95:81:B7:60:BA:AB:FE:2A:07:3B:8B:69:D4:48:06 Authority key identifier: 72:5F:D9:77:CE:73:4B:BA:99:33:F2:94:3D:C2:69:39:FA:06:08:A7 Certificate issuer: /CN=A91E0D87/serialNumber=725FD977CE734BBA9933F2943DC26939FA0608A7 Certificate serial: 04ED Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cl_Zd85zS7qZM_KUPcJpOfoGCKc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E0D87/F683CEF221EB11EC92501819C4F9AE02/cl_Zd85zS7qZM_KUPcJpOfoGCKc.mft Manifest number: 04D8 Signing time: Mon 12 May 2025 23:37:24 +0000 Manifest this update: Mon 12 May 2025 23:37:23 +0000 Manifest next update: Mon 19 May 2025 23:37:23 +0000 Files and hashes: 1: cl_Zd85zS7qZM_KUPcJpOfoGCKc.crl (hash: in5log8RzfliAylsKGoMcboIreCG2RcMnnSpPNhK8v8=) 2: 17E03256B62811EF8D234218C4F9AE02.roa (hash: K58ualcAz/8vUOZws7f1WHAGLYLtETkXGgN3zPvTq4E=) 3: 67624B6088B611EFA5F28A68C4F9AE02.roa (hash: qxNt5X+NJ/lDZV/a3w6QhqphN2TIJWTmHt+XWPeL2Fw=) 4: 345F56F87FE311EF80C0F71FC4F9AE02.roa (hash: GPBxxSS7tjXB56EHA0eFK8gRXpMRgACbmw5NUyFguDY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E0D87/F683CEF221EB11EC92501819C4F9AE02/cl_Zd85zS7qZM_KUPcJpOfoGCKc.crl rsync://rpki.apnic.net/member_repository/A91E0D87/F683CEF221EB11EC92501819C4F9AE02/cl_Zd85zS7qZM_KUPcJpOfoGCKc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cl_Zd85zS7qZM_KUPcJpOfoGCKc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 19 May 2025 23:37:23 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1261 (0x4ed) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E0D87, serialNumber=725FD977CE734BBA9933F2943DC26939FA0608A7 Validity Not Before: May 12 23:37:23 2025 GMT Not After : May 19 23:37:23 2025 GMT Subject: CN=68228633-5b1b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c9:a0:60:f4:a3:80:79:f4:56:af:d8:4c:89:87: 14:a2:18:f8:77:9f:62:3b:33:43:40:c3:8d:ba:2f: db:8e:14:d5:8a:5c:e2:e8:90:80:0f:cf:94:94:39: 63:b0:d6:c3:ec:34:27:c5:16:3e:a2:ff:12:04:46: b9:31:4b:6c:44:1e:e6:d0:fc:72:96:f1:df:a9:86: 0c:47:e7:bb:ff:f3:61:ac:5c:47:ee:ea:a7:41:ad: 17:52:9b:c3:96:d7:02:ec:3a:bc:7a:fc:cb:dc:ec: 11:6b:ac:e7:cb:8f:79:d8:36:ef:86:cc:ab:3a:a2: b1:dd:4b:9d:38:c2:da:f5:04:28:b1:8e:3b:21:21: 8f:71:f8:98:78:e3:ff:89:96:40:56:37:1a:3f:4a: ee:01:cb:03:ad:ba:e7:c1:ba:df:0f:e9:8a:95:bd: 2b:ec:07:d3:85:c1:2f:6a:4f:28:6b:c4:47:b5:d2: 1e:43:5b:52:ad:77:c9:77:3e:69:5f:dc:4d:5d:d9: 90:ec:12:74:1f:d1:f6:e0:96:db:fb:bb:24:a6:ba: 97:a4:70:9d:dc:7d:83:df:84:4b:2c:b6:6e:7e:06: 04:62:60:13:a6:db:1e:9c:6e:cb:7f:f6:a8:e0:41: a8:fc:39:bd:c1:84:1c:11:6a:a8:9e:cd:40:cf:18: 16:57 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 67:19:E9:D4:CE:95:81:B7:60:BA:AB:FE:2A:07:3B:8B:69:D4:48:06 X509v3 Authority Key Identifier: keyid:72:5F:D9:77:CE:73:4B:BA:99:33:F2:94:3D:C2:69:39:FA:06:08:A7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E0D87/F683CEF221EB11EC92501819C4F9AE02/cl_Zd85zS7qZM_KUPcJpOfoGCKc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cl_Zd85zS7qZM_KUPcJpOfoGCKc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E0D87/F683CEF221EB11EC92501819C4F9AE02/cl_Zd85zS7qZM_KUPcJpOfoGCKc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 46:70:ad:1e:b4:f5:dd:19:bd:c5:72:ef:b4:93:0d:f0:1e:d5: 39:24:b9:db:c2:6a:9d:fd:15:2c:fe:fb:38:2c:b8:3b:10:d4: 9e:66:3a:2c:48:c2:4a:a4:ec:4a:48:3f:e8:bf:b6:86:41:e7: 58:93:5c:de:52:70:10:cc:ca:39:bc:a0:1b:05:9b:09:ef:58: 12:e6:90:1d:52:12:c6:db:f7:5b:9c:2b:af:de:4e:e2:1c:a2: 8e:ed:64:c4:3b:08:c8:09:55:73:d9:7b:84:d7:a8:2a:63:d0: 6b:56:04:5b:80:2b:d9:af:dd:f4:ed:49:0b:ca:4f:34:d0:84: ec:99:5a:bc:e4:75:af:3a:ed:b0:2e:9e:32:24:fe:74:33:35: dd:a0:28:e5:c7:04:a0:d1:76:6e:32:47:f2:71:c0:9c:30:12: 32:ba:cd:fb:b3:94:da:89:10:6d:f9:1a:ab:aa:4e:01:49:b7: ba:bd:72:c2:2d:d6:ec:76:96:a6:47:ed:09:42:68:81:19:b7: a5:b2:d3:60:d4:b0:62:79:94:ac:89:90:4f:e0:95:2c:fc:14: 84:2c:8a:5d:4f:45:f9:6a:69:18:16:1e:6a:ef:83:6f:f6:cc: c3:d7:dc:a6:6b:21:92:cf:b6:2e:66:f9:8e:1d:2f:7e:ee:b5: c6:cb:bb:b5 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBO0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTBEODcxMTAvBgNVBAUTKDcyNUZEOTc3Q0U3MzRCQkE5OTMzRjI5NDNEQzI2OTM5 RkEwNjA4QTcwHhcNMjUwNTEyMjMzNzIzWhcNMjUwNTE5MjMzNzIzWjAYMRYwFAYD VQQDEw02ODIyODYzMy01YjFiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyaBg9KOAefRWr9hMiYcUohj4d59iOzNDQMONui/bjhTVilzi6JCAD8+UlDlj sNbD7DQnxRY+ov8SBEa5MUtsRB7m0PxylvHfqYYMR+e7//NhrFxH7uqnQa0XUpvD ltcC7Dq8evzL3OwRa6zny4952DbvhsyrOqKx3UudOMLa9QQosY47ISGPcfiYeOP/ iZZAVjcaP0ruAcsDrbrnwbrfD+mKlb0r7AfThcEvak8oa8RHtdIeQ1tSrXfJdz5p X9xNXdmQ7BJ0H9H24Jbb+7skprqXpHCd3H2D34RLLLZufgYEYmATptsenG7Lf/ao 4EGo/Dm9wYQcEWqons1AzxgWVwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFGcZ6dTO lYG3YLqr/ioHO4tp1EgGMB8GA1UdIwQYMBaAFHJf2XfOc0u6mTPylD3CaTn6Bgin MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFMEQ4Ny9GNjgzQ0VGMjIx RUIxMUVDOTI1MDE4MTlDNEY5QUUwMi9jbF9aZDg1elM3cVpNX0tVUGNKcE9mb0dD S2MuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2NsX1pkODV6UzdxWk1fS1VQY0pwT2ZvR0NLYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF MEQ4Ny9GNjgzQ0VGMjIxRUIxMUVDOTI1MDE4MTlDNEY5QUUwMi9jbF9aZDg1elM3 cVpNX0tVUGNKcE9mb0dDS2MubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBGcK0etPXdGb3Fcu+0kw3wHtU5JLnbwmqd/RUs/vs4LLg7ENSeZjos SMJKpOxKSD/ov7aGQedYk1zeUnAQzMo5vKAbBZsJ71gS5pAdUhLG2/dbnCuv3k7i HKKO7WTEOwjICVVz2XuE16gqY9BrVgRbgCvZr9307UkLyk800ITsmVq85HWvOu2w Lp4yJP50MzXdoCjlxwSg0XZuMkfyccCcMBIyus37s5TaiRBt+Rqrqk4BSbe6vXLC LdbsdpamR+0JQmiBGbelstNg1LBieZSsiZBP4JUs/BSELIpdT0X5amkYFh5q74Nv 9szD19ymayGSz7YuZvmOHS9+7rXGy7u1 -----END CERTIFICATE-----Generated at Wed May 14 12:38:18 2025 by rpki-client