$ rpki-client -vvf rpki.apnic.net/member_repository/A91E7ED9/F8E0B3B2DBA211EAA88F2066C4F9AE02/z2aDdOx1q1ys0upzBRX3t3ZN2SE.mft File: z2aDdOx1q1ys0upzBRX3t3ZN2SE.mft (raw, json) Hash identifier: i1cB+fQSscVT5Bpxk1ahHRPWelWGC2VknRzcsdPOL9E= Subject key identifier: 5E:E0:BB:11:A5:F8:2F:03:71:D0:EF:CD:86:64:DD:2A:80:CC:CC:AF Authority key identifier: CF:66:83:74:EC:75:AB:5C:AC:D2:EA:73:05:15:F7:B7:76:4D:D9:21 Certificate issuer: /CN=A91E7ED9/serialNumber=CF668374EC75AB5CACD2EA730515F7B7764DD921 Certificate serial: 080B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/z2aDdOx1q1ys0upzBRX3t3ZN2SE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E7ED9/F8E0B3B2DBA211EAA88F2066C4F9AE02/z2aDdOx1q1ys0upzBRX3t3ZN2SE.mft Manifest number: 0805 Signing time: Fri 16 May 2025 21:12:29 +0000 Manifest this update: Fri 16 May 2025 21:12:28 +0000 Manifest next update: Fri 23 May 2025 21:12:28 +0000 Files and hashes: 1: z2aDdOx1q1ys0upzBRX3t3ZN2SE.crl (hash: jlLMZ8B2HRWyBIgxO2SwX8eT2qrcikymf/2pHvVUISk=) 2: DE349762DBA311EA8DE35866C4F9AE02.roa (hash: W9BGV+7n/b6h+ZEgu/zCV5dkMkakdYDRjim1ueZv/vs=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E7ED9/F8E0B3B2DBA211EAA88F2066C4F9AE02/z2aDdOx1q1ys0upzBRX3t3ZN2SE.crl rsync://rpki.apnic.net/member_repository/A91E7ED9/F8E0B3B2DBA211EAA88F2066C4F9AE02/z2aDdOx1q1ys0upzBRX3t3ZN2SE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/z2aDdOx1q1ys0upzBRX3t3ZN2SE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 23 May 2025 21:12:28 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2059 (0x80b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E7ED9, serialNumber=CF668374EC75AB5CACD2EA730515F7B7764DD921 Validity Not Before: May 16 21:12:28 2025 GMT Not After : May 23 21:12:28 2025 GMT Subject: CN=6827aa3c-0c5d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dd:39:90:e4:21:11:87:19:6c:54:a4:bd:62:6f: d6:60:d9:d3:4b:b3:f0:38:19:88:25:f7:3a:b6:55: ed:45:06:36:b7:26:c5:46:13:0a:cc:29:b9:de:d5: 49:6d:55:2d:25:3c:76:6f:38:67:2f:07:94:53:37: 97:e5:78:18:44:4f:24:f9:c4:fe:db:f1:56:1a:13: ca:9e:7f:a3:a0:82:ea:e1:c4:db:d9:88:b7:b5:6b: 0a:79:f4:ea:0e:c3:46:05:23:6c:d1:1e:90:18:f5: 8a:39:ea:88:55:02:01:39:5e:22:ec:38:a7:f7:45: c7:ba:fc:76:0c:1d:d5:1a:9c:63:1f:e0:b7:ae:93: d9:0b:07:f5:24:1c:5c:08:d1:06:29:05:eb:80:39: 11:71:cf:77:c4:f5:a4:0d:81:98:ea:28:3c:b6:06: 83:4b:e6:e8:19:34:6d:b4:a2:38:ba:0e:b5:23:37: dc:6c:f2:f9:e7:58:bf:e1:33:9a:37:de:be:5d:67: a2:a6:ab:37:8a:fb:af:90:9c:a0:36:91:03:b6:1f: 19:f5:2c:55:34:4a:02:9c:a4:8f:12:41:1a:52:72: 6d:af:27:c8:8f:7c:04:a2:b2:d5:34:35:a6:9a:af: 0e:60:8b:b2:8a:6b:00:90:cc:44:bb:96:25:14:cd: 17:31 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5E:E0:BB:11:A5:F8:2F:03:71:D0:EF:CD:86:64:DD:2A:80:CC:CC:AF X509v3 Authority Key Identifier: keyid:CF:66:83:74:EC:75:AB:5C:AC:D2:EA:73:05:15:F7:B7:76:4D:D9:21 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E7ED9/F8E0B3B2DBA211EAA88F2066C4F9AE02/z2aDdOx1q1ys0upzBRX3t3ZN2SE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/z2aDdOx1q1ys0upzBRX3t3ZN2SE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E7ED9/F8E0B3B2DBA211EAA88F2066C4F9AE02/z2aDdOx1q1ys0upzBRX3t3ZN2SE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 0c:d8:ad:dd:a6:44:fd:2a:f1:b1:9d:2e:6a:90:38:d6:c1:37: a9:17:fe:ee:7a:7b:e2:52:95:67:8d:21:35:f0:34:bf:f6:9c: 61:54:65:e6:0e:2c:6c:c0:b6:7b:0c:cc:19:8f:9c:ec:e3:5c: 66:81:12:7e:38:38:90:07:1e:d9:0a:8f:7f:39:09:87:28:e3: 63:d3:5c:ea:00:d7:b9:6a:7e:5c:ef:47:fd:0a:f5:d6:91:be: 46:57:88:54:6b:fd:67:63:ca:66:48:c2:9c:e6:73:4d:17:fa: 82:16:13:19:28:c2:f3:03:4c:7b:5c:4a:8c:71:22:c2:46:87: 78:c6:3c:10:47:8d:39:3b:48:57:06:63:21:f0:0f:a6:db:f2: 95:f5:16:56:41:e7:a2:74:59:fb:ea:8e:08:26:f3:54:1a:c0: bc:1f:96:c3:e0:83:6d:3d:55:c4:25:8f:83:a9:d4:dc:d0:cb: 44:97:25:02:2b:a6:4a:5a:bc:b5:16:23:82:18:cf:26:dc:e0: cf:88:90:b1:c4:f2:fc:2b:77:43:f0:18:3e:6b:92:88:b0:e8: e3:72:9c:7b:b3:6f:93:1a:63:bc:52:e2:91:e6:73:9b:7e:4c: 3e:fc:5d:38:f6:5d:6a:99:7f:17:ad:6f:90:59:72:69:1e:a3: 97:e2:3d:4d -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCAswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTdFRDkxMTAvBgNVBAUTKENGNjY4Mzc0RUM3NUFCNUNBQ0QyRUE3MzA1MTVGN0I3 NzY0REQ5MjEwHhcNMjUwNTE2MjExMjI4WhcNMjUwNTIzMjExMjI4WjAYMRYwFAYD VQQDEw02ODI3YWEzYy0wYzVkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA3TmQ5CERhxlsVKS9Ym/WYNnTS7PwOBmIJfc6tlXtRQY2tybFRhMKzCm53tVJ bVUtJTx2bzhnLweUUzeX5XgYRE8k+cT+2/FWGhPKnn+joILq4cTb2Yi3tWsKefTq DsNGBSNs0R6QGPWKOeqIVQIBOV4i7Din90XHuvx2DB3VGpxjH+C3rpPZCwf1JBxc CNEGKQXrgDkRcc93xPWkDYGY6ig8tgaDS+boGTRttKI4ug61IzfcbPL551i/4TOa N96+XWeipqs3ivuvkJygNpEDth8Z9SxVNEoCnKSPEkEaUnJtryfIj3wEorLVNDWm mq8OYIuyimsAkMxEu5YlFM0XMQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFF7guxGl +C8DcdDvzYZk3SqAzMyvMB8GA1UdIwQYMBaAFM9mg3TsdatcrNLqcwUV97d2Tdkh MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFN0VEOS9GOEUwQjNCMkRC QTIxMUVBQTg4RjIwNjZDNEY5QUUwMi96MmFEZE94MXExeXMwdXB6QlJYM3QzWk4y U0UuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3oyYURkT3gxcTF5czB1cHpCUlgzdDNaTjJTRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF N0VEOS9GOEUwQjNCMkRCQTIxMUVBQTg4RjIwNjZDNEY5QUUwMi96MmFEZE94MXEx eXMwdXB6QlJYM3QzWk4yU0UubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAM2K3dpkT9KvGxnS5qkDjWwTepF/7uenviUpVnjSE18DS/9pxhVGXm DixswLZ7DMwZj5zs41xmgRJ+ODiQBx7ZCo9/OQmHKONj01zqANe5an5c70f9CvXW kb5GV4hUa/1nY8pmSMKc5nNNF/qCFhMZKMLzA0x7XEqMcSLCRod4xjwQR405O0hX BmMh8A+m2/KV9RZWQeeidFn76o4IJvNUGsC8H5bD4INtPVXEJY+DqdTc0MtElyUC K6ZKWry1FiOCGM8m3ODPiJCxxPL8K3dD8Bg+a5KIsOjjcpx7s2+TGmO8UuKR5nOb fkw+/F049l1qmX8XrW+QWXJpHqOX4j1N -----END CERTIFICATE-----Generated at Sat May 17 07:59:43 2025 by rpki-client