$ rpki-client -vvf rpki.apnic.net/member_repository/A91EA6A1/315B7E08FF7B11EDA62DF10EC4F9AE02/zdfMWZTjQE5sI66UKlkhi1fFwTE.mft File: zdfMWZTjQE5sI66UKlkhi1fFwTE.mft (raw, json) Hash identifier: Lm3xZH/8ysByZcgqPj2IHQ4rmsHngbxYyYcPbpIapS0= Subject key identifier: 73:85:8A:81:0F:79:D6:92:F6:DB:69:46:01:26:6D:00:89:FC:3E:17 Authority key identifier: CD:D7:CC:59:94:E3:40:4E:6C:23:AE:94:2A:59:21:8B:57:C5:C1:31 Certificate issuer: /CN=A91EA6A1/serialNumber=CDD7CC5994E3404E6C23AE942A59218B57C5C131 Certificate serial: 0178 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/zdfMWZTjQE5sI66UKlkhi1fFwTE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91EA6A1/315B7E08FF7B11EDA62DF10EC4F9AE02/zdfMWZTjQE5sI66UKlkhi1fFwTE.mft Manifest number: 016F Signing time: Sun 11 May 2025 02:46:22 +0000 Manifest this update: Sun 11 May 2025 02:46:22 +0000 Manifest next update: Sun 18 May 2025 02:46:21 +0000 Files and hashes: 1: zdfMWZTjQE5sI66UKlkhi1fFwTE.crl (hash: HQx/XO0oagJ9mC2haLjwnJej1vnG9EG2OdBM5D+METI=) 2: 1D45B78003C211EEB2272068C4F9AE02.roa (hash: F77Ohmhr+pSmcNMBmLDootHjfm49x1IrVzvlaFQhQZo=) 3: 1E7F6B9603C211EEB2272068C4F9AE02.roa (hash: T4SsvxhOJ8NmSlYF5F0QyIn0S5EcCqMNYfFfIGZadlw=) 4: 1DDE652A03C211EEB2272068C4F9AE02.roa (hash: 3jNUoCccmrM56z8z19CQSeUZl708g7HitdvgnX+ByM8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91EA6A1/315B7E08FF7B11EDA62DF10EC4F9AE02/zdfMWZTjQE5sI66UKlkhi1fFwTE.crl rsync://rpki.apnic.net/member_repository/A91EA6A1/315B7E08FF7B11EDA62DF10EC4F9AE02/zdfMWZTjQE5sI66UKlkhi1fFwTE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/zdfMWZTjQE5sI66UKlkhi1fFwTE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 18 May 2025 02:46:21 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 376 (0x178) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91EA6A1, serialNumber=CDD7CC5994E3404E6C23AE942A59218B57C5C131 Validity Not Before: May 11 02:46:22 2025 GMT Not After : May 18 02:46:21 2025 GMT Subject: CN=68200f7e-a61b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b3:91:39:c9:2a:9b:f7:14:41:c3:b6:f4:51:e8: 89:ef:bb:72:5d:d2:6c:59:1e:85:e8:d9:bc:5b:73: 5f:5a:19:c5:61:cc:65:e4:77:2a:96:a2:0b:97:42: cc:6c:78:22:e2:9f:f5:76:ac:f1:21:ce:6f:58:31: bc:6a:e4:04:2e:8c:da:d1:a8:08:2d:6b:4d:bc:fd: f7:83:20:55:87:9a:fb:7a:94:4d:6d:8d:90:b7:a3: 4c:58:da:4b:0e:d3:f6:d9:83:6f:8e:1c:a1:dc:74: 06:f1:ba:65:d3:75:7b:89:fd:fd:af:2f:5c:e4:db: a8:0e:6d:29:fd:48:88:d9:70:a1:d0:c4:81:17:c2: 2b:f6:b6:d9:66:cd:46:7a:e7:b2:aa:2a:99:6c:3f: d8:25:37:f0:f1:f6:74:15:c4:53:90:2f:4e:4f:a4: 8b:7a:80:16:6d:41:ae:63:6f:b1:4a:b8:b2:f8:68: 99:9b:39:42:3c:ec:45:02:23:94:59:ae:7a:b1:aa: c4:2a:c1:5c:71:d1:a3:c7:0b:d8:66:15:49:26:c2: f7:90:bb:30:de:f7:9d:0a:53:e1:9f:d1:fe:19:d4: 18:9c:98:14:20:fa:83:97:36:02:56:89:44:f2:1d: 9f:9d:d4:57:02:3a:d1:94:d7:12:0a:63:42:74:17: 1e:11 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 73:85:8A:81:0F:79:D6:92:F6:DB:69:46:01:26:6D:00:89:FC:3E:17 X509v3 Authority Key Identifier: keyid:CD:D7:CC:59:94:E3:40:4E:6C:23:AE:94:2A:59:21:8B:57:C5:C1:31 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91EA6A1/315B7E08FF7B11EDA62DF10EC4F9AE02/zdfMWZTjQE5sI66UKlkhi1fFwTE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/zdfMWZTjQE5sI66UKlkhi1fFwTE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91EA6A1/315B7E08FF7B11EDA62DF10EC4F9AE02/zdfMWZTjQE5sI66UKlkhi1fFwTE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 3b:b8:05:5a:f2:be:7a:26:90:6d:60:14:8e:16:ce:29:1c:13: c8:40:20:7d:6e:54:60:37:41:1d:69:2e:ae:df:bd:2e:a5:e6: 40:6b:91:c8:58:82:8d:18:ee:eb:52:43:ac:95:05:1a:f8:f8: 0a:3b:4f:52:03:8b:13:f9:47:dc:49:8e:76:86:43:26:10:fb: 17:65:d0:70:3a:1e:80:32:c6:1b:58:d0:c6:01:2d:fb:c0:a0: c0:c2:60:21:b7:a1:96:26:d7:00:78:e1:bc:ba:9d:43:27:a6: 4a:75:31:56:f7:1b:d5:3e:76:f9:64:e5:3f:e0:eb:35:e0:45: 0e:47:2e:08:70:08:df:72:ab:19:3b:5e:aa:e3:81:8f:71:49: 67:35:33:dc:34:87:08:7b:31:4e:67:ce:85:ed:8e:61:2b:72: f5:64:0b:50:91:09:e9:50:49:cc:3c:91:9c:21:3f:3e:28:93: a0:a7:1a:53:9a:7b:63:36:37:02:ca:80:b4:37:d9:f4:ee:2e: fa:dd:b1:24:d3:b3:eb:a2:fe:d8:cd:13:fe:51:0b:d6:2d:7b: 80:85:a2:5d:51:b7:af:3d:1e:7e:c7:35:2e:93:6f:f1:bb:97: 33:06:d8:7c:1b:e9:0b:04:15:3f:6a:a1:ae:74:ff:5e:bd:75: fb:03:53:cb -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAXgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RUE2QTExMTAvBgNVBAUTKENERDdDQzU5OTRFMzQwNEU2QzIzQUU5NDJBNTkyMThC NTdDNUMxMzEwHhcNMjUwNTExMDI0NjIyWhcNMjUwNTE4MDI0NjIxWjAYMRYwFAYD VQQDEw02ODIwMGY3ZS1hNjFiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAs5E5ySqb9xRBw7b0UeiJ77tyXdJsWR6F6Nm8W3NfWhnFYcxl5HcqlqILl0LM bHgi4p/1dqzxIc5vWDG8auQELoza0agILWtNvP33gyBVh5r7epRNbY2Qt6NMWNpL DtP22YNvjhyh3HQG8bpl03V7if39ry9c5NuoDm0p/UiI2XCh0MSBF8Ir9rbZZs1G eueyqiqZbD/YJTfw8fZ0FcRTkC9OT6SLeoAWbUGuY2+xSriy+GiZmzlCPOxFAiOU Wa56sarEKsFccdGjxwvYZhVJJsL3kLsw3vedClPhn9H+GdQYnJgUIPqDlzYCVolE 8h2fndRXAjrRlNcSCmNCdBceEQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFHOFioEP edaS9ttpRgEmbQCJ/D4XMB8GA1UdIwQYMBaAFM3XzFmU40BObCOulCpZIYtXxcEx MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFQTZBMS8zMTVCN0UwOEZG N0IxMUVEQTYyREYxMEVDNEY5QUUwMi96ZGZNV1pUalFFNXNJNjZVS2xraGkxZkZ3 VEUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3pkZk1XWlRqUUU1c0k2NlVLbGtoaTFmRndURS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF QTZBMS8zMTVCN0UwOEZGN0IxMUVEQTYyREYxMEVDNEY5QUUwMi96ZGZNV1pUalFF NXNJNjZVS2xraGkxZkZ3VEUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA7uAVa8r56JpBtYBSOFs4pHBPIQCB9blRgN0EdaS6u370upeZAa5HI WIKNGO7rUkOslQUa+PgKO09SA4sT+UfcSY52hkMmEPsXZdBwOh6AMsYbWNDGAS37 wKDAwmAht6GWJtcAeOG8up1DJ6ZKdTFW9xvVPnb5ZOU/4Os14EUORy4IcAjfcqsZ O16q44GPcUlnNTPcNIcIezFOZ86F7Y5hK3L1ZAtQkQnpUEnMPJGcIT8+KJOgpxpT mntjNjcCyoC0N9n07i763bEk07Prov7YzRP+UQvWLXuAhaJdUbevPR5+xzUuk2/x u5czBth8G+kLBBU/aqGudP9evXX7A1PL -----END CERTIFICATE-----Generated at Tue May 13 04:56:31 2025 by rpki-client