$ rpki-client -vvf rpki.apnic.net/member_repository/A91EBC61/446BD7A2B6C411EFA24AA616C4F9AE02/ZNKz1lpcbM5NCNeP_tsoVrZB1qM.mft File: ZNKz1lpcbM5NCNeP_tsoVrZB1qM.mft (raw, json) Hash identifier: C7dTPBvUb9cg4uN1aadrr/n5k+Yth9gVug2HmrSeVBU= Subject key identifier: 54:5C:7B:36:E9:48:FF:52:1B:FF:91:1B:DA:2F:F3:1E:B1:EE:6D:18 Authority key identifier: 64:D2:B3:D6:5A:5C:6C:CE:4D:08:D7:8F:FE:DB:28:56:B6:41:D6:A3 Certificate issuer: /CN=A91EBC61/serialNumber=64D2B3D65A5C6CCE4D08D78FFEDB2856B641D6A3 Certificate serial: 52 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ZNKz1lpcbM5NCNeP_tsoVrZB1qM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91EBC61/446BD7A2B6C411EFA24AA616C4F9AE02/ZNKz1lpcbM5NCNeP_tsoVrZB1qM.mft Manifest number: 51 Signing time: Tue 13 May 2025 06:29:30 +0000 Manifest this update: Tue 13 May 2025 06:29:30 +0000 Manifest next update: Tue 20 May 2025 06:29:30 +0000 Files and hashes: 1: ZNKz1lpcbM5NCNeP_tsoVrZB1qM.crl (hash: WeF2D+RUpGEiNkBILn5F64hM1sZgyAvp1ODl5nESl6Q=) 2: 8D26DADCB6C411EF99C3B758C4F9AE02.roa (hash: BCZ1HJoEZyrIFeiF3ZHLW8BBZXBaO4KH4xqAbBol+hw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91EBC61/446BD7A2B6C411EFA24AA616C4F9AE02/ZNKz1lpcbM5NCNeP_tsoVrZB1qM.crl rsync://rpki.apnic.net/member_repository/A91EBC61/446BD7A2B6C411EFA24AA616C4F9AE02/ZNKz1lpcbM5NCNeP_tsoVrZB1qM.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ZNKz1lpcbM5NCNeP_tsoVrZB1qM.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 20 May 2025 06:29:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 82 (0x52) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91EBC61, serialNumber=64D2B3D65A5C6CCE4D08D78FFEDB2856B641D6A3 Validity Not Before: May 13 06:29:30 2025 GMT Not After : May 20 06:29:30 2025 GMT Subject: CN=6822e6ca-0053 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c7:02:71:bc:4f:f2:2a:30:ea:0b:d1:45:7b:3e: fc:9a:87:28:0d:28:d9:d0:70:40:2d:c0:d0:47:c0: 29:f1:14:38:75:f9:70:f5:26:58:d7:7e:c4:e3:ac: 21:24:02:e4:f5:57:d1:e8:8e:c7:90:17:4e:36:63: 7e:c9:c8:38:f6:91:58:7b:d5:de:aa:93:d3:7b:5b: 9c:10:4f:8a:fa:8b:41:02:ee:81:13:88:eb:88:28: fd:25:2f:93:3e:1f:fc:0d:48:53:d3:c3:05:f3:cc: 67:8d:62:59:cb:73:eb:bb:82:ff:c6:f8:12:45:95: 31:8f:99:fb:a8:7a:63:fc:51:bf:7b:1c:62:58:f3: c2:0c:31:c1:7c:91:86:d7:37:b4:af:86:2c:bf:5c: 18:7e:3c:f9:5e:a7:93:dd:e4:ef:91:7c:a8:a0:89: 4d:f9:b3:0f:26:07:fc:ad:02:84:9b:00:af:b6:48: 03:93:e3:c2:53:77:33:ee:95:bd:7d:ed:3c:4f:f5: 64:f0:82:62:6a:2a:a4:3d:95:87:cb:70:3f:28:80: 79:58:64:93:8f:41:df:e6:fb:4e:8e:6c:f8:c3:a0: fc:69:53:04:4b:46:32:f2:63:78:9a:31:6d:5e:54: e6:ab:33:95:bf:8d:f2:d8:df:ae:88:f7:de:63:bc: eb:b7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 54:5C:7B:36:E9:48:FF:52:1B:FF:91:1B:DA:2F:F3:1E:B1:EE:6D:18 X509v3 Authority Key Identifier: keyid:64:D2:B3:D6:5A:5C:6C:CE:4D:08:D7:8F:FE:DB:28:56:B6:41:D6:A3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91EBC61/446BD7A2B6C411EFA24AA616C4F9AE02/ZNKz1lpcbM5NCNeP_tsoVrZB1qM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ZNKz1lpcbM5NCNeP_tsoVrZB1qM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91EBC61/446BD7A2B6C411EFA24AA616C4F9AE02/ZNKz1lpcbM5NCNeP_tsoVrZB1qM.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 1d:b3:fe:74:e3:1a:13:f7:72:05:51:69:66:ec:24:21:0d:16: 28:77:d8:21:2b:56:31:ec:49:e0:91:3b:77:4e:fa:3e:4e:86: 5c:5c:38:c9:fe:68:ae:c5:5e:66:04:01:c6:3b:c2:d8:12:49: bb:b3:2a:0c:c9:85:e4:6d:1c:2e:a3:46:db:1d:57:d9:51:3b: ab:65:43:ff:b3:93:85:62:06:e5:67:91:e4:d1:99:0b:30:7a: 96:ee:d4:fe:5b:41:0c:06:b3:f7:c4:07:50:8d:cf:2d:6f:bd: 50:d9:57:65:bb:4b:ff:50:31:f9:8c:bd:75:02:41:b4:58:5c: 6e:7e:b5:7f:2d:5a:ff:97:a8:37:b9:8c:f8:6e:20:c2:ed:2a: 6d:35:29:91:57:b6:13:40:63:ed:ae:3a:3d:a6:45:8d:8f:ee: fc:25:48:b1:d9:cc:14:a3:9e:22:d2:2f:9c:a4:4a:1d:24:cd: be:6e:0c:15:67:80:21:78:10:38:ff:bd:41:d6:47:c2:3c:d7: 20:d7:fb:22:f5:a2:54:e0:fe:e8:4b:df:32:34:6c:4c:ae:4e: d6:d4:9c:98:98:1f:c7:d0:17:26:0f:a5:22:7f:73:98:27:38: ec:1e:11:00:a0:51:03:69:d5:1a:b1:6c:e7:56:73:f2:29:e2: ac:7b:17:58 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBUjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFF QkM2MTExMC8GA1UEBRMoNjREMkIzRDY1QTVDNkNDRTREMDhENzhGRkVEQjI4NTZC NjQxRDZBMzAeFw0yNTA1MTMwNjI5MzBaFw0yNTA1MjAwNjI5MzBaMBgxFjAUBgNV BAMTDTY4MjJlNmNhLTAwNTMwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDHAnG8T/IqMOoL0UV7PvyahygNKNnQcEAtwNBHwCnxFDh1+XD1JljXfsTjrCEk AuT1V9HojseQF042Y37JyDj2kVh71d6qk9N7W5wQT4r6i0EC7oETiOuIKP0lL5M+ H/wNSFPTwwXzzGeNYlnLc+u7gv/G+BJFlTGPmfuoemP8Ub97HGJY88IMMcF8kYbX N7Svhiy/XBh+PPlep5Pd5O+RfKigiU35sw8mB/ytAoSbAK+2SAOT48JTdzPulb19 7TxP9WTwgmJqKqQ9lYfLcD8ogHlYZJOPQd/m+06ObPjDoPxpUwRLRjLyY3iaMW1e VOarM5W/jfLY366I995jvOu3AgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUVFx7NulI /1Ib/5Eb2i/zHrHubRgwHwYDVR0jBBgwFoAUZNKz1lpcbM5NCNeP/tsoVrZB1qMw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUVCQzYxLzQ0NkJEN0EyQjZD NDExRUZBMjRBQTYxNkM0RjlBRTAyL1pOS3oxbHBjYk01TkNOZVBfdHNvVnJaQjFx TS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvWk5LejFscGNiTTVOQ05lUF90c29WclpCMXFNLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUVC QzYxLzQ0NkJEN0EyQjZDNDExRUZBMjRBQTYxNkM0RjlBRTAyL1pOS3oxbHBjYk01 TkNOZVBfdHNvVnJaQjFxTS5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAB2z/nTjGhP3cgVRaWbsJCENFih32CErVjHsSeCRO3dO+j5OhlxcOMn+ aK7FXmYEAcY7wtgSSbuzKgzJheRtHC6jRtsdV9lRO6tlQ/+zk4ViBuVnkeTRmQsw epbu1P5bQQwGs/fEB1CNzy1vvVDZV2W7S/9QMfmMvXUCQbRYXG5+tX8tWv+XqDe5 jPhuIMLtKm01KZFXthNAY+2uOj2mRY2P7vwlSLHZzBSjniLSL5ykSh0kzb5uDBVn gCF4EDj/vUHWR8I81yDX+yL1olTg/uhL3zI0bEyuTtbUnJiYH8fQFyYPpSJ/c5gn OOweEQCgUQNp1RqxbOdWc/Ip4qx7F1g= -----END CERTIFICATE-----Generated at Wed May 14 07:55:06 2025 by rpki-client