$ rpki-client -vvf rpki.apnic.net/member_repository/A91EBFB0/A3AB43B2F87C11E9AA2CF158C4F9AE02/zIUJ0x-2Oo3da_LT2Ex7wLK6P8A.mft File: zIUJ0x-2Oo3da_LT2Ex7wLK6P8A.mft (raw, json) Hash identifier: VGQjMA/KKlbgPlP4r5qx+WiWe29867tbrPcwVTZCdBM= Subject key identifier: B2:EC:18:94:52:24:CD:CA:42:C0:5A:1A:15:24:84:7F:B3:23:22:BE Authority key identifier: CC:85:09:D3:1F:B6:3A:8D:DD:6B:F2:D3:D8:4C:7B:C0:B2:BA:3F:C0 Certificate issuer: /CN=A91EBFB0/serialNumber=CC8509D31FB63A8DDD6BF2D3D84C7BC0B2BA3FC0 Certificate serial: 0C7D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/zIUJ0x-2Oo3da_LT2Ex7wLK6P8A.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91EBFB0/A3AB43B2F87C11E9AA2CF158C4F9AE02/zIUJ0x-2Oo3da_LT2Ex7wLK6P8A.mft Manifest number: 0C77 Signing time: Sat 10 May 2025 18:05:13 +0000 Manifest this update: Sat 10 May 2025 18:05:13 +0000 Manifest next update: Sat 17 May 2025 18:05:13 +0000 Files and hashes: 1: zIUJ0x-2Oo3da_LT2Ex7wLK6P8A.crl (hash: j0hGdabDD8ZSVa2Fzn4HXLqC6Xou/9BUd3dw7f34bR0=) 2: F690CAECF87D11E9A746D05BC4F9AE02.roa (hash: tPAGXaSYisbjEXVlWGxE30ABgdsZwLOrekyu2J6vfbg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91EBFB0/A3AB43B2F87C11E9AA2CF158C4F9AE02/zIUJ0x-2Oo3da_LT2Ex7wLK6P8A.crl rsync://rpki.apnic.net/member_repository/A91EBFB0/A3AB43B2F87C11E9AA2CF158C4F9AE02/zIUJ0x-2Oo3da_LT2Ex7wLK6P8A.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/zIUJ0x-2Oo3da_LT2Ex7wLK6P8A.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 17 May 2025 18:05:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3197 (0xc7d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91EBFB0, serialNumber=CC8509D31FB63A8DDD6BF2D3D84C7BC0B2BA3FC0 Validity Not Before: May 10 18:05:13 2025 GMT Not After : May 17 18:05:13 2025 GMT Subject: CN=681f9559-ef03 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e4:91:ac:1b:90:89:d9:50:f3:73:5e:30:1f:7a: 49:65:c8:69:ee:8e:a6:b9:4b:72:6d:ea:f1:97:f1: de:d6:2f:66:93:a7:4e:a0:48:33:8c:f1:e2:6c:0f: ce:e2:c8:ab:ae:f3:1a:96:d5:4d:47:76:21:9e:64: fa:e5:2d:7a:64:24:fa:1b:97:15:dd:6d:07:77:a1: ca:a1:cc:56:00:38:a9:34:75:3a:31:66:de:39:78: 2f:ec:e7:21:73:55:d7:da:95:29:a9:8c:f4:80:da: 18:0b:09:8c:85:2b:b4:9e:56:64:32:69:43:4c:b7: 88:1d:ba:08:48:61:b6:51:c5:1c:08:28:55:80:d2: 28:09:29:0a:83:42:f5:20:e2:94:01:03:cb:25:e6: 9c:b0:10:3e:b1:9e:98:ea:10:73:56:ab:89:7e:55: 8d:ef:ca:d7:42:19:6e:78:15:e1:c8:07:6f:0a:70: 7c:03:4f:be:79:20:40:40:97:4c:02:a1:c3:78:d1: fb:77:7f:3d:ed:c8:b0:b6:ba:9c:00:bb:6e:20:70: 15:39:bb:48:08:7b:13:a7:ac:e4:8f:47:b7:09:37: 28:09:54:df:cb:fa:12:ac:c8:66:a5:ad:cc:ef:74: 56:fe:06:bb:4d:07:58:05:79:68:4b:3a:2e:a0:ee: ed:63 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B2:EC:18:94:52:24:CD:CA:42:C0:5A:1A:15:24:84:7F:B3:23:22:BE X509v3 Authority Key Identifier: keyid:CC:85:09:D3:1F:B6:3A:8D:DD:6B:F2:D3:D8:4C:7B:C0:B2:BA:3F:C0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91EBFB0/A3AB43B2F87C11E9AA2CF158C4F9AE02/zIUJ0x-2Oo3da_LT2Ex7wLK6P8A.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/zIUJ0x-2Oo3da_LT2Ex7wLK6P8A.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91EBFB0/A3AB43B2F87C11E9AA2CF158C4F9AE02/zIUJ0x-2Oo3da_LT2Ex7wLK6P8A.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 18:67:4c:91:99:7d:f4:d0:3e:14:27:bc:47:35:25:16:67:90: 94:a1:94:ea:5c:8e:cf:1d:c1:82:36:c7:c1:90:55:c1:3b:f7: 88:8b:f6:a0:e5:03:ee:52:de:2c:60:62:0b:90:3d:35:fc:2d: 8d:25:24:0b:bf:37:a1:b7:fc:43:f0:15:8d:38:1f:68:16:d0: e7:eb:27:f6:ca:8b:b6:e5:24:15:29:9a:be:ca:dd:41:df:99: d0:2b:33:70:5b:f0:59:68:b1:f0:a2:cd:3a:09:99:cb:61:02: 15:72:56:90:84:7d:df:47:8a:65:1f:87:e9:71:54:8a:af:58: 1f:08:da:16:c2:46:0c:cb:c2:e1:d1:85:f9:95:c8:f1:d1:60: 25:57:b1:eb:b4:1e:8d:51:62:f5:ad:a6:f5:ba:18:7c:c6:58: 8d:98:46:8c:bb:04:38:0d:54:2c:8b:19:a7:d8:3c:8d:1f:de: dc:1e:1b:b3:d4:f5:a2:04:38:3f:8c:ac:d9:11:06:07:c6:4f: f1:82:45:24:5c:d2:a2:04:ab:73:d7:d3:b2:f5:e8:2f:96:5a: 47:c2:71:57:3d:85:6a:0c:81:3c:02:78:b6:4d:cd:be:8a:47: 3d:8d:49:b7:07:3b:69:38:85:14:e8:d0:36:bc:bc:39:dd:5b: 67:84:e2:54 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDH0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RUJGQjAxMTAvBgNVBAUTKENDODUwOUQzMUZCNjNBOERERDZCRjJEM0Q4NEM3QkMw QjJCQTNGQzAwHhcNMjUwNTEwMTgwNTEzWhcNMjUwNTE3MTgwNTEzWjAYMRYwFAYD VQQDEw02ODFmOTU1OS1lZjAzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA5JGsG5CJ2VDzc14wH3pJZchp7o6muUtyberxl/He1i9mk6dOoEgzjPHibA/O 4sirrvMaltVNR3YhnmT65S16ZCT6G5cV3W0Hd6HKocxWADipNHU6MWbeOXgv7Och c1XX2pUpqYz0gNoYCwmMhSu0nlZkMmlDTLeIHboISGG2UcUcCChVgNIoCSkKg0L1 IOKUAQPLJeacsBA+sZ6Y6hBzVquJflWN78rXQhlueBXhyAdvCnB8A0++eSBAQJdM AqHDeNH7d3897ciwtrqcALtuIHAVObtICHsTp6zkj0e3CTcoCVTfy/oSrMhmpa3M 73RW/ga7TQdYBXloSzouoO7tYwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFLLsGJRS JM3KQsBaGhUkhH+zIyK+MB8GA1UdIwQYMBaAFMyFCdMftjqN3Wvy09hMe8Cyuj/A MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFQkZCMC9BM0FCNDNCMkY4 N0MxMUU5QUEyQ0YxNThDNEY5QUUwMi96SVVKMHgtMk9vM2RhX0xUMkV4N3dMSzZQ OEEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3pJVUoweC0yT28zZGFfTFQyRXg3d0xLNlA4QS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF QkZCMC9BM0FCNDNCMkY4N0MxMUU5QUEyQ0YxNThDNEY5QUUwMi96SVVKMHgtMk9v M2RhX0xUMkV4N3dMSzZQOEEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAYZ0yRmX300D4UJ7xHNSUWZ5CUoZTqXI7PHcGCNsfBkFXBO/eIi/ag 5QPuUt4sYGILkD01/C2NJSQLvzeht/xD8BWNOB9oFtDn6yf2you25SQVKZq+yt1B 35nQKzNwW/BZaLHwos06CZnLYQIVclaQhH3fR4plH4fpcVSKr1gfCNoWwkYMy8Lh 0YX5lcjx0WAlV7HrtB6NUWL1rab1uhh8xliNmEaMuwQ4DVQsixmn2DyNH97cHhuz 1PWiBDg/jKzZEQYHxk/xgkUkXNKiBKtz19Oy9egvllpHwnFXPYVqDIE8Ani2Tc2+ ikc9jUm3BztpOIUU6NA2vLw53VtnhOJU -----END CERTIFICATE-----Generated at Sun May 11 01:18:01 2025 by rpki-client