$ rpki-client -vvf rpki.apnic.net/member_repository/A91ED8E0/EE2D5326B94711EA8A649E76C4F9AE02/zFQZyKeLzVOtFxxbdKQHHZU5UEk.mft File: zFQZyKeLzVOtFxxbdKQHHZU5UEk.mft (raw, json) Hash identifier: pD8HgO2/NwvwFzNfSVsniwkJ7P7mAWX+2nFx2x9FnDs= Subject key identifier: 07:FC:69:E2:45:D2:C1:4D:3E:AE:A4:61:68:04:0E:43:8A:5E:B8:44 Authority key identifier: CC:54:19:C8:A7:8B:CD:53:AD:17:1C:5B:74:A4:07:1D:95:39:50:49 Certificate issuer: /CN=A91ED8E0/serialNumber=CC5419C8A78BCD53AD171C5B74A4071D95395049 Certificate serial: 08BA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/zFQZyKeLzVOtFxxbdKQHHZU5UEk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91ED8E0/EE2D5326B94711EA8A649E76C4F9AE02/zFQZyKeLzVOtFxxbdKQHHZU5UEk.mft Manifest number: 08A8 Signing time: Wed 14 May 2025 20:39:01 +0000 Manifest this update: Wed 14 May 2025 20:39:00 +0000 Manifest next update: Wed 21 May 2025 20:39:00 +0000 Files and hashes: 1: zFQZyKeLzVOtFxxbdKQHHZU5UEk.crl (hash: raNjzSU5WFEC2yA1vaooNPqqO34lLuipWl86DDRG8cI=) 2: 2BEC62FA5DA011EF8E541175C4F9AE02.roa (hash: j0i0jOhZZOWP9s/TIb9RjR+IPetIqCuM8Ixx2VI3fzI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91ED8E0/EE2D5326B94711EA8A649E76C4F9AE02/zFQZyKeLzVOtFxxbdKQHHZU5UEk.crl rsync://rpki.apnic.net/member_repository/A91ED8E0/EE2D5326B94711EA8A649E76C4F9AE02/zFQZyKeLzVOtFxxbdKQHHZU5UEk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/zFQZyKeLzVOtFxxbdKQHHZU5UEk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 21 May 2025 20:39:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2234 (0x8ba) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91ED8E0, serialNumber=CC5419C8A78BCD53AD171C5B74A4071D95395049 Validity Not Before: May 14 20:39:00 2025 GMT Not After : May 21 20:39:00 2025 GMT Subject: CN=6824ff65-002e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d0:e4:34:5f:f3:d0:3d:eb:94:7b:ae:66:6c:2d: 43:79:27:d5:80:50:fc:fe:78:78:bb:cf:64:15:40: 87:da:5d:3e:ae:05:e0:b4:4a:ec:fa:77:b7:a5:87: b7:3d:d3:6c:84:3f:61:5c:73:0a:57:0d:fe:51:47: f1:df:96:63:aa:f6:50:fe:0d:3a:0a:64:b6:31:c4: a6:dd:52:d7:fd:0c:20:87:e9:ef:7c:e2:b7:fa:c5: 34:47:a1:96:7e:aa:02:ba:26:db:4e:35:6d:3a:49: c8:a9:55:d8:70:46:6b:dc:e0:74:9e:dc:bf:d5:97: c2:03:d9:5c:77:2c:20:73:9f:0a:26:82:af:5d:3d: b0:86:b4:5c:e1:18:ca:3a:81:0a:bf:bd:a3:87:84: b2:96:0b:d6:80:d9:d7:2f:8a:46:04:b5:47:f7:5a: 5e:ce:65:5f:27:73:df:d0:95:79:e8:4f:87:b5:3c: 20:31:8c:01:72:ec:31:fc:ee:47:e7:98:5a:07:62: ca:41:5d:8a:fa:fe:3a:52:22:3d:5f:ad:0c:ed:6e: b6:74:b1:91:53:b4:2e:a7:14:11:ea:19:11:e7:30: e0:cb:c7:de:66:e6:24:24:18:67:a7:75:46:dd:c5: 87:9f:3a:57:1b:51:72:f4:13:79:b9:62:0d:e3:50: e9:d3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 07:FC:69:E2:45:D2:C1:4D:3E:AE:A4:61:68:04:0E:43:8A:5E:B8:44 X509v3 Authority Key Identifier: keyid:CC:54:19:C8:A7:8B:CD:53:AD:17:1C:5B:74:A4:07:1D:95:39:50:49 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91ED8E0/EE2D5326B94711EA8A649E76C4F9AE02/zFQZyKeLzVOtFxxbdKQHHZU5UEk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/zFQZyKeLzVOtFxxbdKQHHZU5UEk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91ED8E0/EE2D5326B94711EA8A649E76C4F9AE02/zFQZyKeLzVOtFxxbdKQHHZU5UEk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a0:ce:19:03:41:73:ca:c9:5d:e8:ce:62:5f:5a:3b:fb:77:d1: ee:9d:9c:84:7a:96:30:d6:df:98:3b:b1:a6:e9:89:bf:ed:b0: 4b:40:59:76:08:85:c5:29:84:05:f2:85:7d:9d:7f:1a:8a:7f: 74:03:5d:db:b9:39:8e:3b:7c:0c:c7:59:82:1b:9b:92:f3:9b: 57:2a:65:b7:15:cb:6e:27:92:de:b5:e2:cd:7e:f3:ee:09:b0: ff:c7:49:d6:9a:88:c2:1a:aa:24:61:f5:c5:79:c2:d8:50:be: 45:8b:57:c8:bd:46:cb:b6:a1:a3:62:97:12:eb:8a:1f:14:96: c5:1b:19:58:92:c8:c3:bd:a5:d0:cc:c2:35:d0:2e:ca:e4:fc: b6:b4:a7:43:57:25:38:8f:4d:85:a3:a4:58:1d:06:b2:7e:c6: 70:76:77:48:02:8a:de:c1:a4:63:46:93:83:46:9c:29:56:b8: 7d:35:d0:6e:04:f7:5c:d2:95:d7:26:30:9e:80:2b:99:71:29: 29:7e:be:e9:05:bc:f9:ea:cf:4e:34:51:7b:a7:66:2c:39:80: 01:ae:de:5f:15:9a:62:f7:c7:36:50:45:de:6a:b0:06:9b:50: 39:77:9e:61:92:f3:c3:e3:8d:39:fd:de:3f:55:21:2c:61:44: 3a:bf:f5:1a -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCLowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RUQ4RTAxMTAvBgNVBAUTKENDNTQxOUM4QTc4QkNENTNBRDE3MUM1Qjc0QTQwNzFE OTUzOTUwNDkwHhcNMjUwNTE0MjAzOTAwWhcNMjUwNTIxMjAzOTAwWjAYMRYwFAYD VQQDEw02ODI0ZmY2NS0wMDJlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0OQ0X/PQPeuUe65mbC1DeSfVgFD8/nh4u89kFUCH2l0+rgXgtErs+ne3pYe3 PdNshD9hXHMKVw3+UUfx35ZjqvZQ/g06CmS2McSm3VLX/Qwgh+nvfOK3+sU0R6GW fqoCuibbTjVtOknIqVXYcEZr3OB0nty/1ZfCA9lcdywgc58KJoKvXT2whrRc4RjK OoEKv72jh4SylgvWgNnXL4pGBLVH91pezmVfJ3Pf0JV56E+HtTwgMYwBcuwx/O5H 55haB2LKQV2K+v46UiI9X60M7W62dLGRU7QupxQR6hkR5zDgy8feZuYkJBhnp3VG 3cWHnzpXG1Fy9BN5uWIN41Dp0wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFAf8aeJF 0sFNPq6kYWgEDkOKXrhEMB8GA1UdIwQYMBaAFMxUGcini81TrRccW3SkBx2VOVBJ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFRDhFMC9FRTJENTMyNkI5 NDcxMUVBOEE2NDlFNzZDNEY5QUUwMi96RlFaeUtlTHpWT3RGeHhiZEtRSEhaVTVV RWsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3pGUVp5S2VMelZPdEZ4eGJkS1FISFpVNVVFay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF RDhFMC9FRTJENTMyNkI5NDcxMUVBOEE2NDlFNzZDNEY5QUUwMi96RlFaeUtlTHpW T3RGeHhiZEtRSEhaVTVVRWsubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCgzhkDQXPKyV3ozmJfWjv7d9HunZyEepYw1t+YO7Gm6Ym/7bBLQFl2 CIXFKYQF8oV9nX8ain90A13buTmOO3wMx1mCG5uS85tXKmW3FctuJ5LeteLNfvPu CbD/x0nWmojCGqokYfXFecLYUL5Fi1fIvUbLtqGjYpcS64ofFJbFGxlYksjDvaXQ zMI10C7K5Py2tKdDVyU4j02Fo6RYHQayfsZwdndIAorewaRjRpODRpwpVrh9NdBu BPdc0pXXJjCegCuZcSkpfr7pBbz56s9ONFF7p2YsOYABrt5fFZpi98c2UEXearAG m1A5d55hkvPD4405/d4/VSEsYUQ6v/Ua -----END CERTIFICATE-----Generated at Fri May 16 07:02:50 2025 by rpki-client