$ rpki-client -vvf rpki.apnic.net/member_repository/A91F7D74/378D9A0A692811EFAF711487C4F9AE02/09zhcUP5z134AE-MZZf7LIzMcEY.mft File: 09zhcUP5z134AE-MZZf7LIzMcEY.mft (raw, json) Hash identifier: BILedFPkNvtKV+4AHqveK192BLxsaDfX6d4TmtRnFWM= Subject key identifier: 3F:E2:7A:03:63:91:38:69:05:0E:B8:20:4C:40:B0:79:82:7F:98:2A Authority key identifier: D3:DC:E1:71:43:F9:CF:5D:F8:00:4F:8C:65:97:FB:2C:8C:CC:70:46 Certificate issuer: /CN=A91F7D74/serialNumber=D3DCE17143F9CF5DF8004F8C6597FB2C8CCC7046 Certificate serial: 8E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/09zhcUP5z134AE-MZZf7LIzMcEY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F7D74/378D9A0A692811EFAF711487C4F9AE02/09zhcUP5z134AE-MZZf7LIzMcEY.mft Manifest number: 8A Signing time: Thu 15 May 2025 05:53:22 +0000 Manifest this update: Thu 15 May 2025 05:53:22 +0000 Manifest next update: Thu 22 May 2025 05:53:22 +0000 Files and hashes: 1: 09zhcUP5z134AE-MZZf7LIzMcEY.crl (hash: qvDb0/MVfsUbypQBXxWLUhU3c0tF9BJ3xdPB3TPcRII=) 2: 6A3FA88A693C11EF8B032237C4F9AE02.roa (hash: xlsUk+nBjbtHnwZ4MERgcwqdT/rxsOcTBiheef/VMVI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F7D74/378D9A0A692811EFAF711487C4F9AE02/09zhcUP5z134AE-MZZf7LIzMcEY.crl rsync://rpki.apnic.net/member_repository/A91F7D74/378D9A0A692811EFAF711487C4F9AE02/09zhcUP5z134AE-MZZf7LIzMcEY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/09zhcUP5z134AE-MZZf7LIzMcEY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 22 May 2025 05:53:21 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 142 (0x8e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F7D74, serialNumber=D3DCE17143F9CF5DF8004F8C6597FB2C8CCC7046 Validity Not Before: May 15 05:53:22 2025 GMT Not After : May 22 05:53:22 2025 GMT Subject: CN=68258152-827f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f2:15:80:2e:74:0c:ea:f8:fc:9b:de:6d:6d:40: c4:fe:1a:e5:0b:dc:ac:bf:54:6c:68:b7:33:4b:df: 40:57:15:02:91:dc:bd:ea:44:9a:04:37:b9:33:de: d5:4b:39:90:79:f3:f1:d0:81:57:9f:68:eb:25:24: af:30:17:fb:82:89:fc:46:fa:55:0f:e4:25:1b:95: e1:a6:6b:eb:c2:25:13:42:1c:14:63:b1:82:03:e0: b5:48:8d:79:f5:78:30:5b:ca:10:46:a8:b6:4c:0f: 38:32:77:e7:6a:8c:83:c0:bc:1a:4e:c8:76:52:cc: 37:c4:45:e9:63:73:35:fb:ad:b0:f3:84:a7:20:be: 65:3f:4d:4a:34:2e:09:82:d8:ea:8f:2c:e5:85:6e: a4:07:a7:2d:7b:13:c6:7e:79:45:91:9d:64:36:eb: e0:f9:a3:90:12:00:0b:43:02:ff:cc:50:7f:17:51: e9:22:87:16:86:b7:ef:f7:a4:3e:be:0c:07:7a:b8: ec:75:b6:6a:5d:c3:a1:fe:c8:29:81:fe:88:38:8f: ee:6c:36:b0:22:5b:a2:be:d0:ba:57:6f:08:d4:4c: a3:fb:e3:3b:a0:bb:df:e8:0b:2a:6b:fc:6c:1f:13: ac:55:0b:87:8f:8d:4b:b3:31:ed:4b:57:02:85:d1: f9:a3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3F:E2:7A:03:63:91:38:69:05:0E:B8:20:4C:40:B0:79:82:7F:98:2A X509v3 Authority Key Identifier: keyid:D3:DC:E1:71:43:F9:CF:5D:F8:00:4F:8C:65:97:FB:2C:8C:CC:70:46 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F7D74/378D9A0A692811EFAF711487C4F9AE02/09zhcUP5z134AE-MZZf7LIzMcEY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/09zhcUP5z134AE-MZZf7LIzMcEY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F7D74/378D9A0A692811EFAF711487C4F9AE02/09zhcUP5z134AE-MZZf7LIzMcEY.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption c7:41:a0:87:de:7b:36:1e:b4:33:31:2e:19:fd:26:62:46:bd: e2:35:ed:3b:c8:71:c1:20:21:f4:2d:23:e2:4b:30:05:f3:d0: 16:8f:14:1c:c1:af:32:32:04:5d:62:75:26:e9:ae:9d:78:09: 3b:61:6e:a7:a8:60:19:c7:76:b1:89:81:a0:58:cb:04:b4:6f: a8:94:54:e5:e2:71:af:c1:b6:65:79:45:ae:43:5a:54:12:4e: 3f:d1:f9:40:09:2d:7c:f0:84:41:dc:c3:4d:8d:07:b8:c3:ad: 22:a0:5f:4e:2a:79:59:05:08:18:50:be:8a:35:77:01:a8:6c: 28:cf:cd:07:b9:22:b3:60:db:ca:f2:4e:06:f9:4d:14:fb:65: df:35:4f:a0:f8:07:f1:60:8e:dc:fd:00:bc:f4:9c:79:ac:f6: ff:48:db:6a:dc:84:3b:a0:f5:47:c0:0c:eb:ce:45:18:fa:c2: 52:79:cc:ca:8f:a3:e1:7e:0c:ef:a3:f3:02:79:87:c2:3c:56: f7:47:1a:e8:f1:d7:bb:2e:57:6f:a2:61:26:59:66:70:d4:fa: 59:ea:e3:98:53:54:86:f6:d8:0d:be:77:28:28:f0:b6:6d:f1: 07:a7:00:7b:f5:24:59:00:ce:bc:7b:e8:8f:fd:9e:7c:8c:f5: 1a:a9:6f:72 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAI4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjdENzQxMTAvBgNVBAUTKEQzRENFMTcxNDNGOUNGNURGODAwNEY4QzY1OTdGQjJD OENDQzcwNDYwHhcNMjUwNTE1MDU1MzIyWhcNMjUwNTIyMDU1MzIyWjAYMRYwFAYD VQQDEw02ODI1ODE1Mi04MjdmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA8hWALnQM6vj8m95tbUDE/hrlC9ysv1RsaLczS99AVxUCkdy96kSaBDe5M97V SzmQefPx0IFXn2jrJSSvMBf7gon8RvpVD+QlG5XhpmvrwiUTQhwUY7GCA+C1SI15 9XgwW8oQRqi2TA84MnfnaoyDwLwaTsh2Usw3xEXpY3M1+62w84SnIL5lP01KNC4J gtjqjyzlhW6kB6ctexPGfnlFkZ1kNuvg+aOQEgALQwL/zFB/F1HpIocWhrfv96Q+ vgwHerjsdbZqXcOh/sgpgf6IOI/ubDawIluivtC6V28I1Eyj++M7oLvf6Asqa/xs HxOsVQuHj41LszHtS1cChdH5owIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFD/iegNj kThpBQ64IExAsHmCf5gqMB8GA1UdIwQYMBaAFNPc4XFD+c9d+ABPjGWX+yyMzHBG MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGN0Q3NC8zNzhEOUEwQTY5 MjgxMUVGQUY3MTE0ODdDNEY5QUUwMi8wOXpoY1VQNXoxMzRBRS1NWlpmN0xJek1j RVkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzA5emhjVVA1ejEzNEFFLU1aWmY3TEl6TWNFWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG N0Q3NC8zNzhEOUEwQTY5MjgxMUVGQUY3MTE0ODdDNEY5QUUwMi8wOXpoY1VQNXox MzRBRS1NWlpmN0xJek1jRVkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQDHQaCH3ns2HrQzMS4Z/SZiRr3iNe07yHHBICH0LSPiSzAF89AWjxQc wa8yMgRdYnUm6a6deAk7YW6nqGAZx3axiYGgWMsEtG+olFTl4nGvwbZleUWuQ1pU Ek4/0flACS188IRB3MNNjQe4w60ioF9OKnlZBQgYUL6KNXcBqGwoz80HuSKzYNvK 8k4G+U0U+2XfNU+g+AfxYI7c/QC89Jx5rPb/SNtq3IQ7oPVHwAzrzkUY+sJSeczK j6Phfgzvo/MCeYfCPFb3Rxro8de7LldvomEmWWZw1PpZ6uOYU1SG9tgNvncoKPC2 bfEHpwB79SRZAM68e+iP/Z58jPUaqW9y -----END CERTIFICATE-----Generated at Thu May 15 19:11:33 2025 by rpki-client