$ rpki-client -vvf rpki.apnic.net/member_repository/A9111A27/662518BE6E3411EA841D426EC4F9AE02/zPWB9MM8pEQeGAfjlsXv51-oLdA.mft File: zPWB9MM8pEQeGAfjlsXv51-oLdA.mft (raw, json) Hash identifier: zPzwSttxyMKtiItEAhhOC/GjwOHPWVnqTYzlqH3Y/yQ= Subject key identifier: A2:F5:B0:03:B4:1D:2E:AF:AC:82:FD:38:84:38:F7:13:DE:B1:B0:48 Authority key identifier: CC:F5:81:F4:C3:3C:A4:44:1E:18:07:E3:96:C5:EF:E7:5F:A8:2D:D0 Certificate issuer: /CN=A9111A27/serialNumber=CCF581F4C33CA4441E1807E396C5EFE75FA82DD0 Certificate serial: 0A18 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/zPWB9MM8pEQeGAfjlsXv51-oLdA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9111A27/662518BE6E3411EA841D426EC4F9AE02/zPWB9MM8pEQeGAfjlsXv51-oLdA.mft Manifest number: 0A0E Signing time: Fri 28 Mar 2025 20:04:06 +0000 Manifest this update: Fri 28 Mar 2025 20:04:05 +0000 Manifest next update: Fri 04 Apr 2025 20:04:05 +0000 Files and hashes: 1: zPWB9MM8pEQeGAfjlsXv51-oLdA.crl (hash: UVClmQI4L2wGyQS8Ytkrfgt/FcvUjk6SuVG+MoP6zAg=) 2: EECBCEBE6E3511EABDE26D73C4F9AE02.roa (hash: LPVTnB/0GHrJCLpXZVzzn+Fi+J75+p11hdRea2Hs9CM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9111A27/662518BE6E3411EA841D426EC4F9AE02/zPWB9MM8pEQeGAfjlsXv51-oLdA.crl rsync://rpki.apnic.net/member_repository/A9111A27/662518BE6E3411EA841D426EC4F9AE02/zPWB9MM8pEQeGAfjlsXv51-oLdA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/zPWB9MM8pEQeGAfjlsXv51-oLdA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 04 Apr 2025 20:04:02 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2584 (0xa18) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9111A27 Validity Not Before: Mar 28 20:04:05 2025 GMT Not After : Apr 4 20:04:05 2025 GMT Subject: CN=67e700b6-5656 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f1:b9:17:18:5b:e1:ed:21:db:31:41:5f:13:29: 80:93:80:e2:3d:b9:b4:71:0a:13:35:56:21:eb:43: 21:22:52:45:6b:fc:d5:3e:93:db:fe:7b:78:37:69: 71:6c:84:b8:6a:be:28:f4:bb:59:84:6a:60:d5:02: 30:21:79:1a:4a:83:4a:e7:d5:d5:5d:2d:ff:3e:81: 89:ef:47:2f:43:79:8a:16:b0:4e:20:ff:4f:bc:40: b2:e1:a1:37:e1:0c:0f:41:46:cc:ff:f5:47:62:14: 84:bc:29:49:44:81:b6:a5:fb:d7:3b:22:7f:1f:1f: d3:e6:d4:fe:16:75:01:7c:9e:b5:8d:10:a6:55:30: 58:68:16:ab:1f:91:12:71:de:bb:02:b7:3a:10:71: bd:6d:f0:e3:c5:73:8a:84:40:49:e3:4c:69:8a:c3: bb:0d:35:a9:22:40:f7:bf:02:54:e8:9e:c1:44:cc: d0:6b:95:a1:d1:5d:62:78:f8:99:75:48:79:2b:dc: 6f:40:fe:a5:49:32:17:13:0f:55:5f:ea:bf:d3:9b: c1:8a:55:a8:1c:1d:58:5d:20:4c:c4:05:40:81:d7: 5c:ef:fa:d9:db:d7:b2:0b:d8:b5:05:ef:39:12:42: ce:1c:10:c2:2b:a8:54:64:b2:41:38:16:29:f6:af: 26:7f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A2:F5:B0:03:B4:1D:2E:AF:AC:82:FD:38:84:38:F7:13:DE:B1:B0:48 X509v3 Authority Key Identifier: keyid:CC:F5:81:F4:C3:3C:A4:44:1E:18:07:E3:96:C5:EF:E7:5F:A8:2D:D0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9111A27/662518BE6E3411EA841D426EC4F9AE02/zPWB9MM8pEQeGAfjlsXv51-oLdA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/zPWB9MM8pEQeGAfjlsXv51-oLdA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9111A27/662518BE6E3411EA841D426EC4F9AE02/zPWB9MM8pEQeGAfjlsXv51-oLdA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 37:90:29:39:b2:75:a3:3b:1d:7a:10:ec:10:70:03:e9:d9:58: 78:a0:aa:46:5e:09:3c:19:08:e4:0d:85:56:a5:1f:9b:ba:96: fc:5f:f2:73:9a:7e:e0:57:bf:90:70:cc:5b:ea:07:85:86:5e: 85:2a:ab:14:6f:8e:44:b4:98:2a:3f:3a:e7:5a:05:10:2f:7e: 8d:8c:fd:b2:ee:60:97:3f:10:47:42:af:cc:5a:bb:fa:b8:68: c2:39:78:42:07:a0:68:28:62:3a:9f:99:ce:12:81:72:18:eb: ec:17:99:ae:3a:88:a0:de:5a:ac:ff:c6:c5:64:9d:5e:1d:ea: 38:ee:15:90:aa:0c:68:36:fa:63:32:a2:90:ad:78:95:1f:35: 2b:80:eb:c1:ad:28:24:ad:e8:18:e1:16:9e:c9:7f:f3:18:43: 11:a1:41:a7:0d:95:a0:02:d7:bf:2a:36:3e:4d:35:85:d0:71: a3:4b:0d:71:e0:1e:fe:61:a8:50:8e:24:b4:16:27:90:82:d7: 38:9f:f6:53:e7:8a:58:f1:00:6d:88:f6:08:5c:28:d4:c6:83: 77:1e:2a:ab:dc:3b:ad:f3:6f:c8:00:76:48:31:0c:fa:2f:17: e0:e1:23:1c:3c:5c:07:c1:af:8a:c0:63:ad:d0:49:f4:2a:e2: 83:5c:0f:a0 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICChgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MTFBMjcxMTAvBgNVBAUTKENDRjU4MUY0QzMzQ0E0NDQxRTE4MDdFMzk2QzVFRkU3 NUZBODJERDAwHhcNMjUwMzI4MjAwNDA1WhcNMjUwNDA0MjAwNDA1WjAYMRYwFAYD VQQDEw02N2U3MDBiNi01NjU2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA8bkXGFvh7SHbMUFfEymAk4DiPbm0cQoTNVYh60MhIlJFa/zVPpPb/nt4N2lx bIS4ar4o9LtZhGpg1QIwIXkaSoNK59XVXS3/PoGJ70cvQ3mKFrBOIP9PvECy4aE3 4QwPQUbM//VHYhSEvClJRIG2pfvXOyJ/Hx/T5tT+FnUBfJ61jRCmVTBYaBarH5ES cd67Arc6EHG9bfDjxXOKhEBJ40xpisO7DTWpIkD3vwJU6J7BRMzQa5Wh0V1iePiZ dUh5K9xvQP6lSTIXEw9VX+q/05vBilWoHB1YXSBMxAVAgddc7/rZ29eyC9i1Be85 EkLOHBDCK6hUZLJBOBYp9q8mfwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFKL1sAO0 HS6vrIL9OIQ49xPesbBIMB8GA1UdIwQYMBaAFMz1gfTDPKREHhgH45bF7+dfqC3Q MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExMUEyNy82NjI1MThCRTZF MzQxMUVBODQxRDQyNkVDNEY5QUUwMi96UFdCOU1NOHBFUWVHQWZqbHNYdjUxLW9M ZEEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3pQV0I5TU04cEVRZUdBZmpsc1h2NTEtb0xkQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx MUEyNy82NjI1MThCRTZFMzQxMUVBODQxRDQyNkVDNEY5QUUwMi96UFdCOU1NOHBF UWVHQWZqbHNYdjUxLW9MZEEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA3kCk5snWjOx16EOwQcAPp2Vh4oKpGXgk8GQjkDYVWpR+bupb8X/Jz mn7gV7+QcMxb6geFhl6FKqsUb45EtJgqPzrnWgUQL36NjP2y7mCXPxBHQq/MWrv6 uGjCOXhCB6BoKGI6n5nOEoFyGOvsF5muOoig3lqs/8bFZJ1eHeo47hWQqgxoNvpj MqKQrXiVHzUrgOvBrSgkregY4RaeyX/zGEMRoUGnDZWgAte/KjY+TTWF0HGjSw1x 4B7+YahQjiS0FieQgtc4n/ZT54pY8QBtiPYIXCjUxoN3Hiqr3Dut82/IAHZIMQz6 Lxfg4SMcPFwHwa+KwGOt0En0KuKDXA+g -----END CERTIFICATE-----Generated at Fri Apr 4 18:29:02 2025 by rpki-client