$ rpki-client -vvf rpki.apnic.net/member_repository/A911B412/C1EA033CD2EA11EBA206B178C4F9AE02/hz1ZWvVWnCAjn1PdgOsRd9gLCTQ.mft File: hz1ZWvVWnCAjn1PdgOsRd9gLCTQ.mft (raw, json) Hash identifier: BRGjTaIl2am19NSV4Xz3HK+X+qfi4f/54nqQ3hnUz08= Subject key identifier: 70:0E:1A:9F:A2:B1:2E:F7:38:4C:E1:05:8B:B2:B1:9E:39:80:85:F6 Authority key identifier: 87:3D:59:5A:F5:56:9C:20:23:9F:53:DD:80:EB:11:77:D8:0B:09:34 Certificate issuer: /CN=A911B412/serialNumber=873D595AF5569C20239F53DD80EB1177D80B0934 Certificate serial: 076E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hz1ZWvVWnCAjn1PdgOsRd9gLCTQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911B412/C1EA033CD2EA11EBA206B178C4F9AE02/hz1ZWvVWnCAjn1PdgOsRd9gLCTQ.mft Manifest number: 0652 Signing time: Wed 02 Apr 2025 23:18:34 +0000 Manifest this update: Wed 02 Apr 2025 23:18:34 +0000 Manifest next update: Wed 09 Apr 2025 23:18:34 +0000 Files and hashes: 1: hz1ZWvVWnCAjn1PdgOsRd9gLCTQ.crl (hash: vycnwaYnMEvag9Vqzq+g7rRbVXZCDjF/7+wRGnQmT9s=) 2: 5D5E547669CE11EF88C50C0AC4F9AE02.roa (hash: fc9auTKG+hIlrFarx8Wkv+pBuhw4Xp05RpT7At8qEfk=) 3: 5E7C46320F7E11F0A9F5EE5BC4F9AE02.roa (hash: enssFeX3d+tZG9pU+HLRCgc7CrK1bdormLMkCohag4U=) 4: D36E1CE02A3211EFA7554C59C4F9AE02.roa (hash: +qzxrrbDAbjm5oGRWL2M9bgOfHEjl4iskK+N/J81qak=) 5: 7145DE8C69CE11EF9C04450AC4F9AE02.roa (hash: hSCKbETyEcrfwdR62qLCMoskeNw2yhn+vArByqXZY/4=) 6: 2C3DCE420F7F11F0B174675DC4F9AE02.roa (hash: JtKKxCXridSwy6SJ7Mx9WW/156HamhanSTK24tMN9c0=) 7: 9CDF55D87D6A11EEA59E8C3FC4F9AE02.roa (hash: mDnMAOX1D7nrgDR/qLwtv3995W8fLU9iXorAjw/Tyy8=) 8: 918746BAE5E611EF9D35130AC4F9AE02.roa (hash: 5LHlWW/HIHhEuVs7lyfpyvCjCxzDLd5MFI+tQXgroXY=) 9: 5DFC320069CD11EFA0E6CC83C4F9AE02.roa (hash: jbI9nyIyGvuuwD7R5pJI5zo/f8yqDWKnyeAgYYtwurY=) 10: 7CFCD110ECCC11EE8ACC2F26C4F9AE02.roa (hash: /zYRYz7hw59PN1H99rZM8/IUYjLUkVgpuVofdR3Vzlc=) 11: 5F526B7C0F7E11F0A9F5EE5BC4F9AE02.roa (hash: 6xfZkGlEqFn4WIIEvs+odMsGdVpeFzlcQ5dx6lAOEoY=) 12: 32774EE811D111EF9084EB51C4F9AE02.roa (hash: xP6a2Fm0PA5GcUsRivI8UKiG6GftNlKvei6R3Wuqt8Q=) 13: 36681EC6684211EEA8658A78C4F9AE02.roa (hash: vHj4xyE4cEEC7fg7MS6uyrE7iNO4U7DE8jLdB+AYCuk=) 14: 4A4A33C0661B11EFA314D413C4F9AE02.roa (hash: VNTbmafGr2Ck68du6AOcxR3XdT37BiEBd7yF9e6N088=) 15: 7E08719E390311EF9DD1A882C4F9AE02.roa (hash: S4VX1CO0OF3+Ep6xnyvx/Uv1NHR9lS+F0nBxbNUE0l8=) 16: 83EC44C8134C11EF81B18276C4F9AE02.roa (hash: 4PiyophquWuYIG0+K5ceNOm7ogfnJHTsjtfCsP+bCrw=) 17: D55BADE4193911ED82BB7358C4F9AE02.roa (hash: wzpW0H2xl9IMiS2MU8LoO/Pkm6/TTCP+V9WTTRyG49s=) 18: 5CF393DE69CE11EF88C50C0AC4F9AE02.roa (hash: XkGSXYt+jU29PIwoBHA1xa5DHyPkfEAuz6UmpE4bA94=) 19: 9EB8A27A675C11EE81835581C4F9AE02.roa (hash: OEqTkDyc1rPh8C5CXLgkDLbM+SU7rHYFTB3EDRvvg8I=) 20: E02E2B08F00511EE8BFD5F6FC4F9AE02.roa (hash: D67HcCmPZVMRZ6kgxnoBquEsUTTWUcwS5Y2chXtyfhw=) 21: 2A3B0CECF89E11EFBEB09C18C4F9AE02.roa (hash: PkbRupW5bn+ucU9bJZqykLgwHdqi0bZNiDs5XjA8wiY=) 22: 48BA598A180611EF8A144756C4F9AE02.roa (hash: v5rCwgyqRx5u8KidQnrhF0Q+fjIuGy77dHFgS6yCLVM=) 23: 8838032AFA4411EFAE3BCB3CC4F9AE02.roa (hash: IXohKpWIV6jtitAn/jjybipa7O3ARO9SuLK3vLNyOUE=) 24: 2BB36B4E0F7F11F0B174675DC4F9AE02.roa (hash: B3UEiEYw2WKPOdrQO2wqkgon16D3Efz81MuIIEKCBB8=) 25: 738CDD3E2C8A11EF93B8A709C4F9AE02.roa (hash: KJYfbg4zrYKKjLKtGx8UXjsE8IdRp8mbqGUvHKp23l4=) 26: 8FC3656CCE6B11EF90AD9413C4F9AE02.roa (hash: gZtWAKAUMwr/x0EQVymUoJL6ChkEmm3s+W09M5NLn7E=) 27: 5DD8D93A69CE11EF88C50C0AC4F9AE02.roa (hash: fvcTGs4p3eVByjDFfAKi9SiOvj/dS8rUfQKHsXCqlL0=) 28: 3DC39FDAE82D11EF86C76B75C4F9AE02.roa (hash: CB42rPIllKFi14OnASR8kG8ELcV0c2sBojJ+pQ7hSCE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911B412/C1EA033CD2EA11EBA206B178C4F9AE02/hz1ZWvVWnCAjn1PdgOsRd9gLCTQ.crl rsync://rpki.apnic.net/member_repository/A911B412/C1EA033CD2EA11EBA206B178C4F9AE02/hz1ZWvVWnCAjn1PdgOsRd9gLCTQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hz1ZWvVWnCAjn1PdgOsRd9gLCTQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 09 Apr 2025 23:18:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1902 (0x76e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911B412 Validity Not Before: Apr 2 23:18:34 2025 GMT Not After : Apr 9 23:18:34 2025 GMT Subject: CN=67edc5ca-8c7e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cc:af:07:ad:82:7c:48:4c:fd:67:4f:aa:d0:af: 87:76:44:b1:7c:51:77:e1:81:93:71:bb:6a:5e:ee: 5b:d8:e3:8e:27:aa:c4:ad:eb:eb:98:8c:c6:98:23: ba:a3:b0:87:09:a5:75:3c:4f:73:22:c5:33:b6:23: 68:29:b9:67:5b:e5:d7:83:77:26:d7:69:5a:8e:52: 2f:a5:9d:24:b6:7d:3d:3d:5f:00:8c:8d:91:84:3f: 88:b6:5b:c9:44:b8:af:22:5d:09:0b:90:61:23:05: 96:7d:37:f1:b6:a8:56:46:3c:24:cd:fe:55:6b:f0: 3a:43:83:a9:31:90:dc:5a:62:3b:ef:57:e8:ac:ec: 9a:e7:dd:e8:10:d1:03:d7:d3:95:2d:04:51:21:0b: b7:fb:ec:1c:4e:f0:b4:e6:99:5f:0d:01:16:42:ef: 27:8d:71:d6:15:2a:16:3b:fd:2d:68:35:47:c6:86: cd:14:94:6b:bf:c3:b8:f3:7a:ff:ff:59:e0:35:32: db:a1:1a:14:4e:ca:22:13:1e:38:74:90:a1:57:6f: ac:df:46:34:6e:40:1e:ee:1e:8b:49:66:2a:07:e6: d8:e0:68:3a:15:61:84:26:85:c3:e4:33:5f:c2:78: e8:dc:8f:71:8a:61:fc:4b:8a:74:d0:3e:10:34:da: 85:6d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 70:0E:1A:9F:A2:B1:2E:F7:38:4C:E1:05:8B:B2:B1:9E:39:80:85:F6 X509v3 Authority Key Identifier: keyid:87:3D:59:5A:F5:56:9C:20:23:9F:53:DD:80:EB:11:77:D8:0B:09:34 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911B412/C1EA033CD2EA11EBA206B178C4F9AE02/hz1ZWvVWnCAjn1PdgOsRd9gLCTQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hz1ZWvVWnCAjn1PdgOsRd9gLCTQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911B412/C1EA033CD2EA11EBA206B178C4F9AE02/hz1ZWvVWnCAjn1PdgOsRd9gLCTQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 11:e1:17:4a:b7:9b:7a:43:b8:53:57:c2:e7:d8:92:e4:4f:16: 51:93:1e:87:02:0f:3b:ca:8e:56:51:93:8b:4c:92:07:a2:f3: e0:0f:9b:b1:e4:cd:a9:26:60:ed:b0:38:e7:0b:05:f4:d4:1f: d8:e2:61:42:b8:0e:5f:4c:9c:da:9a:8b:75:e7:47:23:16:11: 72:82:15:81:bf:f9:48:f3:ca:9e:73:02:67:f2:12:1a:01:61: ee:5a:ae:0e:f3:52:a1:87:71:ab:87:ac:1b:5f:ed:0b:a0:ae: 85:13:30:09:ea:7a:b0:b1:5f:a5:98:95:6b:b3:57:61:d3:f2: 45:48:94:98:c6:55:50:bc:5e:1e:dc:36:9e:d6:94:07:72:5c: 19:2a:eb:19:04:47:eb:95:99:24:c1:e6:15:81:ea:cf:e4:ef: 8e:69:a4:08:a9:27:fe:09:8f:a3:d6:cc:1e:e2:33:7e:d6:34: 24:a5:ce:44:fb:ae:45:dc:cb:3f:07:e7:34:7b:ff:09:1d:a5: 44:18:53:90:d7:cd:19:6e:27:26:6f:0a:62:53:86:b9:7f:29: 80:7e:b5:c3:66:c5:19:81:d8:3d:df:83:51:66:64:35:63:dc: 66:6f:be:ea:35:6a:ca:ca:74:be:37:a4:c9:9a:30:c6:9c:d4: 93:40:61:c1 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICB24wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MUI0MTIxMTAvBgNVBAUTKDg3M0Q1OTVBRjU1NjlDMjAyMzlGNTNERDgwRUIxMTc3 RDgwQjA5MzQwHhcNMjUwNDAyMjMxODM0WhcNMjUwNDA5MjMxODM0WjAYMRYwFAYD VQQDEw02N2VkYzVjYS04YzdlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzK8HrYJ8SEz9Z0+q0K+HdkSxfFF34YGTcbtqXu5b2OOOJ6rErevrmIzGmCO6 o7CHCaV1PE9zIsUztiNoKblnW+XXg3cm12lajlIvpZ0ktn09PV8AjI2RhD+ItlvJ RLivIl0JC5BhIwWWfTfxtqhWRjwkzf5Va/A6Q4OpMZDcWmI771forOya593oENED 19OVLQRRIQu3++wcTvC05plfDQEWQu8njXHWFSoWO/0taDVHxobNFJRrv8O483r/ /1ngNTLboRoUTsoiEx44dJChV2+s30Y0bkAe7h6LSWYqB+bY4Gg6FWGEJoXD5DNf wnjo3I9ximH8S4p00D4QNNqFbQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFHAOGp+i sS73OEzhBYuysZ45gIX2MB8GA1UdIwQYMBaAFIc9WVr1VpwgI59T3YDrEXfYCwk0 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExQjQxMi9DMUVBMDMzQ0Qy RUExMUVCQTIwNkIxNzhDNEY5QUUwMi9oejFaV3ZWV25DQWpuMVBkZ09zUmQ5Z0xD VFEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2h6MVpXdlZXbkNBam4xUGRnT3NSZDlnTENUUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx QjQxMi9DMUVBMDMzQ0QyRUExMUVCQTIwNkIxNzhDNEY5QUUwMi9oejFaV3ZWV25D QWpuMVBkZ09zUmQ5Z0xDVFEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAR4RdKt5t6Q7hTV8Ln2JLkTxZRkx6HAg87yo5WUZOLTJIHovPgD5ux 5M2pJmDtsDjnCwX01B/Y4mFCuA5fTJzamot150cjFhFyghWBv/lI88qecwJn8hIa AWHuWq4O81Khh3Grh6wbX+0LoK6FEzAJ6nqwsV+lmJVrs1dh0/JFSJSYxlVQvF4e 3Dae1pQHclwZKusZBEfrlZkkweYVgerP5O+OaaQIqSf+CY+j1swe4jN+1jQkpc5E +65F3Ms/B+c0e/8JHaVEGFOQ180ZbicmbwpiU4a5fymAfrXDZsUZgdg934NRZmQ1 Y9xmb77qNWrKynS+N6TJmjDGnNSTQGHB -----END CERTIFICATE-----Generated at Fri Apr 4 18:37:27 2025 by rpki-client