$ rpki-client -vvf rpki.apnic.net/member_repository/A911DD04/C3D5FDC6B9BB11EEAA32295EC4F9AE02/RzRkhHFZuxUvv-HbtaGwFUaCLxc.mft File: RzRkhHFZuxUvv-HbtaGwFUaCLxc.mft (raw, json) Hash identifier: zGeo2Nijs8okr1Cv9nzR9F/o/MRC13+8guQSsg3ylLE= Subject key identifier: 03:47:2A:D6:4C:76:91:59:57:9A:7C:F4:A6:BC:C3:52:00:65:91:EF Authority key identifier: 47:34:64:84:71:59:BB:15:2F:BF:E1:DB:B5:A1:B0:15:46:82:2F:17 Certificate issuer: /CN=A911DD04/serialNumber=473464847159BB152FBFE1DBB5A1B01546822F17 Certificate serial: ED Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/RzRkhHFZuxUvv-HbtaGwFUaCLxc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911DD04/C3D5FDC6B9BB11EEAA32295EC4F9AE02/RzRkhHFZuxUvv-HbtaGwFUaCLxc.mft Manifest number: E9 Signing time: Fri 11 Apr 2025 04:40:12 +0000 Manifest this update: Fri 11 Apr 2025 04:40:11 +0000 Manifest next update: Fri 18 Apr 2025 04:40:11 +0000 Files and hashes: 1: RzRkhHFZuxUvv-HbtaGwFUaCLxc.crl (hash: wJxx7g0k9KzrFw7bz+G0Gr/7JFQc2eQbrIfJUtWWdJk=) 2: 939790AAB9BD11EEA19BE74DC4F9AE02.roa (hash: usgNeDoGlzZoBDkMS+oNirA/1DpfH4pmT68FwmH4UH4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911DD04/C3D5FDC6B9BB11EEAA32295EC4F9AE02/RzRkhHFZuxUvv-HbtaGwFUaCLxc.crl rsync://rpki.apnic.net/member_repository/A911DD04/C3D5FDC6B9BB11EEAA32295EC4F9AE02/RzRkhHFZuxUvv-HbtaGwFUaCLxc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/RzRkhHFZuxUvv-HbtaGwFUaCLxc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 18 Apr 2025 04:40:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 237 (0xed) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911DD04, serialNumber=473464847159BB152FBFE1DBB5A1B01546822F17 Validity Not Before: Apr 11 04:40:11 2025 GMT Not After : Apr 18 04:40:11 2025 GMT Subject: CN=67f89d2b-38b8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ec:cb:a0:11:60:a7:f0:50:9a:d0:b6:a2:d0:02: c4:b5:db:47:90:47:bb:be:00:32:6d:e3:dc:0b:b2: 15:72:5f:36:c8:93:62:62:c1:f2:47:17:1a:53:b0: 8a:94:f6:66:be:92:bf:1a:ff:f1:a2:76:6f:46:e1: 8d:3e:44:9a:ce:f9:a4:a8:6b:5b:41:c4:e0:8b:4d: 45:1e:d4:7d:e2:71:f3:ff:28:21:29:31:e6:be:78: 1b:21:e6:21:dd:4e:1a:af:85:91:2a:a5:56:59:ad: 06:11:a1:a5:ca:8e:c9:42:93:a7:57:ab:72:3a:15: b7:b0:75:d0:74:40:24:e7:5d:97:f2:88:55:78:73: 7a:6f:54:da:4e:79:fb:1f:4b:dc:de:03:cd:4c:2b: 78:ad:ff:47:21:18:28:3d:25:14:e9:3e:8b:38:a6: 9d:2d:99:52:13:56:8d:8b:2f:36:0f:62:40:70:00: cc:9f:31:97:c1:d3:45:3d:a6:f4:d4:f5:c3:28:fa: 7e:75:8d:ee:1e:d5:ac:94:e0:24:e3:e7:87:68:dc: bb:ea:31:32:67:ff:9f:95:66:8c:1d:d7:7e:e3:79: b4:7f:7d:62:7c:ca:aa:4a:67:c4:07:68:46:fa:1e: 9c:b3:71:50:9c:92:89:35:06:01:bc:e7:17:4a:4e: 51:d7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 03:47:2A:D6:4C:76:91:59:57:9A:7C:F4:A6:BC:C3:52:00:65:91:EF X509v3 Authority Key Identifier: keyid:47:34:64:84:71:59:BB:15:2F:BF:E1:DB:B5:A1:B0:15:46:82:2F:17 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911DD04/C3D5FDC6B9BB11EEAA32295EC4F9AE02/RzRkhHFZuxUvv-HbtaGwFUaCLxc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/RzRkhHFZuxUvv-HbtaGwFUaCLxc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911DD04/C3D5FDC6B9BB11EEAA32295EC4F9AE02/RzRkhHFZuxUvv-HbtaGwFUaCLxc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption b7:ea:7e:d6:72:25:56:ec:aa:32:92:a1:b7:64:51:a7:19:d6: b0:b8:27:3b:8d:35:0c:ed:f4:5a:28:e4:a9:2a:0e:b2:ef:76: c9:05:ea:a4:8a:6e:71:83:b8:95:e9:e0:af:4a:5b:5c:b5:aa: 89:d0:24:42:53:25:a2:f0:20:9b:af:4f:1b:0d:c4:e5:02:8e: 5a:66:37:80:bc:5d:f6:8a:0d:58:c7:89:73:de:5f:91:7d:c0: 3d:3c:06:49:25:df:d8:c5:9c:c3:26:99:62:1e:dd:76:aa:0c: 17:85:54:56:fb:55:19:05:ea:93:cb:d5:5e:c9:65:5a:4e:2d: 61:41:02:c4:00:95:4f:96:23:f9:e5:15:59:5c:06:74:a4:90: 4b:40:8b:e2:5a:03:b9:96:f5:5e:39:02:ec:7f:a4:15:a8:a0: 30:07:31:c3:be:f2:95:58:7c:37:52:dc:bd:f0:30:d3:83:32: 0a:3c:bf:d5:ec:d4:2f:08:d3:35:19:82:b8:1f:d5:b1:75:25: fa:cc:c4:98:27:ca:b7:d1:48:56:87:7e:46:01:ee:32:e9:d0: c2:b8:88:6e:07:3c:b6:d0:e2:b6:c0:6b:f5:5e:3d:32:79:4a: d9:5c:01:8b:f6:89:7c:a4:d8:85:2b:bf:a5:c0:43:e2:32:94: 27:b7:30:71 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAO0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MUREMDQxMTAvBgNVBAUTKDQ3MzQ2NDg0NzE1OUJCMTUyRkJGRTFEQkI1QTFCMDE1 NDY4MjJGMTcwHhcNMjUwNDExMDQ0MDExWhcNMjUwNDE4MDQ0MDExWjAYMRYwFAYD VQQDEw02N2Y4OWQyYi0zOGI4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA7MugEWCn8FCa0Lai0ALEtdtHkEe7vgAybePcC7IVcl82yJNiYsHyRxcaU7CK lPZmvpK/Gv/xonZvRuGNPkSazvmkqGtbQcTgi01FHtR94nHz/yghKTHmvngbIeYh 3U4ar4WRKqVWWa0GEaGlyo7JQpOnV6tyOhW3sHXQdEAk512X8ohVeHN6b1TaTnn7 H0vc3gPNTCt4rf9HIRgoPSUU6T6LOKadLZlSE1aNiy82D2JAcADMnzGXwdNFPab0 1PXDKPp+dY3uHtWslOAk4+eHaNy76jEyZ/+flWaMHdd+43m0f31ifMqqSmfEB2hG +h6cs3FQnJKJNQYBvOcXSk5R1wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFANHKtZM dpFZV5p89Ka8w1IAZZHvMB8GA1UdIwQYMBaAFEc0ZIRxWbsVL7/h27WhsBVGgi8X MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExREQwNC9DM0Q1RkRDNkI5 QkIxMUVFQUEzMjI5NUVDNEY5QUUwMi9SelJraEhGWnV4VXZ2LUhidGFHd0ZVYUNM eGMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1J6UmtoSEZadXhVdnYtSGJ0YUd3RlVhQ0x4Yy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx REQwNC9DM0Q1RkRDNkI5QkIxMUVFQUEzMjI5NUVDNEY5QUUwMi9SelJraEhGWnV4 VXZ2LUhidGFHd0ZVYUNMeGMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQC36n7WciVW7KoykqG3ZFGnGdawuCc7jTUM7fRaKOSpKg6y73bJBeqk im5xg7iV6eCvSltctaqJ0CRCUyWi8CCbr08bDcTlAo5aZjeAvF32ig1Yx4lz3l+R fcA9PAZJJd/YxZzDJpliHt12qgwXhVRW+1UZBeqTy9VeyWVaTi1hQQLEAJVPliP5 5RVZXAZ0pJBLQIviWgO5lvVeOQLsf6QVqKAwBzHDvvKVWHw3Uty98DDTgzIKPL/V 7NQvCNM1GYK4H9WxdSX6zMSYJ8q30UhWh35GAe4y6dDCuIhuBzy20OK2wGv1Xj0y eUrZXAGL9ol8pNiFK7+lwEPiMpQntzBx -----END CERTIFICATE-----Generated at Sun Apr 13 06:28:09 2025 by rpki-client