$ rpki-client -vvf rpki.apnic.net/member_repository/A911E24A/635C0118A3E711EAA6A9D974C4F9AE02/zU-5EPPm9ZxZzlrMlDjt0I1W_Ig.mft File: zU-5EPPm9ZxZzlrMlDjt0I1W_Ig.mft (raw, json) Hash identifier: fa37l6MmNYbxbl6xEfxoG0itPdA2NHt6dAxv4k/Xkjc= Subject key identifier: 24:B9:11:E6:23:A5:EF:83:F8:E1:63:0B:AC:5F:7E:48:8E:8A:AB:4E Authority key identifier: CD:4F:B9:10:F3:E6:F5:9C:59:CE:5A:CC:94:38:ED:D0:8D:56:FC:88 Certificate issuer: /CN=A911E24A/serialNumber=CD4FB910F3E6F59C59CE5ACC9438EDD08D56FC88 Certificate serial: 08F9 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/zU-5EPPm9ZxZzlrMlDjt0I1W_Ig.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911E24A/635C0118A3E711EAA6A9D974C4F9AE02/zU-5EPPm9ZxZzlrMlDjt0I1W_Ig.mft Manifest number: 08F4 Signing time: Wed 02 Apr 2025 20:23:34 +0000 Manifest this update: Wed 02 Apr 2025 20:23:33 +0000 Manifest next update: Wed 09 Apr 2025 20:23:33 +0000 Files and hashes: 1: zU-5EPPm9ZxZzlrMlDjt0I1W_Ig.crl (hash: sZQUZJ8lAnYP4GG4E4lnYToH9eOdif2ByeVjPcBkQ3s=) 2: 7B68D8F2A3E811EAB397F675C4F9AE02.roa (hash: Nx148Hia3mtZBzFRIhXoxgU+sJRRy0O36TW1Esz7mxI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911E24A/635C0118A3E711EAA6A9D974C4F9AE02/zU-5EPPm9ZxZzlrMlDjt0I1W_Ig.crl rsync://rpki.apnic.net/member_repository/A911E24A/635C0118A3E711EAA6A9D974C4F9AE02/zU-5EPPm9ZxZzlrMlDjt0I1W_Ig.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/zU-5EPPm9ZxZzlrMlDjt0I1W_Ig.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 09 Apr 2025 20:23:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2297 (0x8f9) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911E24A Validity Not Before: Apr 2 20:23:33 2025 GMT Not After : Apr 9 20:23:33 2025 GMT Subject: CN=67ed9cc6-7d5b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dd:88:a7:2c:ae:5f:50:9a:a2:31:a7:8b:3a:13: 68:05:89:26:da:ca:2b:5a:f2:ec:80:8d:86:b4:46: 38:a9:40:8e:57:48:5c:f1:ad:c8:d8:49:cc:ec:7f: 67:2f:c7:c6:6a:d7:4e:44:0d:5f:f2:cf:1f:7e:50: 9a:ac:3b:42:29:43:ea:15:dd:4b:1a:56:48:c5:b7: e9:d1:03:03:5f:23:0a:22:c4:c9:6e:9f:83:53:74: a8:99:a5:59:9b:61:76:a0:0f:be:64:93:b7:9b:0f: 4b:d6:8c:fc:b2:5e:0d:58:c5:44:6d:59:cf:99:3c: 0b:78:ec:14:83:b3:58:7d:bb:c3:11:d7:47:e5:53: e7:5c:3c:d3:f0:7c:4a:63:88:d4:bf:21:39:74:89: d5:c4:bf:2d:e3:7e:d0:c1:81:14:44:9f:70:ca:aa: d2:31:f2:60:49:d4:f2:25:7d:78:e4:59:99:7b:fa: 6f:14:74:40:36:70:db:31:e3:a0:47:53:7f:38:cf: 10:3f:12:a9:2c:b0:42:77:e5:fc:73:76:3e:20:2c: 58:61:7d:76:41:25:11:5f:2f:af:0e:df:b4:21:a6: b2:79:78:85:b6:f3:3f:b6:38:f7:86:30:47:d6:b5: 53:e8:40:b3:41:3a:14:1b:f9:e9:d7:98:0d:ce:92: 0e:e5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 24:B9:11:E6:23:A5:EF:83:F8:E1:63:0B:AC:5F:7E:48:8E:8A:AB:4E X509v3 Authority Key Identifier: keyid:CD:4F:B9:10:F3:E6:F5:9C:59:CE:5A:CC:94:38:ED:D0:8D:56:FC:88 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911E24A/635C0118A3E711EAA6A9D974C4F9AE02/zU-5EPPm9ZxZzlrMlDjt0I1W_Ig.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/zU-5EPPm9ZxZzlrMlDjt0I1W_Ig.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911E24A/635C0118A3E711EAA6A9D974C4F9AE02/zU-5EPPm9ZxZzlrMlDjt0I1W_Ig.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption d7:85:10:05:48:cb:83:6b:23:fb:ae:1b:57:2d:1d:35:34:1c: ce:7d:99:48:e5:b3:7c:dd:0f:d8:3b:26:1f:8e:51:1c:41:0f: 10:d5:97:58:6a:c5:60:2d:6c:f7:c7:3c:0b:ec:0d:90:2b:e3: 94:9e:55:ec:7c:eb:75:c5:e4:16:89:64:55:4c:e0:03:06:7e: 3e:67:8e:d4:e7:f3:c2:59:08:09:54:fc:e0:55:35:c0:10:c0: 1b:b2:b3:3a:fb:32:01:08:e1:cf:3c:4e:fd:c6:87:ff:aa:73: 28:65:81:ff:3b:d7:c2:87:63:1f:9c:5b:86:a6:f2:ba:b4:75: 9d:26:94:52:f7:27:2c:da:78:48:f4:fd:59:1b:c7:10:71:c9: 71:c9:33:6f:f0:93:92:02:15:f0:45:b4:d8:cb:f6:49:c3:f7: 19:7e:46:32:c3:d3:16:ab:d7:18:31:18:29:00:2a:b8:cb:9b: 92:15:31:e0:f6:71:f2:99:8d:05:ff:7f:cd:67:52:33:8b:5f: ce:18:5d:37:1e:bf:c5:5e:ca:e2:a1:32:bb:39:bb:f6:07:45: 7c:08:10:92:3d:7d:89:7f:f1:b8:c0:cc:5f:ea:f4:61:6a:40: c4:81:2d:52:98:0a:5b:c2:2b:cc:26:7e:23:5c:88:8a:da:4d: 49:df:ad:f3 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCPkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MUUyNEExMTAvBgNVBAUTKENENEZCOTEwRjNFNkY1OUM1OUNFNUFDQzk0MzhFREQw OEQ1NkZDODgwHhcNMjUwNDAyMjAyMzMzWhcNMjUwNDA5MjAyMzMzWjAYMRYwFAYD VQQDEw02N2VkOWNjNi03ZDViMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA3YinLK5fUJqiMaeLOhNoBYkm2sorWvLsgI2GtEY4qUCOV0hc8a3I2EnM7H9n L8fGatdORA1f8s8fflCarDtCKUPqFd1LGlZIxbfp0QMDXyMKIsTJbp+DU3SomaVZ m2F2oA++ZJO3mw9L1oz8sl4NWMVEbVnPmTwLeOwUg7NYfbvDEddH5VPnXDzT8HxK Y4jUvyE5dInVxL8t437QwYEURJ9wyqrSMfJgSdTyJX145FmZe/pvFHRANnDbMeOg R1N/OM8QPxKpLLBCd+X8c3Y+ICxYYX12QSURXy+vDt+0IaayeXiFtvM/tjj3hjBH 1rVT6ECzQToUG/np15gNzpIO5QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFCS5EeYj pe+D+OFjC6xffkiOiqtOMB8GA1UdIwQYMBaAFM1PuRDz5vWcWc5azJQ47dCNVvyI MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExRTI0QS82MzVDMDExOEEz RTcxMUVBQTZBOUQ5NzRDNEY5QUUwMi96VS01RVBQbTlaeFp6bHJNbERqdDBJMVdf SWcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3pVLTVFUFBtOVp4Wnpsck1sRGp0MEkxV19JZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx RTI0QS82MzVDMDExOEEzRTcxMUVBQTZBOUQ5NzRDNEY5QUUwMi96VS01RVBQbTla eFp6bHJNbERqdDBJMVdfSWcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQDXhRAFSMuDayP7rhtXLR01NBzOfZlI5bN83Q/YOyYfjlEcQQ8Q1ZdY asVgLWz3xzwL7A2QK+OUnlXsfOt1xeQWiWRVTOADBn4+Z47U5/PCWQgJVPzgVTXA EMAbsrM6+zIBCOHPPE79xof/qnMoZYH/O9fCh2MfnFuGpvK6tHWdJpRS9ycs2nhI 9P1ZG8cQcclxyTNv8JOSAhXwRbTYy/ZJw/cZfkYyw9MWq9cYMRgpACq4y5uSFTHg 9nHymY0F/3/NZ1Izi1/OGF03Hr/FXsrioTK7Obv2B0V8CBCSPX2Jf/G4wMxf6vRh akDEgS1SmApbwivMJn4jXIiK2k1J363z -----END CERTIFICATE-----Generated at Fri Apr 4 18:28:57 2025 by rpki-client