$ rpki-client -vvf rpki.apnic.net/member_repository/A9121836/F1DB1D44F4FB11ED938F9447C4F9AE02/ZrIU0Rx_lhqVxCVnA0KOk8unKYY.mft File: ZrIU0Rx_lhqVxCVnA0KOk8unKYY.mft (raw, json) Hash identifier: q+qmq6/nuWOoJwp47zaWdM36FHT+ruxirtRZFwvwp+o= Subject key identifier: 31:6B:E3:FE:BF:12:2C:86:2F:68:7D:34:FD:8B:DB:31:37:A8:F6:FD Authority key identifier: 66:B2:14:D1:1C:7F:96:1A:95:C4:25:67:03:42:8E:93:CB:A7:29:86 Certificate issuer: /CN=A9121836/serialNumber=66B214D11C7F961A95C4256703428E93CBA72986 Certificate serial: 018D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ZrIU0Rx_lhqVxCVnA0KOk8unKYY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9121836/F1DB1D44F4FB11ED938F9447C4F9AE02/ZrIU0Rx_lhqVxCVnA0KOk8unKYY.mft Manifest number: 0176 Signing time: Tue 15 Apr 2025 02:53:08 +0000 Manifest this update: Tue 15 Apr 2025 02:53:07 +0000 Manifest next update: Tue 22 Apr 2025 02:53:07 +0000 Files and hashes: 1: ZrIU0Rx_lhqVxCVnA0KOk8unKYY.crl (hash: 59jqeGKWZTIrfbFaEEWTeideHAXE685/BFspNeEoqRU=) 2: 6CE6E15ECEF311EEBCE7894DC4F9AE02.roa (hash: wIfWv8k11m2nJjvD9OZyvuvwJHOiHTaCFNkOK+76jZw=) 3: 63DC5AA6C67611EEB1126C70C4F9AE02.roa (hash: 8Baf5eHeRnNrGmSSDb+55e+ExZ2m5tnzgHIxbW3wB58=) 4: 02D36C86F50211ED8A235C4EC4F9AE02.roa (hash: /e5dKdsxY7i/S5RsJcqyRRAjOevxOXqA06J4ijaW9S8=) 5: 118AB342249511EFBF275B73C4F9AE02.roa (hash: ogfO9JhlXfzcpr7qtI24gUz6+dXsJEF9ymvQGfa18zY=) 6: 6ABFFBC6F53811EDBAE7E351C4F9AE02.roa (hash: 1V6DG3RruUSFEextYdbAlCAJvZIY1kI2fi13FOKdYSQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9121836/F1DB1D44F4FB11ED938F9447C4F9AE02/ZrIU0Rx_lhqVxCVnA0KOk8unKYY.crl rsync://rpki.apnic.net/member_repository/A9121836/F1DB1D44F4FB11ED938F9447C4F9AE02/ZrIU0Rx_lhqVxCVnA0KOk8unKYY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ZrIU0Rx_lhqVxCVnA0KOk8unKYY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 22 Apr 2025 02:53:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 397 (0x18d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9121836, serialNumber=66B214D11C7F961A95C4256703428E93CBA72986 Validity Not Before: Apr 15 02:53:07 2025 GMT Not After : Apr 22 02:53:07 2025 GMT Subject: CN=67fdca14-7a36 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a0:c7:07:e4:a0:6a:86:9f:44:e3:68:b4:a6:e6: 0f:49:44:de:2b:b8:26:06:30:4d:e0:a7:6a:26:3d: a5:6e:d0:f9:4c:b9:3d:ef:16:39:9a:5a:49:1e:90: 90:bd:c4:a6:d9:c4:f7:5c:7f:9b:e5:dd:74:dd:f0: 52:7e:42:a5:83:85:b1:6e:21:5e:a8:58:36:d1:d2: 9f:35:39:71:d1:91:8f:91:ff:1a:f8:67:66:0d:ce: 55:14:c0:2d:5f:15:39:f9:49:7d:48:84:0a:fa:64: 7f:d9:5a:4f:00:01:05:a2:3b:4a:e4:c5:d6:47:41: bf:16:b9:c3:64:81:86:9c:89:6c:40:33:4e:eb:16: c7:18:7d:f8:40:3b:49:f3:8d:de:9f:83:31:fd:8b: 4a:91:29:eb:52:9b:03:bc:bb:3f:0c:dd:07:34:b9: b9:d6:fb:30:d2:ba:76:31:6f:04:7b:ff:46:c5:95: 88:59:26:42:04:69:60:37:ac:f6:c3:6b:42:2c:0d: ca:b0:79:1a:4a:3a:3b:dd:13:40:a9:94:1a:ae:01: 7d:f8:e8:2f:8a:c0:37:e6:21:c0:ef:76:8e:c4:5b: 99:12:b1:6e:89:1e:80:4c:e6:89:d7:c3:ec:f8:ca: 15:2b:92:cc:63:7c:27:f5:b6:d4:50:94:13:05:c5: b7:49 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 31:6B:E3:FE:BF:12:2C:86:2F:68:7D:34:FD:8B:DB:31:37:A8:F6:FD X509v3 Authority Key Identifier: keyid:66:B2:14:D1:1C:7F:96:1A:95:C4:25:67:03:42:8E:93:CB:A7:29:86 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9121836/F1DB1D44F4FB11ED938F9447C4F9AE02/ZrIU0Rx_lhqVxCVnA0KOk8unKYY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ZrIU0Rx_lhqVxCVnA0KOk8unKYY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9121836/F1DB1D44F4FB11ED938F9447C4F9AE02/ZrIU0Rx_lhqVxCVnA0KOk8unKYY.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 76:d1:66:55:b1:52:6f:d0:3c:7b:a4:62:fa:4d:39:46:ee:80: e3:d1:57:48:67:47:0e:43:4b:88:68:ad:be:a1:1a:15:13:dd: 07:9e:b4:6d:4d:39:b8:e7:a9:31:b8:ef:d1:a7:9c:8a:c8:25: 23:25:64:b1:aa:0c:12:fe:69:a8:d9:69:bc:3c:08:99:f2:35: c5:18:2f:f9:4b:6a:18:5e:34:c6:e7:f3:24:e4:0c:ae:65:09: 2c:aa:5c:c8:18:d0:af:51:c6:72:2b:0b:f9:0a:75:d2:d6:66: 22:be:76:8c:2d:64:7d:21:8a:b9:d2:ba:5a:2d:55:10:ca:a6: 5d:f7:32:e5:e2:4b:bc:0d:42:40:d2:79:11:61:eb:d9:4c:a2: 61:b4:71:1e:4a:e9:30:2e:8a:5e:64:68:27:25:be:e6:1f:d2: 8d:7c:a5:0e:7d:ff:c3:bb:f5:c2:dd:3d:19:7d:33:2f:e0:66: 7b:fc:83:3c:2b:41:d5:27:7d:bb:13:88:a8:f5:4f:ca:f7:59: 2d:76:fa:f9:ea:81:6b:d3:e0:53:d8:38:8d:04:e4:a0:8c:94: e3:1d:b3:42:78:e3:22:8c:70:13:b1:09:60:71:c8:95:33:d5: 41:fb:35:f5:7a:83:b7:92:46:da:8d:a8:74:3f:21:02:ae:ee: a9:5d:25:d5 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAY0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MjE4MzYxMTAvBgNVBAUTKDY2QjIxNEQxMUM3Rjk2MUE5NUM0MjU2NzAzNDI4RTkz Q0JBNzI5ODYwHhcNMjUwNDE1MDI1MzA3WhcNMjUwNDIyMDI1MzA3WjAYMRYwFAYD VQQDEw02N2ZkY2ExNC03YTM2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAoMcH5KBqhp9E42i0puYPSUTeK7gmBjBN4KdqJj2lbtD5TLk97xY5mlpJHpCQ vcSm2cT3XH+b5d103fBSfkKlg4WxbiFeqFg20dKfNTlx0ZGPkf8a+GdmDc5VFMAt XxU5+Ul9SIQK+mR/2VpPAAEFojtK5MXWR0G/FrnDZIGGnIlsQDNO6xbHGH34QDtJ 843en4Mx/YtKkSnrUpsDvLs/DN0HNLm51vsw0rp2MW8Ee/9GxZWIWSZCBGlgN6z2 w2tCLA3KsHkaSjo73RNAqZQargF9+OgvisA35iHA73aOxFuZErFuiR6ATOaJ18Ps +MoVK5LMY3wn9bbUUJQTBcW3SQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFDFr4/6/ EiyGL2h9NP2L2zE3qPb9MB8GA1UdIwQYMBaAFGayFNEcf5YalcQlZwNCjpPLpymG MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyMTgzNi9GMURCMUQ0NEY0 RkIxMUVEOTM4Rjk0NDdDNEY5QUUwMi9acklVMFJ4X2xocVZ4Q1ZuQTBLT2s4dW5L WVkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1pySVUwUnhfbGhxVnhDVm5BMEtPazh1bktZWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy MTgzNi9GMURCMUQ0NEY0RkIxMUVEOTM4Rjk0NDdDNEY5QUUwMi9acklVMFJ4X2xo cVZ4Q1ZuQTBLT2s4dW5LWVkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB20WZVsVJv0Dx7pGL6TTlG7oDj0VdIZ0cOQ0uIaK2+oRoVE90HnrRt TTm456kxuO/Rp5yKyCUjJWSxqgwS/mmo2Wm8PAiZ8jXFGC/5S2oYXjTG5/Mk5Ayu ZQksqlzIGNCvUcZyKwv5CnXS1mYivnaMLWR9IYq50rpaLVUQyqZd9zLl4ku8DUJA 0nkRYevZTKJhtHEeSukwLopeZGgnJb7mH9KNfKUOff/Du/XC3T0ZfTMv4GZ7/IM8 K0HVJ327E4io9U/K91ktdvr56oFr0+BT2DiNBOSgjJTjHbNCeOMijHATsQlgcciV M9VB+zX1eoO3kkbajah0PyECru6pXSXV -----END CERTIFICATE-----Generated at Tue Apr 15 10:04:00 2025 by rpki-client