$ rpki-client -vvf rpki.apnic.net/member_repository/A912BE4E/482DDD64CEAA11EBBA379A14C4F9AE02/zlLYd3CjJSvR9MkSbLXV0bfZ-_Q.mft File: zlLYd3CjJSvR9MkSbLXV0bfZ-_Q.mft (raw, json) Hash identifier: hFWWA4JHztJiVUQ+ku9Tq4XeaP3ocJh9TlIvozPuBLc= Subject key identifier: BA:2E:12:97:0C:50:D2:C5:DE:49:48:59:66:A5:D3:6E:ED:65:E9:8F Authority key identifier: CE:52:D8:77:70:A3:25:2B:D1:F4:C9:12:6C:B5:D5:D1:B7:D9:FB:F4 Certificate issuer: /CN=A912BE4E/serialNumber=CE52D87770A3252BD1F4C9126CB5D5D1B7D9FBF4 Certificate serial: 0582 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/zlLYd3CjJSvR9MkSbLXV0bfZ-_Q.cer Subject info access: rsync://rpki.apnic.net/member_repository/A912BE4E/482DDD64CEAA11EBBA379A14C4F9AE02/zlLYd3CjJSvR9MkSbLXV0bfZ-_Q.mft Manifest number: 0581 Signing time: Wed 02 Apr 2025 23:17:16 +0000 Manifest this update: Wed 02 Apr 2025 23:17:16 +0000 Manifest next update: Wed 09 Apr 2025 23:17:16 +0000 Files and hashes: 1: zlLYd3CjJSvR9MkSbLXV0bfZ-_Q.crl (hash: qLeAJK2kb8pCcR80YCGY286cjklG4BqGwh7U9v8ACb8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A912BE4E/482DDD64CEAA11EBBA379A14C4F9AE02/zlLYd3CjJSvR9MkSbLXV0bfZ-_Q.crl rsync://rpki.apnic.net/member_repository/A912BE4E/482DDD64CEAA11EBBA379A14C4F9AE02/zlLYd3CjJSvR9MkSbLXV0bfZ-_Q.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/zlLYd3CjJSvR9MkSbLXV0bfZ-_Q.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 09 Apr 2025 23:17:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1410 (0x582) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A912BE4E Validity Not Before: Apr 2 23:17:16 2025 GMT Not After : Apr 9 23:17:16 2025 GMT Subject: CN=67edc57c-a9d9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c9:ba:6c:e8:ab:bf:8d:00:69:a1:c9:08:02:2e: 8b:5d:a5:da:c4:b2:5a:ad:d6:17:27:19:e4:9e:65: b0:a7:18:d7:10:0d:ec:d6:89:cb:50:e3:e6:36:24: 07:6b:f5:a7:4a:ff:06:31:cf:17:16:9c:8d:96:18: 90:87:f1:db:cb:9d:64:d2:cb:b0:93:40:e5:69:53: 73:b5:bc:cc:03:b0:3b:3a:6f:63:6e:c8:51:41:5a: 7b:b9:e8:ad:01:b6:34:19:f6:92:d4:fc:d9:64:69: 7f:a3:23:5e:fb:1b:db:b8:7e:d5:2a:a1:3b:b6:34: a3:86:93:35:32:48:11:39:29:42:15:c4:17:ea:62: 43:c4:c2:c2:e8:08:9e:17:a1:92:db:11:23:97:b4: 58:74:61:5f:a6:f5:7b:ea:00:4d:19:7c:f5:5c:cd: 55:29:50:0d:d5:be:ca:d8:30:34:8c:e0:c4:5b:65: 79:fd:4f:1d:4e:e5:c8:0f:39:51:e9:b1:7b:c2:f4: 7e:55:50:d8:41:88:09:d3:46:31:08:90:f9:4d:7e: e8:e4:27:65:17:15:1d:54:61:fd:7b:f2:f1:c3:de: 1b:af:aa:40:3c:ff:32:d0:fe:40:c5:21:4c:e0:de: 52:15:3f:ea:95:66:74:24:3b:a6:6a:b5:fc:28:d3: 2b:4d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BA:2E:12:97:0C:50:D2:C5:DE:49:48:59:66:A5:D3:6E:ED:65:E9:8F X509v3 Authority Key Identifier: keyid:CE:52:D8:77:70:A3:25:2B:D1:F4:C9:12:6C:B5:D5:D1:B7:D9:FB:F4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A912BE4E/482DDD64CEAA11EBBA379A14C4F9AE02/zlLYd3CjJSvR9MkSbLXV0bfZ-_Q.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/zlLYd3CjJSvR9MkSbLXV0bfZ-_Q.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A912BE4E/482DDD64CEAA11EBBA379A14C4F9AE02/zlLYd3CjJSvR9MkSbLXV0bfZ-_Q.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption c2:1e:9f:e6:d5:76:0a:c2:d9:3d:39:ba:bb:44:91:50:05:aa: 7f:26:96:d9:28:21:09:69:31:d1:37:05:92:ca:e8:10:47:4e: ca:af:5c:d6:cf:84:a3:d2:c5:70:d7:48:cd:10:38:06:7c:95: b8:21:47:86:12:8a:cc:d5:1d:fd:70:e7:94:6b:74:4b:a8:1a: 0e:77:30:83:30:87:85:91:64:cf:a7:57:ac:19:4b:90:61:a9: b2:b2:3a:dd:a5:0f:b9:11:74:bb:40:e5:68:b1:f1:20:85:59: f5:8e:f1:77:03:5a:98:ba:8b:40:93:ec:1e:ca:39:9b:34:58: 10:81:03:17:e0:29:ba:62:91:ef:75:91:91:21:7d:ec:2e:86: c2:c1:ee:7d:db:89:bd:02:6c:db:e3:e0:f3:0e:d3:40:77:8f: c3:d5:02:c4:34:b5:17:26:44:7d:04:b8:5e:fd:b5:c6:bd:05: 09:82:7d:8a:4e:7e:a1:aa:b4:e4:45:52:fe:f4:e5:2d:19:00: 94:e8:e7:66:1e:36:ba:b6:70:0a:76:50:ca:5a:35:4d:c9:51: cd:d8:03:d2:e4:aa:f6:0c:f2:8a:a0:3f:ee:f7:d4:73:2f:6e: 51:36:de:d7:83:28:91:f8:f2:a8:68:52:bb:80:53:36:78:ad: d1:89:78:55 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBYIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MkJFNEUxMTAvBgNVBAUTKENFNTJEODc3NzBBMzI1MkJEMUY0QzkxMjZDQjVENUQx QjdEOUZCRjQwHhcNMjUwNDAyMjMxNzE2WhcNMjUwNDA5MjMxNzE2WjAYMRYwFAYD VQQDEw02N2VkYzU3Yy1hOWQ5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAybps6Ku/jQBpockIAi6LXaXaxLJardYXJxnknmWwpxjXEA3s1onLUOPmNiQH a/WnSv8GMc8XFpyNlhiQh/Hby51k0suwk0DlaVNztbzMA7A7Om9jbshRQVp7ueit AbY0GfaS1PzZZGl/oyNe+xvbuH7VKqE7tjSjhpM1MkgROSlCFcQX6mJDxMLC6Aie F6GS2xEjl7RYdGFfpvV76gBNGXz1XM1VKVAN1b7K2DA0jODEW2V5/U8dTuXIDzlR 6bF7wvR+VVDYQYgJ00YxCJD5TX7o5CdlFxUdVGH9e/Lxw94br6pAPP8y0P5AxSFM 4N5SFT/qlWZ0JDumarX8KNMrTQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFLouEpcM UNLF3klIWWal027tZemPMB8GA1UdIwQYMBaAFM5S2HdwoyUr0fTJEmy11dG32fv0 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyQkU0RS80ODJEREQ2NENF QUExMUVCQkEzNzlBMTRDNEY5QUUwMi96bExZZDNDakpTdlI5TWtTYkxYVjBiZlot X1EuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3psTFlkM0NqSlN2UjlNa1NiTFhWMGJmWi1fUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy QkU0RS80ODJEREQ2NENFQUExMUVCQkEzNzlBMTRDNEY5QUUwMi96bExZZDNDakpT dlI5TWtTYkxYVjBiZlotX1EubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQDCHp/m1XYKwtk9Obq7RJFQBap/JpbZKCEJaTHRNwWSyugQR07Kr1zW z4Sj0sVw10jNEDgGfJW4IUeGEorM1R39cOeUa3RLqBoOdzCDMIeFkWTPp1esGUuQ YamysjrdpQ+5EXS7QOVosfEghVn1jvF3A1qYuotAk+weyjmbNFgQgQMX4Cm6YpHv dZGRIX3sLobCwe5924m9Amzb4+DzDtNAd4/D1QLENLUXJkR9BLhe/bXGvQUJgn2K Tn6hqrTkRVL+9OUtGQCU6OdmHja6tnAKdlDKWjVNyVHN2APS5Kr2DPKKoD/u99Rz L25RNt7XgyiR+PKoaFK7gFM2eK3RiXhV -----END CERTIFICATE-----Generated at Fri Apr 4 21:55:46 2025 by rpki-client