$ rpki-client -vvf rpki.apnic.net/member_repository/A913664F/1E0854AEDD7D11ED91A0464DC4F9AE02/2ZAsTpRyx61QgoEvp9B3FGq3y5w.mft File: 2ZAsTpRyx61QgoEvp9B3FGq3y5w.mft (raw, json) Hash identifier: Gzu8CfjtmoURAtEQ8f6K3guQ3Srrm23z5aqFkyokBKM= Subject key identifier: 24:25:A1:89:44:50:B8:18:12:87:5F:44:43:C3:89:13:F4:E7:02:0A Authority key identifier: D9:90:2C:4E:94:72:C7:AD:50:82:81:2F:A7:D0:77:14:6A:B7:CB:9C Certificate issuer: /CN=A913664F/serialNumber=D9902C4E9472C7AD5082812FA7D077146AB7CB9C Certificate serial: 017F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2ZAsTpRyx61QgoEvp9B3FGq3y5w.cer Subject info access: rsync://rpki.apnic.net/member_repository/A913664F/1E0854AEDD7D11ED91A0464DC4F9AE02/2ZAsTpRyx61QgoEvp9B3FGq3y5w.mft Manifest number: 0172 Signing time: Sat 29 Mar 2025 03:21:34 +0000 Manifest this update: Sat 29 Mar 2025 03:21:34 +0000 Manifest next update: Sat 05 Apr 2025 03:21:34 +0000 Files and hashes: 1: 2ZAsTpRyx61QgoEvp9B3FGq3y5w.crl (hash: 8xlambtn7QYuJKdZ2mbl1Yk6GKeW2ec7+Ed41CGp2fo=) 2: D2677928DD9811EDB2BBBA09C4F9AE02.roa (hash: YZA05NbdXQqTTqp/56l0zqv1K93ANRNuBAfVzKzDIX8=) 3: D1DDFDECDD9811EDB2BBBA09C4F9AE02.roa (hash: U4XP+q4YcB/6cfAS39rgiX5WO5DuizysSejbMFJaGr0=) 4: B1E75D08DD7F11ED815F9B4DC4F9AE02.roa (hash: U3r7gOdI0y7v58kpvuRKxIkw0qomkyuS/Mmv5pVcbGs=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A913664F/1E0854AEDD7D11ED91A0464DC4F9AE02/2ZAsTpRyx61QgoEvp9B3FGq3y5w.crl rsync://rpki.apnic.net/member_repository/A913664F/1E0854AEDD7D11ED91A0464DC4F9AE02/2ZAsTpRyx61QgoEvp9B3FGq3y5w.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2ZAsTpRyx61QgoEvp9B3FGq3y5w.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 05 Apr 2025 03:21:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 383 (0x17f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A913664F Validity Not Before: Mar 29 03:21:34 2025 GMT Not After : Apr 5 03:21:34 2025 GMT Subject: CN=67e7673e-eef8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d9:87:fa:cc:11:8f:ef:f9:2b:5b:4d:c1:20:38: e2:c4:ef:de:92:35:08:56:f6:b1:28:a2:bd:6f:11: 57:c4:60:ef:20:10:11:28:f3:a2:b8:75:fb:d6:ca: 0c:fe:06:fd:99:2b:66:9e:a5:9d:01:6c:68:0d:1c: d2:a3:f3:ef:94:92:e4:1b:f9:61:c0:cc:22:38:c8: 04:bc:7f:b0:8b:34:a5:b2:55:32:42:cf:fd:e9:46: c1:e6:3e:5d:0e:1a:f2:6d:89:c7:c6:b7:e1:94:ad: 44:11:11:4e:08:53:bf:cd:b5:b6:63:a6:e3:fb:b6: 77:6a:0d:b1:8b:01:c4:df:77:0b:3f:07:c7:ac:e2: d4:be:6d:b5:34:94:89:7a:82:48:9f:d9:f2:c5:aa: cf:3d:b6:14:47:c7:47:e4:3f:93:05:d1:87:a0:98: de:f7:40:f6:27:75:8f:45:da:8c:8d:4c:d4:34:bc: b5:d0:08:89:39:23:cc:cd:ed:f3:8d:a8:bd:9b:92: d7:e6:b0:d3:ba:26:99:bc:85:3c:52:3c:24:0e:bb: d8:62:03:b8:2b:58:fe:de:57:7a:26:49:95:d7:e0: 4e:34:52:28:48:9b:d1:d6:f3:01:e9:5c:48:5b:d0: a7:8f:c5:e1:e6:c5:da:b7:d2:1a:dc:f8:be:3b:51: f6:77 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 24:25:A1:89:44:50:B8:18:12:87:5F:44:43:C3:89:13:F4:E7:02:0A X509v3 Authority Key Identifier: keyid:D9:90:2C:4E:94:72:C7:AD:50:82:81:2F:A7:D0:77:14:6A:B7:CB:9C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A913664F/1E0854AEDD7D11ED91A0464DC4F9AE02/2ZAsTpRyx61QgoEvp9B3FGq3y5w.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2ZAsTpRyx61QgoEvp9B3FGq3y5w.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A913664F/1E0854AEDD7D11ED91A0464DC4F9AE02/2ZAsTpRyx61QgoEvp9B3FGq3y5w.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 72:66:d5:04:02:f9:e9:8b:3e:36:3d:57:f3:90:1e:6f:ff:42: 94:70:ba:d9:78:58:dd:90:5c:22:cc:cf:b6:11:5d:29:45:9e: db:ea:7f:f7:df:f0:59:d2:c7:16:23:a1:1c:20:34:43:7e:c4: c0:44:7e:a7:01:34:bd:5e:f6:00:63:79:67:6c:42:04:5c:4b: bb:06:3b:9e:e8:b3:b5:e3:a8:ae:e4:44:22:fb:78:d5:dc:b9: 1f:09:74:86:fd:ce:b5:56:2e:e9:32:1a:cf:f0:fc:7b:7a:1c: ad:e7:9f:64:e6:dd:53:e4:f6:e3:f6:f9:1e:7e:82:a1:e2:1e: cc:d8:43:fb:cf:bb:61:21:a9:5f:ff:d5:db:d9:b7:6d:54:b8: e5:62:46:a9:df:cd:7a:ee:5d:8a:70:0f:63:ed:04:46:21:fd: e9:e0:59:58:4d:3f:3e:18:f3:96:2d:41:44:1b:92:9a:62:a8: 52:1a:83:b8:d1:b0:73:a3:8a:df:89:12:10:70:52:12:a8:e3: 49:75:28:5a:7a:2f:17:c2:2d:5a:12:1c:15:1b:2c:26:c2:b1: a8:32:af:fc:40:de:b0:08:c1:0f:50:dc:e6:7a:75:52:76:1e: 32:9b:6a:af:10:e0:f5:4e:ab:d8:9c:e7:4d:9d:38:d0:0a:83: 5e:30:fc:44 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAX8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MzY2NEYxMTAvBgNVBAUTKEQ5OTAyQzRFOTQ3MkM3QUQ1MDgyODEyRkE3RDA3NzE0 NkFCN0NCOUMwHhcNMjUwMzI5MDMyMTM0WhcNMjUwNDA1MDMyMTM0WjAYMRYwFAYD VQQDEw02N2U3NjczZS1lZWY4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA2Yf6zBGP7/krW03BIDjixO/ekjUIVvaxKKK9bxFXxGDvIBARKPOiuHX71soM /gb9mStmnqWdAWxoDRzSo/PvlJLkG/lhwMwiOMgEvH+wizSlslUyQs/96UbB5j5d DhrybYnHxrfhlK1EERFOCFO/zbW2Y6bj+7Z3ag2xiwHE33cLPwfHrOLUvm21NJSJ eoJIn9nyxarPPbYUR8dH5D+TBdGHoJje90D2J3WPRdqMjUzUNLy10AiJOSPMze3z jai9m5LX5rDTuiaZvIU8UjwkDrvYYgO4K1j+3ld6JkmV1+BONFIoSJvR1vMB6VxI W9Cnj8Xh5sXat9Ia3Pi+O1H2dwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFCQloYlE ULgYEodfREPDiRP05wIKMB8GA1UdIwQYMBaAFNmQLE6UcsetUIKBL6fQdxRqt8uc MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzNjY0Ri8xRTA4NTRBRURE N0QxMUVEOTFBMDQ2NERDNEY5QUUwMi8yWkFzVHBSeXg2MVFnb0V2cDlCM0ZHcTN5 NXcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzJaQXNUcFJ5eDYxUWdvRXZwOUIzRkdxM3k1dy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz NjY0Ri8xRTA4NTRBRUREN0QxMUVEOTFBMDQ2NERDNEY5QUUwMi8yWkFzVHBSeXg2 MVFnb0V2cDlCM0ZHcTN5NXcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQByZtUEAvnpiz42PVfzkB5v/0KUcLrZeFjdkFwizM+2EV0pRZ7b6n/3 3/BZ0scWI6EcIDRDfsTARH6nATS9XvYAY3lnbEIEXEu7Bjue6LO146iu5EQi+3jV 3LkfCXSG/c61Vi7pMhrP8Px7ehyt559k5t1T5Pbj9vkefoKh4h7M2EP7z7thIalf /9Xb2bdtVLjlYkap38167l2KcA9j7QRGIf3p4FlYTT8+GPOWLUFEG5KaYqhSGoO4 0bBzo4rfiRIQcFISqONJdShaei8Xwi1aEhwVGywmwrGoMq/8QN6wCMEPUNzmenVS dh4ym2qvEOD1TqvYnOdNnTjQCoNeMPxE -----END CERTIFICATE-----Generated at Fri Apr 4 22:34:46 2025 by rpki-client