$ rpki-client -vvf rpki.apnic.net/member_repository/A9149C62/84F46B68981511EFA4BD3D57C4F9AE02/z4BKbz2GoZcTpOiG1Ze03GRFaGo.mft File: z4BKbz2GoZcTpOiG1Ze03GRFaGo.mft (raw, json) Hash identifier: Mu0j3Sc3t/QJkCjx3Xl+X2D76aaVaP0wpASSXK2eZUU= Subject key identifier: 57:AB:01:CA:2E:A8:D1:F9:E7:73:E6:BE:BA:BB:3F:12:BD:A4:E7:E2 Authority key identifier: CF:80:4A:6F:3D:86:A1:97:13:A4:E8:86:D5:97:B4:DC:64:45:68:6A Certificate issuer: /CN=A9149C62/serialNumber=CF804A6F3D86A19713A4E886D597B4DC6445686A Certificate serial: 60 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/z4BKbz2GoZcTpOiG1Ze03GRFaGo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9149C62/84F46B68981511EFA4BD3D57C4F9AE02/z4BKbz2GoZcTpOiG1Ze03GRFaGo.mft Manifest number: 5D Signing time: Thu 17 Apr 2025 05:58:49 +0000 Manifest this update: Thu 17 Apr 2025 05:58:49 +0000 Manifest next update: Thu 24 Apr 2025 05:58:48 +0000 Files and hashes: 1: z4BKbz2GoZcTpOiG1Ze03GRFaGo.crl (hash: UtQu2kBmnQ+ASjAv0l9K0qQe2MTYnxvTYk7NgXOzw54=) 2: 088C9298981611EFBE510B59C4F9AE02.roa (hash: MvPd2YQI9MOUSpjmUY5DT+pZT/6vsajAX/zCT/ZVYiM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9149C62/84F46B68981511EFA4BD3D57C4F9AE02/z4BKbz2GoZcTpOiG1Ze03GRFaGo.crl rsync://rpki.apnic.net/member_repository/A9149C62/84F46B68981511EFA4BD3D57C4F9AE02/z4BKbz2GoZcTpOiG1Ze03GRFaGo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/z4BKbz2GoZcTpOiG1Ze03GRFaGo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 24 Apr 2025 05:58:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 96 (0x60) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9149C62, serialNumber=CF804A6F3D86A19713A4E886D597B4DC6445686A Validity Not Before: Apr 17 05:58:49 2025 GMT Not After : Apr 24 05:58:48 2025 GMT Subject: CN=68009899-8b6b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a2:7a:6e:00:4b:6e:19:b5:25:a0:3d:87:28:7e: ca:8d:46:5b:68:21:ed:88:68:67:ad:51:aa:c2:de: 1c:6c:46:a8:3e:c1:8b:ef:1f:5c:b5:43:31:14:57: 46:f1:98:d5:d5:c4:14:6b:51:15:94:28:d8:fe:c4: fc:e8:91:dd:b5:ed:02:66:7a:29:a6:69:71:aa:27: 2f:fc:c7:80:ad:45:92:30:69:fb:68:b6:15:ff:e5: b7:a1:04:b8:91:b5:05:73:25:1b:22:0c:77:bc:19: 2a:2a:12:3f:17:af:1e:67:1a:1c:84:dd:e4:b8:c8: 24:e0:89:56:63:98:06:da:98:7d:04:0b:48:88:d3: 17:01:27:58:d7:4c:14:d9:db:b2:d5:2f:9e:7b:f6: 25:a4:26:9a:10:e9:18:25:91:8e:a9:cb:e2:41:a7: ba:84:f0:46:4f:e4:33:f7:ad:4f:c6:f1:38:f9:93: ef:73:36:6b:63:bf:94:8a:7d:91:08:1d:5a:6d:eb: 91:b6:c0:f3:cb:95:da:56:9b:cc:42:11:ed:f3:85: 85:c0:9f:d6:50:84:95:c8:ef:60:67:4b:da:0a:6c: 8c:d7:c1:ae:26:0d:fc:30:2f:e7:92:38:9c:e9:4a: 30:67:f4:56:9a:21:f9:07:56:ca:83:c1:89:11:e0: c3:dd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 57:AB:01:CA:2E:A8:D1:F9:E7:73:E6:BE:BA:BB:3F:12:BD:A4:E7:E2 X509v3 Authority Key Identifier: keyid:CF:80:4A:6F:3D:86:A1:97:13:A4:E8:86:D5:97:B4:DC:64:45:68:6A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9149C62/84F46B68981511EFA4BD3D57C4F9AE02/z4BKbz2GoZcTpOiG1Ze03GRFaGo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/z4BKbz2GoZcTpOiG1Ze03GRFaGo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9149C62/84F46B68981511EFA4BD3D57C4F9AE02/z4BKbz2GoZcTpOiG1Ze03GRFaGo.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption c1:26:47:af:8c:77:fb:4a:a4:91:ba:35:ff:b2:dd:50:72:75: 66:81:20:af:bf:40:ac:c2:e0:ba:78:2b:99:8a:1d:9b:3b:54: f1:de:fe:6f:6a:06:a1:56:1c:71:dc:30:07:d1:2d:ef:c1:d9: 3f:47:87:2b:00:36:4f:73:b3:12:dd:53:e0:8d:e0:f2:b8:a7: 51:54:fe:b4:4d:94:db:b0:e9:be:d8:2c:b1:8b:45:cc:1c:9e: 9d:68:bf:c3:36:c2:0d:a8:f6:67:59:0c:14:a0:43:62:c3:4f: 8e:22:d4:f6:ee:78:01:4b:c4:af:9f:4c:ef:06:19:5b:1b:f1: c9:8b:b1:56:56:66:ff:54:1d:18:03:1c:a4:b6:f4:54:be:f8: c7:b6:b9:78:6c:7a:9d:9a:da:ca:dd:5a:68:17:cb:39:12:88: 97:9d:bf:de:9b:8e:78:f0:50:69:46:cd:8d:3d:e6:da:fc:ce: 41:29:7f:4f:e0:89:dc:b2:a7:3a:de:8f:98:db:68:57:2f:0c: 9e:8e:ba:23:34:a5:78:ce:96:78:32:85:bd:68:5e:0d:6d:6d: b3:29:25:44:95:f3:16:58:d9:ea:32:b6:99:55:6e:f0:7a:c9: 83:ce:6a:e5:df:34:56:60:f5:e7:64:9f:84:4d:fe:f0:40:17: bd:95:c3:75 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBYDANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE0 OUM2MjExMC8GA1UEBRMoQ0Y4MDRBNkYzRDg2QTE5NzEzQTRFODg2RDU5N0I0REM2 NDQ1Njg2QTAeFw0yNTA0MTcwNTU4NDlaFw0yNTA0MjQwNTU4NDhaMBgxFjAUBgNV BAMTDTY4MDA5ODk5LThiNmIwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCiem4AS24ZtSWgPYcofsqNRltoIe2IaGetUarC3hxsRqg+wYvvH1y1QzEUV0bx mNXVxBRrURWUKNj+xPzokd217QJmeimmaXGqJy/8x4CtRZIwaftothX/5behBLiR tQVzJRsiDHe8GSoqEj8Xrx5nGhyE3eS4yCTgiVZjmAbamH0EC0iI0xcBJ1jXTBTZ 27LVL5579iWkJpoQ6RglkY6py+JBp7qE8EZP5DP3rU/G8Tj5k+9zNmtjv5SKfZEI HVpt65G2wPPLldpWm8xCEe3zhYXAn9ZQhJXI72BnS9oKbIzXwa4mDfwwL+eSOJzp SjBn9FaaIfkHVsqDwYkR4MPdAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUV6sByi6o 0fnnc+a+urs/Er2k5+IwHwYDVR0jBBgwFoAUz4BKbz2GoZcTpOiG1Ze03GRFaGow DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTQ5QzYyLzg0RjQ2QjY4OTgx NTExRUZBNEJEM0Q1N0M0RjlBRTAyL3o0QktiejJHb1pjVHBPaUcxWmUwM0dSRmFH by5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvejRCS2J6MkdvWmNUcE9pRzFaZTAzR1JGYUdvLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTQ5 QzYyLzg0RjQ2QjY4OTgxNTExRUZBNEJEM0Q1N0M0RjlBRTAyL3o0QktiejJHb1pj VHBPaUcxWmUwM0dSRmFHby5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAMEmR6+Md/tKpJG6Nf+y3VBydWaBIK+/QKzC4Lp4K5mKHZs7VPHe/m9q BqFWHHHcMAfRLe/B2T9HhysANk9zsxLdU+CN4PK4p1FU/rRNlNuw6b7YLLGLRcwc np1ov8M2wg2o9mdZDBSgQ2LDT44i1PbueAFLxK+fTO8GGVsb8cmLsVZWZv9UHRgD HKS29FS++Me2uXhsep2a2srdWmgXyzkSiJedv96bjnjwUGlGzY095tr8zkEpf0/g idyypzrej5jbaFcvDJ6OuiM0pXjOlngyhb1oXg1tbbMpJUSV8xZY2eoytplVbvB6 yYPOauXfNFZg9edkn4RN/vBAF72Vw3U= -----END CERTIFICATE-----Generated at Sat Apr 19 04:51:01 2025 by rpki-client