$ rpki-client -vvf rpki.apnic.net/member_repository/A914D249/76CE8456E02511ECB2FB0E27C4F9AE02/zQysDn6E4-geSHYXTiwhQIUJQmk.mft File: zQysDn6E4-geSHYXTiwhQIUJQmk.mft (raw, json) Hash identifier: YB38uUP6Cm8Ny/8+4KMmEu16Hr1FBHCLGsgeyNLnMfg= Subject key identifier: 22:14:2C:8F:36:EF:F0:C1:9F:92:18:C8:DB:BE:92:52:2D:EF:10:2B Authority key identifier: CD:0C:AC:0E:7E:84:E3:E8:1E:48:76:17:4E:2C:21:40:85:09:42:69 Certificate issuer: /CN=A914D249/serialNumber=CD0CAC0E7E84E3E81E4876174E2C214085094269 Certificate serial: 02ED Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/zQysDn6E4-geSHYXTiwhQIUJQmk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914D249/76CE8456E02511ECB2FB0E27C4F9AE02/zQysDn6E4-geSHYXTiwhQIUJQmk.mft Manifest number: 02E2 Signing time: Thu 03 Apr 2025 01:23:58 +0000 Manifest this update: Thu 03 Apr 2025 01:23:58 +0000 Manifest next update: Thu 10 Apr 2025 01:23:58 +0000 Files and hashes: 1: zQysDn6E4-geSHYXTiwhQIUJQmk.crl (hash: ULa2asBSNSDEjtA20x+esSyyOdFyQyGxHcT7NKgVA8I=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914D249/76CE8456E02511ECB2FB0E27C4F9AE02/zQysDn6E4-geSHYXTiwhQIUJQmk.crl rsync://rpki.apnic.net/member_repository/A914D249/76CE8456E02511ECB2FB0E27C4F9AE02/zQysDn6E4-geSHYXTiwhQIUJQmk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/zQysDn6E4-geSHYXTiwhQIUJQmk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 10 Apr 2025 01:23:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 749 (0x2ed) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914D249 Validity Not Before: Apr 3 01:23:58 2025 GMT Not After : Apr 10 01:23:58 2025 GMT Subject: CN=67ede32e-8efd Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c7:08:17:67:c2:b8:ed:0e:58:25:41:ae:49:e4: 50:6d:36:b3:9c:fc:37:db:29:0c:09:cc:18:cc:fa: f2:f6:9c:39:67:8f:d2:9d:62:a3:7a:8c:c5:77:af: cb:b3:9f:41:b5:c1:d5:14:04:47:48:cd:2e:84:c8: 45:76:ac:3c:74:61:24:37:b6:b1:e4:5a:40:e1:ad: 4a:aa:9d:a1:4b:03:8f:79:7d:5c:ff:01:d3:95:29: e2:6e:51:90:64:5a:a4:8c:a3:50:42:aa:35:a0:cd: 7d:d0:76:21:0d:45:98:5a:13:b3:2a:db:e6:08:ad: f2:39:d2:b6:65:d8:cd:34:fb:6d:1d:94:a5:bd:b1: 52:b8:6f:01:cb:49:a5:fe:bd:a0:75:c1:83:e7:7e: d2:3e:61:2d:70:a0:fd:e6:48:33:aa:ac:ed:57:fd: e4:09:99:21:a3:25:de:45:5c:9e:94:47:d0:ca:48: c5:71:ad:72:c2:63:8e:d3:dd:51:43:80:7e:cd:1f: ea:c0:1e:de:50:9e:42:7f:ee:f9:cf:8e:cf:8d:b5: a3:83:bd:22:cb:1f:ec:84:93:0e:71:ed:b5:29:a2: 9f:48:ad:f5:e0:8d:38:27:e8:3f:96:db:6a:5a:94: f0:b4:c3:d2:0b:35:bf:52:13:30:a1:9c:ed:7d:af: f4:f5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 22:14:2C:8F:36:EF:F0:C1:9F:92:18:C8:DB:BE:92:52:2D:EF:10:2B X509v3 Authority Key Identifier: keyid:CD:0C:AC:0E:7E:84:E3:E8:1E:48:76:17:4E:2C:21:40:85:09:42:69 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914D249/76CE8456E02511ECB2FB0E27C4F9AE02/zQysDn6E4-geSHYXTiwhQIUJQmk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/zQysDn6E4-geSHYXTiwhQIUJQmk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914D249/76CE8456E02511ECB2FB0E27C4F9AE02/zQysDn6E4-geSHYXTiwhQIUJQmk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 14:ce:38:93:14:f3:ac:25:c1:27:d1:99:73:ce:23:ef:1e:54: 7b:57:22:4a:da:ae:47:1f:37:5b:fe:35:e7:57:ed:c4:9a:c9: c2:f1:9c:ca:bc:bf:b1:48:e0:ad:9f:d7:51:60:87:93:4c:ce: 77:d0:27:b0:6e:f2:be:49:ee:12:4c:8d:8d:c1:95:d4:02:00: ae:6d:90:48:c5:10:38:9e:3c:68:72:83:31:5d:04:05:11:df: 87:6f:e9:8f:b0:01:ca:5a:ff:02:62:7a:65:8b:34:2a:31:43: 5d:7e:d2:ed:28:19:8f:7f:cb:c1:1e:8d:92:ed:df:bf:70:e2: 54:c5:4b:6d:e8:38:11:15:0e:cf:a4:33:ee:18:21:a5:44:6b: d4:19:96:ae:c5:04:c0:9c:7e:a1:e9:80:b5:3b:d1:9a:ad:7d: 0e:fa:8f:ba:f0:68:7c:1c:9e:8b:5f:8d:13:88:bb:f4:59:7d: e0:d6:78:62:73:ac:33:1b:d0:70:7f:18:fe:1a:2f:34:74:2c: 05:7c:5c:e8:3b:65:96:a2:72:93:43:b0:ea:ec:89:70:d2:a6: ad:f2:78:1d:87:01:3d:cd:87:a0:d0:6d:be:d9:7f:8c:40:41: e7:20:fe:ed:b8:6e:18:6e:63:5d:06:2c:5e:92:c2:00:28:c4: fe:2d:d1:0d -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAu0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NEQyNDkxMTAvBgNVBAUTKENEMENBQzBFN0U4NEUzRTgxRTQ4NzYxNzRFMkMyMTQw ODUwOTQyNjkwHhcNMjUwNDAzMDEyMzU4WhcNMjUwNDEwMDEyMzU4WjAYMRYwFAYD VQQDEw02N2VkZTMyZS04ZWZkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxwgXZ8K47Q5YJUGuSeRQbTaznPw32ykMCcwYzPry9pw5Z4/SnWKjeozFd6/L s59BtcHVFARHSM0uhMhFdqw8dGEkN7ax5FpA4a1Kqp2hSwOPeX1c/wHTlSniblGQ ZFqkjKNQQqo1oM190HYhDUWYWhOzKtvmCK3yOdK2ZdjNNPttHZSlvbFSuG8By0ml /r2gdcGD537SPmEtcKD95kgzqqztV/3kCZkhoyXeRVyelEfQykjFca1ywmOO091R Q4B+zR/qwB7eUJ5Cf+75z47PjbWjg70iyx/shJMOce21KaKfSK314I04J+g/lttq WpTwtMPSCzW/UhMwoZztfa/09QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFCIULI82 7/DBn5IYyNu+klIt7xArMB8GA1UdIwQYMBaAFM0MrA5+hOPoHkh2F04sIUCFCUJp MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0RDI0OS83NkNFODQ1NkUw MjUxMUVDQjJGQjBFMjdDNEY5QUUwMi96UXlzRG42RTQtZ2VTSFlYVGl3aFFJVUpR bWsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3pReXNEbjZFNC1nZVNIWVhUaXdoUUlVSlFtay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 RDI0OS83NkNFODQ1NkUwMjUxMUVDQjJGQjBFMjdDNEY5QUUwMi96UXlzRG42RTQt Z2VTSFlYVGl3aFFJVUpRbWsubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAUzjiTFPOsJcEn0ZlzziPvHlR7VyJK2q5HHzdb/jXnV+3EmsnC8ZzK vL+xSOCtn9dRYIeTTM530CewbvK+Se4STI2NwZXUAgCubZBIxRA4njxocoMxXQQF Ed+Hb+mPsAHKWv8CYnplizQqMUNdftLtKBmPf8vBHo2S7d+/cOJUxUtt6DgRFQ7P pDPuGCGlRGvUGZauxQTAnH6h6YC1O9GarX0O+o+68Gh8HJ6LX40TiLv0WX3g1nhi c6wzG9Bwfxj+Gi80dCwFfFzoO2WWonKTQ7Dq7Ilw0qat8ngdhwE9zYeg0G2+2X+M QEHnIP7tuG4YbmNdBixeksIAKMT+LdEN -----END CERTIFICATE-----Generated at Fri Apr 4 22:32:07 2025 by rpki-client