$ rpki-client -vvf rpki.apnic.net/member_repository/A914DD78/D4E9649C42F811EAB460E93FC4F9AE02/08ZsJqn9G558RVvds1FZaI0BQP4.mft File: 08ZsJqn9G558RVvds1FZaI0BQP4.mft (raw, json) Hash identifier: 00cV67VtmgWc9Dk7VHDoAT8CAat6hW+qzU1MKpc5ZVs= Subject key identifier: 5F:99:DF:EE:AD:A9:98:B2:4F:D9:82:1A:A7:6C:3B:6E:C4:0A:B8:20 Authority key identifier: D3:C6:6C:26:A9:FD:1B:9E:7C:45:5B:DD:B3:51:59:68:8D:01:40:FE Certificate issuer: /CN=A914DD78/serialNumber=D3C66C26A9FD1B9E7C455BDDB35159688D0140FE Certificate serial: 0B18 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/08ZsJqn9G558RVvds1FZaI0BQP4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914DD78/D4E9649C42F811EAB460E93FC4F9AE02/08ZsJqn9G558RVvds1FZaI0BQP4.mft Manifest number: 0AF8 Signing time: Fri 04 Apr 2025 19:29:51 +0000 Manifest this update: Fri 04 Apr 2025 19:29:50 +0000 Manifest next update: Fri 11 Apr 2025 19:29:50 +0000 Files and hashes: 1: 08ZsJqn9G558RVvds1FZaI0BQP4.crl (hash: Yvx1HoS2gBorJo4bBqXOIdkMkoB5l2oer1Ln8FiQovw=) 2: 2CAD3A66595911EA80344709C4F9AE02.roa (hash: SZfy2lzYI9darSjsTQEqARyS5q602BqtO3JRbHOsq3g=) 3: DE437646F8A911EB98242219C4F9AE02.roa (hash: ttCm1MPGwsxBxNTAWbkYeii7tkd0QoF3neo8cMILzsE=) 4: 9F0D6574BFF011EAA38D3B64C4F9AE02.roa (hash: SP/lqoxG8K385fFbiDzYapHGnCnV/BlNMKEYD/Qv8r8=) 5: A04B3184595A11EA8C79B30FC4F9AE02.roa (hash: Ge3sA9vn4z8DktPLvZxRP3By2hr88qUHgnXklAjEj/I=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914DD78/D4E9649C42F811EAB460E93FC4F9AE02/08ZsJqn9G558RVvds1FZaI0BQP4.crl rsync://rpki.apnic.net/member_repository/A914DD78/D4E9649C42F811EAB460E93FC4F9AE02/08ZsJqn9G558RVvds1FZaI0BQP4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/08ZsJqn9G558RVvds1FZaI0BQP4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 11 Apr 2025 19:29:50 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2840 (0xb18) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914DD78 Validity Not Before: Apr 4 19:29:50 2025 GMT Not After : Apr 11 19:29:50 2025 GMT Subject: CN=67f0332f-85e4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:86:80:c2:94:14:1f:e4:3e:78:90:f2:dc:14: 74:64:43:62:f4:88:ba:a0:b7:e8:1f:1e:db:96:a5: fb:d0:ce:cc:bb:0a:32:3d:8c:7c:bc:69:48:32:8e: 3a:f3:5a:28:15:f6:9c:bc:a7:7d:03:ca:30:5e:13: 45:47:b6:1d:a0:22:28:50:28:91:6b:45:99:ec:45: 60:48:63:53:5f:f9:03:74:3a:c5:6c:a7:9b:c7:82: 0d:cd:2c:c8:3c:6e:81:97:bf:06:af:35:67:01:89: 63:dd:b5:c2:14:a6:84:e2:9e:41:41:7d:ed:98:61: b9:d2:0a:f2:5c:a7:26:d8:5d:8d:07:55:26:73:3f: 3f:f3:95:25:bd:b0:e0:61:08:eb:f0:13:f2:6e:fe: 01:a9:d6:7f:d8:d2:b8:6b:b0:96:1b:51:d6:ca:55: 61:ad:1e:a7:00:66:f4:18:01:b3:2b:28:84:86:31: 5e:55:e5:c0:de:3e:8a:17:74:66:b6:c7:b2:69:42: f4:d3:56:3e:0d:c7:91:98:0c:a3:32:53:c2:67:0a: 46:94:7e:ea:50:21:aa:4a:ba:7d:4c:87:bf:87:50: 55:ac:98:44:53:8d:48:f0:18:7b:a1:73:65:72:96: 37:17:3d:19:2c:83:e2:b4:96:40:fc:9e:67:a9:0f: f8:d5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5F:99:DF:EE:AD:A9:98:B2:4F:D9:82:1A:A7:6C:3B:6E:C4:0A:B8:20 X509v3 Authority Key Identifier: keyid:D3:C6:6C:26:A9:FD:1B:9E:7C:45:5B:DD:B3:51:59:68:8D:01:40:FE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914DD78/D4E9649C42F811EAB460E93FC4F9AE02/08ZsJqn9G558RVvds1FZaI0BQP4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/08ZsJqn9G558RVvds1FZaI0BQP4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914DD78/D4E9649C42F811EAB460E93FC4F9AE02/08ZsJqn9G558RVvds1FZaI0BQP4.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 72:be:97:5e:aa:61:3f:ee:1f:1a:ab:90:e2:f8:2d:42:aa:03: 78:59:1a:bb:c1:f2:70:68:79:53:61:f9:dd:4f:65:1a:d8:38: 65:06:09:fb:11:ee:73:d3:cb:c7:1b:32:8c:69:68:79:15:fe: 2c:7f:94:f4:ff:dd:6f:ed:31:9f:ac:4d:8d:74:84:cc:c2:36: 42:16:9e:d5:aa:1b:ef:aa:b2:99:6a:8e:db:d3:1d:b5:84:90: d2:ec:82:b7:46:f4:0e:f8:2e:ec:4f:fb:77:8e:43:e1:59:94: 41:9f:d9:9c:45:2e:ac:91:e9:cf:a9:c2:15:fc:a7:83:1b:1d: 42:6a:6a:62:d9:87:e4:a4:5a:b0:75:7e:11:b8:84:03:81:96: 2c:75:f1:26:e4:7b:e3:0f:e2:5e:14:d6:61:37:fa:9e:d1:c3: 2d:d9:3c:16:8b:07:91:ba:07:d4:39:43:8e:9b:ec:cf:59:31: 92:f3:46:c1:0f:14:a4:4f:dd:64:a1:ce:c4:df:f7:7b:95:76: 88:74:17:9a:5e:86:69:5b:55:d0:51:dc:22:f6:56:5d:0b:a1: 01:2e:eb:74:42:9c:23:b2:00:af:b4:cd:e5:bd:25:27:57:7c: 44:5a:b5:84:54:1e:4e:85:a6:c5:3e:18:fe:89:ab:78:34:ec: 22:88:5f:33 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCxgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NERENzgxMTAvBgNVBAUTKEQzQzY2QzI2QTlGRDFCOUU3QzQ1NUJEREIzNTE1OTY4 OEQwMTQwRkUwHhcNMjUwNDA0MTkyOTUwWhcNMjUwNDExMTkyOTUwWjAYMRYwFAYD VQQDEw02N2YwMzMyZi04NWU0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwIaAwpQUH+Q+eJDy3BR0ZENi9Ii6oLfoHx7blqX70M7MuwoyPYx8vGlIMo46 81ooFfacvKd9A8owXhNFR7YdoCIoUCiRa0WZ7EVgSGNTX/kDdDrFbKebx4INzSzI PG6Bl78GrzVnAYlj3bXCFKaE4p5BQX3tmGG50gryXKcm2F2NB1Umcz8/85UlvbDg YQjr8BPybv4BqdZ/2NK4a7CWG1HWylVhrR6nAGb0GAGzKyiEhjFeVeXA3j6KF3Rm tseyaUL001Y+DceRmAyjMlPCZwpGlH7qUCGqSrp9TIe/h1BVrJhEU41I8Bh7oXNl cpY3Fz0ZLIPitJZA/J5nqQ/41QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFF+Z3+6t qZiyT9mCGqdsO27ECrggMB8GA1UdIwQYMBaAFNPGbCap/RuefEVb3bNRWWiNAUD+ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0REQ3OC9ENEU5NjQ5QzQy RjgxMUVBQjQ2MEU5M0ZDNEY5QUUwMi8wOFpzSnFuOUc1NThSVnZkczFGWmFJMEJR UDQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzA4WnNKcW45RzU1OFJWdmRzMUZaYUkwQlFQNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 REQ3OC9ENEU5NjQ5QzQyRjgxMUVBQjQ2MEU5M0ZDNEY5QUUwMi8wOFpzSnFuOUc1 NThSVnZkczFGWmFJMEJRUDQubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQByvpdeqmE/7h8aq5Di+C1CqgN4WRq7wfJwaHlTYfndT2Ua2DhlBgn7 Ee5z08vHGzKMaWh5Ff4sf5T0/91v7TGfrE2NdITMwjZCFp7VqhvvqrKZao7b0x21 hJDS7IK3RvQO+C7sT/t3jkPhWZRBn9mcRS6skenPqcIV/KeDGx1Campi2YfkpFqw dX4RuIQDgZYsdfEm5HvjD+JeFNZhN/qe0cMt2TwWiweRugfUOUOOm+zPWTGS80bB DxSkT91koc7E3/d7lXaIdBeaXoZpW1XQUdwi9lZdC6EBLut0QpwjsgCvtM3lvSUn V3xEWrWEVB5OhabFPhj+iat4NOwiiF8z -----END CERTIFICATE-----Generated at Fri Apr 4 22:13:44 2025 by rpki-client