$ rpki-client -vvf rpki.apnic.net/member_repository/A9152EF3/76A7D628B67D11E98E13C486C4F9AE02/Z0R0jWHExsd2QO9YRxTpeEPR6gI.mft File: Z0R0jWHExsd2QO9YRxTpeEPR6gI.mft (raw, json) Hash identifier: eT00U28qOhNcu7+l1KLsjDGm95ansMeJzVKE596djtU= Subject key identifier: A0:51:7F:A2:96:63:AC:89:68:4E:15:9E:DE:B4:71:E8:BD:F8:AA:5D Authority key identifier: 67:44:74:8D:61:C4:C6:C7:76:40:EF:58:47:14:E9:78:43:D1:EA:02 Certificate issuer: /CN=A9152EF3/serialNumber=6744748D61C4C6C77640EF584714E97843D1EA02 Certificate serial: 0DBB Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Z0R0jWHExsd2QO9YRxTpeEPR6gI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9152EF3/76A7D628B67D11E98E13C486C4F9AE02/Z0R0jWHExsd2QO9YRxTpeEPR6gI.mft Manifest number: 0DB5 Signing time: Fri 04 Apr 2025 18:01:52 +0000 Manifest this update: Fri 04 Apr 2025 18:01:52 +0000 Manifest next update: Fri 11 Apr 2025 18:01:52 +0000 Files and hashes: 1: Z0R0jWHExsd2QO9YRxTpeEPR6gI.crl (hash: rhZxQOVAZoMNjYbfPHN8S8CnDjTX3O3yMdHt5h4/gZ4=) 2: E4AAD78CEFFE11E991390613C4F9AE02.roa (hash: zpjIrqbuu6FZf6yZ6yRXtcMiYEO9icrMtSLSk/Oo5Eo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9152EF3/76A7D628B67D11E98E13C486C4F9AE02/Z0R0jWHExsd2QO9YRxTpeEPR6gI.crl rsync://rpki.apnic.net/member_repository/A9152EF3/76A7D628B67D11E98E13C486C4F9AE02/Z0R0jWHExsd2QO9YRxTpeEPR6gI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Z0R0jWHExsd2QO9YRxTpeEPR6gI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 11 Apr 2025 18:01:51 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3515 (0xdbb) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9152EF3 Validity Not Before: Apr 4 18:01:52 2025 GMT Not After : Apr 11 18:01:52 2025 GMT Subject: CN=67f01e90-a110 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:6e:fc:11:c2:00:4d:95:18:cf:14:f3:b5:35: f1:b7:c7:d5:5f:27:55:64:bc:bd:da:1f:f3:fd:75: eb:98:d5:ea:50:b4:dc:4a:35:a1:c8:6f:70:c4:85: e4:58:d0:f6:a6:16:99:d9:bc:77:b6:88:32:06:fd: 6b:1f:c5:5e:33:9e:4f:00:8b:21:70:db:bd:cb:9b: 56:bd:70:19:3f:92:fc:c0:c4:14:ed:a2:44:bd:77: dc:97:ad:21:74:3f:a9:54:c0:42:10:2e:6d:fb:37: 32:b0:e1:e9:97:7c:d4:3d:76:c2:98:26:2b:e9:fc: 7c:04:63:0b:90:63:23:ac:30:b6:2a:74:8a:ac:77: fc:f3:7d:2d:bb:77:50:fd:d7:2c:92:81:3d:08:58: ba:66:d6:d0:77:37:79:6d:c5:f0:b1:c1:08:f0:34: c0:ac:2a:45:a2:c2:a2:41:0e:35:06:08:ed:0c:04: 56:87:c9:13:f4:2b:e4:2c:25:d8:72:f5:0f:e2:21: 08:23:1c:58:5c:7e:a9:9e:71:08:40:14:1a:f0:52: 07:ed:bb:14:c8:79:45:8a:44:6e:9e:40:9c:29:41: a9:70:5e:40:8c:33:31:8e:fe:31:ef:59:cc:57:ba: eb:10:74:10:a2:77:66:d3:89:2d:a4:34:49:30:a7: 46:c1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A0:51:7F:A2:96:63:AC:89:68:4E:15:9E:DE:B4:71:E8:BD:F8:AA:5D X509v3 Authority Key Identifier: keyid:67:44:74:8D:61:C4:C6:C7:76:40:EF:58:47:14:E9:78:43:D1:EA:02 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9152EF3/76A7D628B67D11E98E13C486C4F9AE02/Z0R0jWHExsd2QO9YRxTpeEPR6gI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Z0R0jWHExsd2QO9YRxTpeEPR6gI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9152EF3/76A7D628B67D11E98E13C486C4F9AE02/Z0R0jWHExsd2QO9YRxTpeEPR6gI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 2f:cd:c9:8a:93:50:96:12:71:51:0a:5d:5b:90:1e:53:e9:09: 53:71:78:35:6e:b4:d4:68:be:de:0d:ee:32:2c:99:2e:49:2b: 7f:ba:22:1c:72:42:eb:aa:79:00:e3:44:4d:c5:a5:8f:28:ef: 90:ce:94:59:d5:0b:c1:4b:cd:48:2a:6c:39:7e:3b:a6:91:ac: 22:e9:33:0e:9b:76:10:05:4f:3a:b2:24:a2:cc:92:af:12:b9: bc:15:94:4b:42:e5:f7:b8:0c:3d:64:e4:0a:66:0e:f1:2a:86: df:3d:53:77:76:1d:15:9d:f3:67:a7:0e:09:8a:fe:27:03:91: 08:03:71:ed:e2:93:89:70:90:0b:9a:9f:b6:85:45:12:89:6a: f0:95:39:8f:94:ea:32:d4:e3:cf:71:d7:72:57:ae:fb:c6:3f: 2b:ee:a4:02:08:5e:a3:0e:ed:2d:fd:af:6a:48:63:e6:8b:67: c8:d2:9f:04:7e:a9:7b:a0:08:42:02:14:a2:7b:bf:4a:77:cf: ae:a0:97:8a:5c:d2:b3:99:e5:58:f8:85:2e:10:3e:60:0c:c1: a5:f8:a8:f7:58:2b:cf:9f:0f:66:db:7d:7e:cb:38:ca:79:10: 5a:ce:2d:54:11:2b:43:22:4e:a9:a1:0d:e4:be:ea:94:b3:26: ca:e2:fe:80 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDbswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTJFRjMxMTAvBgNVBAUTKDY3NDQ3NDhENjFDNEM2Qzc3NjQwRUY1ODQ3MTRFOTc4 NDNEMUVBMDIwHhcNMjUwNDA0MTgwMTUyWhcNMjUwNDExMTgwMTUyWjAYMRYwFAYD VQQDEw02N2YwMWU5MC1hMTEwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtW78EcIATZUYzxTztTXxt8fVXydVZLy92h/z/XXrmNXqULTcSjWhyG9wxIXk WND2phaZ2bx3togyBv1rH8VeM55PAIshcNu9y5tWvXAZP5L8wMQU7aJEvXfcl60h dD+pVMBCEC5t+zcysOHpl3zUPXbCmCYr6fx8BGMLkGMjrDC2KnSKrHf8830tu3dQ /dcskoE9CFi6ZtbQdzd5bcXwscEI8DTArCpFosKiQQ41BgjtDARWh8kT9CvkLCXY cvUP4iEIIxxYXH6pnnEIQBQa8FIH7bsUyHlFikRunkCcKUGpcF5AjDMxjv4x71nM V7rrEHQQondm04ktpDRJMKdGwQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFKBRf6KW Y6yJaE4Vnt60cei9+KpdMB8GA1UdIwQYMBaAFGdEdI1hxMbHdkDvWEcU6XhD0eoC MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1MkVGMy83NkE3RDYyOEI2 N0QxMUU5OEUxM0M0ODZDNEY5QUUwMi9aMFIwaldIRXhzZDJRTzlZUnhUcGVFUFI2 Z0kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1owUjBqV0hFeHNkMlFPOVlSeFRwZUVQUjZnSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 MkVGMy83NkE3RDYyOEI2N0QxMUU5OEUxM0M0ODZDNEY5QUUwMi9aMFIwaldIRXhz ZDJRTzlZUnhUcGVFUFI2Z0kubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAvzcmKk1CWEnFRCl1bkB5T6QlTcXg1brTUaL7eDe4yLJkuSSt/uiIc ckLrqnkA40RNxaWPKO+QzpRZ1QvBS81IKmw5fjumkawi6TMOm3YQBU86siSizJKv Erm8FZRLQuX3uAw9ZOQKZg7xKobfPVN3dh0VnfNnpw4Jiv4nA5EIA3Ht4pOJcJAL mp+2hUUSiWrwlTmPlOoy1OPPcddyV677xj8r7qQCCF6jDu0t/a9qSGPmi2fI0p8E fql7oAhCAhSie79Kd8+uoJeKXNKzmeVY+IUuED5gDMGl+Kj3WCvPnw9m231+yzjK eRBazi1UEStDIk6poQ3kvuqUsybK4v6A -----END CERTIFICATE-----Generated at Fri Apr 4 22:24:49 2025 by rpki-client