$ rpki-client -vvf rpki.apnic.net/member_repository/A91540B9/D5C251C85B5311ED978E0577C4F9AE02/zOCDR5xGct-ZKLqoOPKrKAJt7_c.mft File: zOCDR5xGct-ZKLqoOPKrKAJt7_c.mft (raw, json) Hash identifier: RVrCNSUBWkl77mu+l+9J/t8GkxqBE4Z09NZmwK4/iC4= Subject key identifier: A6:02:E5:F8:EC:C9:79:C1:28:0A:B5:BB:D5:25:80:AA:E0:EB:F6:29 Authority key identifier: CC:E0:83:47:9C:46:72:DF:99:28:BA:A8:38:F2:AB:28:02:6D:EF:F7 Certificate issuer: /CN=A91540B9/serialNumber=CCE083479C4672DF9928BAA838F2AB28026DEFF7 Certificate serial: 01CC Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/zOCDR5xGct-ZKLqoOPKrKAJt7_c.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91540B9/D5C251C85B5311ED978E0577C4F9AE02/zOCDR5xGct-ZKLqoOPKrKAJt7_c.mft Manifest number: 01C8 Signing time: Thu 03 Apr 2025 02:28:42 +0000 Manifest this update: Thu 03 Apr 2025 02:28:41 +0000 Manifest next update: Thu 10 Apr 2025 02:28:41 +0000 Files and hashes: 1: zOCDR5xGct-ZKLqoOPKrKAJt7_c.crl (hash: TTXQJyjR5rmbJWXtyT0t9nhoVyGWEXU81ivyuPxKu8w=) 2: 0E4247485B5811ED91760C7DC4F9AE02.roa (hash: qbxShxJ7AuiZAM9HFVwuKcG851IE5SsittqszSxEAtM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91540B9/D5C251C85B5311ED978E0577C4F9AE02/zOCDR5xGct-ZKLqoOPKrKAJt7_c.crl rsync://rpki.apnic.net/member_repository/A91540B9/D5C251C85B5311ED978E0577C4F9AE02/zOCDR5xGct-ZKLqoOPKrKAJt7_c.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/zOCDR5xGct-ZKLqoOPKrKAJt7_c.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 10 Apr 2025 02:28:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 460 (0x1cc) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91540B9 Validity Not Before: Apr 3 02:28:41 2025 GMT Not After : Apr 10 02:28:41 2025 GMT Subject: CN=67edf25a-b402 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ae:0f:43:51:3f:38:5e:4a:a0:93:47:7f:ab:48: 4e:37:66:82:51:bd:69:00:14:fa:9f:64:88:c8:f5: ea:bc:ce:c7:6b:6b:27:5d:ed:75:cc:2a:f0:e6:d7: f9:18:f6:43:6b:15:68:69:aa:4f:93:4d:b4:64:1c: ff:3f:92:01:d9:20:ff:54:38:66:f6:8f:e5:88:b1: f3:dc:dc:c5:85:10:76:b7:11:58:a0:62:5f:c5:81: e5:70:f3:7a:35:90:27:65:67:18:44:01:90:d2:a8: b5:37:bc:2c:5a:4f:23:83:fd:70:cb:ec:c7:f3:73: 1b:98:ec:85:d0:76:86:0d:dc:e1:71:3e:1a:84:58: b4:5b:d5:dc:4e:f2:fc:8f:4b:4f:db:1d:d2:d9:75: ef:7c:45:e2:04:25:e9:46:f4:90:78:9a:97:69:7d: ad:a0:ae:3e:79:d7:68:03:cb:ee:0f:98:13:d4:fa: b5:eb:90:69:79:98:62:85:29:6e:25:b1:8c:82:59: 81:52:cb:87:2a:b3:1e:80:3d:8d:b0:b9:a1:02:b5: 5c:a7:14:b2:52:09:82:39:37:2d:89:0d:b4:d8:95: 23:38:34:68:8a:61:8d:05:9c:3d:c3:8b:57:5c:38: 84:f1:c8:88:4a:9f:11:70:d7:46:28:3c:71:65:08: f5:71 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A6:02:E5:F8:EC:C9:79:C1:28:0A:B5:BB:D5:25:80:AA:E0:EB:F6:29 X509v3 Authority Key Identifier: keyid:CC:E0:83:47:9C:46:72:DF:99:28:BA:A8:38:F2:AB:28:02:6D:EF:F7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91540B9/D5C251C85B5311ED978E0577C4F9AE02/zOCDR5xGct-ZKLqoOPKrKAJt7_c.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/zOCDR5xGct-ZKLqoOPKrKAJt7_c.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91540B9/D5C251C85B5311ED978E0577C4F9AE02/zOCDR5xGct-ZKLqoOPKrKAJt7_c.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 1e:53:4e:c7:ef:46:d7:98:38:f5:bd:29:91:4e:f6:28:92:b1: ce:9c:39:dd:45:3f:ea:3b:57:b5:d8:94:8a:86:88:b5:35:1b: 95:ba:bb:52:7a:18:fa:8d:af:84:af:d8:9a:c1:9f:1d:c5:b9: 39:c8:7a:92:70:ff:c5:77:c9:9f:6a:4f:dc:8a:40:c0:2e:4c: fd:75:3e:08:c7:0e:52:d6:a0:f7:d3:c4:99:ea:93:16:d8:88: 99:53:16:8d:52:c9:74:55:87:d4:4a:3f:06:43:29:e2:c9:b7: 10:43:74:55:46:80:aa:00:b8:6e:aa:1a:41:79:29:ed:7e:f6: ba:05:55:96:66:a4:15:8b:76:40:c2:a8:e2:2e:2f:68:1f:1e: 18:e9:e4:3d:d3:cd:44:f3:e6:5e:c1:bd:28:be:e3:6f:19:98: 6f:a0:83:97:52:a3:5c:05:e5:c7:c5:69:39:8e:c8:77:2e:fc: 42:fb:1c:25:ca:d6:c4:9d:88:7e:2b:45:f2:15:23:09:70:7c: aa:8d:31:76:49:2a:22:8f:86:b3:ed:22:d7:4f:6f:f6:12:4b: 95:b9:11:0a:21:98:38:b2:b9:96:8d:97:3d:fb:75:8f:89:b1: fa:81:43:33:56:cb:58:d4:b3:51:ee:32:0c:88:74:6d:6c:6d: 62:f4:bf:20 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAcwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTQwQjkxMTAvBgNVBAUTKENDRTA4MzQ3OUM0NjcyREY5OTI4QkFBODM4RjJBQjI4 MDI2REVGRjcwHhcNMjUwNDAzMDIyODQxWhcNMjUwNDEwMDIyODQxWjAYMRYwFAYD VQQDEw02N2VkZjI1YS1iNDAyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArg9DUT84Xkqgk0d/q0hON2aCUb1pABT6n2SIyPXqvM7Ha2snXe11zCrw5tf5 GPZDaxVoaapPk020ZBz/P5IB2SD/VDhm9o/liLHz3NzFhRB2txFYoGJfxYHlcPN6 NZAnZWcYRAGQ0qi1N7wsWk8jg/1wy+zH83MbmOyF0HaGDdzhcT4ahFi0W9XcTvL8 j0tP2x3S2XXvfEXiBCXpRvSQeJqXaX2toK4+eddoA8vuD5gT1Pq165BpeZhihSlu JbGMglmBUsuHKrMegD2NsLmhArVcpxSyUgmCOTctiQ202JUjODRoimGNBZw9w4tX XDiE8ciISp8RcNdGKDxxZQj1cQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFKYC5fjs yXnBKAq1u9UlgKrg6/YpMB8GA1UdIwQYMBaAFMzgg0ecRnLfmSi6qDjyqygCbe/3 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1NDBCOS9ENUMyNTFDODVC NTMxMUVEOTc4RTA1NzdDNEY5QUUwMi96T0NEUjV4R2N0LVpLTHFvT1BLcktBSnQ3 X2MuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3pPQ0RSNXhHY3QtWktMcW9PUEtyS0FKdDdfYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 NDBCOS9ENUMyNTFDODVCNTMxMUVEOTc4RTA1NzdDNEY5QUUwMi96T0NEUjV4R2N0 LVpLTHFvT1BLcktBSnQ3X2MubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAeU07H70bXmDj1vSmRTvYokrHOnDndRT/qO1e12JSKhoi1NRuVurtS ehj6ja+Er9iawZ8dxbk5yHqScP/Fd8mfak/cikDALkz9dT4Ixw5S1qD308SZ6pMW 2IiZUxaNUsl0VYfUSj8GQyniybcQQ3RVRoCqALhuqhpBeSntfva6BVWWZqQVi3ZA wqjiLi9oHx4Y6eQ9081E8+Zewb0ovuNvGZhvoIOXUqNcBeXHxWk5jsh3LvxC+xwl ytbEnYh+K0XyFSMJcHyqjTF2SSoij4az7SLXT2/2EkuVuREKIZg4srmWjZc9+3WP ibH6gUMzVstY1LNR7jIMiHRtbG1i9L8g -----END CERTIFICATE-----Generated at Fri Apr 4 21:58:31 2025 by rpki-client