$ rpki-client -vvf rpki.apnic.net/member_repository/A915A1D9/4B515576535F11EDAC762E34C4F9AE02/zHVip1iMEglcwjP9RsOxHXI91M8.mft File: zHVip1iMEglcwjP9RsOxHXI91M8.mft (raw, json) Hash identifier: ZziZtUGnskZrpsgie2pFlDEjnc+Ykq1YUhoWpRpUtYI= Subject key identifier: C6:E1:78:DC:1E:55:F7:48:53:D5:F9:32:EC:2A:B2:C9:EF:A0:4F:90 Authority key identifier: CC:75:62:A7:58:8C:12:09:5C:C2:33:FD:46:C3:B1:1D:72:3D:D4:CF Certificate issuer: /CN=A915A1D9/serialNumber=CC7562A7588C12095CC233FD46C3B11D723DD4CF Certificate serial: 01D3 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/zHVip1iMEglcwjP9RsOxHXI91M8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A915A1D9/4B515576535F11EDAC762E34C4F9AE02/zHVip1iMEglcwjP9RsOxHXI91M8.mft Manifest number: 01D1 Signing time: Fri 11 Apr 2025 02:11:24 +0000 Manifest this update: Fri 11 Apr 2025 02:11:23 +0000 Manifest next update: Fri 18 Apr 2025 02:11:23 +0000 Files and hashes: 1: zHVip1iMEglcwjP9RsOxHXI91M8.crl (hash: spWTvSPmxAVoehktDfLbWDsxBU+KpiZ4jOiQ5Hb2Vfc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A915A1D9/4B515576535F11EDAC762E34C4F9AE02/zHVip1iMEglcwjP9RsOxHXI91M8.crl rsync://rpki.apnic.net/member_repository/A915A1D9/4B515576535F11EDAC762E34C4F9AE02/zHVip1iMEglcwjP9RsOxHXI91M8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/zHVip1iMEglcwjP9RsOxHXI91M8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 18 Apr 2025 02:11:23 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 467 (0x1d3) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A915A1D9, serialNumber=CC7562A7588C12095CC233FD46C3B11D723DD4CF Validity Not Before: Apr 11 02:11:23 2025 GMT Not After : Apr 18 02:11:23 2025 GMT Subject: CN=67f87a4b-c3b6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b3:09:f5:5e:9d:4d:98:cd:e5:cb:56:f3:45:f9: a3:69:e8:84:e1:d8:2f:4b:9e:1a:25:9b:af:0b:d0: 15:de:72:17:74:88:6e:1d:e7:2d:d1:88:0f:08:1a: cd:dc:77:0e:55:15:2d:e3:cd:06:80:06:64:59:74: b5:c9:a6:0e:16:d3:09:ab:1a:9e:6f:47:54:94:26: 90:ca:40:6e:af:1e:49:c7:91:db:d7:18:07:18:52: 47:88:f6:9e:3f:af:f3:45:cc:6d:3a:56:72:d8:65: 83:f1:d1:9d:32:d6:c9:ea:c0:cc:81:36:b6:68:2c: fe:de:82:d3:cb:57:49:e0:e1:75:0f:65:07:ed:69: 12:76:c3:5e:cf:0d:df:27:4e:41:9b:f2:62:51:7f: bc:4a:8f:ad:48:16:04:00:64:f7:39:69:3e:eb:99: ff:b5:1e:c7:a2:b8:e1:e5:70:29:2b:bb:07:4b:9f: 34:f3:e7:da:95:c1:e9:77:cc:8c:9a:09:7a:22:b3: 0a:35:03:ef:9a:c1:d7:18:7b:5f:a6:4c:f8:a6:03: 9c:da:71:21:e3:52:db:d1:30:50:f0:aa:f3:8d:a8: f6:3a:e3:78:33:7b:0f:e3:e6:9b:d2:a8:8e:2e:d4: 29:80:28:4a:76:d8:ec:3c:76:f0:1c:aa:1c:74:31: c1:2d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C6:E1:78:DC:1E:55:F7:48:53:D5:F9:32:EC:2A:B2:C9:EF:A0:4F:90 X509v3 Authority Key Identifier: keyid:CC:75:62:A7:58:8C:12:09:5C:C2:33:FD:46:C3:B1:1D:72:3D:D4:CF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A915A1D9/4B515576535F11EDAC762E34C4F9AE02/zHVip1iMEglcwjP9RsOxHXI91M8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/zHVip1iMEglcwjP9RsOxHXI91M8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A915A1D9/4B515576535F11EDAC762E34C4F9AE02/zHVip1iMEglcwjP9RsOxHXI91M8.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 44:61:a1:ee:30:36:4f:49:dc:e8:f4:68:2c:61:a8:24:38:b8: 6a:16:f5:68:12:d7:dd:a4:e2:11:4f:d5:ce:51:2b:9d:05:ac: 23:0d:06:07:4d:8a:3b:b2:31:58:9e:2a:45:fc:6b:72:cb:77: 6d:ef:c1:3e:a2:f4:81:b6:fc:d1:9e:fe:0c:12:a4:84:05:09: 89:d6:0d:41:df:ea:8c:eb:2a:1f:c4:82:fb:e7:35:8e:cd:dc: dd:44:18:44:86:1d:c6:76:6f:7b:5b:14:51:87:b1:50:e6:07: c2:d0:f7:6d:c1:14:ab:6d:30:7c:9c:9e:46:b2:af:f5:1a:8d: f9:cc:8e:2d:28:f0:b4:85:4c:ad:22:bd:dd:e0:3f:6d:b7:de: 11:ff:25:25:f3:c5:cb:b6:e4:7e:78:8d:2d:0f:44:58:05:d9: 2d:62:b0:39:2a:6d:7f:32:68:7b:1a:9c:10:d3:23:2a:5d:fd: 54:a4:d6:6d:85:ac:6b:8e:c6:39:0f:07:67:a4:2f:b4:eb:e0: 4e:24:59:02:34:22:26:22:bb:1b:40:53:48:d2:7a:68:d0:45: fe:1e:3d:c8:4a:71:f6:77:76:16:f7:48:b9:bd:08:42:01:65: b7:11:1e:06:b4:f7:4a:3e:eb:38:a1:33:c4:a0:84:6b:4a:67: 2c:bc:a4:0e -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAdMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NUExRDkxMTAvBgNVBAUTKENDNzU2MkE3NTg4QzEyMDk1Q0MyMzNGRDQ2QzNCMTFE NzIzREQ0Q0YwHhcNMjUwNDExMDIxMTIzWhcNMjUwNDE4MDIxMTIzWjAYMRYwFAYD VQQDEw02N2Y4N2E0Yi1jM2I2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAswn1Xp1NmM3ly1bzRfmjaeiE4dgvS54aJZuvC9AV3nIXdIhuHect0YgPCBrN 3HcOVRUt480GgAZkWXS1yaYOFtMJqxqeb0dUlCaQykBurx5Jx5Hb1xgHGFJHiPae P6/zRcxtOlZy2GWD8dGdMtbJ6sDMgTa2aCz+3oLTy1dJ4OF1D2UH7WkSdsNezw3f J05Bm/JiUX+8So+tSBYEAGT3OWk+65n/tR7Horjh5XApK7sHS5808+falcHpd8yM mgl6IrMKNQPvmsHXGHtfpkz4pgOc2nEh41Lb0TBQ8Krzjaj2OuN4M3sP4+ab0qiO LtQpgChKdtjsPHbwHKocdDHBLQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFMbheNwe VfdIU9X5MuwqssnvoE+QMB8GA1UdIwQYMBaAFMx1YqdYjBIJXMIz/UbDsR1yPdTP MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1QTFEOS80QjUxNTU3NjUz NUYxMUVEQUM3NjJFMzRDNEY5QUUwMi96SFZpcDFpTUVnbGN3alA5UnNPeEhYSTkx TTguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3pIVmlwMWlNRWdsY3dqUDlSc094SFhJOTFNOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 QTFEOS80QjUxNTU3NjUzNUYxMUVEQUM3NjJFMzRDNEY5QUUwMi96SFZpcDFpTUVn bGN3alA5UnNPeEhYSTkxTTgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBEYaHuMDZPSdzo9GgsYagkOLhqFvVoEtfdpOIRT9XOUSudBawjDQYH TYo7sjFYnipF/Gtyy3dt78E+ovSBtvzRnv4MEqSEBQmJ1g1B3+qM6yofxIL75zWO zdzdRBhEhh3Gdm97WxRRh7FQ5gfC0PdtwRSrbTB8nJ5Gsq/1Go35zI4tKPC0hUyt Ir3d4D9tt94R/yUl88XLtuR+eI0tD0RYBdktYrA5Km1/Mmh7GpwQ0yMqXf1UpNZt haxrjsY5DwdnpC+06+BOJFkCNCImIrsbQFNI0npo0EX+Hj3ISnH2d3YW90i5vQhC AWW3ER4GtPdKPus4oTPEoIRrSmcsvKQO -----END CERTIFICATE-----Generated at Sun Apr 13 00:10:58 2025 by rpki-client