$ rpki-client -vvf rpki.apnic.net/member_repository/A916A071/280B09A483BE11EA8E1DF384C4F9AE02/zPKlJcCQFETKePBbk5LABFeVZ2E.mft File: zPKlJcCQFETKePBbk5LABFeVZ2E.mft (raw, json) Hash identifier: iWn3z6NO6IrlWoknGkWz1KdLgxvhkgfwF/KZ+HR3Duk= Subject key identifier: 91:39:72:25:EA:57:C8:2F:93:8A:69:11:A9:E7:C8:9E:5F:F8:9D:FE Authority key identifier: CC:F2:A5:25:C0:90:14:44:CA:78:F0:5B:93:92:C0:04:57:95:67:61 Certificate issuer: /CN=A916A071/serialNumber=CCF2A525C0901444CA78F05B9392C00457956761 Certificate serial: 09A8 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/zPKlJcCQFETKePBbk5LABFeVZ2E.cer Subject info access: rsync://rpki.apnic.net/member_repository/A916A071/280B09A483BE11EA8E1DF384C4F9AE02/zPKlJcCQFETKePBbk5LABFeVZ2E.mft Manifest number: 09A1 Signing time: Sat 12 Apr 2025 19:50:24 +0000 Manifest this update: Sat 12 Apr 2025 19:50:23 +0000 Manifest next update: Sat 19 Apr 2025 19:50:23 +0000 Files and hashes: 1: zPKlJcCQFETKePBbk5LABFeVZ2E.crl (hash: zvKnQ9bhvME6v95ftrzBCpWyoOh0O7rmOLkabtR9B3Q=) 2: 9BAC68CC83C211EABCB66612C4F9AE02.roa (hash: W5ePsoGWgomEoWgiTPJkjSegEKVfUxA0uguQndmw+Ac=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A916A071/280B09A483BE11EA8E1DF384C4F9AE02/zPKlJcCQFETKePBbk5LABFeVZ2E.crl rsync://rpki.apnic.net/member_repository/A916A071/280B09A483BE11EA8E1DF384C4F9AE02/zPKlJcCQFETKePBbk5LABFeVZ2E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/zPKlJcCQFETKePBbk5LABFeVZ2E.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 19 Apr 2025 19:50:22 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2472 (0x9a8) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A916A071, serialNumber=CCF2A525C0901444CA78F05B9392C00457956761 Validity Not Before: Apr 12 19:50:23 2025 GMT Not After : Apr 19 19:50:23 2025 GMT Subject: CN=67fac3ff-4c0b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c5:fd:91:2b:92:82:b3:35:d6:71:bd:0c:c7:aa: 98:5a:50:e3:99:34:96:56:6f:58:4c:67:ce:f5:32: 5c:57:49:c9:54:d2:ea:e2:71:54:35:89:e1:70:8d: db:65:a4:f1:74:a2:98:41:63:76:ef:b7:8e:ab:4e: a3:f2:bd:a1:c5:d3:25:df:40:0f:2b:a9:e5:80:c3: ba:65:4f:72:73:3d:0b:f4:02:bb:b3:b7:15:90:a4: 63:0b:65:0b:5a:40:4c:21:20:13:55:a1:89:d5:0a: 33:94:a2:c4:5d:42:a6:21:33:33:fc:b4:a8:6a:c6: 23:b7:68:6a:90:37:e9:23:a1:e1:ea:f4:e5:13:c9: da:f2:c5:be:fe:93:dc:e7:11:a0:73:2e:13:cb:43: 4a:4b:cc:3a:b9:ea:d7:8c:e1:0e:95:9e:3b:e5:df: 7b:72:87:c1:56:2b:5b:ff:0e:8d:13:e5:53:bd:74: c2:a9:eb:01:80:be:66:47:21:1e:1b:13:70:74:f2: 6e:f7:44:b1:e3:b1:d5:9a:85:a3:f3:28:7b:30:5f: 9e:1c:95:49:17:ca:c5:69:0c:77:29:ef:3e:a0:42: 70:46:bc:a5:50:1b:81:fb:91:fa:3b:9e:59:c8:94: 04:ac:35:aa:5d:4a:5f:22:be:32:ff:f6:75:66:0b: 91:2d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 91:39:72:25:EA:57:C8:2F:93:8A:69:11:A9:E7:C8:9E:5F:F8:9D:FE X509v3 Authority Key Identifier: keyid:CC:F2:A5:25:C0:90:14:44:CA:78:F0:5B:93:92:C0:04:57:95:67:61 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A916A071/280B09A483BE11EA8E1DF384C4F9AE02/zPKlJcCQFETKePBbk5LABFeVZ2E.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/zPKlJcCQFETKePBbk5LABFeVZ2E.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A916A071/280B09A483BE11EA8E1DF384C4F9AE02/zPKlJcCQFETKePBbk5LABFeVZ2E.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 9f:d2:d7:d8:6a:92:ae:c1:12:d1:9e:44:bf:89:5a:77:6b:b2: c7:f0:0f:7e:54:f5:23:e7:77:8d:57:13:bf:b8:1b:a8:20:33: af:a7:16:39:9d:a0:ce:60:bb:5c:ed:97:82:c2:36:bd:5f:f7: 96:e4:a3:60:2b:a4:49:37:74:82:3e:4f:0c:d4:41:16:c1:78: c5:58:50:66:46:8f:66:30:ba:c8:1e:ab:ea:d3:85:98:4c:bf: 5e:74:ae:4f:75:a5:36:81:78:1c:e1:3e:51:4c:74:a7:37:c9: 27:36:24:2f:d4:99:25:bb:b1:ec:d7:70:24:c2:a3:41:68:f6: 2d:56:e9:b3:0b:d9:29:00:62:23:d4:23:11:e5:d4:d2:ab:78: 07:01:42:69:94:59:fa:5a:21:ab:fd:98:e3:65:f5:68:03:87: a5:1c:64:95:2b:23:03:72:9e:a0:40:69:fb:e0:88:47:00:fe: d3:86:a7:3c:b0:ca:71:b4:40:4a:70:49:f0:6b:21:b5:02:48: 6d:3c:15:95:1b:d0:2c:75:37:13:9f:e2:56:4c:18:bf:99:54: 6a:ee:60:f0:5d:36:84:17:60:4a:76:14:10:cf:0f:74:87:7e: 11:ac:9a:8b:49:f1:d1:db:22:ee:9f:3d:47:bb:db:a5:94:d0: 6f:32:a5:15 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCagwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NkEwNzExMTAvBgNVBAUTKENDRjJBNTI1QzA5MDE0NDRDQTc4RjA1QjkzOTJDMDA0 NTc5NTY3NjEwHhcNMjUwNDEyMTk1MDIzWhcNMjUwNDE5MTk1MDIzWjAYMRYwFAYD VQQDEw02N2ZhYzNmZi00YzBiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxf2RK5KCszXWcb0Mx6qYWlDjmTSWVm9YTGfO9TJcV0nJVNLq4nFUNYnhcI3b ZaTxdKKYQWN277eOq06j8r2hxdMl30APK6nlgMO6ZU9ycz0L9AK7s7cVkKRjC2UL WkBMISATVaGJ1QozlKLEXUKmITMz/LSoasYjt2hqkDfpI6Hh6vTlE8na8sW+/pPc 5xGgcy4Ty0NKS8w6uerXjOEOlZ475d97cofBVitb/w6NE+VTvXTCqesBgL5mRyEe GxNwdPJu90Sx47HVmoWj8yh7MF+eHJVJF8rFaQx3Ke8+oEJwRrylUBuB+5H6O55Z yJQErDWqXUpfIr4y//Z1ZguRLQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJE5ciXq V8gvk4ppEannyJ5f+J3+MB8GA1UdIwQYMBaAFMzypSXAkBREynjwW5OSwARXlWdh MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2QTA3MS8yODBCMDlBNDgz QkUxMUVBOEUxREYzODRDNEY5QUUwMi96UEtsSmNDUUZFVEtlUEJiazVMQUJGZVZa MkUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3pQS2xKY0NRRkVUS2VQQmJrNUxBQkZlVloyRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 QTA3MS8yODBCMDlBNDgzQkUxMUVBOEUxREYzODRDNEY5QUUwMi96UEtsSmNDUUZF VEtlUEJiazVMQUJGZVZaMkUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCf0tfYapKuwRLRnkS/iVp3a7LH8A9+VPUj53eNVxO/uBuoIDOvpxY5 naDOYLtc7ZeCwja9X/eW5KNgK6RJN3SCPk8M1EEWwXjFWFBmRo9mMLrIHqvq04WY TL9edK5PdaU2gXgc4T5RTHSnN8knNiQv1Jklu7Hs13AkwqNBaPYtVumzC9kpAGIj 1CMR5dTSq3gHAUJplFn6WiGr/ZjjZfVoA4elHGSVKyMDcp6gQGn74IhHAP7Thqc8 sMpxtEBKcEnwayG1AkhtPBWVG9AsdTcTn+JWTBi/mVRq7mDwXTaEF2BKdhQQzw90 h34RrJqLSfHR2yLunz1Hu9ullNBvMqUV -----END CERTIFICATE-----Generated at Sun Apr 13 03:46:56 2025 by rpki-client