$ rpki-client -vvf rpki.apnic.net/member_repository/A916A3EE/5B97A8B8701211EB8907BB1FC4F9AE02/aWryPZMpXC9f3fMqlVE7Ldu_zhs.mft File: aWryPZMpXC9f3fMqlVE7Ldu_zhs.mft (raw, json) Hash identifier: lurdbdxu2tg+eHZ+Uueq74f8gyrSDPbS0Jynm0cZfPY= Subject key identifier: B5:D3:44:56:7D:1A:EC:F2:EB:FC:24:BE:2B:D2:8A:C1:1A:FB:81:D7 Authority key identifier: 69:6A:F2:3D:93:29:5C:2F:5F:DD:F3:2A:95:51:3B:2D:DB:BF:CE:1B Certificate issuer: /CN=A916A3EE/serialNumber=696AF23D93295C2F5FDDF32A95513B2DDBBFCE1B Certificate serial: 0677 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aWryPZMpXC9f3fMqlVE7Ldu_zhs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A916A3EE/5B97A8B8701211EB8907BB1FC4F9AE02/aWryPZMpXC9f3fMqlVE7Ldu_zhs.mft Manifest number: 0672 Signing time: Wed 02 Apr 2025 22:19:28 +0000 Manifest this update: Wed 02 Apr 2025 22:19:27 +0000 Manifest next update: Wed 09 Apr 2025 22:19:27 +0000 Files and hashes: 1: aWryPZMpXC9f3fMqlVE7Ldu_zhs.crl (hash: 1ktzKLPgT7+EEjDOfTI1Nt8HrtT2GW+oGRYYPsrf0I8=) 2: 76F5B630701311EB9C85DF1FC4F9AE02.roa (hash: qir+UT8zyDGjYz1YRKkq2v/pYcPeSxEZXiWVhwGwNRY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A916A3EE/5B97A8B8701211EB8907BB1FC4F9AE02/aWryPZMpXC9f3fMqlVE7Ldu_zhs.crl rsync://rpki.apnic.net/member_repository/A916A3EE/5B97A8B8701211EB8907BB1FC4F9AE02/aWryPZMpXC9f3fMqlVE7Ldu_zhs.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aWryPZMpXC9f3fMqlVE7Ldu_zhs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 09 Apr 2025 22:19:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1655 (0x677) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A916A3EE Validity Not Before: Apr 2 22:19:27 2025 GMT Not After : Apr 9 22:19:27 2025 GMT Subject: CN=67edb7ef-d78b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a2:1f:74:05:c7:04:24:05:9e:f5:fc:21:02:97: 7b:3c:b7:9b:a7:0a:6e:79:0b:59:b3:81:ef:de:c1: 0b:d8:98:f5:95:cc:79:70:5c:da:61:13:4b:34:c4: 32:66:f5:98:97:82:6f:76:f7:f2:b8:8e:b9:ad:23: a4:53:aa:da:93:44:bb:e1:06:16:65:71:ea:fb:2f: 43:2b:be:b4:b6:46:41:07:d0:9b:eb:86:29:ee:bf: ed:c0:a2:0f:4c:31:8f:ac:03:13:56:bf:ac:fe:f5: 14:08:68:da:61:5e:da:e5:b7:44:c8:de:0e:5f:61: 2d:af:23:98:75:75:64:f2:32:d9:35:ef:7e:52:bc: 77:36:b1:18:aa:3e:10:3a:e9:7b:ff:01:3c:06:aa: 12:85:c5:d4:6c:00:92:95:2a:37:15:dd:da:f7:2c: d4:36:3a:6a:e4:93:4f:b5:60:21:ee:c3:0b:a8:6c: 63:20:a9:3f:bb:02:3e:af:39:93:99:68:6b:86:67: 47:f9:c3:59:75:96:c4:fa:08:a1:f4:0a:1b:fe:89: c3:27:4e:97:b1:d6:ee:74:4a:cf:2e:f8:37:f6:31: 96:7b:cf:1f:3c:71:f1:7e:66:2c:f1:13:12:ee:fa: 40:a7:2e:bc:f1:2f:2e:b4:d5:ab:fd:af:71:4f:bc: 01:bd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B5:D3:44:56:7D:1A:EC:F2:EB:FC:24:BE:2B:D2:8A:C1:1A:FB:81:D7 X509v3 Authority Key Identifier: keyid:69:6A:F2:3D:93:29:5C:2F:5F:DD:F3:2A:95:51:3B:2D:DB:BF:CE:1B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A916A3EE/5B97A8B8701211EB8907BB1FC4F9AE02/aWryPZMpXC9f3fMqlVE7Ldu_zhs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aWryPZMpXC9f3fMqlVE7Ldu_zhs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A916A3EE/5B97A8B8701211EB8907BB1FC4F9AE02/aWryPZMpXC9f3fMqlVE7Ldu_zhs.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 6e:e3:e5:92:1a:ea:ab:2d:37:c3:43:53:78:2d:9a:2d:1c:e8: 65:d3:1b:68:6f:5b:b5:0b:1c:92:be:98:99:f8:eb:f3:64:59: 68:b3:f0:d9:34:c0:58:f7:a4:66:a4:46:2e:57:8b:1a:23:ad: b0:2d:b5:ca:48:cc:c1:6a:9a:64:bb:e4:57:60:eb:11:54:3b: 16:b2:75:9c:99:6d:18:d0:8b:d7:e8:65:d1:ef:13:f0:ce:22: a3:74:a8:9f:07:f0:67:2b:b5:b8:98:d9:47:55:06:2e:87:d7: 40:6f:ad:29:59:9c:41:4f:da:d8:26:01:1e:97:ea:04:25:57: 1a:6c:e8:4a:66:47:07:24:f1:86:31:2a:9b:31:de:4a:b2:f8: 93:59:1a:f9:4b:35:08:d1:ed:94:2d:f2:1e:fc:2d:9d:7b:3b: fd:2c:98:18:fe:d5:97:66:48:af:5a:56:d6:7b:c8:7a:28:d5: 7b:56:9f:d9:40:3d:3b:67:84:86:6f:02:98:37:20:e2:51:2d: d1:08:a0:30:90:77:c9:e0:3f:81:3e:e6:a0:12:db:31:2d:2b: 81:c3:56:d4:47:f5:d7:73:5f:c2:92:1b:be:21:db:6f:02:39: d9:c9:c8:b3:95:3a:e7:1b:66:c5:0c:69:11:c1:e4:30:2c:f3: 16:9a:81:97 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBncwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NkEzRUUxMTAvBgNVBAUTKDY5NkFGMjNEOTMyOTVDMkY1RkRERjMyQTk1NTEzQjJE REJCRkNFMUIwHhcNMjUwNDAyMjIxOTI3WhcNMjUwNDA5MjIxOTI3WjAYMRYwFAYD VQQDEw02N2VkYjdlZi1kNzhiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAoh90BccEJAWe9fwhApd7PLebpwpueQtZs4Hv3sEL2Jj1lcx5cFzaYRNLNMQy ZvWYl4JvdvfyuI65rSOkU6rak0S74QYWZXHq+y9DK760tkZBB9Cb64Yp7r/twKIP TDGPrAMTVr+s/vUUCGjaYV7a5bdEyN4OX2EtryOYdXVk8jLZNe9+Urx3NrEYqj4Q Oul7/wE8BqoShcXUbACSlSo3Fd3a9yzUNjpq5JNPtWAh7sMLqGxjIKk/uwI+rzmT mWhrhmdH+cNZdZbE+gih9Aob/onDJ06XsdbudErPLvg39jGWe88fPHHxfmYs8RMS 7vpApy688S8utNWr/a9xT7wBvQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFLXTRFZ9 Guzy6/wkvivSisEa+4HXMB8GA1UdIwQYMBaAFGlq8j2TKVwvX93zKpVROy3bv84b MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2QTNFRS81Qjk3QThCODcw MTIxMUVCODkwN0JCMUZDNEY5QUUwMi9hV3J5UFpNcFhDOWYzZk1xbFZFN0xkdV96 aHMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2FXcnlQWk1wWEM5ZjNmTXFsVkU3TGR1X3pocy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 QTNFRS81Qjk3QThCODcwMTIxMUVCODkwN0JCMUZDNEY5QUUwMi9hV3J5UFpNcFhD OWYzZk1xbFZFN0xkdV96aHMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBu4+WSGuqrLTfDQ1N4LZotHOhl0xtob1u1CxySvpiZ+OvzZFlos/DZ NMBY96RmpEYuV4saI62wLbXKSMzBappku+RXYOsRVDsWsnWcmW0Y0IvX6GXR7xPw ziKjdKifB/BnK7W4mNlHVQYuh9dAb60pWZxBT9rYJgEel+oEJVcabOhKZkcHJPGG MSqbMd5KsviTWRr5SzUI0e2ULfIe/C2dezv9LJgY/tWXZkivWlbWe8h6KNV7Vp/Z QD07Z4SGbwKYNyDiUS3RCKAwkHfJ4D+BPuagEtsxLSuBw1bUR/XXc1/Ckhu+Idtv AjnZycizlTrnG2bFDGkRweQwLPMWmoGX -----END CERTIFICATE-----Generated at Fri Apr 4 22:17:43 2025 by rpki-client