$ rpki-client -vvf rpki.apnic.net/member_repository/A9172A52/3E76D7EE981911EFB0D0DD34C4F9AE02/Z0rFfAmYdqBmVxgLNOJObu6IRBE.mft File: Z0rFfAmYdqBmVxgLNOJObu6IRBE.mft (raw, json) Hash identifier: 9PAT3HIr2z472veDRcLyPDZ5Iu4zpGCnzExO3HN4LFc= Subject key identifier: B6:61:76:BE:A7:E5:D8:E7:3D:EA:CE:37:1B:F3:35:E0:BC:A2:00:F9 Authority key identifier: 67:4A:C5:7C:09:98:76:A0:66:57:18:0B:34:E2:4E:6E:EE:88:44:11 Certificate issuer: /CN=A9172A52/serialNumber=674AC57C099876A06657180B34E24E6EEE884411 Certificate serial: 8C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Z0rFfAmYdqBmVxgLNOJObu6IRBE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9172A52/3E76D7EE981911EFB0D0DD34C4F9AE02/Z0rFfAmYdqBmVxgLNOJObu6IRBE.mft Manifest number: 70 Signing time: Sat 29 Mar 2025 06:36:44 +0000 Manifest this update: Sat 29 Mar 2025 06:36:43 +0000 Manifest next update: Sat 05 Apr 2025 06:36:43 +0000 Files and hashes: 1: Z0rFfAmYdqBmVxgLNOJObu6IRBE.crl (hash: XKuSmZ869TYl1vpk93Uw+SLj3kAa6iZ9cF7tmHN8Nn4=) 2: 64F7DCE4D3BD11EFA52FF783C4F9AE02.roa (hash: YhVERhvtXXcrFTyDSv5Qa1F1feLk9QH6JfzQdvzKgMI=) 3: 5F80F96C9A6F11EF8D9BD80FC4F9AE02.roa (hash: x/GxynEkpXLSNWmZVbITUGXMZJMGzB1C/0SmBXF5ZvU=) 4: 65BB3518D3BD11EFA52FF783C4F9AE02.roa (hash: i/EZaFvZG8APBZoGgzEqNCc2JUzVAPKb3k4/6st6F+k=) 5: 24A183BCCD7211EFA468C80CC4F9AE02.roa (hash: +ZgXH0MqLEQm5yXWS3q+WYKasl3Na26eLGiM5UthVjU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9172A52/3E76D7EE981911EFB0D0DD34C4F9AE02/Z0rFfAmYdqBmVxgLNOJObu6IRBE.crl rsync://rpki.apnic.net/member_repository/A9172A52/3E76D7EE981911EFB0D0DD34C4F9AE02/Z0rFfAmYdqBmVxgLNOJObu6IRBE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Z0rFfAmYdqBmVxgLNOJObu6IRBE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 05 Apr 2025 05:08:51 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 140 (0x8c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9172A52 Validity Not Before: Mar 29 06:36:43 2025 GMT Not After : Apr 5 06:36:43 2025 GMT Subject: CN=67e794fb-9e47 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:32:cc:e6:c5:2a:92:94:1d:78:b7:6d:12:7d: 4d:fc:5b:a3:b5:98:00:d5:f6:b1:b8:08:7b:b0:a1: d5:81:4e:94:00:e6:33:08:b0:92:86:37:87:0c:7a: 95:7d:97:d1:93:8e:a5:7a:f9:4e:a7:da:c9:96:93: ba:c2:a4:92:dd:f9:33:bb:9a:5b:77:1d:9c:04:d7: 51:7c:58:e9:84:5e:21:fb:b2:e2:6b:72:8f:42:f6: f2:59:56:e3:6c:aa:1a:07:e0:7a:ad:de:6d:8b:90: da:95:d4:af:e2:58:05:b7:24:b7:68:6b:f1:92:68: 68:76:b6:20:71:e7:ec:7d:d4:91:29:de:54:34:18: e9:4a:7d:ac:2c:43:8e:f2:8f:fb:ab:23:90:11:57: 1a:3e:f8:b8:be:67:fa:99:9a:32:8a:e1:b0:eb:5c: 13:ee:e4:b4:c8:bd:dd:b5:0d:b8:d2:9d:b8:13:7c: 58:ac:91:fb:7d:67:65:5c:e4:49:a1:de:fd:50:79: ff:97:20:75:eb:00:d4:5b:c2:b9:70:60:07:e2:f6: 60:23:c0:6e:ff:d9:29:50:fc:71:f2:1a:73:e1:fc: 19:6f:64:05:b5:62:94:4b:57:a0:71:c5:2a:7c:90: e2:7b:28:08:b9:8f:e8:4e:1d:2b:b1:24:82:72:54: 77:bf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B6:61:76:BE:A7:E5:D8:E7:3D:EA:CE:37:1B:F3:35:E0:BC:A2:00:F9 X509v3 Authority Key Identifier: keyid:67:4A:C5:7C:09:98:76:A0:66:57:18:0B:34:E2:4E:6E:EE:88:44:11 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9172A52/3E76D7EE981911EFB0D0DD34C4F9AE02/Z0rFfAmYdqBmVxgLNOJObu6IRBE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Z0rFfAmYdqBmVxgLNOJObu6IRBE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9172A52/3E76D7EE981911EFB0D0DD34C4F9AE02/Z0rFfAmYdqBmVxgLNOJObu6IRBE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 91:f4:ad:7d:a9:2f:d4:6d:0b:cd:2b:57:0e:b4:b5:5c:ec:fb: e3:9e:9f:41:cb:17:2a:ff:b8:30:e5:ae:0d:b1:ac:10:21:09: 7b:3b:40:7b:01:51:b1:49:9d:ab:5c:cb:25:da:55:71:dd:e3: 38:a6:1b:21:91:b3:1e:6f:55:39:6b:8c:5b:cb:4a:cf:20:0c: 84:62:58:fe:1a:43:9c:f6:a4:0f:c5:80:a4:fb:db:15:2e:12: 33:ce:17:5f:20:03:61:0c:b4:9d:f3:42:95:c4:3d:7a:4c:85: e3:82:04:71:a1:89:f7:fb:88:43:94:6a:d4:26:03:92:31:97: ba:f7:9d:1d:1b:e0:48:f3:15:47:df:2b:2d:1e:17:01:08:fe: 14:77:02:ae:9e:33:7c:9d:42:7a:9b:1a:02:ba:8b:22:d1:29: f6:ee:1e:1d:c8:e8:60:c1:f6:2a:dd:a1:3c:8a:79:6e:bd:8a: 0d:af:d8:cb:21:1e:fe:55:2b:d0:f2:5b:d3:bf:cc:27:d5:c9: 55:e3:c6:88:5b:90:91:7e:d0:27:e2:33:8c:26:e6:ca:89:29: 65:0d:9d:b6:e8:12:c0:f0:bd:dc:9a:c9:52:13:2c:1c:3b:c3: c9:a1:8c:f8:0f:19:bf:a0:01:45:d4:22:bb:c9:04:70:76:37: 2a:d4:1d:fa -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAIwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzJBNTIxMTAvBgNVBAUTKDY3NEFDNTdDMDk5ODc2QTA2NjU3MTgwQjM0RTI0RTZF RUU4ODQ0MTEwHhcNMjUwMzI5MDYzNjQzWhcNMjUwNDA1MDYzNjQzWjAYMRYwFAYD VQQDEw02N2U3OTRmYi05ZTQ3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwTLM5sUqkpQdeLdtEn1N/FujtZgA1faxuAh7sKHVgU6UAOYzCLCShjeHDHqV fZfRk46levlOp9rJlpO6wqSS3fkzu5pbdx2cBNdRfFjphF4h+7Lia3KPQvbyWVbj bKoaB+B6rd5ti5DaldSv4lgFtyS3aGvxkmhodrYgcefsfdSRKd5UNBjpSn2sLEOO 8o/7qyOQEVcaPvi4vmf6mZoyiuGw61wT7uS0yL3dtQ240p24E3xYrJH7fWdlXORJ od79UHn/lyB16wDUW8K5cGAH4vZgI8Bu/9kpUPxx8hpz4fwZb2QFtWKUS1egccUq fJDieygIuY/oTh0rsSSCclR3vwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFLZhdr6n 5djnPerONxvzNeC8ogD5MB8GA1UdIwQYMBaAFGdKxXwJmHagZlcYCzTiTm7uiEQR MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3MkE1Mi8zRTc2RDdFRTk4 MTkxMUVGQjBEMEREMzRDNEY5QUUwMi9aMHJGZkFtWWRxQm1WeGdMTk9KT2J1NklS QkUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1owckZmQW1ZZHFCbVZ4Z0xOT0pPYnU2SVJCRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 MkE1Mi8zRTc2RDdFRTk4MTkxMUVGQjBEMEREMzRDNEY5QUUwMi9aMHJGZkFtWWRx Qm1WeGdMTk9KT2J1NklSQkUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCR9K19qS/UbQvNK1cOtLVc7Pvjnp9Byxcq/7gw5a4NsawQIQl7O0B7 AVGxSZ2rXMsl2lVx3eM4phshkbMeb1U5a4xby0rPIAyEYlj+GkOc9qQPxYCk+9sV LhIzzhdfIANhDLSd80KVxD16TIXjggRxoYn3+4hDlGrUJgOSMZe6950dG+BI8xVH 3ystHhcBCP4UdwKunjN8nUJ6mxoCuosi0Sn27h4dyOhgwfYq3aE8inluvYoNr9jL IR7+VSvQ8lvTv8wn1clV48aIW5CRftAn4jOMJubKiSllDZ226BLA8L3cmslSEywc O8PJoYz4Dxm/oAFF1CK7yQRwdjcq1B36 -----END CERTIFICATE-----Generated at Fri Apr 4 22:26:56 2025 by rpki-client