$ rpki-client -vvf rpki.apnic.net/member_repository/A9175529/0B660040A20711E4BD9EC144C4F9AE02/zuaTD0jXdNZD1Vz_6YseY6TWNTQ.mft File: zuaTD0jXdNZD1Vz_6YseY6TWNTQ.mft (raw, json) Hash identifier: exfoAZEmcI1RA+Tbn7zkEDX6sp2z8NY4brwf7hqO/iM= Subject key identifier: 32:C9:1B:B8:71:50:BE:D9:E0:D5:03:C3:1C:87:A7:D7:B8:C4:5D:0E Authority key identifier: CE:E6:93:0F:48:D7:74:D6:43:D5:5C:FF:E9:8B:1E:63:A4:D6:35:34 Certificate issuer: /CN=A9175529/serialNumber=CEE6930F48D774D643D55CFFE98B1E63A4D63534 Certificate serial: 27B8 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/zuaTD0jXdNZD1Vz_6YseY6TWNTQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9175529/0B660040A20711E4BD9EC144C4F9AE02/zuaTD0jXdNZD1Vz_6YseY6TWNTQ.mft Manifest number: 27AA Signing time: Wed 16 Apr 2025 15:40:21 +0000 Manifest this update: Wed 16 Apr 2025 15:40:21 +0000 Manifest next update: Wed 23 Apr 2025 15:40:21 +0000 Files and hashes: 1: zuaTD0jXdNZD1Vz_6YseY6TWNTQ.crl (hash: woj2SaswQ5MJ3HmUwC+VYMY88XH6qCKtPPFhlKdgEMs=) 2: 14EC8116B10B11E58EB48F13C4F9AE02.roa (hash: dICqWrTdlFtrMZe68AJTlZkc2xz/VXcxAztydCwI54o=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9175529/0B660040A20711E4BD9EC144C4F9AE02/zuaTD0jXdNZD1Vz_6YseY6TWNTQ.crl rsync://rpki.apnic.net/member_repository/A9175529/0B660040A20711E4BD9EC144C4F9AE02/zuaTD0jXdNZD1Vz_6YseY6TWNTQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/zuaTD0jXdNZD1Vz_6YseY6TWNTQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 23 Apr 2025 15:40:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 10168 (0x27b8) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9175529, serialNumber=CEE6930F48D774D643D55CFFE98B1E63A4D63534 Validity Not Before: Apr 16 15:40:21 2025 GMT Not After : Apr 23 15:40:21 2025 GMT Subject: CN=67ffcf65-2671 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ea:d8:63:ed:bc:b9:0b:55:c1:1c:26:85:22:1d: 72:cb:0d:2f:d8:d1:b9:a8:ec:68:35:a2:7e:69:97: b7:89:b9:56:77:d2:a9:be:7f:7c:59:d3:f5:e5:05: a2:76:8f:b2:b3:62:24:63:8f:05:81:1f:61:17:71: 2c:6d:af:ee:10:ae:83:17:0b:07:40:25:0e:db:60: 40:2b:97:56:51:7d:ec:d7:13:1f:3f:74:44:70:fc: 32:47:c6:c8:67:e1:ad:85:09:b0:50:18:bd:63:19: 2b:2b:fb:ee:45:2c:be:dc:4d:eb:a4:d5:b6:18:89: a3:1e:1c:73:02:11:42:6a:cb:3b:42:71:fd:ce:1b: 3b:f8:80:ad:79:69:91:d5:62:15:e9:89:c7:20:1a: 4d:75:a0:36:7a:3a:72:d4:49:5d:5a:df:74:5d:30: b9:0f:b7:26:8a:4b:db:23:3e:41:d6:b4:39:ff:94: 1c:09:64:8b:06:41:59:23:5d:96:13:84:2c:34:90: 4f:a2:18:1a:c1:c5:a1:02:76:28:9b:b6:02:27:f5: 39:74:fb:93:da:17:5b:bb:ea:30:e6:00:61:17:e2: d4:49:33:33:e1:da:c6:da:8c:30:3c:2d:c6:c5:63: 66:bf:d7:b4:5c:60:c5:d0:50:a3:42:4f:6d:39:32: 2c:2d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 32:C9:1B:B8:71:50:BE:D9:E0:D5:03:C3:1C:87:A7:D7:B8:C4:5D:0E X509v3 Authority Key Identifier: keyid:CE:E6:93:0F:48:D7:74:D6:43:D5:5C:FF:E9:8B:1E:63:A4:D6:35:34 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9175529/0B660040A20711E4BD9EC144C4F9AE02/zuaTD0jXdNZD1Vz_6YseY6TWNTQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/zuaTD0jXdNZD1Vz_6YseY6TWNTQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9175529/0B660040A20711E4BD9EC144C4F9AE02/zuaTD0jXdNZD1Vz_6YseY6TWNTQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 9a:6e:07:8f:95:da:6e:36:cf:c8:4b:cb:6f:49:9b:02:13:e1: 16:f0:7e:d3:6d:bc:65:dd:07:d9:04:fb:a3:1c:de:22:a6:24: 0a:90:c0:36:3e:20:9b:1d:2e:00:14:c5:e4:62:46:f7:3a:27: 1f:04:ab:b7:c4:4c:0f:f0:fd:33:81:70:5f:01:96:8a:e5:35: 0d:7d:fb:e4:1d:dc:79:6f:2b:05:e7:98:99:dc:03:6f:f0:6f: c0:ba:c9:59:9f:13:7e:51:e2:6d:51:cb:6e:90:73:ed:cd:45: 0f:cf:19:d1:22:0c:1a:cd:c6:9d:0c:4c:a3:ed:78:46:da:4b: 2e:ae:0c:0e:d6:ca:9d:18:f9:29:9a:5d:96:06:62:cc:43:47: 30:d6:25:3f:10:79:a6:85:f0:fe:2b:48:8d:8b:ff:f3:78:f1: a2:59:43:fa:0c:4c:9b:96:40:87:62:19:39:5f:5c:f6:1f:69: 2d:75:05:01:c8:54:65:d3:a4:ff:36:9c:5d:40:80:bc:6c:82: 9f:f3:00:45:e6:22:c1:d0:c8:e5:61:b7:a4:a0:05:fa:fd:8d: 52:d9:31:4e:de:c8:7f:fa:97:89:82:8a:88:63:35:52:4b:5b: a1:b0:22:52:fe:a2:61:2e:d9:1b:a1:9a:4a:cf:43:12:08:f2: fd:55:2b:36 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICJ7gwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzU1MjkxMTAvBgNVBAUTKENFRTY5MzBGNDhENzc0RDY0M0Q1NUNGRkU5OEIxRTYz QTRENjM1MzQwHhcNMjUwNDE2MTU0MDIxWhcNMjUwNDIzMTU0MDIxWjAYMRYwFAYD VQQDEw02N2ZmY2Y2NS0yNjcxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA6thj7by5C1XBHCaFIh1yyw0v2NG5qOxoNaJ+aZe3iblWd9Kpvn98WdP15QWi do+ys2IkY48FgR9hF3Esba/uEK6DFwsHQCUO22BAK5dWUX3s1xMfP3REcPwyR8bI Z+GthQmwUBi9YxkrK/vuRSy+3E3rpNW2GImjHhxzAhFCass7QnH9zhs7+ICteWmR 1WIV6YnHIBpNdaA2ejpy1EldWt90XTC5D7cmikvbIz5B1rQ5/5QcCWSLBkFZI12W E4QsNJBPohgawcWhAnYom7YCJ/U5dPuT2hdbu+ow5gBhF+LUSTMz4drG2owwPC3G xWNmv9e0XGDF0FCjQk9tOTIsLQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFDLJG7hx UL7Z4NUDwxyHp9e4xF0OMB8GA1UdIwQYMBaAFM7mkw9I13TWQ9Vc/+mLHmOk1jU0 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3NTUyOS8wQjY2MDA0MEEy MDcxMUU0QkQ5RUMxNDRDNEY5QUUwMi96dWFURDBqWGROWkQxVnpfNllzZVk2VFdO VFEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3p1YVREMGpYZE5aRDFWel82WXNlWTZUV05UUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 NTUyOS8wQjY2MDA0MEEyMDcxMUU0QkQ5RUMxNDRDNEY5QUUwMi96dWFURDBqWGRO WkQxVnpfNllzZVk2VFdOVFEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCabgePldpuNs/IS8tvSZsCE+EW8H7Tbbxl3QfZBPujHN4ipiQKkMA2 PiCbHS4AFMXkYkb3OicfBKu3xEwP8P0zgXBfAZaK5TUNffvkHdx5bysF55iZ3ANv 8G/AuslZnxN+UeJtUctukHPtzUUPzxnRIgwazcadDEyj7XhG2ksurgwO1sqdGPkp ml2WBmLMQ0cw1iU/EHmmhfD+K0iNi//zePGiWUP6DEyblkCHYhk5X1z2H2ktdQUB yFRl06T/NpxdQIC8bIKf8wBF5iLB0MjlYbekoAX6/Y1S2TFO3sh/+peJgoqIYzVS S1uhsCJS/qJhLtkboZpKz0MSCPL9VSs2 -----END CERTIFICATE-----Generated at Wed Apr 16 21:15:06 2025 by rpki-client