$ rpki-client -vvf rpki.apnic.net/member_repository/A917ACA8/F9714AE6AAFA11EEA221E72EC4F9AE02/zmNwmX29E9IOXsYWW1qe46KCprA.mft File: zmNwmX29E9IOXsYWW1qe46KCprA.mft (raw, json) Hash identifier: fUnVqfUanYjPxM8tDR9Aq+/b6IlYJk6ubn9cuA5YhdQ= Subject key identifier: 7C:63:13:D1:31:AB:26:AC:D8:0C:DA:E3:08:0A:59:4F:CE:37:2D:E1 Authority key identifier: CE:63:70:99:7D:BD:13:D2:0E:5E:C6:16:5B:5A:9E:E3:A2:82:A6:B0 Certificate issuer: /CN=A917ACA8/serialNumber=CE6370997DBD13D20E5EC6165B5A9EE3A282A6B0 Certificate serial: F3 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/zmNwmX29E9IOXsYWW1qe46KCprA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917ACA8/F9714AE6AAFA11EEA221E72EC4F9AE02/zmNwmX29E9IOXsYWW1qe46KCprA.mft Manifest number: EF Signing time: Thu 03 Apr 2025 04:33:23 +0000 Manifest this update: Thu 03 Apr 2025 04:33:22 +0000 Manifest next update: Thu 10 Apr 2025 04:33:22 +0000 Files and hashes: 1: zmNwmX29E9IOXsYWW1qe46KCprA.crl (hash: df+sIHZsR/+4GrE+l5F37vZc1fqa9Mi2mSWzwCZcPSQ=) 2: 725ED2DC3C3E11EF8E9ED658C4F9AE02.roa (hash: b8Nk35gI73n6vPSPeGhcdp8/EnX7d3C+aJhz3JSGsbQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917ACA8/F9714AE6AAFA11EEA221E72EC4F9AE02/zmNwmX29E9IOXsYWW1qe46KCprA.crl rsync://rpki.apnic.net/member_repository/A917ACA8/F9714AE6AAFA11EEA221E72EC4F9AE02/zmNwmX29E9IOXsYWW1qe46KCprA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/zmNwmX29E9IOXsYWW1qe46KCprA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 10 Apr 2025 04:33:22 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 243 (0xf3) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917ACA8 Validity Not Before: Apr 3 04:33:22 2025 GMT Not After : Apr 10 04:33:22 2025 GMT Subject: CN=67ee0f93-6ccb Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b2:2d:9e:49:a9:8e:b8:e1:b1:a1:3a:57:e1:70: 6f:2f:a0:57:9b:59:19:f1:18:b5:df:62:8f:4a:14: d2:d4:f3:10:cc:24:68:7a:f8:e1:ab:5d:9e:48:2f: 94:89:1c:14:0b:57:98:5f:ca:54:f1:c8:df:99:39: cc:dd:c8:01:04:6f:ae:ed:30:5a:6e:34:56:bb:9b: 9f:ab:5a:ae:e4:ea:b0:48:36:7a:ec:1f:d4:da:0a: ea:bd:dc:96:85:d8:53:82:3f:22:f7:99:dc:42:d3: 21:28:21:4e:0f:3f:68:91:f9:da:c4:9f:13:a0:a9: d6:6b:b6:72:db:a1:8a:aa:1f:f8:40:f1:ff:81:83: 1b:7c:6c:1c:13:30:19:c2:81:79:8a:84:23:b9:8b: 68:31:e3:d4:d4:47:ac:a0:7d:2e:5f:78:c0:e0:31: 23:0d:80:32:69:96:33:a7:80:da:b4:b5:59:4f:e7: 34:8e:bf:9a:6c:0c:64:de:8d:97:1f:35:81:73:8b: 3b:90:cf:08:67:a1:f4:b9:f2:84:6d:b9:fc:52:5d: 06:24:53:ea:9b:51:cb:b7:72:3e:f2:b2:38:17:27: e5:2f:4f:75:cf:a3:b3:78:9d:93:a1:f2:09:a9:b0: 6c:f4:42:59:30:aa:f6:13:23:2f:c5:4a:75:9b:ac: 17:35 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7C:63:13:D1:31:AB:26:AC:D8:0C:DA:E3:08:0A:59:4F:CE:37:2D:E1 X509v3 Authority Key Identifier: keyid:CE:63:70:99:7D:BD:13:D2:0E:5E:C6:16:5B:5A:9E:E3:A2:82:A6:B0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917ACA8/F9714AE6AAFA11EEA221E72EC4F9AE02/zmNwmX29E9IOXsYWW1qe46KCprA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/zmNwmX29E9IOXsYWW1qe46KCprA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917ACA8/F9714AE6AAFA11EEA221E72EC4F9AE02/zmNwmX29E9IOXsYWW1qe46KCprA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 40:8f:05:6e:be:d3:08:f4:44:88:44:1a:62:90:cc:fd:cd:94: 3f:db:c0:75:60:93:7b:a3:56:c8:f7:b2:76:96:18:ec:c7:30: 8b:ed:bc:13:2b:84:55:36:a9:e8:6d:87:ac:c3:c7:39:15:92: 1f:4a:99:30:11:b9:9a:9d:d2:28:d2:c0:1d:1a:74:ff:27:fd: 68:bb:06:a9:fc:0e:76:6c:a6:34:b9:a5:a7:cb:f4:11:27:72: 21:8e:db:1a:db:44:21:c4:7e:d1:f4:9d:98:fa:da:34:de:87: 19:ac:b3:40:e6:5e:c5:35:78:a3:e8:83:2d:f9:9c:a0:0a:2a: a3:12:f6:cd:c0:4e:a7:6a:9f:69:eb:67:1e:2a:78:ce:7f:f5: 53:3a:1b:92:b1:5e:8a:c5:6c:ff:76:ba:c5:16:66:87:de:dd: 00:a3:3b:90:35:b5:f0:5f:fa:55:9e:1d:4a:4f:a7:85:0e:59: 3c:fe:bc:79:d1:42:9b:f3:e2:d8:33:cc:e6:b7:51:0f:6d:37: a2:f3:5a:62:01:86:45:63:53:aa:90:37:c1:f3:4e:7c:44:e9: 6d:af:52:0e:16:35:bf:8a:a0:81:fc:37:cd:44:08:61:3b:fc: c5:d5:74:f9:01:0c:92:ab:6e:f4:89:ff:f6:ad:f6:1d:f4:8b: 08:90:4a:b8 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAPMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0FDQTgxMTAvBgNVBAUTKENFNjM3MDk5N0RCRDEzRDIwRTVFQzYxNjVCNUE5RUUz QTI4MkE2QjAwHhcNMjUwNDAzMDQzMzIyWhcNMjUwNDEwMDQzMzIyWjAYMRYwFAYD VQQDEw02N2VlMGY5My02Y2NiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsi2eSamOuOGxoTpX4XBvL6BXm1kZ8Ri132KPShTS1PMQzCRoevjhq12eSC+U iRwUC1eYX8pU8cjfmTnM3cgBBG+u7TBabjRWu5ufq1qu5OqwSDZ67B/U2grqvdyW hdhTgj8i95ncQtMhKCFODz9okfnaxJ8ToKnWa7Zy26GKqh/4QPH/gYMbfGwcEzAZ woF5ioQjuYtoMePU1EesoH0uX3jA4DEjDYAyaZYzp4DatLVZT+c0jr+abAxk3o2X HzWBc4s7kM8IZ6H0ufKEbbn8Ul0GJFPqm1HLt3I+8rI4FyflL091z6OzeJ2TofIJ qbBs9EJZMKr2EyMvxUp1m6wXNQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFHxjE9Ex qyas2Aza4wgKWU/ONy3hMB8GA1UdIwQYMBaAFM5jcJl9vRPSDl7GFltanuOigqaw MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3QUNBOC9GOTcxNEFFNkFB RkExMUVFQTIyMUU3MkVDNEY5QUUwMi96bU53bVgyOUU5SU9Yc1lXVzFxZTQ2S0Nw ckEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3ptTndtWDI5RTlJT1hzWVdXMXFlNDZLQ3ByQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 QUNBOC9GOTcxNEFFNkFBRkExMUVFQTIyMUU3MkVDNEY5QUUwMi96bU53bVgyOUU5 SU9Yc1lXVzFxZTQ2S0NwckEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBAjwVuvtMI9ESIRBpikMz9zZQ/28B1YJN7o1bI97J2lhjsxzCL7bwT K4RVNqnobYesw8c5FZIfSpkwEbmandIo0sAdGnT/J/1ouwap/A52bKY0uaWny/QR J3Ihjtsa20QhxH7R9J2Y+to03ocZrLNA5l7FNXij6IMt+ZygCiqjEvbNwE6nap9p 62ceKnjOf/VTOhuSsV6KxWz/drrFFmaH3t0AozuQNbXwX/pVnh1KT6eFDlk8/rx5 0UKb8+LYM8zmt1EPbTei81piAYZFY1OqkDfB8058ROltr1IOFjW/iqCB/DfNRAhh O/zF1XT5AQySq270if/2rfYd9IsIkEq4 -----END CERTIFICATE-----Generated at Fri Apr 4 18:16:55 2025 by rpki-client