$ rpki-client -vvf rpki.apnic.net/member_repository/A917CB63/E1B054FC1DA711E2B688EBA108B02CD2/ZuoPg73TYyv_GUALOhum_t_8VYc.mft File: ZuoPg73TYyv_GUALOhum_t_8VYc.mft (raw, json) Hash identifier: Linb+ooRXu0+XPuZ5RFiXBVL6sZKZ4tC7K2F54ZP4XA= Subject key identifier: 9B:65:5F:5D:15:FE:33:92:A8:28:EC:36:FB:06:6F:CC:5E:4E:22:7C Authority key identifier: 66:EA:0F:83:BD:D3:63:2B:FF:19:40:0B:3A:1B:A6:FE:DF:FC:55:87 Certificate issuer: /CN=A917CB63/serialNumber=66EA0F83BDD3632BFF19400B3A1BA6FEDFFC5587 Certificate serial: 3483 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ZuoPg73TYyv_GUALOhum_t_8VYc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917CB63/E1B054FC1DA711E2B688EBA108B02CD2/ZuoPg73TYyv_GUALOhum_t_8VYc.mft Manifest number: 3477 Signing time: Fri 04 Apr 2025 15:16:45 +0000 Manifest this update: Fri 04 Apr 2025 15:16:45 +0000 Manifest next update: Fri 11 Apr 2025 15:16:45 +0000 Files and hashes: 1: ZuoPg73TYyv_GUALOhum_t_8VYc.crl (hash: h1MQhNC6VEJr3r9JKCVOyMb2Gasq/6T/MpfisyQaURk=) 2: 1190361AAF1B11E7B89F3883C4F9AE02.roa (hash: Yhv6SLVoZ0lTl3VQ8oBTiyjwIMld5GdKG4lLfPu9iQU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917CB63/E1B054FC1DA711E2B688EBA108B02CD2/ZuoPg73TYyv_GUALOhum_t_8VYc.crl rsync://rpki.apnic.net/member_repository/A917CB63/E1B054FC1DA711E2B688EBA108B02CD2/ZuoPg73TYyv_GUALOhum_t_8VYc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ZuoPg73TYyv_GUALOhum_t_8VYc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 11 Apr 2025 15:16:44 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13443 (0x3483) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917CB63 Validity Not Before: Apr 4 15:16:45 2025 GMT Not After : Apr 11 15:16:45 2025 GMT Subject: CN=67eff7dd-0f44 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ad:25:24:f5:b1:4d:59:40:86:a6:7b:45:b0:d1: c4:55:c1:31:f4:f4:fb:15:d5:0f:83:a2:6a:7a:6a: 1f:21:a7:6a:f0:52:7a:c5:f4:57:33:34:c7:13:0b: d9:23:fc:36:5b:78:6b:61:41:91:1c:47:b6:81:31: 89:f5:4d:89:97:95:5f:cb:82:be:4d:59:92:b5:95: 0c:26:8d:7a:f4:36:15:fc:c7:c4:cc:f7:ac:5f:32: f7:f4:a7:66:e4:47:eb:9d:69:55:ec:cc:cb:89:66: d8:36:b3:2c:e6:a1:88:5f:87:48:26:f1:b5:94:64: 64:66:a1:0f:c9:fb:47:40:a6:a1:51:9f:c3:53:0c: b4:b3:fe:d1:1e:06:cb:96:42:96:f7:50:6a:27:ac: de:20:03:0b:96:c6:e0:ed:58:ad:d1:81:40:cc:8c: 5b:60:09:51:6c:b5:a9:42:40:e5:6c:cb:19:eb:ea: 1c:3c:db:0b:a0:08:cc:be:13:b0:e8:dd:d3:69:f7: a2:55:71:50:65:22:ec:dd:a1:d6:f0:b7:75:8d:e4: 51:1c:6d:9e:f5:7f:72:b9:e4:89:69:ef:8a:2b:a9: 17:6e:96:d3:b2:dc:c1:bc:19:63:86:66:6c:11:f0: 7d:35:d7:7e:24:d6:46:c1:0d:ff:f9:14:b1:90:0f: da:bd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9B:65:5F:5D:15:FE:33:92:A8:28:EC:36:FB:06:6F:CC:5E:4E:22:7C X509v3 Authority Key Identifier: keyid:66:EA:0F:83:BD:D3:63:2B:FF:19:40:0B:3A:1B:A6:FE:DF:FC:55:87 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917CB63/E1B054FC1DA711E2B688EBA108B02CD2/ZuoPg73TYyv_GUALOhum_t_8VYc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ZuoPg73TYyv_GUALOhum_t_8VYc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917CB63/E1B054FC1DA711E2B688EBA108B02CD2/ZuoPg73TYyv_GUALOhum_t_8VYc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 2f:a8:8e:ac:6f:2e:f3:16:76:3c:c3:11:0b:35:20:ba:70:02: 8c:86:3c:af:de:29:0e:04:6b:51:8b:4a:0d:f9:db:94:13:3e: cc:60:b9:62:7c:dd:7f:9a:2a:4f:86:46:86:ac:4d:b3:66:3f: 5e:a5:22:a5:b1:35:be:a0:fe:36:5d:94:1e:31:46:f4:85:b4: ed:df:2d:e5:d6:2c:4a:e7:b2:04:e7:3e:14:9f:63:b6:f2:41: 1f:2b:3f:52:60:d8:c7:c0:ab:68:95:88:65:89:20:2a:59:76: 6e:05:54:15:4f:ce:68:5b:7a:ca:3d:51:d2:b1:08:28:65:a3: e1:70:8c:7c:03:32:7c:67:b5:4c:13:e1:e9:7e:4a:cb:e9:19: b3:e7:ed:73:cd:53:d8:78:7e:da:1d:df:7c:91:ce:f4:1e:db: 2b:61:af:25:a1:2c:e1:e2:b9:cb:54:1e:a4:13:fb:96:f5:ec: 10:b8:20:88:96:78:0c:35:d1:23:70:d0:50:35:74:58:af:04: 6d:b5:68:22:51:4e:b7:7a:28:d3:4a:cc:fb:0c:02:be:14:0c: bd:00:a9:05:e5:6a:11:62:b6:1d:11:fe:4f:08:e6:7e:e6:1f: a3:1b:28:f3:d3:77:e2:35:99:de:7c:6c:77:c6:32:54:c2:11: b7:ca:d8:a0 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICNIMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0NCNjMxMTAvBgNVBAUTKDY2RUEwRjgzQkREMzYzMkJGRjE5NDAwQjNBMUJBNkZF REZGQzU1ODcwHhcNMjUwNDA0MTUxNjQ1WhcNMjUwNDExMTUxNjQ1WjAYMRYwFAYD VQQDEw02N2VmZjdkZC0wZjQ0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArSUk9bFNWUCGpntFsNHEVcEx9PT7FdUPg6JqemofIadq8FJ6xfRXMzTHEwvZ I/w2W3hrYUGRHEe2gTGJ9U2Jl5Vfy4K+TVmStZUMJo169DYV/MfEzPesXzL39Kdm 5EfrnWlV7MzLiWbYNrMs5qGIX4dIJvG1lGRkZqEPyftHQKahUZ/DUwy0s/7RHgbL lkKW91BqJ6zeIAMLlsbg7Vit0YFAzIxbYAlRbLWpQkDlbMsZ6+ocPNsLoAjMvhOw 6N3TafeiVXFQZSLs3aHW8Ld1jeRRHG2e9X9yueSJae+KK6kXbpbTstzBvBljhmZs EfB9Ndd+JNZGwQ3/+RSxkA/avQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJtlX10V /jOSqCjsNvsGb8xeTiJ8MB8GA1UdIwQYMBaAFGbqD4O902Mr/xlACzobpv7f/FWH MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3Q0I2My9FMUIwNTRGQzFE QTcxMUUyQjY4OEVCQTEwOEIwMkNEMi9adW9QZzczVFl5dl9HVUFMT2h1bV90XzhW WWMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1p1b1BnNzNUWXl2X0dVQUxPaHVtX3RfOFZZYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 Q0I2My9FMUIwNTRGQzFEQTcxMUUyQjY4OEVCQTEwOEIwMkNEMi9adW9QZzczVFl5 dl9HVUFMT2h1bV90XzhWWWMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAvqI6sby7zFnY8wxELNSC6cAKMhjyv3ikOBGtRi0oN+duUEz7MYLli fN1/mipPhkaGrE2zZj9epSKlsTW+oP42XZQeMUb0hbTt3y3l1ixK57IE5z4Un2O2 8kEfKz9SYNjHwKtolYhliSAqWXZuBVQVT85oW3rKPVHSsQgoZaPhcIx8AzJ8Z7VM E+HpfkrL6Rmz5+1zzVPYeH7aHd98kc70HtsrYa8loSzh4rnLVB6kE/uW9ewQuCCI lngMNdEjcNBQNXRYrwRttWgiUU63eijTSsz7DAK+FAy9AKkF5WoRYrYdEf5PCOZ+ 5h+jGyjz03fiNZnefGx3xjJUwhG3ytig -----END CERTIFICATE-----Generated at Sun Apr 6 00:04:26 2025 by rpki-client