$ rpki-client -vvf rpki.apnic.net/member_repository/A91A12C4/FBF14E726C1711EFBDBFD50BC4F9AE02/ZsWxkEs1xH2UUI7Aoazag2je9Kk.mft File: ZsWxkEs1xH2UUI7Aoazag2je9Kk.mft (raw, json) Hash identifier: CX/xRG+9OcRXGfemfhrMnmm7gri1B2YuAdW4TgxMUIo= Subject key identifier: 39:04:40:3B:F7:D5:9D:1E:C0:88:94:EA:85:00:F8:46:32:E1:B1:6C Authority key identifier: 66:C5:B1:90:4B:35:C4:7D:94:50:8E:C0:A1:AC:DA:83:68:DE:F4:A9 Certificate issuer: /CN=A91A12C4/serialNumber=66C5B1904B35C47D94508EC0A1ACDA8368DEF4A9 Certificate serial: 71 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ZsWxkEs1xH2UUI7Aoazag2je9Kk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A12C4/FBF14E726C1711EFBDBFD50BC4F9AE02/ZsWxkEs1xH2UUI7Aoazag2je9Kk.mft Manifest number: 71 Signing time: Fri 11 Apr 2025 06:02:30 +0000 Manifest this update: Fri 11 Apr 2025 06:02:30 +0000 Manifest next update: Fri 18 Apr 2025 06:02:30 +0000 Files and hashes: 1: ZsWxkEs1xH2UUI7Aoazag2je9Kk.crl (hash: 9aoaxitl68H3BImHbQ6yg5dEnmXpWW0TmEd/hviVsgo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A12C4/FBF14E726C1711EFBDBFD50BC4F9AE02/ZsWxkEs1xH2UUI7Aoazag2je9Kk.crl rsync://rpki.apnic.net/member_repository/A91A12C4/FBF14E726C1711EFBDBFD50BC4F9AE02/ZsWxkEs1xH2UUI7Aoazag2je9Kk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ZsWxkEs1xH2UUI7Aoazag2je9Kk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 18 Apr 2025 06:02:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 113 (0x71) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A12C4, serialNumber=66C5B1904B35C47D94508EC0A1ACDA8368DEF4A9 Validity Not Before: Apr 11 06:02:30 2025 GMT Not After : Apr 18 06:02:30 2025 GMT Subject: CN=67f8b076-01a0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9d:00:63:30:70:96:5a:bf:4e:ae:cc:71:10:f1: c5:26:a2:05:b2:ed:e7:5f:02:87:be:e0:e0:7d:a5: 06:f5:cc:f3:9e:f6:21:73:bf:ac:37:89:bf:b3:9f: b2:b0:6c:44:0a:55:83:8f:b3:db:66:5f:78:80:08: 8d:dc:fd:2d:11:88:fb:73:86:1c:67:d8:77:f9:06: ce:5f:b8:b5:4c:84:8e:46:6a:12:44:77:93:61:23: db:f0:e2:b2:81:08:b7:29:54:62:90:08:63:1a:b7: 84:e7:5c:0c:c3:b1:89:a2:c2:00:02:51:f7:11:5a: 12:e4:e3:f7:b9:2f:cf:ac:8d:20:36:6f:d4:53:24: f7:ec:d0:d9:28:5c:ea:28:4d:4d:24:3b:4a:02:87: 1d:34:e3:e0:b9:56:37:50:53:30:e4:d8:e5:bd:c3: 02:33:45:db:86:ee:91:17:8b:79:97:83:ae:50:10: d6:13:48:9d:75:7a:ca:48:a2:d8:df:0f:0a:63:df: 40:d4:c7:54:ee:e0:f0:99:a2:08:6a:06:fb:43:17: 8c:fb:fd:36:80:1c:df:81:8f:79:fb:97:02:55:cd: ff:1a:3c:3a:f3:cb:cc:43:e8:12:36:de:51:fb:a8: 4b:7c:bd:77:ad:00:50:ef:bb:c8:d4:21:f2:01:80: 32:21 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 39:04:40:3B:F7:D5:9D:1E:C0:88:94:EA:85:00:F8:46:32:E1:B1:6C X509v3 Authority Key Identifier: keyid:66:C5:B1:90:4B:35:C4:7D:94:50:8E:C0:A1:AC:DA:83:68:DE:F4:A9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A12C4/FBF14E726C1711EFBDBFD50BC4F9AE02/ZsWxkEs1xH2UUI7Aoazag2je9Kk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ZsWxkEs1xH2UUI7Aoazag2je9Kk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A12C4/FBF14E726C1711EFBDBFD50BC4F9AE02/ZsWxkEs1xH2UUI7Aoazag2je9Kk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 3a:51:4e:a8:3a:ba:41:b5:c9:26:ad:f5:7f:f8:0d:3f:03:2d: 3a:eb:94:a1:b9:9f:fe:f7:66:2f:ef:19:e9:a0:7a:7a:d9:3e: 8f:92:f3:17:f9:74:12:fb:86:d3:0a:41:9b:19:01:70:ac:85: b2:58:1e:2b:4d:9a:93:6f:45:b1:27:5f:35:53:73:4e:9e:d5: 01:93:8a:73:e1:ec:19:4e:c1:26:a7:67:24:7c:b7:0f:97:60: 26:5a:4b:c1:a5:59:8f:0e:36:a7:26:8c:01:28:84:87:66:e8: 1c:af:9e:04:34:0d:c8:f1:af:12:24:13:95:cd:07:78:08:7f: 19:4b:79:4d:75:79:a4:2a:96:2c:16:c9:91:12:74:00:d2:f9: d7:aa:11:ee:89:0e:46:58:32:29:24:52:b9:0d:13:e2:a6:1d: d5:da:72:0d:3b:bb:f9:06:fc:eb:5b:9f:f3:1c:21:90:07:5a: f0:04:01:ee:ed:62:40:40:49:f5:71:c1:66:17:0b:cf:53:d0: 94:a6:67:bf:2a:d9:37:71:c1:a0:5c:84:d7:db:d1:fb:ee:c1: 33:22:10:f8:db:9d:5f:a6:01:75:e7:87:9c:79:e5:a9:40:f4: 24:5c:8a:43:23:fd:9e:ab:a1:d4:fb:25:15:5a:43:47:71:44: df:35:d4:b2 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBcTANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFB MTJDNDExMC8GA1UEBRMoNjZDNUIxOTA0QjM1QzQ3RDk0NTA4RUMwQTFBQ0RBODM2 OERFRjRBOTAeFw0yNTA0MTEwNjAyMzBaFw0yNTA0MTgwNjAyMzBaMBgxFjAUBgNV BAMTDTY3ZjhiMDc2LTAxYTAwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCdAGMwcJZav06uzHEQ8cUmogWy7edfAoe+4OB9pQb1zPOe9iFzv6w3ib+zn7Kw bEQKVYOPs9tmX3iACI3c/S0RiPtzhhxn2Hf5Bs5fuLVMhI5GahJEd5NhI9vw4rKB CLcpVGKQCGMat4TnXAzDsYmiwgACUfcRWhLk4/e5L8+sjSA2b9RTJPfs0NkoXOoo TU0kO0oChx004+C5VjdQUzDk2OW9wwIzRduG7pEXi3mXg65QENYTSJ11espIotjf Dwpj30DUx1Tu4PCZoghqBvtDF4z7/TaAHN+Bj3n7lwJVzf8aPDrzy8xD6BI23lH7 qEt8vXetAFDvu8jUIfIBgDIhAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUOQRAO/fV nR7AiJTqhQD4RjLhsWwwHwYDVR0jBBgwFoAUZsWxkEs1xH2UUI7Aoazag2je9Kkw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUExMkM0L0ZCRjE0RTcyNkMx NzExRUZCREJGRDUwQkM0RjlBRTAyL1pzV3hrRXMxeEgyVVVJN0FvYXphZzJqZTlL ay5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvWnNXeGtFczF4SDJVVUk3QW9hemFnMmplOUtrLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUEx MkM0L0ZCRjE0RTcyNkMxNzExRUZCREJGRDUwQkM0RjlBRTAyL1pzV3hrRXMxeEgy VVVJN0FvYXphZzJqZTlLay5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBADpRTqg6ukG1ySat9X/4DT8DLTrrlKG5n/73Zi/vGemgenrZPo+S8xf5 dBL7htMKQZsZAXCshbJYHitNmpNvRbEnXzVTc06e1QGTinPh7BlOwSanZyR8tw+X YCZaS8GlWY8ONqcmjAEohIdm6ByvngQ0DcjxrxIkE5XNB3gIfxlLeU11eaQqliwW yZESdADS+deqEe6JDkZYMikkUrkNE+KmHdXacg07u/kG/Otbn/McIZAHWvAEAe7t YkBASfVxwWYXC89T0JSmZ78q2TdxwaBchNfb0fvuwTMiEPjbnV+mAXXnh5x55alA 9CRcikMj/Z6rodT7JRVaQ0dxRN811LI= -----END CERTIFICATE-----Generated at Sat Apr 12 18:54:17 2025 by rpki-client