$ rpki-client -vvf rpki.apnic.net/member_repository/A91A4026/BC74C10A090411EAB20D5911C4F9AE02/zfT3_b4nSk88Ji92EXceUi2uRfI.mft File: zfT3_b4nSk88Ji92EXceUi2uRfI.mft (raw, json) Hash identifier: 31DccPmzsLn6RlnV3T0QTkBkMjinPuinau2pDNuS8ME= Subject key identifier: 2C:BF:AC:B5:56:8F:DB:67:B7:08:2E:3A:8F:18:19:A2:DC:0A:73:6A Authority key identifier: CD:F4:F7:FD:BE:27:4A:4F:3C:26:2F:76:11:77:1E:52:2D:AE:45:F2 Certificate issuer: /CN=A91A4026/serialNumber=CDF4F7FDBE274A4F3C262F7611771E522DAE45F2 Certificate serial: 0C20 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/zfT3_b4nSk88Ji92EXceUi2uRfI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A4026/BC74C10A090411EAB20D5911C4F9AE02/zfT3_b4nSk88Ji92EXceUi2uRfI.mft Manifest number: 0C17 Signing time: Fri 04 Apr 2025 18:42:29 +0000 Manifest this update: Fri 04 Apr 2025 18:42:29 +0000 Manifest next update: Fri 11 Apr 2025 18:42:29 +0000 Files and hashes: 1: zfT3_b4nSk88Ji92EXceUi2uRfI.crl (hash: 9SyTCiazlA6u2WWJPPBg3vxQ1CYj9VCo4ZbzbwQaMgo=) 2: 76DB2480090511EA8FFC6812C4F9AE02.roa (hash: O2LLRL8b/tm+vv16MRK3yWBKThY2uxl21s2tEaGgYZA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A4026/BC74C10A090411EAB20D5911C4F9AE02/zfT3_b4nSk88Ji92EXceUi2uRfI.crl rsync://rpki.apnic.net/member_repository/A91A4026/BC74C10A090411EAB20D5911C4F9AE02/zfT3_b4nSk88Ji92EXceUi2uRfI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/zfT3_b4nSk88Ji92EXceUi2uRfI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 11 Apr 2025 18:42:28 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3104 (0xc20) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A4026 Validity Not Before: Apr 4 18:42:29 2025 GMT Not After : Apr 11 18:42:29 2025 GMT Subject: CN=67f02815-eddb Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a0:08:7f:98:0b:9e:4d:8c:48:d4:c4:8e:cd:36: 3f:4b:9a:ad:ca:51:cd:58:31:1c:4e:d5:c9:10:2a: 79:5b:84:f1:ce:b3:c2:31:34:a8:50:17:1e:54:34: 70:22:57:b5:ca:0c:49:be:9b:4e:13:3f:a4:81:a4: fc:1c:24:1c:46:d1:41:5a:f9:81:2f:30:a7:8d:84: 90:c6:00:3d:e3:5c:82:67:67:2a:b1:8f:f3:c8:04: 6c:56:fe:a1:87:54:2c:0c:98:4c:3c:95:aa:04:80: 44:65:7a:e5:02:a2:1e:ce:4f:74:d9:89:73:bf:bb: 0d:6b:f0:03:68:9a:91:69:28:f8:74:e6:46:3c:e5: 0f:65:69:8c:f3:cb:18:e1:15:db:d5:f5:f3:52:48: c8:18:a6:5c:79:16:74:57:a4:58:52:d4:67:cd:21: 44:80:9e:a7:0a:cd:f5:51:90:22:b8:7c:92:bf:aa: 90:80:9a:66:2c:6b:04:73:ac:8e:98:3b:b8:23:de: 7f:52:74:27:bb:36:65:99:b2:53:2e:6e:8b:44:3f: 8f:30:88:6d:7c:c8:12:56:73:3d:ee:07:70:53:36: 10:c9:54:04:ec:f6:5b:0d:e8:a9:1b:1a:74:73:60: 78:5d:5d:22:fe:42:e3:14:c6:e0:88:6f:86:0e:c3: fa:0d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2C:BF:AC:B5:56:8F:DB:67:B7:08:2E:3A:8F:18:19:A2:DC:0A:73:6A X509v3 Authority Key Identifier: keyid:CD:F4:F7:FD:BE:27:4A:4F:3C:26:2F:76:11:77:1E:52:2D:AE:45:F2 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A4026/BC74C10A090411EAB20D5911C4F9AE02/zfT3_b4nSk88Ji92EXceUi2uRfI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/zfT3_b4nSk88Ji92EXceUi2uRfI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A4026/BC74C10A090411EAB20D5911C4F9AE02/zfT3_b4nSk88Ji92EXceUi2uRfI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 35:65:d1:f0:01:59:62:5e:f4:a4:e7:9f:a0:20:37:4c:d6:ff: d9:8f:50:98:92:b5:2f:df:c5:cd:b4:95:38:29:e5:8c:3f:54: cb:68:0a:cf:b7:13:3d:dc:a4:28:18:e0:bf:25:15:03:72:22: 9b:24:5e:8e:cd:3f:0d:40:c4:d0:e2:03:73:60:ce:5d:1e:4f: 80:45:f0:58:dd:e1:5e:dd:5c:50:22:d7:60:50:1f:bf:d0:c5: f5:e7:8f:e6:a4:0f:ac:be:92:a6:07:79:78:ca:c4:ac:f6:61: c0:22:ab:19:72:da:bf:b8:3a:94:37:cf:6a:3f:57:2a:46:b7: 7a:d6:09:f0:80:02:a6:bb:87:6b:13:18:56:3f:d8:df:71:97: 81:aa:04:02:71:1b:c7:db:3b:d6:06:81:24:ad:f6:ce:07:bf: 48:4b:b1:49:0e:60:a5:46:a5:fb:39:fb:16:ea:b7:35:dc:4f: 20:6f:31:49:b6:aa:48:0d:8a:4e:c0:bd:d1:04:41:31:b9:15: c3:98:a3:2e:eb:08:2d:c6:0b:fc:3b:9b:88:04:e9:7b:19:6e: 48:db:62:0e:61:b0:21:4e:96:29:94:76:ce:eb:b2:74:96:89: 57:44:ee:bc:cb:5b:b9:e0:92:7a:c2:92:2d:63:59:11:fd:7b: 91:da:e3:bd -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDCAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTQwMjYxMTAvBgNVBAUTKENERjRGN0ZEQkUyNzRBNEYzQzI2MkY3NjExNzcxRTUy MkRBRTQ1RjIwHhcNMjUwNDA0MTg0MjI5WhcNMjUwNDExMTg0MjI5WjAYMRYwFAYD VQQDEw02N2YwMjgxNS1lZGRiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAoAh/mAueTYxI1MSOzTY/S5qtylHNWDEcTtXJECp5W4TxzrPCMTSoUBceVDRw Ile1ygxJvptOEz+kgaT8HCQcRtFBWvmBLzCnjYSQxgA941yCZ2cqsY/zyARsVv6h h1QsDJhMPJWqBIBEZXrlAqIezk902Ylzv7sNa/ADaJqRaSj4dOZGPOUPZWmM88sY 4RXb1fXzUkjIGKZceRZ0V6RYUtRnzSFEgJ6nCs31UZAiuHySv6qQgJpmLGsEc6yO mDu4I95/UnQnuzZlmbJTLm6LRD+PMIhtfMgSVnM97gdwUzYQyVQE7PZbDeipGxp0 c2B4XV0i/kLjFMbgiG+GDsP6DQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFCy/rLVW j9tntwguOo8YGaLcCnNqMB8GA1UdIwQYMBaAFM309/2+J0pPPCYvdhF3HlItrkXy MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBNDAyNi9CQzc0QzEwQTA5 MDQxMUVBQjIwRDU5MTFDNEY5QUUwMi96ZlQzX2I0blNrODhKaTkyRVhjZVVpMnVS ZkkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3pmVDNfYjRuU2s4OEppOTJFWGNlVWkydVJmSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB NDAyNi9CQzc0QzEwQTA5MDQxMUVBQjIwRDU5MTFDNEY5QUUwMi96ZlQzX2I0blNr ODhKaTkyRVhjZVVpMnVSZkkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA1ZdHwAVliXvSk55+gIDdM1v/Zj1CYkrUv38XNtJU4KeWMP1TLaArP txM93KQoGOC/JRUDciKbJF6OzT8NQMTQ4gNzYM5dHk+ARfBY3eFe3VxQItdgUB+/ 0MX154/mpA+svpKmB3l4ysSs9mHAIqsZctq/uDqUN89qP1cqRrd61gnwgAKmu4dr ExhWP9jfcZeBqgQCcRvH2zvWBoEkrfbOB79IS7FJDmClRqX7OfsW6rc13E8gbzFJ tqpIDYpOwL3RBEExuRXDmKMu6wgtxgv8O5uIBOl7GW5I22IOYbAhTpYplHbO67J0 lolXRO68y1u54JJ6wpItY1kR/XuR2uO9 -----END CERTIFICATE-----Generated at Fri Apr 4 21:55:40 2025 by rpki-client