$ rpki-client -vvf rpki.apnic.net/member_repository/A91A6CD6/65E6DBD69CA911EB8AFF0F37C4F9AE02/zFYVfHLcxpczY2dD21AIdZMtpB8.mft File: zFYVfHLcxpczY2dD21AIdZMtpB8.mft (raw, json) Hash identifier: NxCOZ7V4+CqvBr6yr4N8jcuuWvC6Q5dxTUWYCxIqUdo= Subject key identifier: 60:B5:4D:43:5E:8C:9C:BB:0C:D2:4B:3B:00:F3:E2:75:C4:73:66:74 Authority key identifier: CC:56:15:7C:72:DC:C6:97:33:63:67:43:DB:50:08:75:93:2D:A4:1F Certificate issuer: /CN=A91A6CD6/serialNumber=CC56157C72DCC69733636743DB500875932DA41F Certificate serial: 060F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/zFYVfHLcxpczY2dD21AIdZMtpB8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A6CD6/65E6DBD69CA911EB8AFF0F37C4F9AE02/zFYVfHLcxpczY2dD21AIdZMtpB8.mft Manifest number: 0609 Signing time: Mon 14 Apr 2025 22:34:21 +0000 Manifest this update: Mon 14 Apr 2025 22:34:21 +0000 Manifest next update: Mon 21 Apr 2025 22:34:21 +0000 Files and hashes: 1: zFYVfHLcxpczY2dD21AIdZMtpB8.crl (hash: xn+v/81LoDW7TyOUZYNNK8hDgG5SLL7ABhpdV6HvaIU=) 2: A210E7309CAB11EBAB87D43AC4F9AE02.roa (hash: G4Iff29ujs2wSeu37iPDIUnNuvGFMJft5LK0116SXEs=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A6CD6/65E6DBD69CA911EB8AFF0F37C4F9AE02/zFYVfHLcxpczY2dD21AIdZMtpB8.crl rsync://rpki.apnic.net/member_repository/A91A6CD6/65E6DBD69CA911EB8AFF0F37C4F9AE02/zFYVfHLcxpczY2dD21AIdZMtpB8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/zFYVfHLcxpczY2dD21AIdZMtpB8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 21 Apr 2025 22:34:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1551 (0x60f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A6CD6, serialNumber=CC56157C72DCC69733636743DB500875932DA41F Validity Not Before: Apr 14 22:34:21 2025 GMT Not After : Apr 21 22:34:21 2025 GMT Subject: CN=67fd8d6d-7269 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:da:a2:43:b6:45:72:0f:80:fd:c9:34:2e:11:27: 47:d5:01:59:4e:27:37:b9:72:1e:fc:a1:23:d2:82: a3:70:af:59:b0:8f:6d:49:25:32:f6:d7:2a:da:9f: ea:11:ff:ff:fd:78:94:a7:62:02:c3:12:fd:89:29: 87:48:7c:9a:80:ca:38:71:ba:08:5f:2f:22:69:ed: 66:c6:ef:e2:25:31:8f:dc:4f:6d:37:fb:b8:57:6a: 99:c1:4c:a2:df:68:ef:0b:94:ff:8d:f7:4a:ee:98: 23:fe:9c:cf:33:db:d8:aa:24:d0:af:cf:e8:34:1b: 5b:d9:7c:ce:e4:b1:98:eb:ae:f2:31:e4:f0:a1:ca: 22:67:32:53:5f:53:f0:2c:28:e9:dd:5a:91:96:9c: 45:df:07:6e:62:05:a8:1f:2a:e4:84:1e:2b:84:7d: 02:bc:2b:9b:96:a6:63:6f:84:96:9b:a4:45:65:6f: 02:ea:12:16:df:ab:a6:6f:9f:97:4c:ea:de:b3:0a: 6f:d5:79:eb:20:80:36:75:fa:7a:01:6b:6e:f8:f9: 6a:8f:3b:ca:0e:c4:bf:e2:13:bb:20:30:33:75:77: 88:bb:3c:1b:39:29:89:56:45:19:0f:59:b6:b0:f5: 07:c0:25:5a:53:b5:0b:5e:27:e6:d9:66:af:95:be: 7c:a5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 60:B5:4D:43:5E:8C:9C:BB:0C:D2:4B:3B:00:F3:E2:75:C4:73:66:74 X509v3 Authority Key Identifier: keyid:CC:56:15:7C:72:DC:C6:97:33:63:67:43:DB:50:08:75:93:2D:A4:1F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A6CD6/65E6DBD69CA911EB8AFF0F37C4F9AE02/zFYVfHLcxpczY2dD21AIdZMtpB8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/zFYVfHLcxpczY2dD21AIdZMtpB8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A6CD6/65E6DBD69CA911EB8AFF0F37C4F9AE02/zFYVfHLcxpczY2dD21AIdZMtpB8.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 72:a3:3b:89:d9:fe:d7:d7:25:77:f7:75:12:9f:bc:98:60:c2: 1e:c5:50:ca:2e:49:00:32:85:03:7d:05:8f:36:65:3a:be:cd: 93:44:27:16:03:03:05:b7:74:e3:3f:59:68:d6:ac:8a:1b:50: 4c:86:d0:fd:2b:2a:2d:84:d0:ea:02:84:a5:fe:26:e2:73:ff: 9b:c5:85:8a:f2:5a:a1:0a:ab:e5:3b:02:5f:26:2d:40:31:8d: 12:6b:54:8d:97:76:02:2e:92:6f:26:9d:73:2c:69:5f:19:aa: a5:ce:19:ba:35:ee:6f:b5:bd:da:09:01:6c:fb:91:b8:ab:eb: bf:ae:5a:83:c7:9e:fc:91:60:52:b7:4c:0b:ec:b1:a2:d7:4b: 34:4d:eb:af:c0:ca:1a:b8:b0:78:82:b7:43:20:75:ef:c8:25: bd:25:40:77:49:86:1a:19:ee:8e:93:7f:31:6c:19:e0:00:b1: 9f:00:19:30:1e:e5:7f:31:0e:5f:15:e8:bb:7b:8d:3b:ae:57: bb:6a:7c:fe:f7:e9:36:0f:e6:92:20:d3:41:4d:bc:71:5d:22: ce:cf:d3:e1:47:fe:c9:bb:a4:ad:b6:2d:56:2b:82:0a:fc:b9: 20:8e:08:22:7e:ad:a6:a5:3a:01:39:b6:63:25:74:e8:44:2f: a6:9f:26:96 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBg8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTZDRDYxMTAvBgNVBAUTKENDNTYxNTdDNzJEQ0M2OTczMzYzNjc0M0RCNTAwODc1 OTMyREE0MUYwHhcNMjUwNDE0MjIzNDIxWhcNMjUwNDIxMjIzNDIxWjAYMRYwFAYD VQQDEw02N2ZkOGQ2ZC03MjY5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA2qJDtkVyD4D9yTQuESdH1QFZTic3uXIe/KEj0oKjcK9ZsI9tSSUy9tcq2p/q Ef///XiUp2ICwxL9iSmHSHyagMo4cboIXy8iae1mxu/iJTGP3E9tN/u4V2qZwUyi 32jvC5T/jfdK7pgj/pzPM9vYqiTQr8/oNBtb2XzO5LGY667yMeTwocoiZzJTX1Pw LCjp3VqRlpxF3wduYgWoHyrkhB4rhH0CvCublqZjb4SWm6RFZW8C6hIW36umb5+X TOreswpv1XnrIIA2dfp6AWtu+PlqjzvKDsS/4hO7IDAzdXeIuzwbOSmJVkUZD1m2 sPUHwCVaU7ULXifm2Wavlb58pQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFGC1TUNe jJy7DNJLOwDz4nXEc2Z0MB8GA1UdIwQYMBaAFMxWFXxy3MaXM2NnQ9tQCHWTLaQf MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBNkNENi82NUU2REJENjlD QTkxMUVCOEFGRjBGMzdDNEY5QUUwMi96RllWZkhMY3hwY3pZMmREMjFBSWRaTXRw QjguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3pGWVZmSExjeHBjelkyZEQyMUFJZFpNdHBCOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB NkNENi82NUU2REJENjlDQTkxMUVCOEFGRjBGMzdDNEY5QUUwMi96RllWZkhMY3hw Y3pZMmREMjFBSWRaTXRwQjgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQByozuJ2f7X1yV393USn7yYYMIexVDKLkkAMoUDfQWPNmU6vs2TRCcW AwMFt3TjP1lo1qyKG1BMhtD9KyothNDqAoSl/ibic/+bxYWK8lqhCqvlOwJfJi1A MY0Sa1SNl3YCLpJvJp1zLGlfGaqlzhm6Ne5vtb3aCQFs+5G4q+u/rlqDx578kWBS t0wL7LGi10s0TeuvwMoauLB4grdDIHXvyCW9JUB3SYYaGe6Ok38xbBngALGfABkw HuV/MQ5fFei7e407rle7anz+9+k2D+aSINNBTbxxXSLOz9PhR/7Ju6Stti1WK4IK /Lkgjggifq2mpToBObZjJXToRC+mnyaW -----END CERTIFICATE-----Generated at Wed Apr 16 17:16:37 2025 by rpki-client