$ rpki-client -vvf rpki.apnic.net/member_repository/A91B8D56/1BC8E1B6630A11ECAAA1414EC4F9AE02/zxWtEC7t37zKaFhab1w4F_6KGNU.mft File: zxWtEC7t37zKaFhab1w4F_6KGNU.mft (raw, json) Hash identifier: ZaDgCu0slEv7SDxs6/xoAmLoOFJVa8Q7MxhOj97Qr3k= Subject key identifier: 75:B1:27:74:25:38:6B:B5:4A:A5:43:65:BD:B5:1F:84:67:C3:AE:FE Authority key identifier: CF:15:AD:10:2E:ED:DF:BC:CA:68:58:5A:6F:5C:38:17:FE:8A:18:D5 Certificate issuer: /CN=A91B8D56/serialNumber=CF15AD102EEDDFBCCA68585A6F5C3817FE8A18D5 Certificate serial: 041C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/zxWtEC7t37zKaFhab1w4F_6KGNU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B8D56/1BC8E1B6630A11ECAAA1414EC4F9AE02/zxWtEC7t37zKaFhab1w4F_6KGNU.mft Manifest number: 0414 Signing time: Thu 03 Apr 2025 00:27:46 +0000 Manifest this update: Thu 03 Apr 2025 00:27:45 +0000 Manifest next update: Thu 10 Apr 2025 00:27:45 +0000 Files and hashes: 1: zxWtEC7t37zKaFhab1w4F_6KGNU.crl (hash: XzKlp5JQxLp8c8sPBiVvk4udthyba0QamCBeNMoXgfA=) 2: 70638510630E11ECB30DB557C4F9AE02.roa (hash: ZALlhJBTLI4BjBMPBnHu5MEZWPef4Y4mZVh7l9q61P0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B8D56/1BC8E1B6630A11ECAAA1414EC4F9AE02/zxWtEC7t37zKaFhab1w4F_6KGNU.crl rsync://rpki.apnic.net/member_repository/A91B8D56/1BC8E1B6630A11ECAAA1414EC4F9AE02/zxWtEC7t37zKaFhab1w4F_6KGNU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/zxWtEC7t37zKaFhab1w4F_6KGNU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 10 Apr 2025 00:27:45 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1052 (0x41c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B8D56 Validity Not Before: Apr 3 00:27:45 2025 GMT Not After : Apr 10 00:27:45 2025 GMT Subject: CN=67edd602-9786 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ca:70:67:7e:41:99:d7:e9:ae:5a:0a:b7:2c:84: ea:70:10:b8:a8:82:af:71:c3:a7:20:d5:c7:22:8d: fc:2c:c3:fd:29:64:b9:3f:c4:8d:71:09:64:e2:32: 95:a2:f7:f7:c8:ad:93:5a:61:2c:4d:af:b5:41:15: 5d:24:78:62:a7:ef:11:5a:7b:91:35:fa:b7:b8:05: 71:b4:aa:18:66:20:87:ef:12:98:c3:7a:5c:51:15: a8:f6:ee:48:9b:f0:4e:05:7c:2c:91:dd:fb:5a:16: 3c:52:ac:ff:5d:96:20:de:7d:6f:75:18:b9:2d:cc: 2a:00:17:54:0b:46:77:f9:9a:ea:64:cc:58:34:07: 8b:b8:74:c3:02:11:9b:77:81:f7:73:50:ba:f3:5d: 15:e5:b1:29:c7:40:cf:be:bf:fa:d4:92:61:b3:a1: 5d:93:d2:f3:50:dd:95:ee:49:94:21:11:c4:9b:2c: 30:99:cb:f7:f0:42:e7:f1:7c:4c:44:69:08:de:34: f3:ea:e2:0b:aa:46:b1:6c:92:96:85:3d:15:3e:07: 54:8f:07:c3:e3:45:69:7c:8b:3b:77:54:e6:53:30: d4:08:ed:9e:7f:df:74:2a:19:01:44:ce:be:a7:eb: bf:6a:a4:d7:dd:33:6d:fa:30:33:27:c3:54:93:80: c0:cb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 75:B1:27:74:25:38:6B:B5:4A:A5:43:65:BD:B5:1F:84:67:C3:AE:FE X509v3 Authority Key Identifier: keyid:CF:15:AD:10:2E:ED:DF:BC:CA:68:58:5A:6F:5C:38:17:FE:8A:18:D5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B8D56/1BC8E1B6630A11ECAAA1414EC4F9AE02/zxWtEC7t37zKaFhab1w4F_6KGNU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/zxWtEC7t37zKaFhab1w4F_6KGNU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B8D56/1BC8E1B6630A11ECAAA1414EC4F9AE02/zxWtEC7t37zKaFhab1w4F_6KGNU.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 27:77:15:91:92:ef:59:66:6a:6b:02:71:36:61:85:83:0e:21: 68:8e:0b:41:5d:64:96:e3:63:06:90:d8:74:08:80:c5:cb:f7: a1:99:64:89:ae:bc:88:b1:94:d9:50:9e:cc:37:e4:d2:d3:39: a6:be:0a:b2:c4:40:cc:e9:26:76:1f:73:2c:43:fd:bd:c6:c8: fc:ac:08:32:dd:c7:6d:e2:95:00:cc:30:41:a0:ab:f4:28:6e: f9:83:c9:05:bd:5b:c1:20:99:ab:cc:76:d4:0d:23:ff:d5:b4: 99:d6:0f:f3:47:cc:93:57:76:c7:02:e3:d4:7d:07:5b:91:fb: 53:02:48:d4:9c:f1:ff:d4:c4:de:06:2f:76:b2:ca:e0:5d:61: 93:7a:c4:c9:a9:cc:fb:e9:51:42:0c:48:a1:fc:04:05:14:db: 19:a3:4b:d3:f0:02:36:fc:1c:a7:6c:57:53:9b:a3:60:f3:68: f9:f0:3e:9c:4e:7d:4b:94:42:86:70:d6:99:15:ba:c3:21:95: 9f:2c:57:8e:8a:4a:b4:3f:40:c5:ab:9d:93:2e:96:4a:f4:b3: 93:3b:7c:f7:6d:2f:0c:a9:85:a7:75:73:6f:ca:aa:6e:9b:1b: d6:aa:d1:be:92:d7:14:4b:e6:26:13:17:d0:9c:bb:bf:15:f8: c7:23:26:30 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBBwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjhENTYxMTAvBgNVBAUTKENGMTVBRDEwMkVFRERGQkNDQTY4NTg1QTZGNUMzODE3 RkU4QTE4RDUwHhcNMjUwNDAzMDAyNzQ1WhcNMjUwNDEwMDAyNzQ1WjAYMRYwFAYD VQQDEw02N2VkZDYwMi05Nzg2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAynBnfkGZ1+muWgq3LITqcBC4qIKvccOnINXHIo38LMP9KWS5P8SNcQlk4jKV ovf3yK2TWmEsTa+1QRVdJHhip+8RWnuRNfq3uAVxtKoYZiCH7xKYw3pcURWo9u5I m/BOBXwskd37WhY8Uqz/XZYg3n1vdRi5LcwqABdUC0Z3+ZrqZMxYNAeLuHTDAhGb d4H3c1C6810V5bEpx0DPvr/61JJhs6Fdk9LzUN2V7kmUIRHEmywwmcv38ELn8XxM RGkI3jTz6uILqkaxbJKWhT0VPgdUjwfD40VpfIs7d1TmUzDUCO2ef990KhkBRM6+ p+u/aqTX3TNt+jAzJ8NUk4DAywIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFHWxJ3Ql OGu1SqVDZb21H4Rnw67+MB8GA1UdIwQYMBaAFM8VrRAu7d+8ymhYWm9cOBf+ihjV MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCOEQ1Ni8xQkM4RTFCNjYz MEExMUVDQUFBMTQxNEVDNEY5QUUwMi96eFd0RUM3dDM3ekthRmhhYjF3NEZfNktH TlUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3p4V3RFQzd0Mzd6S2FGaGFiMXc0Rl82S0dOVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC OEQ1Ni8xQkM4RTFCNjYzMEExMUVDQUFBMTQxNEVDNEY5QUUwMi96eFd0RUM3dDM3 ekthRmhhYjF3NEZfNktHTlUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAndxWRku9ZZmprAnE2YYWDDiFojgtBXWSW42MGkNh0CIDFy/ehmWSJ rryIsZTZUJ7MN+TS0zmmvgqyxEDM6SZ2H3MsQ/29xsj8rAgy3cdt4pUAzDBBoKv0 KG75g8kFvVvBIJmrzHbUDSP/1bSZ1g/zR8yTV3bHAuPUfQdbkftTAkjUnPH/1MTe Bi92ssrgXWGTesTJqcz76VFCDEih/AQFFNsZo0vT8AI2/BynbFdTm6Ng82j58D6c Tn1LlEKGcNaZFbrDIZWfLFeOikq0P0DFq52TLpZK9LOTO3z3bS8MqYWndXNvyqpu mxvWqtG+ktcUS+YmExfQnLu/FfjHIyYw -----END CERTIFICATE-----Generated at Fri Apr 4 22:42:14 2025 by rpki-client