$ rpki-client -vvf rpki.apnic.net/member_repository/A91CE0FB/86F689BA259911EC92031A79C4F9AE02/ZLG7hwJN3720QVqQHYB-Pd2Kc2E.mft File: ZLG7hwJN3720QVqQHYB-Pd2Kc2E.mft (raw, json) Hash identifier: UKdzLIjKZDMjy67nKKvzXScnJiB3vhcQbkOhQyC1dF0= Subject key identifier: CE:CB:A1:FB:1F:4B:79:7B:EF:2A:BD:B8:76:0F:AD:56:15:36:47:8D Authority key identifier: 64:B1:BB:87:02:4D:DF:BD:B4:41:5A:90:1D:80:7E:3D:DD:8A:73:61 Certificate issuer: /CN=A91CE0FB/serialNumber=64B1BB87024DDFBDB4415A901D807E3DDD8A7361 Certificate serial: 04AF Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ZLG7hwJN3720QVqQHYB-Pd2Kc2E.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CE0FB/86F689BA259911EC92031A79C4F9AE02/ZLG7hwJN3720QVqQHYB-Pd2Kc2E.mft Manifest number: 04AA Signing time: Wed 02 Apr 2025 23:54:44 +0000 Manifest this update: Wed 02 Apr 2025 23:54:43 +0000 Manifest next update: Wed 09 Apr 2025 23:54:43 +0000 Files and hashes: 1: ZLG7hwJN3720QVqQHYB-Pd2Kc2E.crl (hash: PfHmuywgEgRreK9bc80JWju9A613A1+BCAsBiw9djSU=) 2: 47170244259D11ECA74AC10AC4F9AE02.roa (hash: Y+S7v1lT5zJbNq1zlpCJhhazIK4L/t7cDHpXVyy+Cr4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CE0FB/86F689BA259911EC92031A79C4F9AE02/ZLG7hwJN3720QVqQHYB-Pd2Kc2E.crl rsync://rpki.apnic.net/member_repository/A91CE0FB/86F689BA259911EC92031A79C4F9AE02/ZLG7hwJN3720QVqQHYB-Pd2Kc2E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ZLG7hwJN3720QVqQHYB-Pd2Kc2E.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 09 Apr 2025 23:54:43 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1199 (0x4af) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CE0FB Validity Not Before: Apr 2 23:54:43 2025 GMT Not After : Apr 9 23:54:43 2025 GMT Subject: CN=67edce43-0678 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a4:ec:9a:76:5d:b0:cf:6f:57:5e:35:63:ef:fb: ad:06:bf:3d:c4:ec:74:91:f5:d9:d4:cc:e6:50:82: 51:ec:81:93:93:3e:b9:58:27:11:de:b5:09:35:15: ec:7c:ff:92:02:bc:df:a1:73:84:c3:a4:ab:e0:0c: 8e:74:8b:c4:a1:dd:66:05:3f:c1:28:53:86:11:06: 39:07:5b:60:e6:a2:79:92:72:66:20:26:13:f4:a4: c8:13:d8:d5:6a:d9:3f:bb:77:6a:81:b9:82:22:3a: 34:9d:3b:2c:7c:ad:24:eb:7c:d1:c7:e9:91:e8:82: b0:b9:8f:3b:39:9b:16:d6:1c:4c:f1:9f:10:70:c2: e0:be:64:4d:27:41:b8:46:21:45:bb:d3:2e:01:c3: 2f:52:0a:46:69:c6:eb:a2:a6:97:ed:7a:40:2a:56: ee:f3:55:5a:63:10:bd:c1:f4:6e:e1:67:29:d6:df: 54:3f:c5:a0:b4:1b:35:69:b7:66:a0:b3:bf:ae:0c: 55:63:2c:13:21:4f:d6:61:14:de:19:75:de:7b:a5: ff:80:4c:91:8b:1f:49:de:53:5e:00:74:6d:c3:3b: 37:71:e7:89:f4:96:2a:b8:9e:72:14:6f:1c:9d:a5: d0:56:0d:05:e1:41:f2:43:38:bd:e8:be:b7:a8:d0: 4d:39 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CE:CB:A1:FB:1F:4B:79:7B:EF:2A:BD:B8:76:0F:AD:56:15:36:47:8D X509v3 Authority Key Identifier: keyid:64:B1:BB:87:02:4D:DF:BD:B4:41:5A:90:1D:80:7E:3D:DD:8A:73:61 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CE0FB/86F689BA259911EC92031A79C4F9AE02/ZLG7hwJN3720QVqQHYB-Pd2Kc2E.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ZLG7hwJN3720QVqQHYB-Pd2Kc2E.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CE0FB/86F689BA259911EC92031A79C4F9AE02/ZLG7hwJN3720QVqQHYB-Pd2Kc2E.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 94:12:1f:28:ae:77:25:1c:d3:b2:d8:21:63:1b:fd:a6:68:96: bf:fd:f1:d5:05:fb:a9:03:82:83:8a:7c:13:af:bf:3e:15:e2: dd:85:73:3c:ee:b0:d2:57:41:7f:f6:a7:29:92:cb:e9:66:55: 6e:eb:83:0f:ff:44:c8:49:36:9e:e9:e6:2e:f8:b4:7c:de:02: 6b:32:32:86:0d:b8:56:d5:90:a2:ee:90:3d:05:a1:c2:77:31: 20:98:e9:77:11:40:e6:61:89:d4:6d:46:9c:9c:92:99:ef:f9: 6b:42:4c:bb:b8:e2:ac:c8:be:aa:ef:3a:ab:70:b2:23:3d:63: fe:57:92:6f:2b:47:ce:4b:96:9d:b3:95:fb:5e:4b:60:23:ae: e0:45:d4:7c:b5:e0:5c:8c:c9:de:bb:85:7c:35:96:b8:21:4c: 59:88:99:2a:a4:76:3c:83:c2:12:8a:e4:a7:a3:0d:0e:c7:f8: 72:51:6d:25:90:34:9f:bd:c7:6d:e0:bc:e9:76:82:6f:cb:15: 4c:18:7c:aa:52:7d:8f:60:f4:72:71:54:0d:95:7c:ad:59:63: bd:77:fa:45:b6:ba:e5:a3:4e:1b:9e:0f:da:e1:1b:51:e3:37: 48:98:f7:72:df:da:d3:09:3f:a9:45:ed:7f:83:a1:1b:9a:ca: 7a:90:5a:cc -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBK8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Q0UwRkIxMTAvBgNVBAUTKDY0QjFCQjg3MDI0RERGQkRCNDQxNUE5MDFEODA3RTNE REQ4QTczNjEwHhcNMjUwNDAyMjM1NDQzWhcNMjUwNDA5MjM1NDQzWjAYMRYwFAYD VQQDEw02N2VkY2U0My0wNjc4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEApOyadl2wz29XXjVj7/utBr89xOx0kfXZ1MzmUIJR7IGTkz65WCcR3rUJNRXs fP+SArzfoXOEw6Sr4AyOdIvEod1mBT/BKFOGEQY5B1tg5qJ5knJmICYT9KTIE9jV atk/u3dqgbmCIjo0nTssfK0k63zRx+mR6IKwuY87OZsW1hxM8Z8QcMLgvmRNJ0G4 RiFFu9MuAcMvUgpGacbroqaX7XpAKlbu81VaYxC9wfRu4Wcp1t9UP8WgtBs1abdm oLO/rgxVYywTIU/WYRTeGXXee6X/gEyRix9J3lNeAHRtwzs3ceeJ9JYquJ5yFG8c naXQVg0F4UHyQzi96L63qNBNOQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFM7Lofsf S3l77yq9uHYPrVYVNkeNMB8GA1UdIwQYMBaAFGSxu4cCTd+9tEFakB2Afj3dinNh MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDRTBGQi84NkY2ODlCQTI1 OTkxMUVDOTIwMzFBNzlDNEY5QUUwMi9aTEc3aHdKTjM3MjBRVnFRSFlCLVBkMktj MkUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1pMRzdod0pOMzcyMFFWcVFIWUItUGQyS2MyRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD RTBGQi84NkY2ODlCQTI1OTkxMUVDOTIwMzFBNzlDNEY5QUUwMi9aTEc3aHdKTjM3 MjBRVnFRSFlCLVBkMktjMkUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCUEh8ornclHNOy2CFjG/2maJa//fHVBfupA4KDinwTr78+FeLdhXM8 7rDSV0F/9qcpksvpZlVu64MP/0TISTae6eYu+LR83gJrMjKGDbhW1ZCi7pA9BaHC dzEgmOl3EUDmYYnUbUacnJKZ7/lrQky7uOKsyL6q7zqrcLIjPWP+V5JvK0fOS5ad s5X7XktgI67gRdR8teBcjMneu4V8NZa4IUxZiJkqpHY8g8ISiuSnow0Ox/hyUW0l kDSfvcdt4LzpdoJvyxVMGHyqUn2PYPRycVQNlXytWWO9d/pFtrrlo04bng/a4RtR 4zdImPdy39rTCT+pRe1/g6Ebmsp6kFrM -----END CERTIFICATE-----Generated at Fri Apr 4 22:24:52 2025 by rpki-client