$ rpki-client -vvf rpki.apnic.net/member_repository/A91D493B/DBAD37A0CAAE11EC8241280DC4F9AE02/zIO7bQqhd53qFp7bpKQCKN4hvXs.mft File: zIO7bQqhd53qFp7bpKQCKN4hvXs.mft (raw, json) Hash identifier: PlvxCUtUFuA1AOrRzQk0a6pF0nxEBwcB+ssnihYE1Ls= Subject key identifier: E0:0C:C1:D1:FF:14:64:86:B6:DC:EB:BF:EB:BA:42:88:2E:A4:D8:83 Authority key identifier: CC:83:BB:6D:0A:A1:77:9D:EA:16:9E:DB:A4:A4:02:28:DE:21:BD:7B Certificate issuer: /CN=A91D493B/serialNumber=CC83BB6D0AA1779DEA169EDBA4A40228DE21BD7B Certificate serial: 0307 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/zIO7bQqhd53qFp7bpKQCKN4hvXs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D493B/DBAD37A0CAAE11EC8241280DC4F9AE02/zIO7bQqhd53qFp7bpKQCKN4hvXs.mft Manifest number: 0303 Signing time: Sat 29 Mar 2025 01:30:17 +0000 Manifest this update: Sat 29 Mar 2025 01:30:16 +0000 Manifest next update: Sat 05 Apr 2025 01:30:16 +0000 Files and hashes: 1: zIO7bQqhd53qFp7bpKQCKN4hvXs.crl (hash: y54DNUp3Of6Vox9e8/O4cjZH+xOm1ofHyy5PUH7Pyrg=) 2: 684DDD32CAB311ECBBCE9843C4F9AE02.roa (hash: qlH2HXjlgr8PBnyTmgV2A1ZCVpY5oeqzGuzCwKUpWe4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D493B/DBAD37A0CAAE11EC8241280DC4F9AE02/zIO7bQqhd53qFp7bpKQCKN4hvXs.crl rsync://rpki.apnic.net/member_repository/A91D493B/DBAD37A0CAAE11EC8241280DC4F9AE02/zIO7bQqhd53qFp7bpKQCKN4hvXs.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/zIO7bQqhd53qFp7bpKQCKN4hvXs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 05 Apr 2025 01:30:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 775 (0x307) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D493B Validity Not Before: Mar 29 01:30:16 2025 GMT Not After : Apr 5 01:30:16 2025 GMT Subject: CN=67e74d29-ec31 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b1:37:5c:25:2d:d9:2f:77:12:07:6b:40:91:b9: 19:9d:c5:44:2e:88:a7:92:14:94:79:88:52:b7:b1: 45:d0:4c:77:a6:ad:77:83:f2:59:4e:78:81:98:ff: 63:35:11:56:fa:dc:12:09:7c:9c:b6:6b:9c:83:b1: e5:0d:1a:d8:54:5a:df:73:e8:ce:cd:b6:f1:b9:f9: e8:5f:5f:1e:92:49:0b:46:ed:8c:ed:d6:f3:62:bf: 1a:b7:16:5a:a9:83:75:c4:96:56:4e:27:1c:85:63: 15:25:32:1b:01:8f:88:6d:92:48:09:b0:c6:d6:71: f7:99:12:9a:dc:6b:30:5b:38:96:2c:d6:3f:7e:0c: cd:58:29:f0:5d:32:e9:d4:5a:8c:e8:06:cd:31:50: ef:81:03:ee:2a:c7:0b:24:60:32:51:d0:31:c7:09: d4:8a:42:3e:96:e7:c6:d2:64:b8:ca:a1:63:d1:a1: 80:2e:7e:47:65:6a:75:e4:0d:f9:66:3c:3e:79:1e: 51:e4:72:ac:30:0d:b8:03:37:6f:42:b4:f8:74:8d: e7:43:33:bc:cf:56:53:59:cb:76:47:0b:86:45:54: 28:f5:d1:a9:18:11:c5:1c:1a:58:28:eb:f4:5c:94: 4a:cb:64:4a:4f:f2:4c:05:3b:d5:c3:9d:98:3c:3b: 99:7f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E0:0C:C1:D1:FF:14:64:86:B6:DC:EB:BF:EB:BA:42:88:2E:A4:D8:83 X509v3 Authority Key Identifier: keyid:CC:83:BB:6D:0A:A1:77:9D:EA:16:9E:DB:A4:A4:02:28:DE:21:BD:7B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D493B/DBAD37A0CAAE11EC8241280DC4F9AE02/zIO7bQqhd53qFp7bpKQCKN4hvXs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/zIO7bQqhd53qFp7bpKQCKN4hvXs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D493B/DBAD37A0CAAE11EC8241280DC4F9AE02/zIO7bQqhd53qFp7bpKQCKN4hvXs.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 78:c5:5c:87:53:fd:a2:30:18:2a:d4:3a:8b:7f:55:05:5a:0a: a8:13:ce:42:70:1b:ab:46:d3:2a:4c:18:32:d3:62:d8:aa:1c: 45:e8:1a:0d:02:ff:66:9a:70:b4:05:40:88:ed:02:3a:b7:9a: a3:00:a6:54:6e:c6:af:e2:9a:c2:79:e4:43:05:d9:d9:aa:4e: 87:b9:58:48:7e:ee:a7:81:27:1d:ba:ec:6e:79:5e:4a:53:aa: c0:05:86:24:6b:63:ed:af:93:76:ce:b2:56:a1:5d:a1:10:89: 2f:cf:95:52:96:88:00:e4:f7:65:52:0a:37:e2:e3:64:53:fa: 22:b2:6d:0b:bc:9e:d3:83:e4:e1:3c:7a:fa:8b:e1:56:08:d1: 74:59:2a:7d:5d:39:35:6d:2b:29:69:a2:4e:c0:d6:a4:e4:02: 1c:28:3f:7b:be:3c:f1:31:2e:02:fd:9d:47:63:58:bc:9f:1d: c6:88:87:4a:24:2e:2d:aa:33:e3:5f:d9:9b:42:ee:97:65:78: 12:7d:d7:fe:a1:e0:2b:c8:3d:3d:73:d1:8f:f4:ac:a6:c1:38: 20:ee:28:01:f9:68:13:f9:a2:85:f0:d6:9b:70:37:d0:10:83: 64:68:56:15:cf:32:ae:3c:e0:f7:63:ff:70:a1:a0:11:4e:8a: 27:65:8d:6e -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAwcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDQ5M0IxMTAvBgNVBAUTKENDODNCQjZEMEFBMTc3OURFQTE2OUVEQkE0QTQwMjI4 REUyMUJEN0IwHhcNMjUwMzI5MDEzMDE2WhcNMjUwNDA1MDEzMDE2WjAYMRYwFAYD VQQDEw02N2U3NGQyOS1lYzMxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsTdcJS3ZL3cSB2tAkbkZncVELoinkhSUeYhSt7FF0Ex3pq13g/JZTniBmP9j NRFW+twSCXyctmucg7HlDRrYVFrfc+jOzbbxufnoX18ekkkLRu2M7dbzYr8atxZa qYN1xJZWTicchWMVJTIbAY+IbZJICbDG1nH3mRKa3GswWziWLNY/fgzNWCnwXTLp 1FqM6AbNMVDvgQPuKscLJGAyUdAxxwnUikI+lufG0mS4yqFj0aGALn5HZWp15A35 Zjw+eR5R5HKsMA24AzdvQrT4dI3nQzO8z1ZTWct2RwuGRVQo9dGpGBHFHBpYKOv0 XJRKy2RKT/JMBTvVw52YPDuZfwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFOAMwdH/ FGSGttzrv+u6QogupNiDMB8GA1UdIwQYMBaAFMyDu20KoXed6hae26SkAijeIb17 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFENDkzQi9EQkFEMzdBMENB QUUxMUVDODI0MTI4MERDNEY5QUUwMi96SU83YlFxaGQ1M3FGcDdicEtRQ0tONGh2 WHMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3pJTzdiUXFoZDUzcUZwN2JwS1FDS040aHZYcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE NDkzQi9EQkFEMzdBMENBQUUxMUVDODI0MTI4MERDNEY5QUUwMi96SU83YlFxaGQ1 M3FGcDdicEtRQ0tONGh2WHMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB4xVyHU/2iMBgq1DqLf1UFWgqoE85CcBurRtMqTBgy02LYqhxF6BoN Av9mmnC0BUCI7QI6t5qjAKZUbsav4prCeeRDBdnZqk6HuVhIfu6ngScduuxueV5K U6rABYYka2Ptr5N2zrJWoV2hEIkvz5VSlogA5PdlUgo34uNkU/oism0LvJ7Tg+Th PHr6i+FWCNF0WSp9XTk1bSspaaJOwNak5AIcKD97vjzxMS4C/Z1HY1i8nx3GiIdK JC4tqjPjX9mbQu6XZXgSfdf+oeAryD09c9GP9KymwTgg7igB+WgT+aKF8NabcDfQ EINkaFYVzzKuPOD3Y/9woaARToonZY1u -----END CERTIFICATE-----Generated at Fri Apr 4 22:24:54 2025 by rpki-client