$ rpki-client -vvf rpki.apnic.net/member_repository/A91DEB2E/6FC8BFDE8C2111EDB2B2F30AC4F9AE02/CZyBX8poKm4oYE_pYv0QcVgn6V0.mft File: CZyBX8poKm4oYE_pYv0QcVgn6V0.mft (raw, json) Hash identifier: plIg27KDIxRiCo324j9LJkv/tNzOjnVqAFqlWVVgKJ4= Subject key identifier: 11:71:24:EB:7D:31:50:7B:78:48:94:7F:85:14:7E:88:A5:82:BC:EA Authority key identifier: 09:9C:81:5F:CA:68:2A:6E:28:60:4F:E9:62:FD:10:71:58:27:E9:5D Certificate issuer: /CN=A91DEB2E/serialNumber=099C815FCA682A6E28604FE962FD10715827E95D Certificate serial: 01AE Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CZyBX8poKm4oYE_pYv0QcVgn6V0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91DEB2E/6FC8BFDE8C2111EDB2B2F30AC4F9AE02/CZyBX8poKm4oYE_pYv0QcVgn6V0.mft Manifest number: 01A8 Signing time: Thu 03 Apr 2025 02:37:08 +0000 Manifest this update: Thu 03 Apr 2025 02:37:07 +0000 Manifest next update: Thu 10 Apr 2025 02:37:07 +0000 Files and hashes: 1: CZyBX8poKm4oYE_pYv0QcVgn6V0.crl (hash: iqbR43uP4M8NhGXkJM9Egd5/aaPTnpItiqcHYzzR9cI=) 2: 3CB103648C2511EDB64DB410C4F9AE02.roa (hash: MmbQus/ep65NlWLekYokD81GuyXquRa4J0H16aokObA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91DEB2E/6FC8BFDE8C2111EDB2B2F30AC4F9AE02/CZyBX8poKm4oYE_pYv0QcVgn6V0.crl rsync://rpki.apnic.net/member_repository/A91DEB2E/6FC8BFDE8C2111EDB2B2F30AC4F9AE02/CZyBX8poKm4oYE_pYv0QcVgn6V0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CZyBX8poKm4oYE_pYv0QcVgn6V0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 10 Apr 2025 02:37:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 430 (0x1ae) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DEB2E Validity Not Before: Apr 3 02:37:07 2025 GMT Not After : Apr 10 02:37:07 2025 GMT Subject: CN=67edf454-1d19 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d5:6e:54:3a:aa:94:cb:8d:af:d4:5c:a5:c0:ab: 1d:0b:14:f9:2a:80:0c:23:3a:db:1e:8b:50:ae:69: 6e:55:ff:e2:73:37:81:34:92:8f:0a:14:ce:de:ea: 56:ea:ca:cb:0b:e7:19:89:9e:8c:66:4e:4a:b9:54: 0e:2b:a2:cd:b8:55:1f:85:8f:0b:ff:25:ab:cb:39: 1d:45:91:2a:bc:12:b6:66:62:b2:fe:c7:18:8c:12: 97:4c:67:13:2a:81:d9:a0:6f:b0:88:73:00:32:e4: d4:5d:37:cd:d1:f9:9f:43:0e:05:ac:d1:78:d2:df: 60:d1:d4:a1:95:67:61:ac:a9:ab:67:53:be:58:74: e4:30:40:b9:70:a7:14:39:77:b4:5c:9a:8a:4e:cc: c4:59:99:6a:b6:57:37:4a:d6:1c:4f:aa:26:9f:1f: db:b8:85:74:3f:4c:d1:ae:66:2c:eb:55:f0:6c:16: 37:c1:ed:ff:00:9f:cf:59:d2:56:b5:5d:13:b0:9c: a0:f7:26:af:7f:cc:89:94:94:ee:f8:31:6d:62:bc: aa:55:9a:2d:f2:dd:8b:24:3e:d8:c7:95:4c:2a:d5: 1b:01:a7:1c:e1:7a:9e:0a:73:0c:9b:60:fd:64:f2: 04:c5:3c:a6:4a:f0:05:ab:c6:f4:36:0a:b0:17:53: 4f:f3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 11:71:24:EB:7D:31:50:7B:78:48:94:7F:85:14:7E:88:A5:82:BC:EA X509v3 Authority Key Identifier: keyid:09:9C:81:5F:CA:68:2A:6E:28:60:4F:E9:62:FD:10:71:58:27:E9:5D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91DEB2E/6FC8BFDE8C2111EDB2B2F30AC4F9AE02/CZyBX8poKm4oYE_pYv0QcVgn6V0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CZyBX8poKm4oYE_pYv0QcVgn6V0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DEB2E/6FC8BFDE8C2111EDB2B2F30AC4F9AE02/CZyBX8poKm4oYE_pYv0QcVgn6V0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 35:b8:5d:a0:d2:3c:85:77:c4:68:7a:ff:33:1c:3b:fd:ce:ee: 94:75:cd:52:d5:cd:67:2b:39:ea:99:a2:b2:6a:a1:20:d0:40: 88:3e:c6:c4:18:29:49:82:e1:ef:5a:3d:85:3d:32:d5:36:b3: 28:1e:be:9e:e3:89:16:d3:bc:ff:6d:53:48:fd:8b:9e:51:eb: 5f:d1:cb:88:db:e1:31:64:60:87:38:69:1f:d2:2f:81:ac:6a: 96:0d:ec:d8:9b:eb:29:e0:fb:d5:47:e2:57:fa:43:e8:35:b9: b8:7d:69:66:9a:5c:88:34:b1:72:b3:6f:3a:89:1a:6d:63:25: 30:5f:e3:6a:93:52:23:16:ec:ee:05:60:a4:68:06:40:db:77: e1:75:cb:b7:14:a6:08:95:69:72:10:22:9a:a1:16:77:bb:05: bc:09:7f:e7:4d:61:eb:7b:06:da:90:dd:7c:d8:3e:cc:8c:85: 18:e0:40:dc:ab:22:51:4f:52:4e:cc:27:ec:bf:62:b0:48:b3: fe:b1:db:73:20:b6:c2:ae:42:f9:b7:c1:8d:01:53:c9:bc:63: ed:35:61:44:e9:f8:f5:47:8b:35:31:07:d3:39:5f:88:9a:d1: e7:26:e6:c9:b9:ed:d6:7b:4d:cd:ca:b9:7f:c5:74:be:0b:e7: a9:3d:22:1c -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAa4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx REVCMkUxMTAvBgNVBAUTKDA5OUM4MTVGQ0E2ODJBNkUyODYwNEZFOTYyRkQxMDcx NTgyN0U5NUQwHhcNMjUwNDAzMDIzNzA3WhcNMjUwNDEwMDIzNzA3WjAYMRYwFAYD VQQDEw02N2VkZjQ1NC0xZDE5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1W5UOqqUy42v1FylwKsdCxT5KoAMIzrbHotQrmluVf/iczeBNJKPChTO3upW 6srLC+cZiZ6MZk5KuVQOK6LNuFUfhY8L/yWryzkdRZEqvBK2ZmKy/scYjBKXTGcT KoHZoG+wiHMAMuTUXTfN0fmfQw4FrNF40t9g0dShlWdhrKmrZ1O+WHTkMEC5cKcU OXe0XJqKTszEWZlqtlc3StYcT6omnx/buIV0P0zRrmYs61XwbBY3we3/AJ/PWdJW tV0TsJyg9yavf8yJlJTu+DFtYryqVZot8t2LJD7Yx5VMKtUbAacc4XqeCnMMm2D9 ZPIExTymSvAFq8b0NgqwF1NP8wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFBFxJOt9 MVB7eEiUf4UUfoilgrzqMB8GA1UdIwQYMBaAFAmcgV/KaCpuKGBP6WL9EHFYJ+ld MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFERUIyRS82RkM4QkZERThD MjExMUVEQjJCMkYzMEFDNEY5QUUwMi9DWnlCWDhwb0ttNG9ZRV9wWXYwUWNWZ242 VjAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0NaeUJYOHBvS200b1lFX3BZdjBRY1ZnbjZWMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE RUIyRS82RkM4QkZERThDMjExMUVEQjJCMkYzMEFDNEY5QUUwMi9DWnlCWDhwb0tt NG9ZRV9wWXYwUWNWZ242VjAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA1uF2g0jyFd8Roev8zHDv9zu6Udc1S1c1nKznqmaKyaqEg0ECIPsbE GClJguHvWj2FPTLVNrMoHr6e44kW07z/bVNI/YueUetf0cuI2+ExZGCHOGkf0i+B rGqWDezYm+sp4PvVR+JX+kPoNbm4fWlmmlyINLFys286iRptYyUwX+Nqk1IjFuzu BWCkaAZA23fhdcu3FKYIlWlyECKaoRZ3uwW8CX/nTWHrewbakN182D7MjIUY4EDc qyJRT1JOzCfsv2KwSLP+sdtzILbCrkL5t8GNAVPJvGPtNWFE6fj1R4s1MQfTOV+I mtHnJubJue3We03Nyrl/xXS+C+epPSIc -----END CERTIFICATE-----Generated at Fri Apr 4 21:55:35 2025 by rpki-client