$ rpki-client -vvf rpki.apnic.net/member_repository/A91E22E3/84B0A85E170C11EF94F17C14C4F9AE02/ZgXWapgEftsGpJSzdC9eyCuB3LA.mft File: ZgXWapgEftsGpJSzdC9eyCuB3LA.mft (raw, json) Hash identifier: AFPfNsD1gFm1jB08DZSWd0fxYRKRPEoOAypVM3kGXNk= Subject key identifier: 3F:3D:59:93:93:C7:64:F7:94:6A:83:02:9A:A5:3A:45:E7:56:40:17 Authority key identifier: 66:05:D6:6A:98:04:7E:DB:06:A4:94:B3:74:2F:5E:C8:2B:81:DC:B0 Certificate issuer: /CN=A91E22E3/serialNumber=6605D66A98047EDB06A494B3742F5EC82B81DCB0 Certificate serial: A4 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ZgXWapgEftsGpJSzdC9eyCuB3LA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E22E3/84B0A85E170C11EF94F17C14C4F9AE02/ZgXWapgEftsGpJSzdC9eyCuB3LA.mft Manifest number: A4 Signing time: Thu 03 Apr 2025 05:26:43 +0000 Manifest this update: Thu 03 Apr 2025 05:26:42 +0000 Manifest next update: Thu 10 Apr 2025 05:26:42 +0000 Files and hashes: 1: ZgXWapgEftsGpJSzdC9eyCuB3LA.crl (hash: uNscyMM1eHOpAdFU6+lTe73ppFZ3a36RWKKtjw9jMOY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E22E3/84B0A85E170C11EF94F17C14C4F9AE02/ZgXWapgEftsGpJSzdC9eyCuB3LA.crl rsync://rpki.apnic.net/member_repository/A91E22E3/84B0A85E170C11EF94F17C14C4F9AE02/ZgXWapgEftsGpJSzdC9eyCuB3LA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ZgXWapgEftsGpJSzdC9eyCuB3LA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 10 Apr 2025 05:26:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 164 (0xa4) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E22E3 Validity Not Before: Apr 3 05:26:42 2025 GMT Not After : Apr 10 05:26:42 2025 GMT Subject: CN=67ee1c13-da87 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cc:7b:cb:f9:19:08:a0:37:94:93:ab:42:ea:b3: 62:e7:f2:db:6f:e4:95:e5:73:a8:c9:f4:64:16:b4: a9:4f:bf:96:b5:d0:5f:76:e5:c4:40:a8:34:40:ef: bc:a6:a7:d2:86:53:74:f7:6c:35:6d:30:ad:8c:8e: 0b:e0:82:5d:aa:d0:0d:97:09:09:6b:89:0e:99:5e: ab:5e:a6:11:6b:0d:49:9b:15:86:a0:db:82:4c:2a: 7d:39:54:a3:73:57:f6:7d:be:06:bd:c6:47:2b:9a: 1e:10:eb:8f:63:3f:0b:7c:45:bc:44:66:96:4c:9f: b8:f1:0e:54:54:10:88:0a:17:96:84:8a:ac:e5:c1: a5:a7:fd:15:16:37:69:23:29:14:e5:c4:a3:f4:62: a3:32:91:5b:3d:8f:ee:7e:e9:cb:a1:f2:6d:06:4e: 02:4c:1d:12:e0:fc:fe:a0:d5:fb:e5:85:21:06:c8: ca:10:3d:0e:a2:52:45:42:8b:68:35:71:33:0b:ed: 6b:5a:7d:b7:4e:86:f7:d8:5b:4f:f4:94:d9:22:3c: 79:7e:d4:60:c6:63:08:e2:56:40:33:c9:a7:37:67: 1b:0b:8d:fb:34:0e:8b:9e:51:7b:6c:ae:89:da:39: 46:6d:a5:99:45:81:34:03:1b:25:cf:ea:22:4a:dd: 67:2b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3F:3D:59:93:93:C7:64:F7:94:6A:83:02:9A:A5:3A:45:E7:56:40:17 X509v3 Authority Key Identifier: keyid:66:05:D6:6A:98:04:7E:DB:06:A4:94:B3:74:2F:5E:C8:2B:81:DC:B0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E22E3/84B0A85E170C11EF94F17C14C4F9AE02/ZgXWapgEftsGpJSzdC9eyCuB3LA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ZgXWapgEftsGpJSzdC9eyCuB3LA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E22E3/84B0A85E170C11EF94F17C14C4F9AE02/ZgXWapgEftsGpJSzdC9eyCuB3LA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 88:b5:85:a6:7b:43:e3:27:9c:18:1d:ce:ff:26:5a:06:4b:61: 48:99:62:21:18:60:f7:c9:2e:36:c8:66:43:ec:ea:c1:e0:ab: 9a:1d:9c:bd:1e:a1:2d:a8:bb:f4:4d:ec:e7:ef:ce:18:bd:e6: 07:3c:4e:d0:da:20:69:fe:02:42:0c:a1:30:21:df:5f:cc:09: b8:46:e1:d2:f6:f5:1e:ec:64:f3:87:bc:c0:5c:fd:f7:df:cc: 4e:24:91:67:e0:2d:ef:3d:13:27:53:38:6a:4f:25:19:1b:2c: 20:99:f9:34:4c:e2:e5:dd:c3:d2:3b:91:1b:ab:33:5a:40:b8: 31:db:2e:eb:1f:d9:17:76:d5:4d:fc:1d:c2:b8:0b:71:72:75: 8f:5c:02:2a:71:9b:fc:4e:db:15:e5:b7:55:c5:9a:f7:af:ab: da:18:92:71:2e:a1:72:e9:6c:d5:8b:5f:a6:0d:c7:f9:22:9e: 96:eb:b3:27:4e:26:f1:ae:56:96:e1:2e:15:4e:cb:d5:12:a5: bc:9e:0a:d0:bd:df:c8:f6:fc:c1:70:59:96:f4:26:37:f3:b4: a4:97:d7:bd:0d:29:e3:0a:db:52:a4:75:58:cb:25:83:c0:78: 31:12:49:82:05:74:dc:fb:59:5c:b5:75:5f:de:02:57:14:a2: d5:19:38:75 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAKQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTIyRTMxMTAvBgNVBAUTKDY2MDVENjZBOTgwNDdFREIwNkE0OTRCMzc0MkY1RUM4 MkI4MURDQjAwHhcNMjUwNDAzMDUyNjQyWhcNMjUwNDEwMDUyNjQyWjAYMRYwFAYD VQQDEw02N2VlMWMxMy1kYTg3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzHvL+RkIoDeUk6tC6rNi5/Lbb+SV5XOoyfRkFrSpT7+WtdBfduXEQKg0QO+8 pqfShlN092w1bTCtjI4L4IJdqtANlwkJa4kOmV6rXqYRaw1JmxWGoNuCTCp9OVSj c1f2fb4GvcZHK5oeEOuPYz8LfEW8RGaWTJ+48Q5UVBCICheWhIqs5cGlp/0VFjdp IykU5cSj9GKjMpFbPY/ufunLofJtBk4CTB0S4Pz+oNX75YUhBsjKED0OolJFQoto NXEzC+1rWn23Tob32FtP9JTZIjx5ftRgxmMI4lZAM8mnN2cbC437NA6LnlF7bK6J 2jlGbaWZRYE0Axslz+oiSt1nKwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFD89WZOT x2T3lGqDApqlOkXnVkAXMB8GA1UdIwQYMBaAFGYF1mqYBH7bBqSUs3QvXsgrgdyw MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFMjJFMy84NEIwQTg1RTE3 MEMxMUVGOTRGMTdDMTRDNEY5QUUwMi9aZ1hXYXBnRWZ0c0dwSlN6ZEM5ZXlDdUIz TEEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1pnWFdhcGdFZnRzR3BKU3pkQzlleUN1QjNMQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF MjJFMy84NEIwQTg1RTE3MEMxMUVGOTRGMTdDMTRDNEY5QUUwMi9aZ1hXYXBnRWZ0 c0dwSlN6ZEM5ZXlDdUIzTEEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCItYWme0PjJ5wYHc7/JloGS2FImWIhGGD3yS42yGZD7OrB4KuaHZy9 HqEtqLv0Tezn784YveYHPE7Q2iBp/gJCDKEwId9fzAm4RuHS9vUe7GTzh7zAXP33 38xOJJFn4C3vPRMnUzhqTyUZGywgmfk0TOLl3cPSO5EbqzNaQLgx2y7rH9kXdtVN /B3CuAtxcnWPXAIqcZv8TtsV5bdVxZr3r6vaGJJxLqFy6WzVi1+mDcf5Ip6W67Mn TibxrlaW4S4VTsvVEqW8ngrQvd/I9vzBcFmW9CY387Skl9e9DSnjCttSpHVYyyWD wHgxEkmCBXTc+1lctXVf3gJXFKLVGTh1 -----END CERTIFICATE-----Generated at Fri Apr 4 22:22:12 2025 by rpki-client