$ rpki-client -vvf rpki.apnic.net/member_repository/A91E4468/827524E88EE511EEA2EEDD12C4F9AE02/r_zmN5iBZebFG_v-vRKD1REkAZA.mft File: r_zmN5iBZebFG_v-vRKD1REkAZA.mft (raw, json) Hash identifier: 79lV3ftNOR1DZTUantWNpj6r961/5t4edF514UvgIVU= Subject key identifier: 31:29:3F:72:F6:40:B5:06:8B:F0:C7:6B:22:F7:3F:09:64:3D:59:AC Authority key identifier: AF:FC:E6:37:98:81:65:E6:C5:1B:FB:FE:BD:12:83:D5:11:24:01:90 Certificate issuer: /CN=A91E4468/serialNumber=AFFCE637988165E6C51BFBFEBD1283D511240190 Certificate serial: 0111 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/r_zmN5iBZebFG_v-vRKD1REkAZA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E4468/827524E88EE511EEA2EEDD12C4F9AE02/r_zmN5iBZebFG_v-vRKD1REkAZA.mft Manifest number: 0109 Signing time: Fri 11 Apr 2025 04:20:22 +0000 Manifest this update: Fri 11 Apr 2025 04:20:21 +0000 Manifest next update: Fri 18 Apr 2025 04:20:21 +0000 Files and hashes: 1: r_zmN5iBZebFG_v-vRKD1REkAZA.crl (hash: rwdfwmEkMtNDqEO0JR3NYIvxg3XsYlZ/DfkOZ/KGYLk=) 2: C531DD12226F11EF8D24AD63C4F9AE02.roa (hash: a2/vehSWDoff6mLTg7VEADcM0ey8iDfcQQZxJYEqkDM=) 3: C608133C226F11EF8D24AD63C4F9AE02.roa (hash: GATUqbNDhKaVb/i1ZjCIO1rgwevFVCyWk8Ts83izVL4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E4468/827524E88EE511EEA2EEDD12C4F9AE02/r_zmN5iBZebFG_v-vRKD1REkAZA.crl rsync://rpki.apnic.net/member_repository/A91E4468/827524E88EE511EEA2EEDD12C4F9AE02/r_zmN5iBZebFG_v-vRKD1REkAZA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/r_zmN5iBZebFG_v-vRKD1REkAZA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 18 Apr 2025 04:20:21 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 273 (0x111) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E4468, serialNumber=AFFCE637988165E6C51BFBFEBD1283D511240190 Validity Not Before: Apr 11 04:20:21 2025 GMT Not After : Apr 18 04:20:21 2025 GMT Subject: CN=67f89885-af2e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:db:1d:17:9c:b1:42:13:00:5b:7b:06:cf:6d:8e: a1:57:d9:50:a2:18:7d:f4:be:57:70:bd:48:71:3e: 05:0d:2e:61:d4:52:15:56:b1:8e:e9:91:9c:1f:20: 1e:9a:77:a0:ff:7f:61:65:4a:29:75:68:73:df:d2: ce:2e:7e:df:b4:2c:86:2f:9d:b5:62:09:57:dc:d2: 19:4c:89:b7:2f:b9:41:f5:c3:0c:68:df:54:53:8c: 97:aa:49:61:c2:c2:f5:e4:02:fd:9d:9e:9e:8b:2b: d3:40:d1:29:5d:5d:c4:84:31:d7:b8:4f:25:37:a8: ee:25:38:e2:ea:0c:9e:b5:e4:ec:6f:72:41:c2:2d: 0f:a8:95:f3:19:59:1d:40:44:bf:fd:67:7e:a5:f0: 5e:97:92:13:be:ae:c5:a0:35:ef:46:7b:ea:14:12: a1:b7:d4:6a:24:82:f6:c1:6b:01:29:2c:03:40:e3: be:09:12:6e:c7:7b:b1:03:e8:0b:80:5e:99:54:d1: b5:7e:92:7d:75:83:a0:bb:16:eb:8d:4c:23:cf:5a: 0c:1c:c0:10:03:79:e6:64:ec:9e:1d:05:d7:c3:58: e6:1f:28:2f:2f:8b:9e:b5:ed:c3:78:2b:8a:7c:93: 9f:0f:07:60:3d:ae:96:99:c0:62:9d:7d:51:3a:ae: 8f:fd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 31:29:3F:72:F6:40:B5:06:8B:F0:C7:6B:22:F7:3F:09:64:3D:59:AC X509v3 Authority Key Identifier: keyid:AF:FC:E6:37:98:81:65:E6:C5:1B:FB:FE:BD:12:83:D5:11:24:01:90 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E4468/827524E88EE511EEA2EEDD12C4F9AE02/r_zmN5iBZebFG_v-vRKD1REkAZA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/r_zmN5iBZebFG_v-vRKD1REkAZA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E4468/827524E88EE511EEA2EEDD12C4F9AE02/r_zmN5iBZebFG_v-vRKD1REkAZA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption ad:04:2b:fb:06:37:8f:e8:37:ef:d1:d4:f1:a6:4e:9c:ac:a9: 27:b0:8a:61:bc:ff:28:2a:ba:dd:34:96:8b:1c:86:71:25:be: f5:e9:fe:49:49:30:11:9e:2a:36:fa:39:8d:d9:3a:0e:b2:11: 65:e9:20:44:c7:fe:69:44:23:59:1e:d4:e3:b4:39:b2:4b:d0: 23:87:ce:7a:0d:fa:75:59:fb:ca:f3:b6:1d:e8:1e:13:24:09: 7e:e2:dd:c5:2b:2a:76:16:43:40:75:e8:aa:df:92:a5:22:d8: 91:a4:30:d9:b2:8a:52:2d:77:e2:5c:45:df:aa:75:eb:15:c0: 57:11:77:48:46:c9:e8:81:a3:d9:40:5d:bd:ae:11:1f:8c:e2: 2d:ed:84:93:9e:a1:e1:23:d2:fe:d5:81:57:a6:60:36:a1:01: e4:1f:42:04:80:c9:90:21:25:7c:f7:bf:93:76:03:bd:d7:ee: c9:20:c7:ac:f2:63:74:6c:c7:0c:aa:2e:df:31:44:c0:4f:34: a1:d1:73:c4:ec:07:f7:6d:51:54:e2:93:7e:3a:88:34:f7:3b: 77:cf:42:84:dc:0e:34:92:8a:d4:2a:74:37:01:70:c5:ad:cc: b0:de:49:88:7d:38:1d:4e:2a:06:db:62:0e:2c:95:cb:2c:e4: 3d:20:67:3e -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAREwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTQ0NjgxMTAvBgNVBAUTKEFGRkNFNjM3OTg4MTY1RTZDNTFCRkJGRUJEMTI4M0Q1 MTEyNDAxOTAwHhcNMjUwNDExMDQyMDIxWhcNMjUwNDE4MDQyMDIxWjAYMRYwFAYD VQQDEw02N2Y4OTg4NS1hZjJlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA2x0XnLFCEwBbewbPbY6hV9lQohh99L5XcL1IcT4FDS5h1FIVVrGO6ZGcHyAe mneg/39hZUopdWhz39LOLn7ftCyGL521YglX3NIZTIm3L7lB9cMMaN9UU4yXqklh wsL15AL9nZ6eiyvTQNEpXV3EhDHXuE8lN6juJTji6gyeteTsb3JBwi0PqJXzGVkd QES//Wd+pfBel5ITvq7FoDXvRnvqFBKht9RqJIL2wWsBKSwDQOO+CRJux3uxA+gL gF6ZVNG1fpJ9dYOguxbrjUwjz1oMHMAQA3nmZOyeHQXXw1jmHygvL4uete3DeCuK fJOfDwdgPa6WmcBinX1ROq6P/QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFDEpP3L2 QLUGi/DHayL3PwlkPVmsMB8GA1UdIwQYMBaAFK/85jeYgWXmxRv7/r0Sg9URJAGQ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFNDQ2OC84Mjc1MjRFODhF RTUxMUVFQTJFRUREMTJDNEY5QUUwMi9yX3ptTjVpQlplYkZHX3YtdlJLRDFSRWtB WkEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3Jfem1ONWlCWmViRkdfdi12UktEMVJFa0FaQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF NDQ2OC84Mjc1MjRFODhFRTUxMUVFQTJFRUREMTJDNEY5QUUwMi9yX3ptTjVpQlpl YkZHX3YtdlJLRDFSRWtBWkEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCtBCv7BjeP6Dfv0dTxpk6crKknsIphvP8oKrrdNJaLHIZxJb716f5J STARnio2+jmN2ToOshFl6SBEx/5pRCNZHtTjtDmyS9Ajh856Dfp1WfvK87Yd6B4T JAl+4t3FKyp2FkNAdeiq35KlItiRpDDZsopSLXfiXEXfqnXrFcBXEXdIRsnogaPZ QF29rhEfjOIt7YSTnqHhI9L+1YFXpmA2oQHkH0IEgMmQISV897+TdgO91+7JIMes 8mN0bMcMqi7fMUTATzSh0XPE7Af3bVFU4pN+Oog09zt3z0KE3A40korUKnQ3AXDF rcyw3kmIfTgdTioG22IOLJXLLOQ9IGc+ -----END CERTIFICATE-----Generated at Sun Apr 13 02:05:04 2025 by rpki-client