$ rpki-client -vvf rpki.apnic.net/member_repository/A91E6419/FA6E36CC4ED311EDA5E53040C4F9AE02/iV-zzi-cLke5FLsqa2bHfVOXpAo.mft File: iV-zzi-cLke5FLsqa2bHfVOXpAo.mft (raw, json) Hash identifier: DZMvKZWKK17VgmzlGZKZiTFgNXosZEjm2foqGJ4uCxo= Subject key identifier: 9E:6D:ED:5E:8F:3A:DA:5C:11:1D:69:B3:57:CB:AF:FC:45:A0:BB:21 Authority key identifier: 89:5F:B3:CE:2F:9C:2E:47:B9:14:BB:2A:6B:66:C7:7D:53:97:A4:0A Certificate issuer: /CN=A91E6419/serialNumber=895FB3CE2F9C2E47B914BB2A6B66C77D5397A40A Certificate serial: 01D6 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iV-zzi-cLke5FLsqa2bHfVOXpAo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E6419/FA6E36CC4ED311EDA5E53040C4F9AE02/iV-zzi-cLke5FLsqa2bHfVOXpAo.mft Manifest number: 01D1 Signing time: Wed 09 Apr 2025 01:53:08 +0000 Manifest this update: Wed 09 Apr 2025 01:53:07 +0000 Manifest next update: Wed 16 Apr 2025 01:53:07 +0000 Files and hashes: 1: iV-zzi-cLke5FLsqa2bHfVOXpAo.crl (hash: ST4SaMUUir2Q3E8KjoN6ppHM8k/+npIm829s+39h3FM=) 2: 38DEC3C04ED611ED84336740C4F9AE02.roa (hash: GwA8WNqmVW1s9tawzkiqtYC7xFjjdtlbsl+Ur+WNSNc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E6419/FA6E36CC4ED311EDA5E53040C4F9AE02/iV-zzi-cLke5FLsqa2bHfVOXpAo.crl rsync://rpki.apnic.net/member_repository/A91E6419/FA6E36CC4ED311EDA5E53040C4F9AE02/iV-zzi-cLke5FLsqa2bHfVOXpAo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iV-zzi-cLke5FLsqa2bHfVOXpAo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 16 Apr 2025 01:53:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 470 (0x1d6) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E6419 Validity Not Before: Apr 9 01:53:07 2025 GMT Not After : Apr 16 01:53:07 2025 GMT Subject: CN=67f5d304-3f3e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b1:53:77:dc:eb:ab:00:11:9d:76:fe:69:75:dc: 50:53:3f:e1:86:ad:33:ca:52:4a:f3:62:39:4d:e0: b3:04:38:3e:85:aa:ea:fc:37:92:6b:80:dd:ae:db: e6:37:54:6f:9c:dc:8d:a4:f5:b8:76:00:a7:02:20: e8:8a:6a:e0:2b:19:c8:1c:11:81:7e:94:2d:6b:95: 6c:d7:3c:1d:43:ab:f3:7f:a6:f3:ad:ae:bf:b1:c2: 0b:da:79:ea:20:66:ad:69:c7:dd:8d:f4:b3:2b:a9: 19:ee:7e:52:45:c4:2c:23:76:43:fe:b1:e4:fb:99: cd:47:2b:c9:da:10:a8:46:71:02:a3:0c:84:f5:83: 44:8e:88:be:03:80:77:b7:d7:6a:f1:e1:bd:f0:cf: 1f:9b:df:92:a7:5a:27:ca:ac:fd:89:1f:ff:57:4f: ea:30:96:73:11:10:ce:dd:7e:c2:50:d9:ed:76:dd: da:9c:4c:3a:8b:a0:49:a7:b1:1a:fc:98:78:c6:db: 5e:47:5f:b7:19:a7:4d:13:e3:dc:57:66:9c:4e:ec: 48:48:aa:67:e5:69:a3:5e:c2:67:59:7c:4a:67:51: 72:25:b6:10:ca:a9:57:8d:bd:3a:a2:0a:f8:a2:00: 50:c9:31:17:10:16:bd:69:c6:fd:af:1d:44:09:a1: 58:e3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9E:6D:ED:5E:8F:3A:DA:5C:11:1D:69:B3:57:CB:AF:FC:45:A0:BB:21 X509v3 Authority Key Identifier: keyid:89:5F:B3:CE:2F:9C:2E:47:B9:14:BB:2A:6B:66:C7:7D:53:97:A4:0A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E6419/FA6E36CC4ED311EDA5E53040C4F9AE02/iV-zzi-cLke5FLsqa2bHfVOXpAo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iV-zzi-cLke5FLsqa2bHfVOXpAo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E6419/FA6E36CC4ED311EDA5E53040C4F9AE02/iV-zzi-cLke5FLsqa2bHfVOXpAo.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 49:4f:29:1b:c3:4a:c8:37:b8:9d:e5:18:2b:0c:57:27:e9:64: ef:22:b4:91:76:d6:17:02:f2:ae:28:7e:0d:ee:e3:e6:9f:c3: 91:59:d2:7b:81:16:57:c6:38:41:5a:02:75:5f:82:81:24:36: 4c:e0:4e:7c:f7:c5:02:bb:d5:ed:42:0c:2d:2c:66:59:56:dd: 17:16:eb:7b:7c:6b:a6:41:9d:37:a3:20:4f:39:d9:73:41:8b: 09:98:37:ce:31:d2:78:21:32:87:72:bc:3f:65:a1:f9:a7:4b: 03:82:d0:16:95:f9:77:67:79:0a:24:f3:3c:72:54:79:0b:db: 16:8c:4a:5c:80:9a:7d:31:ae:75:a9:b6:b2:95:82:a7:9f:94: ed:18:8d:3b:a9:0a:4d:41:a1:b6:12:71:30:13:cd:6a:6d:0a: aa:88:8e:dd:be:11:48:59:8c:a0:bb:ce:08:1e:16:af:11:db: 82:f8:2f:fc:a6:95:24:0d:50:18:b4:04:2d:3f:f9:4a:45:af: 89:a5:f3:c0:2a:7f:30:b6:f0:da:9d:e6:55:39:5a:a2:df:c8: 15:28:96:a4:e0:8b:f2:86:38:d7:37:1f:cb:c1:da:dc:ad:65: 26:ec:1d:27:c2:61:f5:11:e1:87:eb:8e:52:46:ec:4e:d1:4b: 89:86:25:3c -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAdYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTY0MTkxMTAvBgNVBAUTKDg5NUZCM0NFMkY5QzJFNDdCOTE0QkIyQTZCNjZDNzdE NTM5N0E0MEEwHhcNMjUwNDA5MDE1MzA3WhcNMjUwNDE2MDE1MzA3WjAYMRYwFAYD VQQDEw02N2Y1ZDMwNC0zZjNlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsVN33OurABGddv5pddxQUz/hhq0zylJK82I5TeCzBDg+harq/DeSa4Ddrtvm N1RvnNyNpPW4dgCnAiDoimrgKxnIHBGBfpQta5Vs1zwdQ6vzf6bzra6/scIL2nnq IGatacfdjfSzK6kZ7n5SRcQsI3ZD/rHk+5nNRyvJ2hCoRnECowyE9YNEjoi+A4B3 t9dq8eG98M8fm9+Sp1onyqz9iR//V0/qMJZzERDO3X7CUNntdt3anEw6i6BJp7Ea /Jh4xtteR1+3GadNE+PcV2acTuxISKpn5WmjXsJnWXxKZ1FyJbYQyqlXjb06ogr4 ogBQyTEXEBa9acb9rx1ECaFY4wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJ5t7V6P OtpcER1ps1fLr/xFoLshMB8GA1UdIwQYMBaAFIlfs84vnC5HuRS7Kmtmx31Tl6QK MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFNjQxOS9GQTZFMzZDQzRF RDMxMUVEQTVFNTMwNDBDNEY5QUUwMi9pVi16emktY0xrZTVGTHNxYTJiSGZWT1hw QW8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2lWLXp6aS1jTGtlNUZMc3FhMmJIZlZPWHBBby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF NjQxOS9GQTZFMzZDQzRFRDMxMUVEQTVFNTMwNDBDNEY5QUUwMi9pVi16emktY0xr ZTVGTHNxYTJiSGZWT1hwQW8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBJTykbw0rIN7id5RgrDFcn6WTvIrSRdtYXAvKuKH4N7uPmn8ORWdJ7 gRZXxjhBWgJ1X4KBJDZM4E5898UCu9XtQgwtLGZZVt0XFut7fGumQZ03oyBPOdlz QYsJmDfOMdJ4ITKHcrw/ZaH5p0sDgtAWlfl3Z3kKJPM8clR5C9sWjEpcgJp9Ma51 qbaylYKnn5TtGI07qQpNQaG2EnEwE81qbQqqiI7dvhFIWYygu84IHhavEduC+C/8 ppUkDVAYtAQtP/lKRa+JpfPAKn8wtvDaneZVOVqi38gVKJak4IvyhjjXNx/Lwdrc rWUm7B0nwmH1EeGH645SRuxO0UuJhiU8 -----END CERTIFICATE-----Generated at Thu Apr 10 18:35:01 2025 by rpki-client