$ rpki-client -vvf rpki.apnic.net/member_repository/A91E77F3/94EFCC0C5B9C11EF8CEA3145C4F9AE02/ZRFLF0P9YN13KN7h6FtJ7qG_Da0.mft File: ZRFLF0P9YN13KN7h6FtJ7qG_Da0.mft (raw, json) Hash identifier: inttqBCKZphTgaGfH7XlK5GZsYaeV9qhvsDpsstK67Q= Subject key identifier: 9D:75:B3:70:E4:5C:7D:DB:76:79:D5:9D:AE:DD:60:2B:E2:09:51:B6 Authority key identifier: 65:11:4B:17:43:FD:60:DD:77:28:DE:E1:E8:5B:49:EE:A1:BF:0D:AD Certificate issuer: /CN=A91E77F3/serialNumber=65114B1743FD60DD7728DEE1E85B49EEA1BF0DAD Certificate serial: 79 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ZRFLF0P9YN13KN7h6FtJ7qG_Da0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E77F3/94EFCC0C5B9C11EF8CEA3145C4F9AE02/ZRFLF0P9YN13KN7h6FtJ7qG_Da0.mft Manifest number: 77 Signing time: Sat 29 Mar 2025 06:05:33 +0000 Manifest this update: Sat 29 Mar 2025 06:05:32 +0000 Manifest next update: Sat 05 Apr 2025 06:05:32 +0000 Files and hashes: 1: ZRFLF0P9YN13KN7h6FtJ7qG_Da0.crl (hash: qwM1KxlT+7KifZi8zD3jH1SDy5M5gkQa6YPqRr4huXQ=) 2: CAADA49A5B9C11EF9AD89645C4F9AE02.roa (hash: ScK5Mkjc4CtGpC9rnxIJeiwAah1HeyqfBAVqLucgBa0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E77F3/94EFCC0C5B9C11EF8CEA3145C4F9AE02/ZRFLF0P9YN13KN7h6FtJ7qG_Da0.crl rsync://rpki.apnic.net/member_repository/A91E77F3/94EFCC0C5B9C11EF8CEA3145C4F9AE02/ZRFLF0P9YN13KN7h6FtJ7qG_Da0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ZRFLF0P9YN13KN7h6FtJ7qG_Da0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 05 Apr 2025 05:08:51 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 121 (0x79) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E77F3 Validity Not Before: Mar 29 06:05:32 2025 GMT Not After : Apr 5 06:05:32 2025 GMT Subject: CN=67e78dad-d586 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d2:4a:49:ba:91:75:1e:a6:12:dd:09:d0:d8:4b: 3e:33:ed:44:f5:af:e2:47:18:4b:d9:34:19:e1:b9: e0:24:5c:e7:07:b9:2a:de:dc:cc:3e:c0:9f:61:ec: 76:79:8f:6d:b2:59:c1:a2:45:25:12:6f:74:48:2a: 74:a3:8c:7e:e2:8b:1c:3a:f0:2e:8f:99:a6:dc:a0: 10:6f:c9:fe:41:72:cc:3b:f1:c1:0a:c3:7e:fd:6f: ce:c5:94:bb:32:39:82:20:ea:82:d0:a1:33:96:c0: f3:98:54:fd:d2:f5:6b:83:64:67:b9:15:84:64:93: 68:43:38:e7:3f:19:ab:cc:a7:cb:64:42:85:69:1f: e6:c4:08:4b:be:21:4f:6b:19:27:67:98:11:10:5d: 1d:09:b1:a3:a7:6c:44:91:7a:e6:38:f0:64:92:8f: d4:6e:c3:0a:30:57:c7:e0:92:b5:c1:8a:c0:4a:f0: db:92:c0:c9:30:99:9d:3b:e3:77:ee:67:13:09:fa: 26:9b:ef:fb:6c:ad:a6:0a:a0:ad:c0:c7:2c:99:1d: 02:0b:29:2e:c3:23:ea:34:f3:bb:ad:99:dd:ac:c6: 45:08:25:93:94:e8:4e:16:7e:11:c5:fc:fe:dc:40: 35:1d:e0:61:dc:38:24:ae:6e:04:90:ec:3b:9a:5d: 12:85 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9D:75:B3:70:E4:5C:7D:DB:76:79:D5:9D:AE:DD:60:2B:E2:09:51:B6 X509v3 Authority Key Identifier: keyid:65:11:4B:17:43:FD:60:DD:77:28:DE:E1:E8:5B:49:EE:A1:BF:0D:AD X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E77F3/94EFCC0C5B9C11EF8CEA3145C4F9AE02/ZRFLF0P9YN13KN7h6FtJ7qG_Da0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ZRFLF0P9YN13KN7h6FtJ7qG_Da0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E77F3/94EFCC0C5B9C11EF8CEA3145C4F9AE02/ZRFLF0P9YN13KN7h6FtJ7qG_Da0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption d8:6c:7d:7b:6b:b4:06:1e:2c:b9:a6:b6:45:35:cd:fb:4b:58: 83:30:8b:2d:7c:3b:2b:ee:bf:0c:3d:74:3e:87:a7:29:03:75: 74:30:69:91:91:2f:4c:46:ea:ed:84:e1:f9:82:ae:86:b8:e9: d9:5e:b0:e1:07:19:7f:6c:ed:19:dd:85:da:cf:4c:bd:d9:ab: 1e:79:97:ba:dd:a3:29:7b:9e:61:71:1f:8a:b5:08:3c:04:c5: 5b:6b:d8:6f:f8:59:f0:2e:da:4d:5c:46:ce:f8:3b:66:6b:0e: 0a:63:e1:b0:c9:3f:1d:47:e7:06:08:6b:cc:40:e3:65:29:21: 2b:5d:24:65:aa:6c:7a:e6:fe:bf:1d:96:9f:0e:69:95:77:59: d9:58:11:27:d3:cd:3e:4c:4b:1d:18:6e:1d:99:6f:8e:12:4e: a6:af:80:3c:4c:73:09:75:cd:94:70:b7:84:df:23:56:d1:1b: 89:4a:4e:89:fe:36:59:24:c9:ca:a8:38:b8:aa:93:97:db:22: 3f:6b:70:4e:7f:e2:8e:56:66:3c:aa:b3:84:01:52:40:53:de: 7a:5a:99:55:79:57:d2:15:b9:8d:fd:6e:08:3c:09:d8:e3:bc: 3d:1f:c3:5a:d2:6f:ca:94:10:90:3e:9a:2a:0f:d3:6e:a5:20: 8a:1f:6d:0c -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBeTANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFF NzdGMzExMC8GA1UEBRMoNjUxMTRCMTc0M0ZENjBERDc3MjhERUUxRTg1QjQ5RUVB MUJGMERBRDAeFw0yNTAzMjkwNjA1MzJaFw0yNTA0MDUwNjA1MzJaMBgxFjAUBgNV BAMTDTY3ZTc4ZGFkLWQ1ODYwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDSSkm6kXUephLdCdDYSz4z7UT1r+JHGEvZNBnhueAkXOcHuSre3Mw+wJ9h7HZ5 j22yWcGiRSUSb3RIKnSjjH7iixw68C6PmabcoBBvyf5Bcsw78cEKw379b87FlLsy OYIg6oLQoTOWwPOYVP3S9WuDZGe5FYRkk2hDOOc/GavMp8tkQoVpH+bECEu+IU9r GSdnmBEQXR0JsaOnbESReuY48GSSj9RuwwowV8fgkrXBisBK8NuSwMkwmZ0743fu ZxMJ+iab7/tsraYKoK3AxyyZHQILKS7DI+o087utmd2sxkUIJZOU6E4WfhHF/P7c QDUd4GHcOCSubgSQ7DuaXRKFAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUnXWzcORc fdt2edWdrt1gK+IJUbYwHwYDVR0jBBgwFoAUZRFLF0P9YN13KN7h6FtJ7qG/Da0w DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUU3N0YzLzk0RUZDQzBDNUI5 QzExRUY4Q0VBMzE0NUM0RjlBRTAyL1pSRkxGMFA5WU4xM0tON2g2RnRKN3FHX0Rh MC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvWlJGTEYwUDlZTjEzS043aDZGdEo3cUdfRGEwLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUU3 N0YzLzk0RUZDQzBDNUI5QzExRUY4Q0VBMzE0NUM0RjlBRTAyL1pSRkxGMFA5WU4x M0tON2g2RnRKN3FHX0RhMC5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBANhsfXtrtAYeLLmmtkU1zftLWIMwiy18Oyvuvww9dD6HpykDdXQwaZGR L0xG6u2E4fmCroa46dlesOEHGX9s7RndhdrPTL3Zqx55l7rdoyl7nmFxH4q1CDwE xVtr2G/4WfAu2k1cRs74O2ZrDgpj4bDJPx1H5wYIa8xA42UpIStdJGWqbHrm/r8d lp8OaZV3WdlYESfTzT5MSx0Ybh2Zb44STqavgDxMcwl1zZRwt4TfI1bRG4lKTon+ NlkkycqoOLiqk5fbIj9rcE5/4o5WZjyqs4QBUkBT3npamVV5V9IVuY39bgg8Cdjj vD0fw1rSb8qUEJA+mioP026lIIofbQw= -----END CERTIFICATE-----Generated at Fri Apr 4 22:19:41 2025 by rpki-client