$ rpki-client -vvf rpki.apnic.net/member_repository/A91E89CD/3C0D4A16B05511EAA045B80EC4F9AE02/zlgHMAQJCIdOtirydgUp51w9XGg.mft File: zlgHMAQJCIdOtirydgUp51w9XGg.mft (raw, json) Hash identifier: BY8jyZNbv7rbKb8ST8kVrfu25yId1fr7GQghHwQU6vA= Subject key identifier: 74:F1:1C:54:02:18:0A:C4:FF:1A:2D:0C:56:B6:0A:AE:1D:F4:91:A6 Authority key identifier: CE:58:07:30:04:09:08:87:4E:B6:2A:F2:76:05:29:E7:5C:3D:5C:68 Certificate issuer: /CN=A91E89CD/serialNumber=CE580730040908874EB62AF2760529E75C3D5C68 Certificate serial: 08CC Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/zlgHMAQJCIdOtirydgUp51w9XGg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E89CD/3C0D4A16B05511EAA045B80EC4F9AE02/zlgHMAQJCIdOtirydgUp51w9XGg.mft Manifest number: 08BD Signing time: Wed 02 Apr 2025 20:31:23 +0000 Manifest this update: Wed 02 Apr 2025 20:31:22 +0000 Manifest next update: Wed 09 Apr 2025 20:31:22 +0000 Files and hashes: 1: zlgHMAQJCIdOtirydgUp51w9XGg.crl (hash: nEBB4DABupvBXXLvxE4HGHJcfplu4qrAffKVLy6xUYM=) 2: 8698CD28A42211EB91621734C4F9AE02.roa (hash: liguL5yWelfphfIz9rHVaKh3TqmzzrhEVoBWguDMI9M=) 3: D3ECF4B8E61D11EBB92C167BC4F9AE02.roa (hash: /n6JoBCxKb39xofyDRMG1k20W82UdWlbULQ4CPVAgMo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E89CD/3C0D4A16B05511EAA045B80EC4F9AE02/zlgHMAQJCIdOtirydgUp51w9XGg.crl rsync://rpki.apnic.net/member_repository/A91E89CD/3C0D4A16B05511EAA045B80EC4F9AE02/zlgHMAQJCIdOtirydgUp51w9XGg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/zlgHMAQJCIdOtirydgUp51w9XGg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 09 Apr 2025 20:31:22 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2252 (0x8cc) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E89CD Validity Not Before: Apr 2 20:31:22 2025 GMT Not After : Apr 9 20:31:22 2025 GMT Subject: CN=67ed9e9b-4494 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cb:6f:3b:f6:d6:55:2d:11:b5:80:2b:79:35:17: 6d:2e:ac:20:95:8b:53:69:6b:b0:29:28:ec:12:8e: 7c:fa:e6:59:7c:b8:4b:2e:aa:be:42:c8:58:a8:cd: 32:84:cb:25:3e:08:49:b3:d5:a4:67:5b:bc:ba:f9: 3a:39:53:14:5d:db:a3:3d:a9:0b:03:4a:e5:35:92: 89:c4:2d:e9:7a:4b:cb:4e:8d:92:17:e1:e4:9d:90: 26:8e:43:0f:ad:44:32:67:59:6f:fd:fb:68:33:7e: 9e:ea:62:b3:22:d7:95:81:03:59:e2:b5:86:2f:1d: 7c:3d:07:90:31:ae:ed:58:cd:88:26:12:14:7b:9b: 3a:9a:05:d0:9b:c5:0f:c6:83:b2:28:71:ab:72:db: 43:dc:90:e0:b3:ff:40:1f:59:19:19:c1:c9:b6:13: 29:61:ea:1a:1b:ca:77:8a:a7:b8:26:45:68:da:eb: 0f:44:2b:65:86:10:a8:24:f6:7a:06:43:f7:89:4f: 29:39:ef:8b:b8:a0:a2:14:74:42:c1:2f:ca:f8:9e: dd:47:ec:1c:2c:f4:42:ec:5b:ec:57:32:94:8a:90: 0c:72:5f:5d:e2:08:86:e2:74:e5:98:09:61:ff:ae: 98:b8:30:c8:f2:e5:00:4d:4c:95:90:8a:97:0a:3f: 83:69 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 74:F1:1C:54:02:18:0A:C4:FF:1A:2D:0C:56:B6:0A:AE:1D:F4:91:A6 X509v3 Authority Key Identifier: keyid:CE:58:07:30:04:09:08:87:4E:B6:2A:F2:76:05:29:E7:5C:3D:5C:68 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E89CD/3C0D4A16B05511EAA045B80EC4F9AE02/zlgHMAQJCIdOtirydgUp51w9XGg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/zlgHMAQJCIdOtirydgUp51w9XGg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E89CD/3C0D4A16B05511EAA045B80EC4F9AE02/zlgHMAQJCIdOtirydgUp51w9XGg.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 70:a9:10:df:23:4a:ee:b9:cc:ee:40:01:6e:31:22:76:a3:ec: cb:96:b8:68:6a:7d:25:75:6a:01:d8:96:ad:8c:ad:1a:17:bc: 9f:85:0b:b8:d1:0e:57:19:2a:b3:b7:5d:72:ae:ce:cf:49:8f: 6b:72:d4:73:09:51:07:fe:40:c3:3e:2d:12:68:44:7d:64:5d: 83:2d:c7:33:57:d5:30:5e:bc:2c:d5:03:18:76:7c:91:05:0d: 86:d5:07:0b:f9:77:ca:eb:7f:81:ff:4b:ba:3a:3f:dd:47:10: a3:8c:84:8b:fe:46:2c:cc:cf:7c:76:dd:75:4b:ba:11:61:d4: ff:b8:a2:81:b1:ce:fa:1c:ba:18:34:db:94:8f:25:a5:76:7a: 12:24:3e:59:5b:df:84:9e:f1:de:fe:7a:12:5b:f4:ef:8a:8d: b3:d3:84:e5:95:8e:da:5b:e2:dd:0e:87:b3:e1:f8:8a:aa:09: a7:10:4d:36:44:95:58:de:0f:de:bb:19:2e:fd:c8:8a:e4:f1: 2e:4c:09:9f:60:47:08:15:dd:bc:41:19:7e:75:b2:b9:69:a1: 84:df:27:59:65:9d:ae:d0:dd:b6:d9:a9:61:50:dd:76:3a:88: 8a:04:74:0e:92:44:17:ab:43:ec:8f:4d:11:87:9c:f0:3e:b3: 6f:d5:cf:de -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCMwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTg5Q0QxMTAvBgNVBAUTKENFNTgwNzMwMDQwOTA4ODc0RUI2MkFGMjc2MDUyOUU3 NUMzRDVDNjgwHhcNMjUwNDAyMjAzMTIyWhcNMjUwNDA5MjAzMTIyWjAYMRYwFAYD VQQDEw02N2VkOWU5Yi00NDk0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAy2879tZVLRG1gCt5NRdtLqwglYtTaWuwKSjsEo58+uZZfLhLLqq+QshYqM0y hMslPghJs9WkZ1u8uvk6OVMUXdujPakLA0rlNZKJxC3pekvLTo2SF+HknZAmjkMP rUQyZ1lv/ftoM36e6mKzIteVgQNZ4rWGLx18PQeQMa7tWM2IJhIUe5s6mgXQm8UP xoOyKHGrcttD3JDgs/9AH1kZGcHJthMpYeoaG8p3iqe4JkVo2usPRCtlhhCoJPZ6 BkP3iU8pOe+LuKCiFHRCwS/K+J7dR+wcLPRC7FvsVzKUipAMcl9d4giG4nTlmAlh /66YuDDI8uUATUyVkIqXCj+DaQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFHTxHFQC GArE/xotDFa2Cq4d9JGmMB8GA1UdIwQYMBaAFM5YBzAECQiHTrYq8nYFKedcPVxo MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFODlDRC8zQzBENEExNkIw NTUxMUVBQTA0NUI4MEVDNEY5QUUwMi96bGdITUFRSkNJZE90aXJ5ZGdVcDUxdzlY R2cuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3psZ0hNQVFKQ0lkT3RpcnlkZ1VwNTF3OVhHZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF ODlDRC8zQzBENEExNkIwNTUxMUVBQTA0NUI4MEVDNEY5QUUwMi96bGdITUFRSkNJ ZE90aXJ5ZGdVcDUxdzlYR2cubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBwqRDfI0ruuczuQAFuMSJ2o+zLlrhoan0ldWoB2JatjK0aF7yfhQu4 0Q5XGSqzt11yrs7PSY9rctRzCVEH/kDDPi0SaER9ZF2DLcczV9UwXrws1QMYdnyR BQ2G1QcL+XfK63+B/0u6Oj/dRxCjjISL/kYszM98dt11S7oRYdT/uKKBsc76HLoY NNuUjyWldnoSJD5ZW9+EnvHe/noSW/Tvio2z04TllY7aW+LdDoez4fiKqgmnEE02 RJVY3g/euxku/ciK5PEuTAmfYEcIFd28QRl+dbK5aaGE3ydZZZ2u0N222alhUN12 OoiKBHQOkkQXq0Psj00Rh5zwPrNv1c/e -----END CERTIFICATE-----Generated at Fri Apr 4 21:47:32 2025 by rpki-client