$ rpki-client -vvf rpki.apnic.net/member_repository/A91E9D0C/814F6D041A1A11EC9D1CDF1EC4F9AE02/Cd4ZZ-lS7o4bLdYPiPY7omBXU-8.mft File: Cd4ZZ-lS7o4bLdYPiPY7omBXU-8.mft (raw, json) Hash identifier: 8y8c3ualBlNWYItwDDhhYjdsEgbYMTq01WzTUjRYCxE= Subject key identifier: 97:08:86:D8:4B:4A:2C:10:B8:7C:94:03:88:3E:47:29:FF:23:B2:F8 Authority key identifier: 09:DE:19:67:E9:52:EE:8E:1B:2D:D6:0F:88:F6:3B:A2:60:57:53:EF Certificate issuer: /CN=A91E9D0C/serialNumber=09DE1967E952EE8E1B2DD60F88F63BA2605753EF Certificate serial: 04D0 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Cd4ZZ-lS7o4bLdYPiPY7omBXU-8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E9D0C/814F6D041A1A11EC9D1CDF1EC4F9AE02/Cd4ZZ-lS7o4bLdYPiPY7omBXU-8.mft Manifest number: 04CA Signing time: Fri 04 Apr 2025 23:55:28 +0000 Manifest this update: Fri 04 Apr 2025 23:55:28 +0000 Manifest next update: Fri 11 Apr 2025 23:55:28 +0000 Files and hashes: 1: Cd4ZZ-lS7o4bLdYPiPY7omBXU-8.crl (hash: mQtoNBR1MsdEpJR05Paje3LppD6aHQbvx8MuxT1UJdg=) 2: 630BCB6E1A1D11EC99B84C20C4F9AE02.roa (hash: DgUDwmkN0T0UntF7QmQLHNafJtdHs9vt+l0U9HNHmvY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E9D0C/814F6D041A1A11EC9D1CDF1EC4F9AE02/Cd4ZZ-lS7o4bLdYPiPY7omBXU-8.crl rsync://rpki.apnic.net/member_repository/A91E9D0C/814F6D041A1A11EC9D1CDF1EC4F9AE02/Cd4ZZ-lS7o4bLdYPiPY7omBXU-8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Cd4ZZ-lS7o4bLdYPiPY7omBXU-8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 11 Apr 2025 23:55:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1232 (0x4d0) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E9D0C Validity Not Before: Apr 4 23:55:28 2025 GMT Not After : Apr 11 23:55:28 2025 GMT Subject: CN=67f07170-9ebe Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:af:4f:ad:16:42:2e:e2:24:1c:bb:14:0b:a5: c7:88:b0:c1:d2:dc:8c:d7:ba:e2:25:22:e9:2b:8d: 3c:42:1d:48:74:7f:ad:c3:34:e7:5f:1d:c1:f8:77: 78:45:5b:ec:12:6e:37:56:dd:8c:04:8e:6c:37:a7: f1:7d:8a:10:58:12:d9:fb:b4:e7:e2:7b:98:1a:64: 21:7a:31:b6:25:18:cb:3e:02:db:af:0e:65:4d:bd: 77:ec:7a:9b:23:73:78:ed:b6:c2:49:96:9f:bd:4d: ed:a4:55:69:5d:a0:db:d8:5a:c8:45:c2:83:35:d2: 34:c7:34:f9:2c:38:e9:76:96:f8:20:a0:f2:09:ab: 8f:98:63:cc:7d:81:65:53:4b:e0:e0:7a:9b:0b:01: f0:cb:2e:13:07:c2:fc:80:51:a4:6f:60:00:18:9c: ee:ec:eb:c6:9b:cc:b1:8f:71:88:6a:fe:00:94:06: a5:ec:54:8a:29:4e:29:f8:7a:dc:b5:0e:da:ec:65: 84:f4:4f:ae:89:5d:6e:2e:b0:e6:69:11:11:5a:73: ae:b3:de:93:18:f4:2e:f4:51:56:51:3e:1c:47:af: b0:6c:5c:d6:10:e8:5e:28:b0:9e:77:9c:d7:bc:0e: 36:eb:79:6c:02:f3:73:e4:f1:1e:e4:7d:db:9b:2a: d5:19 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 97:08:86:D8:4B:4A:2C:10:B8:7C:94:03:88:3E:47:29:FF:23:B2:F8 X509v3 Authority Key Identifier: keyid:09:DE:19:67:E9:52:EE:8E:1B:2D:D6:0F:88:F6:3B:A2:60:57:53:EF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E9D0C/814F6D041A1A11EC9D1CDF1EC4F9AE02/Cd4ZZ-lS7o4bLdYPiPY7omBXU-8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Cd4ZZ-lS7o4bLdYPiPY7omBXU-8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E9D0C/814F6D041A1A11EC9D1CDF1EC4F9AE02/Cd4ZZ-lS7o4bLdYPiPY7omBXU-8.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 1e:65:e5:b7:ca:d7:fc:7e:f2:e4:ef:67:7c:28:6d:9b:9b:32: 99:f5:17:39:f2:0b:f2:b0:cb:00:a6:33:ad:e1:17:7e:7f:d3: ff:81:f3:f6:dd:9d:e1:1f:73:2f:18:d3:e0:ab:96:16:05:fb: 1b:58:e4:fb:80:9e:74:09:11:5e:1b:48:57:1c:a8:ab:e5:c1: a1:de:51:d1:70:9f:d9:c4:f5:1a:96:ca:09:5c:6d:ad:b8:91: 8a:53:c3:a2:ab:26:fb:35:03:a6:8b:8c:34:64:e6:3f:de:98: 03:58:b5:8b:d7:28:d3:27:d6:37:29:22:70:a5:bd:4c:e4:8b: 94:e6:e4:53:c9:6c:27:ed:da:79:21:99:a8:f2:d8:3f:ad:be: 7a:b7:90:2e:f5:0c:39:b0:a7:bc:e2:db:95:6a:2b:98:07:f6: 04:30:3a:c1:b2:7b:91:db:c5:5c:3c:34:6b:48:94:12:05:e5: 64:7e:1e:d6:c1:ce:d5:58:65:92:a7:fb:38:ce:d9:38:d3:34: f1:27:85:9e:e6:c8:2a:e8:aa:07:12:dc:ac:3e:94:ef:39:4f: 3b:62:37:f0:2d:f6:62:07:eb:c2:ce:08:64:89:95:99:72:45: 83:36:b2:18:c6:fd:28:17:5a:4b:af:cb:3f:96:b3:45:f9:31: 2d:82:42:03 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBNAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTlEMEMxMTAvBgNVBAUTKDA5REUxOTY3RTk1MkVFOEUxQjJERDYwRjg4RjYzQkEy NjA1NzUzRUYwHhcNMjUwNDA0MjM1NTI4WhcNMjUwNDExMjM1NTI4WjAYMRYwFAYD VQQDEw02N2YwNzE3MC05ZWJlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAva9PrRZCLuIkHLsUC6XHiLDB0tyM17riJSLpK408Qh1IdH+twzTnXx3B+Hd4 RVvsEm43Vt2MBI5sN6fxfYoQWBLZ+7Tn4nuYGmQhejG2JRjLPgLbrw5lTb137Hqb I3N47bbCSZafvU3tpFVpXaDb2FrIRcKDNdI0xzT5LDjpdpb4IKDyCauPmGPMfYFl U0vg4HqbCwHwyy4TB8L8gFGkb2AAGJzu7OvGm8yxj3GIav4AlAal7FSKKU4p+Hrc tQ7a7GWE9E+uiV1uLrDmaRERWnOus96TGPQu9FFWUT4cR6+wbFzWEOheKLCed5zX vA4263lsAvNz5PEe5H3bmyrVGQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJcIhthL SiwQuHyUA4g+Ryn/I7L4MB8GA1UdIwQYMBaAFAneGWfpUu6OGy3WD4j2O6JgV1Pv MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFOUQwQy84MTRGNkQwNDFB MUExMUVDOUQxQ0RGMUVDNEY5QUUwMi9DZDRaWi1sUzdvNGJMZFlQaVBZN29tQlhV LTguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0NkNFpaLWxTN280YkxkWVBpUFk3b21CWFUtOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF OUQwQy84MTRGNkQwNDFBMUExMUVDOUQxQ0RGMUVDNEY5QUUwMi9DZDRaWi1sUzdv NGJMZFlQaVBZN29tQlhVLTgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAeZeW3ytf8fvLk72d8KG2bmzKZ9Rc58gvysMsApjOt4Rd+f9P/gfP2 3Z3hH3MvGNPgq5YWBfsbWOT7gJ50CRFeG0hXHKir5cGh3lHRcJ/ZxPUalsoJXG2t uJGKU8Oiqyb7NQOmi4w0ZOY/3pgDWLWL1yjTJ9Y3KSJwpb1M5IuU5uRTyWwn7dp5 IZmo8tg/rb56t5Au9Qw5sKe84tuVaiuYB/YEMDrBsnuR28VcPDRrSJQSBeVkfh7W wc7VWGWSp/s4ztk40zTxJ4We5sgq6KoHEtysPpTvOU87YjfwLfZiB+vCzghkiZWZ ckWDNrIYxv0oF1pLr8s/lrNF+TEtgkID -----END CERTIFICATE-----Generated at Sat Apr 5 18:26:10 2025 by rpki-client