$ rpki-client -vvf rpki.apnic.net/member_repository/A91EBC61/446BD7A2B6C411EFA24AA616C4F9AE02/ZNKz1lpcbM5NCNeP_tsoVrZB1qM.mft File: ZNKz1lpcbM5NCNeP_tsoVrZB1qM.mft (raw, json) Hash identifier: lWqrXSicc129ooLoufq7nN6tVpEKCAYcqZIramUTJ0U= Subject key identifier: 98:CD:97:CA:25:0A:3C:F8:C1:01:21:79:28:85:1F:3C:7C:D6:DA:2B Authority key identifier: 64:D2:B3:D6:5A:5C:6C:CE:4D:08:D7:8F:FE:DB:28:56:B6:41:D6:A3 Certificate issuer: /CN=A91EBC61/serialNumber=64D2B3D65A5C6CCE4D08D78FFEDB2856B641D6A3 Certificate serial: 41 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ZNKz1lpcbM5NCNeP_tsoVrZB1qM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91EBC61/446BD7A2B6C411EFA24AA616C4F9AE02/ZNKz1lpcbM5NCNeP_tsoVrZB1qM.mft Manifest number: 40 Signing time: Wed 09 Apr 2025 06:19:05 +0000 Manifest this update: Wed 09 Apr 2025 06:19:05 +0000 Manifest next update: Wed 16 Apr 2025 06:19:05 +0000 Files and hashes: 1: ZNKz1lpcbM5NCNeP_tsoVrZB1qM.crl (hash: G4hHxor7WDC/noD6uGSVGbd/9xCD9ODTwlkBYq//r/g=) 2: 8D26DADCB6C411EF99C3B758C4F9AE02.roa (hash: BCZ1HJoEZyrIFeiF3ZHLW8BBZXBaO4KH4xqAbBol+hw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91EBC61/446BD7A2B6C411EFA24AA616C4F9AE02/ZNKz1lpcbM5NCNeP_tsoVrZB1qM.crl rsync://rpki.apnic.net/member_repository/A91EBC61/446BD7A2B6C411EFA24AA616C4F9AE02/ZNKz1lpcbM5NCNeP_tsoVrZB1qM.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ZNKz1lpcbM5NCNeP_tsoVrZB1qM.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 16 Apr 2025 06:19:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 65 (0x41) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91EBC61 Validity Not Before: Apr 9 06:19:05 2025 GMT Not After : Apr 16 06:19:05 2025 GMT Subject: CN=67f61159-331d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c9:62:ee:ee:ff:10:62:64:dc:17:15:fa:85:1f: 20:4a:74:c4:3a:a5:12:d5:07:99:9f:fa:63:cc:36: 21:71:8f:1b:f1:a6:b5:22:51:a5:f5:77:b2:c6:4c: 05:8e:26:17:26:4e:d4:ae:c5:c8:ef:12:ef:8f:a3: 9b:57:b3:7c:25:b9:02:28:df:92:ef:7f:2f:87:45: ff:84:35:ce:71:a3:8c:86:dc:ed:86:0c:6a:dc:b6: 60:e9:4b:15:29:17:73:b3:b9:cb:48:d5:40:29:78: 37:4a:29:06:a5:4b:0b:53:8c:66:e9:51:fa:10:f3: 24:63:fb:8f:ca:ce:8c:8b:0a:cf:7d:9e:44:ef:57: c0:d2:e9:fc:cb:d2:43:5b:6b:e5:91:9e:f5:ee:7c: 03:10:2b:12:bd:1d:ca:da:aa:b4:1d:30:0d:19:96: ac:31:bb:ff:99:82:99:b5:29:db:2f:4d:e9:12:57: 4e:6c:1e:18:7a:c5:4e:2c:3f:30:da:c8:63:3f:22: 69:f3:7b:ea:d1:c1:8d:2a:83:5d:51:56:1e:ab:94: 5e:58:27:79:d6:d7:e2:ab:d7:3f:32:3e:ce:c7:30: 52:d6:9a:df:39:57:e8:e3:06:61:9f:94:83:65:a0: ed:b0:aa:6f:be:28:91:8a:3f:b6:02:c3:cf:51:81: 96:61 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 98:CD:97:CA:25:0A:3C:F8:C1:01:21:79:28:85:1F:3C:7C:D6:DA:2B X509v3 Authority Key Identifier: keyid:64:D2:B3:D6:5A:5C:6C:CE:4D:08:D7:8F:FE:DB:28:56:B6:41:D6:A3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91EBC61/446BD7A2B6C411EFA24AA616C4F9AE02/ZNKz1lpcbM5NCNeP_tsoVrZB1qM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ZNKz1lpcbM5NCNeP_tsoVrZB1qM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91EBC61/446BD7A2B6C411EFA24AA616C4F9AE02/ZNKz1lpcbM5NCNeP_tsoVrZB1qM.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 7f:f5:dd:d3:f0:38:5c:00:ca:f6:a3:8d:35:56:f8:43:35:93: 23:03:03:d7:c2:97:ea:ed:73:d1:8d:85:c0:73:c3:fd:20:7f: de:22:e1:51:36:06:4e:c8:8f:21:dc:f3:78:40:bd:c3:e0:a5: ee:83:2b:5f:51:b6:af:80:3e:dd:b9:14:b7:46:de:0e:16:5d: 27:1e:3e:de:4a:c9:99:61:95:f5:d0:f5:3e:ec:fd:83:1b:d9: d9:62:0d:f0:26:86:f2:c3:f9:8d:29:eb:a0:5b:d0:7c:18:df: 66:73:d6:6a:16:f2:0f:77:81:93:44:33:d1:d9:33:07:54:02: 7c:e2:6c:a8:b3:e3:d1:57:ce:08:7f:f9:b0:bc:6f:a5:97:ea: cb:a1:b0:d6:69:4c:1f:d4:28:f3:67:de:68:e3:a8:be:f2:ac: 4b:61:5a:16:05:c2:93:ac:5c:38:75:33:bf:81:17:0c:93:0b: 6a:69:34:31:be:2f:31:53:f2:4f:38:52:bd:25:64:c3:2a:c9: 49:21:7f:02:c3:ea:3f:02:8e:6e:c2:e3:59:8b:50:ed:3b:c5: ac:35:64:ff:a0:22:b4:91:d5:8b:a3:76:12:51:19:a4:8c:d7: c9:c3:b7:ca:d4:6f:99:ec:71:d0:d6:b2:3d:88:0d:11:a2:73: 89:58:75:33 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBQTANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFF QkM2MTExMC8GA1UEBRMoNjREMkIzRDY1QTVDNkNDRTREMDhENzhGRkVEQjI4NTZC NjQxRDZBMzAeFw0yNTA0MDkwNjE5MDVaFw0yNTA0MTYwNjE5MDVaMBgxFjAUBgNV BAMTDTY3ZjYxMTU5LTMzMWQwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDJYu7u/xBiZNwXFfqFHyBKdMQ6pRLVB5mf+mPMNiFxjxvxprUiUaX1d7LGTAWO JhcmTtSuxcjvEu+Po5tXs3wluQIo35Lvfy+HRf+ENc5xo4yG3O2GDGrctmDpSxUp F3OzuctI1UApeDdKKQalSwtTjGbpUfoQ8yRj+4/KzoyLCs99nkTvV8DS6fzL0kNb a+WRnvXufAMQKxK9HcraqrQdMA0Zlqwxu/+Zgpm1KdsvTekSV05sHhh6xU4sPzDa yGM/Imnze+rRwY0qg11RVh6rlF5YJ3nW1+Kr1z8yPs7HMFLWmt85V+jjBmGflINl oO2wqm++KJGKP7YCw89RgZZhAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUmM2XyiUK PPjBASF5KIUfPHzW2iswHwYDVR0jBBgwFoAUZNKz1lpcbM5NCNeP/tsoVrZB1qMw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUVCQzYxLzQ0NkJEN0EyQjZD NDExRUZBMjRBQTYxNkM0RjlBRTAyL1pOS3oxbHBjYk01TkNOZVBfdHNvVnJaQjFx TS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvWk5LejFscGNiTTVOQ05lUF90c29WclpCMXFNLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUVC QzYxLzQ0NkJEN0EyQjZDNDExRUZBMjRBQTYxNkM0RjlBRTAyL1pOS3oxbHBjYk01 TkNOZVBfdHNvVnJaQjFxTS5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAH/13dPwOFwAyvajjTVW+EM1kyMDA9fCl+rtc9GNhcBzw/0gf94i4VE2 Bk7IjyHc83hAvcPgpe6DK19Rtq+APt25FLdG3g4WXScePt5KyZlhlfXQ9T7s/YMb 2dliDfAmhvLD+Y0p66Bb0HwY32Zz1moW8g93gZNEM9HZMwdUAnzibKiz49FXzgh/ +bC8b6WX6suhsNZpTB/UKPNn3mjjqL7yrEthWhYFwpOsXDh1M7+BFwyTC2ppNDG+ LzFT8k84Ur0lZMMqyUkhfwLD6j8Cjm7C41mLUO07xaw1ZP+gIrSR1YujdhJRGaSM 18nDt8rUb5nscdDWsj2IDRGic4lYdTM= -----END CERTIFICATE-----Generated at Thu Apr 10 23:24:22 2025 by rpki-client