$ rpki-client -vvf rpki.apnic.net/member_repository/A91EBFB0/A3AB43B2F87C11E9AA2CF158C4F9AE02/zIUJ0x-2Oo3da_LT2Ex7wLK6P8A.mft File: zIUJ0x-2Oo3da_LT2Ex7wLK6P8A.mft (raw, json) Hash identifier: O4taPMvxenNtre3Ll8iwYb84gnwD5Z8lYPFPhQ24dPg= Subject key identifier: 46:86:D3:B2:E9:C5:28:7E:22:74:CB:26:97:BE:0B:68:67:C3:52:A2 Authority key identifier: CC:85:09:D3:1F:B6:3A:8D:DD:6B:F2:D3:D8:4C:7B:C0:B2:BA:3F:C0 Certificate issuer: /CN=A91EBFB0/serialNumber=CC8509D31FB63A8DDD6BF2D3D84C7BC0B2BA3FC0 Certificate serial: 0C6C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/zIUJ0x-2Oo3da_LT2Ex7wLK6P8A.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91EBFB0/A3AB43B2F87C11E9AA2CF158C4F9AE02/zIUJ0x-2Oo3da_LT2Ex7wLK6P8A.mft Manifest number: 0C66 Signing time: Sun 06 Apr 2025 18:07:23 +0000 Manifest this update: Sun 06 Apr 2025 18:07:23 +0000 Manifest next update: Sun 13 Apr 2025 18:07:23 +0000 Files and hashes: 1: zIUJ0x-2Oo3da_LT2Ex7wLK6P8A.crl (hash: 9Qt7mwMYuP4OFeKl7v6xxYsRwp8udSHr/uC6tAIJqck=) 2: F690CAECF87D11E9A746D05BC4F9AE02.roa (hash: tPAGXaSYisbjEXVlWGxE30ABgdsZwLOrekyu2J6vfbg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91EBFB0/A3AB43B2F87C11E9AA2CF158C4F9AE02/zIUJ0x-2Oo3da_LT2Ex7wLK6P8A.crl rsync://rpki.apnic.net/member_repository/A91EBFB0/A3AB43B2F87C11E9AA2CF158C4F9AE02/zIUJ0x-2Oo3da_LT2Ex7wLK6P8A.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/zIUJ0x-2Oo3da_LT2Ex7wLK6P8A.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 13 Apr 2025 18:07:22 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3180 (0xc6c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91EBFB0 Validity Not Before: Apr 6 18:07:23 2025 GMT Not After : Apr 13 18:07:23 2025 GMT Subject: CN=67f2c2db-33a1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ea:43:ed:2d:94:3e:65:0c:a9:f7:f3:43:48:9f: d9:af:8f:7d:9b:1e:47:b9:1e:46:d7:7d:42:92:27: 7d:03:73:1f:e9:cb:ff:4e:88:8c:67:c0:8f:fc:50: 78:5e:6d:cd:ca:f3:89:ed:25:13:c6:5e:d0:cc:5b: 4a:eb:9e:f0:e7:95:1b:4d:e1:e2:42:30:be:81:56: 3c:8d:2c:11:3b:a4:04:3f:0d:61:e9:2e:97:4f:80: 30:1e:8d:df:6b:58:f5:e5:d4:3e:04:26:0f:a9:74: 31:1d:23:2e:a7:6b:93:3f:57:bc:67:f1:ac:42:39: 86:8a:54:22:79:86:b9:36:6b:8e:8f:10:76:cf:6b: a4:7e:bb:e3:04:de:ce:c0:b4:1d:e6:27:8f:95:4a: 0f:24:12:3b:76:13:72:70:cb:12:7e:15:44:55:2c: 74:15:6a:de:de:7a:58:68:ef:8f:29:1c:63:aa:39: a9:3e:34:2c:2b:46:4e:49:44:c7:ee:ec:7e:f8:a1: 47:db:92:04:4a:1a:ab:5b:7e:7b:a2:7a:32:70:eb: 37:17:06:b4:20:00:c0:69:dc:81:48:3a:d5:1e:2e: 51:b9:2d:04:e9:bb:0a:e4:4e:6e:07:f6:6f:6c:4c: a9:8c:17:f0:06:03:d1:7f:51:b3:16:1b:ac:d7:b5: 31:fd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 46:86:D3:B2:E9:C5:28:7E:22:74:CB:26:97:BE:0B:68:67:C3:52:A2 X509v3 Authority Key Identifier: keyid:CC:85:09:D3:1F:B6:3A:8D:DD:6B:F2:D3:D8:4C:7B:C0:B2:BA:3F:C0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91EBFB0/A3AB43B2F87C11E9AA2CF158C4F9AE02/zIUJ0x-2Oo3da_LT2Ex7wLK6P8A.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/zIUJ0x-2Oo3da_LT2Ex7wLK6P8A.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91EBFB0/A3AB43B2F87C11E9AA2CF158C4F9AE02/zIUJ0x-2Oo3da_LT2Ex7wLK6P8A.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 3f:01:57:10:03:68:52:fd:a7:a3:7e:46:a8:7d:91:85:a4:0b: e2:f8:63:c8:f3:25:1f:b5:a0:3e:36:ef:2d:c7:a6:6c:db:67: 01:fe:89:7c:5f:f3:2e:c5:2f:2a:10:e0:90:e2:9a:d1:5d:5c: 5f:76:34:58:80:ea:10:49:d1:43:a3:87:9c:84:d3:54:fc:94: 06:27:03:e8:be:a0:32:29:fd:a0:61:29:22:d7:96:b2:54:cf: 84:44:55:83:cb:54:e1:f6:ec:d9:2e:7e:84:42:9e:ef:04:c1: 2e:5d:7d:a9:87:2f:8c:37:14:22:1b:fa:7d:47:c1:b8:26:01: 15:78:02:7f:95:f6:3b:2f:d7:02:63:85:1f:d2:1b:a5:4d:33: 31:f6:d3:b2:9c:6c:5c:de:85:79:d1:35:30:5b:01:73:62:c8: bf:72:c0:b1:2e:e0:85:a7:47:e5:ae:d6:e6:b3:f1:84:32:87: 09:c0:c6:0d:0e:38:cd:55:86:45:be:91:d3:8c:c2:6b:c4:6e: f5:88:2c:95:37:1c:a3:d3:34:43:41:64:74:e3:73:50:95:96: 72:bc:20:81:79:8e:56:36:96:72:e6:1c:5f:37:24:d6:8a:21: e6:c3:6a:ca:cc:60:7a:52:fb:22:0b:e2:7b:8b:61:cb:d8:65: c5:a2:01:32 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDGwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RUJGQjAxMTAvBgNVBAUTKENDODUwOUQzMUZCNjNBOERERDZCRjJEM0Q4NEM3QkMw QjJCQTNGQzAwHhcNMjUwNDA2MTgwNzIzWhcNMjUwNDEzMTgwNzIzWjAYMRYwFAYD VQQDEw02N2YyYzJkYi0zM2ExMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA6kPtLZQ+ZQyp9/NDSJ/Zr499mx5HuR5G131Ckid9A3Mf6cv/ToiMZ8CP/FB4 Xm3NyvOJ7SUTxl7QzFtK657w55UbTeHiQjC+gVY8jSwRO6QEPw1h6S6XT4AwHo3f a1j15dQ+BCYPqXQxHSMup2uTP1e8Z/GsQjmGilQieYa5NmuOjxB2z2ukfrvjBN7O wLQd5iePlUoPJBI7dhNycMsSfhVEVSx0FWre3npYaO+PKRxjqjmpPjQsK0ZOSUTH 7ux++KFH25IEShqrW357onoycOs3Fwa0IADAadyBSDrVHi5RuS0E6bsK5E5uB/Zv bEypjBfwBgPRf1GzFhus17Ux/QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFEaG07Lp xSh+InTLJpe+C2hnw1KiMB8GA1UdIwQYMBaAFMyFCdMftjqN3Wvy09hMe8Cyuj/A MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFQkZCMC9BM0FCNDNCMkY4 N0MxMUU5QUEyQ0YxNThDNEY5QUUwMi96SVVKMHgtMk9vM2RhX0xUMkV4N3dMSzZQ OEEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3pJVUoweC0yT28zZGFfTFQyRXg3d0xLNlA4QS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF QkZCMC9BM0FCNDNCMkY4N0MxMUU5QUEyQ0YxNThDNEY5QUUwMi96SVVKMHgtMk9v M2RhX0xUMkV4N3dMSzZQOEEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA/AVcQA2hS/aejfkaofZGFpAvi+GPI8yUftaA+Nu8tx6Zs22cB/ol8 X/MuxS8qEOCQ4prRXVxfdjRYgOoQSdFDo4echNNU/JQGJwPovqAyKf2gYSki15ay VM+ERFWDy1Th9uzZLn6EQp7vBMEuXX2phy+MNxQiG/p9R8G4JgEVeAJ/lfY7L9cC Y4Uf0hulTTMx9tOynGxc3oV50TUwWwFzYsi/csCxLuCFp0flrtbms/GEMocJwMYN DjjNVYZFvpHTjMJrxG71iCyVNxyj0zRDQWR043NQlZZyvCCBeY5WNpZy5hxfNyTW iiHmw2rKzGB6UvsiC+J7i2HL2GXFogEy -----END CERTIFICATE-----Generated at Tue Apr 8 16:09:31 2025 by rpki-client