$ rpki-client -vvf rpki.apnic.net/member_repository/A91ED8E0/EE2D5326B94711EA8A649E76C4F9AE02/zFQZyKeLzVOtFxxbdKQHHZU5UEk.mft File: zFQZyKeLzVOtFxxbdKQHHZU5UEk.mft (raw, json) Hash identifier: pjkjHmkpReao9CC4FrBlOonaGVFpEOApTR6LamacglU= Subject key identifier: 67:29:87:3C:E2:82:E7:0B:90:BD:B4:E1:9D:CB:79:BD:5E:90:53:84 Authority key identifier: CC:54:19:C8:A7:8B:CD:53:AD:17:1C:5B:74:A4:07:1D:95:39:50:49 Certificate issuer: /CN=A91ED8E0/serialNumber=CC5419C8A78BCD53AD171C5B74A4071D95395049 Certificate serial: 08A6 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/zFQZyKeLzVOtFxxbdKQHHZU5UEk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91ED8E0/EE2D5326B94711EA8A649E76C4F9AE02/zFQZyKeLzVOtFxxbdKQHHZU5UEk.mft Manifest number: 0894 Signing time: Fri 04 Apr 2025 20:44:45 +0000 Manifest this update: Fri 04 Apr 2025 20:44:45 +0000 Manifest next update: Fri 11 Apr 2025 20:44:45 +0000 Files and hashes: 1: zFQZyKeLzVOtFxxbdKQHHZU5UEk.crl (hash: EKI8+03x/sZVRYYs/7dj2A+c9bbkr6JNGzgtKiRCZEE=) 2: 2BEC62FA5DA011EF8E541175C4F9AE02.roa (hash: j0i0jOhZZOWP9s/TIb9RjR+IPetIqCuM8Ixx2VI3fzI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91ED8E0/EE2D5326B94711EA8A649E76C4F9AE02/zFQZyKeLzVOtFxxbdKQHHZU5UEk.crl rsync://rpki.apnic.net/member_repository/A91ED8E0/EE2D5326B94711EA8A649E76C4F9AE02/zFQZyKeLzVOtFxxbdKQHHZU5UEk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/zFQZyKeLzVOtFxxbdKQHHZU5UEk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 11 Apr 2025 19:54:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2214 (0x8a6) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91ED8E0 Validity Not Before: Apr 4 20:44:45 2025 GMT Not After : Apr 11 20:44:45 2025 GMT Subject: CN=67f044bd-0dc9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e6:34:b9:3f:e2:7c:9f:16:5d:54:f0:14:c5:fa: dd:5a:bf:65:d9:d4:b8:1c:f4:d7:45:03:0b:94:47: d9:26:be:71:36:d0:f8:9b:b4:1d:a1:3a:65:08:06: 5b:cc:cb:71:17:29:47:6d:9a:93:31:83:2e:8f:86: 5d:76:05:63:4c:50:82:ec:44:12:c0:22:19:83:8f: 69:4e:6f:be:4d:73:7b:7c:ed:32:bc:c7:1b:83:46: b6:a8:42:19:05:81:52:9d:9b:81:a5:4d:c9:e6:68: 0e:cf:79:bf:ef:7c:2d:7d:6a:7e:c2:67:6a:e2:61: 6d:75:de:36:5f:e0:69:9c:3d:59:11:53:c7:22:91: d4:25:49:52:31:4e:73:ce:cc:25:c8:24:7c:53:68: ff:04:f1:1f:31:ac:49:a4:63:b9:a9:83:65:34:6c: 60:87:fc:b2:a6:2f:d3:3b:6e:59:f5:1e:3f:70:8a: b1:b3:20:50:91:87:f4:7a:74:ef:0b:b8:65:2f:63: 17:48:e6:24:ef:2d:96:71:ac:d6:df:d1:b9:a1:4d: 92:2e:f3:9a:12:82:bf:9f:af:f4:34:32:27:7c:f0: ac:0b:00:ff:af:5a:08:ab:48:8d:63:aa:f5:23:14: fa:0a:3f:46:45:e1:a9:5d:bc:83:52:d9:0c:67:ef: f1:cb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 67:29:87:3C:E2:82:E7:0B:90:BD:B4:E1:9D:CB:79:BD:5E:90:53:84 X509v3 Authority Key Identifier: keyid:CC:54:19:C8:A7:8B:CD:53:AD:17:1C:5B:74:A4:07:1D:95:39:50:49 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91ED8E0/EE2D5326B94711EA8A649E76C4F9AE02/zFQZyKeLzVOtFxxbdKQHHZU5UEk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/zFQZyKeLzVOtFxxbdKQHHZU5UEk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91ED8E0/EE2D5326B94711EA8A649E76C4F9AE02/zFQZyKeLzVOtFxxbdKQHHZU5UEk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption bf:27:ed:0e:31:59:6e:47:b6:a0:de:6f:46:89:f7:7b:69:72: 94:9d:f3:00:4f:6e:ac:01:49:a9:34:81:eb:e8:c3:46:e8:ef: ce:35:94:d7:0c:e6:73:63:c1:54:49:59:29:fb:72:0f:e8:df: be:38:68:0c:9d:d1:d8:6c:e8:08:24:dd:3e:32:c1:d1:9b:d7: 21:90:c4:53:44:34:58:a7:11:4e:c8:98:03:6b:1f:19:9e:8a: fa:00:67:ca:52:f4:11:e7:14:44:fe:ca:8d:08:e3:5b:b2:6e: 32:5c:d8:2c:41:94:0a:8a:2d:b2:d4:4e:31:78:43:cc:40:cc: bf:9a:e8:20:1c:41:34:6a:6c:e1:be:51:ec:b1:8b:35:02:fb: 12:d9:45:d4:a9:65:23:f9:bd:5c:9c:7e:90:c5:7f:ce:9f:5a: 1e:7f:e7:10:ce:2c:f8:bb:d0:c7:59:a1:9e:af:17:85:05:2c: 27:8f:dd:ed:0f:46:56:0e:f0:68:00:7e:b9:fd:9e:a8:49:99: 53:7d:cb:a5:51:f6:e5:ed:85:e3:7a:e9:44:e8:71:98:79:d8: d2:93:cf:01:2c:82:29:54:74:fa:37:7c:4a:45:96:16:29:74: 4c:99:10:0e:53:56:61:b1:70:c8:dd:7c:11:cd:4c:7b:91:71: f0:8e:65:c8 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCKYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RUQ4RTAxMTAvBgNVBAUTKENDNTQxOUM4QTc4QkNENTNBRDE3MUM1Qjc0QTQwNzFE OTUzOTUwNDkwHhcNMjUwNDA0MjA0NDQ1WhcNMjUwNDExMjA0NDQ1WjAYMRYwFAYD VQQDEw02N2YwNDRiZC0wZGM5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA5jS5P+J8nxZdVPAUxfrdWr9l2dS4HPTXRQMLlEfZJr5xNtD4m7QdoTplCAZb zMtxFylHbZqTMYMuj4ZddgVjTFCC7EQSwCIZg49pTm++TXN7fO0yvMcbg0a2qEIZ BYFSnZuBpU3J5mgOz3m/73wtfWp+wmdq4mFtdd42X+BpnD1ZEVPHIpHUJUlSMU5z zswlyCR8U2j/BPEfMaxJpGO5qYNlNGxgh/yypi/TO25Z9R4/cIqxsyBQkYf0enTv C7hlL2MXSOYk7y2WcazW39G5oU2SLvOaEoK/n6/0NDInfPCsCwD/r1oIq0iNY6r1 IxT6Cj9GReGpXbyDUtkMZ+/xywIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFGcphzzi gucLkL204Z3Leb1ekFOEMB8GA1UdIwQYMBaAFMxUGcini81TrRccW3SkBx2VOVBJ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFRDhFMC9FRTJENTMyNkI5 NDcxMUVBOEE2NDlFNzZDNEY5QUUwMi96RlFaeUtlTHpWT3RGeHhiZEtRSEhaVTVV RWsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3pGUVp5S2VMelZPdEZ4eGJkS1FISFpVNVVFay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF RDhFMC9FRTJENTMyNkI5NDcxMUVBOEE2NDlFNzZDNEY5QUUwMi96RlFaeUtlTHpW T3RGeHhiZEtRSEhaVTVVRWsubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQC/J+0OMVluR7ag3m9Gifd7aXKUnfMAT26sAUmpNIHr6MNG6O/ONZTX DOZzY8FUSVkp+3IP6N++OGgMndHYbOgIJN0+MsHRm9chkMRTRDRYpxFOyJgDax8Z nor6AGfKUvQR5xRE/sqNCONbsm4yXNgsQZQKii2y1E4xeEPMQMy/muggHEE0amzh vlHssYs1AvsS2UXUqWUj+b1cnH6QxX/On1oef+cQziz4u9DHWaGerxeFBSwnj93t D0ZWDvBoAH65/Z6oSZlTfculUfbl7YXjeulE6HGYedjSk88BLIIpVHT6N3xKRZYW KXRMmRAOU1ZhsXDI3XwRzUx7kXHwjmXI -----END CERTIFICATE-----Generated at Fri Apr 4 22:24:53 2025 by rpki-client