$ rpki-client -vvf rpki.apnic.net/member_repository/A91EFC94/A8CD016494DA11EF89086D21C4F9AE02/ZTy4p1ENubbBon2HfSEh5t9CGYI.mft File: ZTy4p1ENubbBon2HfSEh5t9CGYI.mft (raw, json) Hash identifier: PdNLcx4iEjvwOK/rDFrJGheqN+9zmTXkqUrvgqRGXmQ= Subject key identifier: 05:6D:2D:15:6D:7B:08:60:C6:6C:53:15:02:62:8F:09:37:81:CD:80 Authority key identifier: 65:3C:B8:A7:51:0D:B9:B6:C1:A2:7D:87:7D:21:21:E6:DF:42:19:82 Certificate issuer: /CN=A91EFC94/serialNumber=653CB8A7510DB9B6C1A27D877D2121E6DF421982 Certificate serial: 5E Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ZTy4p1ENubbBon2HfSEh5t9CGYI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91EFC94/A8CD016494DA11EF89086D21C4F9AE02/ZTy4p1ENubbBon2HfSEh5t9CGYI.mft Manifest number: 5A Signing time: Sat 05 Apr 2025 06:29:58 +0000 Manifest this update: Sat 05 Apr 2025 06:29:57 +0000 Manifest next update: Sat 12 Apr 2025 06:29:57 +0000 Files and hashes: 1: ZTy4p1ENubbBon2HfSEh5t9CGYI.crl (hash: fw4h7tgGeHB/Y65XoFi7dW/MIhYihRv4LezY5UEIgP4=) 2: 1A4E810A9C4711EFBCAF2961C4F9AE02.roa (hash: H/SNFy0blXHf51g3f4tDsQMfyr+dfN3zT3EjfHQV3so=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91EFC94/A8CD016494DA11EF89086D21C4F9AE02/ZTy4p1ENubbBon2HfSEh5t9CGYI.crl rsync://rpki.apnic.net/member_repository/A91EFC94/A8CD016494DA11EF89086D21C4F9AE02/ZTy4p1ENubbBon2HfSEh5t9CGYI.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ZTy4p1ENubbBon2HfSEh5t9CGYI.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 12 Apr 2025 06:29:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 94 (0x5e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91EFC94 Validity Not Before: Apr 5 06:29:57 2025 GMT Not After : Apr 12 06:29:57 2025 GMT Subject: CN=67f0cde5-a59c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b0:42:99:c4:58:3d:a1:6e:33:07:56:27:75:62: b3:c4:6b:68:ae:63:0d:16:7c:78:07:78:d9:6b:0c: 62:15:6c:75:ef:2b:11:1b:1d:0f:ae:57:71:cb:01: 39:d4:04:5b:5a:2e:0a:f1:c3:06:39:44:85:78:1b: f2:52:18:4b:7c:7f:ab:2f:53:ac:4f:36:a0:87:aa: 3f:b6:0e:d7:0d:81:26:35:80:08:01:aa:6d:7a:2c: fa:52:77:74:53:ad:d3:c2:e3:ce:30:ef:92:d9:ed: f6:83:a5:6b:76:e8:2d:8d:7d:fa:82:ac:90:7c:c1: b9:d0:86:6b:1f:2b:56:7c:03:65:a9:7a:c1:ad:90: 9c:4b:07:e2:c1:ba:52:30:08:d8:2e:ad:a2:89:e6: c4:fd:86:07:d0:5f:6a:9c:d3:74:aa:f9:52:80:b5: be:29:8b:60:7a:3b:58:e0:bd:12:56:e3:73:59:6d: f7:40:31:30:70:e1:15:eb:d4:f4:d5:4c:e9:df:f8: 7f:5e:7e:54:e3:e5:2a:73:96:d8:1a:db:f2:6f:09: 84:68:8e:b1:fd:22:f3:e8:36:49:0a:a6:44:2a:08: b5:18:0c:4c:3c:dd:f6:25:46:d8:36:bd:28:12:3c: 70:07:d4:fc:43:56:b4:87:16:85:a7:45:ff:ff:e0: 94:49 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 05:6D:2D:15:6D:7B:08:60:C6:6C:53:15:02:62:8F:09:37:81:CD:80 X509v3 Authority Key Identifier: keyid:65:3C:B8:A7:51:0D:B9:B6:C1:A2:7D:87:7D:21:21:E6:DF:42:19:82 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91EFC94/A8CD016494DA11EF89086D21C4F9AE02/ZTy4p1ENubbBon2HfSEh5t9CGYI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ZTy4p1ENubbBon2HfSEh5t9CGYI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91EFC94/A8CD016494DA11EF89086D21C4F9AE02/ZTy4p1ENubbBon2HfSEh5t9CGYI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a7:09:bb:91:da:28:ad:bb:c9:9b:f8:16:7d:78:fa:0f:23:9f: 6a:07:3b:f7:eb:e2:39:2d:b6:a2:b5:66:7a:cb:80:49:71:c6: be:e6:4f:33:0f:10:83:aa:fd:0f:f5:ce:4d:b7:4b:49:0b:7c: c9:b9:49:4b:a0:20:2b:db:17:1f:c2:ed:91:c6:ab:c0:d6:03: 5e:ef:32:ca:99:5d:79:f4:78:4d:44:36:c6:57:ec:ff:c9:87: ba:96:01:bf:9c:e0:24:a5:7f:86:fa:da:97:1d:ef:38:7f:0e: b8:33:7d:13:09:f9:18:b2:b4:20:55:f9:56:06:6d:c2:3b:a1: 65:59:8c:70:74:c4:5e:28:24:20:0c:56:31:cc:a7:10:ed:8f: 13:5d:c1:88:ef:51:85:c9:2f:fc:0b:5f:af:11:72:d2:dc:bd: 76:1a:01:f0:33:4f:e2:96:26:98:d3:1f:23:5f:e5:35:cc:e7: 3e:c5:85:4d:e1:8c:33:95:ae:1d:0a:1e:13:74:4e:60:81:bc: cc:ed:a5:d9:3b:f0:73:99:01:20:c8:b1:2f:5a:2e:24:4b:37: 3c:d7:f7:90:0a:a7:7c:be:f0:dd:25:9e:f0:ec:65:0e:f0:9b: a7:7d:fc:db:b4:cf:b7:af:44:16:7f:a3:ed:66:34:f0:ca:ad: 76:da:80:6a -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBXjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFF RkM5NDExMC8GA1UEBRMoNjUzQ0I4QTc1MTBEQjlCNkMxQTI3RDg3N0QyMTIxRTZE RjQyMTk4MjAeFw0yNTA0MDUwNjI5NTdaFw0yNTA0MTIwNjI5NTdaMBgxFjAUBgNV BAMTDTY3ZjBjZGU1LWE1OWMwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCwQpnEWD2hbjMHVid1YrPEa2iuYw0WfHgHeNlrDGIVbHXvKxEbHQ+uV3HLATnU BFtaLgrxwwY5RIV4G/JSGEt8f6svU6xPNqCHqj+2DtcNgSY1gAgBqm16LPpSd3RT rdPC484w75LZ7faDpWt26C2NffqCrJB8wbnQhmsfK1Z8A2WpesGtkJxLB+LBulIw CNguraKJ5sT9hgfQX2qc03Sq+VKAtb4pi2B6O1jgvRJW43NZbfdAMTBw4RXr1PTV TOnf+H9eflTj5Spzltga2/JvCYRojrH9IvPoNkkKpkQqCLUYDEw83fYlRtg2vSgS PHAH1PxDVrSHFoWnRf//4JRJAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUBW0tFW17 CGDGbFMVAmKPCTeBzYAwHwYDVR0jBBgwFoAUZTy4p1ENubbBon2HfSEh5t9CGYIw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUVGQzk0L0E4Q0QwMTY0OTRE QTExRUY4OTA4NkQyMUM0RjlBRTAyL1pUeTRwMUVOdWJiQm9uMkhmU0VoNXQ5Q0dZ SS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvWlR5NHAxRU51YmJCb24ySGZTRWg1dDlDR1lJLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUVG Qzk0L0E4Q0QwMTY0OTREQTExRUY4OTA4NkQyMUM0RjlBRTAyL1pUeTRwMUVOdWJi Qm9uMkhmU0VoNXQ5Q0dZSS5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAKcJu5HaKK27yZv4Fn14+g8jn2oHO/fr4jkttqK1ZnrLgElxxr7mTzMP EIOq/Q/1zk23S0kLfMm5SUugICvbFx/C7ZHGq8DWA17vMsqZXXn0eE1ENsZX7P/J h7qWAb+c4CSlf4b62pcd7zh/DrgzfRMJ+RiytCBV+VYGbcI7oWVZjHB0xF4oJCAM VjHMpxDtjxNdwYjvUYXJL/wLX68RctLcvXYaAfAzT+KWJpjTHyNf5TXM5z7FhU3h jDOVrh0KHhN0TmCBvMztpdk78HOZASDIsS9aLiRLNzzX95AKp3y+8N0lnvDsZQ7w m6d9/Nu0z7evRBZ/o+1mNPDKrXbagGo= -----END CERTIFICATE-----Generated at Sun Apr 6 02:44:28 2025 by rpki-client