$ rpki-client -vvf rpki.apnic.net/member_repository/A91FBA0C/41531B0CAECD11EE86F1B249C4F9AE02/zVzVkJE-T4mvPRym4p-rPAZ9IU4.mft File: zVzVkJE-T4mvPRym4p-rPAZ9IU4.mft (raw, json) Hash identifier: 8ot9WWWrqrVmtSQ1+k5IRePi2yOYkJ2vLhdjnd5cRAA= Subject key identifier: EE:C3:D6:A0:7A:4F:78:68:F8:45:2E:63:4A:8F:6A:F0:EE:04:76:71 Authority key identifier: CD:5C:D5:90:91:3E:4F:89:AF:3D:1C:A6:E2:9F:AB:3C:06:7D:21:4E Certificate issuer: /CN=A91FBA0C/serialNumber=CD5CD590913E4F89AF3D1CA6E29FAB3C067D214E Certificate serial: EA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/zVzVkJE-T4mvPRym4p-rPAZ9IU4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91FBA0C/41531B0CAECD11EE86F1B249C4F9AE02/zVzVkJE-T4mvPRym4p-rPAZ9IU4.mft Manifest number: E7 Signing time: Sat 29 Mar 2025 04:47:19 +0000 Manifest this update: Sat 29 Mar 2025 04:47:18 +0000 Manifest next update: Sat 05 Apr 2025 04:47:18 +0000 Files and hashes: 1: zVzVkJE-T4mvPRym4p-rPAZ9IU4.crl (hash: fh5KK0y905bBW+bJmVybNkt2f4bnvLNaRikWFI/0C3Y=) 2: 91056478AF6A11EE93DDE73AC4F9AE02.roa (hash: ewevHTVGmqHpvpOV2d+aqrkd9ftzXTkReJQtB5PG940=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91FBA0C/41531B0CAECD11EE86F1B249C4F9AE02/zVzVkJE-T4mvPRym4p-rPAZ9IU4.crl rsync://rpki.apnic.net/member_repository/A91FBA0C/41531B0CAECD11EE86F1B249C4F9AE02/zVzVkJE-T4mvPRym4p-rPAZ9IU4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/zVzVkJE-T4mvPRym4p-rPAZ9IU4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 05 Apr 2025 04:47:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 234 (0xea) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91FBA0C Validity Not Before: Mar 29 04:47:18 2025 GMT Not After : Apr 5 04:47:18 2025 GMT Subject: CN=67e77b57-57ed Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:a7:d4:e7:fd:64:d6:bb:63:f5:a5:5d:31:76: 81:bf:48:67:a0:65:8d:ba:1b:c3:59:68:66:45:ac: 92:c1:4a:be:e6:c5:cc:6a:1b:af:cc:55:16:dd:00: 27:71:49:21:09:d3:41:76:80:97:f0:3a:60:05:fd: 26:ec:eb:f9:0c:ed:ae:23:a2:24:49:1c:41:50:42: e5:7c:ce:75:29:74:b2:4c:16:57:0a:ed:8a:64:56: bd:0e:60:9c:8f:7c:01:51:ac:1d:14:1b:d0:9c:54: 7d:ec:97:26:6e:71:5d:cd:b3:78:55:86:fd:f1:0f: 20:22:f4:8e:62:68:a0:f4:ac:81:20:21:34:f6:fb: 2c:84:f2:23:31:ae:be:d0:70:35:b1:ad:70:7c:f7: c4:a9:22:e8:6c:03:31:b0:5c:7a:2a:ce:54:8a:3f: 8e:a6:f6:5c:bf:c4:28:cd:01:17:c6:ff:01:bc:96: a7:b3:da:fd:4a:4e:e3:11:c0:a0:e5:00:fe:76:be: e0:4d:e1:7e:45:ff:4b:4e:36:af:1d:75:1d:32:52: e4:56:7b:1c:18:4f:09:24:b8:bd:87:97:3d:96:ae: de:7e:52:26:fb:77:2e:18:6f:0c:b6:87:be:6f:ef: 0f:35:12:79:fe:5a:dd:f5:2f:72:69:09:4b:b1:5d: a4:67 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EE:C3:D6:A0:7A:4F:78:68:F8:45:2E:63:4A:8F:6A:F0:EE:04:76:71 X509v3 Authority Key Identifier: keyid:CD:5C:D5:90:91:3E:4F:89:AF:3D:1C:A6:E2:9F:AB:3C:06:7D:21:4E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91FBA0C/41531B0CAECD11EE86F1B249C4F9AE02/zVzVkJE-T4mvPRym4p-rPAZ9IU4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/zVzVkJE-T4mvPRym4p-rPAZ9IU4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91FBA0C/41531B0CAECD11EE86F1B249C4F9AE02/zVzVkJE-T4mvPRym4p-rPAZ9IU4.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 3f:bf:9d:90:e3:3b:0d:29:73:49:b9:79:51:4d:dd:b4:82:b4: 06:91:48:23:2e:8e:8d:3a:c8:73:11:e5:2c:1c:5e:3b:d4:32: ab:81:c6:ca:44:7e:fa:7e:d2:27:ac:67:bd:6d:33:5a:eb:1b: 0a:1c:67:2d:22:87:e9:75:42:5d:56:a6:5b:0d:22:f8:4e:72: d3:ec:33:8e:c4:4b:d5:17:26:2d:8e:76:ff:d4:d8:4c:45:c9: 38:4d:b1:63:d9:da:1d:4f:b4:c0:9b:d8:bf:9f:c5:3c:a4:10: 70:5b:60:b7:76:fd:24:f0:a9:c0:ad:91:61:56:fd:bd:6f:46: ff:fe:0c:79:71:7a:75:95:ce:8d:08:bf:2f:ec:92:46:8c:22: 91:93:2b:c3:d8:d8:5b:37:7d:0b:51:cb:ee:83:c6:b6:87:f5: 45:cb:6e:7b:7d:c7:87:cc:32:a6:89:54:2a:5f:d9:cb:31:e9: e0:b3:c1:0b:26:3a:0e:c9:a1:f4:df:4f:e9:d8:16:54:fc:ad: 74:78:0c:3f:e5:9b:b0:bb:e7:cb:b0:de:f8:00:51:06:ef:96: 6e:10:b0:a6:c0:22:c8:af:4f:8d:6f:1d:10:0f:22:c7:6f:38: 8d:6b:ca:a4:c0:83:a4:57:15:89:7e:e8:bf:3a:b3:1f:d0:ba: 19:7b:b5:75 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAOowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RkJBMEMxMTAvBgNVBAUTKENENUNENTkwOTEzRTRGODlBRjNEMUNBNkUyOUZBQjND MDY3RDIxNEUwHhcNMjUwMzI5MDQ0NzE4WhcNMjUwNDA1MDQ0NzE4WjAYMRYwFAYD VQQDEw02N2U3N2I1Ny01N2VkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtqfU5/1k1rtj9aVdMXaBv0hnoGWNuhvDWWhmRaySwUq+5sXMahuvzFUW3QAn cUkhCdNBdoCX8DpgBf0m7Ov5DO2uI6IkSRxBUELlfM51KXSyTBZXCu2KZFa9DmCc j3wBUawdFBvQnFR97JcmbnFdzbN4VYb98Q8gIvSOYmig9KyBICE09vsshPIjMa6+ 0HA1sa1wfPfEqSLobAMxsFx6Ks5Uij+OpvZcv8QozQEXxv8BvJans9r9Sk7jEcCg 5QD+dr7gTeF+Rf9LTjavHXUdMlLkVnscGE8JJLi9h5c9lq7eflIm+3cuGG8Mtoe+ b+8PNRJ5/lrd9S9yaQlLsV2kZwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFO7D1qB6 T3ho+EUuY0qPavDuBHZxMB8GA1UdIwQYMBaAFM1c1ZCRPk+Jrz0cpuKfqzwGfSFO MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGQkEwQy80MTUzMUIwQ0FF Q0QxMUVFODZGMUIyNDlDNEY5QUUwMi96VnpWa0pFLVQ0bXZQUnltNHAtclBBWjlJ VTQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3pWelZrSkUtVDRtdlBSeW00cC1yUEFaOUlVNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG QkEwQy80MTUzMUIwQ0FFQ0QxMUVFODZGMUIyNDlDNEY5QUUwMi96VnpWa0pFLVQ0 bXZQUnltNHAtclBBWjlJVTQubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA/v52Q4zsNKXNJuXlRTd20grQGkUgjLo6NOshzEeUsHF471DKrgcbK RH76ftInrGe9bTNa6xsKHGctIofpdUJdVqZbDSL4TnLT7DOOxEvVFyYtjnb/1NhM Rck4TbFj2dodT7TAm9i/n8U8pBBwW2C3dv0k8KnArZFhVv29b0b//gx5cXp1lc6N CL8v7JJGjCKRkyvD2NhbN30LUcvug8a2h/VFy257fceHzDKmiVQqX9nLMengs8EL JjoOyaH030/p2BZU/K10eAw/5Zuwu+fLsN74AFEG75ZuELCmwCLIr0+Nbx0QDyLH bziNa8qkwIOkVxWJfui/OrMf0LoZe7V1 -----END CERTIFICATE-----Generated at Fri Apr 4 22:01:42 2025 by rpki-client