$ rpki-client -vvf rpki.apnic.net/member_repository/A91752F4/80164F4EF8BC11E2AD91813B5911EA32/Z-1VajxcS_wnyhWKWXdWTDIHzso.mft File: Z-1VajxcS_wnyhWKWXdWTDIHzso.mft (raw, json) Hash identifier: HrmnjVp1PMmFOwnUrgkPatBXmYBHFXxemM6neHVe8cU= Subject key identifier: 74:FC:16:7B:DA:32:9E:D1:35:45:B4:29:12:CD:EB:44:71:81:2F:F0 Authority key identifier: 67:ED:55:6A:3C:5C:4B:FC:27:CA:15:8A:59:77:56:4C:32:07:CE:CA Certificate issuer: /CN=A91752F4/serialNumber=67ED556A3C5C4BFC27CA158A5977564C3207CECA Certificate serial: 3017 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Z-1VajxcS_wnyhWKWXdWTDIHzso.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91752F4/80164F4EF8BC11E2AD91813B5911EA32/Z-1VajxcS_wnyhWKWXdWTDIHzso.mft Manifest number: 3009 Signing time: Wed 12 Mar 2025 15:25:35 +0000 Manifest this update: Wed 12 Mar 2025 15:25:35 +0000 Manifest next update: Wed 19 Mar 2025 15:25:35 +0000 Files and hashes: 1: Z-1VajxcS_wnyhWKWXdWTDIHzso.crl (hash: iMVwUxdL4s/vyArmKKNSaqZiqIbycXheRg2zbuGrtPs=) 2: 22E2E3C24E2911EF8BEE8E10C4F9AE02.roa (hash: zrNmqSOn3x3Hv5ti8t9FO4ICa53YlMTKqR+0zV+p/zs=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91752F4/80164F4EF8BC11E2AD91813B5911EA32/Z-1VajxcS_wnyhWKWXdWTDIHzso.crl rsync://rpki.apnic.net/member_repository/A91752F4/80164F4EF8BC11E2AD91813B5911EA32/Z-1VajxcS_wnyhWKWXdWTDIHzso.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Z-1VajxcS_wnyhWKWXdWTDIHzso.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 19 Mar 2025 15:25:34 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 12311 (0x3017) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91752F4 Validity Not Before: Mar 12 15:25:35 2025 GMT Not After : Mar 19 15:25:35 2025 GMT Subject: CN=67d1a76f-4065 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a6:b0:cc:4f:d1:f4:c3:a3:12:30:6f:c4:1e:9a: c1:86:29:55:02:cb:8e:8c:f7:0d:1d:88:54:ae:b9: 36:58:68:d7:4b:d5:04:c6:1a:66:eb:e5:ba:f7:70: f1:12:74:bb:59:6e:13:8c:a5:1a:ce:c9:5f:b4:5a: ae:76:96:dc:5c:97:24:47:6d:3a:6b:71:6b:76:ef: c8:9d:bd:bf:d2:cc:eb:b2:52:0b:bc:80:c9:a7:4f: 2f:e9:8e:c8:8c:c3:72:17:e5:01:cc:76:88:18:46: b9:1b:52:4d:e8:38:16:77:08:90:46:91:4d:7b:f1: 06:0c:3f:e5:8a:ae:e9:f3:d1:a6:d7:db:08:c0:49: c7:68:cb:20:69:27:9d:94:8f:cc:bc:a0:09:99:47: 00:48:a9:53:99:d5:46:cd:bc:31:6d:98:b5:0d:dc: de:64:d9:ff:ec:4f:a0:b8:b9:f5:28:2e:f0:1e:de: 8a:45:d9:cb:78:58:9c:46:2a:87:6a:6a:ac:22:25: e9:c4:01:bd:b6:f5:1c:be:30:71:11:33:76:61:39: 1b:20:34:90:5f:40:75:c3:0a:3b:1b:39:cd:4e:d1: e7:2a:0f:33:fb:15:6a:94:a5:b8:57:82:d1:bf:d8: 3d:11:fb:c0:bb:37:fe:ed:c8:78:89:d0:d7:59:67: c1:6f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 74:FC:16:7B:DA:32:9E:D1:35:45:B4:29:12:CD:EB:44:71:81:2F:F0 X509v3 Authority Key Identifier: keyid:67:ED:55:6A:3C:5C:4B:FC:27:CA:15:8A:59:77:56:4C:32:07:CE:CA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91752F4/80164F4EF8BC11E2AD91813B5911EA32/Z-1VajxcS_wnyhWKWXdWTDIHzso.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Z-1VajxcS_wnyhWKWXdWTDIHzso.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91752F4/80164F4EF8BC11E2AD91813B5911EA32/Z-1VajxcS_wnyhWKWXdWTDIHzso.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption be:21:9c:57:00:83:26:f7:ce:2c:72:00:79:c1:77:50:05:d6: 48:b0:e2:d8:14:64:b0:5b:75:61:d5:f3:36:bc:19:ab:b2:65: 42:16:c4:9e:35:5d:fe:ee:a3:1a:00:07:ae:a0:f5:78:39:5b: 97:e8:d3:74:2e:f7:e3:7d:06:ca:bc:c5:93:3d:ab:ab:e8:4e: 53:b5:43:75:d6:85:6d:6b:b7:54:a3:2e:ec:fd:cc:c8:ee:22: ed:e8:4d:1c:9a:9b:fb:39:bb:35:6b:ea:08:7f:44:e9:8a:da: 96:f1:3d:3c:1d:e5:2d:f5:5f:ce:e1:f2:3a:c5:e0:d9:c5:ed: 80:ce:7d:5d:55:a6:a0:89:35:06:4d:83:14:d9:0c:69:f1:a6: 90:53:be:32:45:c8:02:1b:4d:d5:0b:3d:12:ba:28:ca:31:b6: ce:45:fb:f3:53:86:36:02:d7:75:63:7f:35:f8:62:e3:1e:47: 6f:94:b6:e7:d1:b2:cc:51:7a:48:03:75:45:01:c3:e2:1a:a2: 6c:4d:a9:3a:3b:d9:2d:af:f0:06:f6:bf:9e:2d:d9:e1:e7:dd: 54:f9:21:79:31:9e:29:f2:be:b5:c5:f2:6a:fa:67:4c:f6:86: b5:da:ab:32:40:e0:19:cd:e6:de:c6:bc:a9:90:3e:71:39:fd: f8:b1:c3:10 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICMBcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzUyRjQxMTAvBgNVBAUTKDY3RUQ1NTZBM0M1QzRCRkMyN0NBMTU4QTU5Nzc1NjRD MzIwN0NFQ0EwHhcNMjUwMzEyMTUyNTM1WhcNMjUwMzE5MTUyNTM1WjAYMRYwFAYD VQQDEw02N2QxYTc2Zi00MDY1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAprDMT9H0w6MSMG/EHprBhilVAsuOjPcNHYhUrrk2WGjXS9UExhpm6+W693Dx EnS7WW4TjKUazslftFqudpbcXJckR206a3Frdu/Inb2/0szrslILvIDJp08v6Y7I jMNyF+UBzHaIGEa5G1JN6DgWdwiQRpFNe/EGDD/liq7p89Gm19sIwEnHaMsgaSed lI/MvKAJmUcASKlTmdVGzbwxbZi1DdzeZNn/7E+guLn1KC7wHt6KRdnLeFicRiqH amqsIiXpxAG9tvUcvjBxETN2YTkbIDSQX0B1wwo7GznNTtHnKg8z+xVqlKW4V4LR v9g9EfvAuzf+7ch4idDXWWfBbwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFHT8Fnva Mp7RNUW0KRLN60RxgS/wMB8GA1UdIwQYMBaAFGftVWo8XEv8J8oVill3VkwyB87K MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3NTJGNC84MDE2NEY0RUY4 QkMxMUUyQUQ5MTgxM0I1OTExRUEzMi9aLTFWYWp4Y1Nfd255aFdLV1hkV1RESUh6 c28uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1otMVZhanhjU193bnloV0tXWGRXVERJSHpzby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 NTJGNC84MDE2NEY0RUY4QkMxMUUyQUQ5MTgxM0I1OTExRUEzMi9aLTFWYWp4Y1Nf d255aFdLV1hkV1RESUh6c28ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQC+IZxXAIMm984scgB5wXdQBdZIsOLYFGSwW3Vh1fM2vBmrsmVCFsSe NV3+7qMaAAeuoPV4OVuX6NN0LvfjfQbKvMWTPaur6E5TtUN11oVta7dUoy7s/czI 7iLt6E0cmpv7Obs1a+oIf0TpitqW8T08HeUt9V/O4fI6xeDZxe2Azn1dVaagiTUG TYMU2Qxp8aaQU74yRcgCG03VCz0SuijKMbbORfvzU4Y2Atd1Y381+GLjHkdvlLbn 0bLMUXpIA3VFAcPiGqJsTak6O9ktr/AG9r+eLdnh591U+SF5MZ4p8r61xfJq+mdM 9oa12qsyQOAZzebexrypkD5xOf34scMQ -----END CERTIFICATE-----Generated at Thu Mar 13 21:28:30 2025 by rpki-client