$ rpki-client -vvf rpki.apnic.net/member_repository/A91752F4/80164F4EF8BC11E2AD91813B5911EA32/Z-1VajxcS_wnyhWKWXdWTDIHzso.mft File: Z-1VajxcS_wnyhWKWXdWTDIHzso.mft (raw, json) Hash identifier: aGHQFmxeo3y4oaQy7K0jxsvznVgT7fMxF3a8tKLVaFU= Subject key identifier: BE:F9:C7:3B:87:FC:7E:35:14:CB:4C:77:47:6E:68:80:D4:2A:09:28 Authority key identifier: 67:ED:55:6A:3C:5C:4B:FC:27:CA:15:8A:59:77:56:4C:32:07:CE:CA Certificate issuer: /CN=A91752F4/serialNumber=67ED556A3C5C4BFC27CA158A5977564C3207CECA Certificate serial: 300B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Z-1VajxcS_wnyhWKWXdWTDIHzso.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91752F4/80164F4EF8BC11E2AD91813B5911EA32/Z-1VajxcS_wnyhWKWXdWTDIHzso.mft Manifest number: 2FFD Signing time: Sun 16 Feb 2025 15:35:51 +0000 Manifest this update: Sun 16 Feb 2025 15:35:50 +0000 Manifest next update: Sun 23 Feb 2025 15:35:50 +0000 Files and hashes: 1: Z-1VajxcS_wnyhWKWXdWTDIHzso.crl (hash: xU2NHJT/WbdPm8Os+N0N3v4gvxeB0JUSzkDkUwcmyTM=) 2: 22E2E3C24E2911EF8BEE8E10C4F9AE02.roa (hash: zrNmqSOn3x3Hv5ti8t9FO4ICa53YlMTKqR+0zV+p/zs=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91752F4/80164F4EF8BC11E2AD91813B5911EA32/Z-1VajxcS_wnyhWKWXdWTDIHzso.crl rsync://rpki.apnic.net/member_repository/A91752F4/80164F4EF8BC11E2AD91813B5911EA32/Z-1VajxcS_wnyhWKWXdWTDIHzso.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Z-1VajxcS_wnyhWKWXdWTDIHzso.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 21 Feb 2025 05:15:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 12299 (0x300b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91752F4 Validity Not Before: Feb 16 15:35:50 2025 GMT Not After : Feb 23 15:35:50 2025 GMT Subject: CN=67b205d6-33fe Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ac:0b:bc:1e:f2:6d:68:82:df:c3:eb:5a:1f:fb: bd:b8:9f:dc:12:80:f2:6a:e7:b0:a8:cb:e7:55:29: 43:67:5e:4f:e9:7a:78:99:0c:08:24:3e:eb:91:45: d9:62:07:04:b2:76:72:0d:d4:56:39:c1:ba:9f:85: 6a:c4:b5:6d:3f:d1:7b:0d:86:0f:45:58:33:fc:4f: 3a:08:dc:dc:b9:62:78:6e:9d:ee:47:64:98:f3:12: eb:89:6e:c7:0d:64:21:c2:b6:f1:7f:d0:dc:7b:7c: cf:08:83:fb:50:90:70:3e:05:eb:66:b1:2b:30:91: c9:cf:68:a4:96:ec:85:d5:c9:81:43:fe:86:85:18: b2:ed:ea:3d:7e:fc:1a:22:b5:ac:fc:06:01:1d:ad: 9e:27:96:65:94:35:30:b3:80:c5:54:fa:81:19:2b: ab:39:15:fc:28:5d:05:c9:c4:64:41:6e:78:e5:f7: 2d:4b:49:63:4e:f1:47:98:9a:c9:17:31:35:43:47: 7a:81:78:1b:bb:f8:99:14:26:3f:d0:c4:77:13:c1: a8:11:c6:a8:e0:40:bc:15:16:5f:c4:ce:50:2a:fa: 57:78:07:e3:bb:ab:37:53:32:4d:96:cd:84:56:83: 94:a1:e9:fe:2a:47:aa:79:75:6f:05:77:ec:b7:a9: 62:19 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BE:F9:C7:3B:87:FC:7E:35:14:CB:4C:77:47:6E:68:80:D4:2A:09:28 X509v3 Authority Key Identifier: keyid:67:ED:55:6A:3C:5C:4B:FC:27:CA:15:8A:59:77:56:4C:32:07:CE:CA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91752F4/80164F4EF8BC11E2AD91813B5911EA32/Z-1VajxcS_wnyhWKWXdWTDIHzso.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Z-1VajxcS_wnyhWKWXdWTDIHzso.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91752F4/80164F4EF8BC11E2AD91813B5911EA32/Z-1VajxcS_wnyhWKWXdWTDIHzso.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 53:08:5b:81:a5:96:ea:be:6f:3b:3c:81:e6:4f:20:52:1e:ef: e1:35:19:da:64:0b:4c:25:a3:77:39:bd:e1:f9:2c:b2:19:ce: b6:8c:bf:f8:af:95:39:73:ee:67:95:c9:ff:12:b4:83:74:cb: 80:08:c6:29:01:8f:a7:81:33:a6:0f:c4:c0:a7:52:ce:10:76: fd:57:87:af:3e:95:99:b7:3f:29:30:1e:3e:86:ca:09:21:48: 5f:22:30:7a:07:87:5b:e7:6a:67:55:c6:e2:57:dc:e8:31:b0: 9d:fa:6e:ed:d6:63:32:37:ed:38:3c:c6:5c:c1:63:81:9a:4f: 6b:f3:84:c2:37:00:7c:b8:5a:5b:25:16:5c:7d:a8:50:2a:c1: 86:ee:0c:24:de:8b:06:41:5a:e2:59:aa:8f:1f:06:5b:10:6f: ea:cc:47:bb:21:2d:55:85:b5:1e:0b:e7:b7:ae:24:d0:d9:6a: 89:7a:30:91:07:ba:cc:a4:ef:cc:78:d3:e5:6c:e5:5a:1d:38: 3e:6e:9a:45:45:0f:ba:db:cd:d3:09:9a:42:89:73:85:7c:d8: ff:20:c2:77:29:88:6c:ab:75:0d:f0:aa:e7:a6:70:7b:0b:7b: 88:0b:f8:ac:11:c8:8d:bb:d6:b0:c4:a0:0f:e4:fc:d2:74:5d: e3:5e:6e:a8 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICMAswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzUyRjQxMTAvBgNVBAUTKDY3RUQ1NTZBM0M1QzRCRkMyN0NBMTU4QTU5Nzc1NjRD MzIwN0NFQ0EwHhcNMjUwMjE2MTUzNTUwWhcNMjUwMjIzMTUzNTUwWjAYMRYwFAYD VQQDEw02N2IyMDVkNi0zM2ZlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArAu8HvJtaILfw+taH/u9uJ/cEoDyauewqMvnVSlDZ15P6Xp4mQwIJD7rkUXZ YgcEsnZyDdRWOcG6n4VqxLVtP9F7DYYPRVgz/E86CNzcuWJ4bp3uR2SY8xLriW7H DWQhwrbxf9Dce3zPCIP7UJBwPgXrZrErMJHJz2ikluyF1cmBQ/6GhRiy7eo9fvwa IrWs/AYBHa2eJ5ZllDUws4DFVPqBGSurORX8KF0FycRkQW545fctS0ljTvFHmJrJ FzE1Q0d6gXgbu/iZFCY/0MR3E8GoEcao4EC8FRZfxM5QKvpXeAfju6s3UzJNls2E VoOUoen+KkeqeXVvBXfst6liGQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFL75xzuH /H41FMtMd0duaIDUKgkoMB8GA1UdIwQYMBaAFGftVWo8XEv8J8oVill3VkwyB87K MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3NTJGNC84MDE2NEY0RUY4 QkMxMUUyQUQ5MTgxM0I1OTExRUEzMi9aLTFWYWp4Y1Nfd255aFdLV1hkV1RESUh6 c28uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1otMVZhanhjU193bnloV0tXWGRXVERJSHpzby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 NTJGNC84MDE2NEY0RUY4QkMxMUUyQUQ5MTgxM0I1OTExRUEzMi9aLTFWYWp4Y1Nf d255aFdLV1hkV1RESUh6c28ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBTCFuBpZbqvm87PIHmTyBSHu/hNRnaZAtMJaN3Ob3h+SyyGc62jL/4 r5U5c+5nlcn/ErSDdMuACMYpAY+ngTOmD8TAp1LOEHb9V4evPpWZtz8pMB4+hsoJ IUhfIjB6B4db52pnVcbiV9zoMbCd+m7t1mMyN+04PMZcwWOBmk9r84TCNwB8uFpb JRZcfahQKsGG7gwk3osGQVriWaqPHwZbEG/qzEe7IS1VhbUeC+e3riTQ2WqJejCR B7rMpO/MeNPlbOVaHTg+bppFRQ+6283TCZpCiXOFfNj/IMJ3KYhsq3UN8KrnpnB7 C3uIC/isEciNu9awxKAP5PzSdF3jXm6o -----END CERTIFICATE-----Generated at Mon Feb 17 07:56:20 2025 by rpki-client