$ rpki-client -vvf rpki.apnic.net/member_repository/A91DA13E/4E8531CA06B511EB9372D32BC4F9AE02/Z_O5-qoQ0gywF_B_zJoVTYi2Y6A.mft File: Z_O5-qoQ0gywF_B_zJoVTYi2Y6A.mft (raw, json) Hash identifier: XwJ6UHgQVINa02/ICHy6V3gCcErLDPqVIruMiYBqJug= Subject key identifier: 7D:E9:6F:4E:5A:72:52:4D:F1:16:99:35:09:E4:98:A9:11:42:E0:B0 Authority key identifier: 67:F3:B9:FA:AA:10:D2:0C:B0:17:F0:7F:CC:9A:15:4D:88:B6:63:A0 Certificate issuer: /CN=A91DA13E/serialNumber=67F3B9FAAA10D20CB017F07FCC9A154D88B663A0 Certificate serial: 0790 Authority info access: rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/Z_O5-qoQ0gywF_B_zJoVTYi2Y6A.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91DA13E/4E8531CA06B511EB9372D32BC4F9AE02/Z_O5-qoQ0gywF_B_zJoVTYi2Y6A.mft Manifest number: 0788 Signing time: Fri 04 Apr 2025 21:31:41 +0000 Manifest this update: Fri 04 Apr 2025 21:31:41 +0000 Manifest next update: Fri 11 Apr 2025 21:31:41 +0000 Files and hashes: 1: Z_O5-qoQ0gywF_B_zJoVTYi2Y6A.crl (hash: rjBTUORBUezS0rD8ljDYX26gdX23bgLinoBlKT87QQU=) 2: 28D471BA06B611EBBBFD6B2CC4F9AE02.roa (hash: HoL2YghFB7YWFU4WTrloNVMNxIJl1VYwbkYTUbUT8RI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91DA13E/4E8531CA06B511EB9372D32BC4F9AE02/Z_O5-qoQ0gywF_B_zJoVTYi2Y6A.crl rsync://rpki.apnic.net/member_repository/A91DA13E/4E8531CA06B511EB9372D32BC4F9AE02/Z_O5-qoQ0gywF_B_zJoVTYi2Y6A.mft rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/Z_O5-qoQ0gywF_B_zJoVTYi2Y6A.cer rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.crl rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DPzneFf88B852ZpitKpi5hWedvg.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 11 Apr 2025 21:31:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1936 (0x790) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DA13E Validity Not Before: Apr 4 21:31:41 2025 GMT Not After : Apr 11 21:31:41 2025 GMT Subject: CN=67f04fbd-91fa Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e5:5b:98:27:a7:10:02:ee:69:a1:9d:d5:7c:04: 7a:46:1e:43:ea:3d:1f:5f:4d:21:e3:24:25:96:bc: 1b:66:ae:04:23:67:dc:38:9e:70:3a:af:a5:cf:d4: ac:bd:50:a3:21:97:44:d5:34:de:ac:0a:44:17:8c: 4b:28:d1:a2:72:36:d3:dd:0d:e4:8a:e2:bb:95:b0: 8a:99:a3:b4:e6:24:46:c6:11:09:a9:81:a5:7a:82: ba:d4:a1:fb:76:50:4f:3b:af:07:38:d3:0a:f8:f5: fa:d4:63:8d:9f:e1:ab:23:4d:b7:23:78:ca:d8:c5: 9e:0c:47:cb:c3:ec:e1:0f:80:f2:d1:1a:9f:f0:95: 10:5b:0b:13:20:4e:6e:a3:8a:45:df:2c:bf:2a:90: 24:6e:0c:0d:cd:f3:45:a7:5a:85:a0:c3:46:a5:34: 38:1e:d0:4a:1b:7a:2d:24:88:18:3b:43:82:4d:d2: fc:ce:5e:8c:1d:40:0b:20:de:11:ce:28:e2:36:14: fb:20:ef:c0:42:d8:02:3e:f2:f6:e7:36:44:73:46: 17:d0:bd:2a:4d:9f:94:22:77:ec:95:36:d9:28:1f: 5c:0c:61:70:37:69:b9:ce:1d:42:53:06:81:6e:e3: 64:a0:51:05:a5:55:71:a3:4f:13:dd:c1:54:15:34: 4c:55 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7D:E9:6F:4E:5A:72:52:4D:F1:16:99:35:09:E4:98:A9:11:42:E0:B0 X509v3 Authority Key Identifier: keyid:67:F3:B9:FA:AA:10:D2:0C:B0:17:F0:7F:CC:9A:15:4D:88:B6:63:A0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91DA13E/4E8531CA06B511EB9372D32BC4F9AE02/Z_O5-qoQ0gywF_B_zJoVTYi2Y6A.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/Z_O5-qoQ0gywF_B_zJoVTYi2Y6A.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DA13E/4E8531CA06B511EB9372D32BC4F9AE02/Z_O5-qoQ0gywF_B_zJoVTYi2Y6A.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 43:3c:f6:2b:26:2a:35:2d:a2:91:01:5b:8d:ee:67:d1:6d:23: a5:67:ce:0e:a5:0e:34:bf:40:b3:ed:c7:2b:5f:2e:c6:6e:d8: 36:70:0d:c6:e2:ed:0d:96:03:14:b8:b2:8e:92:03:78:72:bc: ab:34:80:f7:d3:56:04:14:d1:5f:fb:93:30:62:ac:a6:a4:93: fb:19:19:bf:6b:d8:b5:a4:96:5f:d5:04:56:25:ea:b9:a6:5a: f0:c3:f3:d2:41:f7:83:0e:b5:24:e0:7a:4e:a5:c2:2f:87:8f: 62:e6:00:36:d4:9c:f6:76:38:72:5e:dc:67:f4:75:f8:c0:d7: 69:23:97:ce:5a:fe:75:74:5a:bd:d9:54:d3:a4:d6:49:09:98: 64:f4:48:96:f5:b3:d9:63:2a:1d:0d:8f:1f:9b:bc:62:e6:6a: 8b:c4:58:71:45:49:44:f8:86:e6:af:09:81:28:e0:de:c0:3a: 6d:23:d1:8a:62:ed:d5:38:16:b5:16:d5:b7:89:b9:43:f9:ca: 25:58:38:9f:84:c1:f6:d4:a4:f3:33:bf:6c:32:67:88:b8:58: 38:17:22:5d:3d:a4:79:63:39:90:10:61:42:5b:8a:08:3c:48: 43:e6:6d:f1:17:f9:06:0c:53:27:98:b0:42:d7:8b:96:89:cf: 5a:2b:f2:b8 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICB5AwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx REExM0UxMTAvBgNVBAUTKDY3RjNCOUZBQUExMEQyMENCMDE3RjA3RkNDOUExNTRE ODhCNjYzQTAwHhcNMjUwNDA0MjEzMTQxWhcNMjUwNDExMjEzMTQxWjAYMRYwFAYD VQQDEw02N2YwNGZiZC05MWZhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA5VuYJ6cQAu5poZ3VfAR6Rh5D6j0fX00h4yQllrwbZq4EI2fcOJ5wOq+lz9Ss vVCjIZdE1TTerApEF4xLKNGicjbT3Q3kiuK7lbCKmaO05iRGxhEJqYGleoK61KH7 dlBPO68HONMK+PX61GONn+GrI023I3jK2MWeDEfLw+zhD4Dy0Rqf8JUQWwsTIE5u o4pF3yy/KpAkbgwNzfNFp1qFoMNGpTQ4HtBKG3otJIgYO0OCTdL8zl6MHUALIN4R zijiNhT7IO/AQtgCPvL25zZEc0YX0L0qTZ+UInfslTbZKB9cDGFwN2m5zh1CUwaB buNkoFEFpVVxo08T3cFUFTRMVQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFH3pb05a clJN8RaZNQnkmKkRQuCwMB8GA1UdIwQYMBaAFGfzufqqENIMsBfwf8yaFU2ItmOg MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEQTEzRS80RTg1MzFDQTA2 QjUxMUVCOTM3MkQzMkJDNEY5QUUwMi9aX081LXFvUTBneXdGX0JfekpvVlRZaTJZ NkEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzMjJBNUY0MUQ2NjExRTJBM0YyN0Y3Qzcy RkQxRkYyL1pfTzUtcW9RMGd5d0ZfQl96Sm9WVFlpMlk2QS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE QTEzRS80RTg1MzFDQTA2QjUxMUVCOTM3MkQzMkJDNEY5QUUwMi9aX081LXFvUTBn eXdGX0JfekpvVlRZaTJZNkEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBDPPYrJio1LaKRAVuN7mfRbSOlZ84OpQ40v0Cz7ccrXy7Gbtg2cA3G 4u0NlgMUuLKOkgN4cryrNID301YEFNFf+5MwYqympJP7GRm/a9i1pJZf1QRWJeq5 plrww/PSQfeDDrUk4HpOpcIvh49i5gA21Jz2djhyXtxn9HX4wNdpI5fOWv51dFq9 2VTTpNZJCZhk9EiW9bPZYyodDY8fm7xi5mqLxFhxRUlE+IbmrwmBKODewDptI9GK Yu3VOBa1FtW3iblD+colWDifhMH21KTzM79sMmeIuFg4FyJdPaR5YzmQEGFCW4oI PEhD5m3xF/kGDFMnmLBC14uWic9aK/K4 -----END CERTIFICATE-----Generated at Sun Apr 6 07:53:25 2025 by rpki-client