$ rpki-client -vvf rpki.apnic.net/member_repository/A9112407/900DFF5E905911EB8F1EEE10C4F9AE02/zyFSbZJsuDI3TI6b1c4dW7zWYIQ.mft File: zyFSbZJsuDI3TI6b1c4dW7zWYIQ.mft (raw, json) Hash identifier: 6Wl2mulvw2hVd+Qj95psauxmmJdu3YzTDeH8JIQGvFE= Subject key identifier: 70:6F:FC:81:83:05:97:26:07:ED:F7:DB:B3:E4:2B:88:FC:75:B1:D7 Authority key identifier: CF:21:52:6D:92:6C:B8:32:37:4C:8E:9B:D5:CE:1D:5B:BC:D6:60:84 Certificate issuer: /CN=A9112407/serialNumber=CF21526D926CB832374C8E9BD5CE1D5BBCD66084 Certificate serial: 063E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/zyFSbZJsuDI3TI6b1c4dW7zWYIQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9112407/900DFF5E905911EB8F1EEE10C4F9AE02/zyFSbZJsuDI3TI6b1c4dW7zWYIQ.mft Manifest number: 0636 Signing time: Thu 24 Apr 2025 22:28:27 +0000 Manifest this update: Thu 24 Apr 2025 22:28:26 +0000 Manifest next update: Thu 01 May 2025 22:28:26 +0000 Files and hashes: 1: zyFSbZJsuDI3TI6b1c4dW7zWYIQ.crl (hash: x0F7OWUN56PXCx1cmaOCwqJR0B8JKxdFDWn5Xl8sSEs=) 2: 3DF2A2EC3AB311EC977A5D60C4F9AE02.roa (hash: Ccp5i/dm7+8eXzkZNFr+8Fkp38efiWixun6YhIXlQUA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9112407/900DFF5E905911EB8F1EEE10C4F9AE02/zyFSbZJsuDI3TI6b1c4dW7zWYIQ.crl rsync://rpki.apnic.net/member_repository/A9112407/900DFF5E905911EB8F1EEE10C4F9AE02/zyFSbZJsuDI3TI6b1c4dW7zWYIQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/zyFSbZJsuDI3TI6b1c4dW7zWYIQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 01 May 2025 22:28:25 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1598 (0x63e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9112407, serialNumber=CF21526D926CB832374C8E9BD5CE1D5BBCD66084 Validity Not Before: Apr 24 22:28:26 2025 GMT Not After : May 1 22:28:26 2025 GMT Subject: CN=680abb0a-88d6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e3:f3:69:86:ee:d8:88:b9:4c:73:6f:71:b5:a9: 01:8b:39:2c:bf:9f:c4:17:6e:0c:4b:9f:f7:34:c2: ce:52:ba:79:cf:b2:3a:c0:cb:56:8b:9a:8b:76:a6: 7f:c5:77:2a:4d:1c:19:ed:23:68:29:e2:43:16:18: 42:58:fb:c6:e4:dd:05:6c:7b:36:b6:27:d8:b7:6b: 25:f2:63:a7:a5:7f:e4:c5:ba:64:9b:c8:e4:bc:c6: 2c:73:77:39:40:a6:f2:30:43:a8:ef:4a:de:d2:41: c0:6f:79:c9:b6:bf:23:50:a4:1f:5c:3b:11:25:25: 78:33:ef:63:bd:94:38:72:f4:d8:54:0f:33:f6:9e: 46:6a:34:82:03:f3:a1:85:89:ca:41:1c:0c:32:09: 4b:90:22:74:98:f9:dd:4d:7e:6d:54:11:23:f5:48: 20:c0:6d:cc:08:e5:83:df:91:9a:b8:ae:33:a4:57: 4b:52:ba:3b:b1:d8:3f:a7:56:9a:61:cc:7f:f5:e3: 15:a7:50:b2:fa:33:b0:54:8e:c7:7f:9d:37:84:ec: a7:d1:ff:eb:6c:a5:f6:a5:44:d7:25:21:fc:12:73: 2c:a4:69:37:10:06:8e:72:20:b5:95:c6:fd:2c:0b: 8d:b9:23:0d:d1:fd:2c:35:92:0e:8b:aa:37:fc:23: af:a1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 70:6F:FC:81:83:05:97:26:07:ED:F7:DB:B3:E4:2B:88:FC:75:B1:D7 X509v3 Authority Key Identifier: keyid:CF:21:52:6D:92:6C:B8:32:37:4C:8E:9B:D5:CE:1D:5B:BC:D6:60:84 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9112407/900DFF5E905911EB8F1EEE10C4F9AE02/zyFSbZJsuDI3TI6b1c4dW7zWYIQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/zyFSbZJsuDI3TI6b1c4dW7zWYIQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9112407/900DFF5E905911EB8F1EEE10C4F9AE02/zyFSbZJsuDI3TI6b1c4dW7zWYIQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 3f:b6:9c:39:d0:cb:a0:bf:86:a8:9a:8d:c9:80:3e:e9:b9:e8: 8c:f1:e9:a2:95:4a:57:89:3f:da:cd:f8:b4:c7:5e:6a:37:b2: ad:ee:65:ec:aa:02:61:65:8f:c1:69:3a:7a:62:19:44:5e:b4: 9e:21:5e:a4:32:35:38:ed:7d:e7:92:9e:fa:b2:bc:f7:19:e6: 33:31:41:90:30:35:73:eb:e4:aa:28:ac:84:9d:19:df:93:33: 4f:82:ff:1f:86:72:29:0a:78:ab:e2:a2:aa:a5:64:41:26:cc: 6d:51:b8:13:43:63:b2:63:30:22:3a:a7:ee:51:a1:5b:d7:04: 6b:de:64:c1:b5:d8:60:d4:02:8d:cf:b3:11:00:77:06:f2:1b: 2f:b4:e9:85:ab:6d:1a:7f:0d:58:f7:c8:66:ec:f3:df:f2:08: c6:48:4f:53:2b:d7:7d:12:bf:6c:f0:5f:84:a1:b9:b3:6e:26: 19:18:18:63:02:06:c6:85:ef:cc:7e:e6:4c:90:76:3c:25:3e: df:9c:9a:1a:2b:bf:a4:22:99:48:47:7e:89:10:e6:9f:9a:e7: 54:ad:e9:4c:a3:c1:df:53:02:45:2a:78:03:26:ff:22:0f:28: 7e:39:ce:1a:08:3a:29:25:81:d3:be:c7:2b:87:03:ed:13:dc: 1f:f7:87:5e -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBj4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MTI0MDcxMTAvBgNVBAUTKENGMjE1MjZEOTI2Q0I4MzIzNzRDOEU5QkQ1Q0UxRDVC QkNENjYwODQwHhcNMjUwNDI0MjIyODI2WhcNMjUwNTAxMjIyODI2WjAYMRYwFAYD VQQDEw02ODBhYmIwYS04OGQ2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA4/Nphu7YiLlMc29xtakBizksv5/EF24MS5/3NMLOUrp5z7I6wMtWi5qLdqZ/ xXcqTRwZ7SNoKeJDFhhCWPvG5N0FbHs2tifYt2sl8mOnpX/kxbpkm8jkvMYsc3c5 QKbyMEOo70re0kHAb3nJtr8jUKQfXDsRJSV4M+9jvZQ4cvTYVA8z9p5GajSCA/Oh hYnKQRwMMglLkCJ0mPndTX5tVBEj9UggwG3MCOWD35GauK4zpFdLUro7sdg/p1aa Ycx/9eMVp1Cy+jOwVI7Hf503hOyn0f/rbKX2pUTXJSH8EnMspGk3EAaOciC1lcb9 LAuNuSMN0f0sNZIOi6o3/COvoQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFHBv/IGD BZcmB+3327PkK4j8dbHXMB8GA1UdIwQYMBaAFM8hUm2SbLgyN0yOm9XOHVu81mCE MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExMjQwNy85MDBERkY1RTkw NTkxMUVCOEYxRUVFMTBDNEY5QUUwMi96eUZTYlpKc3VESTNUSTZiMWM0ZFc3eldZ SVEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3p5RlNiWkpzdURJM1RJNmIxYzRkVzd6V1lJUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx MjQwNy85MDBERkY1RTkwNTkxMUVCOEYxRUVFMTBDNEY5QUUwMi96eUZTYlpKc3VE STNUSTZiMWM0ZFc3eldZSVEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA/tpw50Mugv4aomo3JgD7pueiM8emilUpXiT/azfi0x15qN7Kt7mXs qgJhZY/BaTp6YhlEXrSeIV6kMjU47X3nkp76srz3GeYzMUGQMDVz6+SqKKyEnRnf kzNPgv8fhnIpCnir4qKqpWRBJsxtUbgTQ2OyYzAiOqfuUaFb1wRr3mTBtdhg1AKN z7MRAHcG8hsvtOmFq20afw1Y98hm7PPf8gjGSE9TK9d9Er9s8F+EobmzbiYZGBhj AgbGhe/MfuZMkHY8JT7fnJoaK7+kIplIR36JEOafmudUrelMo8HfUwJFKngDJv8i Dyh+Oc4aCDopJYHTvscrhwPtE9wf94de -----END CERTIFICATE-----Generated at Sat Apr 26 05:10:11 2025 by rpki-client