$ rpki-client -vvf rpki.apnic.net/member_repository/A911309C/B92E3540B2E911EBB4D9CC31C4F9AE02/0zOneHph_4bHRbR0CWr2muMaz_E.mft File: 0zOneHph_4bHRbR0CWr2muMaz_E.mft (raw, json) Hash identifier: /exR8sW1kKGWuMpdY3pia9uYXAi4OeKgGwXh7L/mdcQ= Subject key identifier: CA:B5:D3:A0:B1:A8:64:08:83:AC:80:26:69:FB:F8:31:73:71:4A:EF Authority key identifier: D3:33:A7:78:7A:61:FF:86:C7:45:B4:74:09:6A:F6:9A:E3:1A:CF:F1 Certificate issuer: /CN=A911309C/serialNumber=D333A7787A61FF86C745B474096AF69AE31ACFF1 Certificate serial: 05DF Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/0zOneHph_4bHRbR0CWr2muMaz_E.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911309C/B92E3540B2E911EBB4D9CC31C4F9AE02/0zOneHph_4bHRbR0CWr2muMaz_E.mft Manifest number: 05D9 Signing time: Thu 24 Apr 2025 22:48:07 +0000 Manifest this update: Thu 24 Apr 2025 22:48:07 +0000 Manifest next update: Thu 01 May 2025 22:48:07 +0000 Files and hashes: 1: 0zOneHph_4bHRbR0CWr2muMaz_E.crl (hash: dSNw/5xfTN77/XPI4ybQESCUbM3EYoYzEpW8U+eLsjo=) 2: 4BC6C1AE9CEF11EF82EF5C3FC4F9AE02.roa (hash: L/m30yzaNluetj26vPxHt2D6AK5u1/PgTOzeYK45W8A=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911309C/B92E3540B2E911EBB4D9CC31C4F9AE02/0zOneHph_4bHRbR0CWr2muMaz_E.crl rsync://rpki.apnic.net/member_repository/A911309C/B92E3540B2E911EBB4D9CC31C4F9AE02/0zOneHph_4bHRbR0CWr2muMaz_E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/0zOneHph_4bHRbR0CWr2muMaz_E.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 01 May 2025 22:48:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1503 (0x5df) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911309C, serialNumber=D333A7787A61FF86C745B474096AF69AE31ACFF1 Validity Not Before: Apr 24 22:48:07 2025 GMT Not After : May 1 22:48:07 2025 GMT Subject: CN=680abfa7-3053 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c5:81:c2:37:7e:71:86:57:9b:ae:e5:98:e0:94: 5e:1b:a9:74:b2:ba:7f:ef:38:c9:35:25:00:80:d3: 5c:db:00:0c:e1:cc:25:76:b7:f9:99:f9:c8:d3:5a: 51:38:14:4e:06:44:f4:d2:b9:b5:e8:24:c7:23:0e: 87:0b:b1:57:9c:20:6c:f6:14:f4:43:0f:9b:f5:b6: df:73:c0:84:9d:6c:26:a9:73:4d:76:c2:29:e2:9a: 58:c8:31:94:89:f3:d6:c7:38:13:f3:b6:57:bb:16: 7d:d6:75:37:f2:08:6d:67:a1:10:12:49:b8:ba:25: 80:4a:26:c2:4d:ba:ce:aa:9e:c2:80:bb:93:14:cc: 28:5d:88:37:b2:a9:ec:7f:bc:ca:8f:75:dd:f9:8c: 08:91:21:5c:25:63:5b:93:f4:de:6c:ae:30:5b:50: 8b:c8:d0:09:84:15:82:96:ba:17:ed:fe:5b:f8:c2: 78:d3:9b:1a:a3:9c:94:d8:49:44:c3:fb:a6:bd:df: 58:16:9c:2a:cb:61:19:5d:64:1b:0c:d8:b3:8f:66: 0e:88:b6:fd:6c:d7:99:37:69:0b:f8:8c:9a:9e:05: cb:bc:e6:ef:d7:15:9d:a6:d3:5f:e1:dd:c5:7c:08: f7:f1:02:b4:15:d4:66:6a:05:34:61:92:b4:ca:a8: 80:c5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CA:B5:D3:A0:B1:A8:64:08:83:AC:80:26:69:FB:F8:31:73:71:4A:EF X509v3 Authority Key Identifier: keyid:D3:33:A7:78:7A:61:FF:86:C7:45:B4:74:09:6A:F6:9A:E3:1A:CF:F1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911309C/B92E3540B2E911EBB4D9CC31C4F9AE02/0zOneHph_4bHRbR0CWr2muMaz_E.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/0zOneHph_4bHRbR0CWr2muMaz_E.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911309C/B92E3540B2E911EBB4D9CC31C4F9AE02/0zOneHph_4bHRbR0CWr2muMaz_E.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption b8:65:e6:cc:30:78:06:45:c2:7d:b0:47:60:b4:76:48:0a:b7: 30:17:f1:58:97:88:dc:82:19:63:a6:33:44:5d:66:72:da:b9: b1:08:69:08:63:e8:ee:92:64:cf:5e:d5:ea:db:45:e8:ae:cb: 2d:92:d0:d5:45:be:f7:e7:26:30:9a:f5:1d:51:ad:a4:ad:b4: de:51:25:ad:2a:42:a0:89:99:63:ea:59:4f:ad:18:45:2e:12: 40:52:64:32:59:46:5f:b9:9f:92:b7:f7:97:e9:fd:1d:97:97: 70:8e:39:d7:89:20:b2:ff:7e:0d:d9:fe:a3:be:84:ea:ce:05: f7:91:11:4b:b5:64:67:08:9d:e4:b3:c2:84:b3:25:3a:7b:1b: 30:d8:d2:4c:b1:56:64:9d:72:30:61:1d:c6:18:08:fa:e0:fc: 21:8c:72:6c:8a:71:58:66:b5:67:e4:a7:51:84:77:73:b4:6a: eb:5c:a1:20:5c:66:31:6d:f3:a1:82:50:3e:24:11:3b:96:9a: 9b:d7:83:1d:7e:55:0a:b5:32:f8:c1:32:53:27:71:34:1a:33: 44:32:b9:ca:13:26:b5:18:96:f1:7f:dc:ae:8a:8c:ae:49:11: 07:77:f3:2a:5b:62:84:28:74:16:c4:83:85:d6:65:1a:87:af: 7d:e8:78:6d -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBd8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MTMwOUMxMTAvBgNVBAUTKEQzMzNBNzc4N0E2MUZGODZDNzQ1QjQ3NDA5NkFGNjlB RTMxQUNGRjEwHhcNMjUwNDI0MjI0ODA3WhcNMjUwNTAxMjI0ODA3WjAYMRYwFAYD VQQDEw02ODBhYmZhNy0zMDUzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxYHCN35xhlebruWY4JReG6l0srp/7zjJNSUAgNNc2wAM4cwldrf5mfnI01pR OBROBkT00rm16CTHIw6HC7FXnCBs9hT0Qw+b9bbfc8CEnWwmqXNNdsIp4ppYyDGU ifPWxzgT87ZXuxZ91nU38ghtZ6EQEkm4uiWASibCTbrOqp7CgLuTFMwoXYg3sqns f7zKj3Xd+YwIkSFcJWNbk/TebK4wW1CLyNAJhBWClroX7f5b+MJ405sao5yU2ElE w/umvd9YFpwqy2EZXWQbDNizj2YOiLb9bNeZN2kL+IyangXLvObv1xWdptNf4d3F fAj38QK0FdRmagU0YZK0yqiAxQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFMq106Cx qGQIg6yAJmn7+DFzcUrvMB8GA1UdIwQYMBaAFNMzp3h6Yf+Gx0W0dAlq9prjGs/x MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExMzA5Qy9COTJFMzU0MEIy RTkxMUVCQjREOUNDMzFDNEY5QUUwMi8wek9uZUhwaF80YkhSYlIwQ1dyMm11TWF6 X0UuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzB6T25lSHBoXzRiSFJiUjBDV3IybXVNYXpfRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx MzA5Qy9COTJFMzU0MEIyRTkxMUVCQjREOUNDMzFDNEY5QUUwMi8wek9uZUhwaF80 YkhSYlIwQ1dyMm11TWF6X0UubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQC4ZebMMHgGRcJ9sEdgtHZICrcwF/FYl4jcghljpjNEXWZy2rmxCGkI Y+jukmTPXtXq20XorsstktDVRb735yYwmvUdUa2krbTeUSWtKkKgiZlj6llPrRhF LhJAUmQyWUZfuZ+St/eX6f0dl5dwjjnXiSCy/34N2f6jvoTqzgX3kRFLtWRnCJ3k s8KEsyU6exsw2NJMsVZknXIwYR3GGAj64PwhjHJsinFYZrVn5KdRhHdztGrrXKEg XGYxbfOhglA+JBE7lpqb14MdflUKtTL4wTJTJ3E0GjNEMrnKEya1GJbxf9yuioyu SREHd/MqW2KEKHQWxIOF1mUah6996Hht -----END CERTIFICATE-----Generated at Sat Apr 26 12:23:49 2025 by rpki-client