$ rpki-client -vvf rpki.apnic.net/member_repository/A912519D/B8280664C75A11EB81E99E19C4F9AE02/ZrnYT0M2qJ2E0eAuggp5aG4eUsQ.mft File: ZrnYT0M2qJ2E0eAuggp5aG4eUsQ.mft (raw, json) Hash identifier: gF+KnQPvXy9Dw+I0tBjDIaGpAVejYZitxCV/lUkR6Qk= Subject key identifier: 30:0E:6F:27:D9:10:05:D1:2C:65:6F:0B:75:FF:17:A8:3F:08:5D:10 Authority key identifier: 66:B9:D8:4F:43:36:A8:9D:84:D1:E0:2E:82:0A:79:68:6E:1E:52:C4 Certificate issuer: /CN=A912519D/serialNumber=66B9D84F4336A89D84D1E02E820A79686E1E52C4 Certificate serial: 05A8 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ZrnYT0M2qJ2E0eAuggp5aG4eUsQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A912519D/B8280664C75A11EB81E99E19C4F9AE02/ZrnYT0M2qJ2E0eAuggp5aG4eUsQ.mft Manifest number: 05A3 Signing time: Thu 24 Apr 2025 22:58:15 +0000 Manifest this update: Thu 24 Apr 2025 22:58:14 +0000 Manifest next update: Thu 01 May 2025 22:58:14 +0000 Files and hashes: 1: ZrnYT0M2qJ2E0eAuggp5aG4eUsQ.crl (hash: 6wjCWr4HkcbiBx+6ftFBJNZG2E2H0NzLibCX64JseoM=) 2: 10581DEAC75D11EBB00EBD1AC4F9AE02.roa (hash: JmgPCoqfxLnmCXZ9Kqg1cLPcucyGnFbjlpBzEMSmBKg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A912519D/B8280664C75A11EB81E99E19C4F9AE02/ZrnYT0M2qJ2E0eAuggp5aG4eUsQ.crl rsync://rpki.apnic.net/member_repository/A912519D/B8280664C75A11EB81E99E19C4F9AE02/ZrnYT0M2qJ2E0eAuggp5aG4eUsQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ZrnYT0M2qJ2E0eAuggp5aG4eUsQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 01 May 2025 22:58:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1448 (0x5a8) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A912519D, serialNumber=66B9D84F4336A89D84D1E02E820A79686E1E52C4 Validity Not Before: Apr 24 22:58:14 2025 GMT Not After : May 1 22:58:14 2025 GMT Subject: CN=680ac206-edda Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:96:4a:2d:64:c3:71:e4:67:6a:62:58:60:1f:7a: 4b:69:67:fa:90:ee:f6:75:27:39:e4:eb:20:d7:a8: 88:1d:61:91:80:e4:d9:fd:3a:d3:2f:37:b6:48:57: 55:25:ad:de:09:75:24:e9:72:3c:45:4e:26:23:02: 9e:0b:bd:90:0d:0d:02:e7:62:fd:96:5b:fb:72:9b: 6d:cb:94:b3:32:fc:e6:da:a7:8f:88:14:f1:98:fe: c3:7b:bd:3c:91:e2:9a:fc:5f:c5:26:fd:f6:25:b4: 24:36:57:cb:6f:2f:e3:9e:46:50:b4:48:ac:4e:63: 1b:e7:db:47:72:2b:88:e4:a3:58:dc:13:7c:73:55: 2b:8a:b9:82:a1:f1:d2:f1:bb:54:40:41:67:72:f2: 27:ca:6e:a4:4a:3e:c8:93:99:31:28:b8:9f:37:ba: 8f:9e:ff:1c:07:57:a4:94:07:32:4f:79:63:9d:2d: 67:2f:92:f0:3a:2d:58:b8:0e:d5:1a:f5:f1:3b:3a: 7f:f6:c4:4a:c7:9f:d6:59:8b:8c:b7:8d:65:0e:f2: 08:05:bd:ca:7d:2e:a8:4e:d3:b3:c4:2a:ee:5e:bb: 9d:95:30:70:c5:15:2f:32:d9:83:5c:29:d6:d7:40: 73:61:9b:b7:08:a0:90:95:fe:07:23:b7:44:21:8d: fd:03 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 30:0E:6F:27:D9:10:05:D1:2C:65:6F:0B:75:FF:17:A8:3F:08:5D:10 X509v3 Authority Key Identifier: keyid:66:B9:D8:4F:43:36:A8:9D:84:D1:E0:2E:82:0A:79:68:6E:1E:52:C4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A912519D/B8280664C75A11EB81E99E19C4F9AE02/ZrnYT0M2qJ2E0eAuggp5aG4eUsQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ZrnYT0M2qJ2E0eAuggp5aG4eUsQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A912519D/B8280664C75A11EB81E99E19C4F9AE02/ZrnYT0M2qJ2E0eAuggp5aG4eUsQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 1e:73:1d:e1:10:e1:cb:fe:9c:f7:82:63:bf:b8:61:6d:20:8b: 0a:c1:84:6e:33:02:dc:ac:8d:fc:ba:2c:70:c3:16:19:c2:d3: a0:a3:d8:fc:55:27:a3:8a:ef:bf:85:84:f3:81:45:b1:99:57: 69:87:27:f8:b2:ad:c9:76:49:b3:1f:cb:5b:c5:ae:d4:bf:fd: 0a:85:5b:46:d5:37:86:32:3d:d3:db:82:e0:09:4f:44:bc:b7: a0:b7:8e:d7:2d:64:cb:7d:2f:e0:60:21:9e:78:e0:e2:a7:08: fe:85:c8:72:05:8b:b5:54:9e:77:c6:c0:53:4a:db:f7:d0:64: 95:b1:f1:78:45:83:2e:b7:ac:02:3c:5e:de:3a:60:c8:f7:85: 50:9f:84:7a:f3:cc:8c:e2:96:62:d4:a0:ce:06:6d:93:43:ff: 23:58:7c:84:5f:0b:06:73:01:88:9a:62:57:9c:c0:e3:51:f2: 65:5f:00:d8:15:f1:c3:91:28:28:d1:2c:3e:67:70:65:2c:98: 64:73:8b:f4:e2:e2:42:80:7d:41:aa:c3:d7:1e:eb:d0:00:62: 5f:2e:82:9a:8b:0d:f6:d5:c5:9e:29:ec:4d:ba:02:29:9c:0e: 25:c8:5e:36:86:5c:5f:b6:69:cf:4e:7f:16:d8:54:2c:78:1d: e8:4d:25:7f -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBagwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MjUxOUQxMTAvBgNVBAUTKDY2QjlEODRGNDMzNkE4OUQ4NEQxRTAyRTgyMEE3OTY4 NkUxRTUyQzQwHhcNMjUwNDI0MjI1ODE0WhcNMjUwNTAxMjI1ODE0WjAYMRYwFAYD VQQDEw02ODBhYzIwNi1lZGRhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAlkotZMNx5GdqYlhgH3pLaWf6kO72dSc55Osg16iIHWGRgOTZ/TrTLze2SFdV Ja3eCXUk6XI8RU4mIwKeC72QDQ0C52L9llv7cptty5SzMvzm2qePiBTxmP7De708 keKa/F/FJv32JbQkNlfLby/jnkZQtEisTmMb59tHciuI5KNY3BN8c1UrirmCofHS 8btUQEFncvInym6kSj7Ik5kxKLifN7qPnv8cB1eklAcyT3ljnS1nL5LwOi1YuA7V GvXxOzp/9sRKx5/WWYuMt41lDvIIBb3KfS6oTtOzxCruXrudlTBwxRUvMtmDXCnW 10BzYZu3CKCQlf4HI7dEIY39AwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFDAObyfZ EAXRLGVvC3X/F6g/CF0QMB8GA1UdIwQYMBaAFGa52E9DNqidhNHgLoIKeWhuHlLE MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyNTE5RC9CODI4MDY2NEM3 NUExMUVCODFFOTlFMTlDNEY5QUUwMi9acm5ZVDBNMnFKMkUwZUF1Z2dwNWFHNGVV c1EuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1pybllUME0ycUoyRTBlQXVnZ3A1YUc0ZVVzUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy NTE5RC9CODI4MDY2NEM3NUExMUVCODFFOTlFMTlDNEY5QUUwMi9acm5ZVDBNMnFK MkUwZUF1Z2dwNWFHNGVVc1EubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAecx3hEOHL/pz3gmO/uGFtIIsKwYRuMwLcrI38uixwwxYZwtOgo9j8 VSejiu+/hYTzgUWxmVdphyf4sq3JdkmzH8tbxa7Uv/0KhVtG1TeGMj3T24LgCU9E vLegt47XLWTLfS/gYCGeeODipwj+hchyBYu1VJ53xsBTStv30GSVsfF4RYMut6wC PF7eOmDI94VQn4R688yM4pZi1KDOBm2TQ/8jWHyEXwsGcwGImmJXnMDjUfJlXwDY FfHDkSgo0Sw+Z3BlLJhkc4v04uJCgH1BqsPXHuvQAGJfLoKaiw321cWeKexNugIp nA4lyF42hlxftmnPTn8W2FQseB3oTSV/ -----END CERTIFICATE-----Generated at Sat Apr 26 04:24:33 2025 by rpki-client