$ rpki-client -vvf rpki.apnic.net/member_repository/A9129D4A/248103A4AC9611E6A561A315C4F9AE02/ZGscQagf9-WCtezcHO9UzmEVJWM.mft File: ZGscQagf9-WCtezcHO9UzmEVJWM.mft (raw, json) Hash identifier: rGtLpYbsdkRavYnuXwzQAzBo3i6kjbXrYDVJR82ZCqk= Subject key identifier: 81:A8:7A:E1:EA:FF:CF:6F:9B:11:9B:1E:42:8C:15:9F:32:9A:97:C4 Authority key identifier: 64:6B:1C:41:A8:1F:F7:E5:82:B5:EC:DC:1C:EF:54:CE:61:15:25:63 Certificate issuer: /CN=A9129D4A/serialNumber=646B1C41A81FF7E582B5ECDC1CEF54CE61152563 Certificate serial: 1D4B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ZGscQagf9-WCtezcHO9UzmEVJWM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9129D4A/248103A4AC9611E6A561A315C4F9AE02/ZGscQagf9-WCtezcHO9UzmEVJWM.mft Manifest number: 1D40 Signing time: Thu 24 Apr 2025 16:14:02 +0000 Manifest this update: Thu 24 Apr 2025 16:14:02 +0000 Manifest next update: Thu 01 May 2025 16:14:02 +0000 Files and hashes: 1: ZGscQagf9-WCtezcHO9UzmEVJWM.crl (hash: NmPJojvasZSlklvW+a8eWr0gDoxPQuFolUkKnkI8n0k=) 2: 810AF2B0AC9611E6A37EC415C4F9AE02.roa (hash: djmV6ni7hy6C8m5F1gtlxw3KFQjLB6LT9Z3a9xMILMs=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9129D4A/248103A4AC9611E6A561A315C4F9AE02/ZGscQagf9-WCtezcHO9UzmEVJWM.crl rsync://rpki.apnic.net/member_repository/A9129D4A/248103A4AC9611E6A561A315C4F9AE02/ZGscQagf9-WCtezcHO9UzmEVJWM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ZGscQagf9-WCtezcHO9UzmEVJWM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 01 May 2025 16:14:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7499 (0x1d4b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9129D4A, serialNumber=646B1C41A81FF7E582B5ECDC1CEF54CE61152563 Validity Not Before: Apr 24 16:14:02 2025 GMT Not After : May 1 16:14:02 2025 GMT Subject: CN=680a634a-7124 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f1:19:13:4a:59:db:7a:fd:c7:e4:24:a7:40:01: 31:f9:45:03:0b:82:1d:08:50:e3:64:a7:c8:f5:39: 6d:40:9c:3e:62:cb:c4:97:f8:24:3b:a3:e7:25:96: 62:78:d2:92:b9:a7:70:bc:ee:dc:1f:7e:1e:57:ff: 2b:86:c8:8c:ca:37:74:ef:d9:bf:f0:fa:ea:f2:62: 13:75:e0:1c:d7:38:8e:46:5f:6b:9e:56:70:d9:1a: 32:36:95:72:18:3b:a8:84:3f:11:fb:5c:26:5b:da: 0c:ed:3f:f1:a3:5f:b9:0f:66:3a:9f:03:c5:a1:70: 21:01:d2:2c:02:a2:73:9b:ee:52:41:46:95:92:62: a9:ec:c8:3d:9b:d4:38:19:33:08:26:31:d2:57:c8: 54:6c:97:95:b3:70:9e:1f:f7:7d:02:48:8c:c4:1b: 96:7d:4c:6e:51:46:4f:e4:b8:08:54:3c:4f:42:4d: 28:cd:de:e2:32:80:ed:1b:36:fd:bd:1f:21:e7:8e: da:58:20:16:39:64:82:07:9a:19:41:0a:e0:c6:90: 9d:a0:3e:c5:9b:83:23:eb:d8:bd:1e:94:7b:d9:77: bf:9a:f8:5f:57:98:6b:b7:e2:bd:2f:aa:ba:4a:d1: af:80:7f:60:3b:22:69:b8:6e:79:59:4c:ba:20:79: 7e:d9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 81:A8:7A:E1:EA:FF:CF:6F:9B:11:9B:1E:42:8C:15:9F:32:9A:97:C4 X509v3 Authority Key Identifier: keyid:64:6B:1C:41:A8:1F:F7:E5:82:B5:EC:DC:1C:EF:54:CE:61:15:25:63 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9129D4A/248103A4AC9611E6A561A315C4F9AE02/ZGscQagf9-WCtezcHO9UzmEVJWM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ZGscQagf9-WCtezcHO9UzmEVJWM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9129D4A/248103A4AC9611E6A561A315C4F9AE02/ZGscQagf9-WCtezcHO9UzmEVJWM.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 03:08:60:06:c9:df:32:da:40:b7:b1:6b:7d:28:98:65:4b:73: 62:6a:35:71:8d:60:7f:d5:21:f4:de:09:59:26:31:c1:6b:46: b0:cc:41:20:7a:73:f3:bb:50:bf:71:8e:b5:46:79:8c:70:15: 3d:56:b9:67:64:a1:78:b2:84:9e:63:58:30:94:ec:b5:06:14: 82:0a:0e:fb:7c:e1:e1:15:ef:12:c6:a9:c0:08:30:8b:f5:5f: f3:50:24:6c:23:0a:c2:34:3b:1c:3f:e9:ae:d5:8f:84:0b:fb: 30:e9:e7:06:d0:27:54:52:15:19:c0:71:69:b2:9e:09:0a:6e: cd:e0:87:54:f1:5f:80:3d:a1:9c:e9:56:08:74:a3:dc:6c:8d: 23:a7:5d:65:37:fa:a2:a1:91:ef:6b:ff:81:b1:5b:d6:d7:c0: a7:43:99:3a:56:6e:9a:5a:53:25:4d:7a:a7:ce:d5:8a:b5:f7: 3f:00:71:e8:a7:ac:da:3a:a7:4a:e0:c3:9d:6b:af:15:1d:bc: 4c:10:18:59:d2:d3:05:fc:d6:b8:a7:5d:b0:e7:30:5c:f6:ce: 6c:0d:40:f1:2d:2e:65:9b:60:6f:fa:d5:76:f9:3c:27:86:28: d1:fb:2e:0a:5a:bc:67:d2:d1:cf:c9:7b:7f:8e:99:57:68:44: 07:af:99:9f -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICHUswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MjlENEExMTAvBgNVBAUTKDY0NkIxQzQxQTgxRkY3RTU4MkI1RUNEQzFDRUY1NENF NjExNTI1NjMwHhcNMjUwNDI0MTYxNDAyWhcNMjUwNTAxMTYxNDAyWjAYMRYwFAYD VQQDEw02ODBhNjM0YS03MTI0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA8RkTSlnbev3H5CSnQAEx+UUDC4IdCFDjZKfI9TltQJw+YsvEl/gkO6PnJZZi eNKSuadwvO7cH34eV/8rhsiMyjd079m/8Prq8mITdeAc1ziORl9rnlZw2RoyNpVy GDuohD8R+1wmW9oM7T/xo1+5D2Y6nwPFoXAhAdIsAqJzm+5SQUaVkmKp7Mg9m9Q4 GTMIJjHSV8hUbJeVs3CeH/d9AkiMxBuWfUxuUUZP5LgIVDxPQk0ozd7iMoDtGzb9 vR8h547aWCAWOWSCB5oZQQrgxpCdoD7Fm4Mj69i9HpR72Xe/mvhfV5hrt+K9L6q6 StGvgH9gOyJpuG55WUy6IHl+2QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFIGoeuHq /89vmxGbHkKMFZ8ympfEMB8GA1UdIwQYMBaAFGRrHEGoH/flgrXs3BzvVM5hFSVj MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyOUQ0QS8yNDgxMDNBNEFD OTYxMUU2QTU2MUEzMTVDNEY5QUUwMi9aR3NjUWFnZjktV0N0ZXpjSE85VXptRVZK V00uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1pHc2NRYWdmOS1XQ3RlemNITzlVem1FVkpXTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy OUQ0QS8yNDgxMDNBNEFDOTYxMUU2QTU2MUEzMTVDNEY5QUUwMi9aR3NjUWFnZjkt V0N0ZXpjSE85VXptRVZKV00ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQADCGAGyd8y2kC3sWt9KJhlS3NiajVxjWB/1SH03glZJjHBa0awzEEg enPzu1C/cY61RnmMcBU9VrlnZKF4soSeY1gwlOy1BhSCCg77fOHhFe8SxqnACDCL 9V/zUCRsIwrCNDscP+mu1Y+EC/sw6ecG0CdUUhUZwHFpsp4JCm7N4IdU8V+APaGc 6VYIdKPcbI0jp11lN/qioZHva/+BsVvW18CnQ5k6Vm6aWlMlTXqnztWKtfc/AHHo p6zaOqdK4MOda68VHbxMEBhZ0tMF/Na4p12w5zBc9s5sDUDxLS5lm2Bv+tV2+Twn hijR+y4KWrxn0tHPyXt/jplXaEQHr5mf -----END CERTIFICATE-----Generated at Sat Apr 26 03:54:01 2025 by rpki-client