$ rpki-client -vvf rpki.apnic.net/member_repository/A914B45F/40BB15742F6511EE95FDED56C4F9AE02/z64jGpiXN_YdrZV8wk0hNYWBjtw.mft File: z64jGpiXN_YdrZV8wk0hNYWBjtw.mft (raw, json) Hash identifier: HyHz5aHoY5auUgnKeM/+6T1zag74Lmt3OQe/V5NRp9k= Subject key identifier: 79:4B:86:FB:42:08:46:F0:7E:C1:14:15:91:0F:57:53:17:47:FA:0A Authority key identifier: CF:AE:23:1A:98:97:37:F6:1D:AD:95:7C:C2:4D:21:35:85:81:8E:DC Certificate issuer: /CN=A914B45F/serialNumber=CFAE231A989737F61DAD957CC24D213585818EDC Certificate serial: 0148 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/z64jGpiXN_YdrZV8wk0hNYWBjtw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914B45F/40BB15742F6511EE95FDED56C4F9AE02/z64jGpiXN_YdrZV8wk0hNYWBjtw.mft Manifest number: 0146 Signing time: Fri 25 Apr 2025 03:22:48 +0000 Manifest this update: Fri 25 Apr 2025 03:22:48 +0000 Manifest next update: Fri 02 May 2025 03:22:48 +0000 Files and hashes: 1: z64jGpiXN_YdrZV8wk0hNYWBjtw.crl (hash: yiZ0ankgyN6WP+lRWvm1iEXnY/hPoVDLp0YjrN9c33s=) 2: 578C92D62F6611EE9CAFAA58C4F9AE02.roa (hash: Km7Ntr3HPW+9p2/xgcR3/NDs3gM06IRtzM1XksYLFiE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914B45F/40BB15742F6511EE95FDED56C4F9AE02/z64jGpiXN_YdrZV8wk0hNYWBjtw.crl rsync://rpki.apnic.net/member_repository/A914B45F/40BB15742F6511EE95FDED56C4F9AE02/z64jGpiXN_YdrZV8wk0hNYWBjtw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/z64jGpiXN_YdrZV8wk0hNYWBjtw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 02 May 2025 03:22:47 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 328 (0x148) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914B45F, serialNumber=CFAE231A989737F61DAD957CC24D213585818EDC Validity Not Before: Apr 25 03:22:48 2025 GMT Not After : May 2 03:22:48 2025 GMT Subject: CN=680b0008-b8e2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e3:20:6f:60:91:17:d9:f9:a5:ab:d2:eb:f7:bb: 23:b7:00:b8:ae:3c:b6:e1:a5:ae:67:52:c6:34:b2: f3:06:28:27:02:e9:d5:25:11:fd:ad:08:aa:5a:88: fc:23:8b:15:c8:4a:58:fa:1f:d9:c5:20:59:c0:2a: 71:59:cf:ff:69:3c:c0:73:ce:67:87:8d:52:de:d3: 2e:86:bb:50:74:2f:0f:76:d8:30:0a:33:15:9f:ca: 17:f3:5e:ac:0a:e5:29:9d:58:e9:33:a3:ff:eb:36: a3:98:b6:24:45:b9:e7:85:5a:a9:14:d9:58:0d:ef: fd:fc:c2:51:99:9f:e5:32:a1:16:0e:12:06:09:c5: 3b:e3:10:57:96:89:0a:a3:27:d5:48:24:48:cf:f5: 7f:55:8f:b6:e7:f5:6e:cc:be:98:6f:2a:37:8c:8a: d9:38:51:24:ed:78:0a:55:75:37:a5:35:42:ae:a5: bb:44:c6:26:6d:dc:50:9e:ef:38:59:94:48:7a:2a: da:b6:19:9b:2a:75:35:86:1c:84:62:e4:90:9b:74: 05:35:26:96:73:5c:bf:4a:e9:47:f8:ab:e9:1f:7f: b1:62:79:21:95:9e:84:8a:bb:c6:79:4b:38:dc:00: 0f:56:ee:4a:33:4a:7d:91:25:f6:7f:77:bf:8b:4a: 5f:a1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 79:4B:86:FB:42:08:46:F0:7E:C1:14:15:91:0F:57:53:17:47:FA:0A X509v3 Authority Key Identifier: keyid:CF:AE:23:1A:98:97:37:F6:1D:AD:95:7C:C2:4D:21:35:85:81:8E:DC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914B45F/40BB15742F6511EE95FDED56C4F9AE02/z64jGpiXN_YdrZV8wk0hNYWBjtw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/z64jGpiXN_YdrZV8wk0hNYWBjtw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914B45F/40BB15742F6511EE95FDED56C4F9AE02/z64jGpiXN_YdrZV8wk0hNYWBjtw.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption be:42:4f:30:1b:bb:f9:cd:f4:0e:85:64:50:6f:56:45:76:df: 34:a2:af:98:16:19:82:a9:34:67:19:0f:32:a0:2f:8a:ea:2f: cc:34:52:a1:de:4e:e7:fb:a5:07:75:cb:6b:ad:a4:15:6d:5c: 13:cd:e7:02:ba:6d:10:6e:15:a6:cc:54:ef:70:05:8a:c9:78: 7f:79:1b:75:f2:b7:da:b6:06:7e:af:e6:09:0b:3d:5e:c4:85: 79:b9:ec:81:bc:4d:e0:ec:31:76:78:98:13:de:53:09:60:7f: c2:a8:d3:d2:9d:42:25:76:1b:66:b3:2f:7d:b2:0e:d3:d6:2d: 8e:7a:77:f5:d4:84:7c:0f:51:1d:f4:47:b1:f9:41:11:f1:84: a3:10:04:82:a2:40:31:d3:03:f1:06:dd:1f:e8:f0:4a:a0:04: 59:6a:aa:31:3f:24:c3:ab:ab:dc:5a:c0:6c:fc:97:92:a1:14: 03:57:2d:98:cc:29:8d:cc:df:64:7c:60:51:5b:08:bd:a3:d5: 6d:c3:f2:7d:e5:0e:56:f2:6e:b7:de:1a:79:50:8e:58:4d:ef: 80:5d:b2:c3:0a:a5:09:b3:4f:2a:80:75:15:c3:db:f1:6c:f9: 87:ac:53:83:7b:3d:5f:28:05:38:49:1a:99:7c:24:14:d9:66: 9f:2c:b1:84 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAUgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NEI0NUYxMTAvBgNVBAUTKENGQUUyMzFBOTg5NzM3RjYxREFEOTU3Q0MyNEQyMTM1 ODU4MThFREMwHhcNMjUwNDI1MDMyMjQ4WhcNMjUwNTAyMDMyMjQ4WjAYMRYwFAYD VQQDEw02ODBiMDAwOC1iOGUyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA4yBvYJEX2fmlq9Lr97sjtwC4rjy24aWuZ1LGNLLzBignAunVJRH9rQiqWoj8 I4sVyEpY+h/ZxSBZwCpxWc//aTzAc85nh41S3tMuhrtQdC8PdtgwCjMVn8oX816s CuUpnVjpM6P/6zajmLYkRbnnhVqpFNlYDe/9/MJRmZ/lMqEWDhIGCcU74xBXlokK oyfVSCRIz/V/VY+25/VuzL6Ybyo3jIrZOFEk7XgKVXU3pTVCrqW7RMYmbdxQnu84 WZRIeirathmbKnU1hhyEYuSQm3QFNSaWc1y/SulH+KvpH3+xYnkhlZ6EirvGeUs4 3AAPVu5KM0p9kSX2f3e/i0pfoQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFHlLhvtC CEbwfsEUFZEPV1MXR/oKMB8GA1UdIwQYMBaAFM+uIxqYlzf2Ha2VfMJNITWFgY7c MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0QjQ1Ri80MEJCMTU3NDJG NjUxMUVFOTVGREVENTZDNEY5QUUwMi96NjRqR3BpWE5fWWRyWlY4d2swaE5ZV0Jq dHcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3o2NGpHcGlYTl9ZZHJaVjh3azBoTllXQmp0dy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 QjQ1Ri80MEJCMTU3NDJGNjUxMUVFOTVGREVENTZDNEY5QUUwMi96NjRqR3BpWE5f WWRyWlY4d2swaE5ZV0JqdHcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQC+Qk8wG7v5zfQOhWRQb1ZFdt80oq+YFhmCqTRnGQ8yoC+K6i/MNFKh 3k7n+6UHdctrraQVbVwTzecCum0QbhWmzFTvcAWKyXh/eRt18rfatgZ+r+YJCz1e xIV5ueyBvE3g7DF2eJgT3lMJYH/CqNPSnUIldhtmsy99sg7T1i2Oenf11IR8D1Ed 9Eex+UER8YSjEASCokAx0wPxBt0f6PBKoARZaqoxPyTDq6vcWsBs/JeSoRQDVy2Y zCmNzN9kfGBRWwi9o9Vtw/J95Q5W8m633hp5UI5YTe+AXbLDCqUJs08qgHUVw9vx bPmHrFODez1fKAU4SRqZfCQU2WafLLGE -----END CERTIFICATE-----Generated at Sat Apr 26 13:11:31 2025 by rpki-client