$ rpki-client -vvf rpki.apnic.net/member_repository/A914DA9E/D1BE809C1F3211F0BD22BA68C4F9AE02/ZsMG0j-L_qqkTMzFVzlpUfmGxr0.mft File: ZsMG0j-L_qqkTMzFVzlpUfmGxr0.mft (raw, json) Hash identifier: J9h6ASb/V68p0YQjcw5Lb4zqPBUf5bPj7KKkeLuvqXE= Subject key identifier: 3B:51:A3:A1:05:59:1F:22:F7:50:66:F4:1D:CA:90:33:E8:C1:76:CB Authority key identifier: 66:C3:06:D2:3F:8B:FE:AA:A4:4C:CC:C5:57:39:69:51:F9:86:C6:BD Certificate issuer: /CN=A914DA9E/serialNumber=66C306D23F8BFEAAA44CCCC557396951F986C6BD Certificate serial: 08 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ZsMG0j-L_qqkTMzFVzlpUfmGxr0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914DA9E/D1BE809C1F3211F0BD22BA68C4F9AE02/ZsMG0j-L_qqkTMzFVzlpUfmGxr0.mft Manifest number: 06 Signing time: Fri 25 Apr 2025 07:11:55 +0000 Manifest this update: Fri 25 Apr 2025 07:11:54 +0000 Manifest next update: Fri 02 May 2025 07:11:54 +0000 Files and hashes: 1: ZsMG0j-L_qqkTMzFVzlpUfmGxr0.crl (hash: KXBsuwLkGA0QMEd13RJ+zC5zjQlfeBUSq/FkRfO0lVM=) 2: 7E10232C1F3411F0BFBD616EC4F9AE02.roa (hash: ziKAkTq8TDHqlAMGRhZZxal4YT5BAAI3FkEOnc8uPao=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914DA9E/D1BE809C1F3211F0BD22BA68C4F9AE02/ZsMG0j-L_qqkTMzFVzlpUfmGxr0.crl rsync://rpki.apnic.net/member_repository/A914DA9E/D1BE809C1F3211F0BD22BA68C4F9AE02/ZsMG0j-L_qqkTMzFVzlpUfmGxr0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ZsMG0j-L_qqkTMzFVzlpUfmGxr0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 02 May 2025 07:11:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 8 (0x8) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914DA9E, serialNumber=66C306D23F8BFEAAA44CCCC557396951F986C6BD Validity Not Before: Apr 25 07:11:54 2025 GMT Not After : May 2 07:11:54 2025 GMT Subject: CN=680b35bb-9e64 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:0b:3f:01:8a:6d:86:e0:78:d4:4e:a7:0a:9b: 30:3c:bc:32:01:10:7c:6f:9f:72:39:71:0f:9d:00: 4b:10:a4:5e:bf:6c:b2:b3:d9:8a:15:c8:4f:eb:77: 10:12:38:b4:87:6f:0c:ec:6e:aa:66:dc:7f:ad:94: ad:3b:88:64:b0:ec:86:86:b9:2c:9a:92:d9:32:a6: 9c:44:19:f6:b9:ea:d1:02:97:ca:7e:8e:d1:1b:1b: e8:28:f0:25:1f:af:42:37:20:e5:c5:8e:c0:d9:11: 1d:51:9c:30:6e:e8:2f:4d:de:05:f6:01:cd:ae:74: 8a:98:6d:f8:43:a5:54:6b:07:31:5e:a5:7a:48:06: b8:b9:ae:d7:0f:b5:f0:39:d0:78:35:50:6d:6d:88: ca:fa:df:8e:93:c7:36:1e:70:04:4e:01:ae:9c:23: 82:1e:ba:21:3b:4c:b1:9e:87:37:1d:9c:4e:dd:df: 5c:49:14:f0:bf:5d:6b:03:d9:c3:36:07:35:72:83: 2d:26:16:12:48:a7:cc:60:c0:b4:51:0f:5e:1c:7e: 50:23:4a:62:b7:0a:93:13:ed:20:d4:c1:57:fe:30: 1d:47:54:36:bf:11:b9:7d:92:93:93:c7:c4:0b:52: 76:7e:e5:47:53:18:32:3e:8d:05:bd:2f:ef:1e:54: 5e:df Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3B:51:A3:A1:05:59:1F:22:F7:50:66:F4:1D:CA:90:33:E8:C1:76:CB X509v3 Authority Key Identifier: keyid:66:C3:06:D2:3F:8B:FE:AA:A4:4C:CC:C5:57:39:69:51:F9:86:C6:BD X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914DA9E/D1BE809C1F3211F0BD22BA68C4F9AE02/ZsMG0j-L_qqkTMzFVzlpUfmGxr0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ZsMG0j-L_qqkTMzFVzlpUfmGxr0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914DA9E/D1BE809C1F3211F0BD22BA68C4F9AE02/ZsMG0j-L_qqkTMzFVzlpUfmGxr0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 3b:f8:a1:2c:07:fe:f6:cf:f5:6a:49:9c:36:1f:5b:a7:ec:dc: 42:20:4b:e6:4a:0a:0f:ab:d7:07:fa:f8:37:35:22:6f:63:8c: 72:50:f8:22:93:74:dc:1d:af:d0:44:a4:fb:18:97:b0:a6:e9: 96:9d:65:0f:e7:ba:6c:48:c0:c2:c8:8f:b4:bd:1d:0a:c9:b3: 52:75:56:7f:88:34:67:ae:65:de:07:58:7f:4b:61:6b:6f:5e: f5:46:71:56:4b:ab:94:b0:0d:57:51:5f:2e:c6:86:c2:dd:25: 09:8f:09:68:6f:5a:92:51:ef:0d:8b:97:d7:9f:d5:2e:3c:b7: b4:cb:1e:dd:ae:ec:4d:ab:af:02:e0:66:3c:e6:6d:48:b0:c7: 58:24:10:b8:4c:09:0a:b9:c2:e1:6a:d3:77:25:a1:13:8b:02: 6f:2a:eb:32:6c:6a:ab:56:fc:61:4f:1a:2e:77:7f:f3:ca:34: 0f:0e:6a:b0:fa:e4:f4:ba:e2:37:11:8c:b0:78:08:0c:f4:39: 00:94:09:3d:7f:a7:b0:20:30:f8:1a:a4:fd:c4:4e:32:74:2f: 72:f7:4e:f3:c6:7c:b4:26:ab:3a:f8:43:02:64:b4:c7:bf:15: 75:71:12:64:58:bb:71:92:1e:aa:3d:c3:8a:a2:74:66:8e:c3: 2f:56:c0:6d -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBCDANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE0 REE5RTExMC8GA1UEBRMoNjZDMzA2RDIzRjhCRkVBQUE0NENDQ0M1NTczOTY5NTFG OTg2QzZCRDAeFw0yNTA0MjUwNzExNTRaFw0yNTA1MDIwNzExNTRaMBgxFjAUBgNV BAMTDTY4MGIzNWJiLTllNjQwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQC4Cz8Bim2G4HjUTqcKmzA8vDIBEHxvn3I5cQ+dAEsQpF6/bLKz2YoVyE/rdxAS OLSHbwzsbqpm3H+tlK07iGSw7IaGuSyaktkyppxEGfa56tECl8p+jtEbG+go8CUf r0I3IOXFjsDZER1RnDBu6C9N3gX2Ac2udIqYbfhDpVRrBzFepXpIBri5rtcPtfA5 0Hg1UG1tiMr6346TxzYecAROAa6cI4IeuiE7TLGehzcdnE7d31xJFPC/XWsD2cM2 BzVygy0mFhJIp8xgwLRRD14cflAjSmK3CpMT7SDUwVf+MB1HVDa/Ebl9kpOTx8QL UnZ+5UdTGDI+jQW9L+8eVF7fAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUO1GjoQVZ HyL3UGb0HcqQM+jBdsswHwYDVR0jBBgwFoAUZsMG0j+L/qqkTMzFVzlpUfmGxr0w DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTREQTlFL0QxQkU4MDlDMUYz MjExRjBCRDIyQkE2OEM0RjlBRTAyL1pzTUcwai1MX3Fxa1RNekZWemxwVWZtR3hy MC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvWnNNRzBqLUxfcXFrVE16RlZ6bHBVZm1HeHIwLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTRE QTlFL0QxQkU4MDlDMUYzMjExRjBCRDIyQkE2OEM0RjlBRTAyL1pzTUcwai1MX3Fx a1RNekZWemxwVWZtR3hyMC5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBADv4oSwH/vbP9WpJnDYfW6fs3EIgS+ZKCg+r1wf6+Dc1Im9jjHJQ+CKT dNwdr9BEpPsYl7Cm6ZadZQ/numxIwMLIj7S9HQrJs1J1Vn+INGeuZd4HWH9LYWtv XvVGcVZLq5SwDVdRXy7GhsLdJQmPCWhvWpJR7w2Ll9ef1S48t7TLHt2u7E2rrwLg ZjzmbUiwx1gkELhMCQq5wuFq03cloROLAm8q6zJsaqtW/GFPGi53f/PKNA8OarD6 5PS64jcRjLB4CAz0OQCUCT1/p7AgMPgapP3ETjJ0L3L3TvPGfLQmqzr4QwJktMe/ FXVxEmRYu3GSHqo9w4qidGaOwy9WwG0= -----END CERTIFICATE-----Generated at Sat Apr 26 17:16:14 2025 by rpki-client