$ rpki-client -vvf rpki.apnic.net/member_repository/A914E1A8/A40A724AB13011ED847D4981C4F9AE02/i-zDY4Bwprefbc4ioOZbsh4Ndyk.mft File: i-zDY4Bwprefbc4ioOZbsh4Ndyk.mft (raw, json) Hash identifier: /iL8ZM8pEn4OICmN+aw6BY/gez9Y/SzPN24nNl5u0EU= Subject key identifier: 89:2B:B3:FB:A4:D7:06:21:69:0F:A6:C1:AD:B6:EC:DC:27:86:B1:30 Authority key identifier: 8B:EC:C3:63:80:70:A6:B7:9F:6D:CE:22:A0:E6:5B:B2:1E:0D:77:29 Certificate issuer: /CN=A914E1A8/serialNumber=8BECC3638070A6B79F6DCE22A0E65BB21E0D7729 Certificate serial: 01AD Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/i-zDY4Bwprefbc4ioOZbsh4Ndyk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914E1A8/A40A724AB13011ED847D4981C4F9AE02/i-zDY4Bwprefbc4ioOZbsh4Ndyk.mft Manifest number: 01A3 Signing time: Thu 01 May 2025 02:24:06 +0000 Manifest this update: Thu 01 May 2025 02:24:06 +0000 Manifest next update: Thu 08 May 2025 02:24:06 +0000 Files and hashes: 1: i-zDY4Bwprefbc4ioOZbsh4Ndyk.crl (hash: K32B4lbdPPJ1obhKnxCWZPIhNzSAGs1M+wL/ylM22aI=) 2: 5D35DEC8B13411EDB6BEF584C4F9AE02.roa (hash: g7Iu0qsIgHA2DsVqzJPZwAHsWDw0BvGfzGeWjQmEdZA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914E1A8/A40A724AB13011ED847D4981C4F9AE02/i-zDY4Bwprefbc4ioOZbsh4Ndyk.crl rsync://rpki.apnic.net/member_repository/A914E1A8/A40A724AB13011ED847D4981C4F9AE02/i-zDY4Bwprefbc4ioOZbsh4Ndyk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/i-zDY4Bwprefbc4ioOZbsh4Ndyk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 08 May 2025 02:24:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 429 (0x1ad) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914E1A8, serialNumber=8BECC3638070A6B79F6DCE22A0E65BB21E0D7729 Validity Not Before: May 1 02:24:06 2025 GMT Not After : May 8 02:24:06 2025 GMT Subject: CN=6812db46-52fc Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ce:44:23:52:40:4a:40:69:6a:4d:76:d6:63:69: d7:80:67:0c:b5:fc:b4:af:00:06:b5:59:66:62:a3: 44:54:60:86:b0:3d:7f:49:bb:16:cf:f5:a0:6c:7f: 41:68:da:8d:27:c8:28:d7:d7:72:01:9b:8c:d0:93: 34:70:fb:95:bc:22:d7:6d:41:e8:52:60:2f:86:3f: 3c:47:62:41:00:67:a4:e7:a4:70:1e:0d:7a:d5:ec: 9a:96:a8:17:b8:c6:f0:d0:16:08:c3:c4:28:b5:d4: 4d:16:80:78:3b:82:a0:d1:a7:cc:30:ed:9c:ac:14: c8:d0:b1:9b:d3:14:3a:5f:94:39:cc:21:f4:00:3c: 2f:33:c1:06:40:69:c0:1b:13:c2:22:de:93:82:2b: 23:08:13:d4:f3:ec:48:24:66:d1:04:d5:1a:9f:f6: f8:98:91:12:3d:34:e8:a5:c6:3a:63:4b:da:6e:d9: 21:15:82:c0:3a:5c:19:20:94:d6:50:04:3d:0a:0e: 7c:6e:0e:a2:ca:89:44:c9:11:32:7e:39:ce:8d:41: 50:7d:bc:7e:cc:84:ef:fa:74:93:99:fa:b3:ea:2a: 5d:33:97:08:19:8b:d5:e9:93:3f:20:63:d6:91:9f: 8e:3b:c0:23:50:66:87:dc:a7:d9:c8:d5:12:36:d1: 63:8f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 89:2B:B3:FB:A4:D7:06:21:69:0F:A6:C1:AD:B6:EC:DC:27:86:B1:30 X509v3 Authority Key Identifier: keyid:8B:EC:C3:63:80:70:A6:B7:9F:6D:CE:22:A0:E6:5B:B2:1E:0D:77:29 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914E1A8/A40A724AB13011ED847D4981C4F9AE02/i-zDY4Bwprefbc4ioOZbsh4Ndyk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/i-zDY4Bwprefbc4ioOZbsh4Ndyk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914E1A8/A40A724AB13011ED847D4981C4F9AE02/i-zDY4Bwprefbc4ioOZbsh4Ndyk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 18:cc:66:dd:fe:ff:42:fa:0b:7a:f1:54:39:22:5b:ad:98:a6: de:6b:cc:7d:f0:3a:53:1a:87:29:fe:84:7c:b0:41:48:25:66: 26:77:a8:62:00:8d:a5:f0:4e:7f:a3:ef:42:fd:71:ac:28:f7: 8f:fc:98:4c:88:88:50:03:c1:8f:6c:00:78:85:b7:7e:15:9f: a8:b4:32:96:03:94:f4:57:14:4a:1e:c8:86:d1:45:cb:5b:7c: da:dd:af:ca:ff:c5:2b:71:fc:44:8c:18:28:77:01:ae:8f:d8: 60:e2:62:ad:d1:c3:87:a4:cf:90:74:73:e2:92:14:df:d4:ae: ae:20:c4:a3:2e:30:db:4d:57:53:96:eb:5b:1b:11:bd:99:ad: fa:e9:49:7b:b4:50:2c:49:fd:04:15:7d:fc:8b:11:8c:9c:11: 1c:ea:e7:b4:b1:53:45:46:8b:cb:4b:ff:3f:82:75:4b:7d:e9: 93:1f:7b:37:e4:62:26:7b:66:ea:32:63:f0:f9:37:e7:a3:9c: 52:8c:89:e4:2f:43:c5:92:58:2c:9c:60:47:4f:37:04:c5:dd: 3c:02:2f:6e:e9:f2:81:9b:71:bc:76:b5:d8:ea:46:91:9a:6d: e1:10:9a:f3:4a:b9:fa:78:44:d2:02:bc:86:5b:d3:3e:fe:a7: a1:d6:14:5a -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAa0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NEUxQTgxMTAvBgNVBAUTKDhCRUNDMzYzODA3MEE2Qjc5RjZEQ0UyMkEwRTY1QkIy MUUwRDc3MjkwHhcNMjUwNTAxMDIyNDA2WhcNMjUwNTA4MDIyNDA2WjAYMRYwFAYD VQQDEw02ODEyZGI0Ni01MmZjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzkQjUkBKQGlqTXbWY2nXgGcMtfy0rwAGtVlmYqNEVGCGsD1/SbsWz/WgbH9B aNqNJ8go19dyAZuM0JM0cPuVvCLXbUHoUmAvhj88R2JBAGek56RwHg161eyalqgX uMbw0BYIw8QotdRNFoB4O4Kg0afMMO2crBTI0LGb0xQ6X5Q5zCH0ADwvM8EGQGnA GxPCIt6TgisjCBPU8+xIJGbRBNUan/b4mJESPTTopcY6Y0vabtkhFYLAOlwZIJTW UAQ9Cg58bg6iyolEyREyfjnOjUFQfbx+zITv+nSTmfqz6ipdM5cIGYvV6ZM/IGPW kZ+OO8AjUGaH3KfZyNUSNtFjjwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFIkrs/uk 1wYhaQ+mwa227NwnhrEwMB8GA1UdIwQYMBaAFIvsw2OAcKa3n23OIqDmW7IeDXcp MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0RTFBOC9BNDBBNzI0QUIx MzAxMUVEODQ3RDQ5ODFDNEY5QUUwMi9pLXpEWTRCd3ByZWZiYzRpb09aYnNoNE5k eWsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2ktekRZNEJ3cHJlZmJjNGlvT1pic2g0TmR5ay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 RTFBOC9BNDBBNzI0QUIxMzAxMUVEODQ3RDQ5ODFDNEY5QUUwMi9pLXpEWTRCd3By ZWZiYzRpb09aYnNoNE5keWsubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAYzGbd/v9C+gt68VQ5IlutmKbea8x98DpTGocp/oR8sEFIJWYmd6hi AI2l8E5/o+9C/XGsKPeP/JhMiIhQA8GPbAB4hbd+FZ+otDKWA5T0VxRKHsiG0UXL W3za3a/K/8UrcfxEjBgodwGuj9hg4mKt0cOHpM+QdHPikhTf1K6uIMSjLjDbTVdT lutbGxG9ma366Ul7tFAsSf0EFX38ixGMnBEc6ue0sVNFRovLS/8/gnVLfemTH3s3 5GIme2bqMmPw+Tfno5xSjInkL0PFklgsnGBHTzcExd08Ai9u6fKBm3G8drXY6kaR mm3hEJrzSrn6eETSAryGW9M+/qeh1hRa -----END CERTIFICATE-----Generated at Thu May 1 10:55:38 2025 by rpki-client