$ rpki-client -vvf rpki.apnic.net/member_repository/A91565C6/D265B0C6F41F11EF81708868C4F9AE02/zVNcfrMaQKP9uKxNXVd6-dbFiEg.mft File: zVNcfrMaQKP9uKxNXVd6-dbFiEg.mft (raw, json) Hash identifier: RfEs2wmF/A0wgIgVcvWFZKdHtEVFeBrJSfJVp1MqlKI= Subject key identifier: 45:06:B8:E9:D1:E3:DD:BE:46:44:54:CD:31:67:59:B8:26:1A:A2:DD Authority key identifier: CD:53:5C:7E:B3:1A:40:A3:FD:B8:AC:4D:5D:57:7A:F9:D6:C5:88:48 Certificate issuer: /CN=A91565C6/serialNumber=CD535C7EB31A40A3FDB8AC4D5D577AF9D6C58848 Certificate serial: 23 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/zVNcfrMaQKP9uKxNXVd6-dbFiEg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91565C6/D265B0C6F41F11EF81708868C4F9AE02/zVNcfrMaQKP9uKxNXVd6-dbFiEg.mft Manifest number: 21 Signing time: Fri 25 Apr 2025 06:50:17 +0000 Manifest this update: Fri 25 Apr 2025 06:50:16 +0000 Manifest next update: Fri 02 May 2025 06:50:16 +0000 Files and hashes: 1: zVNcfrMaQKP9uKxNXVd6-dbFiEg.crl (hash: Z0P3/kLZ4nqbRN4KzSJtqqQL/J9+ro4COqEP/iOfvU8=) 2: 296C92D0F5B611EFB7E6426EC4F9AE02.roa (hash: DAG2avo3wM4Iv7tiFSCw0I7iwE7NYk5jbcu93twLDNo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91565C6/D265B0C6F41F11EF81708868C4F9AE02/zVNcfrMaQKP9uKxNXVd6-dbFiEg.crl rsync://rpki.apnic.net/member_repository/A91565C6/D265B0C6F41F11EF81708868C4F9AE02/zVNcfrMaQKP9uKxNXVd6-dbFiEg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/zVNcfrMaQKP9uKxNXVd6-dbFiEg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 02 May 2025 06:50:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 35 (0x23) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91565C6, serialNumber=CD535C7EB31A40A3FDB8AC4D5D577AF9D6C58848 Validity Not Before: Apr 25 06:50:16 2025 GMT Not After : May 2 06:50:16 2025 GMT Subject: CN=680b30a8-4dd2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:fa:69:4c:ad:75:5a:3a:6b:70:d0:1a:0f:86: bb:f8:f3:25:b8:df:9f:65:32:e4:aa:5e:33:18:53: 42:5e:b1:25:2e:f1:d8:fb:82:e6:c2:c0:62:09:5c: d6:2f:de:95:0d:a7:83:a8:bd:04:7b:54:70:aa:ab: be:55:18:20:2b:8b:4b:8f:e9:8c:77:46:ce:f1:e0: 88:fd:1d:25:49:15:a5:85:6e:4f:cd:0e:8d:e3:c9: 00:65:9c:21:f1:1e:ee:39:09:01:d5:a9:c5:b4:f8: 1f:e8:af:83:1a:38:35:a4:1b:8e:40:e0:61:bd:4b: 26:c6:83:4c:fd:cf:03:fd:2a:a8:56:4a:80:75:99: 86:d9:89:e2:1a:40:0a:ac:fd:79:7a:d1:f3:2f:4a: 9f:37:5c:0f:d2:19:e0:35:0e:16:3b:6b:d3:a6:0e: de:f3:b1:2b:b5:44:5a:2b:bc:f6:d8:f4:31:4a:0e: 53:55:bf:91:99:5b:f5:09:51:8d:3b:c1:40:05:7b: 26:98:ae:9f:1e:78:54:97:f7:43:8b:7e:03:bf:60: 23:fc:dd:34:99:2a:da:20:da:4b:62:94:de:f8:5e: b8:f4:05:5a:c7:73:b3:6e:7f:04:66:4c:74:c8:b3: e6:14:52:03:9b:4b:7b:ba:56:11:5e:a2:d6:4a:33: 47:59 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 45:06:B8:E9:D1:E3:DD:BE:46:44:54:CD:31:67:59:B8:26:1A:A2:DD X509v3 Authority Key Identifier: keyid:CD:53:5C:7E:B3:1A:40:A3:FD:B8:AC:4D:5D:57:7A:F9:D6:C5:88:48 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91565C6/D265B0C6F41F11EF81708868C4F9AE02/zVNcfrMaQKP9uKxNXVd6-dbFiEg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/zVNcfrMaQKP9uKxNXVd6-dbFiEg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91565C6/D265B0C6F41F11EF81708868C4F9AE02/zVNcfrMaQKP9uKxNXVd6-dbFiEg.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 6a:45:e1:87:85:e4:36:4f:60:86:f4:eb:8a:80:cb:99:0c:da: d7:62:0a:30:bc:84:b3:05:c0:f0:98:72:5b:f5:2d:0c:c0:47: e0:f9:f9:b6:e4:ba:3c:4a:cf:a6:f2:55:48:a3:a6:54:d3:36: 7f:d1:a4:ff:55:16:fb:48:e5:0a:11:a2:aa:20:6d:cc:f3:67: 56:ee:2e:d8:47:18:9c:3d:4d:21:ee:f4:37:0e:af:da:a4:03: cf:7d:4d:a4:68:9b:35:e7:d4:f3:84:63:6d:01:75:b9:e4:90: 20:15:72:31:45:1c:d1:ab:d6:44:06:a6:df:be:8c:aa:8f:6e: a8:df:2d:ba:c4:9d:93:02:6b:d2:2a:11:2b:87:16:83:d7:27: 57:5a:a1:35:0c:d9:3b:53:ff:36:f2:dd:21:ff:bc:4b:b2:c2: ca:8c:af:a3:ef:71:67:e1:c1:18:78:c0:a5:ea:74:6a:f3:f8: 2f:44:ef:f9:50:93:f7:a9:81:a9:a0:1d:ce:e1:b7:3a:b6:2e: fd:ce:c7:d8:7a:67:0d:20:42:25:b1:fc:76:30:56:8e:d7:88: 0d:b9:1a:11:f4:1b:6d:4f:31:b8:cb:0b:d0:0b:b4:09:04:14: a1:1b:ab:e1:11:bc:12:d9:79:98:08:39:30:0b:2f:01:c3:8e: 40:fc:90:64 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBIzANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE1 NjVDNjExMC8GA1UEBRMoQ0Q1MzVDN0VCMzFBNDBBM0ZEQjhBQzRENUQ1NzdBRjlE NkM1ODg0ODAeFw0yNTA0MjUwNjUwMTZaFw0yNTA1MDIwNjUwMTZaMBgxFjAUBgNV BAMTDTY4MGIzMGE4LTRkZDIwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQC8+mlMrXVaOmtw0BoPhrv48yW4359lMuSqXjMYU0JesSUu8dj7gubCwGIJXNYv 3pUNp4OovQR7VHCqq75VGCAri0uP6Yx3Rs7x4Ij9HSVJFaWFbk/NDo3jyQBlnCHx Hu45CQHVqcW0+B/or4MaODWkG45A4GG9SybGg0z9zwP9KqhWSoB1mYbZieIaQAqs /Xl60fMvSp83XA/SGeA1DhY7a9OmDt7zsSu1RForvPbY9DFKDlNVv5GZW/UJUY07 wUAFeyaYrp8eeFSX90OLfgO/YCP83TSZKtog2ktilN74Xrj0BVrHc7NufwRmTHTI s+YUUgObS3u6VhFeotZKM0dZAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQURQa46dHj 3b5GRFTNMWdZuCYaot0wHwYDVR0jBBgwFoAUzVNcfrMaQKP9uKxNXVd6+dbFiEgw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTU2NUM2L0QyNjVCMEM2RjQx RjExRUY4MTcwODg2OEM0RjlBRTAyL3pWTmNmck1hUUtQOXVLeE5YVmQ2LWRiRmlF Zy5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvelZOY2ZyTWFRS1A5dUt4TlhWZDYtZGJGaUVnLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTU2 NUM2L0QyNjVCMEM2RjQxRjExRUY4MTcwODg2OEM0RjlBRTAyL3pWTmNmck1hUUtQ OXVLeE5YVmQ2LWRiRmlFZy5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAGpF4YeF5DZPYIb064qAy5kM2tdiCjC8hLMFwPCYclv1LQzAR+D5+bbk ujxKz6byVUijplTTNn/RpP9VFvtI5QoRoqogbczzZ1buLthHGJw9TSHu9DcOr9qk A899TaRomzXn1POEY20BdbnkkCAVcjFFHNGr1kQGpt++jKqPbqjfLbrEnZMCa9Iq ESuHFoPXJ1daoTUM2TtT/zby3SH/vEuywsqMr6PvcWfhwRh4wKXqdGrz+C9E7/lQ k/epgamgHc7htzq2Lv3Ox9h6Zw0gQiWx/HYwVo7XiA25GhH0G21PMbjLC9ALtAkE FKEbq+ERvBLZeZgIOTALLwHDjkD8kGQ= -----END CERTIFICATE-----Generated at Sat Apr 26 04:22:53 2025 by rpki-client