$ rpki-client -vvf rpki.apnic.net/member_repository/A916A3EE/5B97A8B8701211EB8907BB1FC4F9AE02/aWryPZMpXC9f3fMqlVE7Ldu_zhs.mft File: aWryPZMpXC9f3fMqlVE7Ldu_zhs.mft (raw, json) Hash identifier: 0cyH36q7iNKANt4b5JEpepMcVbhJ3Ajw7sXCpQTvsts= Subject key identifier: 25:E0:4B:18:71:FA:9A:DD:4D:88:96:D3:43:3A:5F:93:6C:00:77:B4 Authority key identifier: 69:6A:F2:3D:93:29:5C:2F:5F:DD:F3:2A:95:51:3B:2D:DB:BF:CE:1B Certificate issuer: /CN=A916A3EE/serialNumber=696AF23D93295C2F5FDDF32A95513B2DDBBFCE1B Certificate serial: 0682 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aWryPZMpXC9f3fMqlVE7Ldu_zhs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A916A3EE/5B97A8B8701211EB8907BB1FC4F9AE02/aWryPZMpXC9f3fMqlVE7Ldu_zhs.mft Manifest number: 067D Signing time: Thu 24 Apr 2025 22:05:29 +0000 Manifest this update: Thu 24 Apr 2025 22:05:29 +0000 Manifest next update: Thu 01 May 2025 22:05:29 +0000 Files and hashes: 1: aWryPZMpXC9f3fMqlVE7Ldu_zhs.crl (hash: 8X52WFknFXuINV6Sm8Xp7FfDbh+HFTOZXXW5D5ICB00=) 2: 76F5B630701311EB9C85DF1FC4F9AE02.roa (hash: qir+UT8zyDGjYz1YRKkq2v/pYcPeSxEZXiWVhwGwNRY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A916A3EE/5B97A8B8701211EB8907BB1FC4F9AE02/aWryPZMpXC9f3fMqlVE7Ldu_zhs.crl rsync://rpki.apnic.net/member_repository/A916A3EE/5B97A8B8701211EB8907BB1FC4F9AE02/aWryPZMpXC9f3fMqlVE7Ldu_zhs.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aWryPZMpXC9f3fMqlVE7Ldu_zhs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 01 May 2025 22:05:28 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1666 (0x682) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A916A3EE, serialNumber=696AF23D93295C2F5FDDF32A95513B2DDBBFCE1B Validity Not Before: Apr 24 22:05:29 2025 GMT Not After : May 1 22:05:29 2025 GMT Subject: CN=680ab5a9-634a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d6:39:7c:0e:2a:23:0b:e8:6f:b2:91:c4:0d:39: f3:ae:37:04:20:9c:a1:af:02:df:84:7b:16:e1:11: 82:05:61:28:a0:82:ee:01:48:cf:24:7c:ff:30:fc: b1:8e:4f:fc:01:64:d9:10:86:54:af:c2:5e:7d:19: 32:35:87:68:5f:68:ea:64:e3:1d:b0:52:e6:a7:ca: b8:75:41:00:12:0d:7d:5a:ca:3f:43:e9:f0:57:14: 9f:cc:70:af:53:df:2e:67:f1:57:6a:cb:a9:62:ed: 26:17:68:56:dc:6a:75:d4:d0:eb:21:f2:bd:6f:38: 00:a3:56:1a:be:5e:e2:cf:9e:7a:e4:d0:00:8a:ec: cd:f1:9d:73:25:6d:f3:be:2f:6a:a3:a2:6f:02:84: 71:de:dc:9b:76:2c:33:d4:4b:bc:3c:9d:3b:53:3b: 77:b4:af:e7:08:58:49:5c:7b:41:6d:1c:d9:17:0b: 7e:06:f1:65:22:14:cc:28:17:94:28:4a:60:2d:6a: b7:68:7c:98:c8:58:95:70:ac:64:0e:87:ac:bc:bd: bb:17:28:b6:32:e9:ed:e4:65:a5:0c:6c:43:08:24: 04:5b:44:20:c9:6e:b7:05:49:b4:84:a1:94:f5:84: 2c:08:4e:74:e6:f3:c0:16:4b:4b:79:c4:81:a0:69: 93:b5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 25:E0:4B:18:71:FA:9A:DD:4D:88:96:D3:43:3A:5F:93:6C:00:77:B4 X509v3 Authority Key Identifier: keyid:69:6A:F2:3D:93:29:5C:2F:5F:DD:F3:2A:95:51:3B:2D:DB:BF:CE:1B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A916A3EE/5B97A8B8701211EB8907BB1FC4F9AE02/aWryPZMpXC9f3fMqlVE7Ldu_zhs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aWryPZMpXC9f3fMqlVE7Ldu_zhs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A916A3EE/5B97A8B8701211EB8907BB1FC4F9AE02/aWryPZMpXC9f3fMqlVE7Ldu_zhs.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 89:73:b5:2e:c7:62:03:fd:56:22:aa:a3:2e:4e:1e:49:5a:70: 85:7f:aa:95:2a:ed:e8:c3:8a:55:73:22:43:57:5d:2c:51:27: 48:f0:11:a3:80:38:f5:ca:97:6e:c4:bc:97:22:bb:dc:b0:3f: 85:1d:fd:6a:64:d2:5d:74:5b:2d:f1:c9:b9:35:f4:68:20:3d: bd:6b:65:49:95:94:ef:72:4c:ba:45:77:4c:9e:92:eb:76:95: c5:2d:f9:eb:c7:95:f9:03:90:2e:ad:14:c8:b9:48:54:92:8a: 42:fa:32:b3:7e:32:e6:e3:b5:91:56:0f:3d:33:d0:4d:f7:ef: a6:3b:1b:ce:d0:e3:88:da:5c:12:53:11:4f:4d:96:f5:13:1f: 6b:91:91:63:a5:78:a3:9b:55:32:6e:60:91:20:21:6b:af:88: b6:f9:06:30:f2:46:85:b0:63:f4:f2:54:83:10:dc:9d:c4:8a: 9a:c3:71:a7:21:c1:a9:e1:4f:cc:c1:49:12:64:09:03:ec:f0: 03:5e:41:95:72:7a:29:82:e2:2c:00:11:23:70:4a:cc:07:76: f5:0f:58:c7:cc:52:f1:0b:15:c2:b4:4a:ff:bb:3b:6a:31:e1: f8:84:fe:a2:0b:f7:ce:35:f4:29:14:7e:b4:34:43:8b:77:b2: 85:4e:56:8a -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBoIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NkEzRUUxMTAvBgNVBAUTKDY5NkFGMjNEOTMyOTVDMkY1RkRERjMyQTk1NTEzQjJE REJCRkNFMUIwHhcNMjUwNDI0MjIwNTI5WhcNMjUwNTAxMjIwNTI5WjAYMRYwFAYD VQQDEw02ODBhYjVhOS02MzRhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1jl8DiojC+hvspHEDTnzrjcEIJyhrwLfhHsW4RGCBWEooILuAUjPJHz/MPyx jk/8AWTZEIZUr8JefRkyNYdoX2jqZOMdsFLmp8q4dUEAEg19Wso/Q+nwVxSfzHCv U98uZ/FXasupYu0mF2hW3Gp11NDrIfK9bzgAo1Yavl7iz5565NAAiuzN8Z1zJW3z vi9qo6JvAoRx3tybdiwz1Eu8PJ07Uzt3tK/nCFhJXHtBbRzZFwt+BvFlIhTMKBeU KEpgLWq3aHyYyFiVcKxkDoesvL27Fyi2Munt5GWlDGxDCCQEW0QgyW63BUm0hKGU 9YQsCE505vPAFktLecSBoGmTtQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFCXgSxhx +prdTYiW00M6X5NsAHe0MB8GA1UdIwQYMBaAFGlq8j2TKVwvX93zKpVROy3bv84b MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2QTNFRS81Qjk3QThCODcw MTIxMUVCODkwN0JCMUZDNEY5QUUwMi9hV3J5UFpNcFhDOWYzZk1xbFZFN0xkdV96 aHMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2FXcnlQWk1wWEM5ZjNmTXFsVkU3TGR1X3pocy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 QTNFRS81Qjk3QThCODcwMTIxMUVCODkwN0JCMUZDNEY5QUUwMi9hV3J5UFpNcFhD OWYzZk1xbFZFN0xkdV96aHMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCJc7Uux2ID/VYiqqMuTh5JWnCFf6qVKu3ow4pVcyJDV10sUSdI8BGj gDj1ypduxLyXIrvcsD+FHf1qZNJddFst8cm5NfRoID29a2VJlZTvcky6RXdMnpLr dpXFLfnrx5X5A5AurRTIuUhUkopC+jKzfjLm47WRVg89M9BN9++mOxvO0OOI2lwS UxFPTZb1Ex9rkZFjpXijm1UybmCRICFrr4i2+QYw8kaFsGP08lSDENydxIqaw3Gn IcGp4U/MwUkSZAkD7PADXkGVcnopguIsABEjcErMB3b1D1jHzFLxCxXCtEr/uztq MeH4hP6iC/fONfQpFH60NEOLd7KFTlaK -----END CERTIFICATE-----Generated at Sat Apr 26 17:02:53 2025 by rpki-client