$ rpki-client -vvf rpki.apnic.net/member_repository/A916D4BE/6A8F71366D4E11EC9CB8CE0AC4F9AE02/zUj-vyb-JJ4FS_1ErpT8WMDo4Kc.mft File: zUj-vyb-JJ4FS_1ErpT8WMDo4Kc.mft (raw, json) Hash identifier: bz8Qcge6gGL/q5U+W8WGo6PJeFYuIC9y7sXVYiW9E/Y= Subject key identifier: 35:78:73:1E:68:75:40:B5:CE:08:6B:A0:17:F7:CC:DD:9F:D4:54:21 Authority key identifier: CD:48:FE:BF:26:FE:24:9E:05:4B:FD:44:AE:94:FC:58:C0:E8:E0:A7 Certificate issuer: /CN=A916D4BE/serialNumber=CD48FEBF26FE249E054BFD44AE94FC58C0E8E0A7 Certificate serial: 0426 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/zUj-vyb-JJ4FS_1ErpT8WMDo4Kc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A916D4BE/6A8F71366D4E11EC9CB8CE0AC4F9AE02/zUj-vyb-JJ4FS_1ErpT8WMDo4Kc.mft Manifest number: 0417 Signing time: Fri 25 Apr 2025 00:14:33 +0000 Manifest this update: Fri 25 Apr 2025 00:14:33 +0000 Manifest next update: Fri 02 May 2025 00:14:33 +0000 Files and hashes: 1: zUj-vyb-JJ4FS_1ErpT8WMDo4Kc.crl (hash: 9Xj4SFhLanXmsLVEPkbSH0lxErGOnxg0zhu+AUHLjEU=) 2: 3A6B56D0E03411EF9FB2E824C4F9AE02.roa (hash: qN4SUiNR7v9xxP/o2Fq/7o1FjEvOjysHOQYMeRV70PA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A916D4BE/6A8F71366D4E11EC9CB8CE0AC4F9AE02/zUj-vyb-JJ4FS_1ErpT8WMDo4Kc.crl rsync://rpki.apnic.net/member_repository/A916D4BE/6A8F71366D4E11EC9CB8CE0AC4F9AE02/zUj-vyb-JJ4FS_1ErpT8WMDo4Kc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/zUj-vyb-JJ4FS_1ErpT8WMDo4Kc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 02 May 2025 00:14:32 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1062 (0x426) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A916D4BE, serialNumber=CD48FEBF26FE249E054BFD44AE94FC58C0E8E0A7 Validity Not Before: Apr 25 00:14:33 2025 GMT Not After : May 2 00:14:33 2025 GMT Subject: CN=680ad3e9-dfb6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c8:39:43:e5:8e:05:98:8f:86:cd:5c:a0:2f:1c: b9:54:c7:2b:a2:a6:96:ae:b9:92:b0:9f:98:a3:12: e4:45:04:73:b1:2c:0f:9d:51:33:86:af:81:ea:41: a3:a5:65:e4:6e:51:dd:8e:55:0c:24:8a:9e:2a:1c: 98:e5:9a:36:b3:57:4a:88:99:0b:58:50:26:b4:b1: 87:fc:bb:b3:52:63:5c:f1:c7:5a:01:e9:f9:2c:f9: c3:7a:80:62:6d:3c:8a:49:7d:78:3c:85:5f:fb:a2: 50:2d:e0:73:b6:cb:e7:c3:09:0c:3b:9d:4b:ba:ce: 33:a1:42:7f:85:6c:1f:c9:35:5a:99:05:eb:71:a3: b4:53:fb:0c:a6:f3:29:d2:b5:91:ad:a8:86:fe:12: 31:dc:4d:fa:88:1b:06:bc:be:01:f2:e5:ea:eb:2f: ff:ca:44:6e:35:5b:10:f5:51:75:6b:34:52:52:7a: 13:17:14:6d:0e:32:09:25:5c:f0:5a:cf:09:9f:62: 36:4f:ef:2f:4d:22:8a:31:d2:dd:0e:83:52:dc:36: a6:ca:cb:52:47:99:cd:9c:00:be:46:70:02:08:b6: fc:93:f6:27:05:0e:ee:75:08:e3:e6:7d:7e:c5:8f: 58:f9:0d:ee:00:aa:4e:d1:e6:3b:2a:4b:89:3c:00: 3b:cb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 35:78:73:1E:68:75:40:B5:CE:08:6B:A0:17:F7:CC:DD:9F:D4:54:21 X509v3 Authority Key Identifier: keyid:CD:48:FE:BF:26:FE:24:9E:05:4B:FD:44:AE:94:FC:58:C0:E8:E0:A7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A916D4BE/6A8F71366D4E11EC9CB8CE0AC4F9AE02/zUj-vyb-JJ4FS_1ErpT8WMDo4Kc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/zUj-vyb-JJ4FS_1ErpT8WMDo4Kc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A916D4BE/6A8F71366D4E11EC9CB8CE0AC4F9AE02/zUj-vyb-JJ4FS_1ErpT8WMDo4Kc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 49:0b:db:81:b2:b3:2a:4a:c0:5a:3f:38:b5:57:dc:b1:48:fe: 30:ce:5f:d6:a4:9c:25:29:10:bd:a1:de:bc:33:ab:4a:f9:fc: 83:b3:5a:14:cd:4f:e6:25:3a:00:6b:ac:37:63:ad:ec:16:a7: 72:71:1e:20:1d:54:1c:b7:6b:b6:f3:26:52:bd:b6:78:17:70: fa:ef:43:ca:bd:c0:b1:2e:07:bc:66:4d:ad:fb:f4:69:d1:23: 75:25:b6:6e:e3:1a:12:25:63:a4:bb:78:fa:41:ce:12:83:f2: f6:a3:dd:c9:bf:09:fd:9b:ac:a6:b8:a4:c9:ba:6a:76:c9:fe: 48:fc:f5:78:58:7a:d4:45:6c:a4:4f:7a:28:4f:ae:01:e1:8a: 91:eb:9a:fd:b6:1d:2c:46:7a:f8:e5:13:1f:c6:7b:a2:26:e5: 25:07:6d:6b:a9:72:44:8a:37:f8:eb:e1:33:40:ec:3c:f2:cf: 88:af:43:34:ec:76:13:14:a6:92:37:c6:f3:6a:b9:35:2b:c3: c2:df:b5:05:79:7d:d1:17:a6:f0:c5:6e:dc:22:16:68:af:42: 80:4e:ab:15:fd:b0:9a:a4:0e:37:0d:2e:95:9c:76:8e:ef:b7: 05:ed:84:54:0d:1b:8d:b4:a9:13:87:59:c7:2f:49:9b:fa:6f: 37:eb:c0:20 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBCYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NkQ0QkUxMTAvBgNVBAUTKENENDhGRUJGMjZGRTI0OUUwNTRCRkQ0NEFFOTRGQzU4 QzBFOEUwQTcwHhcNMjUwNDI1MDAxNDMzWhcNMjUwNTAyMDAxNDMzWjAYMRYwFAYD VQQDEw02ODBhZDNlOS1kZmI2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyDlD5Y4FmI+GzVygLxy5VMcroqaWrrmSsJ+YoxLkRQRzsSwPnVEzhq+B6kGj pWXkblHdjlUMJIqeKhyY5Zo2s1dKiJkLWFAmtLGH/LuzUmNc8cdaAen5LPnDeoBi bTyKSX14PIVf+6JQLeBztsvnwwkMO51Lus4zoUJ/hWwfyTVamQXrcaO0U/sMpvMp 0rWRraiG/hIx3E36iBsGvL4B8uXq6y//ykRuNVsQ9VF1azRSUnoTFxRtDjIJJVzw Ws8Jn2I2T+8vTSKKMdLdDoNS3DamystSR5nNnAC+RnACCLb8k/YnBQ7udQjj5n1+ xY9Y+Q3uAKpO0eY7KkuJPAA7ywIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFDV4cx5o dUC1zghroBf3zN2f1FQhMB8GA1UdIwQYMBaAFM1I/r8m/iSeBUv9RK6U/FjA6OCn MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2RDRCRS82QThGNzEzNjZE NEUxMUVDOUNCOENFMEFDNEY5QUUwMi96VWotdnliLUpKNEZTXzFFcnBUOFdNRG80 S2MuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3pVai12eWItSko0RlNfMUVycFQ4V01EbzRLYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 RDRCRS82QThGNzEzNjZENEUxMUVDOUNCOENFMEFDNEY5QUUwMi96VWotdnliLUpK NEZTXzFFcnBUOFdNRG80S2MubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBJC9uBsrMqSsBaPzi1V9yxSP4wzl/WpJwlKRC9od68M6tK+fyDs1oU zU/mJToAa6w3Y63sFqdycR4gHVQct2u28yZSvbZ4F3D670PKvcCxLge8Zk2t+/Rp 0SN1JbZu4xoSJWOku3j6Qc4Sg/L2o93Jvwn9m6ymuKTJump2yf5I/PV4WHrURWyk T3ooT64B4YqR65r9th0sRnr45RMfxnuiJuUlB21rqXJEijf46+EzQOw88s+Ir0M0 7HYTFKaSN8bzark1K8PC37UFeX3RF6bwxW7cIhZor0KATqsV/bCapA43DS6VnHaO 77cF7YRUDRuNtKkTh1nHL0mb+m8368Ag -----END CERTIFICATE-----Generated at Sat Apr 26 12:18:23 2025 by rpki-client