$ rpki-client -vvf rpki.apnic.net/member_repository/A916EBCB/E8D695AC192611EAA3361C7BC4F9AE02/zDaQ-JbvVnMRU1vERN8et0H9i7Q.mft File: zDaQ-JbvVnMRU1vERN8et0H9i7Q.mft (raw, json) Hash identifier: VMAIBTzT9JbtZufBPLwn7c0WAyNAvk5KrYXMnw3kC10= Subject key identifier: 59:AF:42:03:01:7C:99:76:2E:6A:FE:5A:BC:A3:97:F9:63:D1:88:E2 Authority key identifier: CC:36:90:F8:96:EF:56:73:11:53:5B:C4:44:DF:1E:B7:41:FD:8B:B4 Certificate issuer: /CN=A916EBCB/serialNumber=CC3690F896EF567311535BC444DF1EB741FD8BB4 Certificate serial: 0BD1 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/zDaQ-JbvVnMRU1vERN8et0H9i7Q.cer Subject info access: rsync://rpki.apnic.net/member_repository/A916EBCB/E8D695AC192611EAA3361C7BC4F9AE02/zDaQ-JbvVnMRU1vERN8et0H9i7Q.mft Manifest number: 0BC9 Signing time: Thu 24 Apr 2025 18:45:43 +0000 Manifest this update: Thu 24 Apr 2025 18:45:43 +0000 Manifest next update: Thu 01 May 2025 18:45:42 +0000 Files and hashes: 1: zDaQ-JbvVnMRU1vERN8et0H9i7Q.crl (hash: 8L4YQuvmnQ5gWK2AT0XMESp2DayeZxqqfUvt20YpJJg=) 2: 81C5BFF8192811EA9B88D87DC4F9AE02.roa (hash: ZawsauuQVy3/xITjsqsOJpATtDgEASJhh1tB3zSZBaE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A916EBCB/E8D695AC192611EAA3361C7BC4F9AE02/zDaQ-JbvVnMRU1vERN8et0H9i7Q.crl rsync://rpki.apnic.net/member_repository/A916EBCB/E8D695AC192611EAA3361C7BC4F9AE02/zDaQ-JbvVnMRU1vERN8et0H9i7Q.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/zDaQ-JbvVnMRU1vERN8et0H9i7Q.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 01 May 2025 18:45:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3025 (0xbd1) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A916EBCB, serialNumber=CC3690F896EF567311535BC444DF1EB741FD8BB4 Validity Not Before: Apr 24 18:45:43 2025 GMT Not After : May 1 18:45:42 2025 GMT Subject: CN=680a86d7-5d02 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ca:74:e7:f2:fe:ec:0f:69:ca:37:e4:a0:d7:58: 04:09:40:c4:92:76:2e:7a:49:f7:1c:30:2e:d7:14: c3:ae:3d:2b:a4:86:d9:40:d6:db:e8:df:9c:1d:8e: e2:08:53:54:21:6b:94:3b:9c:eb:79:f7:ef:d2:89: af:b3:be:66:70:83:61:62:7f:f6:10:e3:6d:6d:a2: 61:55:9e:ec:0a:c8:a4:16:4a:ec:7a:c8:03:4b:15: f5:4c:9b:4d:e5:ba:28:a9:b4:05:9f:a0:cc:5f:1d: 5a:26:e8:3e:ca:af:d4:99:9d:26:7a:6e:d3:8c:60: 8e:dd:9c:56:b6:1e:1e:3a:a6:dd:7c:a7:5a:e7:71: 99:7b:5e:f7:2e:83:11:54:fb:3b:8a:e1:21:fa:d7: c2:8a:5b:2f:7e:cd:52:c2:25:45:8a:cf:51:77:3a: e9:53:a8:3f:3f:fc:77:18:f3:39:9f:ca:69:4e:26: d3:4c:d1:f2:0c:29:24:76:90:95:08:96:d3:66:d1: 8a:db:41:e0:70:26:3f:e5:ea:eb:d5:94:09:21:25: 71:40:c7:f9:90:f9:35:5a:68:f3:9f:7c:cf:ce:7e: 98:ed:2c:22:96:5b:0d:7d:60:e2:3f:b4:2d:54:72: ba:4f:7e:48:9b:9e:89:71:55:d9:74:57:14:f9:9d: 7d:2d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 59:AF:42:03:01:7C:99:76:2E:6A:FE:5A:BC:A3:97:F9:63:D1:88:E2 X509v3 Authority Key Identifier: keyid:CC:36:90:F8:96:EF:56:73:11:53:5B:C4:44:DF:1E:B7:41:FD:8B:B4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A916EBCB/E8D695AC192611EAA3361C7BC4F9AE02/zDaQ-JbvVnMRU1vERN8et0H9i7Q.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/zDaQ-JbvVnMRU1vERN8et0H9i7Q.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A916EBCB/E8D695AC192611EAA3361C7BC4F9AE02/zDaQ-JbvVnMRU1vERN8et0H9i7Q.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 6e:1e:c1:50:4f:28:01:69:ab:31:19:8b:20:86:d7:c3:8a:c3: d9:76:e7:d8:5c:34:99:24:51:f7:13:67:9b:d3:09:d4:60:71: e9:33:f8:8c:13:7a:40:08:92:5a:8e:6c:d1:9c:8c:a7:db:ab: 7c:f6:48:6a:b1:ab:c2:d5:b5:93:d2:3a:6d:8b:a5:36:c0:56: 50:21:4c:8f:6f:56:48:ad:31:e4:18:00:1a:8f:2a:92:22:a9: de:9c:4e:22:bd:c0:76:a3:64:2b:ca:7d:cf:9e:c4:c2:c6:ae: 37:f5:a4:73:0f:f5:01:8c:40:df:b0:af:21:e4:57:e9:01:36: 3d:de:b1:9f:5d:53:76:7d:a3:d6:a6:e7:7a:33:c3:f6:23:5b: d3:2f:be:64:1d:ad:23:d4:53:7e:0b:f8:80:a3:40:dc:c8:e6: 99:f7:2a:22:c5:34:8b:b4:0a:3a:37:1d:41:bc:5c:f5:1f:01: 35:f5:d4:4d:25:fe:52:88:cb:6c:84:56:53:4f:b9:46:ac:02: c3:69:b8:bf:d1:d6:e2:96:5f:87:08:48:b3:39:68:de:fe:4b: 89:f9:14:d6:74:37:31:ca:0e:77:64:e7:99:5a:a5:65:1e:f9: 59:81:eb:50:01:73:d2:6a:e4:4f:86:dd:4f:27:a4:03:d6:8b: f3:31:1a:18 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICC9EwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NkVCQ0IxMTAvBgNVBAUTKENDMzY5MEY4OTZFRjU2NzMxMTUzNUJDNDQ0REYxRUI3 NDFGRDhCQjQwHhcNMjUwNDI0MTg0NTQzWhcNMjUwNTAxMTg0NTQyWjAYMRYwFAYD VQQDEw02ODBhODZkNy01ZDAyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAynTn8v7sD2nKN+Sg11gECUDEknYuekn3HDAu1xTDrj0rpIbZQNbb6N+cHY7i CFNUIWuUO5zreffv0omvs75mcINhYn/2EONtbaJhVZ7sCsikFkrsesgDSxX1TJtN 5booqbQFn6DMXx1aJug+yq/UmZ0mem7TjGCO3ZxWth4eOqbdfKda53GZe173LoMR VPs7iuEh+tfCilsvfs1SwiVFis9RdzrpU6g/P/x3GPM5n8ppTibTTNHyDCkkdpCV CJbTZtGK20HgcCY/5err1ZQJISVxQMf5kPk1Wmjzn3zPzn6Y7SwillsNfWDiP7Qt VHK6T35Im56JcVXZdFcU+Z19LQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFFmvQgMB fJl2Lmr+Wryjl/lj0YjiMB8GA1UdIwQYMBaAFMw2kPiW71ZzEVNbxETfHrdB/Yu0 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2RUJDQi9FOEQ2OTVBQzE5 MjYxMUVBQTMzNjFDN0JDNEY5QUUwMi96RGFRLUpidlZuTVJVMXZFUk44ZXQwSDlp N1EuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3pEYVEtSmJ2Vm5NUlUxdkVSTjhldDBIOWk3US5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 RUJDQi9FOEQ2OTVBQzE5MjYxMUVBQTMzNjFDN0JDNEY5QUUwMi96RGFRLUpidlZu TVJVMXZFUk44ZXQwSDlpN1EubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBuHsFQTygBaasxGYsghtfDisPZdufYXDSZJFH3E2eb0wnUYHHpM/iM E3pACJJajmzRnIyn26t89khqsavC1bWT0jpti6U2wFZQIUyPb1ZIrTHkGAAajyqS IqnenE4ivcB2o2Qryn3PnsTCxq439aRzD/UBjEDfsK8h5FfpATY93rGfXVN2faPW pud6M8P2I1vTL75kHa0j1FN+C/iAo0DcyOaZ9yoixTSLtAo6Nx1BvFz1HwE19dRN Jf5SiMtshFZTT7lGrALDabi/0dbill+HCEizOWje/kuJ+RTWdDcxyg53ZOeZWqVl HvlZgetQAXPSauRPht1PJ6QD1ovzMRoY -----END CERTIFICATE-----Generated at Sat Apr 26 13:49:12 2025 by rpki-client