$ rpki-client -vvf rpki.apnic.net/member_repository/A917ACA8/F9714AE6AAFA11EEA221E72EC4F9AE02/zmNwmX29E9IOXsYWW1qe46KCprA.mft File: zmNwmX29E9IOXsYWW1qe46KCprA.mft (raw, json) Hash identifier: bA+uqqADX6nLUNClXGISviODIcbsyotTKKX44ct57Dc= Subject key identifier: 91:70:53:4E:56:30:23:89:52:3A:6D:4D:9D:50:C9:00:8D:58:FA:38 Authority key identifier: CE:63:70:99:7D:BD:13:D2:0E:5E:C6:16:5B:5A:9E:E3:A2:82:A6:B0 Certificate issuer: /CN=A917ACA8/serialNumber=CE6370997DBD13D20E5EC6165B5A9EE3A282A6B0 Certificate serial: FE Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/zmNwmX29E9IOXsYWW1qe46KCprA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917ACA8/F9714AE6AAFA11EEA221E72EC4F9AE02/zmNwmX29E9IOXsYWW1qe46KCprA.mft Manifest number: FA Signing time: Fri 25 Apr 2025 04:16:02 +0000 Manifest this update: Fri 25 Apr 2025 04:16:02 +0000 Manifest next update: Fri 02 May 2025 04:16:02 +0000 Files and hashes: 1: zmNwmX29E9IOXsYWW1qe46KCprA.crl (hash: a4JnxysWbnnREEZ6iJaBNtc6peuwRzxdPk09oiCn2v0=) 2: 725ED2DC3C3E11EF8E9ED658C4F9AE02.roa (hash: b8Nk35gI73n6vPSPeGhcdp8/EnX7d3C+aJhz3JSGsbQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917ACA8/F9714AE6AAFA11EEA221E72EC4F9AE02/zmNwmX29E9IOXsYWW1qe46KCprA.crl rsync://rpki.apnic.net/member_repository/A917ACA8/F9714AE6AAFA11EEA221E72EC4F9AE02/zmNwmX29E9IOXsYWW1qe46KCprA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/zmNwmX29E9IOXsYWW1qe46KCprA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 02 May 2025 04:16:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 254 (0xfe) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917ACA8, serialNumber=CE6370997DBD13D20E5EC6165B5A9EE3A282A6B0 Validity Not Before: Apr 25 04:16:02 2025 GMT Not After : May 2 04:16:02 2025 GMT Subject: CN=680b0c82-9b5d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a5:ea:45:a1:ae:db:8e:9c:53:d6:05:6c:ce:17: ec:20:32:ca:3f:b2:97:53:94:5a:66:be:73:65:66: 0d:84:2d:c4:bf:62:f4:a2:6f:ae:28:7d:1c:4d:f3: b5:78:e2:3e:a0:dd:ad:86:d0:dc:fb:2b:41:d5:80: 67:e7:78:54:ec:74:31:b9:22:f7:a4:af:01:1f:06: 9c:4c:2a:25:40:cb:a2:e3:bf:51:56:03:5b:33:06: c5:0a:88:c9:80:af:93:19:d7:d5:23:42:6e:99:1a: de:bd:99:c4:a7:b3:76:ea:58:57:d4:0b:36:0b:67: d4:60:98:b7:19:c0:52:f3:46:e6:55:e0:4f:98:17: 21:2c:29:00:d4:9a:ee:a9:c7:a3:bc:dc:5c:eb:d9: bb:1c:02:9d:e8:41:c4:1d:f1:00:d3:a5:68:c6:b8: c1:ae:b9:96:99:5e:00:22:ee:ed:dd:88:59:2e:13: af:f4:8d:1b:f1:7d:1c:b0:e6:28:30:28:48:ee:1a: 04:06:a5:db:a9:ea:1c:53:4b:73:5b:de:bc:78:03: 3b:04:df:ea:36:ac:9f:22:bf:9e:7c:ca:1e:7d:7b: 6f:c2:68:96:b8:82:9e:94:82:9d:79:1f:86:dd:d1: 87:b5:47:08:14:2d:21:7a:c9:ed:77:0f:6d:8b:ff: c7:63 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 91:70:53:4E:56:30:23:89:52:3A:6D:4D:9D:50:C9:00:8D:58:FA:38 X509v3 Authority Key Identifier: keyid:CE:63:70:99:7D:BD:13:D2:0E:5E:C6:16:5B:5A:9E:E3:A2:82:A6:B0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917ACA8/F9714AE6AAFA11EEA221E72EC4F9AE02/zmNwmX29E9IOXsYWW1qe46KCprA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/zmNwmX29E9IOXsYWW1qe46KCprA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917ACA8/F9714AE6AAFA11EEA221E72EC4F9AE02/zmNwmX29E9IOXsYWW1qe46KCprA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 0e:72:f5:19:4b:6c:d8:02:6f:b1:3b:21:b3:b5:81:e2:f7:06: 90:6f:a7:9b:55:68:91:71:2c:13:32:06:8a:f3:a6:d7:12:3a: e2:d6:62:18:80:a9:87:fd:be:d0:ce:57:a9:d8:0a:e6:10:eb: 38:f2:90:73:5c:7a:c5:92:b2:e6:7d:a0:4d:c7:48:bd:d8:a3: 99:c5:6e:76:31:b1:4c:d5:e3:f1:ca:31:d4:10:73:bf:64:6b: dc:31:c8:b7:65:62:cb:52:32:73:7c:b4:77:d5:b4:03:7b:d9: b6:ed:ff:38:89:d7:fb:73:a9:6e:7b:7f:6c:eb:70:63:a6:5a: 4e:20:29:06:ab:6c:a0:92:3b:0d:57:8d:fe:35:fa:28:b1:e9: da:e0:06:81:0e:c2:a1:6e:c8:c8:79:4f:20:fe:d7:c2:d6:fc: 55:dd:bf:a5:32:15:83:84:bb:5e:42:0a:bb:f8:2d:ac:46:c7: c8:ba:e6:cc:c0:1a:f0:ed:d1:70:b3:14:24:86:04:14:66:08: c6:e9:68:8d:e5:58:7c:eb:7f:af:b8:9b:50:0e:46:95:30:77: 0f:59:73:22:da:ec:4f:ce:af:31:33:a3:0d:ca:32:81:a0:e7: 25:a9:a2:26:c7:70:53:97:53:92:3e:92:74:30:85:a4:11:fb: 08:b5:74:b8 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAP4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0FDQTgxMTAvBgNVBAUTKENFNjM3MDk5N0RCRDEzRDIwRTVFQzYxNjVCNUE5RUUz QTI4MkE2QjAwHhcNMjUwNDI1MDQxNjAyWhcNMjUwNTAyMDQxNjAyWjAYMRYwFAYD VQQDEw02ODBiMGM4Mi05YjVkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEApepFoa7bjpxT1gVszhfsIDLKP7KXU5RaZr5zZWYNhC3Ev2L0om+uKH0cTfO1 eOI+oN2thtDc+ytB1YBn53hU7HQxuSL3pK8BHwacTColQMui479RVgNbMwbFCojJ gK+TGdfVI0JumRrevZnEp7N26lhX1As2C2fUYJi3GcBS80bmVeBPmBchLCkA1Jru qcejvNxc69m7HAKd6EHEHfEA06VoxrjBrrmWmV4AIu7t3YhZLhOv9I0b8X0csOYo MChI7hoEBqXbqeocU0tzW968eAM7BN/qNqyfIr+efMoefXtvwmiWuIKelIKdeR+G 3dGHtUcIFC0hesntdw9ti//HYwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJFwU05W MCOJUjptTZ1QyQCNWPo4MB8GA1UdIwQYMBaAFM5jcJl9vRPSDl7GFltanuOigqaw MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3QUNBOC9GOTcxNEFFNkFB RkExMUVFQTIyMUU3MkVDNEY5QUUwMi96bU53bVgyOUU5SU9Yc1lXVzFxZTQ2S0Nw ckEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3ptTndtWDI5RTlJT1hzWVdXMXFlNDZLQ3ByQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 QUNBOC9GOTcxNEFFNkFBRkExMUVFQTIyMUU3MkVDNEY5QUUwMi96bU53bVgyOUU5 SU9Yc1lXVzFxZTQ2S0NwckEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAOcvUZS2zYAm+xOyGztYHi9waQb6ebVWiRcSwTMgaK86bXEjri1mIY gKmH/b7Qzlep2ArmEOs48pBzXHrFkrLmfaBNx0i92KOZxW52MbFM1ePxyjHUEHO/ ZGvcMci3ZWLLUjJzfLR31bQDe9m27f84idf7c6lue39s63BjplpOICkGq2ygkjsN V43+Nfoosena4AaBDsKhbsjIeU8g/tfC1vxV3b+lMhWDhLteQgq7+C2sRsfIuubM wBrw7dFwsxQkhgQUZgjG6WiN5Vh863+vuJtQDkaVMHcPWXMi2uxPzq8xM6MNyjKB oOclqaImx3BTl1OSPpJ0MIWkEfsItXS4 -----END CERTIFICATE-----Generated at Sat Apr 26 04:27:19 2025 by rpki-client