$ rpki-client -vvf rpki.apnic.net/member_repository/A917DCDA/192E71F61D9011E2B295ABEF08B02CD2/ZwbZhOcxaBICGI0pntNfAFsBdYA.mft File: ZwbZhOcxaBICGI0pntNfAFsBdYA.mft (raw, json) Hash identifier: xKwy8vw7ah1pBq5db0IKAvB6pFr7CvX67RYyawZI81Q= Subject key identifier: 6F:D1:C3:B7:CB:E5:19:17:FE:81:64:59:8F:5F:A4:EF:90:5A:B2:19 Authority key identifier: 67:06:D9:84:E7:31:68:12:02:18:8D:29:9E:D3:5F:00:5B:01:75:80 Certificate issuer: /CN=A917DCDA/serialNumber=6706D984E731681202188D299ED35F005B017580 Certificate serial: 3472 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ZwbZhOcxaBICGI0pntNfAFsBdYA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917DCDA/192E71F61D9011E2B295ABEF08B02CD2/ZwbZhOcxaBICGI0pntNfAFsBdYA.mft Manifest number: 3472 Signing time: Thu 24 Apr 2025 14:40:25 +0000 Manifest this update: Thu 24 Apr 2025 14:40:25 +0000 Manifest next update: Thu 01 May 2025 14:40:25 +0000 Files and hashes: 1: ZwbZhOcxaBICGI0pntNfAFsBdYA.crl (hash: MW0r0s8I/eoHr/XWfYhg6renGEg8IDJlU1H5yp28FVw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917DCDA/192E71F61D9011E2B295ABEF08B02CD2/ZwbZhOcxaBICGI0pntNfAFsBdYA.crl rsync://rpki.apnic.net/member_repository/A917DCDA/192E71F61D9011E2B295ABEF08B02CD2/ZwbZhOcxaBICGI0pntNfAFsBdYA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ZwbZhOcxaBICGI0pntNfAFsBdYA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 01 May 2025 14:40:24 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13426 (0x3472) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917DCDA, serialNumber=6706D984E731681202188D299ED35F005B017580 Validity Not Before: Apr 24 14:40:25 2025 GMT Not After : May 1 14:40:25 2025 GMT Subject: CN=680a4d59-6a1e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d6:5d:ed:cb:6d:29:37:ce:80:b4:99:0b:34:83: 3c:64:49:da:fd:98:d5:24:d5:22:5f:fd:96:d6:69: f3:fd:97:6a:26:56:11:24:8a:d5:ba:bb:5a:68:4d: 31:cd:92:28:cc:10:32:53:27:86:0f:3b:e2:75:42: 01:de:41:e8:0e:6b:1f:97:32:03:27:e2:5c:22:eb: 12:a2:38:bd:25:70:3e:10:b3:35:56:b5:f7:8d:3d: 8a:37:67:a5:d3:20:5a:28:4f:2f:cf:5e:05:52:0a: 10:c5:d2:98:ca:b2:7e:94:66:59:02:22:06:0d:3b: b4:24:77:50:06:3f:6c:bd:3c:24:d8:6e:05:a1:37: 1b:1d:ca:94:f8:2a:4b:7e:bd:70:88:9e:6e:c7:ea: d2:15:2f:58:27:39:f2:7d:40:f4:d2:4a:04:c7:e1: 9b:d5:1f:85:fc:77:93:1a:0d:9d:52:d1:a1:6e:8f: 7f:2d:fe:72:56:fd:21:7b:eb:dd:39:8f:e6:81:c5: 68:6e:6a:da:e4:6e:9f:6c:77:9a:0f:6d:28:43:cf: 99:08:d7:fa:88:ea:d7:b5:71:3a:99:d8:b7:d8:1b: ee:17:d7:7e:41:1e:ed:16:de:06:37:54:97:1b:c4: 4f:9b:9f:de:91:be:d1:c2:89:e3:0c:ca:2b:3c:04: e1:3b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6F:D1:C3:B7:CB:E5:19:17:FE:81:64:59:8F:5F:A4:EF:90:5A:B2:19 X509v3 Authority Key Identifier: keyid:67:06:D9:84:E7:31:68:12:02:18:8D:29:9E:D3:5F:00:5B:01:75:80 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917DCDA/192E71F61D9011E2B295ABEF08B02CD2/ZwbZhOcxaBICGI0pntNfAFsBdYA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ZwbZhOcxaBICGI0pntNfAFsBdYA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917DCDA/192E71F61D9011E2B295ABEF08B02CD2/ZwbZhOcxaBICGI0pntNfAFsBdYA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 22:8c:4f:23:25:16:92:00:82:fa:e6:42:11:c2:71:12:45:d6: fb:ce:f2:e8:e3:b7:c0:a1:0f:b8:38:2d:91:45:55:10:dd:30: ec:01:87:95:0d:26:66:11:1b:8a:e4:4a:01:f1:f8:6c:1d:14: 14:f2:f1:c1:f4:e2:95:d2:7e:51:d1:aa:02:3b:f9:33:e4:6f: c3:17:2f:68:3a:52:f3:60:a9:31:14:71:96:cc:67:08:36:ec: 96:ff:0e:30:80:28:ce:55:30:bb:07:79:e1:0d:0f:e4:88:95: 8a:60:5a:51:76:cd:b0:bb:1a:37:26:98:70:ba:93:39:c1:65: 33:9f:8c:31:e1:9e:a7:77:d7:fe:0c:27:b2:50:c3:de:b0:6d: e2:06:8d:3e:0b:7c:69:14:85:ed:4b:94:11:5f:dd:55:36:10: 9e:34:79:bc:2c:6a:8c:d3:ed:86:35:dc:ac:36:c0:ad:6a:79: c9:59:a3:50:11:cd:6b:c6:5b:13:94:f7:c5:43:0e:f0:3d:17: 82:77:6d:b9:b7:32:13:29:a6:2e:ab:d1:25:eb:cb:6e:e9:c7: 08:4a:b1:5b:3c:54:70:a3:db:f3:4b:ab:e0:db:50:30:40:2d: 2b:36:33:35:73:eb:ed:cf:11:bf:42:9b:cb:9a:6a:4a:54:f6: 47:81:bb:15 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICNHIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0RDREExMTAvBgNVBAUTKDY3MDZEOTg0RTczMTY4MTIwMjE4OEQyOTlFRDM1RjAw NUIwMTc1ODAwHhcNMjUwNDI0MTQ0MDI1WhcNMjUwNTAxMTQ0MDI1WjAYMRYwFAYD VQQDEw02ODBhNGQ1OS02YTFlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1l3ty20pN86AtJkLNIM8ZEna/ZjVJNUiX/2W1mnz/ZdqJlYRJIrVurtaaE0x zZIozBAyUyeGDzvidUIB3kHoDmsflzIDJ+JcIusSoji9JXA+ELM1VrX3jT2KN2el 0yBaKE8vz14FUgoQxdKYyrJ+lGZZAiIGDTu0JHdQBj9svTwk2G4FoTcbHcqU+CpL fr1wiJ5ux+rSFS9YJznyfUD00koEx+Gb1R+F/HeTGg2dUtGhbo9/Lf5yVv0he+vd OY/mgcVobmra5G6fbHeaD20oQ8+ZCNf6iOrXtXE6mdi32BvuF9d+QR7tFt4GN1SX G8RPm5/ekb7RwonjDMorPAThOwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFG/Rw7fL 5RkX/oFkWY9fpO+QWrIZMB8GA1UdIwQYMBaAFGcG2YTnMWgSAhiNKZ7TXwBbAXWA MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3RENEQS8xOTJFNzFGNjFE OTAxMUUyQjI5NUFCRUYwOEIwMkNEMi9ad2JaaE9jeGFCSUNHSTBwbnROZkFGc0Jk WUEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1p3YlpoT2N4YUJJQ0dJMHBudE5mQUZzQmRZQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 RENEQS8xOTJFNzFGNjFEOTAxMUUyQjI5NUFCRUYwOEIwMkNEMi9ad2JaaE9jeGFC SUNHSTBwbnROZkFGc0JkWUEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAijE8jJRaSAIL65kIRwnESRdb7zvLo47fAoQ+4OC2RRVUQ3TDsAYeV DSZmERuK5EoB8fhsHRQU8vHB9OKV0n5R0aoCO/kz5G/DFy9oOlLzYKkxFHGWzGcI NuyW/w4wgCjOVTC7B3nhDQ/kiJWKYFpRds2wuxo3JphwupM5wWUzn4wx4Z6nd9f+ DCeyUMPesG3iBo0+C3xpFIXtS5QRX91VNhCeNHm8LGqM0+2GNdysNsCtannJWaNQ Ec1rxlsTlPfFQw7wPReCd225tzITKaYuq9El68tu6ccISrFbPFRwo9vzS6vg21Aw QC0rNjM1c+vtzxG/QpvLmmpKVPZHgbsV -----END CERTIFICATE-----Generated at Sat Apr 26 03:37:18 2025 by rpki-client