$ rpki-client -vvf rpki.apnic.net/member_repository/A9189132/D264A2A4458C11EA8E6F6D0CC4F9AE02/ztWVHA4vwvZh_u8cNxtnsj8cUt8.mft File: ztWVHA4vwvZh_u8cNxtnsj8cUt8.mft (raw, json) Hash identifier: HCwYCJGbwooVaBSDSFOkDH7M++o1J1pS9LMPSNXAGUU= Subject key identifier: F4:CA:D6:09:A7:88:DE:D7:3A:71:12:65:06:BD:08:BD:E3:3C:D9:A4 Authority key identifier: CE:D5:95:1C:0E:2F:C2:F6:61:FE:EF:1C:37:1B:67:B2:3F:1C:52:DF Certificate issuer: /CN=A9189132/serialNumber=CED5951C0E2FC2F661FEEF1C371B67B23F1C52DF Certificate serial: 0AF2 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ztWVHA4vwvZh_u8cNxtnsj8cUt8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9189132/D264A2A4458C11EA8E6F6D0CC4F9AE02/ztWVHA4vwvZh_u8cNxtnsj8cUt8.mft Manifest number: 0AEA Signing time: Thu 24 Apr 2025 19:16:42 +0000 Manifest this update: Thu 24 Apr 2025 19:16:42 +0000 Manifest next update: Thu 01 May 2025 19:16:42 +0000 Files and hashes: 1: ztWVHA4vwvZh_u8cNxtnsj8cUt8.crl (hash: eKXV5bxgW5cZQbTDTdOOjlibVFqr/A9Tz1qs+CQserk=) 2: 4E6B4E24458E11EA84E01A0FC4F9AE02.roa (hash: QbUyZORfUsAuIPfZUHLWRtdmTwbA8QqQPT+t+aGRe2I=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9189132/D264A2A4458C11EA8E6F6D0CC4F9AE02/ztWVHA4vwvZh_u8cNxtnsj8cUt8.crl rsync://rpki.apnic.net/member_repository/A9189132/D264A2A4458C11EA8E6F6D0CC4F9AE02/ztWVHA4vwvZh_u8cNxtnsj8cUt8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ztWVHA4vwvZh_u8cNxtnsj8cUt8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 01 May 2025 19:16:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2802 (0xaf2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9189132, serialNumber=CED5951C0E2FC2F661FEEF1C371B67B23F1C52DF Validity Not Before: Apr 24 19:16:42 2025 GMT Not After : May 1 19:16:42 2025 GMT Subject: CN=680a8e1a-69b2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e9:f6:3a:41:b2:38:2b:da:61:36:4a:ab:2e:28: 60:e0:f8:f1:a8:07:45:3c:9f:b0:83:e1:ea:f7:b6: ae:de:f5:d7:09:93:f4:cd:af:08:a8:fc:ee:b9:7d: a1:7c:d1:3b:dc:02:70:4c:ff:52:87:7d:f6:1c:50: 38:5d:70:4f:aa:4b:e6:8b:64:e8:f2:5b:53:4e:61: f6:fc:73:ed:5a:af:5e:40:39:54:b4:3e:d9:4c:96: 59:8a:42:f7:68:da:11:9d:c0:1f:e7:1a:08:22:e5: 85:3f:0d:6a:e1:79:8c:46:ec:8f:c8:34:b9:0e:b5: dc:ab:a5:26:01:6d:c4:19:ff:d9:a3:ea:15:f7:b6: f9:bc:31:a5:13:4b:0f:c1:9c:3a:bf:fc:02:6d:43: 5d:dd:47:ed:b5:13:c9:01:cd:79:ec:08:dd:0d:6f: 49:b4:79:06:44:81:c9:f0:25:47:74:b9:1c:4c:a5: f2:3f:87:68:09:52:0c:61:00:57:b5:37:46:8f:61: 34:c5:15:de:7c:6a:f4:ce:03:11:6b:a4:51:5b:d3: de:e5:f3:29:93:16:bb:f2:89:d7:c7:de:36:b9:91: 49:48:0c:52:79:77:0d:06:6a:85:d9:69:43:aa:6b: 6c:9c:be:ed:10:8c:51:aa:0b:ad:93:b8:b8:51:24: 11:9d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F4:CA:D6:09:A7:88:DE:D7:3A:71:12:65:06:BD:08:BD:E3:3C:D9:A4 X509v3 Authority Key Identifier: keyid:CE:D5:95:1C:0E:2F:C2:F6:61:FE:EF:1C:37:1B:67:B2:3F:1C:52:DF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9189132/D264A2A4458C11EA8E6F6D0CC4F9AE02/ztWVHA4vwvZh_u8cNxtnsj8cUt8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ztWVHA4vwvZh_u8cNxtnsj8cUt8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9189132/D264A2A4458C11EA8E6F6D0CC4F9AE02/ztWVHA4vwvZh_u8cNxtnsj8cUt8.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 36:a2:ca:8c:d7:af:42:9c:e2:13:83:a6:45:94:fd:1d:98:fc: fe:aa:e2:a7:2b:5a:0f:2a:19:f2:b3:5a:41:33:03:f2:06:45: 15:41:93:89:3c:d1:28:81:ff:c5:72:d2:e3:a9:42:e7:2f:53: 3a:76:3b:b0:53:7e:cf:ec:89:ac:d6:c7:cf:8f:1d:8d:e7:da: 83:f1:26:97:ed:0c:00:8e:43:c2:0b:dd:97:32:e8:eb:8d:44: a0:b5:c7:d6:10:29:65:0c:5f:b3:f0:64:dd:47:36:05:a0:c3: aa:a8:79:b7:26:b6:5c:9b:bd:81:6d:bc:f9:5a:b8:08:c2:20: 1f:8e:db:67:06:21:26:41:82:ad:22:16:b9:af:36:b3:eb:e3: 23:cf:ea:69:d8:45:cc:14:68:bd:40:70:9c:98:ec:31:67:1d: a6:56:05:8e:98:16:ad:df:a2:f3:0c:80:f6:ec:1b:07:90:66: 48:6d:56:44:fc:51:99:a4:c4:08:a5:f2:b9:b5:7d:be:cd:fc: b4:92:3c:69:54:0d:80:56:46:c9:aa:b7:2b:41:f4:b3:ae:e8: b1:a5:c0:71:2f:fb:32:d6:8d:37:ad:ee:fc:3b:72:7e:1f:f4: 92:6e:6c:ee:9a:df:98:48:a4:45:45:14:84:2b:11:b5:bb:d0: dc:e3:48:f6 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCvIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx ODkxMzIxMTAvBgNVBAUTKENFRDU5NTFDMEUyRkMyRjY2MUZFRUYxQzM3MUI2N0Iy M0YxQzUyREYwHhcNMjUwNDI0MTkxNjQyWhcNMjUwNTAxMTkxNjQyWjAYMRYwFAYD VQQDEw02ODBhOGUxYS02OWIyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA6fY6QbI4K9phNkqrLihg4PjxqAdFPJ+wg+Hq97au3vXXCZP0za8IqPzuuX2h fNE73AJwTP9Sh332HFA4XXBPqkvmi2To8ltTTmH2/HPtWq9eQDlUtD7ZTJZZikL3 aNoRncAf5xoIIuWFPw1q4XmMRuyPyDS5DrXcq6UmAW3EGf/Zo+oV97b5vDGlE0sP wZw6v/wCbUNd3UfttRPJAc157AjdDW9JtHkGRIHJ8CVHdLkcTKXyP4doCVIMYQBX tTdGj2E0xRXefGr0zgMRa6RRW9Pe5fMpkxa78onXx942uZFJSAxSeXcNBmqF2WlD qmtsnL7tEIxRqgutk7i4USQRnQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFPTK1gmn iN7XOnESZQa9CL3jPNmkMB8GA1UdIwQYMBaAFM7VlRwOL8L2Yf7vHDcbZ7I/HFLf MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4OTEzMi9EMjY0QTJBNDQ1 OEMxMUVBOEU2RjZEMENDNEY5QUUwMi96dFdWSEE0dnd2WmhfdThjTnh0bnNqOGNV dDguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3p0V1ZIQTR2d3ZaaF91OGNOeHRuc2o4Y1V0OC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 OTEzMi9EMjY0QTJBNDQ1OEMxMUVBOEU2RjZEMENDNEY5QUUwMi96dFdWSEE0dnd2 WmhfdThjTnh0bnNqOGNVdDgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA2osqM169CnOITg6ZFlP0dmPz+quKnK1oPKhnys1pBMwPyBkUVQZOJ PNEogf/FctLjqULnL1M6djuwU37P7Ims1sfPjx2N59qD8SaX7QwAjkPCC92XMujr jUSgtcfWECllDF+z8GTdRzYFoMOqqHm3JrZcm72Bbbz5WrgIwiAfjttnBiEmQYKt Iha5rzaz6+Mjz+pp2EXMFGi9QHCcmOwxZx2mVgWOmBat36LzDID27BsHkGZIbVZE /FGZpMQIpfK5tX2+zfy0kjxpVA2AVkbJqrcrQfSzruixpcBxL/sy1o03re78O3J+ H/SSbmzumt+YSKRFRRSEKxG1u9Dc40j2 -----END CERTIFICATE-----Generated at Sat Apr 26 17:13:13 2025 by rpki-client