$ rpki-client -vvf rpki.apnic.net/member_repository/A91A4B1A/5DD48AB689F211E69E5F6339C4F9AE02/zhFGgP9vTZvD8YgNYQ1q7urr8NQ.mft File: zhFGgP9vTZvD8YgNYQ1q7urr8NQ.mft (raw, json) Hash identifier: kClhpMmKeuNfWw7FfoPKg/yF9R9DRyaa98k9iV0jrCo= Subject key identifier: 2F:6F:78:97:83:48:2D:B4:7E:09:A6:C7:DE:94:3B:F1:65:43:F3:3F Authority key identifier: CE:11:46:80:FF:6F:4D:9B:C3:F1:88:0D:61:0D:6A:EE:EA:EB:F0:D4 Certificate issuer: /CN=A91A4B1A/serialNumber=CE114680FF6F4D9BC3F1880D610D6AEEEAEBF0D4 Certificate serial: 1E06 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/zhFGgP9vTZvD8YgNYQ1q7urr8NQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A4B1A/5DD48AB689F211E69E5F6339C4F9AE02/zhFGgP9vTZvD8YgNYQ1q7urr8NQ.mft Manifest number: 1DF5 Signing time: Thu 24 Apr 2025 16:06:24 +0000 Manifest this update: Thu 24 Apr 2025 16:06:23 +0000 Manifest next update: Thu 01 May 2025 16:06:23 +0000 Files and hashes: 1: zhFGgP9vTZvD8YgNYQ1q7urr8NQ.crl (hash: daSM7sm3P8A6TW+Htlv0pn5jJZz+gQlTQpS66ojGcGg=) 2: 4A6679EC14DF11EEAB46A86DC4F9AE02.roa (hash: yY5rZMTsOpnGO6cAR5A6bi22J/lJ789z+ED1oN3orxw=) 3: 4B52A44814DF11EEAB46A86DC4F9AE02.roa (hash: 36rBW03tvoWvEp5FFhkEkP0PegguzR76VTv8hEMsFNk=) 4: 1DBC9D405DB411EEA017251AC4F9AE02.roa (hash: 2w+ZZZiHGzET+UAGMpulJr633xByME/2FAJYerduoZE=) 5: 4CE75372B9DE11EEBC5B0D21C4F9AE02.roa (hash: yps3mcP7HEC1/XDzl5d78p6GLXVPbcsPt7pEv3x1HZA=) 6: 4999305414DF11EEAB46A86DC4F9AE02.roa (hash: Bl17bhrifD1PMrI4c5ur7v5yVCt37LP+FsjpzcQgt1k=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A4B1A/5DD48AB689F211E69E5F6339C4F9AE02/zhFGgP9vTZvD8YgNYQ1q7urr8NQ.crl rsync://rpki.apnic.net/member_repository/A91A4B1A/5DD48AB689F211E69E5F6339C4F9AE02/zhFGgP9vTZvD8YgNYQ1q7urr8NQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/zhFGgP9vTZvD8YgNYQ1q7urr8NQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 01 May 2025 16:06:23 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7686 (0x1e06) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A4B1A, serialNumber=CE114680FF6F4D9BC3F1880D610D6AEEEAEBF0D4 Validity Not Before: Apr 24 16:06:23 2025 GMT Not After : May 1 16:06:23 2025 GMT Subject: CN=680a617f-b5e0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d7:77:14:2f:d3:06:95:73:49:8f:eb:8a:77:ab: d7:05:52:9d:f2:fe:d7:68:9c:91:87:30:73:94:b6: ff:1a:1d:a5:5f:61:9e:d4:8e:a2:f7:df:4b:6f:bc: dd:66:43:41:91:13:1f:bc:59:64:c8:2c:7a:74:f1: 6c:0b:79:d8:df:8c:92:02:ef:2c:3e:13:d8:e7:8a: bf:40:5a:2a:5a:0a:92:e0:3c:78:06:a5:ef:eb:fa: 46:4c:98:c9:36:80:fa:0e:d4:68:5e:25:ae:0b:4b: 6d:e9:12:58:c8:88:1e:ae:d2:cc:f7:89:cc:20:0e: 78:d5:33:62:50:50:41:4b:4c:f1:9f:25:99:10:80: 9f:8d:3c:03:17:53:4d:8f:31:b5:39:a8:74:28:af: ec:3c:c9:36:82:5e:5d:c5:73:b2:3b:81:ab:89:07: 28:24:bc:cf:cb:a0:e7:d6:06:b6:e3:b6:d9:aa:8c: 53:34:0c:46:fa:b3:53:e6:51:b0:da:e6:d4:34:65: 27:cb:6b:f4:fa:ef:5a:c9:20:e6:4d:3f:e7:b6:1d: 7d:c4:c8:94:8f:3e:c6:56:57:08:ac:8e:61:09:32: 56:ce:31:a5:6d:ad:71:ea:8b:eb:b7:2b:b5:6b:f4: a1:49:2d:52:58:63:6e:1e:62:ff:93:c7:4a:d7:57: 7c:91 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2F:6F:78:97:83:48:2D:B4:7E:09:A6:C7:DE:94:3B:F1:65:43:F3:3F X509v3 Authority Key Identifier: keyid:CE:11:46:80:FF:6F:4D:9B:C3:F1:88:0D:61:0D:6A:EE:EA:EB:F0:D4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A4B1A/5DD48AB689F211E69E5F6339C4F9AE02/zhFGgP9vTZvD8YgNYQ1q7urr8NQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/zhFGgP9vTZvD8YgNYQ1q7urr8NQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A4B1A/5DD48AB689F211E69E5F6339C4F9AE02/zhFGgP9vTZvD8YgNYQ1q7urr8NQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 42:64:ce:ff:7d:d1:38:8d:03:b4:42:17:a1:8e:c0:8f:9b:ef: df:8b:1b:30:43:3e:62:b6:2d:9b:39:fb:d0:b4:37:f8:d5:00: 77:81:03:3d:59:3f:9c:80:b9:a5:6a:3d:d1:91:d1:1a:ff:14: 63:87:92:11:c2:f6:50:b2:2d:8e:ae:33:6c:5a:7b:a1:64:32: 3d:68:cb:8f:e1:7b:82:91:7a:a0:4b:c9:99:1f:a5:8e:07:1d: 76:02:58:42:c4:fa:2d:96:d2:10:b3:2a:8d:f2:7c:8e:4d:95: fc:e1:38:31:7c:48:72:54:d9:7c:74:74:ad:09:19:1f:c7:19: 08:64:c9:f2:c0:c4:42:de:a9:a4:06:c6:46:90:23:3b:eb:e1: 08:c9:b5:94:29:7d:ef:9b:f6:96:5c:ac:23:9c:20:3e:54:f9: e9:2a:73:68:96:d3:8e:0b:da:31:92:1b:ba:e1:48:7e:72:14: 20:ac:b4:c6:4d:9b:0b:73:47:f4:43:72:c0:b8:c7:c7:64:35: a7:cf:29:aa:2d:eb:85:70:e5:9f:95:e6:e8:f4:0a:0b:20:25: 4a:13:d8:bb:6f:ee:95:6a:96:e2:c8:81:55:b0:da:46:f1:4e: 59:40:05:81:10:bd:cb:fa:18:bf:37:97:18:69:b6:00:a2:3c: cd:06:84:41 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICHgYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTRCMUExMTAvBgNVBAUTKENFMTE0NjgwRkY2RjREOUJDM0YxODgwRDYxMEQ2QUVF RUFFQkYwRDQwHhcNMjUwNDI0MTYwNjIzWhcNMjUwNTAxMTYwNjIzWjAYMRYwFAYD VQQDEw02ODBhNjE3Zi1iNWUwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA13cUL9MGlXNJj+uKd6vXBVKd8v7XaJyRhzBzlLb/Gh2lX2Ge1I6i999Lb7zd ZkNBkRMfvFlkyCx6dPFsC3nY34ySAu8sPhPY54q/QFoqWgqS4Dx4BqXv6/pGTJjJ NoD6DtRoXiWuC0tt6RJYyIgertLM94nMIA541TNiUFBBS0zxnyWZEICfjTwDF1NN jzG1Oah0KK/sPMk2gl5dxXOyO4GriQcoJLzPy6Dn1ga247bZqoxTNAxG+rNT5lGw 2ubUNGUny2v0+u9aySDmTT/nth19xMiUjz7GVlcIrI5hCTJWzjGlba1x6ovrtyu1 a/ShSS1SWGNuHmL/k8dK11d8kQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFC9veJeD SC20fgmmx96UO/FlQ/M/MB8GA1UdIwQYMBaAFM4RRoD/b02bw/GIDWENau7q6/DU MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBNEIxQS81REQ0OEFCNjg5 RjIxMUU2OUU1RjYzMzlDNEY5QUUwMi96aEZHZ1A5dlRadkQ4WWdOWVExcTd1cnI4 TlEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3poRkdnUDl2VFp2RDhZZ05ZUTFxN3VycjhOUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB NEIxQS81REQ0OEFCNjg5RjIxMUU2OUU1RjYzMzlDNEY5QUUwMi96aEZHZ1A5dlRa dkQ4WWdOWVExcTd1cnI4TlEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBCZM7/fdE4jQO0QhehjsCPm+/fixswQz5iti2bOfvQtDf41QB3gQM9 WT+cgLmlaj3RkdEa/xRjh5IRwvZQsi2OrjNsWnuhZDI9aMuP4XuCkXqgS8mZH6WO Bx12AlhCxPotltIQsyqN8nyOTZX84TgxfEhyVNl8dHStCRkfxxkIZMnywMRC3qmk BsZGkCM76+EIybWUKX3vm/aWXKwjnCA+VPnpKnNoltOOC9oxkhu64Uh+chQgrLTG TZsLc0f0Q3LAuMfHZDWnzymqLeuFcOWflebo9AoLICVKE9i7b+6VapbiyIFVsNpG 8U5ZQAWBEL3L+hi/N5cYabYAojzNBoRB -----END CERTIFICATE-----Generated at Sat Apr 26 14:34:19 2025 by rpki-client