$ rpki-client -vvf rpki.apnic.net/member_repository/A91A5098/C6809196AC9711E6A491DC17C4F9AE02/CZcUpw5vQBKJEIIJ1qf0hZ-YAMw.mft File: CZcUpw5vQBKJEIIJ1qf0hZ-YAMw.mft (raw, json) Hash identifier: 8GY0FtjNAx7J5+T9d4YFWu9zSuctffk49VA/6zD+EOk= Subject key identifier: 85:59:EC:46:DB:83:18:6D:2B:37:1C:D8:1F:99:A9:AE:21:0F:51:6A Authority key identifier: 09:97:14:A7:0E:6F:40:12:89:10:82:09:D6:A7:F4:85:9F:98:00:CC Certificate issuer: /CN=A91A5098/serialNumber=099714A70E6F401289108209D6A7F4859F9800CC Certificate serial: 1D74 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CZcUpw5vQBKJEIIJ1qf0hZ-YAMw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A5098/C6809196AC9711E6A491DC17C4F9AE02/CZcUpw5vQBKJEIIJ1qf0hZ-YAMw.mft Manifest number: 1D5C Signing time: Thu 24 Apr 2025 16:09:29 +0000 Manifest this update: Thu 24 Apr 2025 16:09:29 +0000 Manifest next update: Thu 01 May 2025 16:09:29 +0000 Files and hashes: 1: CZcUpw5vQBKJEIIJ1qf0hZ-YAMw.crl (hash: HUaPqFMOAkMXsw2teqCpruxS/VYhWdrGPTM7McR2l6U=) 2: 945DB376E34711EE87868164C4F9AE02.roa (hash: NAFJJXNP6W1IL/8p5XX1DsTHhpW+KT2jLZylfntYa8I=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A5098/C6809196AC9711E6A491DC17C4F9AE02/CZcUpw5vQBKJEIIJ1qf0hZ-YAMw.crl rsync://rpki.apnic.net/member_repository/A91A5098/C6809196AC9711E6A491DC17C4F9AE02/CZcUpw5vQBKJEIIJ1qf0hZ-YAMw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CZcUpw5vQBKJEIIJ1qf0hZ-YAMw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 01 May 2025 16:09:28 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7540 (0x1d74) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A5098, serialNumber=099714A70E6F401289108209D6A7F4859F9800CC Validity Not Before: Apr 24 16:09:29 2025 GMT Not After : May 1 16:09:29 2025 GMT Subject: CN=680a6239-9516 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:bb:1a:a4:5e:d1:66:99:0f:72:25:47:7e:06: c1:d8:8f:a6:10:75:dd:6d:97:ed:4e:e2:79:fe:7b: f1:18:80:1a:9a:f7:33:96:42:af:c0:f0:1b:64:5d: 2a:40:03:b2:ba:07:12:bb:01:4e:1a:a9:ed:dc:2e: a7:67:70:da:f7:46:74:8e:18:68:1e:a6:31:a1:53: b3:9e:1f:b3:be:47:1a:6f:6d:2f:65:bd:d8:1d:3e: 2a:0f:62:8d:64:0a:c1:8e:f3:19:eb:30:84:23:d6: dc:db:a0:60:0a:6a:10:2c:e2:8b:d6:f1:21:fb:cf: d4:87:de:73:db:47:a7:84:1c:38:0a:07:7f:b4:9e: 69:51:80:51:f3:1c:17:96:28:bb:21:ff:c9:7d:8d: 2a:d8:37:d4:72:4e:47:c3:34:b6:98:52:4e:8c:53: db:ec:3b:29:c4:41:80:77:41:38:f5:f9:69:0d:dd: 15:67:e5:a4:c6:f2:6c:2b:62:d2:20:40:d1:8b:7f: 98:0c:11:78:35:30:c5:a8:b0:d7:c5:36:62:d8:4f: 3d:6a:99:72:22:99:ad:cb:31:ef:8b:45:58:c9:3b: 9c:ee:f5:15:8f:61:40:53:ba:c3:b1:83:3b:5f:50: 51:d9:77:7d:5a:e4:dd:2e:61:25:d3:45:7f:44:50: fc:a9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 85:59:EC:46:DB:83:18:6D:2B:37:1C:D8:1F:99:A9:AE:21:0F:51:6A X509v3 Authority Key Identifier: keyid:09:97:14:A7:0E:6F:40:12:89:10:82:09:D6:A7:F4:85:9F:98:00:CC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A5098/C6809196AC9711E6A491DC17C4F9AE02/CZcUpw5vQBKJEIIJ1qf0hZ-YAMw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CZcUpw5vQBKJEIIJ1qf0hZ-YAMw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A5098/C6809196AC9711E6A491DC17C4F9AE02/CZcUpw5vQBKJEIIJ1qf0hZ-YAMw.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 25:7a:62:cd:dd:66:5f:1b:49:28:4a:a6:e5:6d:0f:f6:0a:e8: 2a:c4:66:48:89:b6:83:88:e4:30:e9:98:c9:1a:18:8d:93:7e: 5f:96:f1:1f:ed:d2:c7:e0:ae:b7:d5:a7:fd:85:28:e6:c5:ed: 9a:62:cc:d3:4d:aa:7d:2e:c0:70:d3:40:60:c7:13:85:c3:d2: 7a:5e:4c:67:8c:88:41:a5:e1:10:05:99:59:00:d1:8f:8d:4a: c0:90:e2:f0:0c:c0:66:ad:20:a3:24:4c:08:90:b6:6a:c3:43: 97:53:c5:a4:a0:89:14:31:65:cf:d4:80:c7:9b:80:4f:20:11: 0e:20:06:77:b4:ea:fd:df:3f:38:5f:fa:f7:0a:53:13:dd:15: 85:65:ed:b7:92:12:a2:b6:72:78:2a:9e:5b:fe:3c:67:d3:a5: 3c:bb:fa:f5:40:da:c4:a1:8e:38:60:16:c7:fd:41:6a:4d:47: 47:4a:b3:ea:9f:00:c8:2d:2b:ff:c1:31:87:e2:1d:8a:69:3e: ce:42:cc:cd:5e:ce:ee:f1:35:82:3b:94:33:80:4f:2b:8c:e8: 8f:66:0c:7e:90:84:c6:7f:1d:b3:74:07:9c:c4:00:2a:f5:5b: 64:76:70:b3:da:e3:b6:ab:60:de:a7:af:9f:50:07:3e:3a:89: 22:f2:8f:ac -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICHXQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTUwOTgxMTAvBgNVBAUTKDA5OTcxNEE3MEU2RjQwMTI4OTEwODIwOUQ2QTdGNDg1 OUY5ODAwQ0MwHhcNMjUwNDI0MTYwOTI5WhcNMjUwNTAxMTYwOTI5WjAYMRYwFAYD VQQDEw02ODBhNjIzOS05NTE2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtbsapF7RZpkPciVHfgbB2I+mEHXdbZftTuJ5/nvxGIAamvczlkKvwPAbZF0q QAOyugcSuwFOGqnt3C6nZ3Da90Z0jhhoHqYxoVOznh+zvkcab20vZb3YHT4qD2KN ZArBjvMZ6zCEI9bc26BgCmoQLOKL1vEh+8/Uh95z20enhBw4Cgd/tJ5pUYBR8xwX lii7If/JfY0q2DfUck5HwzS2mFJOjFPb7DspxEGAd0E49flpDd0VZ+WkxvJsK2LS IEDRi3+YDBF4NTDFqLDXxTZi2E89aplyIpmtyzHvi0VYyTuc7vUVj2FAU7rDsYM7 X1BR2Xd9WuTdLmEl00V/RFD8qQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFIVZ7Ebb gxhtKzcc2B+Zqa4hD1FqMB8GA1UdIwQYMBaAFAmXFKcOb0ASiRCCCdan9IWfmADM MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBNTA5OC9DNjgwOTE5NkFD OTcxMUU2QTQ5MURDMTdDNEY5QUUwMi9DWmNVcHc1dlFCS0pFSUlKMXFmMGhaLVlB TXcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0NaY1VwdzV2UUJLSkVJSUoxcWYwaFotWUFNdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB NTA5OC9DNjgwOTE5NkFDOTcxMUU2QTQ5MURDMTdDNEY5QUUwMi9DWmNVcHc1dlFC S0pFSUlKMXFmMGhaLVlBTXcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAlemLN3WZfG0koSqblbQ/2CugqxGZIibaDiOQw6ZjJGhiNk35flvEf 7dLH4K631af9hSjmxe2aYszTTap9LsBw00BgxxOFw9J6XkxnjIhBpeEQBZlZANGP jUrAkOLwDMBmrSCjJEwIkLZqw0OXU8WkoIkUMWXP1IDHm4BPIBEOIAZ3tOr93z84 X/r3ClMT3RWFZe23khKitnJ4Kp5b/jxn06U8u/r1QNrEoY44YBbH/UFqTUdHSrPq nwDILSv/wTGH4h2KaT7OQszNXs7u8TWCO5QzgE8rjOiPZgx+kITGfx2zdAecxAAq 9VtkdnCz2uO2q2Dep6+fUAc+Ooki8o+s -----END CERTIFICATE-----Generated at Sat Apr 26 17:08:26 2025 by rpki-client