$ rpki-client -vvf rpki.apnic.net/member_repository/A91A8219/EC0A70F8EA8011E78B42A432C4F9AE02/ZVPDwhgLl-LrN8tx9qHOqnuVykc.mft File: ZVPDwhgLl-LrN8tx9qHOqnuVykc.mft (raw, json) Hash identifier: os4vhu8m9YWREz0MuW2iamjUZa/l5N51BG7DELJW2yI= Subject key identifier: 29:FC:B2:3D:FB:8D:B9:BA:6E:96:4E:6F:69:A9:DF:3C:C4:86:5B:DF Authority key identifier: 65:53:C3:C2:18:0B:97:E2:EB:37:CB:71:F6:A1:CE:AA:7B:95:CA:47 Certificate issuer: /CN=A91A8219/serialNumber=6553C3C2180B97E2EB37CB71F6A1CEAA7B95CA47 Certificate serial: 16F9 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ZVPDwhgLl-LrN8tx9qHOqnuVykc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A8219/EC0A70F8EA8011E78B42A432C4F9AE02/ZVPDwhgLl-LrN8tx9qHOqnuVykc.mft Manifest number: 16ED Signing time: Thu 24 Apr 2025 16:40:23 +0000 Manifest this update: Thu 24 Apr 2025 16:40:23 +0000 Manifest next update: Thu 01 May 2025 16:40:23 +0000 Files and hashes: 1: ZVPDwhgLl-LrN8tx9qHOqnuVykc.crl (hash: hxnqVTjPIuGi8KDDwafaljhnD5W6cZUDNmnTmq+eBpU=) 2: 314E917C651E11E8A8903D42C4F9AE02.roa (hash: PelwRr9hgP7dCYd5KU90WVUNYfa/KyN0aFEd88yUz4U=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A8219/EC0A70F8EA8011E78B42A432C4F9AE02/ZVPDwhgLl-LrN8tx9qHOqnuVykc.crl rsync://rpki.apnic.net/member_repository/A91A8219/EC0A70F8EA8011E78B42A432C4F9AE02/ZVPDwhgLl-LrN8tx9qHOqnuVykc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ZVPDwhgLl-LrN8tx9qHOqnuVykc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 01 May 2025 16:40:22 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5881 (0x16f9) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A8219, serialNumber=6553C3C2180B97E2EB37CB71F6A1CEAA7B95CA47 Validity Not Before: Apr 24 16:40:23 2025 GMT Not After : May 1 16:40:23 2025 GMT Subject: CN=680a6977-e649 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:f3:2f:a8:bf:be:dc:e1:84:80:0f:6f:bf:9f: 2f:7b:de:f6:fa:65:12:e0:f2:b5:4e:d7:a6:57:12: b4:5e:1d:f3:11:04:e0:c6:90:b6:ea:6a:a8:0f:09: 9c:03:d6:fd:d5:da:a0:f3:fd:66:db:8f:46:b0:af: d6:b8:de:ec:11:3d:a6:4a:69:c4:ea:e3:55:b5:d9: d4:74:dd:6c:40:de:d5:ce:c1:63:8b:80:65:b2:d5: 60:29:c3:05:f5:54:e6:52:c9:0d:5e:a7:fa:6e:fa: 67:31:fd:50:ef:71:fd:f6:27:39:45:7e:4e:9b:3d: f5:81:8c:b7:75:4c:30:65:88:d4:e0:e6:9a:ce:95: 65:d0:44:a1:4c:d0:8f:b0:ae:55:5b:4c:a7:a7:99: f7:b7:62:17:79:43:74:ee:d9:15:bb:aa:d6:f2:3c: 58:ac:06:0e:1a:9d:e6:fd:21:e0:93:6a:47:1d:d0: 39:c8:2c:88:56:34:c4:2f:92:01:0a:87:6a:18:6a: 1f:5e:af:36:14:e7:b8:f8:d2:49:bb:d7:66:8d:76: 64:1d:29:07:e3:be:51:30:72:c8:fd:e5:96:e0:cb: 25:cb:a1:91:ad:2f:ba:60:95:8b:f8:40:30:21:7e: b5:c9:eb:dc:33:36:27:75:8b:01:d4:0b:ba:3c:11: 1c:53 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 29:FC:B2:3D:FB:8D:B9:BA:6E:96:4E:6F:69:A9:DF:3C:C4:86:5B:DF X509v3 Authority Key Identifier: keyid:65:53:C3:C2:18:0B:97:E2:EB:37:CB:71:F6:A1:CE:AA:7B:95:CA:47 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A8219/EC0A70F8EA8011E78B42A432C4F9AE02/ZVPDwhgLl-LrN8tx9qHOqnuVykc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ZVPDwhgLl-LrN8tx9qHOqnuVykc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A8219/EC0A70F8EA8011E78B42A432C4F9AE02/ZVPDwhgLl-LrN8tx9qHOqnuVykc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 7e:c7:a9:70:36:ce:3e:40:db:c6:92:ab:5d:f3:da:6c:fb:b3: a2:27:d9:d5:b3:65:81:05:1d:ad:b3:7b:82:b2:62:f2:8a:a8: c0:12:f4:a6:83:95:be:9b:b1:1f:c5:ef:aa:83:aa:77:07:e3: 4f:4c:fa:3c:4e:44:f8:4d:c5:9d:a0:91:56:70:b5:ea:9f:ad: ca:76:bb:96:6e:ff:75:b1:f8:51:6c:ce:d7:b1:dd:ce:5a:6b: 4a:b9:74:fb:96:f5:c5:6a:7c:71:65:1a:87:b5:0c:d7:18:d9: 59:ef:74:0e:66:7d:d8:61:84:e9:95:7e:d6:39:06:5c:0e:3a: fa:b8:9e:9c:f9:cf:91:f2:56:ce:1f:ed:ff:6c:88:c6:7a:63: 37:fd:70:5b:10:cc:f3:2d:1c:49:7e:94:06:79:01:98:1c:53: 5a:da:31:4f:f5:e3:35:af:79:50:ae:e4:d8:ac:bb:2e:ee:5a: 8a:70:8f:3b:81:88:f3:38:11:a1:05:ba:d2:d4:86:7b:b1:a1: ef:7e:b8:1e:e4:26:5f:3b:b1:d2:f9:fb:56:98:dd:0c:14:d5: 1d:3b:fb:1c:f3:7b:d3:bd:e9:aa:c8:20:51:ac:96:fc:54:dd: d1:ea:b9:4f:ee:37:0b:63:2b:5b:a9:2c:4a:4a:aa:e5:d7:f2: ee:a8:8f:2b -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICFvkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTgyMTkxMTAvBgNVBAUTKDY1NTNDM0MyMTgwQjk3RTJFQjM3Q0I3MUY2QTFDRUFB N0I5NUNBNDcwHhcNMjUwNDI0MTY0MDIzWhcNMjUwNTAxMTY0MDIzWjAYMRYwFAYD VQQDEw02ODBhNjk3Ny1lNjQ5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtPMvqL++3OGEgA9vv58ve972+mUS4PK1TtemVxK0Xh3zEQTgxpC26mqoDwmc A9b91dqg8/1m249GsK/WuN7sET2mSmnE6uNVtdnUdN1sQN7VzsFji4BlstVgKcMF 9VTmUskNXqf6bvpnMf1Q73H99ic5RX5Omz31gYy3dUwwZYjU4OaazpVl0EShTNCP sK5VW0ynp5n3t2IXeUN07tkVu6rW8jxYrAYOGp3m/SHgk2pHHdA5yCyIVjTEL5IB CodqGGofXq82FOe4+NJJu9dmjXZkHSkH475RMHLI/eWW4Msly6GRrS+6YJWL+EAw IX61yevcMzYndYsB1Au6PBEcUwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFCn8sj37 jbm6bpZOb2mp3zzEhlvfMB8GA1UdIwQYMBaAFGVTw8IYC5fi6zfLcfahzqp7lcpH MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBODIxOS9FQzBBNzBGOEVB ODAxMUU3OEI0MkE0MzJDNEY5QUUwMi9aVlBEd2hnTGwtTHJOOHR4OXFIT3FudVZ5 a2MuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1pWUER3aGdMbC1Mck44dHg5cUhPcW51VnlrYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB ODIxOS9FQzBBNzBGOEVBODAxMUU3OEI0MkE0MzJDNEY5QUUwMi9aVlBEd2hnTGwt THJOOHR4OXFIT3FudVZ5a2MubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB+x6lwNs4+QNvGkqtd89ps+7OiJ9nVs2WBBR2ts3uCsmLyiqjAEvSm g5W+m7Efxe+qg6p3B+NPTPo8TkT4TcWdoJFWcLXqn63KdruWbv91sfhRbM7Xsd3O WmtKuXT7lvXFanxxZRqHtQzXGNlZ73QOZn3YYYTplX7WOQZcDjr6uJ6c+c+R8lbO H+3/bIjGemM3/XBbEMzzLRxJfpQGeQGYHFNa2jFP9eM1r3lQruTYrLsu7lqKcI87 gYjzOBGhBbrS1IZ7saHvfrge5CZfO7HS+ftWmN0MFNUdO/sc83vTvemqyCBRrJb8 VN3R6rlP7jcLYytbqSxKSqrl1/LuqI8r -----END CERTIFICATE-----Generated at Sat Apr 26 15:06:17 2025 by rpki-client