$ rpki-client -vvf rpki.apnic.net/member_repository/A91AAE63/5E966394CA0911ED81B6F63CC4F9AE02/zHxfJ4CoDTxmayv2kVPyBIS-7nE.mft File: zHxfJ4CoDTxmayv2kVPyBIS-7nE.mft (raw, json) Hash identifier: sFarGwNKW7LKfDOCOamGPtcImS8Aa1DaKhV/OLnWSP4= Subject key identifier: FF:53:AB:F4:68:BB:50:DF:2C:78:D1:5E:7D:88:2A:87:02:C1:37:74 Authority key identifier: CC:7C:5F:27:80:A8:0D:3C:66:6B:2B:F6:91:53:F2:04:84:BE:EE:71 Certificate issuer: /CN=A91AAE63/serialNumber=CC7C5F2780A80D3C666B2BF69153F20484BEEE71 Certificate serial: 018C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/zHxfJ4CoDTxmayv2kVPyBIS-7nE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91AAE63/5E966394CA0911ED81B6F63CC4F9AE02/zHxfJ4CoDTxmayv2kVPyBIS-7nE.mft Manifest number: 0189 Signing time: Fri 25 Apr 2025 02:44:01 +0000 Manifest this update: Fri 25 Apr 2025 02:44:00 +0000 Manifest next update: Fri 02 May 2025 02:44:00 +0000 Files and hashes: 1: zHxfJ4CoDTxmayv2kVPyBIS-7nE.crl (hash: OzgkQbmkHYBwR8IfC+8qr3BUQr8dUpnBe9ptO5pa8so=) 2: 5DCF3814CA0E11ED9251861DC4F9AE02.roa (hash: QPqR58JeNFPJi8H+5XnKJrf+9hDaJRDjHQAg1P1N4n8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91AAE63/5E966394CA0911ED81B6F63CC4F9AE02/zHxfJ4CoDTxmayv2kVPyBIS-7nE.crl rsync://rpki.apnic.net/member_repository/A91AAE63/5E966394CA0911ED81B6F63CC4F9AE02/zHxfJ4CoDTxmayv2kVPyBIS-7nE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/zHxfJ4CoDTxmayv2kVPyBIS-7nE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 02 May 2025 02:44:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 396 (0x18c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91AAE63, serialNumber=CC7C5F2780A80D3C666B2BF69153F20484BEEE71 Validity Not Before: Apr 25 02:44:00 2025 GMT Not After : May 2 02:44:00 2025 GMT Subject: CN=680af6f1-fb4e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:61:a8:67:bd:5d:0f:bd:41:8a:5c:27:df:e0: 85:e9:24:4c:78:59:ba:56:7a:4f:d9:a1:e6:9f:12: f2:14:0c:e4:3f:54:b4:80:18:4a:a2:3e:c3:4b:2d: e0:96:98:02:31:05:6f:ee:c1:95:b2:91:8f:50:0e: ca:38:5b:8a:bb:74:b0:b4:19:11:7e:20:6a:22:72: d6:45:ef:81:ba:cc:5c:ab:ac:23:5e:ed:38:a9:2c: 71:2f:15:46:e9:b9:5f:1f:98:29:ee:fb:89:28:a0: 16:48:dd:f3:f0:db:8d:68:39:bd:75:df:e6:1b:60: e7:82:27:9f:95:34:5d:d1:2f:5b:0e:28:89:10:3b: 78:29:75:6d:76:f8:64:3d:2e:c3:60:5c:1c:4a:80: 09:df:54:5f:9c:1e:49:63:54:b9:5f:e6:fe:6c:94: 0e:f9:c3:0d:d9:9e:0a:e6:a4:50:07:b6:5f:5b:75: 89:e0:3d:c6:df:b7:27:24:2d:2f:c6:b2:1c:35:f1: bd:72:fa:b4:91:8b:a2:cf:1f:7e:88:a7:23:b7:5c: a3:a5:e2:19:94:43:5a:d8:03:75:80:5b:e7:ba:19: fd:f8:10:1d:53:41:3a:ab:2d:fb:c5:f5:52:93:6b: d9:83:de:9e:8a:1c:63:99:ae:dd:8f:b3:12:36:10: db:e7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FF:53:AB:F4:68:BB:50:DF:2C:78:D1:5E:7D:88:2A:87:02:C1:37:74 X509v3 Authority Key Identifier: keyid:CC:7C:5F:27:80:A8:0D:3C:66:6B:2B:F6:91:53:F2:04:84:BE:EE:71 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91AAE63/5E966394CA0911ED81B6F63CC4F9AE02/zHxfJ4CoDTxmayv2kVPyBIS-7nE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/zHxfJ4CoDTxmayv2kVPyBIS-7nE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91AAE63/5E966394CA0911ED81B6F63CC4F9AE02/zHxfJ4CoDTxmayv2kVPyBIS-7nE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 43:10:5e:74:96:be:af:b7:89:6f:2b:7f:a2:d4:35:49:d1:2c: 5b:96:ef:e2:44:75:93:59:6a:ce:43:9a:52:f6:1f:66:01:5e: 12:a3:cf:a3:0f:ae:61:0a:fa:11:76:2b:80:97:7f:2c:5c:3c: e8:84:ba:96:4c:00:a5:6d:66:df:9b:69:a8:16:36:8f:b0:59: de:6b:f9:42:0f:bd:24:db:4b:67:e7:f1:e0:4f:f3:c5:41:90: 0c:07:23:42:2a:9d:fc:e7:53:20:09:f6:86:fa:6f:d2:0c:cf: 39:6d:2f:31:47:c6:8b:52:81:14:35:a9:67:ab:bf:21:94:aa: de:4d:d6:4b:d1:e1:c7:c1:77:78:75:12:9a:d9:25:cd:53:2e: 5b:34:46:8b:7f:da:40:35:50:bb:7d:66:e9:17:1d:51:86:55: 76:86:65:94:73:b7:dd:9a:ee:69:9b:cc:e7:81:c8:c1:e5:7f: 36:91:ec:82:15:8a:b2:11:28:27:95:9f:84:f9:87:12:86:c1: d2:58:0b:a2:e6:2b:3f:51:8f:56:0c:b6:ca:cd:61:07:d7:fe: 71:b7:dc:ed:dd:d6:64:30:47:21:1c:1e:4e:20:5c:0a:59:4a: 78:92:40:ad:48:5c:ea:12:be:fb:ad:87:dc:29:f1:3e:fd:7c: ea:29:73:0c -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAYwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QUFFNjMxMTAvBgNVBAUTKENDN0M1RjI3ODBBODBEM0M2NjZCMkJGNjkxNTNGMjA0 ODRCRUVFNzEwHhcNMjUwNDI1MDI0NDAwWhcNMjUwNTAyMDI0NDAwWjAYMRYwFAYD VQQDEw02ODBhZjZmMS1mYjRlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwmGoZ71dD71Bilwn3+CF6SRMeFm6VnpP2aHmnxLyFAzkP1S0gBhKoj7DSy3g lpgCMQVv7sGVspGPUA7KOFuKu3SwtBkRfiBqInLWRe+Busxcq6wjXu04qSxxLxVG 6blfH5gp7vuJKKAWSN3z8NuNaDm9dd/mG2DngieflTRd0S9bDiiJEDt4KXVtdvhk PS7DYFwcSoAJ31RfnB5JY1S5X+b+bJQO+cMN2Z4K5qRQB7ZfW3WJ4D3G37cnJC0v xrIcNfG9cvq0kYuizx9+iKcjt1yjpeIZlENa2AN1gFvnuhn9+BAdU0E6qy37xfVS k2vZg96eihxjma7dj7MSNhDb5wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFP9Tq/Ro u1DfLHjRXn2IKocCwTd0MB8GA1UdIwQYMBaAFMx8XyeAqA08Zmsr9pFT8gSEvu5x MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBQUU2My81RTk2NjM5NENB MDkxMUVEODFCNkY2M0NDNEY5QUUwMi96SHhmSjRDb0RUeG1heXYya1ZQeUJJUy03 bkUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3pIeGZKNENvRFR4bWF5djJrVlB5QklTLTduRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB QUU2My81RTk2NjM5NENBMDkxMUVEODFCNkY2M0NDNEY5QUUwMi96SHhmSjRDb0RU eG1heXYya1ZQeUJJUy03bkUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBDEF50lr6vt4lvK3+i1DVJ0Sxblu/iRHWTWWrOQ5pS9h9mAV4So8+j D65hCvoRdiuAl38sXDzohLqWTAClbWbfm2moFjaPsFnea/lCD70k20tn5/HgT/PF QZAMByNCKp3851MgCfaG+m/SDM85bS8xR8aLUoEUNalnq78hlKreTdZL0eHHwXd4 dRKa2SXNUy5bNEaLf9pANVC7fWbpFx1RhlV2hmWUc7fdmu5pm8zngcjB5X82keyC FYqyESgnlZ+E+YcShsHSWAui5is/UY9WDLbKzWEH1/5xt9zt3dZkMEchHB5OIFwK WUp4kkCtSFzqEr77rYfcKfE+/XzqKXMM -----END CERTIFICATE-----Generated at Sat Apr 26 18:10:36 2025 by rpki-client