$ rpki-client -vvf rpki.apnic.net/member_repository/A91B8C12/3ED0852691A611EDB72C5956C4F9AE02/zI7F8Y4keEmlxwbphTthhkju8qY.mft File: zI7F8Y4keEmlxwbphTthhkju8qY.mft (raw, json) Hash identifier: x9JFIlgIplQiQT8V/OEowZD8rpgjKSOf1QTppr/qXZM= Subject key identifier: 73:D9:DC:E1:BB:E6:56:CC:1A:53:11:1B:20:16:A2:67:8D:CF:6D:23 Authority key identifier: CC:8E:C5:F1:8E:24:78:49:A5:C7:06:E9:85:3B:61:86:48:EE:F2:A6 Certificate issuer: /CN=A91B8C12/serialNumber=CC8EC5F18E247849A5C706E9853B618648EEF2A6 Certificate serial: 01AF Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/zI7F8Y4keEmlxwbphTthhkju8qY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B8C12/3ED0852691A611EDB72C5956C4F9AE02/zI7F8Y4keEmlxwbphTthhkju8qY.mft Manifest number: 01AC Signing time: Fri 25 Apr 2025 02:24:10 +0000 Manifest this update: Fri 25 Apr 2025 02:24:09 +0000 Manifest next update: Fri 02 May 2025 02:24:09 +0000 Files and hashes: 1: zI7F8Y4keEmlxwbphTthhkju8qY.crl (hash: sY8BPtLFangijoTDwdyQjzMmppmqcdFOSyyVh4MATac=) 2: F9141F4891AA11EDBEE1242EC4F9AE02.roa (hash: wW1wDfapN4aqyKsyA7zutue+89v5koktR+64VobzRks=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B8C12/3ED0852691A611EDB72C5956C4F9AE02/zI7F8Y4keEmlxwbphTthhkju8qY.crl rsync://rpki.apnic.net/member_repository/A91B8C12/3ED0852691A611EDB72C5956C4F9AE02/zI7F8Y4keEmlxwbphTthhkju8qY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/zI7F8Y4keEmlxwbphTthhkju8qY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 02 May 2025 02:24:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 431 (0x1af) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B8C12, serialNumber=CC8EC5F18E247849A5C706E9853B618648EEF2A6 Validity Not Before: Apr 25 02:24:09 2025 GMT Not After : May 2 02:24:09 2025 GMT Subject: CN=680af249-0826 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:db:7c:13:bd:54:9c:8c:53:8f:cd:ca:e9:89:54: fd:ab:c5:1d:7f:c0:09:30:c1:d4:90:f2:36:43:ba: 55:e5:4b:1e:a1:d5:51:b6:4f:0a:1e:e2:e7:68:c0: 11:72:9b:9d:cf:93:0e:0e:a0:96:44:81:ed:d8:d1: 84:3e:c4:73:97:d1:71:e3:88:9a:5f:b6:ea:c3:32: ed:82:ad:48:86:2e:c3:af:42:92:b8:6c:1b:f2:e4: 3e:96:14:22:64:8a:f3:74:b3:7f:13:32:a8:e6:71: 1c:f7:f8:e3:2f:f9:48:c3:26:a2:37:2f:15:fb:a8: dd:59:62:a4:13:79:e4:9b:d2:78:6b:4b:0f:ae:b9: d8:d8:e0:8e:3e:b0:07:32:d9:6b:43:c6:8c:2c:96: 10:1c:ba:eb:48:3b:f0:92:3c:3a:ab:12:97:3b:ab: af:e5:c0:77:01:8f:ea:35:e6:f4:5b:7e:9b:c1:23: 29:75:8b:5c:53:7f:63:e5:56:85:8a:b2:98:54:4a: 18:3a:3e:b8:72:31:75:dc:2a:3e:32:aa:f6:be:89: a0:24:97:b4:ae:11:46:47:e3:5f:9c:9d:e7:d4:5c: 24:81:48:f4:27:40:00:42:1c:5a:0b:4a:a7:b1:7d: a2:a6:0b:2e:f0:4d:b0:9b:5b:52:36:21:6d:2f:56: 75:59 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 73:D9:DC:E1:BB:E6:56:CC:1A:53:11:1B:20:16:A2:67:8D:CF:6D:23 X509v3 Authority Key Identifier: keyid:CC:8E:C5:F1:8E:24:78:49:A5:C7:06:E9:85:3B:61:86:48:EE:F2:A6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B8C12/3ED0852691A611EDB72C5956C4F9AE02/zI7F8Y4keEmlxwbphTthhkju8qY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/zI7F8Y4keEmlxwbphTthhkju8qY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B8C12/3ED0852691A611EDB72C5956C4F9AE02/zI7F8Y4keEmlxwbphTthhkju8qY.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption af:f9:01:e4:3b:a8:b4:6d:bb:9a:37:59:7f:18:4e:be:27:fb: 09:d6:35:0f:86:23:42:c9:84:0c:90:b6:06:01:29:16:aa:bf: 72:93:ee:85:00:91:09:b0:14:b4:40:91:66:da:b2:ae:00:72: d9:d3:55:57:01:2a:57:aa:9f:66:7c:74:bc:ea:07:f7:10:d9: 95:03:50:93:57:24:40:1e:11:79:ff:d8:6b:9b:dd:5f:58:31: 73:dc:81:42:c2:44:6e:b3:0b:fd:98:ea:e0:b8:e5:27:05:16: 06:8d:a5:c3:b5:9d:eb:09:7a:d0:90:d2:8f:17:78:61:8a:c5: 69:9b:c3:65:7b:f8:a5:9b:19:9d:87:b8:43:51:09:00:45:2e: 52:02:e3:4e:4c:b6:c0:6c:8b:d7:83:9c:27:9b:b2:cf:25:bf: 07:f8:c1:2d:0c:87:99:71:64:41:7b:2e:ad:50:1e:97:23:90: d9:1e:93:82:13:a1:1f:e1:aa:af:fa:70:02:f0:b1:7b:dd:9d: 5e:72:62:53:65:5f:26:a0:87:b2:00:71:85:50:a8:14:d0:87: 30:cf:9e:ea:46:8a:b5:c3:17:d6:55:9a:f1:20:73:f3:dd:b5: bc:47:96:d0:06:27:82:af:cb:4f:82:7f:da:00:8c:dd:06:48: 7e:88:5e:90 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAa8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjhDMTIxMTAvBgNVBAUTKENDOEVDNUYxOEUyNDc4NDlBNUM3MDZFOTg1M0I2MTg2 NDhFRUYyQTYwHhcNMjUwNDI1MDIyNDA5WhcNMjUwNTAyMDIyNDA5WjAYMRYwFAYD VQQDEw02ODBhZjI0OS0wODI2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA23wTvVScjFOPzcrpiVT9q8Udf8AJMMHUkPI2Q7pV5UseodVRtk8KHuLnaMAR cpudz5MODqCWRIHt2NGEPsRzl9Fx44iaX7bqwzLtgq1Ihi7Dr0KSuGwb8uQ+lhQi ZIrzdLN/EzKo5nEc9/jjL/lIwyaiNy8V+6jdWWKkE3nkm9J4a0sPrrnY2OCOPrAH MtlrQ8aMLJYQHLrrSDvwkjw6qxKXO6uv5cB3AY/qNeb0W36bwSMpdYtcU39j5VaF irKYVEoYOj64cjF13Co+Mqr2vomgJJe0rhFGR+NfnJ3n1FwkgUj0J0AAQhxaC0qn sX2ipgsu8E2wm1tSNiFtL1Z1WQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFHPZ3OG7 5lbMGlMRGyAWomeNz20jMB8GA1UdIwQYMBaAFMyOxfGOJHhJpccG6YU7YYZI7vKm MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCOEMxMi8zRUQwODUyNjkx QTYxMUVEQjcyQzU5NTZDNEY5QUUwMi96STdGOFk0a2VFbWx4d2JwaFR0aGhranU4 cVkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3pJN0Y4WTRrZUVtbHh3YnBoVHRoaGtqdThxWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC OEMxMi8zRUQwODUyNjkxQTYxMUVEQjcyQzU5NTZDNEY5QUUwMi96STdGOFk0a2VF bWx4d2JwaFR0aGhranU4cVkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCv+QHkO6i0bbuaN1l/GE6+J/sJ1jUPhiNCyYQMkLYGASkWqr9yk+6F AJEJsBS0QJFm2rKuAHLZ01VXASpXqp9mfHS86gf3ENmVA1CTVyRAHhF5/9hrm91f WDFz3IFCwkRuswv9mOrguOUnBRYGjaXDtZ3rCXrQkNKPF3hhisVpm8Nle/ilmxmd h7hDUQkARS5SAuNOTLbAbIvXg5wnm7LPJb8H+MEtDIeZcWRBey6tUB6XI5DZHpOC E6Ef4aqv+nAC8LF73Z1ecmJTZV8moIeyAHGFUKgU0Icwz57qRoq1wxfWVZrxIHPz 3bW8R5bQBieCr8tPgn/aAIzdBkh+iF6Q -----END CERTIFICATE-----Generated at Sat Apr 26 03:59:03 2025 by rpki-client