$ rpki-client -vvf rpki.apnic.net/member_repository/A91C6DD8/F04852421D8611E286118CDE08B02CD2/_Z_UV0WCGIOHdsDcCO-2FVIB42g.mft File: _Z_UV0WCGIOHdsDcCO-2FVIB42g.mft (raw, json) Hash identifier: pK9Q6QCNo9D6rRC498L0C/QW8QZvG45prAtRDTisLpU= Subject key identifier: E1:D3:16:65:61:9E:D4:C8:AB:13:77:81:F0:53:63:59:E5:E1:5E:F5 Authority key identifier: FD:9F:D4:57:45:82:18:83:87:76:C0:DC:08:EF:B6:15:52:01:E3:68 Certificate issuer: /CN=A91C6DD8/serialNumber=FD9FD457458218838776C0DC08EFB6155201E368 Certificate serial: 34D7 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_Z_UV0WCGIOHdsDcCO-2FVIB42g.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C6DD8/F04852421D8611E286118CDE08B02CD2/_Z_UV0WCGIOHdsDcCO-2FVIB42g.mft Manifest number: 34A8 Signing time: Thu 24 Apr 2025 14:27:23 +0000 Manifest this update: Thu 24 Apr 2025 14:27:22 +0000 Manifest next update: Thu 01 May 2025 14:27:22 +0000 Files and hashes: 1: _Z_UV0WCGIOHdsDcCO-2FVIB42g.crl (hash: uAncIOeYgTyCa0nIzxwp4zRSkWUgeksn0bYztEZn+2w=) 2: 2DED29046A8E11EF948C2811C4F9AE02.roa (hash: mhSDrNTd50cS8wLIGVZl7Ze3yEkifRrR2iMHOlgICfE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C6DD8/F04852421D8611E286118CDE08B02CD2/_Z_UV0WCGIOHdsDcCO-2FVIB42g.crl rsync://rpki.apnic.net/member_repository/A91C6DD8/F04852421D8611E286118CDE08B02CD2/_Z_UV0WCGIOHdsDcCO-2FVIB42g.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_Z_UV0WCGIOHdsDcCO-2FVIB42g.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 01 May 2025 14:27:22 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13527 (0x34d7) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C6DD8, serialNumber=FD9FD457458218838776C0DC08EFB6155201E368 Validity Not Before: Apr 24 14:27:22 2025 GMT Not After : May 1 14:27:22 2025 GMT Subject: CN=680a4a4a-cfb9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:1d:3f:c0:b4:16:22:2d:df:bd:7f:36:b7:a4: d5:f4:2d:4f:21:1b:75:42:47:04:c3:18:12:5a:19: c0:41:de:96:25:7e:9a:59:81:f0:5f:3a:20:90:a7: 1c:32:d0:a9:d6:f1:56:72:d7:7b:de:6b:ef:10:2d: 15:58:ce:aa:d2:b1:a3:50:a2:1a:b6:e5:8b:a0:87: c7:39:a5:85:b1:8f:5b:d2:9f:ac:b6:52:43:15:ca: ea:53:2b:b4:c4:25:fb:b2:b4:0c:ae:fd:09:24:43: 75:bd:d0:73:fb:a4:0a:33:8d:27:44:f0:86:e6:af: 02:dd:7d:ce:6c:57:28:4c:6c:2d:1f:70:81:fd:e5: ac:49:b6:eb:99:f2:a1:1f:29:4c:47:61:18:f7:f9: 5e:b1:2c:4c:09:3a:71:00:83:79:b1:89:27:c4:16: 6f:35:bb:dc:57:cf:8d:4a:2d:c1:01:ad:73:04:fe: f9:9a:e5:85:ef:ca:a7:55:de:e6:cb:a4:a8:19:06: 9e:81:8f:aa:fa:1d:e8:49:ee:1b:fa:45:c4:83:43: 03:44:37:be:9e:20:3f:52:38:79:8a:78:f8:4b:7e: e0:a4:1a:ca:1a:be:27:ea:14:26:af:6f:0b:c6:8e: fc:5c:f3:82:59:1a:f4:83:02:9a:0d:a7:3e:e5:5a: a5:89 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E1:D3:16:65:61:9E:D4:C8:AB:13:77:81:F0:53:63:59:E5:E1:5E:F5 X509v3 Authority Key Identifier: keyid:FD:9F:D4:57:45:82:18:83:87:76:C0:DC:08:EF:B6:15:52:01:E3:68 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C6DD8/F04852421D8611E286118CDE08B02CD2/_Z_UV0WCGIOHdsDcCO-2FVIB42g.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_Z_UV0WCGIOHdsDcCO-2FVIB42g.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C6DD8/F04852421D8611E286118CDE08B02CD2/_Z_UV0WCGIOHdsDcCO-2FVIB42g.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 99:13:57:d9:26:d9:3d:e8:6c:32:e0:1e:19:ca:ab:01:65:75: 7a:c8:e4:71:6a:34:c1:29:d4:47:48:d6:49:fe:0c:33:f8:dd: 8c:e3:aa:2c:f2:be:f2:84:96:93:e8:0e:06:6b:d9:fc:37:b2: ed:ca:61:59:a1:28:1d:5f:23:39:88:3b:81:b8:c9:d4:31:c5: b4:08:b6:4d:94:78:59:6d:77:47:1e:d2:77:95:8f:bb:02:14: 49:73:e3:fb:bf:a2:8c:69:c1:00:96:59:78:81:7b:7a:09:6f: 44:51:bd:73:72:b4:1a:93:46:23:e1:44:0b:5a:41:01:d3:69: 1e:51:7a:b7:5c:df:48:bc:34:25:f2:b2:7d:d2:26:da:94:85: fb:3d:bf:4f:58:c1:24:14:37:ab:fb:48:29:4b:ce:f6:7a:01: 21:49:f2:a5:74:26:2e:39:7f:dd:7d:8a:5d:09:2e:4e:64:95: bb:1b:7b:50:9a:f1:f6:48:8c:8a:27:69:a6:83:d2:31:b7:65: 0b:c7:5d:79:9c:30:62:22:ce:53:58:d2:b3:27:14:05:9a:e2: da:66:b3:c9:92:32:10:0d:a2:54:56:6d:ed:e7:03:09:b3:c4: 41:d7:ec:25:2b:25:dc:c1:90:35:85:a3:f1:df:e1:2c:25:b9: dd:a0:6c:9b -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICNNcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzZERDgxMTAvBgNVBAUTKEZEOUZENDU3NDU4MjE4ODM4Nzc2QzBEQzA4RUZCNjE1 NTIwMUUzNjgwHhcNMjUwNDI0MTQyNzIyWhcNMjUwNTAxMTQyNzIyWjAYMRYwFAYD VQQDEw02ODBhNGE0YS1jZmI5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuh0/wLQWIi3fvX82t6TV9C1PIRt1QkcEwxgSWhnAQd6WJX6aWYHwXzogkKcc MtCp1vFWctd73mvvEC0VWM6q0rGjUKIatuWLoIfHOaWFsY9b0p+stlJDFcrqUyu0 xCX7srQMrv0JJEN1vdBz+6QKM40nRPCG5q8C3X3ObFcoTGwtH3CB/eWsSbbrmfKh HylMR2EY9/lesSxMCTpxAIN5sYknxBZvNbvcV8+NSi3BAa1zBP75muWF78qnVd7m y6SoGQaegY+q+h3oSe4b+kXEg0MDRDe+niA/Ujh5inj4S37gpBrKGr4n6hQmr28L xo78XPOCWRr0gwKaDac+5VqliQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFOHTFmVh ntTIqxN3gfBTY1nl4V71MB8GA1UdIwQYMBaAFP2f1FdFghiDh3bA3AjvthVSAeNo MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDNkREOC9GMDQ4NTI0MjFE ODYxMUUyODYxMThDREUwOEIwMkNEMi9fWl9VVjBXQ0dJT0hkc0RjQ08tMkZWSUI0 MmcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL19aX1VWMFdDR0lPSGRzRGNDTy0yRlZJQjQyZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD NkREOC9GMDQ4NTI0MjFEODYxMUUyODYxMThDREUwOEIwMkNEMi9fWl9VVjBXQ0dJ T0hkc0RjQ08tMkZWSUI0MmcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCZE1fZJtk96Gwy4B4ZyqsBZXV6yORxajTBKdRHSNZJ/gwz+N2M46os 8r7yhJaT6A4Ga9n8N7LtymFZoSgdXyM5iDuBuMnUMcW0CLZNlHhZbXdHHtJ3lY+7 AhRJc+P7v6KMacEAlll4gXt6CW9EUb1zcrQak0Yj4UQLWkEB02keUXq3XN9IvDQl 8rJ90ibalIX7Pb9PWMEkFDer+0gpS872egEhSfKldCYuOX/dfYpdCS5OZJW7G3tQ mvH2SIyKJ2mmg9Ixt2ULx115nDBiIs5TWNKzJxQFmuLaZrPJkjIQDaJUVm3t5wMJ s8RB1+wlKyXcwZA1haPx3+EsJbndoGyb -----END CERTIFICATE-----Generated at Sat Apr 26 12:24:22 2025 by rpki-client