$ rpki-client -vvf rpki.apnic.net/member_repository/A91D493B/DBAD37A0CAAE11EC8241280DC4F9AE02/zIO7bQqhd53qFp7bpKQCKN4hvXs.mft File: zIO7bQqhd53qFp7bpKQCKN4hvXs.mft (raw, json) Hash identifier: E8q1XpkkrIwbvm0shr4Pw3EVChond8OFPHIw7Hc4jzk= Subject key identifier: CB:2A:04:59:31:75:0C:29:D6:1A:81:A9:47:38:4E:AF:CF:52:88:62 Authority key identifier: CC:83:BB:6D:0A:A1:77:9D:EA:16:9E:DB:A4:A4:02:28:DE:21:BD:7B Certificate issuer: /CN=A91D493B/serialNumber=CC83BB6D0AA1779DEA169EDBA4A40228DE21BD7B Certificate serial: 0315 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/zIO7bQqhd53qFp7bpKQCKN4hvXs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D493B/DBAD37A0CAAE11EC8241280DC4F9AE02/zIO7bQqhd53qFp7bpKQCKN4hvXs.mft Manifest number: 0311 Signing time: Fri 25 Apr 2025 00:57:43 +0000 Manifest this update: Fri 25 Apr 2025 00:57:42 +0000 Manifest next update: Fri 02 May 2025 00:57:42 +0000 Files and hashes: 1: zIO7bQqhd53qFp7bpKQCKN4hvXs.crl (hash: gHVnrJDdOZdO9DBSUkYUQzirRuwU3le85qdD+ynxk30=) 2: 684DDD32CAB311ECBBCE9843C4F9AE02.roa (hash: qlH2HXjlgr8PBnyTmgV2A1ZCVpY5oeqzGuzCwKUpWe4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D493B/DBAD37A0CAAE11EC8241280DC4F9AE02/zIO7bQqhd53qFp7bpKQCKN4hvXs.crl rsync://rpki.apnic.net/member_repository/A91D493B/DBAD37A0CAAE11EC8241280DC4F9AE02/zIO7bQqhd53qFp7bpKQCKN4hvXs.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/zIO7bQqhd53qFp7bpKQCKN4hvXs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 02 May 2025 00:57:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 789 (0x315) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D493B, serialNumber=CC83BB6D0AA1779DEA169EDBA4A40228DE21BD7B Validity Not Before: Apr 25 00:57:42 2025 GMT Not After : May 2 00:57:42 2025 GMT Subject: CN=680ade06-7116 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:db:2d:bd:e3:38:1b:69:be:43:53:0d:6f:76:66: e1:54:a2:87:46:48:1e:02:ab:b6:32:87:9c:b4:1b: 1c:0b:12:98:e9:2d:b0:f2:57:f3:7b:94:6e:14:82: ad:40:94:d6:22:09:ff:24:58:b8:2a:26:ee:c6:5b: cd:b4:4d:44:17:f8:b7:3d:ed:1f:1c:ae:a8:93:ba: bf:18:64:54:df:3f:f1:d6:21:0b:20:6b:e2:40:c6: 95:37:78:fb:a7:15:fc:c6:3b:8c:97:28:02:46:13: 9d:51:c1:6a:59:fc:ac:1d:f3:f2:e5:4a:43:e6:fb: 49:93:07:25:16:3f:ee:1a:d4:46:58:86:91:5f:08: d1:e5:31:33:bc:a8:fe:48:d6:2c:f5:fd:a6:b8:20: 26:82:41:a1:6e:bc:dc:08:53:d4:f6:bf:3a:cc:89: 90:24:97:fe:6c:10:e7:d7:71:17:00:9a:30:9e:df: af:0b:1b:5d:89:21:01:3e:88:55:cc:80:87:e1:b4: 1f:92:26:8d:e1:49:4c:c7:b3:0e:5c:cf:b7:37:a7: 46:b0:43:9f:ef:ab:a4:c6:05:13:bd:83:00:06:1b: 88:9d:63:7d:69:fe:4a:4d:76:17:63:58:c2:02:c6: 76:e2:31:aa:f0:59:01:5d:3d:0b:89:bf:df:e7:8e: 24:71 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CB:2A:04:59:31:75:0C:29:D6:1A:81:A9:47:38:4E:AF:CF:52:88:62 X509v3 Authority Key Identifier: keyid:CC:83:BB:6D:0A:A1:77:9D:EA:16:9E:DB:A4:A4:02:28:DE:21:BD:7B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D493B/DBAD37A0CAAE11EC8241280DC4F9AE02/zIO7bQqhd53qFp7bpKQCKN4hvXs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/zIO7bQqhd53qFp7bpKQCKN4hvXs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D493B/DBAD37A0CAAE11EC8241280DC4F9AE02/zIO7bQqhd53qFp7bpKQCKN4hvXs.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 2b:ff:d2:9f:7a:b3:73:11:9d:b1:e5:4f:71:93:0b:c6:b7:8f: 45:1f:8b:21:f4:53:72:31:a5:df:51:0d:ef:1c:e5:8f:d0:f3: dc:6e:de:3e:7b:13:fe:e0:3e:85:ff:d1:12:fa:83:1f:21:53: 3c:8d:fc:0f:74:a1:2c:51:07:d5:5c:26:f4:97:d4:f3:ba:85: 6f:29:ba:96:9f:9a:ee:d8:27:d6:06:29:64:9a:d7:3e:15:35: 65:c6:1c:a1:aa:71:f0:bd:e5:9f:60:5f:80:c9:ff:d8:58:a5: 7e:2b:f9:26:eb:9d:45:cf:5e:c0:05:f5:e4:f1:b3:b7:80:ef: e5:54:17:98:c5:8c:9d:4d:7e:30:66:52:e5:05:8b:ae:24:a6: e8:af:40:4b:69:df:c5:95:7b:ee:71:ac:66:89:c5:7d:f6:a6: 9d:a8:e2:d2:be:54:ac:5a:06:07:24:49:67:af:ad:85:ad:87: bf:d7:24:ba:76:3b:2a:f3:bb:58:3c:71:7f:de:ff:fd:b7:42: 01:09:5e:36:1b:03:83:97:4a:3f:a2:d6:22:0a:36:9c:3f:3a: f0:2e:16:65:ce:da:b1:69:7e:8c:26:67:0e:6e:20:e8:6b:07: 12:5f:72:fa:76:e9:db:0c:2e:3d:1e:f5:77:49:b9:9e:b8:19: 12:5d:35:ee -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAxUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDQ5M0IxMTAvBgNVBAUTKENDODNCQjZEMEFBMTc3OURFQTE2OUVEQkE0QTQwMjI4 REUyMUJEN0IwHhcNMjUwNDI1MDA1NzQyWhcNMjUwNTAyMDA1NzQyWjAYMRYwFAYD VQQDEw02ODBhZGUwNi03MTE2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA2y294zgbab5DUw1vdmbhVKKHRkgeAqu2MoectBscCxKY6S2w8lfze5RuFIKt QJTWIgn/JFi4KibuxlvNtE1EF/i3Pe0fHK6ok7q/GGRU3z/x1iELIGviQMaVN3j7 pxX8xjuMlygCRhOdUcFqWfysHfPy5UpD5vtJkwclFj/uGtRGWIaRXwjR5TEzvKj+ SNYs9f2muCAmgkGhbrzcCFPU9r86zImQJJf+bBDn13EXAJownt+vCxtdiSEBPohV zICH4bQfkiaN4UlMx7MOXM+3N6dGsEOf76ukxgUTvYMABhuInWN9af5KTXYXY1jC AsZ24jGq8FkBXT0Lib/f544kcQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFMsqBFkx dQwp1hqBqUc4Tq/PUohiMB8GA1UdIwQYMBaAFMyDu20KoXed6hae26SkAijeIb17 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFENDkzQi9EQkFEMzdBMENB QUUxMUVDODI0MTI4MERDNEY5QUUwMi96SU83YlFxaGQ1M3FGcDdicEtRQ0tONGh2 WHMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3pJTzdiUXFoZDUzcUZwN2JwS1FDS040aHZYcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE NDkzQi9EQkFEMzdBMENBQUUxMUVDODI0MTI4MERDNEY5QUUwMi96SU83YlFxaGQ1 M3FGcDdicEtRQ0tONGh2WHMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAr/9KferNzEZ2x5U9xkwvGt49FH4sh9FNyMaXfUQ3vHOWP0PPcbt4+ exP+4D6F/9ES+oMfIVM8jfwPdKEsUQfVXCb0l9TzuoVvKbqWn5ru2CfWBilkmtc+ FTVlxhyhqnHwveWfYF+Ayf/YWKV+K/km651Fz17ABfXk8bO3gO/lVBeYxYydTX4w ZlLlBYuuJKbor0BLad/FlXvucaxmicV99qadqOLSvlSsWgYHJElnr62FrYe/1yS6 djsq87tYPHF/3v/9t0IBCV42GwODl0o/otYiCjacPzrwLhZlztqxaX6MJmcObiDo awcSX3L6dunbDC49HvV3SbmeuBkSXTXu -----END CERTIFICATE-----Generated at Sat Apr 26 04:35:13 2025 by rpki-client