$ rpki-client -vvf rpki.apnic.net/member_repository/A91D56CA/914E53F6C0D111E78D1EF82BC4F9AE02/Z1qGdu030Wq7yi_vjqofI_JXsp8.mft File: Z1qGdu030Wq7yi_vjqofI_JXsp8.mft (raw, json) Hash identifier: dMuHu52UXG6GUVjioMzGbU5rhuz9dHrM2lFTTPD+HbI= Subject key identifier: 95:94:62:34:77:A2:A3:85:D9:9C:B6:F6:D6:AD:D0:7C:2A:8F:38:BB Authority key identifier: 67:5A:86:76:ED:37:D1:6A:BB:CA:2F:EF:8E:AA:1F:23:F2:57:B2:9F Certificate issuer: /CN=A91D56CA/serialNumber=675A8676ED37D16ABBCA2FEF8EAA1F23F257B29F Certificate serial: 17D9 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Z1qGdu030Wq7yi_vjqofI_JXsp8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D56CA/914E53F6C0D111E78D1EF82BC4F9AE02/Z1qGdu030Wq7yi_vjqofI_JXsp8.mft Manifest number: 17C6 Signing time: Thu 24 Apr 2025 16:35:29 +0000 Manifest this update: Thu 24 Apr 2025 16:35:29 +0000 Manifest next update: Thu 01 May 2025 16:35:29 +0000 Files and hashes: 1: Z1qGdu030Wq7yi_vjqofI_JXsp8.crl (hash: xnmMbx3WdJy3qz9D+jMhRShkpAHC1P3JwhxXQzsi8bc=) 2: A6DF4CF8C34B11ECAFB25A68C4F9AE02.roa (hash: o72VLQ1AaTbDR0LUWxX7H2rR6ueROwUZcL0xiM3p7KI=) 3: 0EE83FA4C34611EC9290F072C4F9AE02.roa (hash: XSMOrkD+VKk/yODIQVEJZLLi9dBXNMbWFRIFf5Gr+QI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D56CA/914E53F6C0D111E78D1EF82BC4F9AE02/Z1qGdu030Wq7yi_vjqofI_JXsp8.crl rsync://rpki.apnic.net/member_repository/A91D56CA/914E53F6C0D111E78D1EF82BC4F9AE02/Z1qGdu030Wq7yi_vjqofI_JXsp8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Z1qGdu030Wq7yi_vjqofI_JXsp8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 01 May 2025 16:35:28 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6105 (0x17d9) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D56CA, serialNumber=675A8676ED37D16ABBCA2FEF8EAA1F23F257B29F Validity Not Before: Apr 24 16:35:29 2025 GMT Not After : May 1 16:35:29 2025 GMT Subject: CN=680a6851-80e9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:de:8a:81:e2:7a:6a:58:98:67:48:f4:8c:0c:f8: 33:54:d9:ec:4b:e7:99:75:de:70:2d:d1:ca:ed:c4: 48:db:20:62:fd:48:14:72:77:3a:08:6d:46:84:f4: ab:0d:35:86:88:98:13:0f:1d:b5:dd:b8:bf:e6:48: 85:98:43:cb:26:cc:b6:15:ca:e1:de:eb:9d:05:89: 56:18:0f:ba:2a:77:7b:99:7a:0d:e4:25:7b:cf:a2: 76:b9:19:f8:c3:93:8f:2e:21:91:cd:e6:9c:7e:62: 91:48:68:15:71:c6:0d:b3:9c:61:ca:cc:c1:48:72: 26:55:9b:0e:85:8d:02:a8:7d:25:97:35:eb:3b:3f: 60:18:12:45:8f:fe:58:86:ac:e6:55:44:19:c7:3c: 7a:f1:fd:a4:bb:6a:42:e8:8c:6e:a9:54:fc:14:0b: fe:57:79:33:06:62:e8:16:17:31:b3:04:59:9b:51: 26:0e:f5:58:17:ef:47:f3:e8:8c:4e:3e:6f:20:72: b6:a2:86:eb:a1:31:f7:3a:c4:78:6f:21:5d:bc:b4: 80:88:3a:f7:6f:89:88:b6:ad:8a:e7:63:af:18:6b: 70:c7:3e:d9:0f:a6:f8:3b:08:83:1c:98:f0:ea:45: 00:2f:cc:90:9c:e5:b9:28:7c:d1:dc:ca:02:59:4a: 8b:cd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 95:94:62:34:77:A2:A3:85:D9:9C:B6:F6:D6:AD:D0:7C:2A:8F:38:BB X509v3 Authority Key Identifier: keyid:67:5A:86:76:ED:37:D1:6A:BB:CA:2F:EF:8E:AA:1F:23:F2:57:B2:9F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D56CA/914E53F6C0D111E78D1EF82BC4F9AE02/Z1qGdu030Wq7yi_vjqofI_JXsp8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Z1qGdu030Wq7yi_vjqofI_JXsp8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D56CA/914E53F6C0D111E78D1EF82BC4F9AE02/Z1qGdu030Wq7yi_vjqofI_JXsp8.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 8a:4c:bc:40:72:66:b0:2c:80:50:ba:51:e3:7d:c8:a2:9e:69: 98:38:a5:f0:18:06:db:c7:d4:45:7a:94:dc:48:a0:d6:06:32: c2:53:be:3f:5f:47:a7:0b:f6:eb:27:74:ab:20:50:26:c1:6d: bb:f7:f1:af:0f:31:b2:74:52:29:30:c5:04:41:b9:94:f5:a7: 73:ca:90:6d:ba:d7:0c:c2:f9:b9:2b:11:06:2e:84:cb:e2:4c: dc:ff:46:a3:e0:15:b8:0b:20:81:d0:65:6e:dc:6e:b1:1d:bf: 16:99:25:8a:76:34:3b:f7:a5:d5:d4:32:e2:0f:83:12:78:55: 57:88:64:4c:26:39:f1:a7:ea:1c:1d:13:4a:08:51:ed:50:df: 90:9f:ae:86:2d:5b:8e:56:e6:44:f1:45:9f:b3:98:fc:46:3c: 18:0f:50:de:ce:0f:ba:5c:d8:92:f8:7a:c7:6e:97:d8:58:5c: 61:da:43:7a:6c:00:67:fc:21:41:dc:ed:cb:50:6f:ab:24:2f: d2:97:3a:26:84:eb:d3:97:e7:5d:b0:4c:93:8c:7f:34:56:91: 43:c5:2c:43:0a:0e:9e:c9:31:18:92:9d:9a:c8:bf:de:55:e3: 47:c7:35:57:8a:4e:02:44:80:62:ae:6e:e6:86:4c:9f:a6:d3: 60:c4:9a:2f -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICF9kwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDU2Q0ExMTAvBgNVBAUTKDY3NUE4Njc2RUQzN0QxNkFCQkNBMkZFRjhFQUExRjIz RjI1N0IyOUYwHhcNMjUwNDI0MTYzNTI5WhcNMjUwNTAxMTYzNTI5WjAYMRYwFAYD VQQDEw02ODBhNjg1MS04MGU5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA3oqB4npqWJhnSPSMDPgzVNnsS+eZdd5wLdHK7cRI2yBi/UgUcnc6CG1GhPSr DTWGiJgTDx213bi/5kiFmEPLJsy2Fcrh3uudBYlWGA+6Knd7mXoN5CV7z6J2uRn4 w5OPLiGRzeacfmKRSGgVccYNs5xhyszBSHImVZsOhY0CqH0llzXrOz9gGBJFj/5Y hqzmVUQZxzx68f2ku2pC6IxuqVT8FAv+V3kzBmLoFhcxswRZm1EmDvVYF+9H8+iM Tj5vIHK2oobroTH3OsR4byFdvLSAiDr3b4mItq2K52OvGGtwxz7ZD6b4OwiDHJjw 6kUAL8yQnOW5KHzR3MoCWUqLzQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJWUYjR3 oqOF2Zy29tat0Hwqjzi7MB8GA1UdIwQYMBaAFGdahnbtN9Fqu8ov746qHyPyV7Kf MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFENTZDQS85MTRFNTNGNkMw RDExMUU3OEQxRUY4MkJDNEY5QUUwMi9aMXFHZHUwMzBXcTd5aV92anFvZklfSlhz cDguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1oxcUdkdTAzMFdxN3lpX3ZqcW9mSV9KWHNwOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE NTZDQS85MTRFNTNGNkMwRDExMUU3OEQxRUY4MkJDNEY5QUUwMi9aMXFHZHUwMzBX cTd5aV92anFvZklfSlhzcDgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCKTLxAcmawLIBQulHjfciinmmYOKXwGAbbx9RFepTcSKDWBjLCU74/ X0enC/brJ3SrIFAmwW279/GvDzGydFIpMMUEQbmU9adzypBtutcMwvm5KxEGLoTL 4kzc/0aj4BW4CyCB0GVu3G6xHb8WmSWKdjQ796XV1DLiD4MSeFVXiGRMJjnxp+oc HRNKCFHtUN+Qn66GLVuOVuZE8UWfs5j8RjwYD1Dezg+6XNiS+HrHbpfYWFxh2kN6 bABn/CFB3O3LUG+rJC/SlzomhOvTl+ddsEyTjH80VpFDxSxDCg6eyTEYkp2ayL/e VeNHxzVXik4CRIBirm7mhkyfptNgxJov -----END CERTIFICATE-----Generated at Sat Apr 26 04:37:26 2025 by rpki-client