$ rpki-client -vvf rpki.apnic.net/member_repository/A91DEB2E/6FC8BFDE8C2111EDB2B2F30AC4F9AE02/CZyBX8poKm4oYE_pYv0QcVgn6V0.mft File: CZyBX8poKm4oYE_pYv0QcVgn6V0.mft (raw, json) Hash identifier: ZkcMi9e19PGhz/YMgcP+aBROw3UIDboM6qdj3WE3tm0= Subject key identifier: B9:04:21:88:8D:B5:41:ED:13:0E:66:F7:22:F6:8D:97:59:FB:9B:9D Authority key identifier: 09:9C:81:5F:CA:68:2A:6E:28:60:4F:E9:62:FD:10:71:58:27:E9:5D Certificate issuer: /CN=A91DEB2E/serialNumber=099C815FCA682A6E28604FE962FD10715827E95D Certificate serial: 01B9 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CZyBX8poKm4oYE_pYv0QcVgn6V0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91DEB2E/6FC8BFDE8C2111EDB2B2F30AC4F9AE02/CZyBX8poKm4oYE_pYv0QcVgn6V0.mft Manifest number: 01B3 Signing time: Fri 25 Apr 2025 02:20:50 +0000 Manifest this update: Fri 25 Apr 2025 02:20:50 +0000 Manifest next update: Fri 02 May 2025 02:20:50 +0000 Files and hashes: 1: CZyBX8poKm4oYE_pYv0QcVgn6V0.crl (hash: QoWj8lrd6uDn7TeLK5S/d0kZJjoOayyYWLA/CoRVZm4=) 2: 3CB103648C2511EDB64DB410C4F9AE02.roa (hash: MmbQus/ep65NlWLekYokD81GuyXquRa4J0H16aokObA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91DEB2E/6FC8BFDE8C2111EDB2B2F30AC4F9AE02/CZyBX8poKm4oYE_pYv0QcVgn6V0.crl rsync://rpki.apnic.net/member_repository/A91DEB2E/6FC8BFDE8C2111EDB2B2F30AC4F9AE02/CZyBX8poKm4oYE_pYv0QcVgn6V0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CZyBX8poKm4oYE_pYv0QcVgn6V0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 02 May 2025 02:20:50 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 441 (0x1b9) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DEB2E, serialNumber=099C815FCA682A6E28604FE962FD10715827E95D Validity Not Before: Apr 25 02:20:50 2025 GMT Not After : May 2 02:20:50 2025 GMT Subject: CN=680af182-e152 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ef:5c:f6:27:70:f8:a3:54:15:bb:6d:0e:b6:2f: 1a:e7:a0:93:27:ad:52:b1:ae:91:b2:e3:c4:ce:0d: ec:fa:12:a3:0e:a2:0e:f5:d1:0d:ec:84:f6:15:0d: f6:69:df:e7:76:f4:dc:87:34:bc:fa:13:b4:3d:14: ae:6f:b7:01:54:3e:06:dd:27:4b:3b:f9:19:a0:21: ae:8b:c6:af:69:68:13:c4:84:0f:31:1b:1c:1c:57: b0:1c:28:ca:bd:2a:e8:d4:4d:24:cd:a5:81:3f:c8: 12:48:c5:ae:79:d2:e2:8a:2a:18:d7:57:f8:9a:65: f2:bc:d0:25:b5:a7:fa:73:e0:25:63:1f:1d:ae:93: 4b:ae:6f:c7:f8:fa:bb:5c:b1:14:8d:9e:53:35:c7: cd:c7:7e:f4:d6:fb:cf:50:85:7d:de:ea:fa:53:65: 2f:6e:b0:e7:a1:ba:4f:f4:14:d8:73:56:bd:31:dc: 71:c8:98:be:2f:b8:37:40:d1:0c:ce:af:f1:86:09: e7:a3:a3:03:82:6d:c7:c7:63:e8:27:30:2a:1e:db: 94:0e:fe:9a:b6:c2:1d:1c:b9:67:71:48:ee:33:79: 52:84:17:b3:c7:18:f9:7b:84:16:74:bc:52:73:68: 45:0f:03:c4:e8:a3:74:05:c4:96:ce:57:13:d5:99: b1:9b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B9:04:21:88:8D:B5:41:ED:13:0E:66:F7:22:F6:8D:97:59:FB:9B:9D X509v3 Authority Key Identifier: keyid:09:9C:81:5F:CA:68:2A:6E:28:60:4F:E9:62:FD:10:71:58:27:E9:5D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91DEB2E/6FC8BFDE8C2111EDB2B2F30AC4F9AE02/CZyBX8poKm4oYE_pYv0QcVgn6V0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CZyBX8poKm4oYE_pYv0QcVgn6V0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DEB2E/6FC8BFDE8C2111EDB2B2F30AC4F9AE02/CZyBX8poKm4oYE_pYv0QcVgn6V0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a9:f5:63:6d:66:2b:5e:ed:f7:82:8e:b6:d7:1f:0c:36:94:61: 56:3f:da:35:d1:9c:1a:54:18:6f:8e:95:1c:5f:e0:05:92:37: e1:28:db:75:75:a2:fc:18:1a:6b:3c:12:cd:f7:6c:9a:fb:08: da:9a:4b:e1:a1:e2:f1:ba:c8:68:a1:44:ff:04:d8:6a:b1:a2: 36:90:be:0c:25:91:8c:a8:88:e2:de:df:21:e9:69:5d:45:17: fb:cb:f0:9b:aa:5a:9b:d1:ad:71:29:a9:a1:55:dd:25:14:8b: 06:8c:bd:4c:19:db:53:f6:14:b4:80:a5:ff:0d:dc:86:04:2b: 85:c5:b5:52:63:4c:2d:b0:1f:07:92:01:fd:c5:50:b6:e8:6d: 65:fe:2a:b7:46:e4:fd:f9:5d:d6:ec:dd:35:48:6e:6e:ce:74: 4e:d2:37:fa:3f:55:d1:65:38:e5:80:4d:41:02:3c:71:f0:84: 96:a8:2d:77:ac:cf:84:58:1b:bc:2b:3d:94:1f:b6:61:ae:bf: 0f:71:0f:a2:b2:f6:43:b4:2f:9b:e9:be:6d:f4:a6:4e:ef:2e: d0:b1:b9:f1:89:b9:53:fa:85:94:e4:eb:19:30:49:5f:86:02: 46:63:2c:67:e3:2f:14:3f:82:81:23:75:d9:7a:40:2f:1a:a8: 93:f1:08:62 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAbkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx REVCMkUxMTAvBgNVBAUTKDA5OUM4MTVGQ0E2ODJBNkUyODYwNEZFOTYyRkQxMDcx NTgyN0U5NUQwHhcNMjUwNDI1MDIyMDUwWhcNMjUwNTAyMDIyMDUwWjAYMRYwFAYD VQQDEw02ODBhZjE4Mi1lMTUyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA71z2J3D4o1QVu20Oti8a56CTJ61Ssa6RsuPEzg3s+hKjDqIO9dEN7IT2FQ32 ad/ndvTchzS8+hO0PRSub7cBVD4G3SdLO/kZoCGui8avaWgTxIQPMRscHFewHCjK vSro1E0kzaWBP8gSSMWuedLiiioY11f4mmXyvNAltaf6c+AlYx8drpNLrm/H+Pq7 XLEUjZ5TNcfNx3701vvPUIV93ur6U2UvbrDnobpP9BTYc1a9MdxxyJi+L7g3QNEM zq/xhgnno6MDgm3Hx2PoJzAqHtuUDv6atsIdHLlncUjuM3lShBezxxj5e4QWdLxS c2hFDwPE6KN0BcSWzlcT1ZmxmwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFLkEIYiN tUHtEw5m9yL2jZdZ+5udMB8GA1UdIwQYMBaAFAmcgV/KaCpuKGBP6WL9EHFYJ+ld MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFERUIyRS82RkM4QkZERThD MjExMUVEQjJCMkYzMEFDNEY5QUUwMi9DWnlCWDhwb0ttNG9ZRV9wWXYwUWNWZ242 VjAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0NaeUJYOHBvS200b1lFX3BZdjBRY1ZnbjZWMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE RUIyRS82RkM4QkZERThDMjExMUVEQjJCMkYzMEFDNEY5QUUwMi9DWnlCWDhwb0tt NG9ZRV9wWXYwUWNWZ242VjAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCp9WNtZite7feCjrbXHww2lGFWP9o10ZwaVBhvjpUcX+AFkjfhKNt1 daL8GBprPBLN92ya+wjamkvhoeLxushooUT/BNhqsaI2kL4MJZGMqIji3t8h6Wld RRf7y/Cbqlqb0a1xKamhVd0lFIsGjL1MGdtT9hS0gKX/DdyGBCuFxbVSY0wtsB8H kgH9xVC26G1l/iq3RuT9+V3W7N01SG5uznRO0jf6P1XRZTjlgE1BAjxx8ISWqC13 rM+EWBu8Kz2UH7Zhrr8PcQ+isvZDtC+b6b5t9KZO7y7QsbnxiblT+oWU5OsZMElf hgJGYyxn4y8UP4KBI3XZekAvGqiT8Qhi -----END CERTIFICATE-----Generated at Sat Apr 26 12:26:38 2025 by rpki-client