$ rpki-client -vvf rpki.apnic.net/member_repository/A91E9D0C/814F6D041A1A11EC9D1CDF1EC4F9AE02/Cd4ZZ-lS7o4bLdYPiPY7omBXU-8.mft File: Cd4ZZ-lS7o4bLdYPiPY7omBXU-8.mft (raw, json) Hash identifier: SG/3TWjgEZrIs/RchBvv0HR4V+QJB5FQd5L/cXoB/gQ= Subject key identifier: B1:EB:37:71:1B:32:D6:26:3C:4E:24:42:59:8B:93:A9:95:A9:DA:27 Authority key identifier: 09:DE:19:67:E9:52:EE:8E:1B:2D:D6:0F:88:F6:3B:A2:60:57:53:EF Certificate issuer: /CN=A91E9D0C/serialNumber=09DE1967E952EE8E1B2DD60F88F63BA2605753EF Certificate serial: 04DA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Cd4ZZ-lS7o4bLdYPiPY7omBXU-8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E9D0C/814F6D041A1A11EC9D1CDF1EC4F9AE02/Cd4ZZ-lS7o4bLdYPiPY7omBXU-8.mft Manifest number: 04D4 Signing time: Thu 24 Apr 2025 23:34:37 +0000 Manifest this update: Thu 24 Apr 2025 23:34:36 +0000 Manifest next update: Thu 01 May 2025 23:34:36 +0000 Files and hashes: 1: Cd4ZZ-lS7o4bLdYPiPY7omBXU-8.crl (hash: QVdfRnzQPMonvbyvf7NQ/2gQC/tIBQsiil59yFGhYQc=) 2: 630BCB6E1A1D11EC99B84C20C4F9AE02.roa (hash: DgUDwmkN0T0UntF7QmQLHNafJtdHs9vt+l0U9HNHmvY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E9D0C/814F6D041A1A11EC9D1CDF1EC4F9AE02/Cd4ZZ-lS7o4bLdYPiPY7omBXU-8.crl rsync://rpki.apnic.net/member_repository/A91E9D0C/814F6D041A1A11EC9D1CDF1EC4F9AE02/Cd4ZZ-lS7o4bLdYPiPY7omBXU-8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Cd4ZZ-lS7o4bLdYPiPY7omBXU-8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 01 May 2025 23:34:36 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1242 (0x4da) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E9D0C, serialNumber=09DE1967E952EE8E1B2DD60F88F63BA2605753EF Validity Not Before: Apr 24 23:34:36 2025 GMT Not After : May 1 23:34:36 2025 GMT Subject: CN=680aca8c-91bb Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d0:4c:9f:a9:dc:e9:f3:32:3b:27:7d:a1:a2:fa: c0:1f:ec:0e:da:6a:c5:eb:d1:d1:d2:de:3f:b6:73: c4:d5:fa:71:3f:8a:cf:c2:46:76:a7:6a:ec:2c:e0: 92:43:ef:8b:e4:70:22:84:64:8b:69:e8:42:49:84: 45:88:a8:58:b3:78:36:c0:d2:ea:b5:97:4b:d4:d0: bf:4a:ab:49:36:9b:a6:df:d7:41:59:f3:e5:4d:9a: ff:6d:7b:2d:cc:27:c0:7d:51:cd:49:23:cc:29:d1: a3:eb:15:11:8e:f3:73:c1:0e:bd:21:a9:6c:61:37: 98:ec:39:51:b8:60:31:fe:80:fb:62:e2:61:e5:e1: 0f:96:74:31:8c:69:23:3a:5e:c9:78:1f:0e:1b:01: e3:0c:db:a8:05:26:01:12:5b:cb:81:37:61:8d:3f: bb:b4:1b:e4:3a:be:6c:34:c5:c2:44:b5:3e:19:2f: 31:7c:e9:f0:4d:fd:90:0e:2e:46:4a:37:0b:fe:28: e8:48:ee:13:95:88:2d:70:82:2e:60:13:87:f7:74: d9:01:64:aa:e1:ae:24:00:c0:dd:82:e9:8b:59:17: d4:65:16:b5:5c:e5:30:5b:aa:fa:84:22:eb:ae:4e: 13:42:1d:6e:d2:89:bc:58:68:99:d5:0f:59:a2:d5: 27:21 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B1:EB:37:71:1B:32:D6:26:3C:4E:24:42:59:8B:93:A9:95:A9:DA:27 X509v3 Authority Key Identifier: keyid:09:DE:19:67:E9:52:EE:8E:1B:2D:D6:0F:88:F6:3B:A2:60:57:53:EF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E9D0C/814F6D041A1A11EC9D1CDF1EC4F9AE02/Cd4ZZ-lS7o4bLdYPiPY7omBXU-8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Cd4ZZ-lS7o4bLdYPiPY7omBXU-8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E9D0C/814F6D041A1A11EC9D1CDF1EC4F9AE02/Cd4ZZ-lS7o4bLdYPiPY7omBXU-8.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 29:3e:58:4b:6c:00:56:2d:cd:e9:b6:c7:b3:81:6b:c4:dd:e3: 82:24:01:14:dd:b1:83:fc:1f:64:84:87:14:8c:ec:45:53:4d: ec:47:1d:29:85:6b:ed:10:07:96:6a:0f:d8:7d:eb:f9:c2:b0: ab:f3:41:a8:e3:90:15:91:fc:1d:cf:1a:43:24:56:58:c2:3d: 43:96:b3:d1:12:99:69:17:b2:32:17:9c:21:4d:8e:29:5b:85: 63:8c:29:ca:84:5b:58:bd:c6:87:e3:71:88:15:a2:b7:bb:a6: 7b:b5:e2:48:4d:07:25:10:dd:64:63:c6:05:e3:b3:ca:0d:a8: 4c:39:c1:41:10:2f:d1:4d:36:40:20:48:00:c4:03:12:38:eb: 76:d6:b5:f5:6c:f6:52:a3:a5:02:c6:c8:38:db:23:cb:d5:6d: 07:47:d0:04:28:14:86:6e:2e:4c:e2:b9:91:f0:a7:ee:08:9f: 92:22:1a:2c:c6:cf:d3:36:27:75:20:8a:43:e3:67:25:c4:e7: e4:ca:6d:23:18:04:28:21:1b:4c:2c:7c:98:9e:49:3b:64:03: bf:65:b8:9d:34:19:8a:e9:69:eb:98:74:5d:84:e7:4e:6c:db: fc:a2:43:11:87:4d:30:df:f0:29:7b:3b:f0:ae:64:61:d4:07: ce:dd:24:5e -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBNowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTlEMEMxMTAvBgNVBAUTKDA5REUxOTY3RTk1MkVFOEUxQjJERDYwRjg4RjYzQkEy NjA1NzUzRUYwHhcNMjUwNDI0MjMzNDM2WhcNMjUwNTAxMjMzNDM2WjAYMRYwFAYD VQQDEw02ODBhY2E4Yy05MWJiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0Eyfqdzp8zI7J32hovrAH+wO2mrF69HR0t4/tnPE1fpxP4rPwkZ2p2rsLOCS Q++L5HAihGSLaehCSYRFiKhYs3g2wNLqtZdL1NC/SqtJNpum39dBWfPlTZr/bXst zCfAfVHNSSPMKdGj6xURjvNzwQ69IalsYTeY7DlRuGAx/oD7YuJh5eEPlnQxjGkj Ol7JeB8OGwHjDNuoBSYBElvLgTdhjT+7tBvkOr5sNMXCRLU+GS8xfOnwTf2QDi5G SjcL/ijoSO4TlYgtcIIuYBOH93TZAWSq4a4kAMDdgumLWRfUZRa1XOUwW6r6hCLr rk4TQh1u0om8WGiZ1Q9ZotUnIQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFLHrN3Eb MtYmPE4kQlmLk6mVqdonMB8GA1UdIwQYMBaAFAneGWfpUu6OGy3WD4j2O6JgV1Pv MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFOUQwQy84MTRGNkQwNDFB MUExMUVDOUQxQ0RGMUVDNEY5QUUwMi9DZDRaWi1sUzdvNGJMZFlQaVBZN29tQlhV LTguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0NkNFpaLWxTN280YkxkWVBpUFk3b21CWFUtOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF OUQwQy84MTRGNkQwNDFBMUExMUVDOUQxQ0RGMUVDNEY5QUUwMi9DZDRaWi1sUzdv NGJMZFlQaVBZN29tQlhVLTgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQApPlhLbABWLc3ptsezgWvE3eOCJAEU3bGD/B9khIcUjOxFU03sRx0p hWvtEAeWag/Yfev5wrCr80Go45AVkfwdzxpDJFZYwj1DlrPREplpF7IyF5whTY4p W4VjjCnKhFtYvcaH43GIFaK3u6Z7teJITQclEN1kY8YF47PKDahMOcFBEC/RTTZA IEgAxAMSOOt21rX1bPZSo6UCxsg42yPL1W0HR9AEKBSGbi5M4rmR8KfuCJ+SIhos xs/TNid1IIpD42clxOfkym0jGAQoIRtMLHyYnkk7ZAO/ZbidNBmK6WnrmHRdhOdO bNv8okMRh00w3/ApezvwrmRh1AfO3SRe -----END CERTIFICATE-----Generated at Sat Apr 26 04:20:03 2025 by rpki-client