$ rpki-client -vvf rpki.apnic.net/member_repository/A91EFC94/A8CD016494DA11EF89086D21C4F9AE02/ZTy4p1ENubbBon2HfSEh5t9CGYI.mft File: ZTy4p1ENubbBon2HfSEh5t9CGYI.mft (raw, json) Hash identifier: iQtno6G9RNUwg4aoDC0ZY+uVSt0OgPZxdPRJbGDU634= Subject key identifier: 88:59:EA:27:88:42:77:C8:74:54:2A:32:D5:76:17:42:0C:3A:61:34 Authority key identifier: 65:3C:B8:A7:51:0D:B9:B6:C1:A2:7D:87:7D:21:21:E6:DF:42:19:82 Certificate issuer: /CN=A91EFC94/serialNumber=653CB8A7510DB9B6C1A27D877D2121E6DF421982 Certificate serial: 68 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ZTy4p1ENubbBon2HfSEh5t9CGYI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91EFC94/A8CD016494DA11EF89086D21C4F9AE02/ZTy4p1ENubbBon2HfSEh5t9CGYI.mft Manifest number: 64 Signing time: Fri 25 Apr 2025 06:05:31 +0000 Manifest this update: Fri 25 Apr 2025 06:05:30 +0000 Manifest next update: Fri 02 May 2025 06:05:30 +0000 Files and hashes: 1: ZTy4p1ENubbBon2HfSEh5t9CGYI.crl (hash: AksYPfd11wv0LTjMrecLfU0N7w+YSjY4ySRbN3CqaFg=) 2: 1A4E810A9C4711EFBCAF2961C4F9AE02.roa (hash: H/SNFy0blXHf51g3f4tDsQMfyr+dfN3zT3EjfHQV3so=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91EFC94/A8CD016494DA11EF89086D21C4F9AE02/ZTy4p1ENubbBon2HfSEh5t9CGYI.crl rsync://rpki.apnic.net/member_repository/A91EFC94/A8CD016494DA11EF89086D21C4F9AE02/ZTy4p1ENubbBon2HfSEh5t9CGYI.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ZTy4p1ENubbBon2HfSEh5t9CGYI.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 02 May 2025 06:05:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 104 (0x68) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91EFC94, serialNumber=653CB8A7510DB9B6C1A27D877D2121E6DF421982 Validity Not Before: Apr 25 06:05:30 2025 GMT Not After : May 2 06:05:30 2025 GMT Subject: CN=680b262b-cb28 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:f3:00:b9:00:85:e2:2a:80:1d:2e:00:54:97: 51:dd:6c:61:0c:18:80:2a:56:4f:71:8f:77:52:d8: 90:ef:f2:fe:50:8d:ee:2e:17:df:c1:c6:22:1a:e6: 8f:44:7c:90:cc:ac:dc:b2:e3:52:37:a5:fb:84:0f: 39:06:c3:ad:04:e7:e2:3a:b5:d3:59:38:19:d4:fc: 23:56:ce:14:f0:5a:fb:2c:74:b8:65:f8:c9:3a:bb: ca:7f:10:7f:14:b9:71:52:e4:4d:1a:10:73:08:db: 0c:9a:0c:dd:9e:70:21:be:82:18:18:9c:26:01:83: 8d:52:ca:e6:23:a2:2e:aa:a5:57:8b:84:15:c0:b1: 77:9a:e4:8c:52:77:52:9e:dd:9c:43:94:47:51:33: ad:92:0b:44:6d:ea:4a:80:0a:b7:a4:dd:e6:5b:b4: e0:0f:94:c0:68:a6:73:cd:3d:be:3a:e7:af:a7:c6: 33:18:7b:8e:a7:37:3f:5e:16:15:a2:d1:a2:d8:0a: f7:8a:ca:e4:ce:b8:cb:4b:e2:56:78:99:8f:7d:45: be:fa:78:fa:a7:4e:c3:a5:56:d0:e7:47:10:0c:f2: dd:0d:28:72:b9:ef:d8:68:71:95:82:91:47:be:9f: b7:a9:0d:8a:56:2e:2a:b7:a5:3c:48:20:eb:4c:93: 03:ad Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 88:59:EA:27:88:42:77:C8:74:54:2A:32:D5:76:17:42:0C:3A:61:34 X509v3 Authority Key Identifier: keyid:65:3C:B8:A7:51:0D:B9:B6:C1:A2:7D:87:7D:21:21:E6:DF:42:19:82 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91EFC94/A8CD016494DA11EF89086D21C4F9AE02/ZTy4p1ENubbBon2HfSEh5t9CGYI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ZTy4p1ENubbBon2HfSEh5t9CGYI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91EFC94/A8CD016494DA11EF89086D21C4F9AE02/ZTy4p1ENubbBon2HfSEh5t9CGYI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 3c:de:d0:cd:30:ae:d6:6a:a0:9e:35:dc:d4:13:37:55:b9:88: b8:d1:fb:f9:01:53:cb:48:db:60:50:4a:62:14:df:58:8e:ef: 3a:43:d3:86:95:3b:14:3b:2a:db:9f:bc:27:f4:65:5a:6b:56: 3c:f0:a2:80:27:24:90:7b:12:e9:08:c8:df:25:a7:d1:29:73: ef:9a:4f:a9:c0:dd:24:13:c2:a3:23:8d:25:b9:a9:14:a8:e2: a8:45:d4:d9:20:6f:7a:48:8d:08:fd:47:6d:b9:97:fb:5a:fd: d4:14:c2:70:30:7a:10:cb:ed:de:b1:91:82:a9:48:44:f2:96: fb:e4:97:36:ec:17:c2:24:4d:ce:46:31:fe:99:b4:b9:ae:11: 95:51:9f:a4:af:f7:33:5b:b4:a8:72:eb:72:ad:2e:07:0e:04: e0:d9:3b:72:75:f2:fb:22:78:47:49:be:76:67:bc:30:74:ac: a3:0a:bc:2a:e3:0c:9f:33:4d:8d:77:ad:13:2e:e5:dd:2a:55: 3c:62:2f:3d:f3:46:ba:6a:4d:63:b8:f3:ee:aa:72:27:73:7a: 13:f1:ff:95:b6:81:32:ba:fb:0d:96:ff:64:5e:97:8a:f1:77: 02:f8:3c:fb:9f:cc:95:2f:7d:dd:01:3a:01:7a:23:a5:46:15: 9f:c1:41:15 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBaDANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFF RkM5NDExMC8GA1UEBRMoNjUzQ0I4QTc1MTBEQjlCNkMxQTI3RDg3N0QyMTIxRTZE RjQyMTk4MjAeFw0yNTA0MjUwNjA1MzBaFw0yNTA1MDIwNjA1MzBaMBgxFjAUBgNV BAMTDTY4MGIyNjJiLWNiMjgwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDD8wC5AIXiKoAdLgBUl1HdbGEMGIAqVk9xj3dS2JDv8v5Qje4uF9/BxiIa5o9E fJDMrNyy41I3pfuEDzkGw60E5+I6tdNZOBnU/CNWzhTwWvssdLhl+Mk6u8p/EH8U uXFS5E0aEHMI2wyaDN2ecCG+ghgYnCYBg41SyuYjoi6qpVeLhBXAsXea5IxSd1Ke 3ZxDlEdRM62SC0Rt6kqACrek3eZbtOAPlMBopnPNPb4656+nxjMYe46nNz9eFhWi 0aLYCveKyuTOuMtL4lZ4mY99Rb76ePqnTsOlVtDnRxAM8t0NKHK579hocZWCkUe+ n7epDYpWLiq3pTxIIOtMkwOtAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUiFnqJ4hC d8h0VCoy1XYXQgw6YTQwHwYDVR0jBBgwFoAUZTy4p1ENubbBon2HfSEh5t9CGYIw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUVGQzk0L0E4Q0QwMTY0OTRE QTExRUY4OTA4NkQyMUM0RjlBRTAyL1pUeTRwMUVOdWJiQm9uMkhmU0VoNXQ5Q0dZ SS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvWlR5NHAxRU51YmJCb24ySGZTRWg1dDlDR1lJLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUVG Qzk0L0E4Q0QwMTY0OTREQTExRUY4OTA4NkQyMUM0RjlBRTAyL1pUeTRwMUVOdWJi Qm9uMkhmU0VoNXQ5Q0dZSS5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBADze0M0wrtZqoJ413NQTN1W5iLjR+/kBU8tI22BQSmIU31iO7zpD04aV OxQ7KtufvCf0ZVprVjzwooAnJJB7EukIyN8lp9Epc++aT6nA3SQTwqMjjSW5qRSo 4qhF1Nkgb3pIjQj9R225l/ta/dQUwnAwehDL7d6xkYKpSETylvvklzbsF8IkTc5G Mf6ZtLmuEZVRn6Sv9zNbtKhy63KtLgcOBODZO3J18vsieEdJvnZnvDB0rKMKvCrj DJ8zTY13rRMu5d0qVTxiLz3zRrpqTWO48+6qcidzehPx/5W2gTK6+w2W/2Rel4rx dwL4PPufzJUvfd0BOgF6I6VGFZ/BQRU= -----END CERTIFICATE-----Generated at Sat Apr 26 12:28:38 2025 by rpki-client