$ rpki-client -vvf rpki.apnic.net/member_repository/A91F8F9B/F902E5305DBD11EF8A06ED40C4F9AE02/z7sDj9uDhlQgSWKYCtIhyUFdXP8.mft File: z7sDj9uDhlQgSWKYCtIhyUFdXP8.mft (raw, json) Hash identifier: 7o/cod0OvT/bsIoU4HDLADmmsmVORqzp8yKR7TvisSA= Subject key identifier: 24:6E:3A:0E:20:FF:C5:8A:23:AF:6A:A5:B1:46:78:75:C8:AC:C4:81 Authority key identifier: CF:BB:03:8F:DB:83:86:54:20:49:62:98:0A:D2:21:C9:41:5D:5C:FF Certificate issuer: /CN=A91F8F9B/serialNumber=CFBB038FDB838654204962980AD221C9415D5CFF Certificate serial: 82 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/z7sDj9uDhlQgSWKYCtIhyUFdXP8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F8F9B/F902E5305DBD11EF8A06ED40C4F9AE02/z7sDj9uDhlQgSWKYCtIhyUFdXP8.mft Manifest number: 81 Signing time: Fri 25 Apr 2025 05:36:39 +0000 Manifest this update: Fri 25 Apr 2025 05:36:38 +0000 Manifest next update: Fri 02 May 2025 05:36:38 +0000 Files and hashes: 1: z7sDj9uDhlQgSWKYCtIhyUFdXP8.crl (hash: lNbRPr+V4o3AJWsWJgyZUjRIs7Jm/s4icqCT0jLNsUQ=) 2: 7143C5B85DBF11EFB8714857C4F9AE02.roa (hash: ap2qykakUMtuugznllb9ElqWzxnqoH122Li4BLMbH9U=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F8F9B/F902E5305DBD11EF8A06ED40C4F9AE02/z7sDj9uDhlQgSWKYCtIhyUFdXP8.crl rsync://rpki.apnic.net/member_repository/A91F8F9B/F902E5305DBD11EF8A06ED40C4F9AE02/z7sDj9uDhlQgSWKYCtIhyUFdXP8.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/z7sDj9uDhlQgSWKYCtIhyUFdXP8.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 02 May 2025 05:36:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 130 (0x82) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F8F9B, serialNumber=CFBB038FDB838654204962980AD221C9415D5CFF Validity Not Before: Apr 25 05:36:38 2025 GMT Not After : May 2 05:36:38 2025 GMT Subject: CN=680b1f67-e06b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ab:f8:1d:51:f6:b8:51:63:34:84:da:8f:06:67: 70:37:d8:e6:8a:c9:3d:aa:2b:93:90:98:1f:aa:bd: b3:4d:6a:10:75:af:a4:4f:f7:ef:af:96:09:98:b6: 8f:c4:96:41:e6:79:a8:4c:f8:38:ba:bb:96:b3:b8: 6a:c3:a7:70:89:21:37:0e:e7:7c:0a:a2:9f:ae:b6: 5f:73:70:aa:de:42:46:de:69:ea:0e:a8:a6:43:88: 54:b6:33:6a:72:f7:6c:bf:47:66:4a:60:92:7a:63: 5c:1e:c4:24:7b:37:1b:2a:eb:0a:f5:af:6e:12:44: 2b:e9:b3:38:3a:18:10:18:86:d2:5b:1d:89:2b:ea: 56:24:58:7c:01:a0:a8:32:f8:d5:9e:b4:b9:65:6b: e3:53:94:bc:73:da:bb:ea:be:a9:11:4c:8f:99:f6: ac:46:f6:fd:c4:3f:a6:64:f7:8a:c4:ff:6a:80:be: 64:51:77:2f:56:09:ce:fa:75:37:d3:23:8b:99:8f: 27:c0:f1:4b:8a:5d:56:e3:76:c4:63:a1:29:42:17: 89:ca:e9:da:0f:6c:ac:2d:94:0d:b8:0e:2c:a3:0c: 24:1a:09:80:c4:ab:5c:a5:b0:85:f8:fb:4d:76:5a: 21:25:46:77:b6:11:9b:49:4b:90:fd:ba:05:9a:09: 1e:4d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 24:6E:3A:0E:20:FF:C5:8A:23:AF:6A:A5:B1:46:78:75:C8:AC:C4:81 X509v3 Authority Key Identifier: keyid:CF:BB:03:8F:DB:83:86:54:20:49:62:98:0A:D2:21:C9:41:5D:5C:FF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F8F9B/F902E5305DBD11EF8A06ED40C4F9AE02/z7sDj9uDhlQgSWKYCtIhyUFdXP8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/z7sDj9uDhlQgSWKYCtIhyUFdXP8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F8F9B/F902E5305DBD11EF8A06ED40C4F9AE02/z7sDj9uDhlQgSWKYCtIhyUFdXP8.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a7:2d:f7:43:23:92:aa:25:f5:17:f5:5d:e7:e0:a0:40:ad:47: 7e:fc:22:fb:2b:b7:a3:64:58:ef:4b:89:56:6d:30:ea:0b:79: 1d:c9:07:8a:36:e5:ab:b7:a2:7f:74:14:51:12:a5:83:e4:e0: 66:2e:98:e6:ae:0c:7b:ba:ad:c7:58:89:57:02:72:2b:d2:36: 95:26:bb:39:26:2d:9e:71:50:51:52:5f:dc:ab:c8:2d:1c:d6: 14:f2:1d:92:49:7b:c8:74:c5:a0:e7:92:28:ee:ea:95:dc:5c: d9:3a:31:07:9c:90:3c:52:44:5b:33:a7:e8:76:80:df:16:47: c0:a4:ee:e3:2d:bf:aa:b5:38:41:ef:0f:24:85:b3:bc:0c:cf: 3b:f7:78:7f:31:86:67:74:fc:01:0d:e6:6e:5b:3f:1d:6e:77: 93:e9:e8:f3:ca:b6:aa:50:d2:ee:50:8a:6e:11:ee:46:04:7d: 42:f2:5e:08:02:7f:54:76:81:2f:66:49:d3:f2:2b:fa:2b:e8: e0:11:86:f5:b7:c5:8d:be:bb:99:aa:1a:1c:9e:2b:64:89:de: 28:d0:81:f8:91:ae:54:dc:70:55:a0:77:d7:c4:df:d3:f4:1b: b2:25:41:84:22:e1:77:bc:0e:cd:56:6a:86:1b:c9:3c:18:b9: 69:4c:73:07 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAIIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjhGOUIxMTAvBgNVBAUTKENGQkIwMzhGREI4Mzg2NTQyMDQ5NjI5ODBBRDIyMUM5 NDE1RDVDRkYwHhcNMjUwNDI1MDUzNjM4WhcNMjUwNTAyMDUzNjM4WjAYMRYwFAYD VQQDEw02ODBiMWY2Ny1lMDZiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAq/gdUfa4UWM0hNqPBmdwN9jmisk9qiuTkJgfqr2zTWoQda+kT/fvr5YJmLaP xJZB5nmoTPg4uruWs7hqw6dwiSE3Dud8CqKfrrZfc3Cq3kJG3mnqDqimQ4hUtjNq cvdsv0dmSmCSemNcHsQkezcbKusK9a9uEkQr6bM4OhgQGIbSWx2JK+pWJFh8AaCo MvjVnrS5ZWvjU5S8c9q76r6pEUyPmfasRvb9xD+mZPeKxP9qgL5kUXcvVgnO+nU3 0yOLmY8nwPFLil1W43bEY6EpQheJyunaD2ysLZQNuA4sowwkGgmAxKtcpbCF+PtN dlohJUZ3thGbSUuQ/boFmgkeTQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFCRuOg4g /8WKI69qpbFGeHXIrMSBMB8GA1UdIwQYMBaAFM+7A4/bg4ZUIElimArSIclBXVz/ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGOEY5Qi9GOTAyRTUzMDVE QkQxMUVGOEEwNkVENDBDNEY5QUUwMi96N3NEajl1RGhsUWdTV0tZQ3RJaHlVRmRY UDguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL3o3c0RqOXVEaGxRZ1NXS1lDdEloeVVGZFhQOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG OEY5Qi9GOTAyRTUzMDVEQkQxMUVGOEEwNkVENDBDNEY5QUUwMi96N3NEajl1RGhs UWdTV0tZQ3RJaHlVRmRYUDgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCnLfdDI5KqJfUX9V3n4KBArUd+/CL7K7ejZFjvS4lWbTDqC3kdyQeK NuWrt6J/dBRREqWD5OBmLpjmrgx7uq3HWIlXAnIr0jaVJrs5Ji2ecVBRUl/cq8gt HNYU8h2SSXvIdMWg55Io7uqV3FzZOjEHnJA8UkRbM6fodoDfFkfApO7jLb+qtThB 7w8khbO8DM8793h/MYZndPwBDeZuWz8dbneT6ejzyraqUNLuUIpuEe5GBH1C8l4I An9UdoEvZknT8iv6K+jgEYb1t8WNvruZqhocnitkid4o0IH4ka5U3HBVoHfXxN/T 9BuyJUGEIuF3vA7NVmqGG8k8GLlpTHMH -----END CERTIFICATE-----Generated at Sat Apr 26 12:32:55 2025 by rpki-client