$ rpki-client -vvf rpki.apnic.net/member_repository/A911F7D0/66A29982131411E9834F773BC4F9AE02/ZfzR8nTT59WOTQyihVjTS2sVLWc.mft File: ZfzR8nTT59WOTQyihVjTS2sVLWc.mft (raw, json) Hash identifier: 9OIlQzJWqaWi7Itefmu7QzmkBMqGNIsL56UszCZnWNI= Subject key identifier: F3:19:7F:21:73:63:98:C6:1C:3F:91:CE:F3:13:35:7A:05:EC:49:0C Authority key identifier: 65:FC:D1:F2:74:D3:E7:D5:8E:4D:0C:A2:85:58:D3:4B:6B:15:2D:67 Certificate issuer: /CN=A911F7D0/serialNumber=65FCD1F274D3E7D58E4D0CA28558D34B6B152D67 Certificate serial: 110E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ZfzR8nTT59WOTQyihVjTS2sVLWc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911F7D0/66A29982131411E9834F773BC4F9AE02/ZfzR8nTT59WOTQyihVjTS2sVLWc.mft Manifest number: 1106 Signing time: Sun 04 May 2025 17:11:17 +0000 Manifest this update: Sun 04 May 2025 17:11:17 +0000 Manifest next update: Sun 11 May 2025 17:11:17 +0000 Files and hashes: 1: ZfzR8nTT59WOTQyihVjTS2sVLWc.crl (hash: 072vYidG2DudMg6YzZrrDLGKiHrwswR5tarz3NVNRH0=) 2: 1BFF84B0131611E991379440C4F9AE02.roa (hash: 9v5xAom6t8Cg5dPY2+UVNWnLY+IwQ2L6vmEfACxJwlI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911F7D0/66A29982131411E9834F773BC4F9AE02/ZfzR8nTT59WOTQyihVjTS2sVLWc.crl rsync://rpki.apnic.net/member_repository/A911F7D0/66A29982131411E9834F773BC4F9AE02/ZfzR8nTT59WOTQyihVjTS2sVLWc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ZfzR8nTT59WOTQyihVjTS2sVLWc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 11 May 2025 17:11:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4366 (0x110e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911F7D0, serialNumber=65FCD1F274D3E7D58E4D0CA28558D34B6B152D67 Validity Not Before: May 4 17:11:17 2025 GMT Not After : May 11 17:11:17 2025 GMT Subject: CN=68179fb5-b541 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d1:9f:b1:54:3b:77:06:17:c1:99:52:ac:76:7e: 0e:2b:ff:bc:e5:8a:c0:29:33:26:21:aa:72:e8:d6: 23:3f:a1:a1:f7:5a:95:e7:8e:89:f1:c2:d4:4f:2d: 87:d1:c2:44:51:cd:cb:d5:fa:8f:34:3a:3f:10:13: e1:fe:a8:36:3a:f0:83:29:49:23:d8:fd:d9:00:eb: 92:1d:fa:5c:ba:30:ba:8d:f0:70:79:b2:1f:40:98: 62:65:dc:fb:37:81:9a:9b:58:6f:5c:cf:f3:09:6a: e8:a0:62:7b:1f:59:3b:4b:c6:19:73:d9:0c:dc:fc: de:a2:1a:00:a1:e0:c3:61:e3:94:34:e8:2c:f0:66: 29:ab:7b:76:5d:39:4a:2f:35:23:d5:fd:51:ce:b9: 67:4c:c9:b2:2e:de:e3:d2:17:3c:4f:9b:83:ef:a3: 1f:07:f3:45:51:8a:a2:1f:84:2b:f4:d8:7a:17:6c: 53:40:ea:43:f9:c3:07:cb:19:88:31:85:7b:0d:9c: b4:ad:8e:40:18:47:15:81:0f:c6:f1:8f:92:32:dc: 05:cd:dd:0b:25:e5:f1:7f:ae:5f:68:a4:6b:04:91: 83:69:b6:3d:27:04:b1:af:f1:c9:13:62:8e:aa:2c: 9f:16:1f:71:ef:1a:83:49:e1:8b:b1:1e:88:9c:c9: 01:f9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F3:19:7F:21:73:63:98:C6:1C:3F:91:CE:F3:13:35:7A:05:EC:49:0C X509v3 Authority Key Identifier: keyid:65:FC:D1:F2:74:D3:E7:D5:8E:4D:0C:A2:85:58:D3:4B:6B:15:2D:67 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911F7D0/66A29982131411E9834F773BC4F9AE02/ZfzR8nTT59WOTQyihVjTS2sVLWc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ZfzR8nTT59WOTQyihVjTS2sVLWc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911F7D0/66A29982131411E9834F773BC4F9AE02/ZfzR8nTT59WOTQyihVjTS2sVLWc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 67:43:0c:8e:4f:fd:e2:95:b2:24:06:e7:39:7c:55:0e:36:78: 0a:11:a8:50:cf:9f:cc:52:19:db:40:18:2a:fd:64:88:e0:50: 51:31:f9:8a:cb:2e:94:e5:b3:dc:29:a5:1e:ec:4a:39:1f:0e: 24:9d:8c:4b:c9:74:25:cd:9e:c6:da:e6:e1:81:7c:62:5d:46: d5:bd:11:61:9d:ae:de:e5:a6:ee:f7:76:3c:9d:71:2c:e0:84: c1:54:95:17:09:ef:d6:38:52:07:b0:5e:0a:c5:d1:82:1c:b4: d0:c8:13:be:d6:bc:bf:92:fe:ff:85:aa:7b:90:ab:fe:b1:78: 7e:44:ed:5b:68:cf:44:12:fe:08:3c:65:74:c4:c7:31:2d:fc: 6d:f2:0e:98:ac:aa:0d:9b:f5:cb:bd:25:f4:5e:1d:d0:fa:33: d1:95:fa:0c:d3:01:60:f3:09:63:ba:b2:fc:b5:98:24:b0:0d: 7f:d5:e1:1e:3b:1e:dc:b2:c4:29:49:fa:92:e0:72:e2:f4:2b: 97:68:c9:4e:73:dd:4f:51:d3:be:f3:8c:a0:3c:5a:b4:1d:fc: d8:5c:3a:19:59:46:6f:84:b9:c7:75:71:c0:e6:f5:e5:36:03: 0f:2e:53:31:c8:2c:ce:5e:2f:94:88:94:d8:5b:4d:9c:9f:d2: 61:b5:6f:e4 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICEQ4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MUY3RDAxMTAvBgNVBAUTKDY1RkNEMUYyNzREM0U3RDU4RTREMENBMjg1NThEMzRC NkIxNTJENjcwHhcNMjUwNTA0MTcxMTE3WhcNMjUwNTExMTcxMTE3WjAYMRYwFAYD VQQDEw02ODE3OWZiNS1iNTQxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0Z+xVDt3BhfBmVKsdn4OK/+85YrAKTMmIapy6NYjP6Gh91qV546J8cLUTy2H 0cJEUc3L1fqPNDo/EBPh/qg2OvCDKUkj2P3ZAOuSHfpcujC6jfBwebIfQJhiZdz7 N4Gam1hvXM/zCWrooGJ7H1k7S8YZc9kM3PzeohoAoeDDYeOUNOgs8GYpq3t2XTlK LzUj1f1RzrlnTMmyLt7j0hc8T5uD76MfB/NFUYqiH4Qr9Nh6F2xTQOpD+cMHyxmI MYV7DZy0rY5AGEcVgQ/G8Y+SMtwFzd0LJeXxf65faKRrBJGDabY9JwSxr/HJE2KO qiyfFh9x7xqDSeGLsR6InMkB+QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFPMZfyFz Y5jGHD+RzvMTNXoF7EkMMB8GA1UdIwQYMBaAFGX80fJ00+fVjk0MooVY00trFS1n MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExRjdEMC82NkEyOTk4MjEz MTQxMUU5ODM0Rjc3M0JDNEY5QUUwMi9aZnpSOG5UVDU5V09UUXlpaFZqVFMyc1ZM V2MuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1pmelI4blRUNTlXT1RReWloVmpUUzJzVkxXYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx RjdEMC82NkEyOTk4MjEzMTQxMUU5ODM0Rjc3M0JDNEY5QUUwMi9aZnpSOG5UVDU5 V09UUXlpaFZqVFMyc1ZMV2MubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBnQwyOT/3ilbIkBuc5fFUONngKEahQz5/MUhnbQBgq/WSI4FBRMfmK yy6U5bPcKaUe7Eo5Hw4knYxLyXQlzZ7G2ubhgXxiXUbVvRFhna7e5abu93Y8nXEs 4ITBVJUXCe/WOFIHsF4KxdGCHLTQyBO+1ry/kv7/hap7kKv+sXh+RO1baM9EEv4I PGV0xMcxLfxt8g6YrKoNm/XLvSX0Xh3Q+jPRlfoM0wFg8wljurL8tZgksA1/1eEe Ox7cssQpSfqS4HLi9CuXaMlOc91PUdO+84ygPFq0HfzYXDoZWUZvhLnHdXHA5vXl NgMPLlMxyCzOXi+UiJTYW02cn9JhtW/k -----END CERTIFICATE-----Generated at Mon May 5 02:57:38 2025 by rpki-client