$ rpki-client -vvf rpki.apnic.net/member_repository/A9129D4A/248103A4AC9611E6A561A315C4F9AE02/ZGscQagf9-WCtezcHO9UzmEVJWM.mft File: ZGscQagf9-WCtezcHO9UzmEVJWM.mft (raw, json) Hash identifier: S2RRIzhvAlfyAWPZk0/mVZ75+K+9tduZDgaTopqzLBI= Subject key identifier: 83:65:B1:77:08:1C:7A:D5:B1:5D:C2:15:EE:F1:A1:94:AA:88:77:5F Authority key identifier: 64:6B:1C:41:A8:1F:F7:E5:82:B5:EC:DC:1C:EF:54:CE:61:15:25:63 Certificate issuer: /CN=A9129D4A/serialNumber=646B1C41A81FF7E582B5ECDC1CEF54CE61152563 Certificate serial: 1D54 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ZGscQagf9-WCtezcHO9UzmEVJWM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9129D4A/248103A4AC9611E6A561A315C4F9AE02/ZGscQagf9-WCtezcHO9UzmEVJWM.mft Manifest number: 1D49 Signing time: Mon 12 May 2025 16:06:02 +0000 Manifest this update: Mon 12 May 2025 16:06:01 +0000 Manifest next update: Mon 19 May 2025 16:06:01 +0000 Files and hashes: 1: ZGscQagf9-WCtezcHO9UzmEVJWM.crl (hash: wGHhUzhgHH9xlrRwYmIOe1f1vA24aERD1LDx2hERyOw=) 2: 810AF2B0AC9611E6A37EC415C4F9AE02.roa (hash: djmV6ni7hy6C8m5F1gtlxw3KFQjLB6LT9Z3a9xMILMs=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9129D4A/248103A4AC9611E6A561A315C4F9AE02/ZGscQagf9-WCtezcHO9UzmEVJWM.crl rsync://rpki.apnic.net/member_repository/A9129D4A/248103A4AC9611E6A561A315C4F9AE02/ZGscQagf9-WCtezcHO9UzmEVJWM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ZGscQagf9-WCtezcHO9UzmEVJWM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 19 May 2025 16:06:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7508 (0x1d54) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9129D4A, serialNumber=646B1C41A81FF7E582B5ECDC1CEF54CE61152563 Validity Not Before: May 12 16:06:01 2025 GMT Not After : May 19 16:06:01 2025 GMT Subject: CN=68221c6a-7ce9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d3:af:07:aa:87:73:6b:2d:4a:1a:e1:8d:c6:ea: 76:75:07:dd:6d:79:dd:0c:7c:3f:aa:0b:e5:14:00: 9b:a4:79:3b:3c:7a:8a:07:db:5c:e7:83:30:ef:89: 1c:c3:da:db:ad:a8:58:75:4a:fa:ac:00:ad:71:97: dd:10:d8:fc:97:9b:e5:d3:d9:88:92:39:46:56:82: f6:86:c2:cc:a9:37:b3:b1:4e:79:b3:ed:9f:09:4e: 6d:5d:57:76:35:7f:6d:f3:9f:26:7f:d5:c9:80:dc: f9:ab:e7:41:e1:05:30:ab:29:56:1c:cb:8e:b8:0e: 71:32:5b:2b:39:83:cf:4f:fd:77:58:c4:d3:c8:84: 76:4d:2a:63:fa:99:a3:71:8f:2d:71:f8:9f:b2:ab: 34:2b:18:3d:b6:9e:f4:2b:84:a2:60:03:de:7b:1d: 46:f0:4d:66:f6:c9:6d:7c:ce:98:6a:ac:c0:da:a4: 11:a4:6b:e4:7c:41:e0:5a:67:38:97:d2:40:17:e6: 6a:5e:20:36:c2:ee:60:c7:3b:20:74:1a:6c:c1:92: 52:ed:13:4f:7d:b9:a4:ca:db:3c:f0:e5:49:1f:88: 71:9e:40:11:ce:1f:ca:6c:0e:af:61:ba:3d:5a:9a: 67:76:e7:c9:8c:c4:10:85:6a:05:75:98:4b:22:05: 6a:8b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 83:65:B1:77:08:1C:7A:D5:B1:5D:C2:15:EE:F1:A1:94:AA:88:77:5F X509v3 Authority Key Identifier: keyid:64:6B:1C:41:A8:1F:F7:E5:82:B5:EC:DC:1C:EF:54:CE:61:15:25:63 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9129D4A/248103A4AC9611E6A561A315C4F9AE02/ZGscQagf9-WCtezcHO9UzmEVJWM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ZGscQagf9-WCtezcHO9UzmEVJWM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9129D4A/248103A4AC9611E6A561A315C4F9AE02/ZGscQagf9-WCtezcHO9UzmEVJWM.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 67:14:9b:32:08:2c:ea:dd:9a:19:69:e9:08:ce:0e:7b:f5:c3: be:bd:92:9d:d4:55:85:0d:7a:27:0d:e1:5a:cb:1e:9e:25:4e: 99:1b:ee:fe:d9:3c:8e:c4:db:04:8f:7a:b2:8a:d1:a4:e1:97: b2:83:8a:cb:a1:9f:8e:80:07:17:f8:6f:6e:a9:34:3e:58:b9: 0f:9e:15:ca:9a:c3:59:c2:bc:b7:b6:08:c1:44:35:17:e9:26: 92:ad:b1:3c:95:7d:35:3c:3e:d2:54:fa:8e:36:98:ad:15:5d: e7:8a:3a:3c:f6:17:a4:bb:62:13:5e:b5:0c:b2:b6:11:04:fb: b9:d1:51:e1:49:33:9a:90:aa:46:0c:f3:37:02:43:2d:7e:2c: 6a:d1:67:78:da:a8:c4:85:e7:66:29:5a:e0:dc:21:24:b3:b4: b2:13:14:9a:a1:97:d8:fe:ce:84:6b:d0:8b:bd:bc:67:9f:e8: cb:b9:ec:6a:f1:e5:0e:8d:72:ff:27:0e:d5:7f:6b:76:84:06: 08:7f:8b:69:2b:8f:10:8d:67:aa:f1:80:18:fa:ca:b3:e8:02: 49:c7:4f:1f:3c:9c:29:49:e7:d2:f0:b1:2d:cb:43:b7:d7:49: 09:e1:26:2d:9d:4d:f4:0f:a5:42:27:d4:a8:5c:3b:49:04:97: 23:78:80:1d -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICHVQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MjlENEExMTAvBgNVBAUTKDY0NkIxQzQxQTgxRkY3RTU4MkI1RUNEQzFDRUY1NENF NjExNTI1NjMwHhcNMjUwNTEyMTYwNjAxWhcNMjUwNTE5MTYwNjAxWjAYMRYwFAYD VQQDEw02ODIyMWM2YS03Y2U5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA068Hqodzay1KGuGNxup2dQfdbXndDHw/qgvlFACbpHk7PHqKB9tc54Mw74kc w9rbrahYdUr6rACtcZfdENj8l5vl09mIkjlGVoL2hsLMqTezsU55s+2fCU5tXVd2 NX9t858mf9XJgNz5q+dB4QUwqylWHMuOuA5xMlsrOYPPT/13WMTTyIR2TSpj+pmj cY8tcfifsqs0Kxg9tp70K4SiYAPeex1G8E1m9sltfM6YaqzA2qQRpGvkfEHgWmc4 l9JAF+ZqXiA2wu5gxzsgdBpswZJS7RNPfbmkyts88OVJH4hxnkARzh/KbA6vYbo9 WppndufJjMQQhWoFdZhLIgVqiwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFINlsXcI HHrVsV3CFe7xoZSqiHdfMB8GA1UdIwQYMBaAFGRrHEGoH/flgrXs3BzvVM5hFSVj MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyOUQ0QS8yNDgxMDNBNEFD OTYxMUU2QTU2MUEzMTVDNEY5QUUwMi9aR3NjUWFnZjktV0N0ZXpjSE85VXptRVZK V00uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1pHc2NRYWdmOS1XQ3RlemNITzlVem1FVkpXTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy OUQ0QS8yNDgxMDNBNEFDOTYxMUU2QTU2MUEzMTVDNEY5QUUwMi9aR3NjUWFnZjkt V0N0ZXpjSE85VXptRVZKV00ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBnFJsyCCzq3ZoZaekIzg579cO+vZKd1FWFDXonDeFayx6eJU6ZG+7+ 2TyOxNsEj3qyitGk4Zeyg4rLoZ+OgAcX+G9uqTQ+WLkPnhXKmsNZwry3tgjBRDUX 6SaSrbE8lX01PD7SVPqONpitFV3nijo89heku2ITXrUMsrYRBPu50VHhSTOakKpG DPM3AkMtfixq0Wd42qjEhedmKVrg3CEks7SyExSaoZfY/s6Ea9CLvbxnn+jLuexq 8eUOjXL/Jw7Vf2t2hAYIf4tpK48QjWeq8YAY+sqz6AJJx08fPJwpSefS8LEty0O3 10kJ4SYtnU30D6VCJ9SoXDtJBJcjeIAd -----END CERTIFICATE-----Generated at Tue May 13 18:51:12 2025 by rpki-client