$ rpki-client -vvf rpki.apnic.net/member_repository/A9136C5E/3EA6A250B97011ED8918467CC4F9AE02/znA-TvnfLr44ZQpwSkoBnCpmQ1A.mft File: znA-TvnfLr44ZQpwSkoBnCpmQ1A.mft (raw, json) Hash identifier: UXD3bo2EGYr5OHOqEKl8xz+rZHIFqGA4ISwHPyLpt+g= Subject key identifier: 17:72:F4:FD:F5:1F:48:39:9E:E9:98:02:C5:93:1A:44:93:98:E4:F6 Authority key identifier: CE:70:3E:4E:F9:DF:2E:BE:38:65:0A:70:4A:4A:01:9C:2A:66:43:50 Certificate issuer: /CN=A9136C5E/serialNumber=CE703E4EF9DF2EBE38650A704A4A019C2A664350 Certificate serial: 01A2 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/znA-TvnfLr44ZQpwSkoBnCpmQ1A.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9136C5E/3EA6A250B97011ED8918467CC4F9AE02/znA-TvnfLr44ZQpwSkoBnCpmQ1A.mft Manifest number: 019E Signing time: Tue 13 May 2025 02:37:08 +0000 Manifest this update: Tue 13 May 2025 02:37:07 +0000 Manifest next update: Tue 20 May 2025 02:37:07 +0000 Files and hashes: 1: znA-TvnfLr44ZQpwSkoBnCpmQ1A.crl (hash: J+sYSpDeuttWathHZPVcLSWlg50l/tEpb70/CZyX7GE=) 2: 9BCEEFF4BC6911ED9B0FC554C4F9AE02.roa (hash: vkUKnag58zCpuCP8+f6HBj43+NKzxFLQMFl2RAEd1t8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9136C5E/3EA6A250B97011ED8918467CC4F9AE02/znA-TvnfLr44ZQpwSkoBnCpmQ1A.crl rsync://rpki.apnic.net/member_repository/A9136C5E/3EA6A250B97011ED8918467CC4F9AE02/znA-TvnfLr44ZQpwSkoBnCpmQ1A.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/znA-TvnfLr44ZQpwSkoBnCpmQ1A.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 20 May 2025 02:37:06 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 418 (0x1a2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9136C5E, serialNumber=CE703E4EF9DF2EBE38650A704A4A019C2A664350 Validity Not Before: May 13 02:37:07 2025 GMT Not After : May 20 02:37:07 2025 GMT Subject: CN=6822b053-19bb Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e2:3f:9b:58:e5:b5:8f:7f:3b:3c:3a:78:9e:30: 45:f3:c0:c4:8a:9d:cb:3c:47:35:81:14:14:55:53: e6:6d:46:ac:c6:8a:22:e1:c7:50:c9:d9:bf:75:b8: 51:46:33:7b:52:b9:3c:7d:2a:d3:f4:a5:7c:9c:be: 72:7b:2c:1a:cf:af:7d:da:ee:95:bf:cf:b6:14:48: 38:fa:00:dd:5c:ef:11:3e:c0:8b:4a:17:d1:dc:9a: bc:2d:7b:3a:63:09:94:a3:71:e1:fe:66:d0:d1:19: 81:98:fe:b5:2f:32:dd:6d:1e:3a:8d:36:ba:6f:60: ea:c1:62:74:52:80:f4:50:6b:86:b9:43:7f:d9:4d: bb:68:94:d0:be:bd:0f:b4:df:6e:48:f4:c8:f5:56: d5:b2:26:48:e9:2b:b3:a8:a0:9c:e2:27:60:85:73: a4:60:24:0e:86:83:d4:ff:a4:d9:2f:23:3e:e1:35: 27:1c:36:1c:24:18:55:59:29:b1:88:ae:0c:7a:38: d2:f2:38:a7:6d:63:9a:07:3d:cf:14:35:23:d6:8c: 52:f8:80:d2:5f:f8:4c:fd:80:0b:f3:3e:43:4f:13: 64:6b:35:e5:a1:95:a7:72:8c:ee:74:59:79:46:0f: 81:7a:e5:bc:8d:6b:cb:c9:cf:53:07:c5:1a:40:bf: a5:09 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 17:72:F4:FD:F5:1F:48:39:9E:E9:98:02:C5:93:1A:44:93:98:E4:F6 X509v3 Authority Key Identifier: keyid:CE:70:3E:4E:F9:DF:2E:BE:38:65:0A:70:4A:4A:01:9C:2A:66:43:50 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9136C5E/3EA6A250B97011ED8918467CC4F9AE02/znA-TvnfLr44ZQpwSkoBnCpmQ1A.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/znA-TvnfLr44ZQpwSkoBnCpmQ1A.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9136C5E/3EA6A250B97011ED8918467CC4F9AE02/znA-TvnfLr44ZQpwSkoBnCpmQ1A.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 48:2a:2d:eb:3b:be:ad:d1:86:15:76:04:8e:96:62:af:0b:75: 33:72:a4:4c:83:4c:ea:6f:99:df:97:c6:36:f5:44:d0:ad:40: 6b:ac:bc:98:5e:c2:95:84:59:8d:98:cf:e5:dc:5e:7a:a8:f0: 81:c8:10:f4:c1:20:b6:f9:3e:5e:ff:aa:83:e4:21:1c:30:fd: 2a:39:69:a8:6c:e6:0f:52:2e:e1:e2:75:45:f7:09:07:21:7a: 58:9d:4d:c5:e2:7d:76:77:70:bf:f9:86:da:12:30:8b:82:0e: f7:79:0e:0e:56:9c:dd:c1:e4:ee:88:a5:13:64:4c:47:62:63: f3:77:69:49:2a:5d:71:97:d8:9a:50:7a:5d:71:b2:dc:f1:73: c7:f2:c0:2a:84:0f:1f:71:de:2b:bb:26:5e:47:bf:af:57:6e: 1b:0d:c0:57:98:57:e1:70:5a:ac:93:e5:fc:9b:06:bd:bf:e2: e8:52:be:c7:1c:1a:ed:e8:b7:8b:8b:3f:77:4b:9f:60:43:9f: fa:8e:b0:8f:dc:f1:f9:87:8e:24:89:d1:07:3e:12:b8:c9:72: 9f:08:29:e0:4e:b2:67:1d:89:d6:3d:a3:58:ae:64:a2:7b:01: 8b:9b:6f:ad:11:6d:4d:e0:a1:fb:c7:e4:ed:24:d0:68:d3:67: ab:08:0a:aa -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAaIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MzZDNUUxMTAvBgNVBAUTKENFNzAzRTRFRjlERjJFQkUzODY1MEE3MDRBNEEwMTlD MkE2NjQzNTAwHhcNMjUwNTEzMDIzNzA3WhcNMjUwNTIwMDIzNzA3WjAYMRYwFAYD VQQDEw02ODIyYjA1My0xOWJiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA4j+bWOW1j387PDp4njBF88DEip3LPEc1gRQUVVPmbUasxooi4cdQydm/dbhR RjN7Urk8fSrT9KV8nL5yeywaz6992u6Vv8+2FEg4+gDdXO8RPsCLShfR3Jq8LXs6 YwmUo3Hh/mbQ0RmBmP61LzLdbR46jTa6b2DqwWJ0UoD0UGuGuUN/2U27aJTQvr0P tN9uSPTI9VbVsiZI6SuzqKCc4idghXOkYCQOhoPU/6TZLyM+4TUnHDYcJBhVWSmx iK4MejjS8jinbWOaBz3PFDUj1oxS+IDSX/hM/YAL8z5DTxNkazXloZWncozudFl5 Rg+BeuW8jWvLyc9TB8UaQL+lCQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFBdy9P31 H0g5numYAsWTGkSTmOT2MB8GA1UdIwQYMBaAFM5wPk753y6+OGUKcEpKAZwqZkNQ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzNkM1RS8zRUE2QTI1MEI5 NzAxMUVEODkxODQ2N0NDNEY5QUUwMi96bkEtVHZuZkxyNDRaUXB3U2tvQm5DcG1R MUEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3puQS1Udm5mTHI0NFpRcHdTa29CbkNwbVExQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz NkM1RS8zRUE2QTI1MEI5NzAxMUVEODkxODQ2N0NDNEY5QUUwMi96bkEtVHZuZkxy NDRaUXB3U2tvQm5DcG1RMUEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBIKi3rO76t0YYVdgSOlmKvC3UzcqRMg0zqb5nfl8Y29UTQrUBrrLyY XsKVhFmNmM/l3F56qPCByBD0wSC2+T5e/6qD5CEcMP0qOWmobOYPUi7h4nVF9wkH IXpYnU3F4n12d3C/+YbaEjCLgg73eQ4OVpzdweTuiKUTZExHYmPzd2lJKl1xl9ia UHpdcbLc8XPH8sAqhA8fcd4ruyZeR7+vV24bDcBXmFfhcFqsk+X8mwa9v+LoUr7H HBrt6LeLiz93S59gQ5/6jrCP3PH5h44kidEHPhK4yXKfCCngTrJnHYnWPaNYrmSi ewGLm2+tEW1N4KH7x+TtJNBo02erCAqq -----END CERTIFICATE-----Generated at Wed May 14 17:15:19 2025 by rpki-client