$ rpki-client -vvf rpki.apnic.net/member_repository/A914B45F/40BB15742F6511EE95FDED56C4F9AE02/z64jGpiXN_YdrZV8wk0hNYWBjtw.mft File: z64jGpiXN_YdrZV8wk0hNYWBjtw.mft (raw, json) Hash identifier: eiZzTyLMCi75mDimRXeL7k+xiW86jAmkzIX1w8DxIuo= Subject key identifier: 59:7C:D5:D6:6E:DE:BA:20:51:DD:72:4F:68:C3:D0:C9:A3:01:D9:B8 Authority key identifier: CF:AE:23:1A:98:97:37:F6:1D:AD:95:7C:C2:4D:21:35:85:81:8E:DC Certificate issuer: /CN=A914B45F/serialNumber=CFAE231A989737F61DAD957CC24D213585818EDC Certificate serial: 0153 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/z64jGpiXN_YdrZV8wk0hNYWBjtw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914B45F/40BB15742F6511EE95FDED56C4F9AE02/z64jGpiXN_YdrZV8wk0hNYWBjtw.mft Manifest number: 0151 Signing time: Sat 17 May 2025 03:45:47 +0000 Manifest this update: Sat 17 May 2025 03:45:46 +0000 Manifest next update: Sat 24 May 2025 03:45:46 +0000 Files and hashes: 1: z64jGpiXN_YdrZV8wk0hNYWBjtw.crl (hash: YYqLeXpV6QhDosxzHG483LWFmfOKVUmfuCtZ4HD2egQ=) 2: 578C92D62F6611EE9CAFAA58C4F9AE02.roa (hash: Km7Ntr3HPW+9p2/xgcR3/NDs3gM06IRtzM1XksYLFiE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914B45F/40BB15742F6511EE95FDED56C4F9AE02/z64jGpiXN_YdrZV8wk0hNYWBjtw.crl rsync://rpki.apnic.net/member_repository/A914B45F/40BB15742F6511EE95FDED56C4F9AE02/z64jGpiXN_YdrZV8wk0hNYWBjtw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/z64jGpiXN_YdrZV8wk0hNYWBjtw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 24 May 2025 03:45:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 339 (0x153) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914B45F, serialNumber=CFAE231A989737F61DAD957CC24D213585818EDC Validity Not Before: May 17 03:45:46 2025 GMT Not After : May 24 03:45:46 2025 GMT Subject: CN=6828066b-11ff Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:da:6d:44:77:73:f1:64:bc:c4:ec:ac:8f:5d:80: f2:37:8d:9b:83:86:5b:ea:f3:d1:42:74:d7:f9:84: 72:e3:c1:a0:b3:94:da:2f:c3:2e:a8:3a:54:8d:f7: f7:ec:3f:11:1e:65:1d:8f:6f:26:6c:1a:f8:35:94: 5a:4e:03:84:b0:a9:07:16:53:3a:63:bf:e3:b1:d8: 8d:86:eb:82:23:b7:b8:11:4a:81:78:33:98:d7:4a: 24:db:8e:e8:50:e3:21:34:f7:ee:8b:ef:a1:08:0b: c4:95:b5:7a:42:f7:da:f2:23:5b:d6:68:a7:da:c6: 05:d7:46:e0:d3:33:60:83:71:88:a6:dd:10:e9:29: 6e:ba:07:23:b1:e9:6e:a9:2a:c4:82:4e:83:9a:50: e0:1a:f7:e1:d4:7e:c1:8c:e3:5c:b5:19:c1:f0:83: 35:ab:ff:49:56:c5:91:01:8e:7c:fa:0c:b7:bb:0e: 3a:7d:41:f9:a8:a5:28:71:83:4f:7b:9c:8a:23:e7: 53:4e:b8:ce:48:73:46:63:0e:88:81:a4:a7:a6:dd: df:48:26:46:7a:3a:36:a5:47:e5:e4:ca:ac:47:8e: ac:25:f2:e1:87:2f:e3:e6:bd:d9:6e:75:6c:72:86: 6a:35:eb:82:19:73:73:ad:95:fb:4e:d1:89:43:e9: 47:c5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 59:7C:D5:D6:6E:DE:BA:20:51:DD:72:4F:68:C3:D0:C9:A3:01:D9:B8 X509v3 Authority Key Identifier: keyid:CF:AE:23:1A:98:97:37:F6:1D:AD:95:7C:C2:4D:21:35:85:81:8E:DC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914B45F/40BB15742F6511EE95FDED56C4F9AE02/z64jGpiXN_YdrZV8wk0hNYWBjtw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/z64jGpiXN_YdrZV8wk0hNYWBjtw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914B45F/40BB15742F6511EE95FDED56C4F9AE02/z64jGpiXN_YdrZV8wk0hNYWBjtw.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 78:c1:38:ac:63:f2:c6:80:80:a7:2e:f2:37:c5:62:99:74:76: b2:86:92:a0:13:20:f3:65:d7:b2:ec:ca:da:0f:0f:71:ff:c0: 3f:9d:ce:17:25:b0:fa:67:58:ff:7f:e8:db:32:c2:4f:21:72: 6d:65:f8:9e:75:3f:87:e9:4b:e6:d7:b5:48:61:0c:11:48:de: 6e:cf:7b:35:76:63:61:8a:17:c9:c2:b3:cc:b4:16:40:da:16: 73:43:65:4c:09:2d:b5:81:6b:de:22:bd:7b:68:66:f3:7c:f2: f0:d0:3e:dd:1c:a5:9d:52:42:2c:68:a7:4b:00:3b:0b:d2:8d: e2:d9:81:40:e0:3e:0b:7e:e0:07:0e:7b:54:f1:09:95:26:93: e3:5b:b8:5c:14:66:bd:4e:92:3f:b9:6d:b3:c7:6d:67:83:04: d6:ab:ac:2b:d8:c6:1b:dc:92:76:e0:af:80:6b:f2:64:77:aa: c7:62:72:a1:42:4d:be:35:40:1b:f3:f9:71:c3:39:a5:df:c2: 9e:3b:07:e9:ac:b0:00:27:42:03:66:db:5d:a7:bf:98:0b:d8: 7a:54:51:18:b9:05:ca:16:ff:a5:fd:fc:3e:29:96:ef:9d:49: 24:16:d4:de:5d:f3:5f:19:5c:a6:1f:8f:41:8e:b0:e3:c2:12: 5b:bd:7b:83 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAVMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NEI0NUYxMTAvBgNVBAUTKENGQUUyMzFBOTg5NzM3RjYxREFEOTU3Q0MyNEQyMTM1 ODU4MThFREMwHhcNMjUwNTE3MDM0NTQ2WhcNMjUwNTI0MDM0NTQ2WjAYMRYwFAYD VQQDEw02ODI4MDY2Yi0xMWZmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA2m1Ed3PxZLzE7KyPXYDyN42bg4Zb6vPRQnTX+YRy48Ggs5TaL8MuqDpUjff3 7D8RHmUdj28mbBr4NZRaTgOEsKkHFlM6Y7/jsdiNhuuCI7e4EUqBeDOY10ok247o UOMhNPfui++hCAvElbV6Qvfa8iNb1min2sYF10bg0zNgg3GIpt0Q6Sluugcjselu qSrEgk6DmlDgGvfh1H7BjONctRnB8IM1q/9JVsWRAY58+gy3uw46fUH5qKUocYNP e5yKI+dTTrjOSHNGYw6IgaSnpt3fSCZGejo2pUfl5MqsR46sJfLhhy/j5r3ZbnVs coZqNeuCGXNzrZX7TtGJQ+lHxQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFFl81dZu 3rogUd1yT2jD0MmjAdm4MB8GA1UdIwQYMBaAFM+uIxqYlzf2Ha2VfMJNITWFgY7c MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0QjQ1Ri80MEJCMTU3NDJG NjUxMUVFOTVGREVENTZDNEY5QUUwMi96NjRqR3BpWE5fWWRyWlY4d2swaE5ZV0Jq dHcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3o2NGpHcGlYTl9ZZHJaVjh3azBoTllXQmp0dy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 QjQ1Ri80MEJCMTU3NDJGNjUxMUVFOTVGREVENTZDNEY5QUUwMi96NjRqR3BpWE5f WWRyWlY4d2swaE5ZV0JqdHcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB4wTisY/LGgICnLvI3xWKZdHayhpKgEyDzZdey7MraDw9x/8A/nc4X JbD6Z1j/f+jbMsJPIXJtZfiedT+H6Uvm17VIYQwRSN5uz3s1dmNhihfJwrPMtBZA 2hZzQ2VMCS21gWveIr17aGbzfPLw0D7dHKWdUkIsaKdLADsL0o3i2YFA4D4LfuAH DntU8QmVJpPjW7hcFGa9TpI/uW2zx21ngwTWq6wr2MYb3JJ24K+Aa/Jkd6rHYnKh Qk2+NUAb8/lxwzml38KeOwfprLAAJ0IDZttdp7+YC9h6VFEYuQXKFv+l/fw+KZbv nUkkFtTeXfNfGVymH49BjrDjwhJbvXuD -----END CERTIFICATE-----Generated at Sat May 17 15:31:12 2025 by rpki-client