$ rpki-client -vvf rpki.apnic.net/member_repository/A9154D26/C00D9726413B11ECB06AE030C4F9AE02/zaA_ZfTTOjOZaZc_apvQfa-eNyQ.mft File: zaA_ZfTTOjOZaZc_apvQfa-eNyQ.mft (raw, json) Hash identifier: dD3t9kr7K7pQpHLH5s2z2RAx6beA4Ge2y8VuYxNqC8E= Subject key identifier: 53:ED:A8:79:2B:1D:C3:EE:53:2B:52:7C:5D:98:10:BC:9B:1E:0D:70 Authority key identifier: CD:A0:3F:65:F4:D3:3A:33:99:69:97:3F:6A:9B:D0:7D:AF:9E:37:24 Certificate issuer: /CN=A9154D26/serialNumber=CDA03F65F4D33A339969973F6A9BD07DAF9E3724 Certificate serial: 048C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/zaA_ZfTTOjOZaZc_apvQfa-eNyQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9154D26/C00D9726413B11ECB06AE030C4F9AE02/zaA_ZfTTOjOZaZc_apvQfa-eNyQ.mft Manifest number: 047F Signing time: Sat 10 May 2025 23:40:09 +0000 Manifest this update: Sat 10 May 2025 23:40:09 +0000 Manifest next update: Sat 17 May 2025 23:40:09 +0000 Files and hashes: 1: zaA_ZfTTOjOZaZc_apvQfa-eNyQ.crl (hash: XkP8GQV/XafsM1hwbgEZV8/7Epeq4zVGNaiI35Ji40o=) 2: AA5485827F3611ECBED94963C4F9AE02.roa (hash: L7q5MhSYBL7XAFYcbCU7483l92C9DWVyV5PtuFnvCCo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9154D26/C00D9726413B11ECB06AE030C4F9AE02/zaA_ZfTTOjOZaZc_apvQfa-eNyQ.crl rsync://rpki.apnic.net/member_repository/A9154D26/C00D9726413B11ECB06AE030C4F9AE02/zaA_ZfTTOjOZaZc_apvQfa-eNyQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/zaA_ZfTTOjOZaZc_apvQfa-eNyQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 17 May 2025 23:40:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1164 (0x48c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9154D26, serialNumber=CDA03F65F4D33A339969973F6A9BD07DAF9E3724 Validity Not Before: May 10 23:40:09 2025 GMT Not After : May 17 23:40:09 2025 GMT Subject: CN=681fe3d9-1c86 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d3:1b:d4:45:82:b2:a9:84:05:88:1a:7e:c3:2e: 19:5f:16:65:c6:f4:ce:85:41:a0:38:14:c0:21:77: 39:90:69:2d:de:66:b3:91:81:c8:46:73:f1:e2:00: 7d:a3:77:62:d5:66:0b:48:8d:83:11:07:e8:6a:6a: d3:cc:8b:df:8f:1e:be:d2:70:b5:34:17:f0:cb:6a: 46:d2:aa:fe:50:26:65:ae:84:d6:18:aa:31:0e:b3: 3b:de:23:7a:b0:34:45:36:fb:ea:19:4c:d6:e5:cc: d0:1c:96:85:9c:a8:16:e0:cb:1a:cb:b1:d5:12:d5: fd:b4:06:cb:06:e1:55:7b:2f:5c:ed:c6:6e:41:51: e6:c9:3a:67:4d:3f:49:34:58:9a:2c:72:e9:77:3e: ef:98:81:5a:06:41:55:ab:3a:92:17:2a:d9:9e:44: 33:cc:8f:9b:da:ec:09:20:39:ba:2e:a1:e5:22:e6: 80:8d:75:bb:62:94:0b:c3:13:17:10:3c:f5:dc:7d: ee:e5:5d:77:f4:8c:7b:e0:c0:d3:1a:52:f3:b3:99: bc:1f:17:a5:6c:a1:54:b7:70:53:60:da:40:a8:2b: 10:e6:fb:2b:d2:07:12:24:a9:74:27:e8:8b:8a:09: 16:c5:00:59:68:91:6e:95:b1:d3:ba:2b:4c:be:e8: ca:9b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 53:ED:A8:79:2B:1D:C3:EE:53:2B:52:7C:5D:98:10:BC:9B:1E:0D:70 X509v3 Authority Key Identifier: keyid:CD:A0:3F:65:F4:D3:3A:33:99:69:97:3F:6A:9B:D0:7D:AF:9E:37:24 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9154D26/C00D9726413B11ECB06AE030C4F9AE02/zaA_ZfTTOjOZaZc_apvQfa-eNyQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/zaA_ZfTTOjOZaZc_apvQfa-eNyQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9154D26/C00D9726413B11ECB06AE030C4F9AE02/zaA_ZfTTOjOZaZc_apvQfa-eNyQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 0d:7c:9e:a6:af:68:15:8a:7c:c6:36:1f:84:5a:a4:7c:32:e7: 33:16:68:8d:2b:0d:33:49:e7:b4:18:ef:62:d0:3f:09:85:12: 18:10:0d:01:89:5b:fa:7a:54:0a:a1:32:9f:b9:1a:1e:bd:be: 73:61:16:83:7a:b3:41:49:9b:4e:ac:a8:5b:68:e9:05:62:9d: 97:ac:a1:16:e1:95:d1:70:da:6a:89:c4:d0:7c:57:b1:c9:66: 1a:0c:5b:60:49:dd:7b:58:27:dd:f3:0c:84:4f:80:08:80:67: c0:e6:2b:64:4c:da:fd:d5:e5:f2:d2:96:64:e6:75:0b:66:41: f3:9d:4d:c0:7d:14:f1:8c:f5:c3:f9:b7:87:02:aa:8f:c9:42: 70:12:3d:98:ce:b1:47:22:36:64:94:0c:d8:63:68:70:ba:a2: c9:5d:b3:25:fb:3e:d8:e2:42:82:9f:b8:9f:0e:85:3e:4e:57: 59:f6:43:db:e3:f4:52:5e:15:ba:d0:fe:70:1c:9b:6e:fc:ac: 98:60:9f:95:24:27:14:d4:4a:68:1e:37:3e:be:3f:bf:d9:52: 8c:36:bd:c5:81:04:9f:12:55:6b:a8:e7:1e:30:10:51:f2:53: e3:78:36:5a:df:39:17:2a:d2:45:a1:d4:94:43:39:87:36:10: 6d:ee:ab:07 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBIwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTREMjYxMTAvBgNVBAUTKENEQTAzRjY1RjREMzNBMzM5OTY5OTczRjZBOUJEMDdE QUY5RTM3MjQwHhcNMjUwNTEwMjM0MDA5WhcNMjUwNTE3MjM0MDA5WjAYMRYwFAYD VQQDEw02ODFmZTNkOS0xYzg2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0xvURYKyqYQFiBp+wy4ZXxZlxvTOhUGgOBTAIXc5kGkt3mazkYHIRnPx4gB9 o3di1WYLSI2DEQfoamrTzIvfjx6+0nC1NBfwy2pG0qr+UCZlroTWGKoxDrM73iN6 sDRFNvvqGUzW5czQHJaFnKgW4Msay7HVEtX9tAbLBuFVey9c7cZuQVHmyTpnTT9J NFiaLHLpdz7vmIFaBkFVqzqSFyrZnkQzzI+b2uwJIDm6LqHlIuaAjXW7YpQLwxMX EDz13H3u5V139Ix74MDTGlLzs5m8HxelbKFUt3BTYNpAqCsQ5vsr0gcSJKl0J+iL igkWxQBZaJFulbHTuitMvujKmwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFFPtqHkr HcPuUytSfF2YELybHg1wMB8GA1UdIwQYMBaAFM2gP2X00zozmWmXP2qb0H2vnjck MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1NEQyNi9DMDBEOTcyNjQx M0IxMUVDQjA2QUUwMzBDNEY5QUUwMi96YUFfWmZUVE9qT1phWmNfYXB2UWZhLWVO eVEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3phQV9aZlRUT2pPWmFaY19hcHZRZmEtZU55US5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 NEQyNi9DMDBEOTcyNjQxM0IxMUVDQjA2QUUwMzBDNEY5QUUwMi96YUFfWmZUVE9q T1phWmNfYXB2UWZhLWVOeVEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQANfJ6mr2gVinzGNh+EWqR8MuczFmiNKw0zSee0GO9i0D8JhRIYEA0B iVv6elQKoTKfuRoevb5zYRaDerNBSZtOrKhbaOkFYp2XrKEW4ZXRcNpqicTQfFex yWYaDFtgSd17WCfd8wyET4AIgGfA5itkTNr91eXy0pZk5nULZkHznU3AfRTxjPXD +beHAqqPyUJwEj2YzrFHIjZklAzYY2hwuqLJXbMl+z7Y4kKCn7ifDoU+TldZ9kPb 4/RSXhW60P5wHJtu/KyYYJ+VJCcU1EpoHjc+vj+/2VKMNr3FgQSfElVrqOceMBBR 8lPjeDZa3zkXKtJFodSUQzmHNhBt7qsH -----END CERTIFICATE-----Generated at Mon May 12 19:39:25 2025 by rpki-client