$ rpki-client -vvf rpki.apnic.net/member_repository/A917DCDA/192E71F61D9011E2B295ABEF08B02CD2/ZwbZhOcxaBICGI0pntNfAFsBdYA.mft File: ZwbZhOcxaBICGI0pntNfAFsBdYA.mft (raw, json) Hash identifier: koUuEOg3IkNmkYUoETZqTCbIblbPh7SpXdL4iHdh2o0= Subject key identifier: 75:13:64:3E:0A:15:B0:BA:4F:98:15:D8:49:E6:D9:38:1D:33:37:28 Authority key identifier: 67:06:D9:84:E7:31:68:12:02:18:8D:29:9E:D3:5F:00:5B:01:75:80 Certificate issuer: /CN=A917DCDA/serialNumber=6706D984E731681202188D299ED35F005B017580 Certificate serial: 347A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ZwbZhOcxaBICGI0pntNfAFsBdYA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917DCDA/192E71F61D9011E2B295ABEF08B02CD2/ZwbZhOcxaBICGI0pntNfAFsBdYA.mft Manifest number: 347A Signing time: Sat 10 May 2025 14:40:08 +0000 Manifest this update: Sat 10 May 2025 14:40:08 +0000 Manifest next update: Sat 17 May 2025 14:40:08 +0000 Files and hashes: 1: ZwbZhOcxaBICGI0pntNfAFsBdYA.crl (hash: whvoPDMr+dk8re4kW9lKqdrhiWNZ6SzgPCaQKLFCVxc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917DCDA/192E71F61D9011E2B295ABEF08B02CD2/ZwbZhOcxaBICGI0pntNfAFsBdYA.crl rsync://rpki.apnic.net/member_repository/A917DCDA/192E71F61D9011E2B295ABEF08B02CD2/ZwbZhOcxaBICGI0pntNfAFsBdYA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ZwbZhOcxaBICGI0pntNfAFsBdYA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 17 May 2025 14:40:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13434 (0x347a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917DCDA, serialNumber=6706D984E731681202188D299ED35F005B017580 Validity Not Before: May 10 14:40:08 2025 GMT Not After : May 17 14:40:08 2025 GMT Subject: CN=681f6548-5778 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c7:69:55:ba:17:d9:f5:9b:c8:7d:ea:53:8e:93: d3:3d:7b:71:a6:e8:62:02:33:32:aa:9c:b0:67:c6: 86:67:4c:97:6a:e6:fb:19:af:b8:85:25:f3:69:c7: d6:3a:ca:bd:30:db:79:f7:10:b9:7a:10:48:6b:f6: 9d:11:91:5c:fe:9f:f7:ac:77:cd:0f:39:67:b2:bd: 49:09:41:17:2d:8b:cf:18:ce:e4:73:da:31:79:57: b0:e8:91:9d:84:2f:45:7f:ac:c6:79:cd:72:8b:1d: dd:e0:9b:44:be:80:5c:b3:c0:76:87:10:5c:36:2f: 65:97:98:52:d0:6b:14:a3:b5:11:56:3c:38:62:1f: 2e:d4:d0:b5:80:5e:9d:59:bd:94:a9:a2:66:7f:99: 26:88:37:ea:3f:f1:3a:a2:fa:38:04:52:6b:d1:fa: 4d:12:9b:ed:2d:1b:30:92:1b:87:91:0a:d7:94:54: 3b:66:bd:40:8f:41:f5:9a:4b:46:d4:eb:ee:d6:7b: 73:a0:a7:17:a6:76:98:16:5c:5b:2b:e4:b5:69:ed: 15:87:bc:67:f4:fa:22:cd:0e:39:bd:a4:28:76:30: de:a0:ef:37:bc:10:b1:b1:87:03:fc:64:4b:d0:4d: 4e:ef:73:ae:72:ac:b2:7b:eb:bd:ee:f0:9b:10:ba: 5b:8b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 75:13:64:3E:0A:15:B0:BA:4F:98:15:D8:49:E6:D9:38:1D:33:37:28 X509v3 Authority Key Identifier: keyid:67:06:D9:84:E7:31:68:12:02:18:8D:29:9E:D3:5F:00:5B:01:75:80 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917DCDA/192E71F61D9011E2B295ABEF08B02CD2/ZwbZhOcxaBICGI0pntNfAFsBdYA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ZwbZhOcxaBICGI0pntNfAFsBdYA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917DCDA/192E71F61D9011E2B295ABEF08B02CD2/ZwbZhOcxaBICGI0pntNfAFsBdYA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 11:e5:c8:b0:9f:19:b4:1d:f7:bd:13:de:af:99:20:33:0d:dc: 95:e4:98:dc:4d:fc:8f:43:6e:1d:c0:13:c6:c0:2a:9e:11:e1: 75:b6:7f:ae:d3:39:89:a1:82:7a:71:98:53:1f:1c:57:b3:8b: f7:52:0f:c9:4a:a7:02:4e:91:86:5a:64:f1:57:aa:d9:90:5c: ca:3b:2b:b8:f9:66:31:be:6f:cb:bd:83:d6:e3:99:4a:09:4c: 18:6b:30:f5:e8:3e:b2:bc:3a:b1:02:02:c8:15:60:a1:69:d0: 3b:c8:10:aa:41:45:2d:55:ab:a0:84:78:88:ba:39:83:14:37: 93:9f:b0:89:39:cc:2b:df:a0:9e:bf:ea:d4:73:ef:6e:fd:82: 5d:79:b1:0e:78:16:fa:e3:d1:4c:6c:31:cb:ec:18:ea:25:ea: 1d:f0:2e:40:ab:02:ce:55:a0:bf:7b:20:16:f8:80:aa:68:5c: 2e:2c:38:b3:15:53:97:ac:0e:19:d3:14:46:c9:40:2f:c6:4f: 69:dc:25:19:b9:10:79:90:7c:a4:02:39:ae:93:c8:48:4d:68: 5c:8c:31:6e:2a:38:76:f7:d2:8d:c6:f5:10:61:49:84:f1:b6: 07:1a:61:d1:50:97:09:fe:e1:4d:3d:f5:6d:6d:5d:39:c8:7d: b0:62:f8:91 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICNHowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0RDREExMTAvBgNVBAUTKDY3MDZEOTg0RTczMTY4MTIwMjE4OEQyOTlFRDM1RjAw NUIwMTc1ODAwHhcNMjUwNTEwMTQ0MDA4WhcNMjUwNTE3MTQ0MDA4WjAYMRYwFAYD VQQDEw02ODFmNjU0OC01Nzc4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAx2lVuhfZ9ZvIfepTjpPTPXtxpuhiAjMyqpywZ8aGZ0yXaub7Ga+4hSXzacfW Osq9MNt59xC5ehBIa/adEZFc/p/3rHfNDzlnsr1JCUEXLYvPGM7kc9oxeVew6JGd hC9Ff6zGec1yix3d4JtEvoBcs8B2hxBcNi9ll5hS0GsUo7URVjw4Yh8u1NC1gF6d Wb2UqaJmf5kmiDfqP/E6ovo4BFJr0fpNEpvtLRswkhuHkQrXlFQ7Zr1Aj0H1mktG 1Ovu1ntzoKcXpnaYFlxbK+S1ae0Vh7xn9PoizQ45vaQodjDeoO83vBCxsYcD/GRL 0E1O73Oucqyye+u97vCbELpbiwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFHUTZD4K FbC6T5gV2Enm2TgdMzcoMB8GA1UdIwQYMBaAFGcG2YTnMWgSAhiNKZ7TXwBbAXWA MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3RENEQS8xOTJFNzFGNjFE OTAxMUUyQjI5NUFCRUYwOEIwMkNEMi9ad2JaaE9jeGFCSUNHSTBwbnROZkFGc0Jk WUEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1p3YlpoT2N4YUJJQ0dJMHBudE5mQUZzQmRZQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 RENEQS8xOTJFNzFGNjFEOTAxMUUyQjI5NUFCRUYwOEIwMkNEMi9ad2JaaE9jeGFC SUNHSTBwbnROZkFGc0JkWUEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAR5ciwnxm0Hfe9E96vmSAzDdyV5JjcTfyPQ24dwBPGwCqeEeF1tn+u 0zmJoYJ6cZhTHxxXs4v3Ug/JSqcCTpGGWmTxV6rZkFzKOyu4+WYxvm/LvYPW45lK CUwYazD16D6yvDqxAgLIFWChadA7yBCqQUUtVaughHiIujmDFDeTn7CJOcwr36Ce v+rUc+9u/YJdebEOeBb649FMbDHL7BjqJeod8C5AqwLOVaC/eyAW+ICqaFwuLDiz FVOXrA4Z0xRGyUAvxk9p3CUZuRB5kHykAjmuk8hITWhcjDFuKjh299KNxvUQYUmE 8bYHGmHRUJcJ/uFNPfVtbV05yH2wYviR -----END CERTIFICATE-----Generated at Sun May 11 09:05:20 2025 by rpki-client