$ rpki-client -vvf rpki.apnic.net/member_repository/A917F879/AAFCEF0A834911EA89DE697BC4F9AE02/ZEfjYbGkSWugEo32lWV0SOleK5U.mft File: ZEfjYbGkSWugEo32lWV0SOleK5U.mft (raw, json) Hash identifier: qjvmHVMCZOZq5nhn8fOMnJ36kKrCXzob+AoGAZd6xSM= Subject key identifier: 39:3A:FC:BF:BE:21:5E:DE:7D:EB:36:81:C5:18:96:82:58:69:32:27 Authority key identifier: 64:47:E3:61:B1:A4:49:6B:A0:12:8D:F6:95:65:74:48:E9:5E:2B:95 Certificate issuer: /CN=A917F879/serialNumber=6447E361B1A4496BA0128DF695657448E95E2B95 Certificate serial: 09B9 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ZEfjYbGkSWugEo32lWV0SOleK5U.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917F879/AAFCEF0A834911EA89DE697BC4F9AE02/ZEfjYbGkSWugEo32lWV0SOleK5U.mft Manifest number: 09AD Signing time: Sun 04 May 2025 19:48:15 +0000 Manifest this update: Sun 04 May 2025 19:48:15 +0000 Manifest next update: Sun 11 May 2025 19:48:15 +0000 Files and hashes: 1: ZEfjYbGkSWugEo32lWV0SOleK5U.crl (hash: qslknjggN32nEO8emovB5XRKOquTs3VJExkWpRKJ7DA=) 2: 8A6AA178556111EDB7E45424C4F9AE02.roa (hash: cQpAURqDM/34gPKhgVHe+OBCLHcXpgoxll5j5sk3a4o=) 3: 894FFF40556111EDB7E45424C4F9AE02.roa (hash: 3doq1VIPrTMuHeE3hP1dvsdzHHC8FVCO0WmVRpeSjbk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917F879/AAFCEF0A834911EA89DE697BC4F9AE02/ZEfjYbGkSWugEo32lWV0SOleK5U.crl rsync://rpki.apnic.net/member_repository/A917F879/AAFCEF0A834911EA89DE697BC4F9AE02/ZEfjYbGkSWugEo32lWV0SOleK5U.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ZEfjYbGkSWugEo32lWV0SOleK5U.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 11 May 2025 19:48:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2489 (0x9b9) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917F879, serialNumber=6447E361B1A4496BA0128DF695657448E95E2B95 Validity Not Before: May 4 19:48:15 2025 GMT Not After : May 11 19:48:15 2025 GMT Subject: CN=6817c47f-0dbf Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ee:e7:52:d9:72:4a:91:b2:f1:d5:cc:4a:35:38: d2:95:d6:dc:89:05:38:c5:22:8b:a1:f7:dc:94:36: 6a:b5:26:50:d8:33:1b:16:21:77:0d:b0:47:98:8a: 69:6c:ac:a9:8f:94:02:88:e6:aa:db:b3:36:72:81: 8a:b2:32:e2:b7:f2:96:34:f0:6e:90:34:40:36:03: bd:15:75:2b:31:72:07:07:20:d8:75:bd:4c:4a:75: c5:ab:cf:b1:46:60:59:ce:20:3b:0d:70:c5:f2:77: 37:34:60:08:69:d9:71:b0:07:45:49:09:b3:74:15: 9a:b1:01:76:cc:16:17:e7:7f:c7:41:4d:bb:84:94: 44:9e:10:1f:2e:d9:67:0e:e6:47:fc:2a:19:e6:96: b1:a0:35:aa:02:62:fc:18:b9:fc:e0:db:78:40:f2: 0c:32:51:e0:41:64:ae:b6:dc:b4:1e:4e:68:13:86: c6:8a:fd:88:99:0e:76:1c:cd:a0:b1:98:b1:75:ca: 3a:bf:34:84:7f:e6:6a:31:aa:a3:76:e2:07:49:ba: 06:54:b4:a1:42:d0:a3:8b:fd:e2:87:bf:75:f0:b9: 58:f8:d9:67:f7:13:e2:37:ad:36:5b:06:b8:01:57: ad:6d:98:c5:9f:13:6d:1a:5d:6a:5b:5f:f2:ed:16: f0:69 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 39:3A:FC:BF:BE:21:5E:DE:7D:EB:36:81:C5:18:96:82:58:69:32:27 X509v3 Authority Key Identifier: keyid:64:47:E3:61:B1:A4:49:6B:A0:12:8D:F6:95:65:74:48:E9:5E:2B:95 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917F879/AAFCEF0A834911EA89DE697BC4F9AE02/ZEfjYbGkSWugEo32lWV0SOleK5U.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ZEfjYbGkSWugEo32lWV0SOleK5U.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917F879/AAFCEF0A834911EA89DE697BC4F9AE02/ZEfjYbGkSWugEo32lWV0SOleK5U.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 32:3f:d9:38:af:5e:3c:90:2b:93:fa:b7:0b:b7:45:b4:11:fe: a5:cf:7c:2d:0b:b5:d4:5a:c2:ee:2b:ce:c5:f5:47:c9:c1:3d: 20:dc:41:31:fd:1a:81:c8:59:68:60:25:85:b4:19:c1:0c:9a: 31:a9:4b:8e:eb:ed:fc:74:e3:9c:20:f4:b1:6d:4e:7a:7d:d9: 35:b4:30:0b:45:49:fa:de:ad:da:38:d8:3b:e1:4f:ec:71:d6: 76:5f:96:93:77:19:7b:f7:59:96:fe:08:c9:5d:dc:a5:1f:26: 30:48:a9:d3:9f:60:23:28:52:69:89:ae:51:f9:cf:42:b8:f7: b8:52:50:fa:63:40:ab:b2:92:3c:94:90:9d:7a:58:fb:8d:af: b4:4f:0a:84:8e:c5:c7:b1:36:96:da:64:52:51:8b:5c:c1:81: 4e:c3:6b:16:8d:6c:7b:16:c3:13:fc:50:4f:55:05:24:d0:ca: a9:de:11:48:79:6f:c2:0f:08:7e:33:14:6e:f4:f6:59:3c:1b: 44:c5:34:1a:84:f5:c7:16:d6:63:0c:de:f5:d2:28:5d:15:ba: b3:93:89:50:8a:88:b3:8a:1c:7f:93:92:e1:42:55:78:cb:fe: 95:aa:8a:69:ae:0e:1b:7c:82:c4:61:35:46:92:4f:65:cb:2c: 3c:dd:a6:ee -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCbkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0Y4NzkxMTAvBgNVBAUTKDY0NDdFMzYxQjFBNDQ5NkJBMDEyOERGNjk1NjU3NDQ4 RTk1RTJCOTUwHhcNMjUwNTA0MTk0ODE1WhcNMjUwNTExMTk0ODE1WjAYMRYwFAYD VQQDEw02ODE3YzQ3Zi0wZGJmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA7udS2XJKkbLx1cxKNTjSldbciQU4xSKLoffclDZqtSZQ2DMbFiF3DbBHmIpp bKypj5QCiOaq27M2coGKsjLit/KWNPBukDRANgO9FXUrMXIHByDYdb1MSnXFq8+x RmBZziA7DXDF8nc3NGAIadlxsAdFSQmzdBWasQF2zBYX53/HQU27hJREnhAfLtln DuZH/CoZ5paxoDWqAmL8GLn84Nt4QPIMMlHgQWSutty0Hk5oE4bGiv2ImQ52HM2g sZixdco6vzSEf+ZqMaqjduIHSboGVLShQtCji/3ih7918LlY+Nln9xPiN602Wwa4 AVetbZjFnxNtGl1qW1/y7RbwaQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFDk6/L++ IV7efes2gcUYloJYaTInMB8GA1UdIwQYMBaAFGRH42GxpElroBKN9pVldEjpXiuV MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3Rjg3OS9BQUZDRUYwQTgz NDkxMUVBODlERTY5N0JDNEY5QUUwMi9aRWZqWWJHa1NXdWdFbzMybFdWMFNPbGVL NVUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1pFZmpZYkdrU1d1Z0VvMzJsV1YwU09sZUs1VS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 Rjg3OS9BQUZDRUYwQTgzNDkxMUVBODlERTY5N0JDNEY5QUUwMi9aRWZqWWJHa1NX dWdFbzMybFdWMFNPbGVLNVUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAyP9k4r148kCuT+rcLt0W0Ef6lz3wtC7XUWsLuK87F9UfJwT0g3EEx /RqByFloYCWFtBnBDJoxqUuO6+38dOOcIPSxbU56fdk1tDALRUn63q3aONg74U/s cdZ2X5aTdxl791mW/gjJXdylHyYwSKnTn2AjKFJpia5R+c9CuPe4UlD6Y0CrspI8 lJCdelj7ja+0TwqEjsXHsTaW2mRSUYtcwYFOw2sWjWx7FsMT/FBPVQUk0Mqp3hFI eW/CDwh+MxRu9PZZPBtExTQahPXHFtZjDN710ihdFbqzk4lQioizihx/k5LhQlV4 y/6Vqopprg4bfILEYTVGkk9lyyw83abu -----END CERTIFICATE-----Generated at Mon May 5 03:15:40 2025 by rpki-client