$ rpki-client -vvf rpki.apnic.net/member_repository/A9189132/D264A2A4458C11EA8E6F6D0CC4F9AE02/ztWVHA4vwvZh_u8cNxtnsj8cUt8.mft File: ztWVHA4vwvZh_u8cNxtnsj8cUt8.mft (raw, json) Hash identifier: QwCQ+mXHiRxSjonBHjCmqXNS76r0rR29brFn/B9XxBo= Subject key identifier: DB:E4:00:EF:97:D7:7B:A5:80:2D:EF:1F:85:9F:41:C4:A7:8A:C1:4D Authority key identifier: CE:D5:95:1C:0E:2F:C2:F6:61:FE:EF:1C:37:1B:67:B2:3F:1C:52:DF Certificate issuer: /CN=A9189132/serialNumber=CED5951C0E2FC2F661FEEF1C371B67B23F1C52DF Certificate serial: 0AFD Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ztWVHA4vwvZh_u8cNxtnsj8cUt8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9189132/D264A2A4458C11EA8E6F6D0CC4F9AE02/ztWVHA4vwvZh_u8cNxtnsj8cUt8.mft Manifest number: 0AF5 Signing time: Fri 16 May 2025 19:35:14 +0000 Manifest this update: Fri 16 May 2025 19:35:14 +0000 Manifest next update: Fri 23 May 2025 19:35:14 +0000 Files and hashes: 1: ztWVHA4vwvZh_u8cNxtnsj8cUt8.crl (hash: A5yn/ahZRYWCfmL0BAwxZ6+d/DowtBwBIcptusFUcJU=) 2: 4E6B4E24458E11EA84E01A0FC4F9AE02.roa (hash: QbUyZORfUsAuIPfZUHLWRtdmTwbA8QqQPT+t+aGRe2I=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9189132/D264A2A4458C11EA8E6F6D0CC4F9AE02/ztWVHA4vwvZh_u8cNxtnsj8cUt8.crl rsync://rpki.apnic.net/member_repository/A9189132/D264A2A4458C11EA8E6F6D0CC4F9AE02/ztWVHA4vwvZh_u8cNxtnsj8cUt8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ztWVHA4vwvZh_u8cNxtnsj8cUt8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 23 May 2025 19:35:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2813 (0xafd) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9189132, serialNumber=CED5951C0E2FC2F661FEEF1C371B67B23F1C52DF Validity Not Before: May 16 19:35:14 2025 GMT Not After : May 23 19:35:14 2025 GMT Subject: CN=68279372-1a06 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ad:54:25:ad:81:d8:32:b5:5e:26:70:0f:6d:cc: 63:f4:17:b1:28:1a:f9:29:66:80:49:9a:d9:d5:09: 44:5a:cc:5d:34:58:6e:6c:d5:01:d1:82:7d:62:4a: ad:9a:28:d6:28:70:be:33:59:c1:ff:e7:3b:4a:dc: 56:c8:ff:74:5d:20:67:5c:61:44:50:0b:67:53:79: 5e:3c:33:c1:fa:95:31:3d:91:36:d9:56:a2:01:c5: da:94:b3:59:96:18:c8:ad:40:e3:e0:8c:44:f4:de: 1d:54:05:ca:fd:d7:a4:cf:67:c1:b6:94:47:ce:c0: 5d:9a:89:1b:6f:bb:7c:1d:91:b6:9e:f4:af:79:9f: 71:f1:98:28:bf:d4:96:af:fd:7b:6b:39:ea:1b:c4: f0:2d:7d:19:99:62:82:55:87:c8:59:0c:9a:c7:9c: c8:78:13:f3:92:6e:bf:fb:b1:d6:d0:45:91:7d:06: 12:10:e0:2a:23:9c:40:71:14:da:67:32:92:81:86: 2c:c2:43:5b:bf:5e:67:89:c2:ef:e5:04:24:0a:8b: 46:39:94:33:2e:eb:7f:c7:4c:dd:12:05:3f:0c:08: df:c1:c6:48:8e:c3:7b:e6:5d:4b:da:13:a4:8e:62: 0e:e8:ee:f5:1e:7c:47:41:2f:79:a6:37:2b:51:4b: 2f:d5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DB:E4:00:EF:97:D7:7B:A5:80:2D:EF:1F:85:9F:41:C4:A7:8A:C1:4D X509v3 Authority Key Identifier: keyid:CE:D5:95:1C:0E:2F:C2:F6:61:FE:EF:1C:37:1B:67:B2:3F:1C:52:DF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9189132/D264A2A4458C11EA8E6F6D0CC4F9AE02/ztWVHA4vwvZh_u8cNxtnsj8cUt8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ztWVHA4vwvZh_u8cNxtnsj8cUt8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9189132/D264A2A4458C11EA8E6F6D0CC4F9AE02/ztWVHA4vwvZh_u8cNxtnsj8cUt8.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 35:89:08:bf:64:ab:0d:07:02:ee:9c:67:3e:fb:ed:de:ae:87: d5:bc:f7:d5:d8:14:03:1e:c1:e6:38:06:c9:67:59:a3:4f:35: 93:ce:e2:3a:37:ad:2d:b9:58:f9:7c:17:ea:22:0b:61:37:76: f4:51:f1:dc:5b:9d:f9:fc:b2:3e:4e:30:c2:bd:a0:06:4a:e6: 39:19:1b:8a:0f:93:7f:c4:4b:c6:48:00:55:6c:94:eb:70:16: c5:17:81:bf:42:e9:ce:4a:27:1c:16:35:b0:1b:98:1d:df:ad: 93:2d:78:26:3b:e3:d9:ab:e4:b7:10:0d:c1:03:1c:f2:91:15: 24:44:a5:22:bc:07:ae:ae:57:b4:0d:f1:02:5e:03:64:0a:10: 2c:65:b2:49:82:94:59:4f:f3:d6:a8:0c:0b:ef:f5:3b:3d:23: 3f:6c:52:2c:2f:23:2e:06:c4:7a:b2:d7:fd:88:df:7d:bb:15: 30:82:ff:02:ff:08:5f:32:b0:6c:17:55:8d:9c:70:e9:9f:70: 45:ac:a3:36:7a:f9:30:83:7a:0e:1f:3e:b6:11:11:02:b9:c5: db:15:50:35:38:14:c8:cf:72:9d:7d:c2:b2:41:40:27:06:9d: a1:e7:d5:c9:ba:70:7f:db:b7:21:1e:a2:8d:c2:12:09:52:90: 45:e0:52:22 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCv0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx ODkxMzIxMTAvBgNVBAUTKENFRDU5NTFDMEUyRkMyRjY2MUZFRUYxQzM3MUI2N0Iy M0YxQzUyREYwHhcNMjUwNTE2MTkzNTE0WhcNMjUwNTIzMTkzNTE0WjAYMRYwFAYD VQQDEw02ODI3OTM3Mi0xYTA2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArVQlrYHYMrVeJnAPbcxj9BexKBr5KWaASZrZ1QlEWsxdNFhubNUB0YJ9Ykqt mijWKHC+M1nB/+c7StxWyP90XSBnXGFEUAtnU3lePDPB+pUxPZE22VaiAcXalLNZ lhjIrUDj4IxE9N4dVAXK/dekz2fBtpRHzsBdmokbb7t8HZG2nvSveZ9x8Zgov9SW r/17aznqG8TwLX0ZmWKCVYfIWQyax5zIeBPzkm6/+7HW0EWRfQYSEOAqI5xAcRTa ZzKSgYYswkNbv15nicLv5QQkCotGOZQzLut/x0zdEgU/DAjfwcZIjsN75l1L2hOk jmIO6O71HnxHQS95pjcrUUsv1QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFNvkAO+X 13ulgC3vH4WfQcSnisFNMB8GA1UdIwQYMBaAFM7VlRwOL8L2Yf7vHDcbZ7I/HFLf MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4OTEzMi9EMjY0QTJBNDQ1 OEMxMUVBOEU2RjZEMENDNEY5QUUwMi96dFdWSEE0dnd2WmhfdThjTnh0bnNqOGNV dDguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3p0V1ZIQTR2d3ZaaF91OGNOeHRuc2o4Y1V0OC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 OTEzMi9EMjY0QTJBNDQ1OEMxMUVBOEU2RjZEMENDNEY5QUUwMi96dFdWSEE0dnd2 WmhfdThjTnh0bnNqOGNVdDgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA1iQi/ZKsNBwLunGc+++3erofVvPfV2BQDHsHmOAbJZ1mjTzWTzuI6 N60tuVj5fBfqIgthN3b0UfHcW535/LI+TjDCvaAGSuY5GRuKD5N/xEvGSABVbJTr cBbFF4G/QunOSiccFjWwG5gd362TLXgmO+PZq+S3EA3BAxzykRUkRKUivAeurle0 DfECXgNkChAsZbJJgpRZT/PWqAwL7/U7PSM/bFIsLyMuBsR6stf9iN99uxUwgv8C /whfMrBsF1WNnHDpn3BFrKM2evkwg3oOHz62ERECucXbFVA1OBTIz3KdfcKyQUAn Bp2h59XJunB/27chHqKNwhIJUpBF4FIi -----END CERTIFICATE-----Generated at Fri May 16 22:46:30 2025 by rpki-client