$ rpki-client -vvf rpki.apnic.net/member_repository/A91A12C4/F319EDC26C1711EFBDBFD50BC4F9AE02/z8CATaxP_3oipAThDphkpxHeGck.mft File: z8CATaxP_3oipAThDphkpxHeGck.mft (raw, json) Hash identifier: fYa2qjcwl1Baijbm4tTIZdZaR6fMMVGs3D/Kd5maRrE= Subject key identifier: 72:F3:94:07:88:BC:EE:7E:DA:8F:3D:76:49:A9:C0:72:15:37:60:66 Authority key identifier: CF:C0:80:4D:AC:4F:FF:7A:22:A4:04:E1:0E:98:64:A7:11:DE:19:C9 Certificate issuer: /CN=A91A12C4/serialNumber=CFC0804DAC4FFF7A22A404E10E9864A711DE19C9 Certificate serial: 7F Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/z8CATaxP_3oipAThDphkpxHeGck.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A12C4/F319EDC26C1711EFBDBFD50BC4F9AE02/z8CATaxP_3oipAThDphkpxHeGck.mft Manifest number: 7E Signing time: Wed 07 May 2025 05:49:06 +0000 Manifest this update: Wed 07 May 2025 05:49:06 +0000 Manifest next update: Wed 14 May 2025 05:49:06 +0000 Files and hashes: 1: z8CATaxP_3oipAThDphkpxHeGck.crl (hash: hg801j65cMcY5O0sFZ/RxHvqT+PdFqf2XzTnuGFijI8=) 2: BCA395126C1811EFAFBE6B0FC4F9AE02.roa (hash: Mb/JnRkZoctaPV3WHu0XOAV8U5+c9ZbVehfTb/x4GMg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A12C4/F319EDC26C1711EFBDBFD50BC4F9AE02/z8CATaxP_3oipAThDphkpxHeGck.crl rsync://rpki.apnic.net/member_repository/A91A12C4/F319EDC26C1711EFBDBFD50BC4F9AE02/z8CATaxP_3oipAThDphkpxHeGck.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/z8CATaxP_3oipAThDphkpxHeGck.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 14 May 2025 05:49:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 127 (0x7f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A12C4, serialNumber=CFC0804DAC4FFF7A22A404E10E9864A711DE19C9 Validity Not Before: May 7 05:49:06 2025 GMT Not After : May 14 05:49:06 2025 GMT Subject: CN=681af452-f18f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e1:e5:10:5a:72:bc:7c:a5:fc:fa:3f:f1:50:2a: 56:5d:7b:59:7e:ef:a7:26:ef:2e:68:b9:0d:76:6d: 01:d6:0b:d6:82:d2:13:4c:07:f1:89:eb:cb:7b:1a: 1c:61:44:50:59:4b:2f:57:71:e4:26:a1:88:52:7b: 2a:90:1b:de:7b:95:41:61:2b:38:a4:a7:b8:7d:4b: 41:71:43:1c:39:6c:07:57:bd:50:dc:24:28:3f:cc: 76:5a:75:07:8c:28:7e:ab:1c:92:70:1c:0b:b8:05: 48:d9:67:ae:cc:47:c3:cb:2d:35:53:aa:34:d7:90: 26:5e:3d:49:1d:00:6b:ed:f4:7b:be:85:a5:d4:db: 87:7a:f0:85:d0:64:55:d6:5e:64:89:91:09:c8:56: e0:7e:88:13:76:96:14:13:8a:6f:8f:d6:c7:1d:2c: 1a:52:d4:1b:27:de:3f:b3:91:84:16:f7:ad:ab:7d: 3f:13:c5:06:ee:4d:74:89:b1:4b:75:59:c0:c1:f8: 71:1d:9c:f2:c4:5c:82:32:2a:c0:df:f6:6b:10:2c: 66:5a:90:3c:be:71:0f:cb:7b:5d:e0:ee:c6:13:5c: 90:ea:b9:b9:1e:53:a0:8a:c6:aa:cf:d1:8a:44:1b: 10:c4:bf:5f:e0:26:b7:b2:f2:ee:80:11:28:e5:b3: 1d:01 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 72:F3:94:07:88:BC:EE:7E:DA:8F:3D:76:49:A9:C0:72:15:37:60:66 X509v3 Authority Key Identifier: keyid:CF:C0:80:4D:AC:4F:FF:7A:22:A4:04:E1:0E:98:64:A7:11:DE:19:C9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A12C4/F319EDC26C1711EFBDBFD50BC4F9AE02/z8CATaxP_3oipAThDphkpxHeGck.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/z8CATaxP_3oipAThDphkpxHeGck.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A12C4/F319EDC26C1711EFBDBFD50BC4F9AE02/z8CATaxP_3oipAThDphkpxHeGck.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 43:02:4f:ee:73:e8:98:c6:43:a8:e1:d2:a6:33:33:84:bb:67: 54:d6:87:40:35:4d:0d:56:9b:8a:29:27:fc:ac:e7:d9:a2:17: 07:2f:4f:22:ee:67:f1:40:3d:88:f3:da:67:99:6a:9f:ee:d7: 9b:27:5d:02:81:24:3b:69:7a:9a:71:8f:fb:d8:ce:34:df:cf: 37:72:17:b1:60:a9:b2:4f:67:65:98:81:b5:a4:4d:75:35:cf: f9:20:98:4e:ea:45:ec:2c:ad:81:24:d9:15:61:9e:94:16:54: 8f:fc:72:2e:c7:6d:54:13:23:2b:2e:53:f7:a6:86:68:d6:ae: 5e:92:7e:9c:18:31:88:61:1c:83:4d:1c:ac:a0:65:dc:75:66: 14:bb:70:f8:1c:8c:f6:73:62:42:bb:b3:57:40:fb:47:b5:21: eb:c2:04:ed:4c:26:14:53:34:58:49:41:28:0a:22:2f:56:a9: 0f:9f:5d:9b:ba:a1:8e:f1:93:19:21:6c:6d:a1:94:77:b3:91: dd:05:2f:4d:06:7d:b1:ca:c3:18:3c:95:e0:55:c7:08:83:7e: 11:17:4e:c3:0b:3d:53:d2:b3:ca:44:ff:fe:6b:1e:1e:f9:88: 84:cb:ef:fc:7e:6d:41:ea:37:61:8b:c7:58:12:a7:bd:88:59: 28:6e:fa:d8 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBfzANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFB MTJDNDExMC8GA1UEBRMoQ0ZDMDgwNERBQzRGRkY3QTIyQTQwNEUxMEU5ODY0QTcx MURFMTlDOTAeFw0yNTA1MDcwNTQ5MDZaFw0yNTA1MTQwNTQ5MDZaMBgxFjAUBgNV BAMTDTY4MWFmNDUyLWYxOGYwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDh5RBacrx8pfz6P/FQKlZde1l+76cm7y5ouQ12bQHWC9aC0hNMB/GJ68t7Ghxh RFBZSy9XceQmoYhSeyqQG957lUFhKzikp7h9S0FxQxw5bAdXvVDcJCg/zHZadQeM KH6rHJJwHAu4BUjZZ67MR8PLLTVTqjTXkCZePUkdAGvt9Hu+haXU24d68IXQZFXW XmSJkQnIVuB+iBN2lhQTim+P1scdLBpS1Bsn3j+zkYQW962rfT8TxQbuTXSJsUt1 WcDB+HEdnPLEXIIyKsDf9msQLGZakDy+cQ/Le13g7sYTXJDqubkeU6CKxqrP0YpE GxDEv1/gJrey8u6AESjlsx0BAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUcvOUB4i8 7n7ajz12SanAchU3YGYwHwYDVR0jBBgwFoAUz8CATaxP/3oipAThDphkpxHeGckw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUExMkM0L0YzMTlFREMyNkMx NzExRUZCREJGRDUwQkM0RjlBRTAyL3o4Q0FUYXhQXzNvaXBBVGhEcGhrcHhIZUdj ay5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvejhDQVRheFBfM29pcEFUaERwaGtweEhlR2NrLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUEx MkM0L0YzMTlFREMyNkMxNzExRUZCREJGRDUwQkM0RjlBRTAyL3o4Q0FUYXhQXzNv aXBBVGhEcGhrcHhIZUdjay5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAEMCT+5z6JjGQ6jh0qYzM4S7Z1TWh0A1TQ1Wm4opJ/ys59miFwcvTyLu Z/FAPYjz2meZap/u15snXQKBJDtpeppxj/vYzjTfzzdyF7FgqbJPZ2WYgbWkTXU1 z/kgmE7qRewsrYEk2RVhnpQWVI/8ci7HbVQTIysuU/emhmjWrl6SfpwYMYhhHINN HKygZdx1ZhS7cPgcjPZzYkK7s1dA+0e1IevCBO1MJhRTNFhJQSgKIi9WqQ+fXZu6 oY7xkxkhbG2hlHezkd0FL00GfbHKwxg8leBVxwiDfhEXTsMLPVPSs8pE//5rHh75 iITL7/x+bUHqN2GLx1gSp72IWShu+tg= -----END CERTIFICATE-----Generated at Thu May 8 21:02:03 2025 by rpki-client