$ rpki-client -vvf rpki.apnic.net/member_repository/A91DEB2E/6FC8BFDE8C2111EDB2B2F30AC4F9AE02/CZyBX8poKm4oYE_pYv0QcVgn6V0.mft File: CZyBX8poKm4oYE_pYv0QcVgn6V0.mft (raw, json) Hash identifier: hk7vOByQ+/yMOgCf9nE5FL2BKpQN2mhPXM/7ONLhpaU= Subject key identifier: CD:E4:BF:0C:A5:EC:30:CA:B7:FC:CB:0A:BB:0F:5C:EE:F2:1E:28:4A Authority key identifier: 09:9C:81:5F:CA:68:2A:6E:28:60:4F:E9:62:FD:10:71:58:27:E9:5D Certificate issuer: /CN=A91DEB2E/serialNumber=099C815FCA682A6E28604FE962FD10715827E95D Certificate serial: 01C1 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CZyBX8poKm4oYE_pYv0QcVgn6V0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91DEB2E/6FC8BFDE8C2111EDB2B2F30AC4F9AE02/CZyBX8poKm4oYE_pYv0QcVgn6V0.mft Manifest number: 01BB Signing time: Sun 11 May 2025 02:04:23 +0000 Manifest this update: Sun 11 May 2025 02:04:23 +0000 Manifest next update: Sun 18 May 2025 02:04:23 +0000 Files and hashes: 1: CZyBX8poKm4oYE_pYv0QcVgn6V0.crl (hash: MiYSDFrIv9danSnECurKHVC5rMIuOkN7TSWVZ7acKdU=) 2: 3CB103648C2511EDB64DB410C4F9AE02.roa (hash: MmbQus/ep65NlWLekYokD81GuyXquRa4J0H16aokObA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91DEB2E/6FC8BFDE8C2111EDB2B2F30AC4F9AE02/CZyBX8poKm4oYE_pYv0QcVgn6V0.crl rsync://rpki.apnic.net/member_repository/A91DEB2E/6FC8BFDE8C2111EDB2B2F30AC4F9AE02/CZyBX8poKm4oYE_pYv0QcVgn6V0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CZyBX8poKm4oYE_pYv0QcVgn6V0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 18 May 2025 02:04:22 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 449 (0x1c1) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DEB2E, serialNumber=099C815FCA682A6E28604FE962FD10715827E95D Validity Not Before: May 11 02:04:23 2025 GMT Not After : May 18 02:04:23 2025 GMT Subject: CN=682005a7-38ad Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:fd:ed:a5:c2:47:8d:2b:c5:ff:ed:06:c8:44: 66:7e:c8:b9:29:79:c9:18:4b:bd:83:99:da:af:e2: 99:50:ae:13:44:f0:32:a2:21:47:dd:b6:a1:3d:d6: b7:66:e5:ed:70:d4:b6:cf:ee:c2:22:47:60:7f:ce: b0:0d:40:f1:28:05:9b:46:73:ae:ae:62:14:73:a4: 21:37:b4:14:43:cb:ed:d0:d2:a3:b6:56:c2:7c:77: fc:4c:f5:63:cf:a4:24:5a:e6:e8:4f:55:2e:cf:df: 96:3d:ab:18:2b:6e:c0:ac:e2:e0:bd:fe:50:ae:e4: a8:49:1a:f3:1c:54:07:6d:7f:d7:72:82:2a:27:b8: c3:6d:45:9a:99:0a:a7:b2:83:52:2e:e6:2e:8e:65: 1b:73:9b:e8:fa:40:34:d0:d6:ea:ba:74:24:c5:58: 52:b9:38:7c:cc:81:2a:46:40:4a:d8:c0:89:c4:c7: 39:fd:d1:62:74:a1:29:c8:a0:d5:bf:29:de:c0:59: f3:e6:94:9e:92:e7:b5:5d:97:b5:27:5d:48:c7:5b: c7:d4:97:ac:98:28:89:9d:35:22:11:76:e7:92:67: a7:f0:ce:98:b7:15:23:7e:59:f9:93:bf:09:08:aa: 3a:1e:94:62:0d:ab:d9:49:8c:cb:97:64:e4:14:d6: c4:bf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CD:E4:BF:0C:A5:EC:30:CA:B7:FC:CB:0A:BB:0F:5C:EE:F2:1E:28:4A X509v3 Authority Key Identifier: keyid:09:9C:81:5F:CA:68:2A:6E:28:60:4F:E9:62:FD:10:71:58:27:E9:5D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91DEB2E/6FC8BFDE8C2111EDB2B2F30AC4F9AE02/CZyBX8poKm4oYE_pYv0QcVgn6V0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CZyBX8poKm4oYE_pYv0QcVgn6V0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DEB2E/6FC8BFDE8C2111EDB2B2F30AC4F9AE02/CZyBX8poKm4oYE_pYv0QcVgn6V0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 08:99:67:ed:21:fe:18:04:2b:66:d9:da:b2:89:c8:04:e6:97: 42:03:84:6b:2c:b1:43:13:ce:e0:fe:5c:ca:1f:a1:0e:8e:f8: 18:66:90:18:20:05:ac:c4:75:1e:ce:c7:71:a5:6d:65:3b:91: 43:c3:1f:e5:d8:a7:22:01:a7:4b:7a:2b:ea:5d:c9:a8:9f:aa: 99:aa:62:26:2c:1a:d8:42:41:c3:39:79:0c:c0:4d:ff:06:9a: 00:fb:95:68:87:cb:09:0e:4e:0b:cb:19:87:7c:fc:b8:85:4c: f0:48:99:4e:37:75:07:ad:a2:d1:47:35:b3:01:06:f0:e5:f5: 1e:71:cd:91:f3:43:ba:b8:37:9b:ec:6e:92:90:3f:c8:14:ab: 38:c1:d5:05:78:20:bc:49:4e:8f:81:34:ee:1c:f7:36:21:32: 6e:64:11:29:8c:c1:b1:5d:ee:34:ca:fc:e3:8a:d5:98:89:1b: 1b:87:8f:42:79:be:65:cc:d3:6b:23:9a:ec:07:e3:05:d6:c2: 98:9b:a4:d9:31:09:88:ae:33:0f:5d:86:79:77:c9:b1:34:7d: 2f:e3:91:42:e8:0e:9d:34:32:b7:6e:b2:dc:39:8c:4a:89:45: d1:71:88:09:d4:1b:ea:46:31:8e:e4:22:41:d5:f7:a6:ed:c7: 87:3f:0f:b6 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAcEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx REVCMkUxMTAvBgNVBAUTKDA5OUM4MTVGQ0E2ODJBNkUyODYwNEZFOTYyRkQxMDcx NTgyN0U5NUQwHhcNMjUwNTExMDIwNDIzWhcNMjUwNTE4MDIwNDIzWjAYMRYwFAYD VQQDEw02ODIwMDVhNy0zOGFkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvf3tpcJHjSvF/+0GyERmfsi5KXnJGEu9g5nar+KZUK4TRPAyoiFH3bahPda3 ZuXtcNS2z+7CIkdgf86wDUDxKAWbRnOurmIUc6QhN7QUQ8vt0NKjtlbCfHf8TPVj z6QkWuboT1Uuz9+WPasYK27ArOLgvf5QruSoSRrzHFQHbX/XcoIqJ7jDbUWamQqn soNSLuYujmUbc5vo+kA00NbqunQkxVhSuTh8zIEqRkBK2MCJxMc5/dFidKEpyKDV vynewFnz5pSekue1XZe1J11Ix1vH1JesmCiJnTUiEXbnkmen8M6YtxUjfln5k78J CKo6HpRiDavZSYzLl2TkFNbEvwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFM3kvwyl 7DDKt/zLCrsPXO7yHihKMB8GA1UdIwQYMBaAFAmcgV/KaCpuKGBP6WL9EHFYJ+ld MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFERUIyRS82RkM4QkZERThD MjExMUVEQjJCMkYzMEFDNEY5QUUwMi9DWnlCWDhwb0ttNG9ZRV9wWXYwUWNWZ242 VjAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0NaeUJYOHBvS200b1lFX3BZdjBRY1ZnbjZWMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE RUIyRS82RkM4QkZERThDMjExMUVEQjJCMkYzMEFDNEY5QUUwMi9DWnlCWDhwb0tt NG9ZRV9wWXYwUWNWZ242VjAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAImWftIf4YBCtm2dqyicgE5pdCA4RrLLFDE87g/lzKH6EOjvgYZpAY IAWsxHUezsdxpW1lO5FDwx/l2KciAadLeivqXcmon6qZqmImLBrYQkHDOXkMwE3/ BpoA+5Voh8sJDk4LyxmHfPy4hUzwSJlON3UHraLRRzWzAQbw5fUecc2R80O6uDeb 7G6SkD/IFKs4wdUFeCC8SU6PgTTuHPc2ITJuZBEpjMGxXe40yvzjitWYiRsbh49C eb5lzNNrI5rsB+MF1sKYm6TZMQmIrjMPXYZ5d8mxNH0v45FC6A6dNDK3brLcOYxK iUXRcYgJ1BvqRjGO5CJB1fem7ceHPw+2 -----END CERTIFICATE-----Generated at Mon May 12 21:58:06 2025 by rpki-client