$ rpki-client -vvf rpki.apnic.net/member_repository/A91E4D9B/F5BAA3D8C80011EA87D44A78C4F9AE02/z4nWqxHn1Hqhe0MJxypytxy6R64.mft File: z4nWqxHn1Hqhe0MJxypytxy6R64.mft (raw, json) Hash identifier: YotUTI8dSL9RIPHTYdltZ24nNgg6ciqeV+7E9YECxTc= Subject key identifier: F6:DD:B9:F6:39:5E:35:30:20:B8:B7:17:F1:B6:BD:97:AD:21:95:D3 Authority key identifier: CF:89:D6:AB:11:E7:D4:7A:A1:7B:43:09:C7:2A:72:B7:1C:BA:47:AE Certificate issuer: /CN=A91E4D9B/serialNumber=CF89D6AB11E7D47AA17B4309C72A72B71CBA47AE Certificate serial: 0863 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/z4nWqxHn1Hqhe0MJxypytxy6R64.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E4D9B/F5BAA3D8C80011EA87D44A78C4F9AE02/z4nWqxHn1Hqhe0MJxypytxy6R64.mft Manifest number: 0859 Signing time: Wed 14 May 2025 20:51:01 +0000 Manifest this update: Wed 14 May 2025 20:51:00 +0000 Manifest next update: Wed 21 May 2025 20:51:00 +0000 Files and hashes: 1: z4nWqxHn1Hqhe0MJxypytxy6R64.crl (hash: CQ9UUZnjYgSbZCHnT5WOGVENqOwXKlZmgdPqgxlstBI=) 2: CCF7B8AA22B811ECAD21FB20C4F9AE02.roa (hash: jP9WQeUuHByQOgvhcc4yViwwc1IsiLi4j4kFeZuXSLA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E4D9B/F5BAA3D8C80011EA87D44A78C4F9AE02/z4nWqxHn1Hqhe0MJxypytxy6R64.crl rsync://rpki.apnic.net/member_repository/A91E4D9B/F5BAA3D8C80011EA87D44A78C4F9AE02/z4nWqxHn1Hqhe0MJxypytxy6R64.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/z4nWqxHn1Hqhe0MJxypytxy6R64.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 21 May 2025 20:51:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2147 (0x863) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E4D9B, serialNumber=CF89D6AB11E7D47AA17B4309C72A72B71CBA47AE Validity Not Before: May 14 20:51:00 2025 GMT Not After : May 21 20:51:00 2025 GMT Subject: CN=68250235-e2e7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:31:54:18:c0:e7:39:62:19:33:4a:ce:7a:93: f7:91:98:40:98:c4:94:b4:d4:1b:e2:de:80:17:3a: c0:fa:5d:b6:3f:1d:08:da:13:f7:de:56:b4:9c:63: 5f:88:a5:55:42:8f:98:3f:bd:6d:5b:d1:0d:a6:16: cf:11:a5:62:08:a0:8f:42:5f:51:c4:d9:3d:27:6b: 30:d4:ef:74:e6:ab:0f:6a:73:54:5d:5d:54:19:e9: 65:b6:23:6a:21:57:55:57:62:d8:68:14:0e:52:c0: fa:f4:77:71:c0:af:ec:94:9d:58:58:a1:a5:54:f2: 34:c1:0d:15:ff:8b:fd:46:43:8b:61:de:76:35:63: 0c:45:9c:db:f5:7e:1b:43:b1:81:eb:8d:87:6b:86: 17:3b:6c:59:6e:4b:a0:8e:3a:97:fa:0a:b8:bc:22: fa:f0:0c:0c:8a:f3:5f:55:be:9c:04:7f:de:3c:c2: 0c:c7:eb:f1:28:40:11:41:aa:47:35:83:03:af:8b: 07:8c:51:86:3e:44:23:df:91:d0:9d:c1:5f:45:a0: 66:c5:03:7a:cd:59:24:53:20:d5:91:95:43:e3:fd: 90:4e:b0:7e:0d:9c:9b:e4:e5:46:87:d6:20:d5:e7: 0c:55:8f:7e:81:96:e3:70:41:7b:13:fc:05:9b:46: 19:7b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F6:DD:B9:F6:39:5E:35:30:20:B8:B7:17:F1:B6:BD:97:AD:21:95:D3 X509v3 Authority Key Identifier: keyid:CF:89:D6:AB:11:E7:D4:7A:A1:7B:43:09:C7:2A:72:B7:1C:BA:47:AE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E4D9B/F5BAA3D8C80011EA87D44A78C4F9AE02/z4nWqxHn1Hqhe0MJxypytxy6R64.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/z4nWqxHn1Hqhe0MJxypytxy6R64.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E4D9B/F5BAA3D8C80011EA87D44A78C4F9AE02/z4nWqxHn1Hqhe0MJxypytxy6R64.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 1d:01:2e:76:cc:c4:5b:88:98:34:4d:5e:d3:09:1d:ac:b3:0f: 64:69:96:49:bc:94:a5:6a:89:ea:50:8e:0d:04:a8:25:5a:82: 52:bc:6f:04:f0:cc:6a:23:a1:dc:6c:a0:d0:7c:98:83:8a:cb: 03:7b:83:38:b6:f3:25:f7:c2:53:e2:1a:6a:0f:6a:21:3b:b5: 27:6e:fc:48:25:13:e5:19:e8:16:45:56:50:e4:02:d6:7a:58: 13:c2:1f:05:c0:87:1f:92:16:57:b1:dc:f2:c9:43:5f:e4:8e: 95:ff:13:f3:22:e6:38:0f:0e:f3:99:c4:5f:ae:eb:8e:1c:8d: 80:0c:12:0a:71:9b:76:26:78:32:3b:30:2c:9e:5a:c4:26:7e: 60:98:59:5c:d5:62:aa:b5:62:9f:25:ee:f2:80:0d:bc:9b:6a: 09:5a:2f:70:af:80:7a:82:60:85:32:61:bb:d7:65:12:b5:11: b6:b2:99:40:6a:17:36:71:35:98:5d:a5:bd:de:fa:a8:85:21: 41:e1:27:87:c9:3b:4a:b5:91:ca:28:c3:59:69:73:d8:06:77: 6b:82:4f:12:a3:59:06:a3:f7:a6:f0:69:44:d7:de:69:59:8d: dd:f5:19:d8:10:fb:a9:ed:ea:29:09:db:99:11:f7:4d:50:fc: 39:f5:fb:49 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCGMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTREOUIxMTAvBgNVBAUTKENGODlENkFCMTFFN0Q0N0FBMTdCNDMwOUM3MkE3MkI3 MUNCQTQ3QUUwHhcNMjUwNTE0MjA1MTAwWhcNMjUwNTIxMjA1MTAwWjAYMRYwFAYD VQQDEw02ODI1MDIzNS1lMmU3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxDFUGMDnOWIZM0rOepP3kZhAmMSUtNQb4t6AFzrA+l22Px0I2hP33la0nGNf iKVVQo+YP71tW9ENphbPEaViCKCPQl9RxNk9J2sw1O905qsPanNUXV1UGelltiNq IVdVV2LYaBQOUsD69HdxwK/slJ1YWKGlVPI0wQ0V/4v9RkOLYd52NWMMRZzb9X4b Q7GB642Ha4YXO2xZbkugjjqX+gq4vCL68AwMivNfVb6cBH/ePMIMx+vxKEARQapH NYMDr4sHjFGGPkQj35HQncFfRaBmxQN6zVkkUyDVkZVD4/2QTrB+DZyb5OVGh9Yg 1ecMVY9+gZbjcEF7E/wFm0YZewIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFPbdufY5 XjUwILi3F/G2vZetIZXTMB8GA1UdIwQYMBaAFM+J1qsR59R6oXtDCccqcrccukeu MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFNEQ5Qi9GNUJBQTNEOEM4 MDAxMUVBODdENDRBNzhDNEY5QUUwMi96NG5XcXhIbjFIcWhlME1KeHlweXR4eTZS NjQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3o0bldxeEhuMUhxaGUwTUp4eXB5dHh5NlI2NC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF NEQ5Qi9GNUJBQTNEOEM4MDAxMUVBODdENDRBNzhDNEY5QUUwMi96NG5XcXhIbjFI cWhlME1KeHlweXR4eTZSNjQubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAdAS52zMRbiJg0TV7TCR2ssw9kaZZJvJSlaonqUI4NBKglWoJSvG8E 8MxqI6HcbKDQfJiDissDe4M4tvMl98JT4hpqD2ohO7UnbvxIJRPlGegWRVZQ5ALW elgTwh8FwIcfkhZXsdzyyUNf5I6V/xPzIuY4Dw7zmcRfruuOHI2ADBIKcZt2Jngy OzAsnlrEJn5gmFlc1WKqtWKfJe7ygA28m2oJWi9wr4B6gmCFMmG712UStRG2splA ahc2cTWYXaW93vqohSFB4SeHyTtKtZHKKMNZaXPYBndrgk8So1kGo/em8GlE195p WY3d9RnYEPup7eopCduZEfdNUPw59ftJ -----END CERTIFICATE-----Generated at Fri May 16 11:48:36 2025 by rpki-client