$ rpki-client -vvf rpki.apnic.net/member_repository/A9112407/900DFF5E905911EB8F1EEE10C4F9AE02/zyFSbZJsuDI3TI6b1c4dW7zWYIQ.mft File: zyFSbZJsuDI3TI6b1c4dW7zWYIQ.mft (raw, json) Hash identifier: CxXYZPeYJZV3/I4mc2ec9NI6bIdfRkUgsRl5BouwQc8= Subject key identifier: 24:7C:D5:FE:49:6E:02:2C:3F:7C:3E:55:90:12:7E:2E:C0:C0:76:43 Authority key identifier: CF:21:52:6D:92:6C:B8:32:37:4C:8E:9B:D5:CE:1D:5B:BC:D6:60:84 Certificate issuer: /CN=A9112407/serialNumber=CF21526D926CB832374C8E9BD5CE1D5BBCD66084 Certificate serial: 0643 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/zyFSbZJsuDI3TI6b1c4dW7zWYIQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9112407/900DFF5E905911EB8F1EEE10C4F9AE02/zyFSbZJsuDI3TI6b1c4dW7zWYIQ.mft Manifest number: 063B Signing time: Sun 04 May 2025 22:19:24 +0000 Manifest this update: Sun 04 May 2025 22:19:24 +0000 Manifest next update: Sun 11 May 2025 22:19:23 +0000 Files and hashes: 1: zyFSbZJsuDI3TI6b1c4dW7zWYIQ.crl (hash: kw21ciMgUkwmsXWjB4XrLUqBUDg4+54KrayooE7Figk=) 2: 3DF2A2EC3AB311EC977A5D60C4F9AE02.roa (hash: Ccp5i/dm7+8eXzkZNFr+8Fkp38efiWixun6YhIXlQUA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9112407/900DFF5E905911EB8F1EEE10C4F9AE02/zyFSbZJsuDI3TI6b1c4dW7zWYIQ.crl rsync://rpki.apnic.net/member_repository/A9112407/900DFF5E905911EB8F1EEE10C4F9AE02/zyFSbZJsuDI3TI6b1c4dW7zWYIQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/zyFSbZJsuDI3TI6b1c4dW7zWYIQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 11 May 2025 18:51:26 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1603 (0x643) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9112407, serialNumber=CF21526D926CB832374C8E9BD5CE1D5BBCD66084 Validity Not Before: May 4 22:19:24 2025 GMT Not After : May 11 22:19:23 2025 GMT Subject: CN=6817e7ec-aeab Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:44:1a:6b:8a:0e:57:da:3f:1e:89:a8:c2:dd: 40:43:0c:96:ec:9e:81:0d:f6:fc:05:c8:2b:de:6b: 69:9c:8f:42:43:05:2d:94:1b:04:36:c0:a6:9d:65: 58:dc:22:80:8b:0e:b7:57:3b:96:a7:0a:f4:2e:20: c1:0a:9f:34:a8:4c:91:2c:db:a9:d3:b7:5b:62:68: 5b:dc:05:e4:e3:2e:8e:36:9c:ac:ca:d9:d1:77:f2: 4d:2b:65:00:cd:6f:8b:eb:45:52:4b:1f:06:27:f2: 72:31:99:69:38:b6:21:e8:8a:c1:28:0a:9b:67:21: 5a:8e:d0:09:6a:65:10:97:7d:da:24:16:f3:66:f4: 99:29:12:8d:52:9f:90:db:d5:78:0d:f0:6a:65:0d: ed:54:b0:d3:a6:8e:50:98:69:c8:ed:52:09:6e:5f: 3b:80:28:7a:61:06:96:76:de:9e:a1:d9:0d:87:7e: e0:bd:8b:ee:8d:3d:c2:1e:80:86:09:37:06:60:76: ab:00:6b:d2:75:05:66:c1:29:9c:d9:40:1f:7c:fc: 8f:70:70:7a:b0:38:6b:52:51:5e:ac:9f:dc:fd:87: 89:ed:84:c7:b4:c7:08:54:7a:5a:d2:d1:ac:87:e2: 5a:80:18:43:47:ae:5a:80:e1:6f:0f:a1:f7:54:c3: 8f:8d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 24:7C:D5:FE:49:6E:02:2C:3F:7C:3E:55:90:12:7E:2E:C0:C0:76:43 X509v3 Authority Key Identifier: keyid:CF:21:52:6D:92:6C:B8:32:37:4C:8E:9B:D5:CE:1D:5B:BC:D6:60:84 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9112407/900DFF5E905911EB8F1EEE10C4F9AE02/zyFSbZJsuDI3TI6b1c4dW7zWYIQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/zyFSbZJsuDI3TI6b1c4dW7zWYIQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9112407/900DFF5E905911EB8F1EEE10C4F9AE02/zyFSbZJsuDI3TI6b1c4dW7zWYIQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 43:1b:1c:bf:e7:b1:96:99:b5:56:d6:a1:5f:f8:d5:24:ae:08: 7b:70:d5:df:19:2d:1c:d9:bd:22:3b:8b:19:7e:03:8e:8a:49: 88:4e:b5:df:78:1c:78:cb:90:36:ec:32:a0:ac:86:99:9f:15: 0c:42:c1:68:c2:c3:2b:f6:b6:86:02:ee:8c:4b:54:73:74:86: e2:d4:30:c7:b7:c4:54:e6:17:c3:14:9d:09:cb:d9:a1:89:0d: 19:61:9a:c9:30:3a:61:ff:0f:8d:f0:39:fb:b5:6c:e6:2c:99: 64:fd:8d:93:4c:1a:7f:c0:84:41:c4:ae:53:ed:86:01:9f:6c: 90:10:8b:3b:81:75:88:bb:68:8e:68:8b:98:3f:aa:ef:3d:88: 3a:d7:41:b6:7d:93:74:58:a7:a1:42:54:e6:67:60:5b:da:f5: 52:57:3b:44:03:03:f7:1e:35:c6:bc:c5:eb:17:d7:43:8d:9e: 6d:55:30:cf:9a:a6:d2:7c:fe:40:19:b5:ea:bb:15:9a:4a:a2: 8c:a2:74:5f:e5:b5:69:7a:ee:4b:ce:f5:88:9f:8b:59:41:32: ee:67:41:e5:88:0a:96:6b:e7:46:cf:ad:5f:09:c4:1e:fc:47: 5e:f5:1c:48:9f:c1:74:30:2a:4f:da:9f:48:2c:68:a0:65:fe: c6:b9:cb:db -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBkMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MTI0MDcxMTAvBgNVBAUTKENGMjE1MjZEOTI2Q0I4MzIzNzRDOEU5QkQ1Q0UxRDVC QkNENjYwODQwHhcNMjUwNTA0MjIxOTI0WhcNMjUwNTExMjIxOTIzWjAYMRYwFAYD VQQDEw02ODE3ZTdlYy1hZWFiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtkQaa4oOV9o/Homowt1AQwyW7J6BDfb8Bcgr3mtpnI9CQwUtlBsENsCmnWVY 3CKAiw63VzuWpwr0LiDBCp80qEyRLNup07dbYmhb3AXk4y6ONpysytnRd/JNK2UA zW+L60VSSx8GJ/JyMZlpOLYh6IrBKAqbZyFajtAJamUQl33aJBbzZvSZKRKNUp+Q 29V4DfBqZQ3tVLDTpo5QmGnI7VIJbl87gCh6YQaWdt6eodkNh37gvYvujT3CHoCG CTcGYHarAGvSdQVmwSmc2UAffPyPcHB6sDhrUlFerJ/c/YeJ7YTHtMcIVHpa0tGs h+JagBhDR65agOFvD6H3VMOPjQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFCR81f5J bgIsP3w+VZASfi7AwHZDMB8GA1UdIwQYMBaAFM8hUm2SbLgyN0yOm9XOHVu81mCE MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExMjQwNy85MDBERkY1RTkw NTkxMUVCOEYxRUVFMTBDNEY5QUUwMi96eUZTYlpKc3VESTNUSTZiMWM0ZFc3eldZ SVEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3p5RlNiWkpzdURJM1RJNmIxYzRkVzd6V1lJUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx MjQwNy85MDBERkY1RTkwNTkxMUVCOEYxRUVFMTBDNEY5QUUwMi96eUZTYlpKc3VE STNUSTZiMWM0ZFc3eldZSVEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBDGxy/57GWmbVW1qFf+NUkrgh7cNXfGS0c2b0iO4sZfgOOikmITrXf eBx4y5A27DKgrIaZnxUMQsFowsMr9raGAu6MS1RzdIbi1DDHt8RU5hfDFJ0Jy9mh iQ0ZYZrJMDph/w+N8Dn7tWzmLJlk/Y2TTBp/wIRBxK5T7YYBn2yQEIs7gXWIu2iO aIuYP6rvPYg610G2fZN0WKehQlTmZ2Bb2vVSVztEAwP3HjXGvMXrF9dDjZ5tVTDP mqbSfP5AGbXquxWaSqKMonRf5bVpeu5LzvWIn4tZQTLuZ0HliAqWa+dGz61fCcQe /Ede9RxIn8F0MCpP2p9ILGigZf7Gucvb -----END CERTIFICATE-----Generated at Mon May 5 01:20:58 2025 by rpki-client