$ rpki-client -vvf rpki.apnic.net/member_repository/A9151932/521C8E5C720711EF9DC8BA21C4F9AE02/ZeF3DniFUQoYzpDYqt2e3n1bNVM.mft File: ZeF3DniFUQoYzpDYqt2e3n1bNVM.mft (raw, json) Hash identifier: VXkUkQMVlj4Q6REFYNbeZYrlk4B5q6YHcJbQG69Vups= Subject key identifier: C6:30:49:75:BB:03:E1:CD:DE:15:DF:0B:E3:15:33:1C:6B:63:57:4E Authority key identifier: 65:E1:77:0E:78:85:51:0A:18:CE:90:D8:AA:DD:9E:DE:7D:5B:35:53 Certificate issuer: /CN=A9151932/serialNumber=65E1770E7885510A18CE90D8AADD9EDE7D5B3553 Certificate serial: 8A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ZeF3DniFUQoYzpDYqt2e3n1bNVM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9151932/521C8E5C720711EF9DC8BA21C4F9AE02/ZeF3DniFUQoYzpDYqt2e3n1bNVM.mft Manifest number: 87 Signing time: Thu 15 May 2025 05:57:39 +0000 Manifest this update: Thu 15 May 2025 05:57:38 +0000 Manifest next update: Thu 22 May 2025 05:57:38 +0000 Files and hashes: 1: ZeF3DniFUQoYzpDYqt2e3n1bNVM.crl (hash: CHzr1V/5uFcQJLkMykqvq9PEAC+DgYZJY3hL2tUMOIo=) 2: 747C668ECCD911EF9B52C877C4F9AE02.roa (hash: vVZpZ/GG/1Ru9DW9P38xQ7eaFTzhr71A4G/otG0nIJg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9151932/521C8E5C720711EF9DC8BA21C4F9AE02/ZeF3DniFUQoYzpDYqt2e3n1bNVM.crl rsync://rpki.apnic.net/member_repository/A9151932/521C8E5C720711EF9DC8BA21C4F9AE02/ZeF3DniFUQoYzpDYqt2e3n1bNVM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ZeF3DniFUQoYzpDYqt2e3n1bNVM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 22 May 2025 05:57:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 138 (0x8a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9151932, serialNumber=65E1770E7885510A18CE90D8AADD9EDE7D5B3553 Validity Not Before: May 15 05:57:38 2025 GMT Not After : May 22 05:57:38 2025 GMT Subject: CN=68258252-13c6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d2:da:9d:ba:30:6c:de:14:fb:95:f4:d7:bb:bc: a8:3b:a0:73:74:7d:18:05:a4:e2:c4:c1:9a:1f:9e: 6e:7b:9e:0e:05:17:dc:ef:63:7a:32:f2:1e:98:fc: 38:c6:3e:7e:52:f6:8b:12:fa:1a:5a:f6:97:fa:9c: 1e:8c:ab:ef:e6:63:03:b1:95:53:4d:4c:42:1f:ba: 46:85:26:15:c4:15:05:f0:58:21:c9:7d:04:99:20: dc:e1:b0:b9:6a:ca:39:9a:55:ef:23:cf:ea:78:f8: 47:a3:35:3c:6c:57:91:e7:52:d8:88:d5:ab:f6:35: 63:37:28:ab:22:b4:7d:38:7f:ca:52:b4:22:d4:4e: b8:c6:14:37:e1:c1:6c:60:96:56:07:1e:af:3e:fc: 02:0e:48:d6:c9:4e:6f:b0:a0:db:56:99:40:3f:7e: 6e:6b:03:07:42:8a:5f:36:e0:dc:dc:98:5c:3e:91: d6:f6:05:dd:50:0e:35:2a:ba:99:77:06:48:69:00: 20:2e:cc:b1:64:9a:e9:7f:18:9c:37:0e:d3:da:ad: 30:d2:41:62:63:00:35:d1:54:bb:27:52:57:f3:1e: 69:69:7a:56:8a:3a:82:a5:83:94:b5:76:fc:9d:ef: b3:25:49:a4:33:c7:8b:6f:8e:e3:70:18:d0:d9:6a: 42:83 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C6:30:49:75:BB:03:E1:CD:DE:15:DF:0B:E3:15:33:1C:6B:63:57:4E X509v3 Authority Key Identifier: keyid:65:E1:77:0E:78:85:51:0A:18:CE:90:D8:AA:DD:9E:DE:7D:5B:35:53 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9151932/521C8E5C720711EF9DC8BA21C4F9AE02/ZeF3DniFUQoYzpDYqt2e3n1bNVM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ZeF3DniFUQoYzpDYqt2e3n1bNVM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9151932/521C8E5C720711EF9DC8BA21C4F9AE02/ZeF3DniFUQoYzpDYqt2e3n1bNVM.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption dd:c8:05:6e:68:7e:d5:e6:d1:b1:f0:c6:d8:56:99:ac:8d:3a: 7e:bc:c0:95:59:c4:2b:a9:93:83:0c:73:04:a5:b2:03:74:c3: dd:53:37:e9:62:21:6e:e8:4e:f0:86:9d:61:d5:3b:f4:42:26: 47:07:79:41:2e:47:54:d3:2f:e6:95:3d:7a:d8:eb:42:06:e2: e9:47:70:64:13:ce:4d:1b:8c:88:c2:a7:06:49:28:65:6c:5c: 14:b3:39:5e:fc:6f:92:d2:7c:eb:c2:db:65:1c:2b:db:1f:fb: d5:82:b9:4e:b0:63:89:1a:ea:71:54:78:52:dd:d1:7c:e6:32: 66:2c:a6:5d:3b:a8:e4:bf:54:80:99:01:69:8c:50:68:82:44: b2:8d:35:df:0c:01:f2:af:01:f0:46:91:a4:02:ae:5a:fb:e3: af:43:45:78:7e:00:2a:2a:f3:67:bf:f4:f2:30:8c:ab:a4:a3: cb:cb:1d:a3:b0:bc:0a:86:e4:9d:aa:02:4a:70:d5:5c:4e:b2: 40:2f:e1:03:98:d2:33:de:1a:6e:03:fc:4d:75:8e:f5:31:46: 63:3d:2e:13:b6:7e:0b:d3:0b:d5:24:dd:38:8c:81:b3:e0:d3: d8:51:b0:4a:11:a8:cf:bf:05:b7:da:5f:59:04:9b:dc:ae:cc: 40:28:02:99 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAIowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTE5MzIxMTAvBgNVBAUTKDY1RTE3NzBFNzg4NTUxMEExOENFOTBEOEFBREQ5RURF N0Q1QjM1NTMwHhcNMjUwNTE1MDU1NzM4WhcNMjUwNTIyMDU1NzM4WjAYMRYwFAYD VQQDEw02ODI1ODI1Mi0xM2M2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0tqdujBs3hT7lfTXu7yoO6BzdH0YBaTixMGaH55ue54OBRfc72N6MvIemPw4 xj5+UvaLEvoaWvaX+pwejKvv5mMDsZVTTUxCH7pGhSYVxBUF8FghyX0EmSDc4bC5 aso5mlXvI8/qePhHozU8bFeR51LYiNWr9jVjNyirIrR9OH/KUrQi1E64xhQ34cFs YJZWBx6vPvwCDkjWyU5vsKDbVplAP35uawMHQopfNuDc3JhcPpHW9gXdUA41KrqZ dwZIaQAgLsyxZJrpfxicNw7T2q0w0kFiYwA10VS7J1JX8x5paXpWijqCpYOUtXb8 ne+zJUmkM8eLb47jcBjQ2WpCgwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFMYwSXW7 A+HN3hXfC+MVMxxrY1dOMB8GA1UdIwQYMBaAFGXhdw54hVEKGM6Q2Krdnt59WzVT MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1MTkzMi81MjFDOEU1Qzcy MDcxMUVGOURDOEJBMjFDNEY5QUUwMi9aZUYzRG5pRlVRb1l6cERZcXQyZTNuMWJO Vk0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1plRjNEbmlGVVFvWXpwRFlxdDJlM24xYk5WTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 MTkzMi81MjFDOEU1QzcyMDcxMUVGOURDOEJBMjFDNEY5QUUwMi9aZUYzRG5pRlVR b1l6cERZcXQyZTNuMWJOVk0ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQDdyAVuaH7V5tGx8MbYVpmsjTp+vMCVWcQrqZODDHMEpbIDdMPdUzfp YiFu6E7whp1h1Tv0QiZHB3lBLkdU0y/mlT162OtCBuLpR3BkE85NG4yIwqcGSShl bFwUszle/G+S0nzrwttlHCvbH/vVgrlOsGOJGupxVHhS3dF85jJmLKZdO6jkv1SA mQFpjFBogkSyjTXfDAHyrwHwRpGkAq5a++OvQ0V4fgAqKvNnv/TyMIyrpKPLyx2j sLwKhuSdqgJKcNVcTrJAL+EDmNIz3hpuA/xNdY71MUZjPS4Ttn4L0wvVJN04jIGz 4NPYUbBKEajPvwW32l9ZBJvcrsxAKAKZ -----END CERTIFICATE-----Generated at Thu May 15 22:56:24 2025 by rpki-client