$ rpki-client -vvf rpki.apnic.net/member_repository/A9175F43/599FEB44CBF611EF9F57E92DC4F9AE02/ZM9TLI4gsZbSW8fMflkyT5OBMnU.mft File: ZM9TLI4gsZbSW8fMflkyT5OBMnU.mft (raw, json) Hash identifier: P3GGezPiJxyerahJxZNw5PK1oVWsX+A8OOhoIKllEL4= Subject key identifier: 3D:C7:39:0D:0E:E5:B4:B5:B0:8D:96:BA:92:4B:8E:EB:94:2C:1F:63 Authority key identifier: 64:CF:53:2C:8E:20:B1:96:D2:5B:C7:CC:7E:59:32:4F:93:81:32:75 Certificate issuer: /CN=A9175F43/serialNumber=64CF532C8E20B196D25BC7CC7E59324F93813275 Certificate serial: 44 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ZM9TLI4gsZbSW8fMflkyT5OBMnU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9175F43/599FEB44CBF611EF9F57E92DC4F9AE02/ZM9TLI4gsZbSW8fMflkyT5OBMnU.mft Manifest number: 43 Signing time: Tue 13 May 2025 06:37:36 +0000 Manifest this update: Tue 13 May 2025 06:37:35 +0000 Manifest next update: Tue 20 May 2025 06:37:35 +0000 Files and hashes: 1: ZM9TLI4gsZbSW8fMflkyT5OBMnU.crl (hash: fzOVPRyyIfvZoRw71QvneqGRpCN4J52v57ZACbz0Zbc=) 2: B8587822CBF611EFAE14812EC4F9AE02.roa (hash: BAKZvJEz8yyj6HH1ezZDzfaPEc4hpm29xOe5qwW+d7U=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9175F43/599FEB44CBF611EF9F57E92DC4F9AE02/ZM9TLI4gsZbSW8fMflkyT5OBMnU.crl rsync://rpki.apnic.net/member_repository/A9175F43/599FEB44CBF611EF9F57E92DC4F9AE02/ZM9TLI4gsZbSW8fMflkyT5OBMnU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ZM9TLI4gsZbSW8fMflkyT5OBMnU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 20 May 2025 06:37:35 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 68 (0x44) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9175F43, serialNumber=64CF532C8E20B196D25BC7CC7E59324F93813275 Validity Not Before: May 13 06:37:35 2025 GMT Not After : May 20 06:37:35 2025 GMT Subject: CN=6822e8b0-1d83 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dc:45:a7:38:07:38:da:72:ee:a9:f7:1e:63:dc: b3:f4:9d:d3:b3:c1:89:d6:dd:aa:7c:f9:2b:34:93: 56:9a:bf:10:59:ef:c6:0f:c2:40:f2:21:e3:9e:a4: 73:e3:64:39:c6:53:53:67:30:a9:a3:1d:e1:d3:af: 8b:1c:72:5c:49:30:ba:26:13:84:c1:6b:46:90:46: db:05:0d:59:94:0e:d5:57:bc:c4:d4:9d:30:1b:b5: 3e:8b:c8:e3:26:bb:21:c2:73:74:af:7c:a7:1f:31: bc:08:5b:a9:0d:e8:6a:4f:a0:49:6f:20:f5:d3:54: 58:d0:6d:3c:9a:e3:7d:9f:9a:6a:74:4e:db:88:98: 81:1c:f8:a3:e3:bd:d8:e9:d3:e8:c4:07:83:0c:55: 94:c8:e0:68:d2:7b:63:db:9e:de:8d:7c:63:a6:68: 99:5d:0c:37:4c:99:96:9d:91:83:3d:1b:cf:a6:f7: a7:44:0a:43:f2:a8:97:92:4b:22:df:92:a4:de:80: 76:8b:ba:82:b0:8a:0c:ab:ec:00:78:ac:7d:22:9a: 39:76:1b:bd:73:52:36:d7:8d:fa:99:59:56:83:67: d3:3f:d2:d9:7c:ee:f6:e4:3e:93:48:54:d2:26:cb: 8d:7b:e7:1f:79:99:c5:c1:8a:a4:e5:13:c4:87:4d: 5a:f1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3D:C7:39:0D:0E:E5:B4:B5:B0:8D:96:BA:92:4B:8E:EB:94:2C:1F:63 X509v3 Authority Key Identifier: keyid:64:CF:53:2C:8E:20:B1:96:D2:5B:C7:CC:7E:59:32:4F:93:81:32:75 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9175F43/599FEB44CBF611EF9F57E92DC4F9AE02/ZM9TLI4gsZbSW8fMflkyT5OBMnU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ZM9TLI4gsZbSW8fMflkyT5OBMnU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9175F43/599FEB44CBF611EF9F57E92DC4F9AE02/ZM9TLI4gsZbSW8fMflkyT5OBMnU.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 32:1e:f2:7b:44:7f:d7:7e:95:e5:1c:0e:03:d9:a9:5a:96:61: 19:88:11:5f:d8:d7:fd:d3:98:fd:d8:ce:7c:56:d2:47:f9:28: e6:4b:79:9d:fc:9f:00:91:1f:4e:2f:91:b2:8f:dd:d6:39:be: c3:14:60:69:54:64:ec:c5:90:b8:d2:a0:02:af:48:ad:35:3c: 0a:2b:89:49:ab:f4:f9:1b:bf:aa:2c:83:4d:66:a2:c6:29:43: 22:fd:26:ff:67:5f:a3:d0:e8:f4:17:d2:36:b6:6d:91:6b:8f: 8a:bb:43:74:30:ab:df:59:94:41:7b:34:dc:08:20:79:75:07: cc:57:12:8e:26:06:9d:bc:83:f1:3e:d4:31:e1:41:85:d3:b6: 8a:88:98:5d:7a:3f:7c:6c:dc:50:83:60:e8:77:31:fb:fc:a1: 16:5e:81:b1:f9:3f:69:6c:3c:89:6b:bd:4c:aa:be:de:cd:ed: c9:62:bd:94:dc:43:02:e7:30:8e:df:6c:4f:dd:e3:ae:d8:c3: 44:75:f5:08:f5:9f:c9:2d:0e:6e:a8:cd:a8:a5:14:c8:a2:a9: 13:e6:cb:41:bd:da:04:46:60:4d:a0:c2:a6:a6:cf:5e:d8:f5: 8c:65:bb:86:ff:06:84:f5:41:30:ba:e2:3f:d0:de:c6:40:60: 53:9e:1a:d2 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBRDANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE3 NUY0MzExMC8GA1UEBRMoNjRDRjUzMkM4RTIwQjE5NkQyNUJDN0NDN0U1OTMyNEY5 MzgxMzI3NTAeFw0yNTA1MTMwNjM3MzVaFw0yNTA1MjAwNjM3MzVaMBgxFjAUBgNV BAMTDTY4MjJlOGIwLTFkODMwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDcRac4Bzjacu6p9x5j3LP0ndOzwYnW3ap8+Ss0k1aavxBZ78YPwkDyIeOepHPj ZDnGU1NnMKmjHeHTr4scclxJMLomE4TBa0aQRtsFDVmUDtVXvMTUnTAbtT6LyOMm uyHCc3SvfKcfMbwIW6kN6GpPoElvIPXTVFjQbTya432fmmp0TtuImIEc+KPjvdjp 0+jEB4MMVZTI4GjSe2Pbnt6NfGOmaJldDDdMmZadkYM9G8+m96dECkPyqJeSSyLf kqTegHaLuoKwigyr7AB4rH0imjl2G71zUjbXjfqZWVaDZ9M/0tl87vbkPpNIVNIm y4175x95mcXBiqTlE8SHTVrxAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUPcc5DQ7l tLWwjZa6kkuO65QsH2MwHwYDVR0jBBgwFoAUZM9TLI4gsZbSW8fMflkyT5OBMnUw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTc1RjQzLzU5OUZFQjQ0Q0JG NjExRUY5RjU3RTkyREM0RjlBRTAyL1pNOVRMSTRnc1piU1c4Zk1mbGt5VDVPQk1u VS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvWk05VExJNGdzWmJTVzhmTWZsa3lUNU9CTW5VLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTc1 RjQzLzU5OUZFQjQ0Q0JGNjExRUY5RjU3RTkyREM0RjlBRTAyL1pNOVRMSTRnc1pi U1c4Zk1mbGt5VDVPQk1uVS5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBADIe8ntEf9d+leUcDgPZqVqWYRmIEV/Y1/3TmP3YznxW0kf5KOZLeZ38 nwCRH04vkbKP3dY5vsMUYGlUZOzFkLjSoAKvSK01PAoriUmr9Pkbv6osg01mosYp QyL9Jv9nX6PQ6PQX0ja2bZFrj4q7Q3Qwq99ZlEF7NNwIIHl1B8xXEo4mBp28g/E+ 1DHhQYXTtoqImF16P3xs3FCDYOh3Mfv8oRZegbH5P2lsPIlrvUyqvt7N7clivZTc QwLnMI7fbE/d467Yw0R19Qj1n8ktDm6ozailFMiiqRPmy0G92gRGYE2gwqamz17Y 9Yxlu4b/BoT1QTC64j/Q3sZAYFOeGtI= -----END CERTIFICATE-----Generated at Tue May 13 18:51:05 2025 by rpki-client