$ rpki-client -vvf rpki.apnic.net/member_repository/A91899BB/88C2F15E885811EB96CE6817C4F9AE02/ZfYWHHNtGpxBkf38x6T4JM4RIy0.mft File: ZfYWHHNtGpxBkf38x6T4JM4RIy0.mft (raw, json) Hash identifier: +hKMTFOzLimvT3P1cjGd15vWjrpUYqHlEwbG/xMYxrA= Subject key identifier: 8D:58:4A:9E:E7:55:81:12:B3:C7:C2:9E:B4:E7:C7:B7:8C:8B:B4:44 Authority key identifier: 65:F6:16:1C:73:6D:1A:9C:41:91:FD:FC:C7:A4:F8:24:CE:11:23:2D Certificate issuer: /CN=A91899BB/serialNumber=65F6161C736D1A9C4191FDFCC7A4F824CE11232D Certificate serial: 0643 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ZfYWHHNtGpxBkf38x6T4JM4RIy0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91899BB/88C2F15E885811EB96CE6817C4F9AE02/ZfYWHHNtGpxBkf38x6T4JM4RIy0.mft Manifest number: 0643 Signing time: Mon 12 May 2025 22:21:08 +0000 Manifest this update: Mon 12 May 2025 22:21:08 +0000 Manifest next update: Mon 19 May 2025 22:21:08 +0000 Files and hashes: 1: ZfYWHHNtGpxBkf38x6T4JM4RIy0.crl (hash: OtjW2TBcDRHy+P184jFVHiKGOKu6pZtr4/hP+UYKQIA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91899BB/88C2F15E885811EB96CE6817C4F9AE02/ZfYWHHNtGpxBkf38x6T4JM4RIy0.crl rsync://rpki.apnic.net/member_repository/A91899BB/88C2F15E885811EB96CE6817C4F9AE02/ZfYWHHNtGpxBkf38x6T4JM4RIy0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ZfYWHHNtGpxBkf38x6T4JM4RIy0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 19 May 2025 22:21:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1603 (0x643) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91899BB, serialNumber=65F6161C736D1A9C4191FDFCC7A4F824CE11232D Validity Not Before: May 12 22:21:08 2025 GMT Not After : May 19 22:21:08 2025 GMT Subject: CN=68227454-52f1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f1:fc:19:03:a2:ef:75:93:d8:53:a6:01:8f:83: 56:a2:f3:08:d9:a7:3b:ec:d4:7a:37:6f:18:d1:c8: 58:2f:09:6a:0f:9c:f0:3e:1e:6b:25:8f:04:2f:c3: bb:49:4f:f8:2f:b9:31:2d:21:ae:9b:fd:5f:ae:03: ac:17:0d:b6:ea:fa:61:3c:f6:73:92:7a:50:5d:c9: c7:22:b6:e5:8c:4f:43:38:18:4a:53:cf:a4:82:96: ab:fd:ee:cb:07:44:5f:52:18:c6:4b:f8:69:7a:e9: 7a:de:9c:bf:f3:6b:ec:b5:4f:13:ca:7b:4e:6a:30: 74:dc:d5:e8:5d:51:b0:de:25:5b:da:c3:70:97:98: 68:f7:a8:01:c1:e5:75:22:96:76:f5:85:15:60:99: fa:1f:b9:0b:5c:6b:7b:6c:af:64:0b:7c:d9:37:8d: bb:14:30:7c:ab:ae:dc:db:73:5d:14:77:0f:f2:cc: a2:c5:3a:39:36:b4:69:3c:f4:74:bd:fa:9d:a8:1b: a1:48:89:f7:9b:53:b2:a0:51:ef:b2:5c:7a:73:3d: 15:0d:50:a2:bd:bc:bf:a0:72:1e:dc:67:1c:4e:f7: 3c:f5:57:5d:a3:cc:da:4f:3d:f1:dc:2e:24:f1:0a: 84:32:00:1f:54:36:45:0e:45:13:c1:78:48:72:59: 1c:ef Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8D:58:4A:9E:E7:55:81:12:B3:C7:C2:9E:B4:E7:C7:B7:8C:8B:B4:44 X509v3 Authority Key Identifier: keyid:65:F6:16:1C:73:6D:1A:9C:41:91:FD:FC:C7:A4:F8:24:CE:11:23:2D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91899BB/88C2F15E885811EB96CE6817C4F9AE02/ZfYWHHNtGpxBkf38x6T4JM4RIy0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ZfYWHHNtGpxBkf38x6T4JM4RIy0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91899BB/88C2F15E885811EB96CE6817C4F9AE02/ZfYWHHNtGpxBkf38x6T4JM4RIy0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 9a:c5:63:d8:db:29:77:d4:97:fb:9f:6f:13:05:ff:06:98:59: 35:30:6d:a5:82:b3:51:f7:cc:16:23:7d:f2:91:c4:9d:ea:cc: f9:6b:63:58:0b:18:e7:87:ed:92:e0:ce:bb:69:b3:2e:cb:04: 45:c6:c6:69:a3:b8:e9:20:c1:74:6e:d7:14:d0:87:b1:c9:5c: b1:8a:5c:1b:45:3d:a4:74:b4:03:5c:f6:62:7b:9e:ed:2c:0d: 51:3c:53:86:64:80:79:99:c2:5e:37:bf:4b:c6:d8:d4:9a:c5: 13:99:c6:fd:8f:81:2e:0e:08:20:0e:74:89:9d:27:ff:9a:9b: 47:c1:1c:83:01:5f:3f:4e:e2:4e:fc:fc:1a:45:17:4b:b0:1b: f2:07:a4:aa:e0:22:78:4e:a8:e5:93:3e:ba:5f:dc:65:5b:c0: 65:cb:80:a1:74:63:28:9e:69:cc:10:fe:d4:bb:1c:75:2c:a1: ec:b9:ca:a4:26:a2:65:ab:48:ad:f0:12:3c:85:79:da:9f:9f: 61:2a:9d:04:5a:8b:85:db:07:a3:47:3d:f1:00:f5:ad:89:bd: 24:7e:74:e5:51:ed:ac:83:83:37:ee:a4:f2:0e:07:79:78:b8: 1d:3d:2a:15:10:8d:8b:6c:c5:0e:4d:5d:13:a3:48:22:25:41: b4:af:48:e3 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBkMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx ODk5QkIxMTAvBgNVBAUTKDY1RjYxNjFDNzM2RDFBOUM0MTkxRkRGQ0M3QTRGODI0 Q0UxMTIzMkQwHhcNMjUwNTEyMjIyMTA4WhcNMjUwNTE5MjIyMTA4WjAYMRYwFAYD VQQDEw02ODIyNzQ1NC01MmYxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA8fwZA6LvdZPYU6YBj4NWovMI2ac77NR6N28Y0chYLwlqD5zwPh5rJY8EL8O7 SU/4L7kxLSGum/1frgOsFw226vphPPZzknpQXcnHIrbljE9DOBhKU8+kgpar/e7L B0RfUhjGS/hpeul63py/82vstU8TyntOajB03NXoXVGw3iVb2sNwl5ho96gBweV1 IpZ29YUVYJn6H7kLXGt7bK9kC3zZN427FDB8q67c23NdFHcP8syixTo5NrRpPPR0 vfqdqBuhSIn3m1OyoFHvslx6cz0VDVCivby/oHIe3GccTvc89Vddo8zaTz3x3C4k 8QqEMgAfVDZFDkUTwXhIclkc7wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFI1YSp7n VYESs8fCnrTnx7eMi7REMB8GA1UdIwQYMBaAFGX2FhxzbRqcQZH9/Mek+CTOESMt MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4OTlCQi84OEMyRjE1RTg4 NTgxMUVCOTZDRTY4MTdDNEY5QUUwMi9aZllXSEhOdEdweEJrZjM4eDZUNEpNNFJJ eTAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1pmWVdISE50R3B4QmtmMzh4NlQ0Sk00Ukl5MC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 OTlCQi84OEMyRjE1RTg4NTgxMUVCOTZDRTY4MTdDNEY5QUUwMi9aZllXSEhOdEdw eEJrZjM4eDZUNEpNNFJJeTAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCaxWPY2yl31Jf7n28TBf8GmFk1MG2lgrNR98wWI33ykcSd6sz5a2NY Cxjnh+2S4M67abMuywRFxsZpo7jpIMF0btcU0IexyVyxilwbRT2kdLQDXPZie57t LA1RPFOGZIB5mcJeN79LxtjUmsUTmcb9j4EuDgggDnSJnSf/mptHwRyDAV8/TuJO /PwaRRdLsBvyB6Sq4CJ4Tqjlkz66X9xlW8Bly4ChdGMonmnMEP7Uuxx1LKHsucqk JqJlq0it8BI8hXnan59hKp0EWouF2wejRz3xAPWtib0kfnTlUe2sg4M37qTyDgd5 eLgdPSoVEI2LbMUOTV0To0giJUG0r0jj -----END CERTIFICATE-----Generated at Wed May 14 11:26:33 2025 by rpki-client