$ rpki-client -vvf rpki.apnic.net/member_repository/A91AB9A1/57337ACA8D7911EB8D8BD60BC4F9AE02/zl8rQ5utW-vicqch6qzDj6rdSbQ.mft File: zl8rQ5utW-vicqch6qzDj6rdSbQ.mft (raw, json) Hash identifier: lmxsYw3N8lkpEsfnAF0N39fKrDIXs8MZoUrP3x46BuY= Subject key identifier: 6C:04:A5:D0:73:6E:C4:25:22:93:D2:F2:9E:79:B0:47:2F:13:BD:5A Authority key identifier: CE:5F:2B:43:9B:AD:5B:EB:E2:72:A7:21:EA:AC:C3:8F:AA:DD:49:B4 Certificate issuer: /CN=A91AB9A1/serialNumber=CE5F2B439BAD5BEBE272A721EAACC38FAADD49B4 Certificate serial: 065E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/zl8rQ5utW-vicqch6qzDj6rdSbQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91AB9A1/57337ACA8D7911EB8D8BD60BC4F9AE02/zl8rQ5utW-vicqch6qzDj6rdSbQ.mft Manifest number: 065E Signing time: Wed 02 Jul 2025 14:42:16 +0000 Manifest this update: Wed 02 Jul 2025 14:42:15 +0000 Manifest next update: Wed 09 Jul 2025 14:42:15 +0000 Files and hashes: 1: zl8rQ5utW-vicqch6qzDj6rdSbQ.crl (hash: ARUr55KPfJJaTVSBv27jcYG8bwy4BHktgpVHRCb01bU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91AB9A1/57337ACA8D7911EB8D8BD60BC4F9AE02/zl8rQ5utW-vicqch6qzDj6rdSbQ.crl rsync://rpki.apnic.net/member_repository/A91AB9A1/57337ACA8D7911EB8D8BD60BC4F9AE02/zl8rQ5utW-vicqch6qzDj6rdSbQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/zl8rQ5utW-vicqch6qzDj6rdSbQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 09 Jul 2025 14:42:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1630 (0x65e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91AB9A1, serialNumber=CE5F2B439BAD5BEBE272A721EAACC38FAADD49B4 Validity Not Before: Jul 2 14:42:15 2025 GMT Not After : Jul 9 14:42:15 2025 GMT Subject: CN=68654547-323f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a5:d4:0d:ca:2a:8c:a7:ee:00:78:98:3d:09:cf: d6:fe:7c:d2:1d:ab:6e:74:2d:06:a1:79:47:3c:22: d0:65:41:d6:ee:c7:61:37:9a:82:a3:5d:2d:a1:b5: 32:82:71:1f:13:1d:36:9f:c7:16:19:d5:c7:80:e9: aa:8c:1c:da:8a:a4:39:88:38:75:10:f6:94:c9:5e: 7f:c6:c0:aa:40:80:19:5d:a5:e6:88:cb:4f:83:c4: 11:3b:9a:b2:4d:16:21:97:8d:69:7f:d3:6f:8b:24: 6f:29:55:b8:92:fa:e9:40:ea:89:2d:f7:e4:2c:aa: b1:2f:7f:c9:ff:b4:9f:65:a7:ce:1b:fb:9d:6c:a5: c2:73:f2:51:16:92:ca:e6:a2:dc:14:eb:40:8b:e6: c4:d4:db:5e:f6:f0:6a:d4:a3:a3:18:eb:40:0b:e5: 43:fb:08:82:93:da:de:aa:98:48:55:b2:90:35:47: ae:9e:4c:93:36:7b:97:2c:3e:74:96:38:7f:ef:98: 3b:fb:a6:c2:29:bd:f9:c9:e8:ca:1c:50:5a:8d:70: c2:d7:48:0e:fb:6a:37:d9:c5:3e:d7:70:76:2f:c4: f0:e4:6c:80:be:15:ce:ff:f0:2c:dd:d3:7f:59:4e: 34:59:f4:6c:25:09:e5:3c:8a:47:ee:b5:88:58:4a: c7:a3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6C:04:A5:D0:73:6E:C4:25:22:93:D2:F2:9E:79:B0:47:2F:13:BD:5A X509v3 Authority Key Identifier: keyid:CE:5F:2B:43:9B:AD:5B:EB:E2:72:A7:21:EA:AC:C3:8F:AA:DD:49:B4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91AB9A1/57337ACA8D7911EB8D8BD60BC4F9AE02/zl8rQ5utW-vicqch6qzDj6rdSbQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/zl8rQ5utW-vicqch6qzDj6rdSbQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91AB9A1/57337ACA8D7911EB8D8BD60BC4F9AE02/zl8rQ5utW-vicqch6qzDj6rdSbQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 70:b0:90:13:93:22:a5:8c:ef:7a:e8:62:f2:49:2d:b0:93:9e: 44:c6:d3:af:1d:3a:a2:6d:1d:b3:4f:f0:9c:29:63:92:ed:77: 28:26:1c:fa:15:a2:3f:2d:1a:4a:33:b2:e2:33:d6:1b:fa:f6: 69:1a:ab:f1:22:de:ec:1e:18:51:5b:d1:7b:06:8a:8c:2a:1b: a6:80:1f:fd:17:11:8b:bc:87:88:0d:ea:69:ca:6f:a6:bf:f8: 60:c7:15:33:1c:2f:40:5b:14:bd:53:d7:76:a4:29:64:8b:5c: 42:35:a3:1d:27:60:bc:3a:4d:e1:af:80:4b:55:a5:00:10:ab: ab:f7:7c:59:0e:93:28:41:bd:b1:ec:dd:cb:91:8b:b9:c8:83: e4:44:0b:cf:16:49:28:b5:93:ff:fe:4f:5d:2e:c4:a3:28:18: 5e:15:2d:9c:09:df:ff:47:91:d4:16:e3:0f:d8:07:24:54:7e: 61:ba:4b:4a:1c:0d:b7:73:15:59:8d:94:a2:e3:5b:b2:9e:b1: 8f:ce:a1:a6:d9:54:16:6b:7b:02:fc:be:d0:72:d8:9d:7b:e1: ab:a6:ec:33:f5:be:6e:37:06:1b:17:89:4b:78:3b:c3:76:9a: f0:dd:a5:82:85:ae:ee:4b:cc:ff:2d:6a:58:e7:31:0e:48:a9: b0:87:2b:4a -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBl4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QUI5QTExMTAvBgNVBAUTKENFNUYyQjQzOUJBRDVCRUJFMjcyQTcyMUVBQUNDMzhG QUFERDQ5QjQwHhcNMjUwNzAyMTQ0MjE1WhcNMjUwNzA5MTQ0MjE1WjAYMRYwFAYD VQQDEw02ODY1NDU0Ny0zMjNmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEApdQNyiqMp+4AeJg9Cc/W/nzSHatudC0GoXlHPCLQZUHW7sdhN5qCo10tobUy gnEfEx02n8cWGdXHgOmqjBzaiqQ5iDh1EPaUyV5/xsCqQIAZXaXmiMtPg8QRO5qy TRYhl41pf9NviyRvKVW4kvrpQOqJLffkLKqxL3/J/7SfZafOG/udbKXCc/JRFpLK 5qLcFOtAi+bE1Nte9vBq1KOjGOtAC+VD+wiCk9reqphIVbKQNUeunkyTNnuXLD50 ljh/75g7+6bCKb35yejKHFBajXDC10gO+2o32cU+13B2L8Tw5GyAvhXO//As3dN/ WU40WfRsJQnlPIpH7rWIWErHowIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFGwEpdBz bsQlIpPS8p55sEcvE71aMB8GA1UdIwQYMBaAFM5fK0ObrVvr4nKnIeqsw4+q3Um0 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBQjlBMS81NzMzN0FDQThE NzkxMUVCOEQ4QkQ2MEJDNEY5QUUwMi96bDhyUTV1dFctdmljcWNoNnF6RGo2cmRT YlEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3psOHJRNXV0Vy12aWNxY2g2cXpEajZyZFNiUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB QjlBMS81NzMzN0FDQThENzkxMUVCOEQ4QkQ2MEJDNEY5QUUwMi96bDhyUTV1dFct dmljcWNoNnF6RGo2cmRTYlEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBwsJATkyKljO966GLySS2wk55ExtOvHTqibR2zT/CcKWOS7XcoJhz6 FaI/LRpKM7LiM9Yb+vZpGqvxIt7sHhhRW9F7BoqMKhumgB/9FxGLvIeIDeppym+m v/hgxxUzHC9AWxS9U9d2pClki1xCNaMdJ2C8Ok3hr4BLVaUAEKur93xZDpMoQb2x 7N3LkYu5yIPkRAvPFkkotZP//k9dLsSjKBheFS2cCd//R5HUFuMP2AckVH5huktK HA23cxVZjZSi41uynrGPzqGm2VQWa3sC/L7Qctide+Grpuwz9b5uNwYbF4lLeDvD dprw3aWCha7uS8z/LWpY5zEOSKmwhytK -----END CERTIFICATE-----Generated at Fri Jul 4 00:04:32 2025 by rpki-client