$ rpki-client -vvf rpki.apnic.net/member_repository/A91AB9A1/57337ACA8D7911EB8D8BD60BC4F9AE02/zl8rQ5utW-vicqch6qzDj6rdSbQ.mft File: zl8rQ5utW-vicqch6qzDj6rdSbQ.mft (raw, json) Hash identifier: zvLlksLCH8MP7stF+VVhFvAj3b+62+DmwV5pH26JxfM= Subject key identifier: 06:4A:16:37:F5:14:68:60:32:47:33:94:0E:C5:D8:A6:D9:46:46:C2 Authority key identifier: CE:5F:2B:43:9B:AD:5B:EB:E2:72:A7:21:EA:AC:C3:8F:AA:DD:49:B4 Certificate issuer: /CN=A91AB9A1/serialNumber=CE5F2B439BAD5BEBE272A721EAACC38FAADD49B4 Certificate serial: 0645 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/zl8rQ5utW-vicqch6qzDj6rdSbQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91AB9A1/57337ACA8D7911EB8D8BD60BC4F9AE02/zl8rQ5utW-vicqch6qzDj6rdSbQ.mft Manifest number: 0645 Signing time: Wed 14 May 2025 14:40:46 +0000 Manifest this update: Wed 14 May 2025 14:40:46 +0000 Manifest next update: Wed 21 May 2025 14:40:46 +0000 Files and hashes: 1: zl8rQ5utW-vicqch6qzDj6rdSbQ.crl (hash: p05qp0KqX6OjzrV4RGgUGAU0BAvXeE4Nkp7DmQGKuSw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91AB9A1/57337ACA8D7911EB8D8BD60BC4F9AE02/zl8rQ5utW-vicqch6qzDj6rdSbQ.crl rsync://rpki.apnic.net/member_repository/A91AB9A1/57337ACA8D7911EB8D8BD60BC4F9AE02/zl8rQ5utW-vicqch6qzDj6rdSbQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/zl8rQ5utW-vicqch6qzDj6rdSbQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 21 May 2025 14:40:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1605 (0x645) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91AB9A1, serialNumber=CE5F2B439BAD5BEBE272A721EAACC38FAADD49B4 Validity Not Before: May 14 14:40:46 2025 GMT Not After : May 21 14:40:46 2025 GMT Subject: CN=6824ab6e-b7cc Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:df:0b:ce:8d:99:41:6c:a3:3a:f2:ac:db:64:13: 57:97:e3:a4:a1:25:c7:0c:0c:49:7d:b1:99:9f:3f: 35:cd:59:18:95:94:d3:62:b3:6f:7e:b4:5f:ed:90: 39:72:6c:e5:73:6b:76:6a:42:8a:6b:b4:82:9b:8b: 78:d5:1e:ee:48:94:73:6f:a6:06:21:8d:ba:7c:c6: d1:32:cf:1c:dd:62:ad:4f:e5:1f:ff:ea:5b:3d:d7: d1:1a:73:a6:b9:39:c0:e3:8d:2c:77:88:da:1f:f9: cb:ca:65:cd:0b:20:45:00:b3:e0:89:7e:04:09:10: b9:69:fe:22:50:0e:e7:26:ea:9e:b2:bc:da:b4:b6: 60:24:8e:1a:8d:31:6a:e4:db:a2:b2:0f:d2:5e:c8: 27:28:45:0d:7a:f2:f4:fb:8c:bf:53:46:cb:79:e3: bb:70:67:61:60:57:1e:fe:e6:1a:95:10:15:87:35: 1a:d6:d0:fe:43:ab:73:ef:93:3a:70:02:7e:14:ee: 2e:c0:34:0e:4c:7a:39:1f:38:74:f2:fb:c5:fe:50: 3c:b6:8c:57:31:f9:f5:0b:ff:bb:bb:44:6d:18:27: be:0c:f1:74:df:30:f4:7e:98:01:fb:f3:5a:23:9d: ef:4b:ca:6c:85:9b:4a:76:9e:65:84:ec:d7:5e:e5: 88:c1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 06:4A:16:37:F5:14:68:60:32:47:33:94:0E:C5:D8:A6:D9:46:46:C2 X509v3 Authority Key Identifier: keyid:CE:5F:2B:43:9B:AD:5B:EB:E2:72:A7:21:EA:AC:C3:8F:AA:DD:49:B4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91AB9A1/57337ACA8D7911EB8D8BD60BC4F9AE02/zl8rQ5utW-vicqch6qzDj6rdSbQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/zl8rQ5utW-vicqch6qzDj6rdSbQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91AB9A1/57337ACA8D7911EB8D8BD60BC4F9AE02/zl8rQ5utW-vicqch6qzDj6rdSbQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption bd:cc:29:1c:54:54:e5:22:ba:29:5a:9e:f3:0f:47:d0:86:e0: 24:78:6e:c9:07:b0:e1:c4:68:b9:85:65:64:30:86:e9:69:b7: ed:d9:6a:18:e0:e7:b4:b9:ad:a1:90:9a:ec:fd:95:47:ea:f6: a0:fc:72:af:dd:7f:45:67:df:16:bf:0e:d5:be:26:65:f4:ae: 2a:27:d9:2c:4b:ac:b9:f6:48:2e:a2:f8:5b:ba:9d:43:bb:00: 8c:63:09:e8:9f:90:66:6a:ae:e1:ae:74:72:ef:7a:e6:e3:56: 04:8f:a5:a7:c9:cd:2d:78:7f:1b:b3:70:85:f4:50:06:66:d6: 11:bc:be:cf:8f:43:0f:c9:a1:8d:7d:89:d9:f7:99:e4:ff:bd: de:f9:87:95:6d:86:10:5e:3a:bc:57:60:ad:27:42:8e:e5:1f: e8:a0:47:3d:c2:1b:b0:ba:95:12:a6:78:21:a7:be:c0:65:54: 38:1f:de:f6:4c:78:39:64:da:9e:63:16:2b:34:42:ed:69:87: 46:41:68:95:5a:e2:bf:0c:f0:20:33:30:b4:57:ad:d8:68:8b: fe:74:9c:79:d5:4b:b3:31:22:76:5f:61:e1:ae:cb:65:1b:7f: 81:a2:27:34:c6:f6:e8:78:95:c3:fa:fc:c7:ce:b8:25:62:48: 14:09:48:1e -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBkUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QUI5QTExMTAvBgNVBAUTKENFNUYyQjQzOUJBRDVCRUJFMjcyQTcyMUVBQUNDMzhG QUFERDQ5QjQwHhcNMjUwNTE0MTQ0MDQ2WhcNMjUwNTIxMTQ0MDQ2WjAYMRYwFAYD VQQDEw02ODI0YWI2ZS1iN2NjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA3wvOjZlBbKM68qzbZBNXl+OkoSXHDAxJfbGZnz81zVkYlZTTYrNvfrRf7ZA5 cmzlc2t2akKKa7SCm4t41R7uSJRzb6YGIY26fMbRMs8c3WKtT+Uf/+pbPdfRGnOm uTnA440sd4jaH/nLymXNCyBFALPgiX4ECRC5af4iUA7nJuqesrzatLZgJI4ajTFq 5Nuisg/SXsgnKEUNevL0+4y/U0bLeeO7cGdhYFce/uYalRAVhzUa1tD+Q6tz75M6 cAJ+FO4uwDQOTHo5Hzh08vvF/lA8toxXMfn1C/+7u0RtGCe+DPF03zD0fpgB+/Na I53vS8pshZtKdp5lhOzXXuWIwQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFAZKFjf1 FGhgMkczlA7F2KbZRkbCMB8GA1UdIwQYMBaAFM5fK0ObrVvr4nKnIeqsw4+q3Um0 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBQjlBMS81NzMzN0FDQThE NzkxMUVCOEQ4QkQ2MEJDNEY5QUUwMi96bDhyUTV1dFctdmljcWNoNnF6RGo2cmRT YlEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3psOHJRNXV0Vy12aWNxY2g2cXpEajZyZFNiUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB QjlBMS81NzMzN0FDQThENzkxMUVCOEQ4QkQ2MEJDNEY5QUUwMi96bDhyUTV1dFct dmljcWNoNnF6RGo2cmRTYlEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQC9zCkcVFTlIropWp7zD0fQhuAkeG7JB7DhxGi5hWVkMIbpabft2WoY 4Oe0ua2hkJrs/ZVH6vag/HKv3X9FZ98Wvw7VviZl9K4qJ9ksS6y59kguovhbup1D uwCMYwnon5Bmaq7hrnRy73rm41YEj6Wnyc0teH8bs3CF9FAGZtYRvL7Pj0MPyaGN fYnZ95nk/73e+YeVbYYQXjq8V2CtJ0KO5R/ooEc9whuwupUSpnghp77AZVQ4H972 THg5ZNqeYxYrNELtaYdGQWiVWuK/DPAgMzC0V63YaIv+dJx51UuzMSJ2X2Hhrstl G3+Boic0xvboeJXD+vzHzrglYkgUCUge -----END CERTIFICATE-----Generated at Thu May 15 12:55:37 2025 by rpki-client