$ rpki-client -vvf rpki.apnic.net/member_repository/A91B391F/58DB87F2457011EF9C8B8E71C4F9AE02/Zva4RKn4Ca4wexuc7kv9R8PHdxs.mft File: Zva4RKn4Ca4wexuc7kv9R8PHdxs.mft (raw, json) Hash identifier: obGYxDBoyipkxMNLxQFTdni/aiO4G2SB4sdT757+ND0= Subject key identifier: 45:C7:7D:A0:45:8C:C6:BD:EF:4D:AA:76:02:F8:81:EC:84:63:E3:F7 Authority key identifier: 66:F6:B8:44:A9:F8:09:AE:30:7B:1B:9C:EE:4B:FD:47:C3:C7:77:1B Certificate issuer: /CN=A91B391F/serialNumber=66F6B844A9F809AE307B1B9CEE4BFD47C3C7771B Certificate serial: 9A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Zva4RKn4Ca4wexuc7kv9R8PHdxs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B391F/58DB87F2457011EF9C8B8E71C4F9AE02/Zva4RKn4Ca4wexuc7kv9R8PHdxs.mft Manifest number: 9A Signing time: Thu 15 May 2025 05:35:04 +0000 Manifest this update: Thu 15 May 2025 05:35:04 +0000 Manifest next update: Thu 22 May 2025 05:35:04 +0000 Files and hashes: 1: Zva4RKn4Ca4wexuc7kv9R8PHdxs.crl (hash: EdwXMufTwSFG+/meE//f9lumYMlabHrIwWSkanGh9Bk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B391F/58DB87F2457011EF9C8B8E71C4F9AE02/Zva4RKn4Ca4wexuc7kv9R8PHdxs.crl rsync://rpki.apnic.net/member_repository/A91B391F/58DB87F2457011EF9C8B8E71C4F9AE02/Zva4RKn4Ca4wexuc7kv9R8PHdxs.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Zva4RKn4Ca4wexuc7kv9R8PHdxs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 22 May 2025 05:35:03 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 154 (0x9a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B391F, serialNumber=66F6B844A9F809AE307B1B9CEE4BFD47C3C7771B Validity Not Before: May 15 05:35:04 2025 GMT Not After : May 22 05:35:04 2025 GMT Subject: CN=68257d08-8f34 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:db:fd:6a:8f:e6:41:c2:0f:4f:35:11:0d:3b:a8: 42:8f:59:bb:c6:10:de:d0:ac:ff:f3:c7:a0:cb:7a: 19:fa:c1:d6:df:48:2b:8d:6c:2b:c0:46:da:e0:b6: bb:34:e5:53:e5:4d:6d:72:4b:32:05:89:31:95:ce: d6:d6:a6:7d:8f:2b:59:d0:c4:d9:e2:8c:ca:bf:15: dc:f4:a2:b8:2d:ed:84:8a:00:21:b3:43:45:d2:98: 08:e2:30:ac:80:f6:6b:06:ae:7a:41:0c:06:a3:fc: c1:7d:1e:56:d9:56:c8:55:9f:73:9e:2a:bf:45:cb: 9d:86:4b:53:40:02:55:75:c1:60:6d:62:91:d2:e3: d5:ca:05:19:6c:22:39:2a:42:b9:1d:f9:31:94:fe: 9b:ed:06:71:14:a2:2b:ee:d3:fe:cb:ae:46:0e:6a: a4:bf:1c:e5:aa:27:c9:54:16:89:3f:db:ae:e7:0b: 85:90:3c:9a:8b:e1:3c:b8:a5:61:e0:21:ee:77:1a: c1:8e:e9:5c:f6:d1:8c:32:63:a2:ac:71:77:2f:c6: 66:f2:c7:6b:a9:a6:2a:ae:b8:a7:6e:87:e3:bc:a1: 03:cc:74:0a:0f:68:7d:84:f1:b6:96:d6:9d:b7:fe: 72:03:dd:3d:95:8d:8f:3e:76:82:8e:a5:20:cd:48: c4:15 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 45:C7:7D:A0:45:8C:C6:BD:EF:4D:AA:76:02:F8:81:EC:84:63:E3:F7 X509v3 Authority Key Identifier: keyid:66:F6:B8:44:A9:F8:09:AE:30:7B:1B:9C:EE:4B:FD:47:C3:C7:77:1B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B391F/58DB87F2457011EF9C8B8E71C4F9AE02/Zva4RKn4Ca4wexuc7kv9R8PHdxs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Zva4RKn4Ca4wexuc7kv9R8PHdxs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B391F/58DB87F2457011EF9C8B8E71C4F9AE02/Zva4RKn4Ca4wexuc7kv9R8PHdxs.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption e1:8a:bb:96:8c:24:0a:dd:2b:e5:28:b2:0d:94:3b:c1:5e:98: 5b:af:4a:4f:11:54:75:5f:9f:14:50:dd:b1:88:31:86:46:67: b6:01:8e:8d:30:f7:dd:6e:ee:4e:9a:0f:91:28:dd:6e:c4:31: 5e:19:32:1c:2c:ad:b9:e5:be:20:bd:c3:0e:64:84:39:02:5c: a2:4f:7d:6a:83:31:de:42:07:2d:e6:5d:19:d5:bd:aa:1b:87: f4:01:49:81:1c:46:0f:b0:e1:dd:94:f5:a0:5e:a0:f7:a8:18: 93:81:f3:2e:f2:89:d8:96:66:1c:ef:c8:6e:cb:3b:45:71:4e: af:7c:b8:25:35:26:59:68:b0:cd:9d:14:44:4a:14:89:42:ab: cb:7a:dd:89:d9:1b:65:bc:c1:8a:11:3c:95:54:19:1b:cf:3b: a9:0e:74:fb:2e:49:e5:11:6a:ef:c9:0d:7a:25:a3:48:81:45: 64:3e:a1:f1:f1:61:c9:dc:89:ce:0e:fc:2f:47:02:73:12:67: d2:85:ee:25:1f:62:e2:8d:35:34:dd:4f:99:ab:cc:bb:b7:8c: 7c:73:e4:11:1f:d3:6f:4d:a0:58:65:1a:e6:c9:ed:78:28:dd: 0d:b0:43:54:3a:7f:ec:02:e8:20:f4:7b:bd:66:dd:4a:f6:7e: 4d:0c:5d:bf -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAJowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjM5MUYxMTAvBgNVBAUTKDY2RjZCODQ0QTlGODA5QUUzMDdCMUI5Q0VFNEJGRDQ3 QzNDNzc3MUIwHhcNMjUwNTE1MDUzNTA0WhcNMjUwNTIyMDUzNTA0WjAYMRYwFAYD VQQDEw02ODI1N2QwOC04ZjM0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA2/1qj+ZBwg9PNRENO6hCj1m7xhDe0Kz/88egy3oZ+sHW30grjWwrwEba4La7 NOVT5U1tcksyBYkxlc7W1qZ9jytZ0MTZ4ozKvxXc9KK4Le2EigAhs0NF0pgI4jCs gPZrBq56QQwGo/zBfR5W2VbIVZ9zniq/RcudhktTQAJVdcFgbWKR0uPVygUZbCI5 KkK5HfkxlP6b7QZxFKIr7tP+y65GDmqkvxzlqifJVBaJP9uu5wuFkDyai+E8uKVh 4CHudxrBjulc9tGMMmOirHF3L8Zm8sdrqaYqrrinbofjvKEDzHQKD2h9hPG2ltad t/5yA909lY2PPnaCjqUgzUjEFQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFEXHfaBF jMa9702qdgL4geyEY+P3MB8GA1UdIwQYMBaAFGb2uESp+AmuMHsbnO5L/UfDx3cb MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCMzkxRi81OERCODdGMjQ1 NzAxMUVGOUM4QjhFNzFDNEY5QUUwMi9admE0UktuNENhNHdleHVjN2t2OVI4UEhk eHMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1p2YTRSS240Q2E0d2V4dWM3a3Y5UjhQSGR4cy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC MzkxRi81OERCODdGMjQ1NzAxMUVGOUM4QjhFNzFDNEY5QUUwMi9admE0UktuNENh NHdleHVjN2t2OVI4UEhkeHMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQDhiruWjCQK3SvlKLINlDvBXphbr0pPEVR1X58UUN2xiDGGRme2AY6N MPfdbu5Omg+RKN1uxDFeGTIcLK255b4gvcMOZIQ5AlyiT31qgzHeQgct5l0Z1b2q G4f0AUmBHEYPsOHdlPWgXqD3qBiTgfMu8onYlmYc78huyztFcU6vfLglNSZZaLDN nRREShSJQqvLet2J2RtlvMGKETyVVBkbzzupDnT7LknlEWrvyQ16JaNIgUVkPqHx 8WHJ3InODvwvRwJzEmfShe4lH2LijTU03U+Zq8y7t4x8c+QRH9NvTaBYZRrmye14 KN0NsENUOn/sAugg9Hu9Zt1K9n5NDF2/ -----END CERTIFICATE-----Generated at Fri May 16 14:06:20 2025 by rpki-client