$ rpki-client -vvf rpki.apnic.net/member_repository/A91CAA4E/55E9795AA94F11E8AA0C900EC4F9AE02/ZyEk9jPIkZyl12bYnpzP8LIfDI0.mft File: ZyEk9jPIkZyl12bYnpzP8LIfDI0.mft (raw, json) Hash identifier: qHQYtJeAl4tV1yjItRr/6dqfBtN3m6wc2IeoqWcvorI= Subject key identifier: 61:75:8C:2A:8E:95:73:FA:71:61:CF:99:E0:44:50:A6:68:5C:1E:82 Authority key identifier: 67:21:24:F6:33:C8:91:9C:A5:D7:66:D8:9E:9C:CF:F0:B2:1F:0C:8D Certificate issuer: /CN=A91CAA4E/serialNumber=672124F633C8919CA5D766D89E9CCFF0B21F0C8D Certificate serial: 1328 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ZyEk9jPIkZyl12bYnpzP8LIfDI0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CAA4E/55E9795AA94F11E8AA0C900EC4F9AE02/ZyEk9jPIkZyl12bYnpzP8LIfDI0.mft Manifest number: 1A31 Signing time: Sat 10 May 2025 16:55:30 +0000 Manifest this update: Sat 10 May 2025 16:55:30 +0000 Manifest next update: Sat 17 May 2025 16:55:30 +0000 Files and hashes: 1: ZyEk9jPIkZyl12bYnpzP8LIfDI0.crl (hash: NkILBrbDmUbq09F+DjAN8FQvN2QN+g1nFIZHikmHnNg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CAA4E/55E9795AA94F11E8AA0C900EC4F9AE02/ZyEk9jPIkZyl12bYnpzP8LIfDI0.crl rsync://rpki.apnic.net/member_repository/A91CAA4E/55E9795AA94F11E8AA0C900EC4F9AE02/ZyEk9jPIkZyl12bYnpzP8LIfDI0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ZyEk9jPIkZyl12bYnpzP8LIfDI0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 17 May 2025 16:55:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4904 (0x1328) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CAA4E, serialNumber=672124F633C8919CA5D766D89E9CCFF0B21F0C8D Validity Not Before: May 10 16:55:30 2025 GMT Not After : May 17 16:55:30 2025 GMT Subject: CN=681f8502-dc5c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:c6:25:86:97:af:89:47:80:2d:50:0c:d8:aa: 01:c0:09:f8:89:29:28:5b:ce:99:a5:9c:e9:1e:42: ff:01:21:3d:95:55:21:4e:e3:f6:f8:ee:ed:2e:bb: 36:29:00:e2:70:ab:1a:bc:4b:de:bd:60:ad:d1:80: 8c:64:72:0d:b9:d2:45:06:19:75:9b:cb:59:9f:5e: f1:0d:d6:cc:55:9e:ec:d9:0b:2b:3d:1e:51:90:a2: 01:e4:6a:2d:9d:81:16:f8:87:8d:75:14:25:19:c6: ef:58:4d:58:bb:c5:0c:46:ce:06:70:7e:a6:17:d4: 26:d0:81:3e:8c:23:3d:c6:21:d8:e7:90:65:4e:39: 1a:72:92:d7:02:b3:dd:59:22:c7:92:3b:9f:ee:53: e1:67:cf:5c:d9:44:fd:c2:3a:10:da:13:6e:92:c6: 5a:57:d5:25:18:87:d4:cc:a1:aa:c9:1c:96:6b:cc: 05:ad:36:9a:34:ab:21:c5:d4:13:b8:0d:8b:61:c5: ed:2a:bb:9a:99:97:9b:6e:e0:26:1c:00:ee:33:ec: 2f:85:f0:bd:25:b8:2b:9b:1d:5e:b0:b2:f0:62:82: 6a:36:fb:07:5d:f5:b6:c8:c4:0a:59:c7:14:77:bf: 44:10:37:22:e0:78:2e:56:70:ac:b4:7e:00:bc:a2: 28:ef Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 61:75:8C:2A:8E:95:73:FA:71:61:CF:99:E0:44:50:A6:68:5C:1E:82 X509v3 Authority Key Identifier: keyid:67:21:24:F6:33:C8:91:9C:A5:D7:66:D8:9E:9C:CF:F0:B2:1F:0C:8D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CAA4E/55E9795AA94F11E8AA0C900EC4F9AE02/ZyEk9jPIkZyl12bYnpzP8LIfDI0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ZyEk9jPIkZyl12bYnpzP8LIfDI0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CAA4E/55E9795AA94F11E8AA0C900EC4F9AE02/ZyEk9jPIkZyl12bYnpzP8LIfDI0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 12:c3:cf:02:b6:87:b4:a6:13:b8:31:7c:da:ac:ab:2d:a8:aa: c8:c6:d0:7d:de:03:b3:72:af:d9:d2:7d:1f:67:e2:4e:cd:3f: 6b:38:58:72:87:d6:ba:1d:ce:b1:de:c1:09:6d:9c:f0:3b:79: e6:a9:a8:7a:41:7b:74:d6:75:f5:f3:21:9c:e9:72:cf:f6:18: 76:cb:8c:38:be:4b:0b:81:a7:19:57:5d:8e:a9:4c:e9:f3:e7: a3:b5:16:11:78:e9:78:19:73:01:38:ca:0f:ae:95:0a:c0:50: 49:e6:2b:8c:c6:e2:8f:0f:45:eb:28:df:0e:7b:46:5e:25:0a: 36:20:cd:51:3d:10:40:0b:8b:64:b6:f0:e9:b3:b0:8b:a4:c6: 6f:2a:c8:e2:8c:a8:f0:b6:49:af:d4:a8:01:f9:01:77:94:f4: 21:11:80:3c:7b:10:5c:33:31:d1:63:d4:e8:20:f8:4e:72:bc: ee:ef:be:66:e5:f7:83:be:98:72:d6:46:6c:cb:98:3d:25:01: 5c:b5:27:22:e3:34:f4:d4:ba:68:05:56:70:f0:42:47:52:db: a3:e1:bb:ea:1e:c0:56:e1:f6:ec:15:32:a5:fd:11:26:19:a4: 3c:76:68:fd:75:0e:76:b4:d0:0a:d4:7d:9f:26:45:29:fc:a3: 32:c3:ef:6e -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICEygwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Q0FBNEUxMTAvBgNVBAUTKDY3MjEyNEY2MzNDODkxOUNBNUQ3NjZEODlFOUNDRkYw QjIxRjBDOEQwHhcNMjUwNTEwMTY1NTMwWhcNMjUwNTE3MTY1NTMwWjAYMRYwFAYD VQQDEw02ODFmODUwMi1kYzVjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvcYlhpeviUeALVAM2KoBwAn4iSkoW86ZpZzpHkL/ASE9lVUhTuP2+O7tLrs2 KQDicKsavEvevWCt0YCMZHINudJFBhl1m8tZn17xDdbMVZ7s2QsrPR5RkKIB5Got nYEW+IeNdRQlGcbvWE1Yu8UMRs4GcH6mF9Qm0IE+jCM9xiHY55BlTjkacpLXArPd WSLHkjuf7lPhZ89c2UT9wjoQ2hNuksZaV9UlGIfUzKGqyRyWa8wFrTaaNKshxdQT uA2LYcXtKruamZebbuAmHADuM+wvhfC9Jbgrmx1esLLwYoJqNvsHXfW2yMQKWccU d79EEDci4HguVnCstH4AvKIo7wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFGF1jCqO lXP6cWHPmeBEUKZoXB6CMB8GA1UdIwQYMBaAFGchJPYzyJGcpddm2J6cz/CyHwyN MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDQUE0RS81NUU5Nzk1QUE5 NEYxMUU4QUEwQzkwMEVDNEY5QUUwMi9aeUVrOWpQSWtaeWwxMmJZbnB6UDhMSWZE STAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1p5RWs5alBJa1p5bDEyYllucHpQOExJZkRJMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD QUE0RS81NUU5Nzk1QUE5NEYxMUU4QUEwQzkwMEVDNEY5QUUwMi9aeUVrOWpQSWta eWwxMmJZbnB6UDhMSWZESTAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQASw88Ctoe0phO4MXzarKstqKrIxtB93gOzcq/Z0n0fZ+JOzT9rOFhy h9a6Hc6x3sEJbZzwO3nmqah6QXt01nX18yGc6XLP9hh2y4w4vksLgacZV12OqUzp 8+ejtRYReOl4GXMBOMoPrpUKwFBJ5iuMxuKPD0XrKN8Oe0ZeJQo2IM1RPRBAC4tk tvDps7CLpMZvKsjijKjwtkmv1KgB+QF3lPQhEYA8exBcMzHRY9ToIPhOcrzu775m 5feDvphy1kZsy5g9JQFctSci4zT01LpoBVZw8EJHUtuj4bvqHsBW4fbsFTKl/REm GaQ8dmj9dQ52tNAK1H2fJkUp/KMyw+9u -----END CERTIFICATE-----Generated at Mon May 12 04:36:45 2025 by rpki-client