$ rpki-client -vvf rpki.apnic.net/member_repository/A91CAA4E/55E9795AA94F11E8AA0C900EC4F9AE02/ZyEk9jPIkZyl12bYnpzP8LIfDI0.mft File: ZyEk9jPIkZyl12bYnpzP8LIfDI0.mft (raw, json) Hash identifier: fQXji5ycim7qSNsG57uQjmwMFpbEi8MHKUOP8dBCBUk= Subject key identifier: 59:E1:DF:06:FE:23:11:08:05:5B:6B:49:9A:87:94:9C:85:AD:6C:6E Authority key identifier: 67:21:24:F6:33:C8:91:9C:A5:D7:66:D8:9E:9C:CF:F0:B2:1F:0C:8D Certificate issuer: /CN=A91CAA4E/serialNumber=672124F633C8919CA5D766D89E9CCFF0B21F0C8D Certificate serial: 1343 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ZyEk9jPIkZyl12bYnpzP8LIfDI0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CAA4E/55E9795AA94F11E8AA0C900EC4F9AE02/ZyEk9jPIkZyl12bYnpzP8LIfDI0.mft Manifest number: 1A67 Signing time: Wed 02 Jul 2025 17:12:08 +0000 Manifest this update: Wed 02 Jul 2025 17:12:07 +0000 Manifest next update: Wed 09 Jul 2025 17:12:07 +0000 Files and hashes: 1: ZyEk9jPIkZyl12bYnpzP8LIfDI0.crl (hash: JiqW/Tr2hVh7G0ITxs8svLMd2b6wHgHteChBrgQ0vfo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CAA4E/55E9795AA94F11E8AA0C900EC4F9AE02/ZyEk9jPIkZyl12bYnpzP8LIfDI0.crl rsync://rpki.apnic.net/member_repository/A91CAA4E/55E9795AA94F11E8AA0C900EC4F9AE02/ZyEk9jPIkZyl12bYnpzP8LIfDI0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ZyEk9jPIkZyl12bYnpzP8LIfDI0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 09 Jul 2025 17:12:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4931 (0x1343) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CAA4E, serialNumber=672124F633C8919CA5D766D89E9CCFF0B21F0C8D Validity Not Before: Jul 2 17:12:07 2025 GMT Not After : Jul 9 17:12:07 2025 GMT Subject: CN=68656868-ef58 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dc:fd:c7:78:1d:3d:35:6b:07:61:5f:57:d6:41: 08:5d:a0:ac:b7:e7:e8:7c:90:00:d9:34:7f:27:a6: e3:8d:63:21:d4:b3:55:c1:bf:92:c0:61:5f:e6:81: 5a:c0:ca:06:c7:67:ca:66:57:7b:10:6d:1a:ca:47: ff:51:fa:33:aa:68:16:35:bd:ab:08:4e:73:db:71: bb:ea:7f:f3:7d:fb:10:21:cc:4f:b0:6e:80:3c:cb: 60:d9:01:b8:ac:be:53:57:db:29:dd:ab:a6:4c:35: 33:68:c6:07:3b:a7:ab:11:93:f0:42:55:cc:84:5a: 0e:57:7f:7a:d1:62:1f:3b:3e:c6:55:3b:9c:e3:ea: 93:81:53:de:51:ee:8b:c4:45:62:57:42:b5:82:3f: 85:1f:df:36:df:7c:d1:fc:1d:df:03:f2:ad:7e:29: 4b:5c:2f:18:21:fb:62:a3:d8:91:72:e9:11:af:45: d9:67:1a:9b:2a:c0:d7:c2:6b:9b:99:9a:59:09:7f: ec:6e:50:24:50:8c:d5:ca:a5:1a:f8:e4:6d:c8:2a: c6:11:d3:a2:e0:f3:63:26:2b:4a:47:bb:4a:25:44: 7a:f0:3c:db:d4:1e:6f:62:d0:8e:46:d5:c1:68:5d: 7e:98:26:ac:8f:46:62:31:39:80:86:2e:5c:4f:0f: ed:4b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 59:E1:DF:06:FE:23:11:08:05:5B:6B:49:9A:87:94:9C:85:AD:6C:6E X509v3 Authority Key Identifier: keyid:67:21:24:F6:33:C8:91:9C:A5:D7:66:D8:9E:9C:CF:F0:B2:1F:0C:8D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CAA4E/55E9795AA94F11E8AA0C900EC4F9AE02/ZyEk9jPIkZyl12bYnpzP8LIfDI0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ZyEk9jPIkZyl12bYnpzP8LIfDI0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CAA4E/55E9795AA94F11E8AA0C900EC4F9AE02/ZyEk9jPIkZyl12bYnpzP8LIfDI0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 11:a5:18:c6:0c:60:68:40:0f:2d:51:4d:a3:d9:0d:fc:32:cd: 6d:bd:c4:e0:dc:80:f1:9f:a7:34:f9:d4:2f:ca:3d:da:45:3c: 5e:73:47:48:24:04:1f:64:5e:29:d0:15:f8:d9:f9:60:9a:78: 55:d8:8e:79:3d:17:39:1c:3b:0d:32:b9:77:12:a1:4f:b3:ab: 30:7f:eb:99:4f:f9:d0:44:5f:ab:e7:3b:81:b3:99:c1:1d:ef: de:18:c9:ba:01:8b:76:78:28:82:23:c9:e2:45:53:a7:44:6c: 10:a6:3e:6d:c9:a0:95:e7:ea:f7:dd:a1:30:b6:fd:ae:19:7b: 75:8d:d2:9e:23:00:9c:49:0c:91:fb:61:9e:d2:41:27:0c:07: a7:90:d2:d0:1a:ab:b4:1f:63:26:c2:32:1a:2c:77:50:1d:65: 8f:5f:ce:fa:a2:5a:d6:7d:cf:c9:3c:56:d2:fa:a3:c2:6b:a0: cc:6c:58:6c:c5:57:65:61:8c:ed:01:ca:32:55:2e:b1:e8:a8: ee:e8:83:a3:08:b1:6f:f8:02:29:64:01:2c:4c:a5:d0:2e:15: b1:06:ee:dd:61:a2:c6:73:5a:95:77:93:11:d1:8a:40:3d:99: 4f:ba:8b:f2:a2:51:09:bc:3d:33:1c:07:e0:77:26:85:c6:a4: 95:24:d6:81 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICE0MwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Q0FBNEUxMTAvBgNVBAUTKDY3MjEyNEY2MzNDODkxOUNBNUQ3NjZEODlFOUNDRkYw QjIxRjBDOEQwHhcNMjUwNzAyMTcxMjA3WhcNMjUwNzA5MTcxMjA3WjAYMRYwFAYD VQQDEw02ODY1Njg2OC1lZjU4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA3P3HeB09NWsHYV9X1kEIXaCst+fofJAA2TR/J6bjjWMh1LNVwb+SwGFf5oFa wMoGx2fKZld7EG0aykf/UfozqmgWNb2rCE5z23G76n/zffsQIcxPsG6APMtg2QG4 rL5TV9sp3aumTDUzaMYHO6erEZPwQlXMhFoOV3960WIfOz7GVTuc4+qTgVPeUe6L xEViV0K1gj+FH98233zR/B3fA/KtfilLXC8YIftio9iRcukRr0XZZxqbKsDXwmub mZpZCX/sblAkUIzVyqUa+ORtyCrGEdOi4PNjJitKR7tKJUR68Dzb1B5vYtCORtXB aF1+mCasj0ZiMTmAhi5cTw/tSwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFFnh3wb+ IxEIBVtrSZqHlJyFrWxuMB8GA1UdIwQYMBaAFGchJPYzyJGcpddm2J6cz/CyHwyN MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDQUE0RS81NUU5Nzk1QUE5 NEYxMUU4QUEwQzkwMEVDNEY5QUUwMi9aeUVrOWpQSWtaeWwxMmJZbnB6UDhMSWZE STAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1p5RWs5alBJa1p5bDEyYllucHpQOExJZkRJMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD QUE0RS81NUU5Nzk1QUE5NEYxMUU4QUEwQzkwMEVDNEY5QUUwMi9aeUVrOWpQSWta eWwxMmJZbnB6UDhMSWZESTAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQARpRjGDGBoQA8tUU2j2Q38Ms1tvcTg3IDxn6c0+dQvyj3aRTxec0dI JAQfZF4p0BX42flgmnhV2I55PRc5HDsNMrl3EqFPs6swf+uZT/nQRF+r5zuBs5nB He/eGMm6AYt2eCiCI8niRVOnRGwQpj5tyaCV5+r33aEwtv2uGXt1jdKeIwCcSQyR +2Ge0kEnDAenkNLQGqu0H2MmwjIaLHdQHWWPX876olrWfc/JPFbS+qPCa6DMbFhs xVdlYYztAcoyVS6x6Kju6IOjCLFv+AIpZAEsTKXQLhWxBu7dYaLGc1qVd5MR0YpA PZlPuovyolEJvD0zHAfgdyaFxqSVJNaB -----END CERTIFICATE-----Generated at Wed Jul 2 19:10:21 2025 by rpki-client