$ rpki-client -vvf rpki.apnic.net/member_repository/A91F09FE/3803AA1C9B1211EFA87BB43BC4F9AE02/ZMzBZsWMOP6MwZdvXPB8HdBvaBQ.mft File: ZMzBZsWMOP6MwZdvXPB8HdBvaBQ.mft (raw, json) Hash identifier: cbunR9XWaQo08NUXOcj7ehEfuxAIrgCJ7eIKrD/4yaQ= Subject key identifier: A9:9C:C3:01:FD:E3:75:0B:0A:10:F1:4E:BC:60:6B:E5:10:F2:72:73 Authority key identifier: 64:CC:C1:66:C5:8C:38:FE:8C:C1:97:6F:5C:F0:7C:1D:D0:6F:68:14 Certificate issuer: /CN=A91F09FE/serialNumber=64CCC166C58C38FE8CC1976F5CF07C1DD06F6814 Certificate serial: 66 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ZMzBZsWMOP6MwZdvXPB8HdBvaBQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F09FE/3803AA1C9B1211EFA87BB43BC4F9AE02/ZMzBZsWMOP6MwZdvXPB8HdBvaBQ.mft Manifest number: 64 Signing time: Tue 13 May 2025 06:12:55 +0000 Manifest this update: Tue 13 May 2025 06:12:55 +0000 Manifest next update: Tue 20 May 2025 06:12:55 +0000 Files and hashes: 1: ZMzBZsWMOP6MwZdvXPB8HdBvaBQ.crl (hash: UqOrDoz2ckUwQRLFf3rki9rWCC7DE5+WRLKqQaWJbCY=) 2: 841585749B1211EFBFBF913CC4F9AE02.roa (hash: 0M5YhxGhV5QHRGKOQlvw9XsWvMIjTk3A7Z1MV3xW494=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F09FE/3803AA1C9B1211EFA87BB43BC4F9AE02/ZMzBZsWMOP6MwZdvXPB8HdBvaBQ.crl rsync://rpki.apnic.net/member_repository/A91F09FE/3803AA1C9B1211EFA87BB43BC4F9AE02/ZMzBZsWMOP6MwZdvXPB8HdBvaBQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ZMzBZsWMOP6MwZdvXPB8HdBvaBQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 20 May 2025 06:12:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 102 (0x66) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F09FE, serialNumber=64CCC166C58C38FE8CC1976F5CF07C1DD06F6814 Validity Not Before: May 13 06:12:55 2025 GMT Not After : May 20 06:12:55 2025 GMT Subject: CN=6822e2e7-4a1c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a5:5e:4e:25:5b:14:67:64:eb:47:99:3b:13:f8: f9:36:3b:46:c7:a6:0b:a5:c5:6a:b1:7e:59:c2:cb: e5:82:f1:b8:d5:bc:32:bb:d3:5d:df:69:f7:f2:04: 2d:f6:36:c3:b8:c9:2b:5a:6a:f1:8f:d9:bc:06:87: ec:51:f5:91:44:f3:64:20:b5:9a:e7:5d:14:c5:d1: c5:70:81:a0:77:d6:3d:c3:f1:11:d9:69:e3:22:07: d8:94:d3:74:aa:8a:3d:8f:12:0f:e7:97:42:f1:b9: 04:b6:e9:1e:72:f0:ef:b8:57:c9:19:db:e3:16:fa: 3f:42:f9:5b:6e:10:97:b0:92:31:ec:40:98:3e:d8: b8:98:7a:6d:8f:8c:d8:d5:96:72:ab:9e:55:5e:10: 93:be:6e:2f:2a:87:fe:18:08:8c:14:ef:57:2b:d7: ca:60:f7:84:70:24:dc:f0:c5:81:e4:4f:43:93:de: d1:ee:28:54:05:1c:aa:5b:5b:ac:4d:e6:51:aa:e0: fb:33:ca:51:43:6d:8a:3e:a2:52:6f:2d:bc:6a:e5: d7:52:f8:bb:28:45:95:35:8f:2e:01:e1:99:d4:7a: ca:89:21:11:e4:eb:24:42:fc:3a:39:e3:70:16:ad: 60:ed:48:5e:23:a1:49:95:e4:cf:20:1e:2f:86:1b: cc:ad Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A9:9C:C3:01:FD:E3:75:0B:0A:10:F1:4E:BC:60:6B:E5:10:F2:72:73 X509v3 Authority Key Identifier: keyid:64:CC:C1:66:C5:8C:38:FE:8C:C1:97:6F:5C:F0:7C:1D:D0:6F:68:14 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F09FE/3803AA1C9B1211EFA87BB43BC4F9AE02/ZMzBZsWMOP6MwZdvXPB8HdBvaBQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ZMzBZsWMOP6MwZdvXPB8HdBvaBQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F09FE/3803AA1C9B1211EFA87BB43BC4F9AE02/ZMzBZsWMOP6MwZdvXPB8HdBvaBQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 27:26:16:ca:f4:8c:b6:3e:36:a6:29:71:f2:86:90:26:62:3f: 18:bf:fc:59:8b:6b:18:48:dc:f2:e7:b3:f2:70:2f:b5:da:2a: 59:ea:42:49:f1:31:c1:4d:55:b4:ee:86:8a:b1:dc:6a:fe:58: 7e:1c:f1:20:98:51:b1:a8:ca:52:76:d4:6c:21:5e:38:d9:36: ea:78:d2:7e:2e:06:5d:29:40:1d:0a:6f:64:0a:f5:1e:fd:5b: 45:87:28:9d:70:cc:82:91:e2:b3:f0:bf:e9:1d:26:23:d2:56: b2:21:65:55:ee:d4:e6:db:04:fb:16:67:97:eb:66:2f:29:cf: 55:11:21:e5:b6:a9:d5:c3:fd:45:db:17:08:8c:a6:74:35:b4: b8:2b:99:73:eb:b1:31:a7:df:5f:67:50:df:02:75:f6:25:6f: c8:ac:97:91:d3:b5:f0:72:17:6e:65:17:1c:9e:b6:89:6a:2f: 51:42:fd:0f:48:f7:09:a4:7c:de:df:7d:1c:6e:c8:78:44:c7: 13:f6:60:7b:15:dd:76:e9:33:bc:6a:1b:5b:d8:e7:c7:5c:f5: 9f:20:b5:9e:51:d3:9a:25:0a:5f:86:69:00:01:7a:24:35:87: 21:5a:8a:2a:eb:10:f0:2d:be:a1:76:c6:3b:b4:56:43:cd:07: b3:f0:02:e0 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBZjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFG MDlGRTExMC8GA1UEBRMoNjRDQ0MxNjZDNThDMzhGRThDQzE5NzZGNUNGMDdDMURE MDZGNjgxNDAeFw0yNTA1MTMwNjEyNTVaFw0yNTA1MjAwNjEyNTVaMBgxFjAUBgNV BAMTDTY4MjJlMmU3LTRhMWMwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQClXk4lWxRnZOtHmTsT+Pk2O0bHpgulxWqxflnCy+WC8bjVvDK7013faffyBC32 NsO4yStaavGP2bwGh+xR9ZFE82QgtZrnXRTF0cVwgaB31j3D8RHZaeMiB9iU03Sq ij2PEg/nl0LxuQS26R5y8O+4V8kZ2+MW+j9C+VtuEJewkjHsQJg+2LiYem2PjNjV lnKrnlVeEJO+bi8qh/4YCIwU71cr18pg94RwJNzwxYHkT0OT3tHuKFQFHKpbW6xN 5lGq4PszylFDbYo+olJvLbxq5ddS+LsoRZU1jy4B4ZnUesqJIRHk6yRC/Do543AW rWDtSF4joUmV5M8gHi+GG8ytAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUqZzDAf3j dQsKEPFOvGBr5RDycnMwHwYDVR0jBBgwFoAUZMzBZsWMOP6MwZdvXPB8HdBvaBQw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUYwOUZFLzM4MDNBQTFDOUIx MjExRUZBODdCQjQzQkM0RjlBRTAyL1pNekJac1dNT1A2TXdaZHZYUEI4SGRCdmFC US5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvWk16QlpzV01PUDZNd1pkdlhQQjhIZEJ2YUJRLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUYw OUZFLzM4MDNBQTFDOUIxMjExRUZBODdCQjQzQkM0RjlBRTAyL1pNekJac1dNT1A2 TXdaZHZYUEI4SGRCdmFCUS5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBACcmFsr0jLY+NqYpcfKGkCZiPxi//FmLaxhI3PLns/JwL7XaKlnqQknx McFNVbTuhoqx3Gr+WH4c8SCYUbGoylJ21GwhXjjZNup40n4uBl0pQB0Kb2QK9R79 W0WHKJ1wzIKR4rPwv+kdJiPSVrIhZVXu1ObbBPsWZ5frZi8pz1URIeW2qdXD/UXb FwiMpnQ1tLgrmXPrsTGn319nUN8CdfYlb8isl5HTtfByF25lFxyetolqL1FC/Q9I 9wmkfN7ffRxuyHhExxP2YHsV3XbpM7xqG1vY58dc9Z8gtZ5R05olCl+GaQABeiQ1 hyFaiirrEPAtvqF2xju0VkPNB7PwAuA= -----END CERTIFICATE-----Generated at Wed May 14 19:28:01 2025 by rpki-client