$ rpki-client -vvf rpki.apnic.net/member_repository/A91410C5/DB0AE436572E11F095F7FE48C4F9AE02/ZGfpJsIUTs0PJ0j4STKPhfAorpQ.mft File: ZGfpJsIUTs0PJ0j4STKPhfAorpQ.mft (raw, json) Hash identifier: hyzBpRrSR4k4nJZY5UQLC13LEENCFivwWxQd8mZU+Ao= Subject key identifier: D2:C7:BF:C7:FE:F5:2A:DA:83:AD:21:0C:99:87:53:BD:68:7B:D7:13 Authority key identifier: 64:67:E9:26:C2:14:4E:CD:0F:27:48:F8:49:32:8F:85:F0:28:AE:94 Certificate issuer: /CN=A91410C5/serialNumber=6467E926C2144ECD0F2748F849328F85F028AE94 Certificate serial: 04 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ZGfpJsIUTs0PJ0j4STKPhfAorpQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91410C5/DB0AE436572E11F095F7FE48C4F9AE02/ZGfpJsIUTs0PJ0j4STKPhfAorpQ.mft Manifest number: 04 Signing time: Sat 05 Jul 2025 08:32:20 +0000 Manifest this update: Sat 05 Jul 2025 08:32:19 +0000 Manifest next update: Sat 12 Jul 2025 08:32:19 +0000 Files and hashes: 1: ZGfpJsIUTs0PJ0j4STKPhfAorpQ.crl (hash: L4j5cZ1dkg7YtfDDyKEcejW7+KziZIN/qtpdGTl0Mis=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91410C5/DB0AE436572E11F095F7FE48C4F9AE02/ZGfpJsIUTs0PJ0j4STKPhfAorpQ.crl rsync://rpki.apnic.net/member_repository/A91410C5/DB0AE436572E11F095F7FE48C4F9AE02/ZGfpJsIUTs0PJ0j4STKPhfAorpQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ZGfpJsIUTs0PJ0j4STKPhfAorpQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 12 Jul 2025 08:32:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4 (0x4) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91410C5, serialNumber=6467E926C2144ECD0F2748F849328F85F028AE94 Validity Not Before: Jul 5 08:32:19 2025 GMT Not After : Jul 12 08:32:19 2025 GMT Subject: CN=6868e314-ab95 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b1:13:31:ad:41:8a:b0:8d:5d:9a:cc:60:40:2b: 38:4d:3c:40:a3:4f:c2:95:82:a4:25:04:db:36:49: 5c:1f:62:14:33:e1:04:ee:2d:3c:d4:57:7d:68:f4: bf:fd:ee:c2:06:27:b6:d4:bf:ec:76:84:21:cb:13: 71:c8:28:a9:95:c2:c3:52:dc:01:ed:2d:4f:76:33: 2f:08:e5:a6:46:27:62:2b:b4:04:ae:7a:5c:bf:91: a5:b6:8b:eb:fe:e2:c0:ec:d9:94:62:5c:29:cc:64: 21:f9:8a:a6:a5:ec:a7:87:a0:8f:45:d6:57:71:47: d1:12:9e:6e:03:bb:2e:68:71:4c:f1:f0:88:d3:84: 0b:a1:b3:c0:70:c2:07:31:0e:3a:4a:ea:cb:9e:fc: fc:d1:97:36:57:fb:92:4b:11:38:5a:e5:a9:fe:cc: 7a:b4:c4:27:13:9d:81:cf:90:b0:01:32:e3:35:71: 3f:6f:26:84:30:41:a5:45:4d:90:af:d1:31:b4:46: d0:1b:1b:26:f3:25:74:a6:6d:9f:38:46:cb:83:db: 54:1b:ea:68:13:28:e2:ed:a6:ae:a5:a1:b5:6a:74: 2d:a0:1b:d1:88:40:a2:cc:80:4d:8c:f5:39:8b:8d: 59:b9:40:ab:90:7e:df:b5:50:fe:43:26:96:23:04: 38:b5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D2:C7:BF:C7:FE:F5:2A:DA:83:AD:21:0C:99:87:53:BD:68:7B:D7:13 X509v3 Authority Key Identifier: keyid:64:67:E9:26:C2:14:4E:CD:0F:27:48:F8:49:32:8F:85:F0:28:AE:94 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91410C5/DB0AE436572E11F095F7FE48C4F9AE02/ZGfpJsIUTs0PJ0j4STKPhfAorpQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ZGfpJsIUTs0PJ0j4STKPhfAorpQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91410C5/DB0AE436572E11F095F7FE48C4F9AE02/ZGfpJsIUTs0PJ0j4STKPhfAorpQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 73:9b:8a:87:f6:b4:9e:89:c5:35:e0:79:16:5a:98:a1:8b:69: 78:ba:32:44:f3:5e:1f:3c:16:4f:e6:dc:fe:55:47:45:dd:ae: f9:a7:a5:01:68:4a:d1:89:0d:5f:63:9e:01:9f:b1:09:ec:00: 10:f1:7e:25:25:95:b4:da:02:9a:8c:83:d4:99:4d:af:02:f3: 00:01:2c:fd:4f:8b:f8:bb:b3:f6:2f:60:a6:3c:0c:e5:a0:85: 3a:d9:cb:14:85:c0:b4:22:5d:de:01:08:8a:96:a9:1a:49:a3: 65:89:b5:c2:5e:73:c9:53:ac:97:ac:42:76:4a:73:df:1a:09: 4f:2b:23:3e:04:68:6c:af:5c:d4:ee:61:a2:67:3d:77:36:7f: 5e:a8:94:6a:17:7d:32:0f:b9:38:a3:96:69:99:19:28:52:99: b7:2b:20:cb:2a:41:7c:fe:44:f5:d9:eb:e8:cb:c8:9d:2f:a1: f0:4b:39:10:b7:12:b7:c8:20:ab:47:4f:e7:b3:f4:47:58:fb: 17:26:a9:95:aa:7a:36:01:86:f2:06:04:07:8d:5e:78:3d:4a: 60:0c:55:00:98:7b:ce:bf:76:3a:71:0b:73:aa:3b:dc:7c:9e: 3e:42:a5:49:81:43:d5:9b:6a:a9:0d:9a:96:43:57:a8:a6:9b: dc:f1:a7:06 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBBDANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE0 MTBDNTExMC8GA1UEBRMoNjQ2N0U5MjZDMjE0NEVDRDBGMjc0OEY4NDkzMjhGODVG MDI4QUU5NDAeFw0yNTA3MDUwODMyMTlaFw0yNTA3MTIwODMyMTlaMBgxFjAUBgNV BAMTDTY4NjhlMzE0LWFiOTUwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCxEzGtQYqwjV2azGBAKzhNPECjT8KVgqQlBNs2SVwfYhQz4QTuLTzUV31o9L/9 7sIGJ7bUv+x2hCHLE3HIKKmVwsNS3AHtLU92My8I5aZGJ2IrtASuely/kaW2i+v+ 4sDs2ZRiXCnMZCH5iqal7KeHoI9F1ldxR9ESnm4Duy5ocUzx8IjThAuhs8Bwwgcx DjpK6sue/PzRlzZX+5JLETha5an+zHq0xCcTnYHPkLABMuM1cT9vJoQwQaVFTZCv 0TG0RtAbGybzJXSmbZ84RsuD21Qb6mgTKOLtpq6lobVqdC2gG9GIQKLMgE2M9TmL jVm5QKuQft+1UP5DJpYjBDi1AgMBAAGjggKoMIICpDAdBgNVHQ4EFgQU0se/x/71 KtqDrSEMmYdTvWh71xMwHwYDVR0jBBgwFoAUZGfpJsIUTs0PJ0j4STKPhfAorpQw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTQxMEM1L0RCMEFFNDM2NTcy RTExRjA5NUY3RkU0OEM0RjlBRTAyL1pHZnBKc0lVVHMwUEowajRTVEtQaGZBb3Jw US5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvWkdmcEpzSVVUczBQSjBqNFNUS1BoZkFvcnBRLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTQx MEM1L0RCMEFFNDM2NTcyRTExRjA5NUY3RkU0OEM0RjlBRTAyL1pHZnBKc0lVVHMw UEowajRTVEtQaGZBb3JwUS5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAHObiof2tJ6JxTXgeRZamKGLaXi6MkTzXh88Fk/m3P5VR0XdrvmnpQFo StGJDV9jngGfsQnsABDxfiUllbTaApqMg9SZTa8C8wABLP1Pi/i7s/YvYKY8DOWg hTrZyxSFwLQiXd4BCIqWqRpJo2WJtcJec8lTrJesQnZKc98aCU8rIz4EaGyvXNTu YaJnPXc2f16olGoXfTIPuTijlmmZGShSmbcrIMsqQXz+RPXZ6+jLyJ0vofBLORC3 ErfIIKtHT+ez9EdY+xcmqZWqejYBhvIGBAeNXng9SmAMVQCYe86/djpxC3OqO9x8 nj5CpUmBQ9WbaqkNmpZDV6imm9zxpwY= -----END CERTIFICATE-----Generated at Mon Jul 7 09:15:13 2025 by rpki-client