$ rpki-client -vvf rpki.apnic.net/member_repository/A91899BB/88C2F15E885811EB96CE6817C4F9AE02/ZfYWHHNtGpxBkf38x6T4JM4RIy0.mft File: ZfYWHHNtGpxBkf38x6T4JM4RIy0.mft (raw, json) Hash identifier: kAT9pyQTunEZqze0RczzmUto7kvBnxgyXJs1VAfoZDo= Subject key identifier: DC:47:67:B8:7D:F4:7F:95:80:8E:F6:79:6D:7C:5F:F5:C8:31:34:90 Authority key identifier: 65:F6:16:1C:73:6D:1A:9C:41:91:FD:FC:C7:A4:F8:24:CE:11:23:2D Certificate issuer: /CN=A91899BB/serialNumber=65F6161C736D1A9C4191FDFCC7A4F824CE11232D Certificate serial: 0642 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ZfYWHHNtGpxBkf38x6T4JM4RIy0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91899BB/88C2F15E885811EB96CE6817C4F9AE02/ZfYWHHNtGpxBkf38x6T4JM4RIy0.mft Manifest number: 0642 Signing time: Sat 10 May 2025 22:11:07 +0000 Manifest this update: Sat 10 May 2025 22:11:07 +0000 Manifest next update: Sat 17 May 2025 22:11:07 +0000 Files and hashes: 1: ZfYWHHNtGpxBkf38x6T4JM4RIy0.crl (hash: P7om4V8q/blD7DTmh6BYtMy7Xamdx9wxKJw1K1AbIYw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91899BB/88C2F15E885811EB96CE6817C4F9AE02/ZfYWHHNtGpxBkf38x6T4JM4RIy0.crl rsync://rpki.apnic.net/member_repository/A91899BB/88C2F15E885811EB96CE6817C4F9AE02/ZfYWHHNtGpxBkf38x6T4JM4RIy0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ZfYWHHNtGpxBkf38x6T4JM4RIy0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 17 May 2025 22:11:06 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1602 (0x642) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91899BB, serialNumber=65F6161C736D1A9C4191FDFCC7A4F824CE11232D Validity Not Before: May 10 22:11:07 2025 GMT Not After : May 17 22:11:07 2025 GMT Subject: CN=681fcefb-e501 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c9:c8:05:2f:a0:10:f2:0d:ca:d3:a0:07:77:44: eb:3e:e5:66:b0:62:8d:ee:e5:e0:c4:e3:29:08:15: 62:e0:72:2c:51:ab:a5:4e:98:0c:00:42:34:a2:b9: 45:f6:e8:b1:2e:e8:e5:5a:33:45:83:1a:98:f2:e9: fa:a3:c9:f0:17:c9:00:53:3e:d7:7d:d1:d3:bb:ad: 7a:66:53:97:74:f1:0b:ba:4c:a5:d5:b0:85:8e:c1: 6c:00:07:f9:e7:62:55:e9:fb:83:02:8c:b5:db:33: bf:02:89:df:a8:2f:99:8d:e0:f7:ad:b8:d3:a8:3c: f0:53:bd:74:fe:12:df:65:71:89:7a:fd:9f:fc:f2: 54:08:08:bc:2c:e9:d2:9e:53:7f:11:cf:2c:81:00: af:22:cb:c8:a2:62:37:5a:05:1f:6a:7b:08:2b:fd: c9:4c:9f:30:57:68:ad:14:c4:6d:96:3d:6b:f6:c9: e4:65:d0:61:e4:fd:41:88:1a:6a:d5:ed:10:24:01: af:47:10:d0:11:55:68:3a:ac:33:ce:71:3d:98:1c: cd:0d:f8:8c:0c:c5:86:01:0a:43:c8:28:51:c9:a3: 32:42:50:bc:a9:08:c5:0b:46:a7:f3:6c:d4:4b:5d: f4:6b:ca:06:9a:2f:d3:c5:08:6d:58:84:13:26:7c: 9d:bf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DC:47:67:B8:7D:F4:7F:95:80:8E:F6:79:6D:7C:5F:F5:C8:31:34:90 X509v3 Authority Key Identifier: keyid:65:F6:16:1C:73:6D:1A:9C:41:91:FD:FC:C7:A4:F8:24:CE:11:23:2D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91899BB/88C2F15E885811EB96CE6817C4F9AE02/ZfYWHHNtGpxBkf38x6T4JM4RIy0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ZfYWHHNtGpxBkf38x6T4JM4RIy0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91899BB/88C2F15E885811EB96CE6817C4F9AE02/ZfYWHHNtGpxBkf38x6T4JM4RIy0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 66:5e:97:9e:68:8d:46:dc:ec:4b:ad:5e:97:4b:a2:ff:b9:78: 6f:d2:f6:45:af:b4:56:b8:51:a0:e7:b1:72:3a:aa:2b:cc:5a: b0:82:40:99:a2:11:41:82:63:48:96:1c:b0:d9:91:69:32:ed: b9:c7:57:15:a3:ad:1f:3a:e3:f6:0f:4c:3f:68:b4:2b:55:c8: 52:f8:ed:31:aa:97:05:64:86:a2:34:85:af:73:f8:9a:72:f9: 08:ee:be:57:93:b6:cc:87:c2:1b:fa:26:f9:52:3c:95:ec:e1: 90:03:4c:f9:26:b4:5e:15:f8:2c:9a:a9:12:cb:67:f1:d0:4c: 94:49:9c:dc:65:b0:c0:0a:76:4c:1d:bc:e9:d9:83:d2:d5:75: 4a:77:ac:00:ef:7c:9f:1d:e4:62:3d:16:a4:e2:e2:12:ff:53: 9c:80:3e:2b:4c:db:09:58:3a:d5:a4:10:95:9a:f4:9b:fd:2e: bc:f8:da:c6:b7:b1:bf:ac:8a:47:83:6d:2a:a8:22:e4:df:90: 06:97:f5:80:7f:51:70:3b:3e:04:55:cb:9f:86:58:b7:1d:5a: 70:0f:4d:2e:79:44:02:b2:f0:ea:f8:db:98:dd:6d:96:d1:a4: 8e:80:71:38:b4:5f:0f:12:2a:35:45:28:8c:f7:1a:ac:56:13: 4d:13:1c:57 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBkIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx ODk5QkIxMTAvBgNVBAUTKDY1RjYxNjFDNzM2RDFBOUM0MTkxRkRGQ0M3QTRGODI0 Q0UxMTIzMkQwHhcNMjUwNTEwMjIxMTA3WhcNMjUwNTE3MjIxMTA3WjAYMRYwFAYD VQQDEw02ODFmY2VmYi1lNTAxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAycgFL6AQ8g3K06AHd0TrPuVmsGKN7uXgxOMpCBVi4HIsUaulTpgMAEI0orlF 9uixLujlWjNFgxqY8un6o8nwF8kAUz7XfdHTu616ZlOXdPELukyl1bCFjsFsAAf5 52JV6fuDAoy12zO/AonfqC+ZjeD3rbjTqDzwU710/hLfZXGJev2f/PJUCAi8LOnS nlN/Ec8sgQCvIsvIomI3WgUfansIK/3JTJ8wV2itFMRtlj1r9snkZdBh5P1BiBpq 1e0QJAGvRxDQEVVoOqwzznE9mBzNDfiMDMWGAQpDyChRyaMyQlC8qQjFC0an82zU S130a8oGmi/TxQhtWIQTJnydvwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFNxHZ7h9 9H+VgI72eW18X/XIMTSQMB8GA1UdIwQYMBaAFGX2FhxzbRqcQZH9/Mek+CTOESMt MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4OTlCQi84OEMyRjE1RTg4 NTgxMUVCOTZDRTY4MTdDNEY5QUUwMi9aZllXSEhOdEdweEJrZjM4eDZUNEpNNFJJ eTAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1pmWVdISE50R3B4QmtmMzh4NlQ0Sk00Ukl5MC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 OTlCQi84OEMyRjE1RTg4NTgxMUVCOTZDRTY4MTdDNEY5QUUwMi9aZllXSEhOdEdw eEJrZjM4eDZUNEpNNFJJeTAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBmXpeeaI1G3OxLrV6XS6L/uXhv0vZFr7RWuFGg57FyOqorzFqwgkCZ ohFBgmNIlhyw2ZFpMu25x1cVo60fOuP2D0w/aLQrVchS+O0xqpcFZIaiNIWvc/ia cvkI7r5Xk7bMh8Ib+ib5UjyV7OGQA0z5JrReFfgsmqkSy2fx0EyUSZzcZbDACnZM Hbzp2YPS1XVKd6wA73yfHeRiPRak4uIS/1OcgD4rTNsJWDrVpBCVmvSb/S68+NrG t7G/rIpHg20qqCLk35AGl/WAf1FwOz4EVcufhli3HVpwD00ueUQCsvDq+NuY3W2W 0aSOgHE4tF8PEio1RSiM9xqsVhNNExxX -----END CERTIFICATE-----Generated at Mon May 12 09:11:35 2025 by rpki-client