$ rpki-client -vvf rpki.apnic.net/member_repository/A91899BB/88C2F15E885811EB96CE6817C4F9AE02/ZfYWHHNtGpxBkf38x6T4JM4RIy0.mft File: ZfYWHHNtGpxBkf38x6T4JM4RIy0.mft (raw, json) Hash identifier: M6sZWsLexC679dIp7RgjSnJygXWh2po2q6cT6ekfB14= Subject key identifier: FD:91:DF:54:88:23:5E:A1:79:8A:79:D5:DB:1A:F9:5D:0A:40:EC:54 Authority key identifier: 65:F6:16:1C:73:6D:1A:9C:41:91:FD:FC:C7:A4:F8:24:CE:11:23:2D Certificate issuer: /CN=A91899BB/serialNumber=65F6161C736D1A9C4191FDFCC7A4F824CE11232D Certificate serial: 065B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ZfYWHHNtGpxBkf38x6T4JM4RIy0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91899BB/88C2F15E885811EB96CE6817C4F9AE02/ZfYWHHNtGpxBkf38x6T4JM4RIy0.mft Manifest number: 065B Signing time: Mon 30 Jun 2025 22:48:44 +0000 Manifest this update: Mon 30 Jun 2025 22:48:44 +0000 Manifest next update: Mon 07 Jul 2025 22:48:44 +0000 Files and hashes: 1: ZfYWHHNtGpxBkf38x6T4JM4RIy0.crl (hash: 0BOfWe4K0O7KMjgudnpBwA+ClRVZ29FIeRVxmHi4Yzs=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91899BB/88C2F15E885811EB96CE6817C4F9AE02/ZfYWHHNtGpxBkf38x6T4JM4RIy0.crl rsync://rpki.apnic.net/member_repository/A91899BB/88C2F15E885811EB96CE6817C4F9AE02/ZfYWHHNtGpxBkf38x6T4JM4RIy0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ZfYWHHNtGpxBkf38x6T4JM4RIy0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 07 Jul 2025 22:48:43 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1627 (0x65b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91899BB, serialNumber=65F6161C736D1A9C4191FDFCC7A4F824CE11232D Validity Not Before: Jun 30 22:48:44 2025 GMT Not After : Jul 7 22:48:44 2025 GMT Subject: CN=6863144c-8e7a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c5:c6:8f:e3:df:45:ea:f8:c9:13:97:e4:00:95: 49:f2:94:36:6e:44:35:51:d3:38:57:53:59:fc:2c: 02:de:03:4e:08:84:e7:a6:d8:19:10:56:16:d3:5b: 2e:df:a1:89:45:97:9b:a1:eb:ec:2b:8f:27:b2:c8: 4b:f1:23:e2:3c:ef:e4:59:b8:75:d1:de:12:39:41: 1f:63:7c:35:51:f9:ff:71:49:06:84:79:14:4c:a2: 7a:ff:39:df:d5:8d:4a:50:cd:bc:dc:32:ec:de:73: 04:1a:27:ec:81:30:3d:57:9e:7f:2d:98:c0:80:41: 88:67:80:89:4a:a4:fc:93:ee:0c:97:02:00:8a:b6: aa:80:f2:a2:ab:08:40:20:af:da:a0:6f:49:69:0b: ec:94:79:e8:4a:2c:85:89:1a:44:f7:d1:95:b8:15: ce:24:c2:1e:ea:39:4e:4b:c7:13:85:55:28:a4:fd: 4e:65:c9:10:12:09:75:0a:d9:dd:11:7b:73:c3:fb: bb:ff:dd:40:88:08:33:15:29:7a:50:fa:0e:92:96: 5f:de:54:27:f3:72:0c:9e:b3:b4:59:ad:2e:c3:5a: c7:df:4c:94:39:16:05:cc:e4:2a:58:d2:8f:36:d5: 72:8f:e3:37:20:2c:c9:1e:a3:df:5c:6a:ac:e7:49: 82:79 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FD:91:DF:54:88:23:5E:A1:79:8A:79:D5:DB:1A:F9:5D:0A:40:EC:54 X509v3 Authority Key Identifier: keyid:65:F6:16:1C:73:6D:1A:9C:41:91:FD:FC:C7:A4:F8:24:CE:11:23:2D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91899BB/88C2F15E885811EB96CE6817C4F9AE02/ZfYWHHNtGpxBkf38x6T4JM4RIy0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ZfYWHHNtGpxBkf38x6T4JM4RIy0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91899BB/88C2F15E885811EB96CE6817C4F9AE02/ZfYWHHNtGpxBkf38x6T4JM4RIy0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 26:e2:68:f0:55:05:e4:ce:69:a0:9c:63:22:5d:82:06:92:4f: b6:f1:36:ec:09:0a:d2:5b:e7:39:c1:62:78:58:34:16:61:61: 45:15:20:46:82:a8:59:b3:19:44:45:50:6b:70:d6:ba:d3:f0: dd:e5:08:b5:aa:2c:51:94:65:31:b1:2c:f8:85:d7:bc:e3:99: 40:e1:1e:f9:96:19:af:ad:38:6b:89:4f:6c:46:e5:32:c6:c0: 04:14:d4:28:f6:a4:2d:91:21:b4:07:7c:28:0a:60:8a:b1:02: 80:32:8e:c1:98:68:26:9e:a4:6a:f6:84:19:c2:19:75:50:50: 2a:92:82:f7:af:48:1e:92:07:9b:29:f3:7b:17:a6:ce:1e:78: d6:4c:d0:77:70:90:ce:fe:99:c8:30:88:e5:2e:4c:3b:c6:d4: a4:bf:b1:4d:10:04:da:af:9e:d9:95:f6:b0:93:20:68:64:9f: 66:80:fc:8e:47:b5:0b:df:cb:56:f5:da:64:33:d1:93:2d:1c: aa:39:dd:ba:6a:c4:d6:c0:c0:4c:42:88:00:e4:10:2f:b6:cd: 63:0a:fb:ad:8d:01:8b:1d:f2:b1:4c:0a:0d:ff:00:a3:39:28: 4a:01:c5:09:aa:70:c6:a8:37:26:f4:0f:57:c7:28:ab:4a:5d: f2:cb:96:78 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBlswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx ODk5QkIxMTAvBgNVBAUTKDY1RjYxNjFDNzM2RDFBOUM0MTkxRkRGQ0M3QTRGODI0 Q0UxMTIzMkQwHhcNMjUwNjMwMjI0ODQ0WhcNMjUwNzA3MjI0ODQ0WjAYMRYwFAYD VQQDEw02ODYzMTQ0Yy04ZTdhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxcaP499F6vjJE5fkAJVJ8pQ2bkQ1UdM4V1NZ/CwC3gNOCITnptgZEFYW01su 36GJRZeboevsK48nsshL8SPiPO/kWbh10d4SOUEfY3w1Ufn/cUkGhHkUTKJ6/znf 1Y1KUM283DLs3nMEGifsgTA9V55/LZjAgEGIZ4CJSqT8k+4MlwIAiraqgPKiqwhA IK/aoG9JaQvslHnoSiyFiRpE99GVuBXOJMIe6jlOS8cThVUopP1OZckQEgl1Ctnd EXtzw/u7/91AiAgzFSl6UPoOkpZf3lQn83IMnrO0Wa0uw1rH30yUORYFzOQqWNKP NtVyj+M3ICzJHqPfXGqs50mCeQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFP2R31SI I16heYp51dsa+V0KQOxUMB8GA1UdIwQYMBaAFGX2FhxzbRqcQZH9/Mek+CTOESMt MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4OTlCQi84OEMyRjE1RTg4 NTgxMUVCOTZDRTY4MTdDNEY5QUUwMi9aZllXSEhOdEdweEJrZjM4eDZUNEpNNFJJ eTAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1pmWVdISE50R3B4QmtmMzh4NlQ0Sk00Ukl5MC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 OTlCQi84OEMyRjE1RTg4NTgxMUVCOTZDRTY4MTdDNEY5QUUwMi9aZllXSEhOdEdw eEJrZjM4eDZUNEpNNFJJeTAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAm4mjwVQXkzmmgnGMiXYIGkk+28TbsCQrSW+c5wWJ4WDQWYWFFFSBG gqhZsxlERVBrcNa60/Dd5Qi1qixRlGUxsSz4hde845lA4R75lhmvrThriU9sRuUy xsAEFNQo9qQtkSG0B3woCmCKsQKAMo7BmGgmnqRq9oQZwhl1UFAqkoL3r0gekgeb KfN7F6bOHnjWTNB3cJDO/pnIMIjlLkw7xtSkv7FNEATar57ZlfawkyBoZJ9mgPyO R7UL38tW9dpkM9GTLRyqOd26asTWwMBMQogA5BAvts1jCvutjQGLHfKxTAoN/wCj OShKAcUJqnDGqDcm9A9XxyirSl3yy5Z4 -----END CERTIFICATE-----Generated at Wed Jul 2 01:56:34 2025 by rpki-client