$ rpki-client -vvf rpki.apnic.net/member_repository/A91CAA4E/55E9795AA94F11E8AA0C900EC4F9AE02/ZyEk9jPIkZyl12bYnpzP8LIfDI0.mft File: ZyEk9jPIkZyl12bYnpzP8LIfDI0.mft (raw, json) Hash identifier: Vv3NG1VoLc2z8MgfSkl95rnvwnAxUSgjyQ+4W81Mspc= Subject key identifier: A7:DB:97:DD:FC:0C:6A:F8:0E:FF:7D:9D:5A:83:84:EB:05:55:6A:73 Authority key identifier: 67:21:24:F6:33:C8:91:9C:A5:D7:66:D8:9E:9C:CF:F0:B2:1F:0C:8D Certificate issuer: /CN=A91CAA4E/serialNumber=672124F633C8919CA5D766D89E9CCFF0B21F0C8D Certificate serial: 1334 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ZyEk9jPIkZyl12bYnpzP8LIfDI0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CAA4E/55E9795AA94F11E8AA0C900EC4F9AE02/ZyEk9jPIkZyl12bYnpzP8LIfDI0.mft Manifest number: 1A49 Signing time: Mon 02 Jun 2025 17:12:41 +0000 Manifest this update: Mon 02 Jun 2025 17:12:40 +0000 Manifest next update: Mon 09 Jun 2025 17:12:40 +0000 Files and hashes: 1: ZyEk9jPIkZyl12bYnpzP8LIfDI0.crl (hash: M54PCzOjcv6oRmEwcjBQXtR46A5yWhaVcxtm4q0CErU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CAA4E/55E9795AA94F11E8AA0C900EC4F9AE02/ZyEk9jPIkZyl12bYnpzP8LIfDI0.crl rsync://rpki.apnic.net/member_repository/A91CAA4E/55E9795AA94F11E8AA0C900EC4F9AE02/ZyEk9jPIkZyl12bYnpzP8LIfDI0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ZyEk9jPIkZyl12bYnpzP8LIfDI0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Jun 2025 17:12:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4916 (0x1334) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CAA4E, serialNumber=672124F633C8919CA5D766D89E9CCFF0B21F0C8D Validity Not Before: Jun 2 17:12:40 2025 GMT Not After : Jun 9 17:12:40 2025 GMT Subject: CN=683ddb88-10f6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9f:48:c2:00:d4:31:8d:b3:2c:7c:4c:d6:d7:52: 34:d7:f5:fc:95:24:4a:6b:c6:3e:ce:9a:a2:82:da: 7d:11:ff:a1:46:b0:9c:21:d4:80:5c:f7:43:44:10: ef:07:23:cf:92:c1:47:ba:29:5e:93:4f:a9:e8:db: 3b:ff:ba:7d:77:d0:45:35:14:75:0e:55:2a:25:83: d3:9d:66:58:7a:9e:75:f8:5e:80:8a:1f:5b:03:c4: b1:58:82:7e:18:82:6c:db:61:b9:a3:86:30:c5:8e: 8d:81:d4:e5:41:09:9a:c6:cc:c3:f7:e4:8e:bd:ed: ed:52:c7:42:8f:10:bb:fb:70:91:85:a0:42:23:8f: 35:41:92:d4:4b:0f:e0:ea:1a:fc:5b:75:60:51:1d: 01:c1:f7:05:f5:23:bc:1e:cc:15:4f:02:e1:fc:cf: 92:09:ee:0e:9d:ce:14:0a:ea:99:2b:bb:1d:87:99: fb:b5:f2:d5:e2:cd:1c:04:7b:3e:48:81:1e:97:7a: 34:89:96:2f:d1:01:3f:f2:a1:03:ee:9b:49:ad:32: 4c:fd:40:99:8d:50:17:f8:1f:26:a3:aa:54:f7:bf: 2e:7c:cb:0c:4e:ba:fd:f5:ff:e2:22:7c:91:60:7d: 29:c2:49:11:a9:ca:9f:94:6e:62:25:5c:dc:6e:d2: 32:8f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A7:DB:97:DD:FC:0C:6A:F8:0E:FF:7D:9D:5A:83:84:EB:05:55:6A:73 X509v3 Authority Key Identifier: keyid:67:21:24:F6:33:C8:91:9C:A5:D7:66:D8:9E:9C:CF:F0:B2:1F:0C:8D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CAA4E/55E9795AA94F11E8AA0C900EC4F9AE02/ZyEk9jPIkZyl12bYnpzP8LIfDI0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ZyEk9jPIkZyl12bYnpzP8LIfDI0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CAA4E/55E9795AA94F11E8AA0C900EC4F9AE02/ZyEk9jPIkZyl12bYnpzP8LIfDI0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 48:06:ae:94:e6:8a:70:44:6a:d9:d0:62:ff:a9:58:58:f2:0e: da:50:53:25:9d:eb:3c:d9:6d:5a:80:dc:8d:cf:db:f4:ec:cd: e9:ef:e0:72:55:a2:1c:10:c9:cb:ab:d0:54:44:0f:55:03:4b: 3b:73:3d:3a:09:09:db:7d:d1:7c:c4:2a:92:c5:62:22:b0:f0: 6d:85:2f:a6:1d:2f:0b:a7:50:f4:b0:44:b6:0c:f4:96:a5:58: 31:fa:51:b8:23:94:7f:db:f4:1c:a3:ec:84:a3:28:27:64:69: bd:51:23:96:3b:29:f3:21:ba:87:5c:24:0f:b9:f6:7d:3d:58: 88:66:43:96:60:c0:ee:cd:9b:ad:50:f3:af:89:98:41:15:08: 95:d0:3e:db:f9:e9:85:99:3f:fb:e0:28:6d:cf:be:78:a3:cd: 5d:1b:6e:22:6f:a4:ec:4c:fb:6e:11:c4:cc:0a:fe:08:ff:35: 54:c6:03:71:6c:ca:93:5b:f6:17:cf:d3:14:a1:9f:01:27:f8: 00:71:4a:fb:51:6e:e0:10:44:6f:46:49:93:d0:ab:bf:dc:c8: be:43:72:89:cc:6b:c1:a4:c0:26:01:44:6b:4c:84:27:da:a1: f4:f6:96:21:ba:63:30:12:b9:3e:9c:bc:ea:44:72:69:02:63: 0c:1d:c8:fa -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICEzQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Q0FBNEUxMTAvBgNVBAUTKDY3MjEyNEY2MzNDODkxOUNBNUQ3NjZEODlFOUNDRkYw QjIxRjBDOEQwHhcNMjUwNjAyMTcxMjQwWhcNMjUwNjA5MTcxMjQwWjAYMRYwFAYD VQQDEw02ODNkZGI4OC0xMGY2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAn0jCANQxjbMsfEzW11I01/X8lSRKa8Y+zpqigtp9Ef+hRrCcIdSAXPdDRBDv ByPPksFHuilek0+p6Ns7/7p9d9BFNRR1DlUqJYPTnWZYep51+F6Aih9bA8SxWIJ+ GIJs22G5o4YwxY6NgdTlQQmaxszD9+SOve3tUsdCjxC7+3CRhaBCI481QZLUSw/g 6hr8W3VgUR0BwfcF9SO8HswVTwLh/M+SCe4Onc4UCuqZK7sdh5n7tfLV4s0cBHs+ SIEel3o0iZYv0QE/8qED7ptJrTJM/UCZjVAX+B8mo6pU978ufMsMTrr99f/iInyR YH0pwkkRqcqflG5iJVzcbtIyjwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFKfbl938 DGr4Dv99nVqDhOsFVWpzMB8GA1UdIwQYMBaAFGchJPYzyJGcpddm2J6cz/CyHwyN MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDQUE0RS81NUU5Nzk1QUE5 NEYxMUU4QUEwQzkwMEVDNEY5QUUwMi9aeUVrOWpQSWtaeWwxMmJZbnB6UDhMSWZE STAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1p5RWs5alBJa1p5bDEyYllucHpQOExJZkRJMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD QUE0RS81NUU5Nzk1QUE5NEYxMUU4QUEwQzkwMEVDNEY5QUUwMi9aeUVrOWpQSWta eWwxMmJZbnB6UDhMSWZESTAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBIBq6U5opwRGrZ0GL/qVhY8g7aUFMlnes82W1agNyNz9v07M3p7+By VaIcEMnLq9BURA9VA0s7cz06CQnbfdF8xCqSxWIisPBthS+mHS8Lp1D0sES2DPSW pVgx+lG4I5R/2/Qco+yEoygnZGm9USOWOynzIbqHXCQPufZ9PViIZkOWYMDuzZut UPOviZhBFQiV0D7b+emFmT/74Chtz754o81dG24ib6TsTPtuEcTMCv4I/zVUxgNx bMqTW/YXz9MUoZ8BJ/gAcUr7UW7gEERvRkmT0Ku/3Mi+Q3KJzGvBpMAmAURrTIQn 2qH09pYhumMwErk+nLzqRHJpAmMMHcj6 -----END CERTIFICATE-----Generated at Tue Jun 3 23:50:35 2025 by rpki-client