$ rpki-client -vvf rpki.apnic.net/member_repository/A91D5230/C50074DAE85211EAAC50B551C4F9AE02/ZPivgeq5CJliFNQ59xFwDp9ItMs.mft File: ZPivgeq5CJliFNQ59xFwDp9ItMs.mft (raw, json) Hash identifier: 9RI73NWIcFwhfTbaeamOZuOYgmtCgYfL1rJM/quMrWw= Subject key identifier: 08:0E:6E:3F:7F:52:FE:E4:86:15:74:52:CB:DD:28:4E:B2:BC:43:FC Authority key identifier: 64:F8:AF:81:EA:B9:08:99:62:14:D4:39:F7:11:70:0E:9F:48:B4:CB Certificate issuer: /CN=A91D5230/serialNumber=64F8AF81EAB908996214D439F711700E9F48B4CB Certificate serial: 0811 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ZPivgeq5CJliFNQ59xFwDp9ItMs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D5230/C50074DAE85211EAAC50B551C4F9AE02/ZPivgeq5CJliFNQ59xFwDp9ItMs.mft Manifest number: 07FC Signing time: Fri 30 May 2025 21:12:54 +0000 Manifest this update: Fri 30 May 2025 21:12:53 +0000 Manifest next update: Fri 06 Jun 2025 21:12:53 +0000 Files and hashes: 1: ZPivgeq5CJliFNQ59xFwDp9ItMs.crl (hash: wb1/EJ0dVMUFMgtueRI+sz3uwTYQeFSAa/wMhw4fV+o=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D5230/C50074DAE85211EAAC50B551C4F9AE02/ZPivgeq5CJliFNQ59xFwDp9ItMs.crl rsync://rpki.apnic.net/member_repository/A91D5230/C50074DAE85211EAAC50B551C4F9AE02/ZPivgeq5CJliFNQ59xFwDp9ItMs.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ZPivgeq5CJliFNQ59xFwDp9ItMs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 06 Jun 2025 21:12:53 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2065 (0x811) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D5230, serialNumber=64F8AF81EAB908996214D439F711700E9F48B4CB Validity Not Before: May 30 21:12:53 2025 GMT Not After : Jun 6 21:12:53 2025 GMT Subject: CN=683a1f55-687c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a6:59:b7:dc:1c:41:25:44:b1:6b:dc:1b:fd:26: 7a:ca:54:75:90:fc:50:72:92:43:fa:82:42:5a:d9: 27:32:40:fe:a4:df:84:6e:59:7e:47:39:1c:3d:5a: bf:95:60:78:d9:aa:33:fa:98:2f:44:fc:32:8c:90: 9d:61:9a:b1:8b:4a:46:c9:9b:33:c4:71:5d:d9:09: bc:03:46:2f:26:39:9e:39:99:fb:e8:70:76:3b:37: 8a:f6:46:ba:e2:22:a3:25:ef:ee:ed:7c:fd:29:19: 59:a0:d6:b6:07:30:92:62:a2:5e:58:92:9b:4a:5f: 5b:ae:c6:05:63:fd:04:6f:27:4a:1e:59:56:fc:05: 66:a7:86:93:c9:4c:a1:a1:e7:70:fa:54:f7:03:b8: 1d:de:77:63:f5:3c:79:d1:52:49:7d:85:96:db:bb: 0e:9e:58:67:f8:ec:23:2c:56:5d:62:72:cf:9a:bb: 56:a5:73:86:aa:7f:3b:f1:df:c6:9f:ce:d9:8c:b1: d0:b8:05:bd:f6:61:83:2b:5e:bb:15:1d:93:fa:5d: 7f:4c:91:ba:a2:19:7c:c7:6c:e1:6e:9e:67:1b:40: 72:c6:84:75:7b:85:6d:58:f0:02:7a:97:77:27:7e: b4:7d:ba:d6:60:04:59:d6:25:84:04:98:dc:d4:07: 0d:41 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 08:0E:6E:3F:7F:52:FE:E4:86:15:74:52:CB:DD:28:4E:B2:BC:43:FC X509v3 Authority Key Identifier: keyid:64:F8:AF:81:EA:B9:08:99:62:14:D4:39:F7:11:70:0E:9F:48:B4:CB X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D5230/C50074DAE85211EAAC50B551C4F9AE02/ZPivgeq5CJliFNQ59xFwDp9ItMs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ZPivgeq5CJliFNQ59xFwDp9ItMs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D5230/C50074DAE85211EAAC50B551C4F9AE02/ZPivgeq5CJliFNQ59xFwDp9ItMs.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption f2:47:5a:59:6b:17:39:4f:a5:6b:cd:39:e2:05:85:b6:7a:4c: 07:6d:00:2e:5f:1a:01:3a:f8:fb:21:98:46:0d:36:b4:b1:e6: 34:c2:06:91:4b:57:4f:17:7b:56:0b:91:2c:a8:18:74:56:e5: 83:bb:75:3f:bf:11:7e:38:77:16:e6:e8:91:af:d7:7e:3e:f0: ab:4b:47:3b:4f:f7:a5:1c:02:87:44:79:79:32:23:54:51:04: ae:86:15:87:98:79:4b:72:b9:b3:ab:54:69:5a:b5:f4:a1:24: 1d:89:f0:00:77:eb:ea:4e:b3:4e:d3:9a:f7:e6:f4:08:11:39: 1c:da:cb:19:24:d5:bb:79:61:3b:ea:9e:b3:52:f7:27:e9:ea: b0:fd:dc:39:fb:27:3b:c6:7b:d3:82:4d:67:2e:60:36:36:86: e8:02:91:2b:71:f6:28:bb:b2:06:74:8d:f6:9e:9f:c3:41:4e: ff:c8:a7:01:1c:87:51:c2:5f:49:6b:5e:54:a6:db:5c:9c:9b: 17:82:3b:07:ec:ef:3c:d7:b1:ec:5b:ce:f1:25:3e:67:21:ea: 4a:b6:9b:d1:ee:d2:92:29:4d:79:fc:c2:5b:07:0d:5a:4f:e4: 57:55:bf:cb:db:e6:e9:3c:1c:b5:84:a0:11:83:04:ee:96:f6: 34:0e:f7:94 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCBEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDUyMzAxMTAvBgNVBAUTKDY0RjhBRjgxRUFCOTA4OTk2MjE0RDQzOUY3MTE3MDBF OUY0OEI0Q0IwHhcNMjUwNTMwMjExMjUzWhcNMjUwNjA2MjExMjUzWjAYMRYwFAYD VQQDEw02ODNhMWY1NS02ODdjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAplm33BxBJUSxa9wb/SZ6ylR1kPxQcpJD+oJCWtknMkD+pN+Ebll+RzkcPVq/ lWB42aoz+pgvRPwyjJCdYZqxi0pGyZszxHFd2Qm8A0YvJjmeOZn76HB2OzeK9ka6 4iKjJe/u7Xz9KRlZoNa2BzCSYqJeWJKbSl9brsYFY/0EbydKHllW/AVmp4aTyUyh oedw+lT3A7gd3ndj9Tx50VJJfYWW27sOnlhn+OwjLFZdYnLPmrtWpXOGqn878d/G n87ZjLHQuAW99mGDK167FR2T+l1/TJG6ohl8x2zhbp5nG0ByxoR1e4VtWPACepd3 J360fbrWYARZ1iWEBJjc1AcNQQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFAgObj9/ Uv7khhV0UsvdKE6yvEP8MB8GA1UdIwQYMBaAFGT4r4HquQiZYhTUOfcRcA6fSLTL MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFENTIzMC9DNTAwNzREQUU4 NTIxMUVBQUM1MEI1NTFDNEY5QUUwMi9aUGl2Z2VxNUNKbGlGTlE1OXhGd0RwOUl0 TXMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1pQaXZnZXE1Q0psaUZOUTU5eEZ3RHA5SXRNcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE NTIzMC9DNTAwNzREQUU4NTIxMUVBQUM1MEI1NTFDNEY5QUUwMi9aUGl2Z2VxNUNK bGlGTlE1OXhGd0RwOUl0TXMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQDyR1pZaxc5T6VrzTniBYW2ekwHbQAuXxoBOvj7IZhGDTa0seY0wgaR S1dPF3tWC5EsqBh0VuWDu3U/vxF+OHcW5uiRr9d+PvCrS0c7T/elHAKHRHl5MiNU UQSuhhWHmHlLcrmzq1RpWrX0oSQdifAAd+vqTrNO05r35vQIETkc2ssZJNW7eWE7 6p6zUvcn6eqw/dw5+yc7xnvTgk1nLmA2NoboApErcfYou7IGdI32np/DQU7/yKcB HIdRwl9Ja15UpttcnJsXgjsH7O8817HsW87xJT5nIepKtpvR7tKSKU15/MJbBw1a T+RXVb/L2+bpPBy1hKARgwTulvY0DveU -----END CERTIFICATE-----Generated at Sat May 31 16:46:57 2025 by rpki-client