$ rpki-client -vvf rpki.apnic.net/member_repository/A91899BB/88C2F15E885811EB96CE6817C4F9AE02/ZfYWHHNtGpxBkf38x6T4JM4RIy0.mft File: ZfYWHHNtGpxBkf38x6T4JM4RIy0.mft (raw, json) Hash identifier: QOjSdhQUanGVk+R23AmrLBVAQmwt5AWfpDm07rCOATw= Subject key identifier: 83:82:99:A1:7A:F4:2C:93:EE:1E:F1:0D:C8:06:51:46:C3:55:E4:E0 Authority key identifier: 65:F6:16:1C:73:6D:1A:9C:41:91:FD:FC:C7:A4:F8:24:CE:11:23:2D Certificate issuer: /CN=A91899BB/serialNumber=65F6161C736D1A9C4191FDFCC7A4F824CE11232D Certificate serial: 063A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ZfYWHHNtGpxBkf38x6T4JM4RIy0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91899BB/88C2F15E885811EB96CE6817C4F9AE02/ZfYWHHNtGpxBkf38x6T4JM4RIy0.mft Manifest number: 063A Signing time: Thu 24 Apr 2025 22:23:15 +0000 Manifest this update: Thu 24 Apr 2025 22:23:14 +0000 Manifest next update: Thu 01 May 2025 22:23:14 +0000 Files and hashes: 1: ZfYWHHNtGpxBkf38x6T4JM4RIy0.crl (hash: qN6hK7zn+3ZimxlY6MoTMU8V7PXYKlAQ4VyQd6qwyKM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91899BB/88C2F15E885811EB96CE6817C4F9AE02/ZfYWHHNtGpxBkf38x6T4JM4RIy0.crl rsync://rpki.apnic.net/member_repository/A91899BB/88C2F15E885811EB96CE6817C4F9AE02/ZfYWHHNtGpxBkf38x6T4JM4RIy0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ZfYWHHNtGpxBkf38x6T4JM4RIy0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 01 May 2025 22:23:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1594 (0x63a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91899BB, serialNumber=65F6161C736D1A9C4191FDFCC7A4F824CE11232D Validity Not Before: Apr 24 22:23:14 2025 GMT Not After : May 1 22:23:14 2025 GMT Subject: CN=680ab9d2-eb46 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:97:7f:49:01:03:87:ca:f9:81:24:51:d0:83: 44:24:58:1d:e5:f1:f7:ad:4c:97:39:fa:a6:cd:12: 97:b4:03:ac:d7:1b:ea:e6:b4:cd:f1:c1:6d:70:59: bc:16:c1:44:df:99:5f:6d:73:77:0e:4e:2e:33:b4: 44:35:2a:aa:63:bc:b4:6b:c5:42:93:4b:70:fe:6e: 2c:17:1e:b0:b3:87:c4:13:39:8a:bb:3b:d5:12:54: d0:2b:b4:d5:52:46:c4:dc:0a:c3:98:93:aa:28:f4: c7:4b:70:bb:03:45:ed:a0:3d:56:5a:6d:cb:e8:f1: b5:70:21:ec:64:db:fc:92:b1:19:e7:29:24:e3:e1: c9:77:d4:9c:13:09:57:dc:1c:7e:8f:1b:e3:b9:22: 9b:64:31:2b:91:78:b2:14:69:04:9e:9a:82:34:41: 88:6f:8f:5c:9a:a6:25:29:19:5b:7b:ed:dc:af:fa: ab:3a:04:cc:22:55:99:58:19:ce:18:a1:d0:98:93: b1:94:85:ff:c9:df:4b:aa:62:cb:4c:65:de:c6:9e: dc:bd:aa:2e:28:97:be:4f:ce:77:89:5e:bf:56:85: 03:49:0d:bf:20:79:fc:af:5a:0c:d2:81:33:37:ea: ee:fc:56:4f:a7:95:4c:4a:e0:90:0e:34:6d:ac:22: 21:0d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 83:82:99:A1:7A:F4:2C:93:EE:1E:F1:0D:C8:06:51:46:C3:55:E4:E0 X509v3 Authority Key Identifier: keyid:65:F6:16:1C:73:6D:1A:9C:41:91:FD:FC:C7:A4:F8:24:CE:11:23:2D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91899BB/88C2F15E885811EB96CE6817C4F9AE02/ZfYWHHNtGpxBkf38x6T4JM4RIy0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ZfYWHHNtGpxBkf38x6T4JM4RIy0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91899BB/88C2F15E885811EB96CE6817C4F9AE02/ZfYWHHNtGpxBkf38x6T4JM4RIy0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a5:e0:9c:61:11:14:68:ef:05:cb:e1:65:ec:03:25:00:f0:ca: ed:be:58:b9:6b:0e:50:3c:f9:d4:53:03:e6:60:4c:87:9d:c7: 04:ef:bc:bb:62:cb:24:7f:ff:f4:22:6d:08:d6:1d:16:19:74: 41:a2:bc:18:2a:b1:0d:c0:30:0c:7b:a2:1d:7d:5f:99:9f:f1: 75:cd:fc:ba:16:36:b8:2a:d8:26:a0:26:07:d6:47:89:47:8a: 6b:31:d6:08:8c:97:b1:2e:e0:e4:d0:b0:12:b8:8a:d0:71:41: 89:10:bb:a9:d6:82:f4:73:0c:27:fa:96:f9:b8:1b:e4:1e:3c: 91:92:14:b0:e2:b8:e7:a0:83:e2:4a:b4:c0:d5:f0:bb:0f:70: dd:5d:b6:70:bf:6c:20:52:23:b4:ef:4b:8a:5f:a0:d4:20:75: 51:55:42:a1:56:47:fc:24:8d:76:a5:20:8b:a3:91:c7:d1:32: 68:0f:94:cb:28:a1:96:bb:f3:c5:e7:1b:31:30:cc:8a:2d:80: 5e:ea:54:f1:a2:ca:99:07:62:1e:70:78:7d:d0:c0:f7:2a:26: 7f:d4:17:c9:2a:9d:9a:27:26:c8:85:b6:11:49:1a:c4:51:04: 18:3b:6c:b6:bf:47:2b:39:9e:a8:4d:47:04:3e:5c:0b:3a:b8: 0c:d0:e9:c6 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBjowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx ODk5QkIxMTAvBgNVBAUTKDY1RjYxNjFDNzM2RDFBOUM0MTkxRkRGQ0M3QTRGODI0 Q0UxMTIzMkQwHhcNMjUwNDI0MjIyMzE0WhcNMjUwNTAxMjIyMzE0WjAYMRYwFAYD VQQDEw02ODBhYjlkMi1lYjQ2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAt5d/SQEDh8r5gSRR0INEJFgd5fH3rUyXOfqmzRKXtAOs1xvq5rTN8cFtcFm8 FsFE35lfbXN3Dk4uM7RENSqqY7y0a8VCk0tw/m4sFx6ws4fEEzmKuzvVElTQK7TV UkbE3ArDmJOqKPTHS3C7A0XtoD1WWm3L6PG1cCHsZNv8krEZ5ykk4+HJd9ScEwlX 3Bx+jxvjuSKbZDErkXiyFGkEnpqCNEGIb49cmqYlKRlbe+3cr/qrOgTMIlWZWBnO GKHQmJOxlIX/yd9LqmLLTGXexp7cvaouKJe+T853iV6/VoUDSQ2/IHn8r1oM0oEz N+ru/FZPp5VMSuCQDjRtrCIhDQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFIOCmaF6 9CyT7h7xDcgGUUbDVeTgMB8GA1UdIwQYMBaAFGX2FhxzbRqcQZH9/Mek+CTOESMt MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4OTlCQi84OEMyRjE1RTg4 NTgxMUVCOTZDRTY4MTdDNEY5QUUwMi9aZllXSEhOdEdweEJrZjM4eDZUNEpNNFJJ eTAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1pmWVdISE50R3B4QmtmMzh4NlQ0Sk00Ukl5MC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 OTlCQi84OEMyRjE1RTg4NTgxMUVCOTZDRTY4MTdDNEY5QUUwMi9aZllXSEhOdEdw eEJrZjM4eDZUNEpNNFJJeTAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCl4JxhERRo7wXL4WXsAyUA8Mrtvli5aw5QPPnUUwPmYEyHnccE77y7 Ysskf//0Im0I1h0WGXRBorwYKrENwDAMe6IdfV+Zn/F1zfy6Fja4KtgmoCYH1keJ R4prMdYIjJexLuDk0LASuIrQcUGJELup1oL0cwwn+pb5uBvkHjyRkhSw4rjnoIPi SrTA1fC7D3DdXbZwv2wgUiO070uKX6DUIHVRVUKhVkf8JI12pSCLo5HH0TJoD5TL KKGWu/PF5xsxMMyKLYBe6lTxosqZB2IecHh90MD3KiZ/1BfJKp2aJybIhbYRSRrE UQQYO2y2v0crOZ6oTUcEPlwLOrgM0OnG -----END CERTIFICATE-----Generated at Sat Apr 26 04:31:43 2025 by rpki-client