$ rpki-client -vvf rpki.apnic.net/member_repository/A91899BB/88C2F15E885811EB96CE6817C4F9AE02/ZfYWHHNtGpxBkf38x6T4JM4RIy0.mft File: ZfYWHHNtGpxBkf38x6T4JM4RIy0.mft (raw, json) Hash identifier: HzcrmQo9IBsFDUnP06xQxV1qwdY7fn6bkMTdgV/u+KI= Subject key identifier: 2C:79:25:E6:52:49:E9:EE:3E:B6:E9:AB:22:6C:1C:03:2F:BD:E8:25 Authority key identifier: 65:F6:16:1C:73:6D:1A:9C:41:91:FD:FC:C7:A4:F8:24:CE:11:23:2D Certificate issuer: /CN=A91899BB/serialNumber=65F6161C736D1A9C4191FDFCC7A4F824CE11232D Certificate serial: 0653 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ZfYWHHNtGpxBkf38x6T4JM4RIy0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91899BB/88C2F15E885811EB96CE6817C4F9AE02/ZfYWHHNtGpxBkf38x6T4JM4RIy0.mft Manifest number: 0653 Signing time: Sat 14 Jun 2025 22:14:57 +0000 Manifest this update: Sat 14 Jun 2025 22:14:56 +0000 Manifest next update: Sat 21 Jun 2025 22:14:56 +0000 Files and hashes: 1: ZfYWHHNtGpxBkf38x6T4JM4RIy0.crl (hash: Jct77qOe22cpzZqZEpfr0uzEZrqkjz6Dm2X28LVPBHQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91899BB/88C2F15E885811EB96CE6817C4F9AE02/ZfYWHHNtGpxBkf38x6T4JM4RIy0.crl rsync://rpki.apnic.net/member_repository/A91899BB/88C2F15E885811EB96CE6817C4F9AE02/ZfYWHHNtGpxBkf38x6T4JM4RIy0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ZfYWHHNtGpxBkf38x6T4JM4RIy0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 21 Jun 2025 22:14:55 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1619 (0x653) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91899BB, serialNumber=65F6161C736D1A9C4191FDFCC7A4F824CE11232D Validity Not Before: Jun 14 22:14:56 2025 GMT Not After : Jun 21 22:14:56 2025 GMT Subject: CN=684df460-3525 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:0d:86:ad:c0:c2:b7:77:9b:c3:13:26:f6:4a: 1a:10:93:4f:5f:5c:1c:87:8c:43:74:9b:93:54:75: 6e:f1:82:5c:a1:ab:bd:9d:27:14:f7:a6:b6:e6:0d: 2e:8e:85:d2:8e:1d:d9:e2:23:bb:29:fc:5c:2b:92: 8a:72:d9:2c:8e:02:48:d8:0e:2b:66:1f:d7:42:eb: cd:bd:8c:f5:56:c5:4b:16:aa:8f:44:c1:15:7c:ad: 3a:7d:ec:2e:4e:be:af:b0:a5:59:9a:86:31:26:55: 90:b6:a6:0a:7d:ea:89:74:51:cb:0d:3d:9f:74:35: db:c8:a7:6a:93:0e:83:9e:e0:bb:a2:fb:42:1d:c7: 98:fd:59:7e:d9:3b:e9:9b:be:48:d7:56:68:cb:e3: 98:b0:2b:20:f9:98:cc:d8:f3:c6:8a:6c:95:ab:e2: 46:20:1c:92:3e:a2:0d:46:e9:7d:b6:d0:4d:24:f9: d7:fb:1b:92:dc:25:09:66:c6:3c:e0:16:cd:5a:02: 8b:89:5e:44:3a:22:c0:16:c4:4a:79:fd:fc:5d:d7: 2f:f0:cd:9c:eb:3f:a0:64:b0:28:7e:46:ce:4e:39: a0:54:2d:d8:a0:07:34:fd:fc:3a:1b:4c:75:9e:b7: 3b:94:fd:6d:5f:6b:e8:04:5a:d7:c7:ef:68:81:03: 90:ed Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2C:79:25:E6:52:49:E9:EE:3E:B6:E9:AB:22:6C:1C:03:2F:BD:E8:25 X509v3 Authority Key Identifier: keyid:65:F6:16:1C:73:6D:1A:9C:41:91:FD:FC:C7:A4:F8:24:CE:11:23:2D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91899BB/88C2F15E885811EB96CE6817C4F9AE02/ZfYWHHNtGpxBkf38x6T4JM4RIy0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ZfYWHHNtGpxBkf38x6T4JM4RIy0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91899BB/88C2F15E885811EB96CE6817C4F9AE02/ZfYWHHNtGpxBkf38x6T4JM4RIy0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 79:48:46:97:44:1e:8e:2a:c7:32:40:57:09:fb:43:1e:fd:b0: 06:03:01:3b:b2:3a:d9:c5:c2:90:25:4a:4c:32:9b:14:2c:ec: f3:32:98:05:5d:9c:28:7a:c8:47:96:ef:36:c5:ce:43:41:c7: 70:a9:a6:ac:18:f8:1b:03:25:38:9c:b3:dd:28:87:81:cf:4e: 9d:eb:dc:8d:b3:9c:0f:d8:da:e1:1c:02:d6:4c:11:0c:57:d5: 03:8a:ea:93:aa:70:ea:06:d8:59:c1:9f:9f:75:be:5a:82:5d: cc:fa:95:88:7c:3c:bd:03:4a:d7:eb:fa:83:c8:7c:c1:32:d8: 1d:fa:3e:d5:22:13:2a:94:4b:81:7d:dd:c7:93:50:f0:c9:8b: 00:c7:e1:36:f5:7f:a2:37:f1:65:3e:d3:7c:cc:42:59:60:17: 4e:fe:86:2c:92:d3:5d:d3:ee:ed:cd:7c:cd:ef:0d:3d:a5:14: 35:83:b1:01:88:35:f9:db:83:46:1e:03:91:6e:8d:25:af:6a: 34:93:b2:57:fe:2a:ef:b0:04:97:f4:a0:99:62:8c:58:df:2f: 46:e7:02:54:67:b0:93:93:92:e9:b6:b4:15:bf:37:57:65:94: fb:ca:01:c8:3a:b9:e8:ae:17:7d:5b:03:44:1d:e7:8e:56:ee: 8e:87:7e:33 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBlMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx ODk5QkIxMTAvBgNVBAUTKDY1RjYxNjFDNzM2RDFBOUM0MTkxRkRGQ0M3QTRGODI0 Q0UxMTIzMkQwHhcNMjUwNjE0MjIxNDU2WhcNMjUwNjIxMjIxNDU2WjAYMRYwFAYD VQQDEw02ODRkZjQ2MC0zNTI1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvQ2GrcDCt3ebwxMm9koaEJNPX1wch4xDdJuTVHVu8YJcoau9nScU96a25g0u joXSjh3Z4iO7KfxcK5KKctksjgJI2A4rZh/XQuvNvYz1VsVLFqqPRMEVfK06fewu Tr6vsKVZmoYxJlWQtqYKfeqJdFHLDT2fdDXbyKdqkw6DnuC7ovtCHceY/Vl+2Tvp m75I11Zoy+OYsCsg+ZjM2PPGimyVq+JGIBySPqINRul9ttBNJPnX+xuS3CUJZsY8 4BbNWgKLiV5EOiLAFsRKef38Xdcv8M2c6z+gZLAofkbOTjmgVC3YoAc0/fw6G0x1 nrc7lP1tX2voBFrXx+9ogQOQ7QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFCx5JeZS SenuPrbpqyJsHAMvveglMB8GA1UdIwQYMBaAFGX2FhxzbRqcQZH9/Mek+CTOESMt MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4OTlCQi84OEMyRjE1RTg4 NTgxMUVCOTZDRTY4MTdDNEY5QUUwMi9aZllXSEhOdEdweEJrZjM4eDZUNEpNNFJJ eTAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1pmWVdISE50R3B4QmtmMzh4NlQ0Sk00Ukl5MC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 OTlCQi84OEMyRjE1RTg4NTgxMUVCOTZDRTY4MTdDNEY5QUUwMi9aZllXSEhOdEdw eEJrZjM4eDZUNEpNNFJJeTAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB5SEaXRB6OKscyQFcJ+0Me/bAGAwE7sjrZxcKQJUpMMpsULOzzMpgF XZwoeshHlu82xc5DQcdwqaasGPgbAyU4nLPdKIeBz06d69yNs5wP2NrhHALWTBEM V9UDiuqTqnDqBthZwZ+fdb5agl3M+pWIfDy9A0rX6/qDyHzBMtgd+j7VIhMqlEuB fd3Hk1DwyYsAx+E29X+iN/FlPtN8zEJZYBdO/oYsktNd0+7tzXzN7w09pRQ1g7EB iDX524NGHgORbo0lr2o0k7JX/irvsASX9KCZYoxY3y9G5wJUZ7CTk5LptrQVvzdX ZZT7ygHIOrnorhd9WwNEHeeOVu6Oh34z -----END CERTIFICATE-----Generated at Sun Jun 15 09:44:55 2025 by rpki-client