$ rpki-client -vvf rpki.apnic.net/member_repository/A91A6CD6/65E6DBD69CA911EB8AFF0F37C4F9AE02/zFYVfHLcxpczY2dD21AIdZMtpB8.mft File: zFYVfHLcxpczY2dD21AIdZMtpB8.mft (raw, json) Hash identifier: pl/7E02EJobVR+by+tfZpll/DJj5o2fFurfzbbKu7jQ= Subject key identifier: 9D:D8:3E:52:C3:28:42:BB:61:87:EB:8E:4E:95:70:63:99:19:5C:90 Authority key identifier: CC:56:15:7C:72:DC:C6:97:33:63:67:43:DB:50:08:75:93:2D:A4:1F Certificate issuer: /CN=A91A6CD6/serialNumber=CC56157C72DCC69733636743DB500875932DA41F Certificate serial: 0616 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/zFYVfHLcxpczY2dD21AIdZMtpB8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A6CD6/65E6DBD69CA911EB8AFF0F37C4F9AE02/zFYVfHLcxpczY2dD21AIdZMtpB8.mft Manifest number: 0610 Signing time: Mon 28 Apr 2025 23:20:11 +0000 Manifest this update: Mon 28 Apr 2025 23:20:10 +0000 Manifest next update: Mon 05 May 2025 23:20:10 +0000 Files and hashes: 1: zFYVfHLcxpczY2dD21AIdZMtpB8.crl (hash: Y5M4RbXWdRKzmRrwgDNyp6k0++KB5MrEdsSUMtew+ak=) 2: A210E7309CAB11EBAB87D43AC4F9AE02.roa (hash: G4Iff29ujs2wSeu37iPDIUnNuvGFMJft5LK0116SXEs=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A6CD6/65E6DBD69CA911EB8AFF0F37C4F9AE02/zFYVfHLcxpczY2dD21AIdZMtpB8.crl rsync://rpki.apnic.net/member_repository/A91A6CD6/65E6DBD69CA911EB8AFF0F37C4F9AE02/zFYVfHLcxpczY2dD21AIdZMtpB8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/zFYVfHLcxpczY2dD21AIdZMtpB8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 05 May 2025 23:20:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1558 (0x616) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A6CD6, serialNumber=CC56157C72DCC69733636743DB500875932DA41F Validity Not Before: Apr 28 23:20:10 2025 GMT Not After : May 5 23:20:10 2025 GMT Subject: CN=68100d2b-31fc Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:a7:ec:62:9a:70:f7:48:82:33:16:1d:29:b1: 20:ab:0e:25:4c:d2:08:d2:a3:6d:eb:7e:60:44:54: 4f:ef:4b:7c:4a:31:45:b1:12:4a:09:36:06:1a:56: 8d:20:75:cc:12:d2:2a:4f:0b:43:40:b8:4c:3f:1e: 8f:93:eb:a5:6c:30:a5:6c:31:c1:23:1e:7f:04:5d: 2f:01:df:39:5a:53:cf:6d:4f:5a:b9:00:ed:4f:60: 16:cf:ec:a3:7b:af:25:7d:7e:5a:07:67:7c:08:0a: fe:2d:1a:0d:cb:fc:ba:13:22:4c:86:19:68:55:7e: 74:1d:06:c3:82:e7:76:cc:7b:d3:6f:25:9f:72:27: df:0b:37:08:91:3a:aa:71:57:50:ab:1c:13:00:03: e3:68:c1:3e:82:55:bf:18:74:09:0c:aa:83:d4:1b: 92:d9:cf:d5:d2:48:57:1b:0c:17:69:d7:f2:4c:a3: df:68:00:03:4c:bb:31:93:6b:b4:b2:1a:56:21:f0: 0e:c3:a1:53:94:7b:9d:c0:48:b7:95:6e:49:43:2f: 30:1e:e0:3d:6d:82:54:54:a4:a3:da:ab:48:8d:8f: 28:de:cb:13:87:cc:32:9f:ac:5b:b2:84:c3:55:86: ed:bc:b1:6d:eb:f3:6c:fb:20:2a:f9:e3:e4:7d:8f: 74:77 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9D:D8:3E:52:C3:28:42:BB:61:87:EB:8E:4E:95:70:63:99:19:5C:90 X509v3 Authority Key Identifier: keyid:CC:56:15:7C:72:DC:C6:97:33:63:67:43:DB:50:08:75:93:2D:A4:1F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A6CD6/65E6DBD69CA911EB8AFF0F37C4F9AE02/zFYVfHLcxpczY2dD21AIdZMtpB8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/zFYVfHLcxpczY2dD21AIdZMtpB8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A6CD6/65E6DBD69CA911EB8AFF0F37C4F9AE02/zFYVfHLcxpczY2dD21AIdZMtpB8.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 0d:90:ea:6d:7f:0f:5c:77:cd:b0:75:0d:3e:7a:e3:25:7c:7b: be:2e:d9:55:6b:68:57:31:c7:b3:a4:70:c8:3b:1e:f5:4d:da: 3e:cf:b8:8b:6d:b5:80:4f:a5:03:f3:68:ed:ab:ce:89:48:58: 23:46:39:6a:30:a3:c9:96:a3:e2:14:b6:80:9d:cd:c0:cf:88: 8d:0a:fd:05:ba:78:a1:f9:7c:fa:a2:69:42:07:53:87:6a:0b: 51:db:ba:57:86:52:75:6b:8b:b9:6c:1b:f0:3f:2e:fe:dd:86: 75:7d:07:9d:a5:ee:f1:aa:ce:4f:52:cd:2d:20:3d:da:df:ab: 45:cc:69:ed:c8:e9:f8:ec:54:90:9b:75:66:92:b8:2b:f9:97: 12:08:e3:ad:d7:25:e8:85:54:67:c4:8b:78:93:a7:af:97:58: d8:bd:be:ce:ed:5d:29:76:60:54:91:a2:dc:91:fd:de:96:c0: f9:2e:b5:fc:19:a1:8e:70:ed:3b:f1:13:2e:ec:76:49:d3:66: d5:a1:fe:2c:88:e8:cc:e2:3a:c1:a8:1b:6c:09:fd:93:02:9d: a3:00:76:0b:59:3c:5b:ab:2c:12:58:99:7e:74:0a:be:ab:d2: d1:55:65:61:00:b9:03:54:b4:67:f6:de:dd:2b:cf:b9:3b:f6: 15:dc:0f:94 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBhYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTZDRDYxMTAvBgNVBAUTKENDNTYxNTdDNzJEQ0M2OTczMzYzNjc0M0RCNTAwODc1 OTMyREE0MUYwHhcNMjUwNDI4MjMyMDEwWhcNMjUwNTA1MjMyMDEwWjAYMRYwFAYD VQQDEw02ODEwMGQyYi0zMWZjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvqfsYppw90iCMxYdKbEgqw4lTNII0qNt635gRFRP70t8SjFFsRJKCTYGGlaN IHXMEtIqTwtDQLhMPx6Pk+ulbDClbDHBIx5/BF0vAd85WlPPbU9auQDtT2AWz+yj e68lfX5aB2d8CAr+LRoNy/y6EyJMhhloVX50HQbDgud2zHvTbyWfciffCzcIkTqq cVdQqxwTAAPjaME+glW/GHQJDKqD1BuS2c/V0khXGwwXadfyTKPfaAADTLsxk2u0 shpWIfAOw6FTlHudwEi3lW5JQy8wHuA9bYJUVKSj2qtIjY8o3ssTh8wyn6xbsoTD VYbtvLFt6/Ns+yAq+ePkfY90dwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJ3YPlLD KEK7YYfrjk6VcGOZGVyQMB8GA1UdIwQYMBaAFMxWFXxy3MaXM2NnQ9tQCHWTLaQf MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBNkNENi82NUU2REJENjlD QTkxMUVCOEFGRjBGMzdDNEY5QUUwMi96RllWZkhMY3hwY3pZMmREMjFBSWRaTXRw QjguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3pGWVZmSExjeHBjelkyZEQyMUFJZFpNdHBCOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB NkNENi82NUU2REJENjlDQTkxMUVCOEFGRjBGMzdDNEY5QUUwMi96RllWZkhMY3hw Y3pZMmREMjFBSWRaTXRwQjgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQANkOptfw9cd82wdQ0+euMlfHu+LtlVa2hXMcezpHDIOx71Tdo+z7iL bbWAT6UD82jtq86JSFgjRjlqMKPJlqPiFLaAnc3Az4iNCv0Funih+Xz6omlCB1OH agtR27pXhlJ1a4u5bBvwPy7+3YZ1fQedpe7xqs5PUs0tID3a36tFzGntyOn47FSQ m3Vmkrgr+ZcSCOOt1yXohVRnxIt4k6evl1jYvb7O7V0pdmBUkaLckf3elsD5LrX8 GaGOcO078RMu7HZJ02bVof4siOjM4jrBqBtsCf2TAp2jAHYLWTxbqywSWJl+dAq+ q9LRVWVhALkDVLRn9t7dK8+5O/YV3A+U -----END CERTIFICATE-----Generated at Wed Apr 30 12:30:50 2025 by rpki-client