$ rpki-client -vvf rpki.apnic.net/member_repository/A91AB9A1/57337ACA8D7911EB8D8BD60BC4F9AE02/zl8rQ5utW-vicqch6qzDj6rdSbQ.mft File: zl8rQ5utW-vicqch6qzDj6rdSbQ.mft (raw, json) Hash identifier: 44wnly528FcrdWp/FVODv7MH/wxKzi8M0PDEMSgAsg8= Subject key identifier: 48:CE:CB:67:0B:C9:8E:E9:8D:85:D2:0F:B6:EF:FF:2F:C1:F8:99:6C Authority key identifier: CE:5F:2B:43:9B:AD:5B:EB:E2:72:A7:21:EA:AC:C3:8F:AA:DD:49:B4 Certificate issuer: /CN=A91AB9A1/serialNumber=CE5F2B439BAD5BEBE272A721EAACC38FAADD49B4 Certificate serial: 0655 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/zl8rQ5utW-vicqch6qzDj6rdSbQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91AB9A1/57337ACA8D7911EB8D8BD60BC4F9AE02/zl8rQ5utW-vicqch6qzDj6rdSbQ.mft Manifest number: 0655 Signing time: Sat 14 Jun 2025 14:39:25 +0000 Manifest this update: Sat 14 Jun 2025 14:39:25 +0000 Manifest next update: Sat 21 Jun 2025 14:39:25 +0000 Files and hashes: 1: zl8rQ5utW-vicqch6qzDj6rdSbQ.crl (hash: ur2gLB0jVrCXWrC6On1couFpFbrWG8SuLVIdfGKLSuk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91AB9A1/57337ACA8D7911EB8D8BD60BC4F9AE02/zl8rQ5utW-vicqch6qzDj6rdSbQ.crl rsync://rpki.apnic.net/member_repository/A91AB9A1/57337ACA8D7911EB8D8BD60BC4F9AE02/zl8rQ5utW-vicqch6qzDj6rdSbQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/zl8rQ5utW-vicqch6qzDj6rdSbQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 21 Jun 2025 14:39:24 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1621 (0x655) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91AB9A1, serialNumber=CE5F2B439BAD5BEBE272A721EAACC38FAADD49B4 Validity Not Before: Jun 14 14:39:25 2025 GMT Not After : Jun 21 14:39:25 2025 GMT Subject: CN=684d899d-1c5c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d8:5e:8a:68:c4:0e:70:c2:20:a8:70:3d:c2:0a: bc:01:52:11:d7:d8:f8:1f:e1:1c:d5:89:63:c1:1f: 24:d2:6e:f4:49:bc:1f:77:db:66:70:5b:5d:e0:dd: 9f:43:66:0d:2c:70:37:db:a0:5f:3b:56:71:7b:8b: 7f:b9:c1:96:e5:42:9f:45:d5:ad:ae:25:f4:05:0c: 49:c4:89:01:60:45:d3:4b:a4:d8:e7:cc:56:ff:85: d2:12:e1:e6:f6:a3:0e:67:bb:86:68:5f:5b:a9:41: ca:9a:8b:b9:5c:64:3b:b8:f5:04:7f:0a:00:3e:32: de:b9:2a:f2:fd:7e:b8:7e:7e:11:4f:5c:91:9e:76: 8e:6c:81:be:28:69:84:ff:6e:ba:4a:e5:01:4d:52: 49:97:ed:a5:87:d0:82:5b:f6:89:06:b2:44:af:61: 3f:cd:f3:f6:8e:d1:ee:bd:af:69:df:b5:cd:d2:30: f3:b6:bb:29:ec:41:d5:c0:2c:bd:4b:5b:b2:fc:6f: bd:50:aa:5b:8b:1b:d0:3c:8e:b8:23:b8:37:57:4a: 9f:d7:2d:83:c2:e2:b4:71:68:fb:10:05:5c:e4:59: 65:b9:80:58:2c:8d:35:3b:78:2c:4a:8f:a3:71:d0: a3:e4:c3:63:de:02:f6:ab:03:db:db:21:d3:9f:9d: 89:23 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 48:CE:CB:67:0B:C9:8E:E9:8D:85:D2:0F:B6:EF:FF:2F:C1:F8:99:6C X509v3 Authority Key Identifier: keyid:CE:5F:2B:43:9B:AD:5B:EB:E2:72:A7:21:EA:AC:C3:8F:AA:DD:49:B4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91AB9A1/57337ACA8D7911EB8D8BD60BC4F9AE02/zl8rQ5utW-vicqch6qzDj6rdSbQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/zl8rQ5utW-vicqch6qzDj6rdSbQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91AB9A1/57337ACA8D7911EB8D8BD60BC4F9AE02/zl8rQ5utW-vicqch6qzDj6rdSbQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 78:0b:ef:a3:eb:57:08:42:4c:bb:4e:76:9d:52:0a:dd:28:34: f8:fb:90:f8:c1:d8:39:56:69:44:d6:c2:c0:16:80:c1:ad:63: 84:d2:df:0b:e9:71:b8:29:30:78:e2:84:25:a7:7f:53:84:02: 2d:1f:bb:73:fa:89:71:6c:12:3f:4a:6f:5b:a2:76:94:07:ec: 5b:a0:95:c6:6e:20:0a:7b:e0:7a:77:bc:2d:a3:18:c5:d0:60: d1:fe:ea:37:4f:91:4f:bd:e8:ef:38:6c:a5:6a:04:6e:58:a2: 63:9a:fa:c7:74:a9:3b:68:c7:3a:4b:f6:16:b1:78:b4:ac:65: 58:b8:36:ad:6a:d3:6b:82:7e:f9:bc:c0:d9:7b:ba:64:a2:08: 98:ad:c7:6f:9f:19:dd:64:f6:08:c2:21:25:26:ab:d2:62:4f: c8:73:b3:24:7d:01:59:28:96:99:01:9a:1e:7f:04:d0:91:1c: 6a:49:cb:4d:f0:6d:c2:8b:06:bc:c5:a9:74:1f:6f:cf:07:43: c7:83:18:df:d2:71:10:42:ab:cd:72:ea:df:37:3d:ff:ae:0c: 45:db:9d:59:c0:3e:ca:da:6d:40:e7:9c:07:18:03:38:f3:54: c9:d6:62:af:34:46:09:d4:dc:56:52:f3:15:ec:1d:cd:4c:c3: 66:63:e8:07 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBlUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QUI5QTExMTAvBgNVBAUTKENFNUYyQjQzOUJBRDVCRUJFMjcyQTcyMUVBQUNDMzhG QUFERDQ5QjQwHhcNMjUwNjE0MTQzOTI1WhcNMjUwNjIxMTQzOTI1WjAYMRYwFAYD VQQDEw02ODRkODk5ZC0xYzVjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA2F6KaMQOcMIgqHA9wgq8AVIR19j4H+Ec1YljwR8k0m70Sbwfd9tmcFtd4N2f Q2YNLHA326BfO1Zxe4t/ucGW5UKfRdWtriX0BQxJxIkBYEXTS6TY58xW/4XSEuHm 9qMOZ7uGaF9bqUHKmou5XGQ7uPUEfwoAPjLeuSry/X64fn4RT1yRnnaObIG+KGmE /266SuUBTVJJl+2lh9CCW/aJBrJEr2E/zfP2jtHuva9p37XN0jDztrsp7EHVwCy9 S1uy/G+9UKpbixvQPI64I7g3V0qf1y2DwuK0cWj7EAVc5FlluYBYLI01O3gsSo+j cdCj5MNj3gL2qwPb2yHTn52JIwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFEjOy2cL yY7pjYXSD7bv/y/B+JlsMB8GA1UdIwQYMBaAFM5fK0ObrVvr4nKnIeqsw4+q3Um0 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBQjlBMS81NzMzN0FDQThE NzkxMUVCOEQ4QkQ2MEJDNEY5QUUwMi96bDhyUTV1dFctdmljcWNoNnF6RGo2cmRT YlEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3psOHJRNXV0Vy12aWNxY2g2cXpEajZyZFNiUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB QjlBMS81NzMzN0FDQThENzkxMUVCOEQ4QkQ2MEJDNEY5QUUwMi96bDhyUTV1dFct dmljcWNoNnF6RGo2cmRTYlEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB4C++j61cIQky7TnadUgrdKDT4+5D4wdg5VmlE1sLAFoDBrWOE0t8L 6XG4KTB44oQlp39ThAItH7tz+olxbBI/Sm9bonaUB+xboJXGbiAKe+B6d7wtoxjF 0GDR/uo3T5FPvejvOGylagRuWKJjmvrHdKk7aMc6S/YWsXi0rGVYuDatatNrgn75 vMDZe7pkogiYrcdvnxndZPYIwiElJqvSYk/Ic7MkfQFZKJaZAZoefwTQkRxqSctN 8G3Ciwa8xal0H2/PB0PHgxjf0nEQQqvNcurfNz3/rgxF251ZwD7K2m1A55wHGAM4 81TJ1mKvNEYJ1NxWUvMV7B3NTMNmY+gH -----END CERTIFICATE-----Generated at Sat Jun 14 19:26:26 2025 by rpki-client