$ rpki-client -vvf rpki.apnic.net/member_repository/A91AB9A1/57337ACA8D7911EB8D8BD60BC4F9AE02/zl8rQ5utW-vicqch6qzDj6rdSbQ.mft File: zl8rQ5utW-vicqch6qzDj6rdSbQ.mft (raw, json) Hash identifier: uHXJYfdljgfj1XnLQcTTV8/jvZaifZX/mmRI8vin4og= Subject key identifier: 1D:25:7A:C4:96:5E:06:DE:50:67:D2:AE:8C:47:9A:BF:FE:2A:42:16 Authority key identifier: CE:5F:2B:43:9B:AD:5B:EB:E2:72:A7:21:EA:AC:C3:8F:AA:DD:49:B4 Certificate issuer: /CN=A91AB9A1/serialNumber=CE5F2B439BAD5BEBE272A721EAACC38FAADD49B4 Certificate serial: 063C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/zl8rQ5utW-vicqch6qzDj6rdSbQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91AB9A1/57337ACA8D7911EB8D8BD60BC4F9AE02/zl8rQ5utW-vicqch6qzDj6rdSbQ.mft Manifest number: 063C Signing time: Sat 26 Apr 2025 14:40:14 +0000 Manifest this update: Sat 26 Apr 2025 14:40:14 +0000 Manifest next update: Sat 03 May 2025 14:40:14 +0000 Files and hashes: 1: zl8rQ5utW-vicqch6qzDj6rdSbQ.crl (hash: bCxnncEOHM7fgzQ95bMr3ZuXIbYF2D7EzVIlBC1P55k=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91AB9A1/57337ACA8D7911EB8D8BD60BC4F9AE02/zl8rQ5utW-vicqch6qzDj6rdSbQ.crl rsync://rpki.apnic.net/member_repository/A91AB9A1/57337ACA8D7911EB8D8BD60BC4F9AE02/zl8rQ5utW-vicqch6qzDj6rdSbQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/zl8rQ5utW-vicqch6qzDj6rdSbQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 03 May 2025 14:40:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1596 (0x63c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91AB9A1, serialNumber=CE5F2B439BAD5BEBE272A721EAACC38FAADD49B4 Validity Not Before: Apr 26 14:40:14 2025 GMT Not After : May 3 14:40:14 2025 GMT Subject: CN=680cf04e-0fff Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d3:5d:8f:21:5d:8d:ab:ef:0a:08:93:bf:90:d9: f6:0b:af:f7:82:39:e8:d9:ae:f5:6a:82:49:17:ca: 9c:83:51:08:c1:4d:a8:58:98:57:26:4e:8b:71:a4: 2a:3e:0f:eb:7e:89:6c:e1:94:8f:ca:cf:8f:4a:0e: 5c:d9:e7:b4:d4:df:8a:46:c1:b0:8d:14:f9:d5:54: 19:f2:b8:5f:43:dc:f8:c6:99:a1:ef:3f:e1:8a:00: 54:1a:28:5c:3a:f7:a9:31:17:bf:dd:be:56:16:74: 5e:f6:21:34:2b:4b:a4:13:1f:3a:aa:96:b8:f4:77: 12:91:e8:9a:8f:dd:c2:9d:0c:c0:6c:b1:2f:dc:60: 23:d1:1e:b4:38:2b:d2:2c:8a:00:fc:0f:fd:b8:12: 45:4b:ac:4e:48:2a:65:8e:26:4a:40:a1:06:59:dc: b1:b7:08:d3:a4:15:96:39:a1:b0:0d:16:fd:be:26: 58:4b:18:6d:4d:82:1d:d6:1c:42:2d:13:6f:7c:56: 55:fe:a9:ac:ee:18:d8:97:9b:59:8e:81:22:2a:03: 91:48:5a:ff:b7:90:10:6b:da:e8:ae:9e:89:df:4e: be:56:52:42:07:de:a3:17:b0:76:4d:d3:18:f0:74: 5c:ae:0f:53:88:55:27:0c:f6:f5:43:70:e3:68:aa: 2b:6d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1D:25:7A:C4:96:5E:06:DE:50:67:D2:AE:8C:47:9A:BF:FE:2A:42:16 X509v3 Authority Key Identifier: keyid:CE:5F:2B:43:9B:AD:5B:EB:E2:72:A7:21:EA:AC:C3:8F:AA:DD:49:B4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91AB9A1/57337ACA8D7911EB8D8BD60BC4F9AE02/zl8rQ5utW-vicqch6qzDj6rdSbQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/zl8rQ5utW-vicqch6qzDj6rdSbQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91AB9A1/57337ACA8D7911EB8D8BD60BC4F9AE02/zl8rQ5utW-vicqch6qzDj6rdSbQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 25:b9:c6:38:5f:73:ee:f7:cc:d5:4a:28:8e:a5:06:97:f2:bf: ff:93:89:7d:da:4b:4c:e4:a0:7e:f3:00:8a:f9:bd:c6:e3:48: 75:ec:75:50:75:b9:a4:f5:f0:4f:84:7b:34:94:1e:39:84:53: 0b:63:d8:cf:bf:09:42:2f:74:78:67:39:df:2d:a7:cb:3d:b1: 8a:f3:b1:90:a1:60:15:96:19:af:e5:f8:d7:81:c7:25:25:09: b7:5b:91:86:2e:67:80:8d:98:25:0b:3f:ff:59:fd:db:33:12: 55:ea:2a:ea:99:df:31:45:e1:54:96:81:e5:86:f6:75:f9:a3: b4:a8:60:cf:46:73:d3:1a:0a:73:db:ec:f0:ed:94:b7:aa:5d: 74:d1:91:4b:93:2c:4a:05:14:f5:93:4b:15:c1:24:8b:95:9e: c3:d9:e2:b0:de:ef:e3:2f:bf:42:70:42:83:1d:a9:4e:8e:1d: 46:16:6b:b9:ef:b7:87:03:9b:52:02:28:66:67:ac:48:55:db: 05:22:eb:51:52:cc:ac:21:de:10:ec:4e:33:1b:f6:38:7d:d0: e6:27:5f:5f:42:88:22:1a:a0:3d:6b:09:9d:07:7c:92:98:e7: 0a:3c:94:5a:16:15:14:0c:9a:d1:07:06:53:7e:78:7e:36:26: ce:9e:8e:36 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBjwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QUI5QTExMTAvBgNVBAUTKENFNUYyQjQzOUJBRDVCRUJFMjcyQTcyMUVBQUNDMzhG QUFERDQ5QjQwHhcNMjUwNDI2MTQ0MDE0WhcNMjUwNTAzMTQ0MDE0WjAYMRYwFAYD VQQDEw02ODBjZjA0ZS0wZmZmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA012PIV2Nq+8KCJO/kNn2C6/3gjno2a71aoJJF8qcg1EIwU2oWJhXJk6LcaQq Pg/rfols4ZSPys+PSg5c2ee01N+KRsGwjRT51VQZ8rhfQ9z4xpmh7z/higBUGihc OvepMRe/3b5WFnRe9iE0K0ukEx86qpa49HcSkeiaj93CnQzAbLEv3GAj0R60OCvS LIoA/A/9uBJFS6xOSCpljiZKQKEGWdyxtwjTpBWWOaGwDRb9viZYSxhtTYId1hxC LRNvfFZV/qms7hjYl5tZjoEiKgORSFr/t5AQa9rorp6J306+VlJCB96jF7B2TdMY 8HRcrg9TiFUnDPb1Q3DjaKorbQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFB0lesSW XgbeUGfSroxHmr/+KkIWMB8GA1UdIwQYMBaAFM5fK0ObrVvr4nKnIeqsw4+q3Um0 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBQjlBMS81NzMzN0FDQThE NzkxMUVCOEQ4QkQ2MEJDNEY5QUUwMi96bDhyUTV1dFctdmljcWNoNnF6RGo2cmRT YlEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3psOHJRNXV0Vy12aWNxY2g2cXpEajZyZFNiUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB QjlBMS81NzMzN0FDQThENzkxMUVCOEQ4QkQ2MEJDNEY5QUUwMi96bDhyUTV1dFct dmljcWNoNnF6RGo2cmRTYlEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAlucY4X3Pu98zVSiiOpQaX8r//k4l92ktM5KB+8wCK+b3G40h17HVQ dbmk9fBPhHs0lB45hFMLY9jPvwlCL3R4ZznfLafLPbGK87GQoWAVlhmv5fjXgccl JQm3W5GGLmeAjZglCz//Wf3bMxJV6irqmd8xReFUloHlhvZ1+aO0qGDPRnPTGgpz 2+zw7ZS3ql100ZFLkyxKBRT1k0sVwSSLlZ7D2eKw3u/jL79CcEKDHalOjh1GFmu5 77eHA5tSAihmZ6xIVdsFIutRUsysId4Q7E4zG/Y4fdDmJ19fQogiGqA9awmdB3yS mOcKPJRaFhUUDJrRBwZTfnh+NibOno42 -----END CERTIFICATE-----Generated at Sat Apr 26 17:04:34 2025 by rpki-client