$ rpki-client -vvf rpki.apnic.net/member_repository/A91CAA4E/55E9795AA94F11E8AA0C900EC4F9AE02/ZyEk9jPIkZyl12bYnpzP8LIfDI0.mft File: ZyEk9jPIkZyl12bYnpzP8LIfDI0.mft (raw, json) Hash identifier: 0Ng7hh9cWiklxvtL0HHg2AZ/RQOAbpiA7TUhD16mQ4I= Subject key identifier: 39:4C:9C:C2:CA:F6:02:73:8A:FA:F3:41:ED:BD:04:03:BC:39:A3:F0 Authority key identifier: 67:21:24:F6:33:C8:91:9C:A5:D7:66:D8:9E:9C:CF:F0:B2:1F:0C:8D Certificate issuer: /CN=A91CAA4E/serialNumber=672124F633C8919CA5D766D89E9CCFF0B21F0C8D Certificate serial: 133B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ZyEk9jPIkZyl12bYnpzP8LIfDI0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CAA4E/55E9795AA94F11E8AA0C900EC4F9AE02/ZyEk9jPIkZyl12bYnpzP8LIfDI0.mft Manifest number: 1A57 Signing time: Mon 16 Jun 2025 17:03:23 +0000 Manifest this update: Mon 16 Jun 2025 17:03:22 +0000 Manifest next update: Mon 23 Jun 2025 17:03:22 +0000 Files and hashes: 1: ZyEk9jPIkZyl12bYnpzP8LIfDI0.crl (hash: XSDY+T90wy10EwcDaRviP4xS1Hx5VyOmCGjmW7tMDno=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CAA4E/55E9795AA94F11E8AA0C900EC4F9AE02/ZyEk9jPIkZyl12bYnpzP8LIfDI0.crl rsync://rpki.apnic.net/member_repository/A91CAA4E/55E9795AA94F11E8AA0C900EC4F9AE02/ZyEk9jPIkZyl12bYnpzP8LIfDI0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ZyEk9jPIkZyl12bYnpzP8LIfDI0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 23 Jun 2025 17:03:22 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4923 (0x133b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CAA4E, serialNumber=672124F633C8919CA5D766D89E9CCFF0B21F0C8D Validity Not Before: Jun 16 17:03:22 2025 GMT Not After : Jun 23 17:03:22 2025 GMT Subject: CN=68504e5a-256d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:e9:7b:c7:c1:05:b1:9e:d0:c1:82:7c:f9:26: 90:8f:ae:cb:a4:e0:4a:f8:26:f8:1c:91:84:6f:51: 06:5c:e8:27:51:a9:bb:7f:bd:51:b2:41:57:4f:31: aa:18:42:a8:87:71:82:13:10:e4:2d:56:d4:32:5f: 28:2d:f9:27:cd:04:02:e0:ed:ef:39:ce:a8:09:2d: 8f:5b:ac:a2:53:b8:74:de:c0:d4:f1:6b:0e:fe:d4: b4:de:d0:29:61:d7:80:3d:50:36:6a:5f:7d:0d:0d: e5:90:d1:0f:a5:67:1d:f1:09:1d:f6:d4:94:b2:1e: 91:d6:cf:52:f3:0c:2d:69:01:b3:c7:cb:74:ae:19: ea:fe:de:53:ad:d3:0c:8f:1a:68:09:71:19:72:d3: 6d:93:69:88:1a:2d:9f:63:99:59:04:f0:a4:83:e0: a0:b2:35:60:fb:bc:06:91:f0:4d:6f:3f:d1:d8:04: 68:d7:7f:75:cb:a4:68:ee:37:20:52:66:51:52:fa: 34:c5:ed:ad:7d:47:02:f1:84:84:0c:d1:8b:0d:f5: 34:c0:26:d1:15:88:80:20:ed:ce:9d:f2:df:f4:48: eb:2d:d5:f5:9b:8c:f1:cf:b2:6b:63:8f:0b:f7:89: 24:29:b1:f0:d9:20:09:2f:56:72:db:6d:ae:8a:b8: 69:73 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 39:4C:9C:C2:CA:F6:02:73:8A:FA:F3:41:ED:BD:04:03:BC:39:A3:F0 X509v3 Authority Key Identifier: keyid:67:21:24:F6:33:C8:91:9C:A5:D7:66:D8:9E:9C:CF:F0:B2:1F:0C:8D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CAA4E/55E9795AA94F11E8AA0C900EC4F9AE02/ZyEk9jPIkZyl12bYnpzP8LIfDI0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ZyEk9jPIkZyl12bYnpzP8LIfDI0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CAA4E/55E9795AA94F11E8AA0C900EC4F9AE02/ZyEk9jPIkZyl12bYnpzP8LIfDI0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 8e:47:f6:fe:ed:d1:53:86:13:a8:c5:d7:83:bd:15:b0:26:83: d4:cf:25:26:35:58:cf:f0:43:c6:37:d7:aa:e2:9e:3c:d1:8f: 4d:2c:80:bb:e8:5c:2f:a1:f0:c5:62:30:a3:df:7c:fd:b6:53: 82:bd:41:ab:d1:56:70:ff:9a:30:ce:e4:ef:f0:b9:b4:24:46: 13:99:3b:ae:2b:61:03:62:ef:ce:dc:a8:1b:38:4d:4c:e5:2f: c6:02:e2:22:5c:3f:6e:ec:e5:3c:95:9f:54:d4:ca:1e:51:8c: e7:14:f3:53:1c:af:c3:67:43:04:38:02:a3:8b:f9:03:38:a6: ed:c3:5e:f4:d4:6d:ff:19:08:c1:8c:98:4b:1e:3d:18:4b:c1: d9:5c:12:80:6c:55:01:9c:22:00:2d:11:9c:b8:a4:bb:61:82: ab:66:f7:db:65:83:c6:c8:16:8d:f4:ce:cc:5a:8c:b5:a0:43: c5:97:29:70:a7:89:bb:90:a7:5c:2a:47:e4:2e:92:3e:1d:81: fb:c5:a0:2f:58:4c:41:30:fc:4b:d7:f7:62:e0:a5:9a:fb:03: 40:fc:bf:21:84:52:bf:12:dd:7d:1a:4e:74:bf:34:c3:ff:50: 96:be:d5:5e:d3:2f:32:f3:ad:70:0f:06:16:2e:16:c0:b7:0e: 2d:37:ac:a3 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICEzswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Q0FBNEUxMTAvBgNVBAUTKDY3MjEyNEY2MzNDODkxOUNBNUQ3NjZEODlFOUNDRkYw QjIxRjBDOEQwHhcNMjUwNjE2MTcwMzIyWhcNMjUwNjIzMTcwMzIyWjAYMRYwFAYD VQQDEw02ODUwNGU1YS0yNTZkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwOl7x8EFsZ7QwYJ8+SaQj67LpOBK+Cb4HJGEb1EGXOgnUam7f71RskFXTzGq GEKoh3GCExDkLVbUMl8oLfknzQQC4O3vOc6oCS2PW6yiU7h03sDU8WsO/tS03tAp YdeAPVA2al99DQ3lkNEPpWcd8Qkd9tSUsh6R1s9S8wwtaQGzx8t0rhnq/t5TrdMM jxpoCXEZctNtk2mIGi2fY5lZBPCkg+CgsjVg+7wGkfBNbz/R2ARo1391y6Ro7jcg UmZRUvo0xe2tfUcC8YSEDNGLDfU0wCbRFYiAIO3OnfLf9EjrLdX1m4zxz7JrY48L 94kkKbHw2SAJL1Zy222uirhpcwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFDlMnMLK 9gJzivrzQe29BAO8OaPwMB8GA1UdIwQYMBaAFGchJPYzyJGcpddm2J6cz/CyHwyN MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDQUE0RS81NUU5Nzk1QUE5 NEYxMUU4QUEwQzkwMEVDNEY5QUUwMi9aeUVrOWpQSWtaeWwxMmJZbnB6UDhMSWZE STAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1p5RWs5alBJa1p5bDEyYllucHpQOExJZkRJMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD QUE0RS81NUU5Nzk1QUE5NEYxMUU4QUEwQzkwMEVDNEY5QUUwMi9aeUVrOWpQSWta eWwxMmJZbnB6UDhMSWZESTAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCOR/b+7dFThhOoxdeDvRWwJoPUzyUmNVjP8EPGN9eq4p480Y9NLIC7 6FwvofDFYjCj33z9tlOCvUGr0VZw/5owzuTv8Lm0JEYTmTuuK2EDYu/O3KgbOE1M 5S/GAuIiXD9u7OU8lZ9U1MoeUYznFPNTHK/DZ0MEOAKji/kDOKbtw1701G3/GQjB jJhLHj0YS8HZXBKAbFUBnCIALRGcuKS7YYKrZvfbZYPGyBaN9M7MWoy1oEPFlylw p4m7kKdcKkfkLpI+HYH7xaAvWExBMPxL1/di4KWa+wNA/L8hhFK/Et19Gk50vzTD /1CWvtVe0y8y861wDwYWLhbAtw4tN6yj -----END CERTIFICATE-----Generated at Wed Jun 18 08:21:40 2025 by rpki-client