$ rpki-client -vvf rpki.apnic.net/member_repository/A91E6D5D/9DCB68E01D8811E294B955E108B02CD2/ZKZlgWrv7XOzB1AH2lM3rH3sS4E.mft File: ZKZlgWrv7XOzB1AH2lM3rH3sS4E.mft (raw, json) Hash identifier: cbHJ6+pLbu9aZmlP9a7WbQ2e2zpwQPy4LHdO7m5D/u4= Subject key identifier: E5:C2:71:63:D0:AB:DC:FA:36:C6:42:B4:EE:41:5B:83:CC:5E:FA:F1 Authority key identifier: 64:A6:65:81:6A:EF:ED:73:B3:07:50:07:DA:53:37:AC:7D:EC:4B:81 Certificate issuer: /CN=A91E6D5D/serialNumber=64A665816AEFED73B3075007DA5337AC7DEC4B81 Certificate serial: 1ACF Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ZKZlgWrv7XOzB1AH2lM3rH3sS4E.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E6D5D/9DCB68E01D8811E294B955E108B02CD2/ZKZlgWrv7XOzB1AH2lM3rH3sS4E.mft Manifest number: 9EFB Signing time: Thu 24 Apr 2025 14:29:57 +0000 Manifest this update: Thu 24 Apr 2025 14:29:56 +0000 Manifest next update: Thu 01 May 2025 14:29:56 +0000 Files and hashes: 1: ZKZlgWrv7XOzB1AH2lM3rH3sS4E.crl (hash: i7CYoQxXLSgS18hertbKtzI0M+Jxwxv8QjLX/x3Nxi0=) 2: 9907DC46D4BC11EF9BDDAF2EC4F9AE02.roa (hash: RYynr8uizf4mxXQD/bYs58a0i9OmwI4vdpj7nHmjiJU=) 3: 959AC422557911EBBD21EB2FC4F9AE02.roa (hash: oMF/P2hGXRHcLkAXgbmeUw5lcthqUMWdcFQRgDGmw2Q=) 4: 20C6F2EC699D11EAA33EAE83C4F9AE02.roa (hash: 68iXhMXoCKzkvFm4ZJIC/ibhTxkbyNkKn12MmIsJUjc=) 5: 191363A69DD911EC99D91668C4F9AE02.roa (hash: oqniAucPfqcKV0mTFTmt9sxkwi/yyX2GOXb0nYNRsyI=) 6: ACC8833824DE11EDAEC0E529C4F9AE02.roa (hash: SpN5g9M2rsSW+Cra37fKcK/lk5XqYbPAMh8S4vUS9qk=) 7: 4FF339D8F01D11EB8C4B505BC4F9AE02.roa (hash: U9RF+JaWcsKZTr1DEGw1Y5hTdB+oWxy9sRXTz5ZgIuo=) 8: C89FD6DA557611EBA04C290BC4F9AE02.roa (hash: Y+JgutBZqKB0sr/67XUkEfaEMyqBwPZIYt+9Yv44r5c=) 9: FC6A19D892D511EC8FBFF32AC4F9AE02.roa (hash: kjWRly5sP345NgQNsNa2Y38tsuhMAJkUf7cDKkslnxQ=) 10: 1BF3A43C15BE11EF93ABFD7DC4F9AE02.roa (hash: Dnw6VZCydK3JoKDSOzotlEvfgmRpxLVN7ezEA2ZyyGo=) 11: 0B24875C7A4411EB804B7430C4F9AE02.roa (hash: Y+xehgtewaeOdOL6PowHHRPVgAd4mQJAADuq74in7FA=) 12: 3D68F8C29A4A11EA94706012C4F9AE02.roa (hash: +Q2D0d9yEIcvHWqL458RmFQjgHnoWa/Nyf3wOjdRqJY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E6D5D/9DCB68E01D8811E294B955E108B02CD2/ZKZlgWrv7XOzB1AH2lM3rH3sS4E.crl rsync://rpki.apnic.net/member_repository/A91E6D5D/9DCB68E01D8811E294B955E108B02CD2/ZKZlgWrv7XOzB1AH2lM3rH3sS4E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ZKZlgWrv7XOzB1AH2lM3rH3sS4E.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 01 May 2025 14:29:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6863 (0x1acf) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E6D5D, serialNumber=64A665816AEFED73B3075007DA5337AC7DEC4B81 Validity Not Before: Apr 24 14:29:56 2025 GMT Not After : May 1 14:29:56 2025 GMT Subject: CN=680a4ae4-14f2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:74:89:ef:b9:8f:d7:ab:9f:d7:0e:e7:3d:ae: a7:6a:11:81:f2:bd:55:70:02:58:05:34:c6:66:15: 5c:71:98:0e:6e:2d:04:07:c1:0a:50:e3:a2:cd:0b: b0:89:3a:30:17:0a:43:4b:3a:cc:f2:e3:01:ec:1d: 8b:9e:de:5e:9e:2d:10:b0:77:87:dd:02:89:f2:a6: 35:66:87:a6:63:17:47:ca:1e:f5:dc:79:09:c8:e5: 36:0b:76:0c:5e:22:f4:39:6d:ba:3c:40:7b:9f:2a: fc:8f:2e:39:97:ad:65:b6:84:38:c3:cc:4c:3d:53: bf:1f:bc:06:90:f2:e0:8d:1b:13:3b:71:cc:99:ea: 81:a8:e4:45:3d:4d:cb:4e:5e:73:85:ed:80:10:66: 60:97:42:af:86:16:86:1b:9e:46:24:12:31:a7:cc: f2:69:89:30:95:05:05:b5:43:91:35:9c:36:a3:87: e2:b4:21:40:b4:8e:c8:65:a5:33:aa:58:22:9a:df: f2:a5:a6:94:a3:52:53:bd:82:08:7f:e3:f1:f4:7e: 4c:de:bf:f2:9c:f0:53:97:13:7e:3e:3b:e6:ea:3b: 21:24:53:6d:59:c5:80:5c:23:81:b4:2e:1e:65:92: ed:9d:e9:4d:1a:7b:24:89:96:45:46:71:c6:56:6f: a4:b3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E5:C2:71:63:D0:AB:DC:FA:36:C6:42:B4:EE:41:5B:83:CC:5E:FA:F1 X509v3 Authority Key Identifier: keyid:64:A6:65:81:6A:EF:ED:73:B3:07:50:07:DA:53:37:AC:7D:EC:4B:81 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E6D5D/9DCB68E01D8811E294B955E108B02CD2/ZKZlgWrv7XOzB1AH2lM3rH3sS4E.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ZKZlgWrv7XOzB1AH2lM3rH3sS4E.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E6D5D/9DCB68E01D8811E294B955E108B02CD2/ZKZlgWrv7XOzB1AH2lM3rH3sS4E.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 7b:0e:23:2b:0b:cb:cc:69:ec:a2:d1:89:70:f0:7a:3f:c4:ff: 9d:ef:8c:9b:e9:d8:c2:47:9e:93:97:4a:06:85:4f:96:15:9c: 90:1a:7a:23:bd:cb:80:10:4d:a1:a3:53:8b:67:aa:24:6d:1a: 91:64:fa:3e:02:60:a2:9f:f4:0e:fe:a9:da:08:e7:55:ae:36: 90:63:3e:f7:5a:aa:b6:e8:68:cc:a0:4c:94:7c:5c:9d:4e:2d: c0:c3:1a:03:b4:5c:21:28:7d:e4:fb:ef:98:59:32:1f:e7:9e: ec:cb:cd:b0:c6:54:34:42:cb:2b:3e:3f:00:5d:7e:5b:dd:6c: cc:6b:d5:22:2e:04:36:20:96:ef:91:ec:51:73:14:f4:62:70: 01:ae:eb:8f:f3:1d:8f:10:68:e5:e4:0f:de:3b:89:34:b7:87: 6b:40:ad:49:8b:2e:9c:c2:44:a4:15:1c:2a:22:38:2a:5a:ae: cf:0a:06:1c:4a:d7:51:3d:b7:31:da:78:f2:cf:c2:87:72:01: 9c:81:7c:de:66:91:32:0f:ec:18:b1:65:45:a8:5d:30:1e:dc: 3e:96:cf:eb:ac:03:60:3c:ca:ce:83:17:8c:03:d5:c1:5e:f6: 9e:e8:db:7b:9d:a0:60:3b:27:4f:bf:a3:08:a7:85:08:be:2e: 76:9e:ef:ef -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICGs8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTZENUQxMTAvBgNVBAUTKDY0QTY2NTgxNkFFRkVENzNCMzA3NTAwN0RBNTMzN0FD N0RFQzRCODEwHhcNMjUwNDI0MTQyOTU2WhcNMjUwNTAxMTQyOTU2WjAYMRYwFAYD VQQDEw02ODBhNGFlNC0xNGYyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvnSJ77mP16uf1w7nPa6nahGB8r1VcAJYBTTGZhVccZgObi0EB8EKUOOizQuw iTowFwpDSzrM8uMB7B2Lnt5eni0QsHeH3QKJ8qY1ZoemYxdHyh713HkJyOU2C3YM XiL0OW26PEB7nyr8jy45l61ltoQ4w8xMPVO/H7wGkPLgjRsTO3HMmeqBqORFPU3L Tl5zhe2AEGZgl0KvhhaGG55GJBIxp8zyaYkwlQUFtUORNZw2o4fitCFAtI7IZaUz qlgimt/ypaaUo1JTvYIIf+Px9H5M3r/ynPBTlxN+Pjvm6jshJFNtWcWAXCOBtC4e ZZLtnelNGnskiZZFRnHGVm+kswIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFOXCcWPQ q9z6NsZCtO5BW4PMXvrxMB8GA1UdIwQYMBaAFGSmZYFq7+1zswdQB9pTN6x97EuB MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFNkQ1RC85RENCNjhFMDFE ODgxMUUyOTRCOTU1RTEwOEIwMkNEMi9aS1psZ1dydjdYT3pCMUFIMmxNM3JIM3NT NEUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1pLWmxnV3J2N1hPekIxQUgybE0zckgzc1M0RS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF NkQ1RC85RENCNjhFMDFEODgxMUUyOTRCOTU1RTEwOEIwMkNEMi9aS1psZ1dydjdY T3pCMUFIMmxNM3JIM3NTNEUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB7DiMrC8vMaeyi0Ylw8Ho/xP+d74yb6djCR56Tl0oGhU+WFZyQGnoj vcuAEE2ho1OLZ6okbRqRZPo+AmCin/QO/qnaCOdVrjaQYz73Wqq26GjMoEyUfFyd Ti3AwxoDtFwhKH3k+++YWTIf557sy82wxlQ0QssrPj8AXX5b3WzMa9UiLgQ2IJbv kexRcxT0YnABruuP8x2PEGjl5A/eO4k0t4drQK1Jiy6cwkSkFRwqIjgqWq7PCgYc StdRPbcx2njyz8KHcgGcgXzeZpEyD+wYsWVFqF0wHtw+ls/rrANgPMrOgxeMA9XB Xvae6Nt7naBgOydPv6MIp4UIvi52nu/v -----END CERTIFICATE-----Generated at Sat Apr 26 07:13:48 2025 by rpki-client