$ rpki-client -vvf rpki.apnic.net/member_repository/A91971CB/010EB288808911EB8B505F20C4F9AE02/MZsxRPBqjysw1BIHH-EhB3T-huc.mft File: MZsxRPBqjysw1BIHH-EhB3T-huc.mft (raw, json) Hash identifier: +yW7x5s61P6sHaSe2KVs9d2nZquPQ5i90HqUn/+YNSs= Subject key identifier: FC:83:6C:4E:0F:4C:A6:6E:AE:48:5F:46:DD:DC:DD:97:3B:7D:E1:5A Authority key identifier: 31:9B:31:44:F0:6A:8F:2B:30:D4:12:07:1F:E1:21:07:74:FE:86:E7 Certificate issuer: /CN=A91971CB/serialNumber=319B3144F06A8F2B30D412071FE1210774FE86E7 Certificate serial: 0676 Authority info access: rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/MZsxRPBqjysw1BIHH-EhB3T-huc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91971CB/010EB288808911EB8B505F20C4F9AE02/MZsxRPBqjysw1BIHH-EhB3T-huc.mft Manifest number: 066F Signing time: Fri 16 May 2025 15:20:38 +0000 Manifest this update: Fri 16 May 2025 15:20:37 +0000 Manifest next update: Fri 23 May 2025 15:20:37 +0000 Files and hashes: 1: MZsxRPBqjysw1BIHH-EhB3T-huc.crl (hash: rH19QJo9oEPGZb5RPw2ZCVTrZxPLbJNkci0mzm9pGLA=) 2: 27C29E5EF94411EDB4C6E91CC4F9AE02.roa (hash: PGlTDpEV17D+1hrLu4fdfibpz1YbRKMAlzpsoNFgyb4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91971CB/010EB288808911EB8B505F20C4F9AE02/MZsxRPBqjysw1BIHH-EhB3T-huc.crl rsync://rpki.apnic.net/member_repository/A91971CB/010EB288808911EB8B505F20C4F9AE02/MZsxRPBqjysw1BIHH-EhB3T-huc.mft rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/MZsxRPBqjysw1BIHH-EhB3T-huc.cer rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.crl rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DPzneFf88B852ZpitKpi5hWedvg.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 23 May 2025 15:20:36 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1654 (0x676) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91971CB, serialNumber=319B3144F06A8F2B30D412071FE1210774FE86E7 Validity Not Before: May 16 15:20:37 2025 GMT Not After : May 23 15:20:37 2025 GMT Subject: CN=682757c5-a75b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:f8:e3:32:86:70:3f:a8:6e:d0:03:99:4c:19: 20:d8:3f:a8:87:90:d3:20:cb:50:51:db:a7:8a:bc: 59:2d:79:02:e4:b2:6e:35:c4:3a:52:25:e4:e2:37: 4b:70:1a:73:4e:55:de:e1:04:48:da:ce:8d:82:da: 16:8e:e0:9d:77:59:8f:df:45:42:0d:7a:40:08:a6: 74:4a:07:f2:7b:02:e8:22:59:e5:1a:9e:f3:d5:47: 25:b9:6a:ce:42:8f:84:44:5d:58:73:4b:c9:98:76: 56:35:95:57:46:92:20:db:99:9d:ee:38:4d:3c:e1: fe:55:d8:d8:8c:ee:a1:02:b8:25:df:63:d3:7d:d5: d5:b9:f8:4f:47:51:bc:9e:bc:17:35:d6:4c:50:47: ce:2e:d2:68:3b:25:61:7d:b0:05:3d:c5:ce:98:45: 05:9d:11:d4:ce:04:47:e3:b1:54:9f:30:a3:f4:1d: e6:2f:17:f5:f4:74:e6:23:0f:6a:2c:7d:2b:57:51: 9e:06:08:fb:79:b6:8a:9f:2f:ea:27:ce:fa:d3:e3: 98:d5:05:5c:67:c7:47:86:3f:ce:8f:68:a6:3c:c2: ef:ac:32:31:ae:bb:89:aa:e5:fe:25:72:c2:7c:43: 29:4c:4b:62:39:8f:be:6c:20:d3:ea:69:5f:9b:a8: b2:b5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FC:83:6C:4E:0F:4C:A6:6E:AE:48:5F:46:DD:DC:DD:97:3B:7D:E1:5A X509v3 Authority Key Identifier: keyid:31:9B:31:44:F0:6A:8F:2B:30:D4:12:07:1F:E1:21:07:74:FE:86:E7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91971CB/010EB288808911EB8B505F20C4F9AE02/MZsxRPBqjysw1BIHH-EhB3T-huc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/MZsxRPBqjysw1BIHH-EhB3T-huc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91971CB/010EB288808911EB8B505F20C4F9AE02/MZsxRPBqjysw1BIHH-EhB3T-huc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a3:25:36:56:5b:c1:f8:08:9b:f5:07:fd:5d:74:7a:98:f9:03: f2:e8:0a:96:20:15:34:4c:c9:bb:75:cf:f1:2c:42:60:72:29: 45:99:1d:da:b0:c7:ec:61:57:4b:90:d0:81:8d:df:5a:db:ed: af:08:70:ee:5b:eb:da:27:6b:14:e2:93:fd:17:dd:64:50:aa: 12:a2:f7:f6:67:c4:7f:07:9b:80:af:8c:c1:8e:da:93:68:0f: 8a:58:1c:fd:47:58:2b:b3:1b:fd:91:89:07:b0:26:23:2f:f2: 4d:1f:bb:a4:d1:0b:e4:81:ab:1b:e5:4e:80:63:85:d0:d1:41: 7b:03:9a:3f:68:d8:c5:83:9f:d9:60:2a:74:04:e4:35:1c:09: bc:5e:4c:03:b3:a9:3c:84:66:4a:ae:26:c5:2b:78:c1:5b:51: e7:b9:46:8a:19:4b:23:19:6b:d1:93:e8:9a:b0:fb:84:0e:d5: d2:66:20:a7:ea:df:1f:1b:08:75:73:d2:c4:54:f2:a7:6c:d0: f2:cc:42:cc:09:1e:6d:0b:4f:5c:55:48:83:a9:53:6c:c7:81: d3:92:9b:04:d6:fa:ec:9c:95:d8:29:52:2c:f7:a8:1a:d1:2f: ea:7c:e1:49:ae:95:e7:e0:be:b1:52:e5:d2:79:6f:58:7d:92: d1:bd:e3:95 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBnYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTcxQ0IxMTAvBgNVBAUTKDMxOUIzMTQ0RjA2QThGMkIzMEQ0MTIwNzFGRTEyMTA3 NzRGRTg2RTcwHhcNMjUwNTE2MTUyMDM3WhcNMjUwNTIzMTUyMDM3WjAYMRYwFAYD VQQDEw02ODI3NTdjNS1hNzViMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvfjjMoZwP6hu0AOZTBkg2D+oh5DTIMtQUdunirxZLXkC5LJuNcQ6UiXk4jdL cBpzTlXe4QRI2s6NgtoWjuCdd1mP30VCDXpACKZ0SgfyewLoIlnlGp7z1UcluWrO Qo+ERF1Yc0vJmHZWNZVXRpIg25md7jhNPOH+VdjYjO6hArgl32PTfdXVufhPR1G8 nrwXNdZMUEfOLtJoOyVhfbAFPcXOmEUFnRHUzgRH47FUnzCj9B3mLxf19HTmIw9q LH0rV1GeBgj7ebaKny/qJ8760+OY1QVcZ8dHhj/Oj2imPMLvrDIxrruJquX+JXLC fEMpTEtiOY++bCDT6mlfm6iytQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFPyDbE4P TKZurkhfRt3c3Zc7feFaMB8GA1UdIwQYMBaAFDGbMUTwao8rMNQSBx/hIQd0/obn MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5NzFDQi8wMTBFQjI4ODgw ODkxMUVCOEI1MDVGMjBDNEY5QUUwMi9NWnN4UlBCcWp5c3cxQklISC1FaEIzVC1o dWMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzMjJBNUY0MUQ2NjExRTJBM0YyN0Y3Qzcy RkQxRkYyL01ac3hSUEJxanlzdzFCSUhILUVoQjNULWh1Yy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 NzFDQi8wMTBFQjI4ODgwODkxMUVCOEI1MDVGMjBDNEY5QUUwMi9NWnN4UlBCcWp5 c3cxQklISC1FaEIzVC1odWMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCjJTZWW8H4CJv1B/1ddHqY+QPy6AqWIBU0TMm7dc/xLEJgcilFmR3a sMfsYVdLkNCBjd9a2+2vCHDuW+vaJ2sU4pP9F91kUKoSovf2Z8R/B5uAr4zBjtqT aA+KWBz9R1grsxv9kYkHsCYjL/JNH7uk0Qvkgasb5U6AY4XQ0UF7A5o/aNjFg5/Z YCp0BOQ1HAm8XkwDs6k8hGZKribFK3jBW1HnuUaKGUsjGWvRk+iasPuEDtXSZiCn 6t8fGwh1c9LEVPKnbNDyzELMCR5tC09cVUiDqVNsx4HTkpsE1vrsnJXYKVIs96ga 0S/qfOFJrpXn4L6xUuXSeW9YfZLRveOV -----END CERTIFICATE-----Generated at Sat May 17 15:34:32 2025 by rpki-client