$ rpki-client -vvf rpki.apnic.net/member_repository/A91C66B2/C4F15472201611F0A8D74314C4F9AE02/PzH7XY70fa043ZLqGonoiHFAOjE.mft File: PzH7XY70fa043ZLqGonoiHFAOjE.mft (raw, json) Hash identifier: upbP7/VEGgg/mzDyu9CAhfBzbCTbwfNsH6vmq71ZTrM= Subject key identifier: 81:2D:43:D6:9D:66:DF:45:67:ED:24:8A:BC:98:D3:9D:3C:FA:BF:3A Authority key identifier: 3F:31:FB:5D:8E:F4:7D:AD:38:DD:92:EA:1A:89:E8:88:71:40:3A:31 Certificate issuer: /CN=A91C66B2/serialNumber=3F31FB5D8EF47DAD38DD92EA1A89E88871403A31 Certificate serial: 0B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PzH7XY70fa043ZLqGonoiHFAOjE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C66B2/C4F15472201611F0A8D74314C4F9AE02/PzH7XY70fa043ZLqGonoiHFAOjE.mft Manifest number: 0A Signing time: Fri 09 May 2025 07:08:44 +0000 Manifest this update: Fri 09 May 2025 07:08:43 +0000 Manifest next update: Fri 16 May 2025 07:08:43 +0000 Files and hashes: 1: PzH7XY70fa043ZLqGonoiHFAOjE.crl (hash: z3HJjpPiFSTrhVOoCT1v0RHn7fqR/cg1XANR2/Nk4uc=) 2: F8C50B08201711F0A5D51F16C4F9AE02.roa (hash: YsXcAlte05qmGIgWu2vJoEwWF+8nksJR/jWNa1FgQP4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C66B2/C4F15472201611F0A8D74314C4F9AE02/PzH7XY70fa043ZLqGonoiHFAOjE.crl rsync://rpki.apnic.net/member_repository/A91C66B2/C4F15472201611F0A8D74314C4F9AE02/PzH7XY70fa043ZLqGonoiHFAOjE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PzH7XY70fa043ZLqGonoiHFAOjE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 16 May 2025 07:08:43 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 11 (0xb) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C66B2, serialNumber=3F31FB5D8EF47DAD38DD92EA1A89E88871403A31 Validity Not Before: May 9 07:08:43 2025 GMT Not After : May 16 07:08:43 2025 GMT Subject: CN=681da9fb-e0bc Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f1:2e:e7:93:a3:55:76:9d:ef:c6:85:3c:2d:77: 70:32:11:00:a8:28:3a:e9:fe:c8:d3:fc:49:ce:9c: b4:e5:60:f4:32:e6:4f:8c:07:f5:2b:41:6a:8c:87: bd:41:6f:fb:67:39:a2:a7:7c:44:dd:03:9a:59:3d: 69:47:b5:a2:0c:b3:1c:fc:a5:d3:89:aa:82:14:95: 5e:35:64:47:31:c7:b8:0d:dd:c1:b9:68:cb:1f:07: f9:66:21:d8:c9:6e:e0:9b:56:97:e6:13:d9:27:a3: 55:f0:4b:f1:e5:54:86:62:f1:8e:84:bb:d0:3a:07: 57:82:07:e4:46:8a:a2:83:aa:6d:e1:7b:c9:c3:ce: 59:b5:8c:04:ce:ab:96:a0:f4:f5:ac:9d:6b:8b:3e: 7a:31:83:36:08:f1:39:34:1c:54:98:80:ac:8f:0e: 5a:fb:8b:47:0a:0e:0e:0b:56:a6:f4:97:77:41:20: 61:40:20:99:1c:38:cc:69:50:f1:bc:ab:5f:48:f8: dc:67:12:f8:b8:7b:48:00:10:16:42:6a:5d:fa:6f: 65:ed:13:f0:3c:01:98:4e:0e:cc:4f:08:ca:56:a4: 4c:8b:d3:34:47:1b:e8:1a:f3:74:e4:58:f1:ae:3d: 36:2a:16:6f:9f:ac:3d:ab:76:be:f6:40:c1:15:30: 86:f1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 81:2D:43:D6:9D:66:DF:45:67:ED:24:8A:BC:98:D3:9D:3C:FA:BF:3A X509v3 Authority Key Identifier: keyid:3F:31:FB:5D:8E:F4:7D:AD:38:DD:92:EA:1A:89:E8:88:71:40:3A:31 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C66B2/C4F15472201611F0A8D74314C4F9AE02/PzH7XY70fa043ZLqGonoiHFAOjE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PzH7XY70fa043ZLqGonoiHFAOjE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C66B2/C4F15472201611F0A8D74314C4F9AE02/PzH7XY70fa043ZLqGonoiHFAOjE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 1c:92:2d:56:11:19:26:33:1e:8c:f5:41:8a:a2:ba:00:25:b8: 54:31:50:79:21:80:7e:cf:7d:ee:c6:1d:7a:a4:b3:0b:2c:4a: d1:70:7e:77:f5:b8:c2:8d:b5:6b:d2:a6:8c:75:21:00:34:80: db:a0:c1:ba:48:44:8b:0f:ff:97:74:e6:60:b7:98:97:e4:f3: 7b:fd:e7:3b:a7:36:1d:c1:84:20:4c:9b:6b:91:c8:54:31:d0: ed:8d:61:c3:98:fb:61:41:cf:d4:a4:a7:d4:84:e6:33:7e:7b: af:9a:e8:8b:2c:04:61:34:6a:45:1e:e1:e9:0a:96:5d:1a:ab: 28:d6:b5:23:60:cd:bb:e9:a8:78:4b:59:3d:d5:33:b4:a1:cf: 6a:07:42:91:ae:cd:7c:26:d0:9c:ff:c4:ab:d7:02:b1:62:4f: 8f:78:b7:2f:71:c1:44:c0:b9:a2:f4:85:92:6f:0e:30:76:ec: dc:5a:9e:ca:b9:8c:de:46:b5:15:63:cf:17:0f:45:0c:ba:8c: e8:ba:46:55:71:9a:26:f1:b7:81:f1:43:59:d2:ba:9b:2e:dd: e0:f0:3e:92:c0:bc:6e:6a:3c:8c:b4:15:b5:eb:37:ee:79:50: 09:d8:12:55:e5:20:fe:42:28:57:24:13:f1:19:c0:72:8e:80: 44:62:65:bb -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBCzANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFD NjZCMjExMC8GA1UEBRMoM0YzMUZCNUQ4RUY0N0RBRDM4REQ5MkVBMUE4OUU4ODg3 MTQwM0EzMTAeFw0yNTA1MDkwNzA4NDNaFw0yNTA1MTYwNzA4NDNaMBgxFjAUBgNV BAMTDTY4MWRhOWZiLWUwYmMwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDxLueTo1V2ne/GhTwtd3AyEQCoKDrp/sjT/EnOnLTlYPQy5k+MB/UrQWqMh71B b/tnOaKnfETdA5pZPWlHtaIMsxz8pdOJqoIUlV41ZEcxx7gN3cG5aMsfB/lmIdjJ buCbVpfmE9kno1XwS/HlVIZi8Y6Eu9A6B1eCB+RGiqKDqm3he8nDzlm1jATOq5ag 9PWsnWuLPnoxgzYI8Tk0HFSYgKyPDlr7i0cKDg4LVqb0l3dBIGFAIJkcOMxpUPG8 q19I+NxnEvi4e0gAEBZCal36b2XtE/A8AZhODsxPCMpWpEyL0zRHG+ga83TkWPGu PTYqFm+frD2rdr72QMEVMIbxAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUgS1D1p1m 30Vn7SSKvJjTnTz6vzowHwYDVR0jBBgwFoAUPzH7XY70fa043ZLqGonoiHFAOjEw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUM2NkIyL0M0RjE1NDcyMjAx NjExRjBBOEQ3NDMxNEM0RjlBRTAyL1B6SDdYWTcwZmEwNDNaTHFHb25vaUhGQU9q RS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvUHpIN1hZNzBmYTA0M1pMcUdvbm9pSEZBT2pFLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUM2 NkIyL0M0RjE1NDcyMjAxNjExRjBBOEQ3NDMxNEM0RjlBRTAyL1B6SDdYWTcwZmEw NDNaTHFHb25vaUhGQU9qRS5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBABySLVYRGSYzHoz1QYqiugAluFQxUHkhgH7Pfe7GHXqkswssStFwfnf1 uMKNtWvSpox1IQA0gNugwbpIRIsP/5d05mC3mJfk83v95zunNh3BhCBMm2uRyFQx 0O2NYcOY+2FBz9Skp9SE5jN+e6+a6IssBGE0akUe4ekKll0aqyjWtSNgzbvpqHhL WT3VM7Shz2oHQpGuzXwm0Jz/xKvXArFiT494ty9xwUTAuaL0hZJvDjB27Nxansq5 jN5GtRVjzxcPRQy6jOi6RlVxmibxt4HxQ1nSupsu3eDwPpLAvG5qPIy0FbXrN+55 UAnYElXlIP5CKFckE/EZwHKOgERiZbs= -----END CERTIFICATE-----Generated at Sat May 10 20:08:36 2025 by rpki-client