$ rpki-client -vvf rpki.apnic.net/member_repository/A91CDBF5/5E9C4BB0CB5111EF90400D17C4F9AE02/mAzlu_LPNdYK47ByGKtcqRAULJA.mft File: mAzlu_LPNdYK47ByGKtcqRAULJA.mft (raw, json) Hash identifier: X3gq8fnyenFv8KFv/Ktomuzritlb3/A638xIbSjifWM= Subject key identifier: 07:E2:98:4E:CB:8C:76:98:48:EB:C0:7F:0B:A4:3F:F6:B5:F1:B3:93 Authority key identifier: 98:0C:E5:BB:F2:CF:35:D6:0A:E3:B0:72:18:AB:5C:A9:10:14:2C:90 Certificate issuer: /CN=A91CDBF5/serialNumber=980CE5BBF2CF35D60AE3B07218AB5CA910142C90 Certificate serial: 5D Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/mAzlu_LPNdYK47ByGKtcqRAULJA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CDBF5/5E9C4BB0CB5111EF90400D17C4F9AE02/mAzlu_LPNdYK47ByGKtcqRAULJA.mft Manifest number: 5C Signing time: Thu 03 Jul 2025 07:19:34 +0000 Manifest this update: Thu 03 Jul 2025 07:19:34 +0000 Manifest next update: Thu 10 Jul 2025 07:19:33 +0000 Files and hashes: 1: mAzlu_LPNdYK47ByGKtcqRAULJA.crl (hash: 1fHT+3gKrzVENt6Q8uyPxNfl5N+u6PUAt5Fm8qO5XQY=) 2: EA8CF7A8CB5311EF91F1081BC4F9AE02.roa (hash: GSX0pyaiwOS5Abzctg8JuUZl0TI6LV3O2e6/wEsG5kM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CDBF5/5E9C4BB0CB5111EF90400D17C4F9AE02/mAzlu_LPNdYK47ByGKtcqRAULJA.crl rsync://rpki.apnic.net/member_repository/A91CDBF5/5E9C4BB0CB5111EF90400D17C4F9AE02/mAzlu_LPNdYK47ByGKtcqRAULJA.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/mAzlu_LPNdYK47ByGKtcqRAULJA.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 10 Jul 2025 03:15:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 93 (0x5d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CDBF5, serialNumber=980CE5BBF2CF35D60AE3B07218AB5CA910142C90 Validity Not Before: Jul 3 07:19:34 2025 GMT Not After : Jul 10 07:19:33 2025 GMT Subject: CN=68662f06-5256 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d2:0a:15:d9:4c:b0:fe:db:cb:25:ba:6f:0d:b7: 67:e7:8b:78:8e:8f:cc:8f:0b:11:20:cd:03:0d:b2: 65:88:89:e0:a5:3b:45:3e:08:41:a1:3a:4b:6b:0b: 5a:0c:1a:1f:34:c8:de:05:0c:c5:3f:73:e4:b9:12: 2a:c8:71:a0:e4:6c:f1:7d:52:53:3a:e9:7e:cb:92: 33:15:16:ca:db:8a:94:01:44:21:1b:cc:b0:14:7a: 2b:24:74:67:86:18:fc:b1:6f:b6:58:9d:de:53:70: 5c:39:cb:7e:54:46:14:c7:cb:21:09:dd:43:55:c5: 56:13:82:c9:29:4a:f8:0f:18:f9:92:c7:85:f2:f5: b6:1a:44:dc:05:ff:ca:b1:3e:be:06:40:27:76:ee: 74:8d:ca:7f:08:6f:e0:80:47:c9:9e:3f:de:32:d2: 03:83:89:fc:4c:aa:0b:a7:54:b3:4d:9a:b4:fd:34: 1b:14:69:dc:39:87:15:c2:50:3a:bc:68:37:11:df: 74:b5:3c:a2:17:14:0a:06:c9:82:6c:18:fe:2a:c7: 89:99:89:a5:fb:0f:a6:c1:94:8d:f3:3a:f3:74:17: 1b:53:81:06:0a:b4:6e:99:e3:c0:ce:af:82:74:10: 95:45:1c:ad:c5:e6:a8:7a:08:3e:d1:77:4b:b6:b3: f1:1d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 07:E2:98:4E:CB:8C:76:98:48:EB:C0:7F:0B:A4:3F:F6:B5:F1:B3:93 X509v3 Authority Key Identifier: keyid:98:0C:E5:BB:F2:CF:35:D6:0A:E3:B0:72:18:AB:5C:A9:10:14:2C:90 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CDBF5/5E9C4BB0CB5111EF90400D17C4F9AE02/mAzlu_LPNdYK47ByGKtcqRAULJA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/mAzlu_LPNdYK47ByGKtcqRAULJA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CDBF5/5E9C4BB0CB5111EF90400D17C4F9AE02/mAzlu_LPNdYK47ByGKtcqRAULJA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption ab:72:cd:d5:24:28:38:4c:61:c5:88:c0:58:5d:ac:8b:7e:7d: 5b:0f:b4:25:7b:69:70:84:a4:6e:aa:ed:32:03:a6:42:fc:d8: 8b:9d:0f:58:ce:75:eb:20:43:10:1b:5d:3f:df:47:8e:b7:04: e9:73:34:e5:c3:99:7a:ae:3b:69:e2:fd:4a:be:ec:6f:74:89: d1:01:37:29:29:f8:3e:da:9d:80:06:d6:4b:a6:6e:9d:f5:31: 83:ca:75:55:a2:da:65:c4:87:e4:e5:62:b4:c3:00:e9:b7:bd: 48:3c:78:d2:36:5a:9b:4f:b3:fd:e4:38:4e:58:33:83:b9:32: 59:c0:08:aa:ca:65:71:70:a1:13:df:b5:f3:47:d3:7a:b5:44: ca:b7:44:3e:4b:e3:50:5e:4a:7c:f6:03:a8:f4:b4:21:53:1e: 20:38:d5:55:74:b9:b0:f8:01:b9:2d:58:ac:c3:91:ff:83:47: ca:cb:a4:04:2c:40:21:ef:2e:85:ac:f6:db:3d:28:0d:a0:0c: e3:6b:82:e5:4e:c6:1e:23:50:d3:5b:b4:61:55:8a:52:ab:b6: 7c:20:e4:68:55:76:2a:a0:f3:47:48:de:96:85:93:65:61:ec: 8d:6c:70:9b:be:a3:94:43:ae:83:77:2c:3f:4e:f6:03:33:20: e1:60:c9:c2 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBXTANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFD REJGNTExMC8GA1UEBRMoOTgwQ0U1QkJGMkNGMzVENjBBRTNCMDcyMThBQjVDQTkx MDE0MkM5MDAeFw0yNTA3MDMwNzE5MzRaFw0yNTA3MTAwNzE5MzNaMBgxFjAUBgNV BAMTDTY4NjYyZjA2LTUyNTYwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDSChXZTLD+28slum8Nt2fni3iOj8yPCxEgzQMNsmWIieClO0U+CEGhOktrC1oM Gh80yN4FDMU/c+S5EirIcaDkbPF9UlM66X7LkjMVFsrbipQBRCEbzLAUeiskdGeG GPyxb7ZYnd5TcFw5y35URhTHyyEJ3UNVxVYTgskpSvgPGPmSx4Xy9bYaRNwF/8qx Pr4GQCd27nSNyn8Ib+CAR8meP94y0gODifxMqgunVLNNmrT9NBsUadw5hxXCUDq8 aDcR33S1PKIXFAoGyYJsGP4qx4mZiaX7D6bBlI3zOvN0FxtTgQYKtG6Z48DOr4J0 EJVFHK3F5qh6CD7Rd0u2s/EdAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUB+KYTsuM dphI68B/C6Q/9rXxs5MwHwYDVR0jBBgwFoAUmAzlu/LPNdYK47ByGKtcqRAULJAw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUNEQkY1LzVFOUM0QkIwQ0I1 MTExRUY5MDQwMEQxN0M0RjlBRTAyL21Bemx1X0xQTmRZSzQ3QnlHS3RjcVJBVUxK QS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvbUF6bHVfTFBOZFlLNDdCeUdLdGNxUkFVTEpBLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUNE QkY1LzVFOUM0QkIwQ0I1MTExRUY5MDQwMEQxN0M0RjlBRTAyL21Bemx1X0xQTmRZ SzQ3QnlHS3RjcVJBVUxKQS5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAKtyzdUkKDhMYcWIwFhdrIt+fVsPtCV7aXCEpG6q7TIDpkL82IudD1jO desgQxAbXT/fR463BOlzNOXDmXquO2ni/Uq+7G90idEBNykp+D7anYAG1kumbp31 MYPKdVWi2mXEh+TlYrTDAOm3vUg8eNI2WptPs/3kOE5YM4O5MlnACKrKZXFwoRPf tfNH03q1RMq3RD5L41BeSnz2A6j0tCFTHiA41VV0ubD4AbktWKzDkf+DR8rLpAQs QCHvLoWs9ts9KA2gDONrguVOxh4jUNNbtGFVilKrtnwg5GhVdiqg80dI3paFk2Vh 7I1scJu+o5RDroN3LD9O9gMzIOFgycI= -----END CERTIFICATE-----Generated at Thu Jul 3 22:49:44 2025 by rpki-client