$ rpki-client -vvf rpki.apnic.net/member_repository/A91F479C/32BF850E98E411EC937D615CC4F9AE02/MZdALMHUBvlwfS4iBDY7wNE8Apk.mft File: MZdALMHUBvlwfS4iBDY7wNE8Apk.mft (raw, json) Hash identifier: onWvoKJeBN4TZrmnwz6ZSdzcjZDjMLRGXQhrf5vy/XI= Subject key identifier: F9:51:14:D5:E0:30:4C:B9:F1:1B:6A:26:02:B6:6D:C2:5C:2A:52:3C Authority key identifier: 31:97:40:2C:C1:D4:06:F9:70:7D:2E:22:04:36:3B:C0:D1:3C:02:99 Certificate issuer: /CN=A91F479C/serialNumber=3197402CC1D406F9707D2E2204363BC0D13C0299 Certificate serial: 039C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/MZdALMHUBvlwfS4iBDY7wNE8Apk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F479C/32BF850E98E411EC937D615CC4F9AE02/MZdALMHUBvlwfS4iBDY7wNE8Apk.mft Manifest number: 0398 Signing time: Tue 13 May 2025 00:34:19 +0000 Manifest this update: Tue 13 May 2025 00:34:18 +0000 Manifest next update: Tue 20 May 2025 00:34:18 +0000 Files and hashes: 1: MZdALMHUBvlwfS4iBDY7wNE8Apk.crl (hash: 4T+oSQjiR4pkf46lO/g5nCEYN7j+DrVSTiN6HCu790M=) 2: 751D2C1A98E611EC849D155FC4F9AE02.roa (hash: CkImo8IsUmsaya0jHXM103+CNWFzYVltZI4TafvBrlE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F479C/32BF850E98E411EC937D615CC4F9AE02/MZdALMHUBvlwfS4iBDY7wNE8Apk.crl rsync://rpki.apnic.net/member_repository/A91F479C/32BF850E98E411EC937D615CC4F9AE02/MZdALMHUBvlwfS4iBDY7wNE8Apk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/MZdALMHUBvlwfS4iBDY7wNE8Apk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 20 May 2025 00:34:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 924 (0x39c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F479C, serialNumber=3197402CC1D406F9707D2E2204363BC0D13C0299 Validity Not Before: May 13 00:34:18 2025 GMT Not After : May 20 00:34:18 2025 GMT Subject: CN=6822938a-7e0c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:db:52:ad:f7:67:48:53:bc:34:f7:2c:25:8f:ee: e0:85:ca:cb:fd:30:05:90:8b:5d:59:af:02:8d:51: 25:4d:be:53:c0:57:1d:22:2c:db:ae:20:c7:43:5c: 7f:ea:25:dd:69:bb:ff:92:0b:47:6e:a6:4b:1d:7d: 5e:ec:f1:4a:f4:90:03:29:fd:8a:78:80:f1:3b:cc: 3f:ea:57:6c:60:c0:75:23:0d:2c:e9:de:4b:04:f5: 31:1b:17:e1:91:e8:f8:92:a6:c4:a1:60:15:13:60: 06:3a:3f:3a:68:b7:00:8f:ee:42:5c:64:d9:98:36: 62:4c:90:a0:3b:e7:e0:ae:da:05:33:36:34:8b:87: d9:df:28:af:64:5a:82:97:fc:d2:4d:8a:2d:80:4a: 87:68:22:1d:63:cb:04:2e:87:2d:0d:c3:a6:92:16: 1e:d1:05:30:c1:26:ee:bd:02:e4:19:0f:fb:bc:41: d8:39:4c:4f:a6:63:ff:61:70:25:b1:30:e5:02:4b: 90:39:d3:1b:a7:b5:f2:14:bf:f7:a2:e0:7d:8a:c8: 5c:64:c6:65:43:78:94:5a:13:d4:34:bb:de:67:10: 56:b2:63:0c:28:1d:8e:8e:69:9f:ae:de:31:45:29: 8c:f7:38:24:0b:24:22:3a:d9:ab:c7:7d:36:7b:a2: a1:9d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F9:51:14:D5:E0:30:4C:B9:F1:1B:6A:26:02:B6:6D:C2:5C:2A:52:3C X509v3 Authority Key Identifier: keyid:31:97:40:2C:C1:D4:06:F9:70:7D:2E:22:04:36:3B:C0:D1:3C:02:99 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F479C/32BF850E98E411EC937D615CC4F9AE02/MZdALMHUBvlwfS4iBDY7wNE8Apk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/MZdALMHUBvlwfS4iBDY7wNE8Apk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F479C/32BF850E98E411EC937D615CC4F9AE02/MZdALMHUBvlwfS4iBDY7wNE8Apk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 2e:20:0c:86:a3:54:81:95:49:c2:ef:1f:14:da:b8:82:6b:9a: ce:7b:e8:dc:52:7a:41:93:03:bb:59:57:c5:bd:9c:43:21:a4: 31:f0:33:57:2e:6b:43:2b:28:b6:db:ce:5e:03:83:3c:31:a7: f5:1f:76:c8:a2:eb:ba:4c:5d:90:a1:2e:49:10:01:b2:41:8d: d8:8c:a3:f1:f3:33:b6:59:fb:23:78:76:e7:c8:e8:2a:fd:0a: 5b:8b:56:bc:50:b5:14:7e:e2:45:c8:b1:13:b1:8e:03:fb:b9: 82:20:87:74:59:0f:f9:f9:e3:18:e0:1c:bd:00:bc:0f:67:c1: f6:56:01:04:9c:30:39:76:4e:8c:ab:8e:22:2d:64:e2:31:6d: b2:a2:f2:d9:19:f2:0b:77:83:00:2b:a4:87:3a:04:94:f1:08: c6:38:50:38:51:ec:01:02:ab:76:ed:b1:55:67:ac:a9:61:6b: 96:b1:68:92:b7:b9:59:c2:5a:51:88:73:59:02:2b:2a:d2:87: 73:d1:46:15:11:0e:e5:4e:1b:61:27:37:bd:1b:a0:33:a4:7d: 0d:53:ee:87:ce:45:96:1a:13:44:0c:5c:02:a7:20:c7:c7:f9: 69:c3:16:a5:2b:03:68:56:d5:5b:32:58:04:b6:3e:bc:43:01: 78:33:9d:3a -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICA5wwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjQ3OUMxMTAvBgNVBAUTKDMxOTc0MDJDQzFENDA2Rjk3MDdEMkUyMjA0MzYzQkMw RDEzQzAyOTkwHhcNMjUwNTEzMDAzNDE4WhcNMjUwNTIwMDAzNDE4WjAYMRYwFAYD VQQDEw02ODIyOTM4YS03ZTBjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA21Kt92dIU7w09ywlj+7ghcrL/TAFkItdWa8CjVElTb5TwFcdIizbriDHQ1x/ 6iXdabv/kgtHbqZLHX1e7PFK9JADKf2KeIDxO8w/6ldsYMB1Iw0s6d5LBPUxGxfh kej4kqbEoWAVE2AGOj86aLcAj+5CXGTZmDZiTJCgO+fgrtoFMzY0i4fZ3yivZFqC l/zSTYotgEqHaCIdY8sELoctDcOmkhYe0QUwwSbuvQLkGQ/7vEHYOUxPpmP/YXAl sTDlAkuQOdMbp7XyFL/3ouB9ishcZMZlQ3iUWhPUNLveZxBWsmMMKB2Ojmmfrt4x RSmM9zgkCyQiOtmrx302e6KhnQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFPlRFNXg MEy58RtqJgK2bcJcKlI8MB8GA1UdIwQYMBaAFDGXQCzB1Ab5cH0uIgQ2O8DRPAKZ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGNDc5Qy8zMkJGODUwRTk4 RTQxMUVDOTM3RDYxNUNDNEY5QUUwMi9NWmRBTE1IVUJ2bHdmUzRpQkRZN3dORThB cGsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL01aZEFMTUhVQnZsd2ZTNGlCRFk3d05FOEFway5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG NDc5Qy8zMkJGODUwRTk4RTQxMUVDOTM3RDYxNUNDNEY5QUUwMi9NWmRBTE1IVUJ2 bHdmUzRpQkRZN3dORThBcGsubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAuIAyGo1SBlUnC7x8U2riCa5rOe+jcUnpBkwO7WVfFvZxDIaQx8DNX LmtDKyi2285eA4M8Maf1H3bIouu6TF2QoS5JEAGyQY3YjKPx8zO2WfsjeHbnyOgq /Qpbi1a8ULUUfuJFyLETsY4D+7mCIId0WQ/5+eMY4By9ALwPZ8H2VgEEnDA5dk6M q44iLWTiMW2yovLZGfILd4MAK6SHOgSU8QjGOFA4UewBAqt27bFVZ6ypYWuWsWiS t7lZwlpRiHNZAisq0odz0UYVEQ7lThthJze9G6AzpH0NU+6HzkWWGhNEDFwCpyDH x/lpwxalKwNoVtVbMlgEtj68QwF4M506 -----END CERTIFICATE-----Generated at Wed May 14 10:30:21 2025 by rpki-client