$ rpki-client -vvf rpki.apnic.net/member_repository/A91971CB/010EB288808911EB8B505F20C4F9AE02/MZsxRPBqjysw1BIHH-EhB3T-huc.mft File: MZsxRPBqjysw1BIHH-EhB3T-huc.mft (raw, json) Hash identifier: VbF9rpc2px6ZKAGSKNDBXhINcNRlVEPoV/ME+PHYJEI= Subject key identifier: 5A:7A:42:6B:25:CE:D1:FB:D5:9B:CB:B1:C2:33:5A:72:CA:8D:59:EB Authority key identifier: 31:9B:31:44:F0:6A:8F:2B:30:D4:12:07:1F:E1:21:07:74:FE:86:E7 Certificate issuer: /CN=A91971CB/serialNumber=319B3144F06A8F2B30D412071FE1210774FE86E7 Certificate serial: 0661 Authority info access: rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/MZsxRPBqjysw1BIHH-EhB3T-huc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91971CB/010EB288808911EB8B505F20C4F9AE02/MZsxRPBqjysw1BIHH-EhB3T-huc.mft Manifest number: 065A Signing time: Fri 04 Apr 2025 15:15:38 +0000 Manifest this update: Fri 04 Apr 2025 15:15:37 +0000 Manifest next update: Fri 11 Apr 2025 15:15:37 +0000 Files and hashes: 1: MZsxRPBqjysw1BIHH-EhB3T-huc.crl (hash: dMuTrrlEG7fnnIVYPHnCxryVyTShsh9pwS9K17mZp44=) 2: 27C29E5EF94411EDB4C6E91CC4F9AE02.roa (hash: PGlTDpEV17D+1hrLu4fdfibpz1YbRKMAlzpsoNFgyb4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91971CB/010EB288808911EB8B505F20C4F9AE02/MZsxRPBqjysw1BIHH-EhB3T-huc.crl rsync://rpki.apnic.net/member_repository/A91971CB/010EB288808911EB8B505F20C4F9AE02/MZsxRPBqjysw1BIHH-EhB3T-huc.mft rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/MZsxRPBqjysw1BIHH-EhB3T-huc.cer rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.crl rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DPzneFf88B852ZpitKpi5hWedvg.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 11 Apr 2025 15:15:37 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1633 (0x661) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91971CB Validity Not Before: Apr 4 15:15:37 2025 GMT Not After : Apr 11 15:15:37 2025 GMT Subject: CN=67eff799-75d5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9f:cc:f3:bd:fb:56:89:88:67:de:cc:7f:51:84: 18:6d:d4:e7:a8:e8:86:2e:de:74:8a:8c:d0:e4:df: d7:3b:90:ba:e2:f0:35:af:54:6a:60:45:1a:16:26: c0:ed:d4:19:ed:16:b4:d0:dd:8a:b3:13:9a:d1:7b: f8:1c:3f:b3:c7:54:90:15:44:35:4a:90:3b:3e:1f: 56:5b:b1:00:3a:38:92:6f:4c:c5:d4:2d:33:66:66: d3:3e:3b:d9:9d:d6:8d:b8:9b:21:01:56:d5:69:1d: fa:f0:55:aa:38:b2:1e:44:62:aa:f8:2e:bb:62:6d: de:9b:79:05:92:97:39:c1:8c:4d:1e:32:1e:cf:a3: 5d:9c:87:db:43:9c:19:4c:4e:17:da:d4:4d:a9:3c: a3:84:01:c9:a7:a2:25:66:d1:ec:23:ef:8a:4c:7a: e5:9d:74:38:33:f2:0b:04:8d:cd:44:81:d2:8f:84: f9:05:df:5f:d1:48:39:66:56:ee:02:b8:7b:66:a1: 84:6d:96:bf:12:cf:7b:d8:67:34:28:ef:79:06:1d: 8a:f6:f6:65:e0:7f:85:2b:65:c3:6d:52:d8:67:79: 63:ef:fb:23:a6:20:71:26:f2:06:01:7b:71:26:1e: c4:9e:8e:b8:91:87:a9:aa:3a:88:c9:50:0a:fc:10: 82:9f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5A:7A:42:6B:25:CE:D1:FB:D5:9B:CB:B1:C2:33:5A:72:CA:8D:59:EB X509v3 Authority Key Identifier: keyid:31:9B:31:44:F0:6A:8F:2B:30:D4:12:07:1F:E1:21:07:74:FE:86:E7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91971CB/010EB288808911EB8B505F20C4F9AE02/MZsxRPBqjysw1BIHH-EhB3T-huc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/MZsxRPBqjysw1BIHH-EhB3T-huc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91971CB/010EB288808911EB8B505F20C4F9AE02/MZsxRPBqjysw1BIHH-EhB3T-huc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 58:62:11:59:48:f8:6e:00:40:dc:a9:b3:38:74:ac:93:6f:19: 71:3b:88:f0:f8:38:39:48:3e:d7:33:1e:c0:33:9d:a0:83:38: 0e:b0:ef:7a:83:b7:11:03:0a:42:9c:5a:61:ac:4e:fb:09:fa: a0:e2:23:50:70:db:6f:0d:80:37:a7:e0:b1:8b:a1:d5:cc:d3: 87:8e:07:f6:90:da:7a:39:4f:db:16:14:ad:35:f7:3f:f6:f3: 19:89:76:ea:90:31:0d:a1:78:23:ab:60:49:e7:58:8f:db:0e: fd:cb:fa:59:fc:14:91:e6:32:3c:b2:e7:1f:ac:55:6d:39:36: 1f:57:e8:07:4c:c1:71:f2:7f:35:31:24:96:dd:df:13:21:2f: 8f:91:d5:8b:bd:8e:51:e9:0f:13:a8:c2:f3:d0:d8:54:b1:f2: e3:d3:c5:be:fc:c6:dd:6c:ae:c3:09:1f:b0:da:f4:08:6c:7e: 3b:c9:bd:06:12:2f:43:f4:c4:0f:15:0f:f2:02:b8:0f:71:b5: af:85:07:26:3a:15:69:82:62:78:a1:52:b9:4e:b7:ef:1a:9c: 57:04:68:ac:44:8a:66:96:c4:79:d8:88:29:79:3e:1e:4a:c4: e8:38:41:b4:5d:4b:f5:94:cc:68:52:8c:6f:d9:af:67:e1:f7: 64:f9:c1:60 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBmEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTcxQ0IxMTAvBgNVBAUTKDMxOUIzMTQ0RjA2QThGMkIzMEQ0MTIwNzFGRTEyMTA3 NzRGRTg2RTcwHhcNMjUwNDA0MTUxNTM3WhcNMjUwNDExMTUxNTM3WjAYMRYwFAYD VQQDEw02N2VmZjc5OS03NWQ1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAn8zzvftWiYhn3sx/UYQYbdTnqOiGLt50iozQ5N/XO5C64vA1r1RqYEUaFibA 7dQZ7Ra00N2KsxOa0Xv4HD+zx1SQFUQ1SpA7Ph9WW7EAOjiSb0zF1C0zZmbTPjvZ ndaNuJshAVbVaR368FWqOLIeRGKq+C67Ym3em3kFkpc5wYxNHjIez6NdnIfbQ5wZ TE4X2tRNqTyjhAHJp6IlZtHsI++KTHrlnXQ4M/ILBI3NRIHSj4T5Bd9f0Ug5Zlbu Arh7ZqGEbZa/Es972Gc0KO95Bh2K9vZl4H+FK2XDbVLYZ3lj7/sjpiBxJvIGAXtx Jh7Eno64kYepqjqIyVAK/BCCnwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFFp6Qmsl ztH71ZvLscIzWnLKjVnrMB8GA1UdIwQYMBaAFDGbMUTwao8rMNQSBx/hIQd0/obn MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5NzFDQi8wMTBFQjI4ODgw ODkxMUVCOEI1MDVGMjBDNEY5QUUwMi9NWnN4UlBCcWp5c3cxQklISC1FaEIzVC1o dWMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzMjJBNUY0MUQ2NjExRTJBM0YyN0Y3Qzcy RkQxRkYyL01ac3hSUEJxanlzdzFCSUhILUVoQjNULWh1Yy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 NzFDQi8wMTBFQjI4ODgwODkxMUVCOEI1MDVGMjBDNEY5QUUwMi9NWnN4UlBCcWp5 c3cxQklISC1FaEIzVC1odWMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBYYhFZSPhuAEDcqbM4dKyTbxlxO4jw+Dg5SD7XMx7AM52ggzgOsO96 g7cRAwpCnFphrE77Cfqg4iNQcNtvDYA3p+Cxi6HVzNOHjgf2kNp6OU/bFhStNfc/ 9vMZiXbqkDENoXgjq2BJ51iP2w79y/pZ/BSR5jI8sucfrFVtOTYfV+gHTMFx8n81 MSSW3d8TIS+PkdWLvY5R6Q8TqMLz0NhUsfLj08W+/MbdbK7DCR+w2vQIbH47yb0G Ei9D9MQPFQ/yArgPcbWvhQcmOhVpgmJ4oVK5TrfvGpxXBGisRIpmlsR52IgpeT4e SsToOEG0XUv1lMxoUoxv2a9n4fdk+cFg -----END CERTIFICATE-----Generated at Sat Apr 5 22:24:32 2025 by rpki-client