$ rpki-client -vvf rpki.apnic.net/member_repository/A91116E6/D7D3623831F611EF92AD8D10C4F9AE02/MkzIe8yExoFRzDczpQjHilxbSYo.mft File: MkzIe8yExoFRzDczpQjHilxbSYo.mft (raw, json) Hash identifier: 7BE8rolG7JVb8jp+uLwQvTuFqQm4luUz1pJO7X2DtSg= Subject key identifier: B7:93:60:CE:9B:2B:45:F0:AF:A2:C7:57:D0:88:71:E9:C2:42:20:97 Authority key identifier: 32:4C:C8:7B:CC:84:C6:81:51:CC:37:33:A5:08:C7:8A:5C:5B:49:8A Certificate issuer: /CN=A91116E6/serialNumber=324CC87BCC84C68151CC3733A508C78A5C5B498A Certificate serial: B2 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/MkzIe8yExoFRzDczpQjHilxbSYo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91116E6/D7D3623831F611EF92AD8D10C4F9AE02/MkzIe8yExoFRzDczpQjHilxbSYo.mft Manifest number: B0 Signing time: Sat 31 May 2025 05:36:28 +0000 Manifest this update: Sat 31 May 2025 05:36:28 +0000 Manifest next update: Sat 07 Jun 2025 05:36:28 +0000 Files and hashes: 1: MkzIe8yExoFRzDczpQjHilxbSYo.crl (hash: VVVk+A3fqqApdft9gy5JpcquGxH8Bu/2wzudNnTyhXA=) 2: 9CE0AEFA31F711EFA9A9A54AC4F9AE02.roa (hash: GXX1SqQqnLs/QR8YWu9cJWfVt1DZZvg7YhJhKqg5IbE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91116E6/D7D3623831F611EF92AD8D10C4F9AE02/MkzIe8yExoFRzDczpQjHilxbSYo.crl rsync://rpki.apnic.net/member_repository/A91116E6/D7D3623831F611EF92AD8D10C4F9AE02/MkzIe8yExoFRzDczpQjHilxbSYo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/MkzIe8yExoFRzDczpQjHilxbSYo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 07 Jun 2025 05:36:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 178 (0xb2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91116E6, serialNumber=324CC87BCC84C68151CC3733A508C78A5C5B498A Validity Not Before: May 31 05:36:28 2025 GMT Not After : Jun 7 05:36:28 2025 GMT Subject: CN=683a955c-3b38 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ce:f4:40:59:66:af:c3:d0:31:70:73:9f:bc:f6: c9:3a:a2:94:91:c8:3d:02:1b:0d:41:e7:fb:ee:79: 2f:34:22:92:64:2a:1a:dd:a3:ef:4f:0f:c5:ee:2f: 01:86:0f:b8:2a:07:58:9d:e8:53:5d:52:3c:30:c8: a8:eb:c0:b6:0d:f7:88:19:11:e4:0b:5c:ea:da:84: 66:f0:63:e0:29:57:6c:d2:0c:39:3d:34:f2:c0:ea: c4:28:81:38:38:76:c1:e8:d7:8d:32:a0:e2:37:74: b8:90:23:41:06:e6:ce:8c:80:28:6a:11:ff:98:f7: 6d:41:87:d9:af:ba:35:04:96:3f:0e:4d:50:ee:2a: 83:92:56:06:b9:84:1d:0a:64:3d:e0:fa:2a:a2:8d: 89:52:b5:16:57:49:de:90:a9:3e:2a:ac:27:00:74: fb:64:51:4e:07:37:2d:59:7e:34:37:10:6f:4a:eb: 3e:32:41:e1:d0:ec:8b:a1:82:81:f2:01:f4:92:bc: c4:55:69:4d:63:34:6d:5e:43:2b:1a:ab:62:30:6d: 8a:34:45:42:98:df:6a:2c:42:16:0e:00:84:3e:9c: 36:b8:48:1d:52:59:a7:69:64:b0:82:d1:ec:c5:35: 0a:25:55:8b:29:4a:0e:bd:91:be:1d:89:9c:1b:cd: 86:49 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B7:93:60:CE:9B:2B:45:F0:AF:A2:C7:57:D0:88:71:E9:C2:42:20:97 X509v3 Authority Key Identifier: keyid:32:4C:C8:7B:CC:84:C6:81:51:CC:37:33:A5:08:C7:8A:5C:5B:49:8A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91116E6/D7D3623831F611EF92AD8D10C4F9AE02/MkzIe8yExoFRzDczpQjHilxbSYo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/MkzIe8yExoFRzDczpQjHilxbSYo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91116E6/D7D3623831F611EF92AD8D10C4F9AE02/MkzIe8yExoFRzDczpQjHilxbSYo.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 5c:7d:f4:53:74:99:b2:0c:80:91:df:7b:5e:33:42:f9:f3:8d: 58:a9:a9:5e:72:e7:50:72:a1:ae:d7:2e:62:6d:e5:6d:bd:01: ca:17:d5:da:a4:e4:4d:31:dd:b3:b1:f4:ea:db:75:4d:b0:4c: 05:b7:52:9f:55:9c:d5:11:aa:b3:07:e2:36:d4:58:e8:76:20: d7:f2:1a:c4:79:38:06:17:7b:c5:4b:67:97:8b:de:fb:60:5e: 34:06:86:7b:de:f1:02:67:f1:d4:6c:7c:59:f5:67:74:49:e6: 58:63:c7:f9:b0:60:9a:83:f3:4b:6f:80:68:45:7d:2e:54:35: 9d:81:dc:3a:db:8a:07:bc:45:91:d3:eb:b3:ba:a1:30:a1:48: fa:97:60:69:e4:20:c8:60:cc:16:e1:53:7c:03:df:bc:17:60: 48:6a:69:dd:e4:62:59:52:c7:7c:c4:8b:70:fb:e7:bd:e8:46: 0b:7a:4e:ed:ad:1d:82:e1:55:c4:15:01:38:d2:f8:7a:3c:5c: 3f:3d:66:72:a7:df:20:d2:2a:57:ff:e6:1b:0d:ca:69:fd:35: 9a:5b:be:8a:f5:44:35:e7:52:c1:d9:16:85:89:11:80:ee:e7: c1:d8:c7:2f:48:c9:c2:26:26:9e:d6:f5:f0:78:6d:34:0d:bc: c2:3b:b7:ed -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICALIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MTE2RTYxMTAvBgNVBAUTKDMyNENDODdCQ0M4NEM2ODE1MUNDMzczM0E1MDhDNzhB NUM1QjQ5OEEwHhcNMjUwNTMxMDUzNjI4WhcNMjUwNjA3MDUzNjI4WjAYMRYwFAYD VQQDEw02ODNhOTU1Yy0zYjM4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzvRAWWavw9AxcHOfvPbJOqKUkcg9AhsNQef77nkvNCKSZCoa3aPvTw/F7i8B hg+4KgdYnehTXVI8MMio68C2DfeIGRHkC1zq2oRm8GPgKVds0gw5PTTywOrEKIE4 OHbB6NeNMqDiN3S4kCNBBubOjIAoahH/mPdtQYfZr7o1BJY/Dk1Q7iqDklYGuYQd CmQ94Poqoo2JUrUWV0nekKk+KqwnAHT7ZFFOBzctWX40NxBvSus+MkHh0OyLoYKB 8gH0krzEVWlNYzRtXkMrGqtiMG2KNEVCmN9qLEIWDgCEPpw2uEgdUlmnaWSwgtHs xTUKJVWLKUoOvZG+HYmcG82GSQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFLeTYM6b K0Xwr6LHV9CIcenCQiCXMB8GA1UdIwQYMBaAFDJMyHvMhMaBUcw3M6UIx4pcW0mK MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExMTZFNi9EN0QzNjIzODMx RjYxMUVGOTJBRDhEMTBDNEY5QUUwMi9Na3pJZTh5RXhvRlJ6RGN6cFFqSGlseGJT WW8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL01rekllOHlFeG9GUnpEY3pwUWpIaWx4YlNZby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx MTZFNi9EN0QzNjIzODMxRjYxMUVGOTJBRDhEMTBDNEY5QUUwMi9Na3pJZTh5RXhv RlJ6RGN6cFFqSGlseGJTWW8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBcffRTdJmyDICR33teM0L5841YqalecudQcqGu1y5ibeVtvQHKF9Xa pORNMd2zsfTq23VNsEwFt1KfVZzVEaqzB+I21FjodiDX8hrEeTgGF3vFS2eXi977 YF40BoZ73vECZ/HUbHxZ9Wd0SeZYY8f5sGCag/NLb4BoRX0uVDWdgdw624oHvEWR 0+uzuqEwoUj6l2Bp5CDIYMwW4VN8A9+8F2BIamnd5GJZUsd8xItw++e96EYLek7t rR2C4VXEFQE40vh6PFw/PWZyp98g0ipX/+YbDcpp/TWaW76K9UQ151LB2RaFiRGA 7ufB2McvSMnCJiae1vXweG00DbzCO7ft -----END CERTIFICATE-----Generated at Sat May 31 17:49:42 2025 by rpki-client