$ rpki-client -vvf rpki.apnic.net/member_repository/A9171A59/8AB933EA30C511EC8A67AA7CC4F9AE02/Mz7FAwFNBnSvFnQZlBD5sJG4-5Q.mft File: Mz7FAwFNBnSvFnQZlBD5sJG4-5Q.mft (raw, json) Hash identifier: BSaFM2E44hCG4UxzwRkJL4acNTzT4KGhbOzKZ2OOcBo= Subject key identifier: 56:5E:A3:C3:B1:01:E2:EB:E7:F3:91:B6:77:0E:60:BB:37:D2:44:F3 Authority key identifier: 33:3E:C5:03:01:4D:06:74:AF:16:74:19:94:10:F9:B0:91:B8:FB:94 Certificate issuer: /CN=A9171A59/serialNumber=333EC503014D0674AF1674199410F9B091B8FB94 Certificate serial: 04B1 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Mz7FAwFNBnSvFnQZlBD5sJG4-5Q.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9171A59/8AB933EA30C511EC8A67AA7CC4F9AE02/Mz7FAwFNBnSvFnQZlBD5sJG4-5Q.mft Manifest number: 04AC Signing time: Sat 31 May 2025 00:08:20 +0000 Manifest this update: Sat 31 May 2025 00:08:20 +0000 Manifest next update: Sat 07 Jun 2025 00:08:19 +0000 Files and hashes: 1: Mz7FAwFNBnSvFnQZlBD5sJG4-5Q.crl (hash: LHoWfbNu1Hgv9ocrlCmOxeUdcV882lg/JbLNEVJGpbo=) 2: ABD9CB4630C711ECA2491515C4F9AE02.roa (hash: CoT7676o1FhYn/hTok256b21HFRTMynmtKsMLIXyZyA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9171A59/8AB933EA30C511EC8A67AA7CC4F9AE02/Mz7FAwFNBnSvFnQZlBD5sJG4-5Q.crl rsync://rpki.apnic.net/member_repository/A9171A59/8AB933EA30C511EC8A67AA7CC4F9AE02/Mz7FAwFNBnSvFnQZlBD5sJG4-5Q.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Mz7FAwFNBnSvFnQZlBD5sJG4-5Q.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 07 Jun 2025 00:08:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1201 (0x4b1) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9171A59, serialNumber=333EC503014D0674AF1674199410F9B091B8FB94 Validity Not Before: May 31 00:08:20 2025 GMT Not After : Jun 7 00:08:19 2025 GMT Subject: CN=683a4874-69f4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c8:63:51:df:1d:c6:17:95:99:d7:b3:32:33:1d: 63:e9:9f:c6:a7:ed:57:40:99:cb:0a:0d:c2:ab:42: 1b:6d:70:5f:74:58:c0:b0:b5:5a:49:e6:70:04:9b: 98:6f:51:fa:1c:0f:2b:cc:67:04:01:4e:51:f6:a0: 8c:84:cb:c7:2d:aa:74:73:15:3a:64:60:66:b9:d7: 9c:d3:9b:1b:6f:1a:48:2b:b6:b0:2d:22:42:c9:bc: 4b:9d:ab:18:06:7d:ba:81:ac:50:70:e1:75:07:78: e5:57:6f:a7:89:37:79:86:d2:4c:b7:77:f6:ea:45: 34:b7:53:a3:79:66:b9:a5:06:e8:ee:7e:65:0e:93: 29:00:5f:ed:e5:cc:48:11:ca:e6:53:35:0e:73:93: f7:bf:c0:3c:2f:51:fd:4e:cc:d6:a6:5e:45:ad:52: c1:e9:67:66:cd:f1:30:12:ad:9a:36:85:0f:e9:56: 30:d8:51:78:b4:23:3b:62:e3:02:34:9a:32:d5:0a: f7:04:75:c2:93:f1:ac:97:dc:5c:5a:26:bf:15:f3: 28:eb:52:2a:ae:20:e8:90:9c:e3:82:62:7e:ed:1b: f0:d4:33:ec:98:e1:74:e6:ac:23:27:b7:1a:a7:26: 4e:0c:43:19:45:ab:1c:23:7a:af:a9:6c:b1:a0:a2: ce:11 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 56:5E:A3:C3:B1:01:E2:EB:E7:F3:91:B6:77:0E:60:BB:37:D2:44:F3 X509v3 Authority Key Identifier: keyid:33:3E:C5:03:01:4D:06:74:AF:16:74:19:94:10:F9:B0:91:B8:FB:94 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9171A59/8AB933EA30C511EC8A67AA7CC4F9AE02/Mz7FAwFNBnSvFnQZlBD5sJG4-5Q.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Mz7FAwFNBnSvFnQZlBD5sJG4-5Q.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9171A59/8AB933EA30C511EC8A67AA7CC4F9AE02/Mz7FAwFNBnSvFnQZlBD5sJG4-5Q.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 42:85:05:f6:02:8f:2b:7d:02:35:10:cb:a6:43:a3:3e:15:3d: d3:a5:cd:4c:d0:e0:45:f4:da:8b:a1:44:de:ec:6e:eb:fe:f8: 4f:45:66:63:44:84:57:30:94:5f:55:9c:ff:d0:03:df:5b:5c: 07:a7:fa:e0:ac:15:fb:6b:6f:43:7f:4d:67:df:44:51:29:f6: a9:63:0c:7d:7f:bc:e0:f0:8c:9c:c1:4d:82:23:51:9c:61:a4: e0:fa:26:a2:bf:6b:32:94:50:68:38:bd:f0:55:54:41:da:6e: 32:cc:1f:da:65:35:0a:90:b5:42:aa:b2:8e:ad:26:0b:eb:d3: a9:10:6a:8d:a7:2c:a3:8f:45:34:3e:f0:da:15:59:fe:08:d4: 2c:64:60:2a:1d:c2:73:d5:6b:a8:d8:3c:50:9c:c5:1d:60:30: 6c:17:05:28:ee:e1:e3:c3:69:b0:bb:a5:18:60:80:8f:b7:1b: fa:28:15:58:c1:d6:08:1e:69:c7:85:b9:2f:de:e2:89:cc:14: 29:df:07:be:27:6e:4e:75:4c:e4:28:17:52:63:b5:30:91:e5: 55:49:ff:72:81:c7:3d:22:ca:a1:a4:d6:74:fc:f7:7b:c1:82: d3:97:98:57:c7:50:af:1f:19:91:09:3f:51:e5:50:14:88:af: ef:c0:54:15 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBLEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzFBNTkxMTAvBgNVBAUTKDMzM0VDNTAzMDE0RDA2NzRBRjE2NzQxOTk0MTBGOUIw OTFCOEZCOTQwHhcNMjUwNTMxMDAwODIwWhcNMjUwNjA3MDAwODE5WjAYMRYwFAYD VQQDEw02ODNhNDg3NC02OWY0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyGNR3x3GF5WZ17MyMx1j6Z/Gp+1XQJnLCg3Cq0IbbXBfdFjAsLVaSeZwBJuY b1H6HA8rzGcEAU5R9qCMhMvHLap0cxU6ZGBmudec05sbbxpIK7awLSJCybxLnasY Bn26gaxQcOF1B3jlV2+niTd5htJMt3f26kU0t1OjeWa5pQbo7n5lDpMpAF/t5cxI EcrmUzUOc5P3v8A8L1H9TszWpl5FrVLB6WdmzfEwEq2aNoUP6VYw2FF4tCM7YuMC NJoy1Qr3BHXCk/Gsl9xcWia/FfMo61IqriDokJzjgmJ+7Rvw1DPsmOF05qwjJ7ca pyZODEMZRascI3qvqWyxoKLOEQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFFZeo8Ox AeLr5/ORtncOYLs30kTzMB8GA1UdIwQYMBaAFDM+xQMBTQZ0rxZ0GZQQ+bCRuPuU MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3MUE1OS84QUI5MzNFQTMw QzUxMUVDOEE2N0FBN0NDNEY5QUUwMi9NejdGQXdGTkJuU3ZGblFabEJENXNKRzQt NVEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL016N0ZBd0ZOQm5TdkZuUVpsQkQ1c0pHNC01US5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 MUE1OS84QUI5MzNFQTMwQzUxMUVDOEE2N0FBN0NDNEY5QUUwMi9NejdGQXdGTkJu U3ZGblFabEJENXNKRzQtNVEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBChQX2Ao8rfQI1EMumQ6M+FT3Tpc1M0OBF9NqLoUTe7G7r/vhPRWZj RIRXMJRfVZz/0APfW1wHp/rgrBX7a29Df01n30RRKfapYwx9f7zg8IycwU2CI1Gc YaTg+iaiv2sylFBoOL3wVVRB2m4yzB/aZTUKkLVCqrKOrSYL69OpEGqNpyyjj0U0 PvDaFVn+CNQsZGAqHcJz1Wuo2DxQnMUdYDBsFwUo7uHjw2mwu6UYYICPtxv6KBVY wdYIHmnHhbkv3uKJzBQp3we+J25OdUzkKBdSY7UwkeVVSf9ygcc9IsqhpNZ0/Pd7 wYLTl5hXx1CvHxmRCT9R5VAUiK/vwFQV -----END CERTIFICATE-----Generated at Sat May 31 17:49:34 2025 by rpki-client