$ rpki-client -vvf rpki.apnic.net/member_repository/A9171BF0/A78F1B12A41511EFA14FBD3FC4F9AE02/2z39hs6_6u06rxXeruaWUjR0aik.mft File: 2z39hs6_6u06rxXeruaWUjR0aik.mft (raw, json) Hash identifier: KJVifNQhbYJWKK0nHRHRdk6zHfxQxk0xXL2JKeXHmEg= Subject key identifier: D9:1B:73:C9:85:EB:91:8E:B3:C8:6C:22:82:CE:73:DB:57:BA:C4:04 Authority key identifier: DB:3D:FD:86:CE:BF:EA:ED:3A:AF:15:DE:AE:E6:96:52:34:74:6A:29 Certificate issuer: /CN=A9171BF0/serialNumber=DB3DFD86CEBFEAED3AAF15DEAEE6965234746A29 Certificate serial: 66 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2z39hs6_6u06rxXeruaWUjR0aik.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9171BF0/A78F1B12A41511EFA14FBD3FC4F9AE02/2z39hs6_6u06rxXeruaWUjR0aik.mft Manifest number: 65 Signing time: Sat 31 May 2025 06:34:53 +0000 Manifest this update: Sat 31 May 2025 06:34:53 +0000 Manifest next update: Sat 07 Jun 2025 06:34:53 +0000 Files and hashes: 1: 2z39hs6_6u06rxXeruaWUjR0aik.crl (hash: /okpl/bOj9XOO5R4fmEMXY3BmYuFtxyZiiRnCUkZiRA=) 2: 12004368A41611EFA0D7CD42C4F9AE02.roa (hash: 9YzGJkxen0bF7ZOSO15+u2xKU2H/RKyzN947mBYbnYU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9171BF0/A78F1B12A41511EFA14FBD3FC4F9AE02/2z39hs6_6u06rxXeruaWUjR0aik.crl rsync://rpki.apnic.net/member_repository/A9171BF0/A78F1B12A41511EFA14FBD3FC4F9AE02/2z39hs6_6u06rxXeruaWUjR0aik.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2z39hs6_6u06rxXeruaWUjR0aik.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 07 Jun 2025 06:34:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 102 (0x66) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9171BF0, serialNumber=DB3DFD86CEBFEAED3AAF15DEAEE6965234746A29 Validity Not Before: May 31 06:34:53 2025 GMT Not After : Jun 7 06:34:53 2025 GMT Subject: CN=683aa30d-2d6b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:99:df:be:b2:f0:75:8e:e2:e2:22:3c:e6:33:5b: b6:91:70:63:a3:36:2b:52:f2:94:df:2f:02:32:39: c1:b9:19:4a:24:39:5f:59:50:75:00:9d:47:41:2d: fe:19:a0:06:44:49:b2:53:ac:37:75:f9:bf:35:cc: c6:b7:3e:02:32:a4:2a:6b:2b:83:30:85:12:be:fe: a5:c3:a7:ef:53:c4:8f:dc:2a:1a:2b:63:0e:8e:2a: ea:56:16:74:c9:8d:cb:ff:c5:21:1f:9f:79:1d:61: fb:c8:9f:45:97:e0:16:15:df:5e:6b:03:b5:08:f8: 5a:dc:d8:66:04:78:b8:39:30:52:47:72:9f:4c:2f: e5:34:4d:23:92:ca:56:bc:7c:d1:d2:98:5d:a7:9c: db:c0:7c:e4:69:61:b1:ef:18:cf:28:7a:9c:fd:b3: 0c:70:fc:20:f8:c0:5b:85:f2:ef:f0:e6:c7:ce:0f: 50:6c:a8:6c:09:ed:4a:c7:45:bb:4b:6b:22:9c:30: 66:8b:7e:ad:0f:80:89:f1:88:b0:6d:c2:33:9f:34: 4a:8c:8c:18:9f:1b:a5:e6:5d:66:52:15:0d:e7:70: d6:34:0d:f3:c3:f7:b3:0f:97:dd:6d:21:a1:c2:65: 80:59:ff:78:cc:de:d0:47:60:af:03:4d:e0:79:e5: f6:a5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D9:1B:73:C9:85:EB:91:8E:B3:C8:6C:22:82:CE:73:DB:57:BA:C4:04 X509v3 Authority Key Identifier: keyid:DB:3D:FD:86:CE:BF:EA:ED:3A:AF:15:DE:AE:E6:96:52:34:74:6A:29 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9171BF0/A78F1B12A41511EFA14FBD3FC4F9AE02/2z39hs6_6u06rxXeruaWUjR0aik.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2z39hs6_6u06rxXeruaWUjR0aik.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9171BF0/A78F1B12A41511EFA14FBD3FC4F9AE02/2z39hs6_6u06rxXeruaWUjR0aik.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 0f:ec:15:15:7a:9e:b2:3d:fc:9f:f0:0d:ff:fe:fc:ed:d4:93: 11:4b:8c:18:64:82:c4:bd:6c:25:06:29:2c:ed:3e:58:a6:fa: 6e:7a:6e:3f:5d:60:0d:f8:c7:0b:20:56:6c:ad:72:e0:47:91: 46:b2:e0:04:0a:a3:93:49:7f:ad:e2:eb:05:8a:24:1b:2c:7e: 4d:2c:88:00:7a:a7:00:bc:ac:fb:a3:c1:e7:50:26:11:32:78: ac:5d:bd:b9:1e:87:11:3c:eb:1b:b1:40:cf:a0:55:64:b2:82: 73:91:b8:05:30:b3:ce:90:61:86:e4:8c:ce:27:ec:30:85:2d: 2e:1d:a2:2f:f2:3e:47:6f:f3:32:bf:b1:1c:fc:26:ec:a9:50: 5f:34:47:f2:51:0e:74:59:1f:2d:be:b5:a3:16:85:f6:21:d5: 63:dd:c9:1e:30:88:d3:df:70:54:85:eb:76:a5:e6:86:f0:9f: 7c:12:5f:af:dd:f3:1d:a2:54:06:05:d7:37:ef:0c:9f:2f:b2: 94:76:5c:19:db:99:82:3d:0a:71:0e:e8:16:55:d7:e5:a1:cd: c5:f4:e0:07:49:47:02:ae:e6:2a:b5:38:9e:a9:fb:77:d9:39: 3a:1b:45:be:71:aa:63:f9:93:95:19:14:63:42:d5:e1:10:1e: c6:91:30:6a -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBZjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE3 MUJGMDExMC8GA1UEBRMoREIzREZEODZDRUJGRUFFRDNBQUYxNURFQUVFNjk2NTIz NDc0NkEyOTAeFw0yNTA1MzEwNjM0NTNaFw0yNTA2MDcwNjM0NTNaMBgxFjAUBgNV BAMTDTY4M2FhMzBkLTJkNmIwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCZ376y8HWO4uIiPOYzW7aRcGOjNitS8pTfLwIyOcG5GUokOV9ZUHUAnUdBLf4Z oAZESbJTrDd1+b81zMa3PgIypCprK4MwhRK+/qXDp+9TxI/cKhorYw6OKupWFnTJ jcv/xSEfn3kdYfvIn0WX4BYV315rA7UI+Frc2GYEeLg5MFJHcp9ML+U0TSOSyla8 fNHSmF2nnNvAfORpYbHvGM8oepz9swxw/CD4wFuF8u/w5sfOD1BsqGwJ7UrHRbtL ayKcMGaLfq0PgInxiLBtwjOfNEqMjBifG6XmXWZSFQ3ncNY0DfPD97MPl91tIaHC ZYBZ/3jM3tBHYK8DTeB55falAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQU2RtzyYXr kY6zyGwigs5z21e6xAQwHwYDVR0jBBgwFoAU2z39hs6/6u06rxXeruaWUjR0aikw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTcxQkYwL0E3OEYxQjEyQTQx NTExRUZBMTRGQkQzRkM0RjlBRTAyLzJ6MzloczZfNnUwNnJ4WGVydWFXVWpSMGFp ay5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvMnozOWhzNl82dTA2cnhYZXJ1YVdValIwYWlrLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTcx QkYwL0E3OEYxQjEyQTQxNTExRUZBMTRGQkQzRkM0RjlBRTAyLzJ6MzloczZfNnUw NnJ4WGVydWFXVWpSMGFpay5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAA/sFRV6nrI9/J/wDf/+/O3UkxFLjBhkgsS9bCUGKSztPlim+m56bj9d YA34xwsgVmytcuBHkUay4AQKo5NJf63i6wWKJBssfk0siAB6pwC8rPujwedQJhEy eKxdvbkehxE86xuxQM+gVWSygnORuAUws86QYYbkjM4n7DCFLS4doi/yPkdv8zK/ sRz8JuypUF80R/JRDnRZHy2+taMWhfYh1WPdyR4wiNPfcFSF63al5obwn3wSX6/d 8x2iVAYF1zfvDJ8vspR2XBnbmYI9CnEO6BZV1+WhzcX04AdJRwKu5iq1OJ6p+3fZ OTobRb5xqmP5k5UZFGNC1eEQHsaRMGo= -----END CERTIFICATE-----Generated at Sat May 31 17:50:34 2025 by rpki-client