$ rpki-client -vvf rpki.apnic.net/member_repository/A91728E2/97013A4E504011ED8AECAA6FC4F9AE02/AZcEvn5KzguhIRSzKOsCBxHvTq8.mft File: AZcEvn5KzguhIRSzKOsCBxHvTq8.mft (raw, json) Hash identifier: nAjU7ghRVE2dK1N8Y3oPlJ6ANR05/aD3nIkV3OhjuZY= Subject key identifier: 99:CC:CD:2F:2D:97:BD:DD:81:9B:0F:8B:22:59:3B:B6:53:41:E7:24 Authority key identifier: 01:97:04:BE:7E:4A:CE:0B:A1:21:14:B3:28:EB:02:07:11:EF:4E:AF Certificate issuer: /CN=A91728E2/serialNumber=019704BE7E4ACE0BA12114B328EB020711EF4EAF Certificate serial: 01F0 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/AZcEvn5KzguhIRSzKOsCBxHvTq8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91728E2/97013A4E504011ED8AECAA6FC4F9AE02/AZcEvn5KzguhIRSzKOsCBxHvTq8.mft Manifest number: 01EC Signing time: Sat 31 May 2025 02:20:00 +0000 Manifest this update: Sat 31 May 2025 02:19:59 +0000 Manifest next update: Sat 07 Jun 2025 02:19:59 +0000 Files and hashes: 1: AZcEvn5KzguhIRSzKOsCBxHvTq8.crl (hash: lUik8/tT61Phps94XG/j7Yc7DirWaI/sRrAM/dpIc2A=) 2: 85AEBA76504C11ED829F7D24C4F9AE02.roa (hash: MijbaBFOBmjVn0NZXYmQ25vm+DrZhkqNokVzBodlkOI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91728E2/97013A4E504011ED8AECAA6FC4F9AE02/AZcEvn5KzguhIRSzKOsCBxHvTq8.crl rsync://rpki.apnic.net/member_repository/A91728E2/97013A4E504011ED8AECAA6FC4F9AE02/AZcEvn5KzguhIRSzKOsCBxHvTq8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/AZcEvn5KzguhIRSzKOsCBxHvTq8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 07 Jun 2025 02:19:59 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 496 (0x1f0) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91728E2, serialNumber=019704BE7E4ACE0BA12114B328EB020711EF4EAF Validity Not Before: May 31 02:19:59 2025 GMT Not After : Jun 7 02:19:59 2025 GMT Subject: CN=683a6750-9654 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ab:49:d6:b0:cb:a5:39:d7:93:ed:32:5a:2f:45: e5:55:d0:db:36:0b:47:58:c2:cb:4a:b1:32:e8:1f: b4:89:de:ac:45:ba:f3:6f:38:37:88:52:d3:2e:a9: 41:15:33:f9:f0:5c:32:c4:28:6c:77:1c:12:b7:ec: 92:9f:d7:b6:d0:95:da:0c:36:41:bf:18:a7:26:97: 05:9b:51:80:f1:4f:99:ec:c0:3c:88:1f:69:8d:4f: 0e:e0:d0:c2:e5:e0:9f:7e:e8:7c:32:d7:17:51:0f: b0:71:e0:22:c8:43:b1:90:1f:2a:3c:4c:bf:0a:99: 9b:a7:51:60:7e:7f:55:07:fa:70:f9:79:4c:65:6d: 9d:1f:8c:c2:a1:74:77:e7:2d:74:d8:9c:fe:55:99: 7e:6d:a8:31:22:de:02:b5:73:84:b1:90:e3:18:f7: d1:f1:00:89:70:16:23:a0:c3:0b:0b:20:2b:49:72: b6:ff:8a:e4:fd:77:16:6b:a3:dc:d4:a1:96:00:ed: 5f:fc:a9:2b:6a:d2:13:07:1b:0f:de:c7:f9:fb:fc: 5d:e7:2e:3e:8c:e4:17:4f:b9:81:25:ad:d1:a0:bb: 2c:4b:cd:8f:91:46:bf:91:02:ba:c6:04:f4:ef:45: 83:fb:f2:d6:e8:03:34:92:b5:9c:e4:f5:10:82:5b: fb:d3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 99:CC:CD:2F:2D:97:BD:DD:81:9B:0F:8B:22:59:3B:B6:53:41:E7:24 X509v3 Authority Key Identifier: keyid:01:97:04:BE:7E:4A:CE:0B:A1:21:14:B3:28:EB:02:07:11:EF:4E:AF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91728E2/97013A4E504011ED8AECAA6FC4F9AE02/AZcEvn5KzguhIRSzKOsCBxHvTq8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/AZcEvn5KzguhIRSzKOsCBxHvTq8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91728E2/97013A4E504011ED8AECAA6FC4F9AE02/AZcEvn5KzguhIRSzKOsCBxHvTq8.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption b1:67:3c:fc:37:81:86:61:64:23:ab:18:b5:5d:23:40:b0:f2: b9:99:ae:33:2c:0e:17:cf:60:0b:71:a5:3f:06:5b:ae:41:cf: 27:78:81:d5:48:93:04:ee:bd:69:a5:23:19:07:3e:41:a7:38: f2:4d:3e:42:12:d5:01:54:db:c3:07:5c:5e:cf:97:00:b0:37: c2:16:1a:0a:b0:0f:02:8f:9b:e8:0e:f4:fa:8d:a1:ce:fe:a0: 05:4c:ff:ac:e6:7e:51:62:c2:1e:bc:95:04:30:1b:bd:b6:0f: 63:b8:e8:ee:81:b5:7e:e9:f2:70:85:57:f2:a5:09:1f:93:17: c1:e9:5b:fe:3b:62:97:e4:4f:1f:92:22:fc:b3:d6:86:28:d5: 7a:e6:f5:6a:1b:43:19:40:f0:d0:ab:44:4e:83:6e:a9:42:23: 69:ab:e4:26:1b:50:83:99:48:64:98:db:80:18:a6:5f:c0:9a: 15:7c:a0:69:f8:2d:29:ee:bc:52:96:6a:0d:d9:22:3f:f0:05: 1d:a6:7c:3c:59:8f:ef:e3:b2:80:fc:7d:93:88:b2:5d:5b:c0: fc:ee:4c:f7:dd:1d:9d:2b:8c:1c:ee:87:0e:db:e9:ff:fa:77: 98:d7:51:e0:68:70:1b:39:26:e3:33:36:3a:be:ff:5a:93:ed: 10:24:92:1a -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAfAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzI4RTIxMTAvBgNVBAUTKDAxOTcwNEJFN0U0QUNFMEJBMTIxMTRCMzI4RUIwMjA3 MTFFRjRFQUYwHhcNMjUwNTMxMDIxOTU5WhcNMjUwNjA3MDIxOTU5WjAYMRYwFAYD VQQDEw02ODNhNjc1MC05NjU0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAq0nWsMulOdeT7TJaL0XlVdDbNgtHWMLLSrEy6B+0id6sRbrzbzg3iFLTLqlB FTP58FwyxChsdxwSt+ySn9e20JXaDDZBvxinJpcFm1GA8U+Z7MA8iB9pjU8O4NDC 5eCffuh8MtcXUQ+wceAiyEOxkB8qPEy/Cpmbp1Fgfn9VB/pw+XlMZW2dH4zCoXR3 5y102Jz+VZl+bagxIt4CtXOEsZDjGPfR8QCJcBYjoMMLCyArSXK2/4rk/XcWa6Pc 1KGWAO1f/KkratITBxsP3sf5+/xd5y4+jOQXT7mBJa3RoLssS82PkUa/kQK6xgT0 70WD+/LW6AM0krWc5PUQglv70wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJnMzS8t l73dgZsPiyJZO7ZTQeckMB8GA1UdIwQYMBaAFAGXBL5+Ss4LoSEUsyjrAgcR706v MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3MjhFMi85NzAxM0E0RTUw NDAxMUVEOEFFQ0FBNkZDNEY5QUUwMi9BWmNFdm41S3pndWhJUlN6S09zQ0J4SHZU cTguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0FaY0V2bjVLemd1aElSU3pLT3NDQnhIdlRxOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 MjhFMi85NzAxM0E0RTUwNDAxMUVEOEFFQ0FBNkZDNEY5QUUwMi9BWmNFdm41S3pn dWhJUlN6S09zQ0J4SHZUcTgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCxZzz8N4GGYWQjqxi1XSNAsPK5ma4zLA4Xz2ALcaU/BluuQc8neIHV SJME7r1ppSMZBz5BpzjyTT5CEtUBVNvDB1xez5cAsDfCFhoKsA8Cj5voDvT6jaHO /qAFTP+s5n5RYsIevJUEMBu9tg9juOjugbV+6fJwhVfypQkfkxfB6Vv+O2KX5E8f kiL8s9aGKNV65vVqG0MZQPDQq0ROg26pQiNpq+QmG1CDmUhkmNuAGKZfwJoVfKBp +C0p7rxSlmoN2SI/8AUdpnw8WY/v47KA/H2TiLJdW8D87kz33R2dK4wc7ocO2+n/ +neY11HgaHAbOSbjMzY6vv9ak+0QJJIa -----END CERTIFICATE-----Generated at Sat May 31 17:41:02 2025 by rpki-client