$ rpki-client -vvf rpki.apnic.net/member_repository/A91795CA/F3643B10830511EB97189B39C4F9AE02/2Vzl-zaRXD2M2xDbhkpMcZM82kE.mft File: 2Vzl-zaRXD2M2xDbhkpMcZM82kE.mft (raw, json) Hash identifier: WEryLijccqw5R6X8enZriQmRQBGrY/IIVyXt5KlF7Ac= Subject key identifier: 61:40:6E:62:BE:D7:64:8B:B6:9F:7F:44:51:4C:20:42:10:0A:18:A8 Authority key identifier: D9:5C:E5:FB:36:91:5C:3D:8C:DB:10:DB:86:4A:4C:71:93:3C:DA:41 Certificate issuer: /CN=A91795CA/serialNumber=D95CE5FB36915C3D8CDB10DB864A4C71933CDA41 Certificate serial: 065A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2Vzl-zaRXD2M2xDbhkpMcZM82kE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91795CA/F3643B10830511EB97189B39C4F9AE02/2Vzl-zaRXD2M2xDbhkpMcZM82kE.mft Manifest number: 0651 Signing time: Wed 02 Apr 2025 22:32:49 +0000 Manifest this update: Wed 02 Apr 2025 22:32:49 +0000 Manifest next update: Wed 09 Apr 2025 22:32:49 +0000 Files and hashes: 1: 2Vzl-zaRXD2M2xDbhkpMcZM82kE.crl (hash: UEwJSK5l/eMVvn/SBmbp0udeU+6a7MDUKnb8AyNy3GU=) 2: 0BEE202087BA11EBBBA56067C4F9AE02.roa (hash: RcqGn4DlzkrU8iX9c04+ABUEIkZSxXOe2ZYW/HJVZ60=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91795CA/F3643B10830511EB97189B39C4F9AE02/2Vzl-zaRXD2M2xDbhkpMcZM82kE.crl rsync://rpki.apnic.net/member_repository/A91795CA/F3643B10830511EB97189B39C4F9AE02/2Vzl-zaRXD2M2xDbhkpMcZM82kE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2Vzl-zaRXD2M2xDbhkpMcZM82kE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 09 Apr 2025 22:32:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1626 (0x65a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91795CA Validity Not Before: Apr 2 22:32:49 2025 GMT Not After : Apr 9 22:32:49 2025 GMT Subject: CN=67edbb11-a3ad Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9d:bd:ad:fc:58:5b:b4:5e:a6:4c:08:ee:1e:ca: 85:13:d1:78:05:91:40:13:eb:c4:a8:e4:84:3c:f8: f0:d1:0f:1f:66:a0:e3:4f:53:cf:dc:8f:dc:0e:d3: 2d:fa:2d:84:39:35:a7:1f:f6:ba:42:be:3d:da:e0: d3:f3:1d:62:1b:8e:c5:2d:14:1b:37:6a:91:50:3e: 6a:8d:e0:63:49:42:0c:42:50:f2:0f:97:39:32:74: be:6e:52:ea:ae:44:29:1f:c3:6c:86:f3:46:c6:cb: e6:be:6d:3b:d4:4e:d8:fa:bc:c9:06:0c:0a:7b:98: a2:7e:e4:61:d9:a1:fa:b8:94:d9:96:64:f1:6e:16: bd:a6:cf:43:e3:08:af:59:56:d4:68:45:18:e5:10: e4:16:0a:25:ab:09:15:90:73:e2:ee:0d:5e:e4:71: 99:11:24:9e:a3:e0:81:2e:ad:20:d8:6e:00:9d:42: 2f:c6:48:c0:6a:52:da:95:99:4f:1c:53:6e:d4:17: d3:0c:d5:82:c4:6e:d2:d3:11:20:b8:41:ad:6d:93: cd:a4:3e:d2:2b:a1:ed:86:da:e4:50:2d:f9:e4:b6: 8e:95:53:5e:cf:42:35:5f:29:d1:e1:db:55:e2:b3: ba:e8:ad:10:00:a8:ff:49:39:be:40:73:e6:87:30: 17:b5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 61:40:6E:62:BE:D7:64:8B:B6:9F:7F:44:51:4C:20:42:10:0A:18:A8 X509v3 Authority Key Identifier: keyid:D9:5C:E5:FB:36:91:5C:3D:8C:DB:10:DB:86:4A:4C:71:93:3C:DA:41 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91795CA/F3643B10830511EB97189B39C4F9AE02/2Vzl-zaRXD2M2xDbhkpMcZM82kE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2Vzl-zaRXD2M2xDbhkpMcZM82kE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91795CA/F3643B10830511EB97189B39C4F9AE02/2Vzl-zaRXD2M2xDbhkpMcZM82kE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 6c:dc:38:a1:96:34:0c:03:a5:7b:95:af:f6:4a:bc:f5:37:cb: d9:db:d8:db:3b:07:bc:41:27:3d:e9:25:3c:ee:bb:90:1e:c3: 62:d2:c2:2e:33:f6:55:5c:06:63:19:89:c3:79:8d:20:08:ff: f3:9b:81:07:26:df:7f:ce:e1:e4:95:30:d0:47:91:47:99:d1: 54:19:e6:89:69:3a:ca:8b:bf:ec:8b:b6:d5:55:ee:12:12:01: 13:1d:93:74:2d:91:10:f6:a5:c8:e8:8e:12:1d:62:ed:55:00: 38:07:1c:6c:aa:10:5c:fe:19:d7:cc:df:cd:75:e0:a8:ff:6b: 5d:0f:80:07:a2:f0:85:9d:bc:2e:62:4a:49:cf:ab:d5:52:d6: ac:2b:cd:e5:14:b3:08:1b:a0:81:f8:0a:27:4b:8f:3e:8d:26: 9f:a9:53:f3:8f:59:ba:d7:71:cb:ae:d4:e1:68:00:c1:31:7d: 25:29:71:77:8d:58:cf:b9:fe:68:21:1a:0a:22:ad:04:0f:4b: ed:c6:5a:d6:17:84:19:ff:db:ce:9c:2d:c5:20:4b:d0:a1:2a: e9:1d:c0:8b:c2:20:89:f9:6e:67:50:69:b3:16:93:de:ff:3b: 6f:bc:61:13:34:f1:24:88:d3:b7:ef:7a:34:5d:01:53:1c:06: 3d:77:3d:09 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBlowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Nzk1Q0ExMTAvBgNVBAUTKEQ5NUNFNUZCMzY5MTVDM0Q4Q0RCMTBEQjg2NEE0Qzcx OTMzQ0RBNDEwHhcNMjUwNDAyMjIzMjQ5WhcNMjUwNDA5MjIzMjQ5WjAYMRYwFAYD VQQDEw02N2VkYmIxMS1hM2FkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAnb2t/FhbtF6mTAjuHsqFE9F4BZFAE+vEqOSEPPjw0Q8fZqDjT1PP3I/cDtMt +i2EOTWnH/a6Qr492uDT8x1iG47FLRQbN2qRUD5qjeBjSUIMQlDyD5c5MnS+blLq rkQpH8NshvNGxsvmvm071E7Y+rzJBgwKe5iifuRh2aH6uJTZlmTxbha9ps9D4wiv WVbUaEUY5RDkFgolqwkVkHPi7g1e5HGZESSeo+CBLq0g2G4AnUIvxkjAalLalZlP HFNu1BfTDNWCxG7S0xEguEGtbZPNpD7SK6HthtrkUC355LaOlVNez0I1XynR4dtV 4rO66K0QAKj/STm+QHPmhzAXtQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFGFAbmK+ 12SLtp9/RFFMIEIQChioMB8GA1UdIwQYMBaAFNlc5fs2kVw9jNsQ24ZKTHGTPNpB MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3OTVDQS9GMzY0M0IxMDgz MDUxMUVCOTcxODlCMzlDNEY5QUUwMi8yVnpsLXphUlhEMk0yeERiaGtwTWNaTTgy a0UuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzJWemwtemFSWEQyTTJ4RGJoa3BNY1pNODJrRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 OTVDQS9GMzY0M0IxMDgzMDUxMUVCOTcxODlCMzlDNEY5QUUwMi8yVnpsLXphUlhE Mk0yeERiaGtwTWNaTTgya0UubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBs3DihljQMA6V7la/2Srz1N8vZ29jbOwe8QSc96SU87ruQHsNi0sIu M/ZVXAZjGYnDeY0gCP/zm4EHJt9/zuHklTDQR5FHmdFUGeaJaTrKi7/si7bVVe4S EgETHZN0LZEQ9qXI6I4SHWLtVQA4BxxsqhBc/hnXzN/NdeCo/2tdD4AHovCFnbwu YkpJz6vVUtasK83lFLMIG6CB+AonS48+jSafqVPzj1m613HLrtThaADBMX0lKXF3 jVjPuf5oIRoKIq0ED0vtxlrWF4QZ/9vOnC3FIEvQoSrpHcCLwiCJ+W5nUGmzFpPe /ztvvGETNPEkiNO373o0XQFTHAY9dz0J -----END CERTIFICATE-----Generated at Thu Apr 3 23:07:09 2025 by rpki-client