$ rpki-client -vvf rpki.apnic.net/member_repository/A91795CA/F3643B10830511EB97189B39C4F9AE02/2Vzl-zaRXD2M2xDbhkpMcZM82kE.mft File: 2Vzl-zaRXD2M2xDbhkpMcZM82kE.mft (raw, json) Hash identifier: wWdLGZxWrx9hraqMbn0ELeGR8Xp918VY2NwDkkQm8kM= Subject key identifier: E7:FE:54:23:A4:1A:6B:AB:6C:C4:10:BD:58:07:AD:58:E5:C4:62:1B Authority key identifier: D9:5C:E5:FB:36:91:5C:3D:8C:DB:10:DB:86:4A:4C:71:93:3C:DA:41 Certificate issuer: /CN=A91795CA/serialNumber=D95CE5FB36915C3D8CDB10DB864A4C71933CDA41 Certificate serial: 0679 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2Vzl-zaRXD2M2xDbhkpMcZM82kE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91795CA/F3643B10830511EB97189B39C4F9AE02/2Vzl-zaRXD2M2xDbhkpMcZM82kE.mft Manifest number: 066F Signing time: Fri 30 May 2025 22:40:23 +0000 Manifest this update: Fri 30 May 2025 22:40:23 +0000 Manifest next update: Fri 06 Jun 2025 22:40:23 +0000 Files and hashes: 1: 2Vzl-zaRXD2M2xDbhkpMcZM82kE.crl (hash: wHPNbnoKb1vUPt6ozlMjO4vcvbuyUpKZ/DDuXxo9dRc=) 2: 0BEE202087BA11EBBBA56067C4F9AE02.roa (hash: Lz3W/TkDVHeZx5YYagD6lr1rtN4/8q3JKJK/D1U5/sg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91795CA/F3643B10830511EB97189B39C4F9AE02/2Vzl-zaRXD2M2xDbhkpMcZM82kE.crl rsync://rpki.apnic.net/member_repository/A91795CA/F3643B10830511EB97189B39C4F9AE02/2Vzl-zaRXD2M2xDbhkpMcZM82kE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2Vzl-zaRXD2M2xDbhkpMcZM82kE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 06 Jun 2025 22:40:22 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1657 (0x679) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91795CA, serialNumber=D95CE5FB36915C3D8CDB10DB864A4C71933CDA41 Validity Not Before: May 30 22:40:23 2025 GMT Not After : Jun 6 22:40:23 2025 GMT Subject: CN=683a33d7-162d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e7:6c:0e:58:5f:5d:0b:2b:e1:b5:39:16:45:1c: 01:4f:9f:81:0c:82:f7:eb:7c:7b:6d:34:e7:11:20: 39:f4:c7:7e:05:ff:8f:ac:cc:82:f4:98:4c:b5:b1: e2:e9:24:52:36:e3:ce:8d:5c:fc:93:5f:00:67:52: 4b:9a:20:96:7f:e9:13:9d:df:65:c0:12:b4:cb:06: 45:83:45:09:4f:ef:10:76:ed:23:7e:c8:02:d4:fe: 87:17:f7:bd:b7:fd:1a:90:52:d3:02:62:09:73:52: 47:a9:fa:c0:a6:5f:c2:87:bf:d6:fb:c6:9d:d3:39: cf:dc:f0:43:a0:23:96:4f:4f:22:2b:b5:8a:7b:0b: 56:cb:fb:aa:9c:43:61:49:20:32:8e:cb:55:69:b7: c6:43:c9:00:3a:ce:15:d5:75:4d:46:8c:b4:f5:2e: 4d:fa:8e:8a:3a:0f:21:fc:4b:38:c5:35:5d:35:91: 1e:54:63:86:a7:47:89:59:0f:e7:ca:da:fa:78:9e: ce:5b:91:1a:19:83:5b:10:e7:27:14:5c:09:fd:1d: e1:33:f9:4b:1a:b7:4a:95:ca:a2:fd:94:89:5e:a6: c4:7b:36:91:6a:0d:b0:fe:d4:45:f9:32:18:66:e9: 46:fc:93:3e:c9:00:a3:71:7f:15:8e:4e:2b:ea:bc: 0c:53 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E7:FE:54:23:A4:1A:6B:AB:6C:C4:10:BD:58:07:AD:58:E5:C4:62:1B X509v3 Authority Key Identifier: keyid:D9:5C:E5:FB:36:91:5C:3D:8C:DB:10:DB:86:4A:4C:71:93:3C:DA:41 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91795CA/F3643B10830511EB97189B39C4F9AE02/2Vzl-zaRXD2M2xDbhkpMcZM82kE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2Vzl-zaRXD2M2xDbhkpMcZM82kE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91795CA/F3643B10830511EB97189B39C4F9AE02/2Vzl-zaRXD2M2xDbhkpMcZM82kE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 58:94:60:0a:96:b7:f0:a6:e1:d8:7a:d1:97:cb:0d:9f:90:84: 0a:18:49:31:93:06:07:0b:bf:38:73:93:4d:54:b3:16:a3:dd: fc:59:c2:cd:28:b4:25:92:ba:28:42:76:05:71:46:2f:84:41: aa:ad:da:2f:37:a7:d5:c3:a6:25:83:c6:6b:30:2a:f6:db:51: 3e:99:56:e0:d3:a8:1c:c5:67:60:1c:7f:e9:a4:b4:31:03:d9: 99:11:73:87:21:52:5f:0b:e0:9a:ef:e0:26:be:09:9d:34:78: 07:54:60:61:54:5b:90:ef:f8:f7:d1:c8:d7:64:84:c9:fe:5a: 0c:87:3f:96:3f:3b:eb:6e:a4:63:ba:e1:21:51:34:f0:e7:ee: fc:af:5c:fb:23:68:f5:d1:3c:fb:da:98:2b:1f:e8:d1:5c:d6: d0:2b:55:b1:61:7c:8f:fe:1e:29:92:80:e7:5e:77:d1:5b:a0: 2a:14:36:d8:35:f4:03:62:08:02:59:4f:da:5b:a7:d2:bb:ea: 4d:5b:4b:b7:84:c4:44:90:54:f0:68:20:16:c4:89:67:d0:b8: 99:39:d2:3d:4d:ea:f0:eb:7d:51:8b:db:ca:f2:4f:d8:65:8c: f1:e1:cc:37:78:dc:fb:8b:d3:27:4d:b0:23:30:6c:32:11:e0: f1:2e:a6:c5 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBnkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Nzk1Q0ExMTAvBgNVBAUTKEQ5NUNFNUZCMzY5MTVDM0Q4Q0RCMTBEQjg2NEE0Qzcx OTMzQ0RBNDEwHhcNMjUwNTMwMjI0MDIzWhcNMjUwNjA2MjI0MDIzWjAYMRYwFAYD VQQDEw02ODNhMzNkNy0xNjJkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA52wOWF9dCyvhtTkWRRwBT5+BDIL363x7bTTnESA59Md+Bf+PrMyC9JhMtbHi 6SRSNuPOjVz8k18AZ1JLmiCWf+kTnd9lwBK0ywZFg0UJT+8Qdu0jfsgC1P6HF/e9 t/0akFLTAmIJc1JHqfrApl/Ch7/W+8ad0znP3PBDoCOWT08iK7WKewtWy/uqnENh SSAyjstVabfGQ8kAOs4V1XVNRoy09S5N+o6KOg8h/Es4xTVdNZEeVGOGp0eJWQ/n ytr6eJ7OW5EaGYNbEOcnFFwJ/R3hM/lLGrdKlcqi/ZSJXqbEezaRag2w/tRF+TIY ZulG/JM+yQCjcX8Vjk4r6rwMUwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFOf+VCOk GmurbMQQvVgHrVjlxGIbMB8GA1UdIwQYMBaAFNlc5fs2kVw9jNsQ24ZKTHGTPNpB MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3OTVDQS9GMzY0M0IxMDgz MDUxMUVCOTcxODlCMzlDNEY5QUUwMi8yVnpsLXphUlhEMk0yeERiaGtwTWNaTTgy a0UuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzJWemwtemFSWEQyTTJ4RGJoa3BNY1pNODJrRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 OTVDQS9GMzY0M0IxMDgzMDUxMUVCOTcxODlCMzlDNEY5QUUwMi8yVnpsLXphUlhE Mk0yeERiaGtwTWNaTTgya0UubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBYlGAKlrfwpuHYetGXyw2fkIQKGEkxkwYHC784c5NNVLMWo938WcLN KLQlkrooQnYFcUYvhEGqrdovN6fVw6Ylg8ZrMCr221E+mVbg06gcxWdgHH/ppLQx A9mZEXOHIVJfC+Ca7+AmvgmdNHgHVGBhVFuQ7/j30cjXZITJ/loMhz+WPzvrbqRj uuEhUTTw5+78r1z7I2j10Tz72pgrH+jRXNbQK1WxYXyP/h4pkoDnXnfRW6AqFDbY NfQDYggCWU/aW6fSu+pNW0u3hMREkFTwaCAWxIln0LiZOdI9Terw631Ri9vK8k/Y ZYzx4cw3eNz7i9MnTbAjMGwyEeDxLqbF -----END CERTIFICATE-----Generated at Sat May 31 17:57:45 2025 by rpki-client