$ rpki-client -vvf rpki.apnic.net/member_repository/A91971CB/010EB288808911EB8B505F20C4F9AE02/MZsxRPBqjysw1BIHH-EhB3T-huc.mft File: MZsxRPBqjysw1BIHH-EhB3T-huc.mft (raw, json) Hash identifier: rlHFvZqSys3IHIea6JVN9lslZNX+S74JgChAo3wKSUg= Subject key identifier: 70:DC:60:67:B5:1C:ED:7B:C0:92:8D:E3:FB:0A:FE:72:B6:31:C0:55 Authority key identifier: 31:9B:31:44:F0:6A:8F:2B:30:D4:12:07:1F:E1:21:07:74:FE:86:E7 Certificate issuer: /CN=A91971CB/serialNumber=319B3144F06A8F2B30D412071FE1210774FE86E7 Certificate serial: 067F Authority info access: rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/MZsxRPBqjysw1BIHH-EhB3T-huc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91971CB/010EB288808911EB8B505F20C4F9AE02/MZsxRPBqjysw1BIHH-EhB3T-huc.mft Manifest number: 0678 Signing time: Mon 02 Jun 2025 15:15:24 +0000 Manifest this update: Mon 02 Jun 2025 15:15:24 +0000 Manifest next update: Mon 09 Jun 2025 15:15:24 +0000 Files and hashes: 1: MZsxRPBqjysw1BIHH-EhB3T-huc.crl (hash: hBe3csUpjp6a2eACXRKaDMvxZ1R6bTEi0+PtY91XeCw=) 2: 27C29E5EF94411EDB4C6E91CC4F9AE02.roa (hash: PGlTDpEV17D+1hrLu4fdfibpz1YbRKMAlzpsoNFgyb4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91971CB/010EB288808911EB8B505F20C4F9AE02/MZsxRPBqjysw1BIHH-EhB3T-huc.crl rsync://rpki.apnic.net/member_repository/A91971CB/010EB288808911EB8B505F20C4F9AE02/MZsxRPBqjysw1BIHH-EhB3T-huc.mft rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/MZsxRPBqjysw1BIHH-EhB3T-huc.cer rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.crl rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DPzneFf88B852ZpitKpi5hWedvg.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Jun 2025 15:15:23 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1663 (0x67f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91971CB, serialNumber=319B3144F06A8F2B30D412071FE1210774FE86E7 Validity Not Before: Jun 2 15:15:24 2025 GMT Not After : Jun 9 15:15:24 2025 GMT Subject: CN=683dc00c-db1a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a7:84:3b:c0:48:ff:4a:fc:a7:c0:7a:57:fb:7e: 3e:07:2f:5e:34:81:d4:a6:80:ae:9d:9b:78:5e:b9: 11:92:6e:38:0d:71:7e:ca:2f:7a:3b:c9:3d:ba:58: 49:2a:de:31:60:66:c7:6a:29:ec:07:80:42:ce:4b: 7d:8a:be:90:6a:95:c4:0c:90:c6:e2:b5:1c:45:99: 6c:01:75:96:94:69:3d:03:ef:57:3d:a3:ec:f7:71: 91:5c:37:4c:0c:b1:45:83:31:6e:f3:ae:27:b8:ca: 0e:ee:68:48:b9:f0:cc:40:a7:87:c4:21:40:52:d9: a9:ea:4e:03:dc:bb:6c:25:19:05:ad:35:02:ef:5b: 15:e7:a7:36:dc:73:8f:78:1f:8a:b1:21:10:0d:59: 09:e3:58:75:42:9b:93:9f:62:5c:f6:54:d9:1c:40: 93:9b:78:59:11:3b:e5:36:9b:f7:05:0a:cc:c7:38: 8d:50:2a:6c:82:6d:bf:82:ec:12:80:80:ec:23:6b: c2:cc:c6:10:8e:07:42:ce:d2:a4:0e:e7:9d:9d:6c: 17:e2:68:cc:ad:e3:70:b9:41:c8:e4:f6:95:7a:c7: 4f:c4:b8:3a:65:49:d9:a9:47:43:2e:42:6e:d8:55: 20:41:46:ef:9f:27:ae:93:15:a6:99:6b:07:2d:14: 6e:af Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 70:DC:60:67:B5:1C:ED:7B:C0:92:8D:E3:FB:0A:FE:72:B6:31:C0:55 X509v3 Authority Key Identifier: keyid:31:9B:31:44:F0:6A:8F:2B:30:D4:12:07:1F:E1:21:07:74:FE:86:E7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91971CB/010EB288808911EB8B505F20C4F9AE02/MZsxRPBqjysw1BIHH-EhB3T-huc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/MZsxRPBqjysw1BIHH-EhB3T-huc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91971CB/010EB288808911EB8B505F20C4F9AE02/MZsxRPBqjysw1BIHH-EhB3T-huc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 0b:c7:ce:f0:a6:db:5d:e4:4a:cf:a7:75:f8:28:61:0e:07:34: 2f:8a:da:8f:c8:a8:5d:e3:10:cb:f1:83:6e:b6:36:e2:8e:01: 21:ef:de:8e:39:16:db:12:e3:0f:47:1b:c0:2d:e3:79:88:36: be:e4:5e:cf:ff:c5:6d:6c:3a:c0:c0:4a:74:fe:e8:1e:83:74: df:55:f0:dd:a7:43:b2:fe:3c:48:43:77:b1:9f:35:1f:81:0c: b8:fd:5e:3d:8b:64:8c:ab:43:e1:02:4e:e7:fa:2f:cd:56:42: dd:59:75:47:2f:f4:1d:3d:56:df:bf:ee:78:b1:fc:1c:0a:a3: 36:4c:10:19:0a:4f:7b:a8:ae:38:ab:fd:f6:35:ce:64:86:17: 6d:2f:7d:d1:b6:78:e5:2e:00:85:10:3f:ea:94:ab:88:ff:4a: aa:24:ae:3d:7c:4d:89:ed:cc:0e:b1:40:44:8e:30:f3:53:67: 60:96:12:2f:df:aa:4b:5e:70:47:e3:3b:bd:bc:cb:c1:d9:6c: 14:8a:73:d6:a9:fb:dc:57:2d:d0:36:7f:23:5f:4c:77:e9:ca: ce:cc:ae:82:6c:f1:19:a9:02:e5:9f:c1:7d:4c:89:d5:68:fb: b4:f8:89:05:c4:a4:86:b1:90:fd:6c:f3:4e:9d:45:02:16:f4: 27:d2:70:f8 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBn8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTcxQ0IxMTAvBgNVBAUTKDMxOUIzMTQ0RjA2QThGMkIzMEQ0MTIwNzFGRTEyMTA3 NzRGRTg2RTcwHhcNMjUwNjAyMTUxNTI0WhcNMjUwNjA5MTUxNTI0WjAYMRYwFAYD VQQDEw02ODNkYzAwYy1kYjFhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAp4Q7wEj/SvynwHpX+34+By9eNIHUpoCunZt4XrkRkm44DXF+yi96O8k9ulhJ Kt4xYGbHainsB4BCzkt9ir6QapXEDJDG4rUcRZlsAXWWlGk9A+9XPaPs93GRXDdM DLFFgzFu864nuMoO7mhIufDMQKeHxCFAUtmp6k4D3LtsJRkFrTUC71sV56c23HOP eB+KsSEQDVkJ41h1QpuTn2Jc9lTZHECTm3hZETvlNpv3BQrMxziNUCpsgm2/guwS gIDsI2vCzMYQjgdCztKkDuednWwX4mjMreNwuUHI5PaVesdPxLg6ZUnZqUdDLkJu 2FUgQUbvnyeukxWmmWsHLRRurwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFHDcYGe1 HO17wJKN4/sK/nK2McBVMB8GA1UdIwQYMBaAFDGbMUTwao8rMNQSBx/hIQd0/obn MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5NzFDQi8wMTBFQjI4ODgw ODkxMUVCOEI1MDVGMjBDNEY5QUUwMi9NWnN4UlBCcWp5c3cxQklISC1FaEIzVC1o dWMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzMjJBNUY0MUQ2NjExRTJBM0YyN0Y3Qzcy RkQxRkYyL01ac3hSUEJxanlzdzFCSUhILUVoQjNULWh1Yy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 NzFDQi8wMTBFQjI4ODgwODkxMUVCOEI1MDVGMjBDNEY5QUUwMi9NWnN4UlBCcWp5 c3cxQklISC1FaEIzVC1odWMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQALx87wpttd5ErPp3X4KGEOBzQvitqPyKhd4xDL8YNutjbijgEh796O ORbbEuMPRxvALeN5iDa+5F7P/8VtbDrAwEp0/ugeg3TfVfDdp0Oy/jxIQ3exnzUf gQy4/V49i2SMq0PhAk7n+i/NVkLdWXVHL/QdPVbfv+54sfwcCqM2TBAZCk97qK44 q/32Nc5khhdtL33RtnjlLgCFED/qlKuI/0qqJK49fE2J7cwOsUBEjjDzU2dglhIv 36pLXnBH4zu9vMvB2WwUinPWqfvcVy3QNn8jX0x36crOzK6CbPEZqQLln8F9TInV aPu0+IkFxKSGsZD9bPNOnUUCFvQn0nD4 -----END CERTIFICATE-----Generated at Wed Jun 4 01:21:32 2025 by rpki-client