$ rpki-client -vvf rpki.apnic.net/member_repository/A91BA044/A7C7E65A074A11ED90A35414C4F9AE02/Alr-kZVIIEnyUJPriYEVxr03FEg.mft File: Alr-kZVIIEnyUJPriYEVxr03FEg.mft (raw, json) Hash identifier: Hgy+B+NqwdwHJgycgJwk2FkBwN+4DObgz3FAjNgtM+E= Subject key identifier: E6:0C:05:AF:F4:08:72:E4:93:EC:66:1E:EC:92:18:97:60:60:A1:07 Authority key identifier: 02:5A:FE:91:95:48:20:49:F2:50:93:EB:89:81:15:C6:BD:37:14:48 Certificate issuer: /CN=A91BA044/serialNumber=025AFE9195482049F25093EB898115C6BD371448 Certificate serial: 02B6 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Alr-kZVIIEnyUJPriYEVxr03FEg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91BA044/A7C7E65A074A11ED90A35414C4F9AE02/Alr-kZVIIEnyUJPriYEVxr03FEg.mft Manifest number: 02B2 Signing time: Thu 21 Aug 2025 01:39:48 +0000 Manifest this update: Thu 21 Aug 2025 01:39:47 +0000 Manifest next update: Thu 28 Aug 2025 01:39:47 +0000 Files and hashes: 1: Alr-kZVIIEnyUJPriYEVxr03FEg.crl (hash: YKa78YtNueNKPEkW37pjRO0jjSt2vCYPcbxYDoPfUNs=) 2: 5CE70ACC074E11ED99CF6642C4F9AE02.roa (hash: u8H4NSNtBcIg5GrlIWnmn+sl29NyMYEZMtRVlCln8c0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91BA044/A7C7E65A074A11ED90A35414C4F9AE02/Alr-kZVIIEnyUJPriYEVxr03FEg.crl rsync://rpki.apnic.net/member_repository/A91BA044/A7C7E65A074A11ED90A35414C4F9AE02/Alr-kZVIIEnyUJPriYEVxr03FEg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Alr-kZVIIEnyUJPriYEVxr03FEg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 28 Aug 2025 01:39:47 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 694 (0x2b6) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91BA044, serialNumber=025AFE9195482049F25093EB898115C6BD371448 Validity Not Before: Aug 21 01:39:47 2025 GMT Not After : Aug 28 01:39:47 2025 GMT Subject: CN=68a678e4-0956 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a7:84:05:f2:b1:89:05:9d:91:c3:92:69:33:45: ed:ce:86:9b:a7:e4:a9:56:dd:64:82:b6:ae:2b:b1: f8:ba:c5:b0:99:76:c2:c8:66:89:2f:5d:f0:af:dc: 0e:a3:1f:38:03:53:84:25:a6:78:e4:9c:45:80:f9: 9d:c3:0a:9c:46:de:cf:ac:51:9f:c7:be:eb:3f:1e: a6:90:58:62:34:3f:0d:28:62:92:e9:34:f1:f1:3f: df:e9:db:e2:81:6e:dd:31:54:29:83:67:13:ab:f3: fb:1e:c2:70:c2:fe:b1:e2:0e:44:83:59:47:60:45: db:3d:e4:2d:6d:29:33:3b:70:7b:87:d7:7c:fe:8c: 1b:af:d9:dc:30:e0:02:1f:6d:9d:c0:e1:c4:ff:ce: 55:ca:af:02:5e:a8:f7:22:1c:a1:20:36:93:a7:a0: 38:8d:b4:00:74:db:df:b3:27:12:51:52:e2:59:55: 73:52:19:f9:64:17:31:06:52:31:c0:7d:f6:92:3c: d7:32:75:ab:b0:45:9a:02:55:0c:3e:ea:02:bb:0f: 8c:ba:b3:bd:2e:36:18:33:be:47:a2:0b:f9:0d:0e: 80:6c:fa:b0:ca:e3:ef:ae:89:a2:59:f6:36:9c:36: 01:4f:f3:3c:a1:c0:17:79:c4:ef:84:6e:c7:11:71: ba:eb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E6:0C:05:AF:F4:08:72:E4:93:EC:66:1E:EC:92:18:97:60:60:A1:07 X509v3 Authority Key Identifier: keyid:02:5A:FE:91:95:48:20:49:F2:50:93:EB:89:81:15:C6:BD:37:14:48 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91BA044/A7C7E65A074A11ED90A35414C4F9AE02/Alr-kZVIIEnyUJPriYEVxr03FEg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Alr-kZVIIEnyUJPriYEVxr03FEg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91BA044/A7C7E65A074A11ED90A35414C4F9AE02/Alr-kZVIIEnyUJPriYEVxr03FEg.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 8d:90:ba:1d:67:fc:8b:ea:14:90:17:91:8d:5b:0a:7e:30:f0: 21:ab:79:77:d1:c6:df:ee:3e:b3:86:d8:88:8f:39:1c:61:bb: 10:88:e9:d0:16:f7:fc:7c:84:20:f3:b5:77:d8:d5:f8:9f:a6: 76:52:b5:a0:73:1e:27:34:df:5c:91:15:b5:16:67:b0:0f:47: 43:30:c8:5f:ee:b4:7c:fc:65:01:dc:92:96:6f:eb:6e:38:8b: 32:26:df:72:c8:94:7b:e1:22:06:8e:89:d5:f3:ab:d9:e5:54: fc:08:e8:ec:75:0a:43:d2:c2:52:92:c4:5a:a9:6c:a8:33:a9: eb:e1:b1:70:05:89:d6:2c:de:ca:1a:80:dc:e9:a7:cd:62:34: 80:7b:34:a1:75:67:7c:e0:a0:1d:7b:f2:21:80:75:2b:a6:05: 9e:fb:e3:1d:42:a9:0e:ad:d4:3e:85:ba:db:46:d4:e7:96:b3: 9f:76:7e:a3:e5:80:2d:44:48:75:3b:b8:bd:2d:5f:35:d9:3c: b1:62:46:2d:58:97:7b:45:e3:02:87:14:0f:dc:7d:6b:78:1d: 0b:51:2e:6f:36:07:c0:d3:4b:d3:fb:8c:bb:eb:0f:b9:88:df: a4:4f:b0:52:d3:e3:39:ba:a2:7c:b7:f4:71:25:b4:05:24:7e: 3f:93:7b:ef -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICArYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QkEwNDQxMTAvBgNVBAUTKDAyNUFGRTkxOTU0ODIwNDlGMjUwOTNFQjg5ODExNUM2 QkQzNzE0NDgwHhcNMjUwODIxMDEzOTQ3WhcNMjUwODI4MDEzOTQ3WjAYMRYwFAYD VQQDEw02OGE2NzhlNC0wOTU2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAp4QF8rGJBZ2Rw5JpM0Xtzoabp+SpVt1kgrauK7H4usWwmXbCyGaJL13wr9wO ox84A1OEJaZ45JxFgPmdwwqcRt7PrFGfx77rPx6mkFhiND8NKGKS6TTx8T/f6dvi gW7dMVQpg2cTq/P7HsJwwv6x4g5Eg1lHYEXbPeQtbSkzO3B7h9d8/owbr9ncMOAC H22dwOHE/85Vyq8CXqj3IhyhIDaTp6A4jbQAdNvfsycSUVLiWVVzUhn5ZBcxBlIx wH32kjzXMnWrsEWaAlUMPuoCuw+MurO9LjYYM75Hogv5DQ6AbPqwyuPvromiWfY2 nDYBT/M8ocAXecTvhG7HEXG66wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFOYMBa/0 CHLkk+xmHuySGJdgYKEHMB8GA1UdIwQYMBaAFAJa/pGVSCBJ8lCT64mBFca9NxRI MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCQTA0NC9BN0M3RTY1QTA3 NEExMUVEOTBBMzU0MTRDNEY5QUUwMi9BbHIta1pWSUlFbnlVSlByaVlFVnhyMDNG RWcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0Fsci1rWlZJSUVueVVKUHJpWUVWeHIwM0ZFZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC QTA0NC9BN0M3RTY1QTA3NEExMUVEOTBBMzU0MTRDNEY5QUUwMi9BbHIta1pWSUlF bnlVSlByaVlFVnhyMDNGRWcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCNkLodZ/yL6hSQF5GNWwp+MPAhq3l30cbf7j6zhtiIjzkcYbsQiOnQ Fvf8fIQg87V32NX4n6Z2UrWgcx4nNN9ckRW1FmewD0dDMMhf7rR8/GUB3JKWb+tu OIsyJt9yyJR74SIGjonV86vZ5VT8COjsdQpD0sJSksRaqWyoM6nr4bFwBYnWLN7K GoDc6afNYjSAezShdWd84KAde/IhgHUrpgWe++MdQqkOrdQ+hbrbRtTnlrOfdn6j 5YAtREh1O7i9LV812TyxYkYtWJd7ReMChxQP3H1reB0LUS5vNgfA00vT+4y76w+5 iN+kT7BS0+M5uqJ8t/RxJbQFJH4/k3vv -----END CERTIFICATE-----Generated at Fri Aug 22 16:18:18 2025 by rpki-client