$ rpki-client -vvf rpki.apnic.net/member_repository/A91BA044/A7C7E65A074A11ED90A35414C4F9AE02/Alr-kZVIIEnyUJPriYEVxr03FEg.mft File: Alr-kZVIIEnyUJPriYEVxr03FEg.mft (raw, json) Hash identifier: NFLiIuSv1UvRx1FT+Lz4/hbUm6ak5N4+0v7/Udd+BVY= Subject key identifier: 20:91:20:66:E9:63:78:61:74:B6:F9:54:F3:93:32:98:1E:9C:F2:74 Authority key identifier: 02:5A:FE:91:95:48:20:49:F2:50:93:EB:89:81:15:C6:BD:37:14:48 Certificate issuer: /CN=A91BA044/serialNumber=025AFE9195482049F25093EB898115C6BD371448 Certificate serial: 0291 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Alr-kZVIIEnyUJPriYEVxr03FEg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91BA044/A7C7E65A074A11ED90A35414C4F9AE02/Alr-kZVIIEnyUJPriYEVxr03FEg.mft Manifest number: 028D Signing time: Mon 09 Jun 2025 01:09:57 +0000 Manifest this update: Mon 09 Jun 2025 01:09:56 +0000 Manifest next update: Mon 16 Jun 2025 01:09:56 +0000 Files and hashes: 1: Alr-kZVIIEnyUJPriYEVxr03FEg.crl (hash: yOi/HIMNSxpLWjS65UbGYrrpCyLh0yGRQcbYdotUWbA=) 2: 5CE70ACC074E11ED99CF6642C4F9AE02.roa (hash: u8H4NSNtBcIg5GrlIWnmn+sl29NyMYEZMtRVlCln8c0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91BA044/A7C7E65A074A11ED90A35414C4F9AE02/Alr-kZVIIEnyUJPriYEVxr03FEg.crl rsync://rpki.apnic.net/member_repository/A91BA044/A7C7E65A074A11ED90A35414C4F9AE02/Alr-kZVIIEnyUJPriYEVxr03FEg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Alr-kZVIIEnyUJPriYEVxr03FEg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 16 Jun 2025 01:09:55 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 657 (0x291) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91BA044, serialNumber=025AFE9195482049F25093EB898115C6BD371448 Validity Not Before: Jun 9 01:09:56 2025 GMT Not After : Jun 16 01:09:56 2025 GMT Subject: CN=68463464-0453 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:f7:bb:0d:54:0b:89:49:12:75:9c:b4:b5:4e: 3a:a5:2f:d2:69:2c:9a:2f:07:3b:48:fb:d7:25:fa: 9a:db:1c:f8:25:a7:df:85:b5:8f:3a:9c:30:0b:59: 38:53:07:6d:9c:10:ab:44:ea:97:9c:5e:b9:e9:1c: b5:18:b3:fd:fa:28:f5:87:d7:d6:ec:21:52:44:9a: 56:57:cb:57:8a:7a:92:8f:9d:ac:d6:d0:1c:d6:6b: 15:0a:cd:4c:bc:f4:d8:f8:23:27:6a:14:a1:54:cc: cf:ea:e1:97:42:dc:9c:ae:39:50:82:f3:42:31:cd: ee:a6:ca:44:b4:a2:02:90:63:16:36:a2:8e:34:3a: d3:fc:23:16:30:8d:62:8e:4d:a1:1c:0c:c1:ce:bb: 33:67:67:e7:b0:c8:af:9f:5f:59:dc:b9:15:8e:74: db:2c:80:0b:62:58:09:d9:9a:d4:74:fa:6d:82:0f: b5:5c:29:a7:66:3b:a7:1f:8d:62:6e:a3:5a:30:61: 99:f8:02:d2:58:68:fc:46:92:43:38:71:73:b5:bf: cc:da:12:b7:f1:a5:8e:96:70:d6:0d:7f:d3:7a:ea: fa:7e:1e:2f:fc:7a:98:b9:22:2b:fc:08:0f:eb:1e: de:d5:81:31:af:90:72:8e:99:fd:3b:63:1c:9d:bd: 23:d1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 20:91:20:66:E9:63:78:61:74:B6:F9:54:F3:93:32:98:1E:9C:F2:74 X509v3 Authority Key Identifier: keyid:02:5A:FE:91:95:48:20:49:F2:50:93:EB:89:81:15:C6:BD:37:14:48 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91BA044/A7C7E65A074A11ED90A35414C4F9AE02/Alr-kZVIIEnyUJPriYEVxr03FEg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Alr-kZVIIEnyUJPriYEVxr03FEg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91BA044/A7C7E65A074A11ED90A35414C4F9AE02/Alr-kZVIIEnyUJPriYEVxr03FEg.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 48:77:74:5c:30:96:58:0e:db:a4:78:f3:ed:14:38:80:c2:3c: d2:4e:3c:26:ff:18:7f:49:4b:eb:e8:d7:bd:b1:e5:55:70:68: 31:5f:34:bf:31:0b:49:d7:44:d5:44:5e:84:86:73:19:4f:45: 7e:90:53:43:a5:6c:98:15:00:f5:9f:a5:90:ce:66:8a:14:3c: e8:0a:9e:83:fd:ea:48:84:fc:3f:52:1f:ac:b6:c0:f2:55:bf: c4:a1:f2:c7:9d:5f:fa:be:14:2b:8e:1e:34:3b:95:3b:8a:2a: 06:b2:e6:c8:b4:0e:04:73:c3:c9:00:78:0e:e3:e3:18:cd:b0: 56:61:f3:53:78:3c:80:1e:33:4f:2f:a6:a3:27:75:91:0d:95: 2b:53:19:fd:9a:01:65:db:d1:89:d1:be:9a:9d:c5:55:85:f6: 59:dc:19:d0:dd:79:92:f2:e0:ad:e1:2b:60:28:fa:9c:4e:41: 48:da:89:cc:d9:bd:36:f2:6e:28:ce:1d:f2:aa:85:56:9a:34: 1a:8b:87:96:9c:55:ee:34:5d:6f:14:d8:46:ce:65:65:ad:4e: 75:8b:c7:61:ef:90:e5:62:1a:cf:cf:5c:63:56:93:58:d6:29: d1:30:90:63:c4:c9:ea:9e:43:03:be:45:44:6f:95:81:c3:a0: 36:99:4b:c2 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICApEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QkEwNDQxMTAvBgNVBAUTKDAyNUFGRTkxOTU0ODIwNDlGMjUwOTNFQjg5ODExNUM2 QkQzNzE0NDgwHhcNMjUwNjA5MDEwOTU2WhcNMjUwNjE2MDEwOTU2WjAYMRYwFAYD VQQDEw02ODQ2MzQ2NC0wNDUzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuPe7DVQLiUkSdZy0tU46pS/SaSyaLwc7SPvXJfqa2xz4JaffhbWPOpwwC1k4 UwdtnBCrROqXnF656Ry1GLP9+ij1h9fW7CFSRJpWV8tXinqSj52s1tAc1msVCs1M vPTY+CMnahShVMzP6uGXQtycrjlQgvNCMc3upspEtKICkGMWNqKONDrT/CMWMI1i jk2hHAzBzrszZ2fnsMivn19Z3LkVjnTbLIALYlgJ2ZrUdPptgg+1XCmnZjunH41i bqNaMGGZ+ALSWGj8RpJDOHFztb/M2hK38aWOlnDWDX/Teur6fh4v/HqYuSIr/AgP 6x7e1YExr5Byjpn9O2Mcnb0j0QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFCCRIGbp Y3hhdLb5VPOTMpgenPJ0MB8GA1UdIwQYMBaAFAJa/pGVSCBJ8lCT64mBFca9NxRI MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCQTA0NC9BN0M3RTY1QTA3 NEExMUVEOTBBMzU0MTRDNEY5QUUwMi9BbHIta1pWSUlFbnlVSlByaVlFVnhyMDNG RWcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0Fsci1rWlZJSUVueVVKUHJpWUVWeHIwM0ZFZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC QTA0NC9BN0M3RTY1QTA3NEExMUVEOTBBMzU0MTRDNEY5QUUwMi9BbHIta1pWSUlF bnlVSlByaVlFVnhyMDNGRWcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBId3RcMJZYDtukePPtFDiAwjzSTjwm/xh/SUvr6Ne9seVVcGgxXzS/ MQtJ10TVRF6EhnMZT0V+kFNDpWyYFQD1n6WQzmaKFDzoCp6D/epIhPw/Uh+stsDy Vb/EofLHnV/6vhQrjh40O5U7iioGsubItA4Ec8PJAHgO4+MYzbBWYfNTeDyAHjNP L6ajJ3WRDZUrUxn9mgFl29GJ0b6ancVVhfZZ3BnQ3XmS8uCt4StgKPqcTkFI2onM 2b028m4ozh3yqoVWmjQai4eWnFXuNF1vFNhGzmVlrU51i8dh75DlYhrPz1xjVpNY 1inRMJBjxMnqnkMDvkVEb5WBw6A2mUvC -----END CERTIFICATE-----Generated at Mon Jun 9 07:16:30 2025 by rpki-client