$ rpki-client -vvf rpki.apnic.net/member_repository/A91C79E1/6556F8DAD78411EA9C5D9640C4F9AE02/kzrI56xL07WCmJ_Mty_JJ9cWQks.mft File: kzrI56xL07WCmJ_Mty_JJ9cWQks.mft (raw, json) Hash identifier: //yJSGRYm5WeXZiMFaaLrTF/RhNeyPQ5HSYaGIl08ZQ= Subject key identifier: BE:2A:A3:B1:16:D2:9B:1B:40:94:1A:79:98:B0:FA:66:C2:E2:02:BC Authority key identifier: 93:3A:C8:E7:AC:4B:D3:B5:82:98:9F:CC:B7:2F:C9:27:D7:16:42:4B Certificate issuer: /CN=A91C79E1/serialNumber=933AC8E7AC4BD3B582989FCCB72FC927D716424B Certificate serial: 081C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kzrI56xL07WCmJ_Mty_JJ9cWQks.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C79E1/6556F8DAD78411EA9C5D9640C4F9AE02/kzrI56xL07WCmJ_Mty_JJ9cWQks.mft Manifest number: 0816 Signing time: Fri 30 May 2025 21:04:28 +0000 Manifest this update: Fri 30 May 2025 21:04:27 +0000 Manifest next update: Fri 06 Jun 2025 21:04:27 +0000 Files and hashes: 1: kzrI56xL07WCmJ_Mty_JJ9cWQks.crl (hash: bU5F4xNXToSSg/cRpPOkYJd0xbQQxiAYjEEEacFGRgI=) 2: 26D0F9B82A6611ECB12FB439C4F9AE02.roa (hash: o8uKSFAZOoKiAV/aw+gEXp611EqrXFJMlAGF3VnwD9c=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C79E1/6556F8DAD78411EA9C5D9640C4F9AE02/kzrI56xL07WCmJ_Mty_JJ9cWQks.crl rsync://rpki.apnic.net/member_repository/A91C79E1/6556F8DAD78411EA9C5D9640C4F9AE02/kzrI56xL07WCmJ_Mty_JJ9cWQks.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kzrI56xL07WCmJ_Mty_JJ9cWQks.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 06 Jun 2025 21:04:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2076 (0x81c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C79E1, serialNumber=933AC8E7AC4BD3B582989FCCB72FC927D716424B Validity Not Before: May 30 21:04:27 2025 GMT Not After : Jun 6 21:04:27 2025 GMT Subject: CN=683a1d5c-1103 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:d9:d6:7f:47:14:53:b6:a5:9e:ba:72:4e:54: 86:6d:e9:8f:90:9e:94:d1:5b:ea:c0:6b:89:e9:cf: 16:9a:af:32:a4:45:ec:67:bb:28:79:78:cf:d9:11: 64:ec:fa:3b:4e:fd:ac:cc:90:15:a1:b6:64:77:46: b5:ab:55:e7:3a:e0:4c:7b:cb:46:6b:e5:8a:ad:e5: b7:98:75:9d:f8:c0:25:c7:69:ce:39:34:ba:6f:2c: 90:95:9a:d8:ea:f7:87:67:3d:86:de:b4:5d:72:6d: f3:cf:d3:64:37:94:53:e8:cd:31:1e:08:79:b1:1a: 7f:c9:50:64:86:5a:b8:63:2c:c6:0a:13:84:3b:33: 3b:83:3a:72:a1:26:a3:06:24:37:56:b1:f9:0c:bc: 73:a7:51:e8:f2:bc:06:1a:84:90:9b:3d:15:da:4e: ca:8a:29:1a:53:ab:af:5d:86:0c:88:38:a7:4e:de: ce:72:67:2b:ae:48:5f:6a:f4:46:99:a7:2e:ec:f8: 34:8c:48:ab:a0:a3:13:8e:dc:b1:0d:92:9e:99:0f: 08:55:a0:9e:da:cc:2b:48:af:aa:cc:23:25:01:32: 36:69:2e:12:d6:08:81:31:77:5a:72:f0:af:a0:47: bc:34:7e:74:45:f3:d7:15:a4:d5:8d:1f:82:6d:23: 21:5f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BE:2A:A3:B1:16:D2:9B:1B:40:94:1A:79:98:B0:FA:66:C2:E2:02:BC X509v3 Authority Key Identifier: keyid:93:3A:C8:E7:AC:4B:D3:B5:82:98:9F:CC:B7:2F:C9:27:D7:16:42:4B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C79E1/6556F8DAD78411EA9C5D9640C4F9AE02/kzrI56xL07WCmJ_Mty_JJ9cWQks.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kzrI56xL07WCmJ_Mty_JJ9cWQks.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C79E1/6556F8DAD78411EA9C5D9640C4F9AE02/kzrI56xL07WCmJ_Mty_JJ9cWQks.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 1e:b8:24:05:4d:d0:3c:b3:30:b5:cb:f8:c8:7b:20:98:52:ce: 08:af:77:0c:91:3a:58:fb:0e:2d:6e:40:82:7b:23:73:5c:f0: 26:e0:6d:68:e4:ce:84:83:ec:43:7d:a2:85:80:b3:c7:b0:34: c7:ca:82:a8:0e:36:e0:2a:ca:1a:21:43:80:40:47:04:64:a6: 8b:29:65:08:00:68:4a:48:c7:2e:71:d7:a3:d4:c7:31:31:cf: f5:41:89:fa:f6:80:c8:03:fa:7c:15:9c:d4:58:bc:39:ea:86: b4:81:a0:2d:f0:9a:0b:a2:d9:7e:3e:b7:a3:58:13:06:d4:cc: c0:b7:ac:75:bc:1d:66:0b:b3:31:a5:9b:ef:27:05:8a:48:f7: fc:fc:66:bc:9f:db:74:b6:04:3e:13:7f:3b:bb:68:54:ef:6a: c7:e1:f9:65:f8:c5:ac:d5:61:d3:10:28:5e:73:5e:fa:88:13: 37:96:51:96:e6:58:37:25:14:24:a6:ff:4d:84:de:af:c2:30: 68:c2:87:bc:85:fd:5e:fb:64:91:05:d7:e2:76:50:dd:e7:45: 3a:26:36:72:e6:71:68:10:de:8b:50:89:29:3c:60:6a:b9:6a: 52:7d:ef:cf:5b:98:01:ba:9d:9a:ab:9e:c8:7b:b1:4d:94:c2: 58:d7:58:60 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCBwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Qzc5RTExMTAvBgNVBAUTKDkzM0FDOEU3QUM0QkQzQjU4Mjk4OUZDQ0I3MkZDOTI3 RDcxNjQyNEIwHhcNMjUwNTMwMjEwNDI3WhcNMjUwNjA2MjEwNDI3WjAYMRYwFAYD VQQDEw02ODNhMWQ1Yy0xMTAzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtdnWf0cUU7alnrpyTlSGbemPkJ6U0VvqwGuJ6c8Wmq8ypEXsZ7soeXjP2RFk 7Po7Tv2szJAVobZkd0a1q1XnOuBMe8tGa+WKreW3mHWd+MAlx2nOOTS6byyQlZrY 6veHZz2G3rRdcm3zz9NkN5RT6M0xHgh5sRp/yVBkhlq4YyzGChOEOzM7gzpyoSaj BiQ3VrH5DLxzp1Ho8rwGGoSQmz0V2k7KiikaU6uvXYYMiDinTt7OcmcrrkhfavRG macu7Pg0jEiroKMTjtyxDZKemQ8IVaCe2swrSK+qzCMlATI2aS4S1giBMXdacvCv oEe8NH50RfPXFaTVjR+CbSMhXwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFL4qo7EW 0psbQJQaeZiw+mbC4gK8MB8GA1UdIwQYMBaAFJM6yOesS9O1gpifzLcvySfXFkJL MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDNzlFMS82NTU2RjhEQUQ3 ODQxMUVBOUM1RDk2NDBDNEY5QUUwMi9renJJNTZ4TDA3V0NtSl9NdHlfSko5Y1dR a3MuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2t6ckk1NnhMMDdXQ21KX010eV9KSjljV1Frcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD NzlFMS82NTU2RjhEQUQ3ODQxMUVBOUM1RDk2NDBDNEY5QUUwMi9renJJNTZ4TDA3 V0NtSl9NdHlfSko5Y1dRa3MubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAeuCQFTdA8szC1y/jIeyCYUs4Ir3cMkTpY+w4tbkCCeyNzXPAm4G1o 5M6Eg+xDfaKFgLPHsDTHyoKoDjbgKsoaIUOAQEcEZKaLKWUIAGhKSMcucdej1Mcx Mc/1QYn69oDIA/p8FZzUWLw56oa0gaAt8JoLotl+PrejWBMG1MzAt6x1vB1mC7Mx pZvvJwWKSPf8/Ga8n9t0tgQ+E387u2hU72rH4fll+MWs1WHTEChec176iBM3llGW 5lg3JRQkpv9NhN6vwjBowoe8hf1e+2SRBdfidlDd50U6JjZy5nFoEN6LUIkpPGBq uWpSfe/PW5gBup2aq57Ie7FNlMJY11hg -----END CERTIFICATE-----Generated at Sat May 31 17:56:25 2025 by rpki-client