$ rpki-client -vvf rpki.apnic.net/member_repository/A91795CA/F3643B10830511EB97189B39C4F9AE02/2Vzl-zaRXD2M2xDbhkpMcZM82kE.mft File: 2Vzl-zaRXD2M2xDbhkpMcZM82kE.mft (raw, json) Hash identifier: 4sEjvNoIvoVqXpzqO3UlumAD4DhkvHu7EqaSNodJUrE= Subject key identifier: 7A:43:D0:C8:01:42:60:66:37:0C:02:F1:6E:72:D3:D9:5A:99:29:B7 Authority key identifier: D9:5C:E5:FB:36:91:5C:3D:8C:DB:10:DB:86:4A:4C:71:93:3C:DA:41 Certificate issuer: /CN=A91795CA/serialNumber=D95CE5FB36915C3D8CDB10DB864A4C71933CDA41 Certificate serial: 0665 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2Vzl-zaRXD2M2xDbhkpMcZM82kE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91795CA/F3643B10830511EB97189B39C4F9AE02/2Vzl-zaRXD2M2xDbhkpMcZM82kE.mft Manifest number: 065C Signing time: Thu 24 Apr 2025 22:18:31 +0000 Manifest this update: Thu 24 Apr 2025 22:18:30 +0000 Manifest next update: Thu 01 May 2025 22:18:30 +0000 Files and hashes: 1: 2Vzl-zaRXD2M2xDbhkpMcZM82kE.crl (hash: 4BuWyO8VBfpelbhwva6PRou2SVYIq7VrzgwigUNDLd8=) 2: 0BEE202087BA11EBBBA56067C4F9AE02.roa (hash: RcqGn4DlzkrU8iX9c04+ABUEIkZSxXOe2ZYW/HJVZ60=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91795CA/F3643B10830511EB97189B39C4F9AE02/2Vzl-zaRXD2M2xDbhkpMcZM82kE.crl rsync://rpki.apnic.net/member_repository/A91795CA/F3643B10830511EB97189B39C4F9AE02/2Vzl-zaRXD2M2xDbhkpMcZM82kE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2Vzl-zaRXD2M2xDbhkpMcZM82kE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 01 May 2025 22:18:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1637 (0x665) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91795CA, serialNumber=D95CE5FB36915C3D8CDB10DB864A4C71933CDA41 Validity Not Before: Apr 24 22:18:30 2025 GMT Not After : May 1 22:18:30 2025 GMT Subject: CN=680ab8b7-9ae3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a3:60:1d:a1:95:64:f3:f7:fd:12:bf:33:b5:02: eb:34:89:d7:77:a9:fa:ca:93:ff:ea:27:f2:7a:36: 71:e1:a6:90:67:75:63:3b:47:6a:6b:12:2c:12:e3: 24:f0:07:56:3e:83:f2:26:91:88:a7:6d:af:2e:07: a2:6e:de:f0:58:e0:90:b0:d1:71:44:92:73:c6:71: 83:5f:1d:87:a0:19:41:21:d3:22:ff:08:0c:52:88: b3:0d:a6:65:1a:65:55:24:89:f5:83:b2:30:d8:88: b2:a8:4e:08:75:1e:fe:f9:0a:4e:1d:b4:0d:ae:28: 90:e9:aa:a9:a9:20:13:d2:1c:b1:5d:80:fd:04:c6: a9:d4:dc:12:31:7f:be:7c:73:d5:3b:a1:25:1c:09: cd:bf:85:b0:2a:69:b9:27:a3:12:d2:fa:a8:7c:8c: 06:e3:de:ae:0b:00:5d:c4:c8:4e:14:87:b8:fe:71: 55:ac:b1:79:11:5e:f6:24:be:f9:22:85:69:11:44: 7f:a4:0e:0e:6b:c8:c3:52:6d:b2:3d:a4:d4:a0:a6: b9:1c:03:01:f9:3e:57:e9:16:69:33:9c:e9:04:67: d6:be:bd:89:e1:2a:25:50:e2:21:46:53:18:d6:1e: 78:78:49:44:08:73:b9:a6:73:e4:85:06:8e:23:ac: 34:31 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7A:43:D0:C8:01:42:60:66:37:0C:02:F1:6E:72:D3:D9:5A:99:29:B7 X509v3 Authority Key Identifier: keyid:D9:5C:E5:FB:36:91:5C:3D:8C:DB:10:DB:86:4A:4C:71:93:3C:DA:41 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91795CA/F3643B10830511EB97189B39C4F9AE02/2Vzl-zaRXD2M2xDbhkpMcZM82kE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2Vzl-zaRXD2M2xDbhkpMcZM82kE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91795CA/F3643B10830511EB97189B39C4F9AE02/2Vzl-zaRXD2M2xDbhkpMcZM82kE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 25:c9:ec:30:b7:23:51:e6:40:05:cf:40:7f:36:fd:67:3e:b3: a7:59:20:76:48:82:71:15:3a:0b:1c:3e:db:0b:7f:b0:0a:61: 4a:d4:72:3f:49:28:e2:91:79:c3:ac:d8:55:83:64:ee:41:0d: 7d:66:b7:91:5f:e4:31:03:b7:74:49:55:ae:0a:8b:dd:43:12: e5:0e:4c:7f:73:f7:19:02:77:e2:0f:49:c3:3f:d7:1d:68:40: ce:8b:18:dc:4a:09:0e:11:c3:a9:f5:a3:6c:4d:ca:85:55:70: e3:98:01:75:b2:ee:06:a3:09:1c:65:3b:37:88:19:40:75:d7: b0:cc:49:a7:4a:57:da:32:b8:3c:7a:b7:af:9d:21:ea:66:06: fe:7b:ee:9f:14:56:ce:b1:16:02:bd:2c:72:1a:54:fb:a5:30: 41:e4:24:db:7e:93:5a:e4:fe:9a:50:49:b6:15:7d:5f:81:0f: ad:bf:3c:73:6f:50:1f:9a:c4:d9:31:bc:80:7f:1d:3c:8c:37: f1:38:de:55:cf:9f:f5:f4:e9:20:20:ef:34:e9:3b:6d:58:d1: be:5e:5e:35:ba:cb:c5:51:8a:40:25:75:b4:47:61:76:90:a3: 54:76:85:37:ba:a8:e4:a2:f5:3c:15:0e:ee:38:48:b2:37:8f: 29:f1:de:38 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBmUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Nzk1Q0ExMTAvBgNVBAUTKEQ5NUNFNUZCMzY5MTVDM0Q4Q0RCMTBEQjg2NEE0Qzcx OTMzQ0RBNDEwHhcNMjUwNDI0MjIxODMwWhcNMjUwNTAxMjIxODMwWjAYMRYwFAYD VQQDEw02ODBhYjhiNy05YWUzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAo2AdoZVk8/f9Er8ztQLrNInXd6n6ypP/6ifyejZx4aaQZ3VjO0dqaxIsEuMk 8AdWPoPyJpGIp22vLgeibt7wWOCQsNFxRJJzxnGDXx2HoBlBIdMi/wgMUoizDaZl GmVVJIn1g7Iw2IiyqE4IdR7++QpOHbQNriiQ6aqpqSAT0hyxXYD9BMap1NwSMX++ fHPVO6ElHAnNv4WwKmm5J6MS0vqofIwG496uCwBdxMhOFIe4/nFVrLF5EV72JL75 IoVpEUR/pA4Oa8jDUm2yPaTUoKa5HAMB+T5X6RZpM5zpBGfWvr2J4SolUOIhRlMY 1h54eElECHO5pnPkhQaOI6w0MQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFHpD0MgB QmBmNwwC8W5y09lamSm3MB8GA1UdIwQYMBaAFNlc5fs2kVw9jNsQ24ZKTHGTPNpB MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3OTVDQS9GMzY0M0IxMDgz MDUxMUVCOTcxODlCMzlDNEY5QUUwMi8yVnpsLXphUlhEMk0yeERiaGtwTWNaTTgy a0UuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzJWemwtemFSWEQyTTJ4RGJoa3BNY1pNODJrRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 OTVDQS9GMzY0M0IxMDgzMDUxMUVCOTcxODlCMzlDNEY5QUUwMi8yVnpsLXphUlhE Mk0yeERiaGtwTWNaTTgya0UubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAlyewwtyNR5kAFz0B/Nv1nPrOnWSB2SIJxFToLHD7bC3+wCmFK1HI/ SSjikXnDrNhVg2TuQQ19ZreRX+QxA7d0SVWuCovdQxLlDkx/c/cZAnfiD0nDP9cd aEDOixjcSgkOEcOp9aNsTcqFVXDjmAF1su4GowkcZTs3iBlAddewzEmnSlfaMrg8 erevnSHqZgb+e+6fFFbOsRYCvSxyGlT7pTBB5CTbfpNa5P6aUEm2FX1fgQ+tvzxz b1AfmsTZMbyAfx08jDfxON5Vz5/19OkgIO806TttWNG+Xl41usvFUYpAJXW0R2F2 kKNUdoU3uqjkovU8FQ7uOEiyN48p8d44 -----END CERTIFICATE-----Generated at Sat Apr 26 04:39:39 2025 by rpki-client