$ rpki-client -vvf rpki.apnic.net/member_repository/A91795CA/F3643B10830511EB97189B39C4F9AE02/2Vzl-zaRXD2M2xDbhkpMcZM82kE.mft File: 2Vzl-zaRXD2M2xDbhkpMcZM82kE.mft (raw, json) Hash identifier: GryYW+e/owVZ2eTtlYEf6Aysah5k2xhsxiieJlhQc5g= Subject key identifier: 2A:DE:85:70:95:DB:32:16:94:BB:CA:A4:2D:5A:75:48:CB:EA:E5:71 Authority key identifier: D9:5C:E5:FB:36:91:5C:3D:8C:DB:10:DB:86:4A:4C:71:93:3C:DA:41 Certificate issuer: /CN=A91795CA/serialNumber=D95CE5FB36915C3D8CDB10DB864A4C71933CDA41 Certificate serial: 0680 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2Vzl-zaRXD2M2xDbhkpMcZM82kE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91795CA/F3643B10830511EB97189B39C4F9AE02/2Vzl-zaRXD2M2xDbhkpMcZM82kE.mft Manifest number: 0676 Signing time: Thu 12 Jun 2025 22:05:01 +0000 Manifest this update: Thu 12 Jun 2025 22:05:00 +0000 Manifest next update: Thu 19 Jun 2025 22:05:00 +0000 Files and hashes: 1: 2Vzl-zaRXD2M2xDbhkpMcZM82kE.crl (hash: Ks7QdF1V4jxnsjd+rmKqN+8YGXsamxGkNBHIncAH/0A=) 2: 0BEE202087BA11EBBBA56067C4F9AE02.roa (hash: Lz3W/TkDVHeZx5YYagD6lr1rtN4/8q3JKJK/D1U5/sg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91795CA/F3643B10830511EB97189B39C4F9AE02/2Vzl-zaRXD2M2xDbhkpMcZM82kE.crl rsync://rpki.apnic.net/member_repository/A91795CA/F3643B10830511EB97189B39C4F9AE02/2Vzl-zaRXD2M2xDbhkpMcZM82kE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2Vzl-zaRXD2M2xDbhkpMcZM82kE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 19 Jun 2025 22:05:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1664 (0x680) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91795CA, serialNumber=D95CE5FB36915C3D8CDB10DB864A4C71933CDA41 Validity Not Before: Jun 12 22:05:00 2025 GMT Not After : Jun 19 22:05:00 2025 GMT Subject: CN=684b4f0c-1ddc Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c9:08:53:d9:d2:d2:fe:e7:65:48:20:d7:25:c8: f5:fc:0e:2a:d6:8d:00:b3:67:f7:7f:0c:27:82:a3: 54:d3:d7:7a:0a:7c:66:16:0a:fe:ed:a6:87:f1:06: 38:97:b7:11:b5:c7:93:21:81:94:97:93:e3:22:56: c4:eb:90:27:b8:ba:c7:0d:cc:08:d9:09:be:dc:fe: 11:38:80:56:52:78:87:fb:7e:a8:ca:ee:ed:9e:80: d3:00:6d:a0:61:98:e4:92:88:93:7e:00:af:95:eb: 0c:29:ec:56:f4:bd:3b:d4:3c:22:03:a6:a6:92:d5: 6f:e8:d9:0f:0f:79:71:0c:0d:0e:8a:c5:ea:a7:0e: 27:a7:26:05:b4:97:b3:f5:83:d1:55:ea:67:77:f9: 52:52:f3:d5:3d:02:9f:46:60:40:21:7f:ee:42:c5: 32:28:7e:19:58:35:52:6f:c5:d6:e5:10:65:c6:3b: 59:6e:c6:af:46:92:e2:8d:57:d7:04:c4:65:59:fa: 9a:da:e2:d8:c1:59:42:d0:08:80:90:19:14:8e:6f: fd:94:5d:9c:4b:be:32:32:5e:e2:d4:b1:60:4c:ee: 89:88:ee:93:44:3b:7a:37:f7:a8:69:9c:32:13:93: d2:d9:58:d4:64:2c:75:22:5c:04:ae:28:34:54:bb: 12:ab Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2A:DE:85:70:95:DB:32:16:94:BB:CA:A4:2D:5A:75:48:CB:EA:E5:71 X509v3 Authority Key Identifier: keyid:D9:5C:E5:FB:36:91:5C:3D:8C:DB:10:DB:86:4A:4C:71:93:3C:DA:41 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91795CA/F3643B10830511EB97189B39C4F9AE02/2Vzl-zaRXD2M2xDbhkpMcZM82kE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2Vzl-zaRXD2M2xDbhkpMcZM82kE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91795CA/F3643B10830511EB97189B39C4F9AE02/2Vzl-zaRXD2M2xDbhkpMcZM82kE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 40:cb:5e:bc:2a:74:10:ae:3d:de:de:ad:8f:a7:1a:fa:44:69: fe:19:7c:25:85:6f:1c:bd:04:35:66:19:2e:c1:9d:fd:44:c7: 55:ec:59:0d:3f:9d:bd:3a:43:46:62:17:0d:36:e8:69:39:d6: b3:0a:d7:90:a4:16:72:bd:9a:71:b0:ed:01:c1:fe:1b:c0:a3: c0:4a:00:b8:20:ac:30:5c:60:b7:8f:b6:9d:d1:83:f0:e2:e8: 24:4f:40:8d:2c:a0:bd:44:18:3f:a8:d1:30:36:33:3a:a9:b2: f1:5c:b2:87:03:b1:42:c1:ed:ce:c6:a7:d8:b8:af:29:0b:ac: fb:01:99:f1:08:9b:b6:00:cf:97:ad:af:5e:01:a2:eb:3c:e0: 27:df:7e:ee:53:6f:72:1b:1b:68:5e:1c:a6:9f:6e:f4:aa:3b: 73:16:49:ea:02:86:c6:c9:d4:65:49:84:42:ec:bc:8d:c6:32: 9d:f4:f1:3d:06:a2:42:6e:44:3a:dc:82:20:9a:af:9b:64:e9: 6c:23:08:7a:60:5a:d6:fb:5e:d9:9e:9d:68:3c:96:31:2d:12: d4:a0:62:3f:d9:f4:9f:de:62:05:41:3e:0c:82:d3:00:07:62: 4e:6d:28:2f:b6:96:be:47:22:d6:6e:38:02:63:ad:3d:2e:f8: 87:65:31:9b -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBoAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Nzk1Q0ExMTAvBgNVBAUTKEQ5NUNFNUZCMzY5MTVDM0Q4Q0RCMTBEQjg2NEE0Qzcx OTMzQ0RBNDEwHhcNMjUwNjEyMjIwNTAwWhcNMjUwNjE5MjIwNTAwWjAYMRYwFAYD VQQDEw02ODRiNGYwYy0xZGRjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyQhT2dLS/udlSCDXJcj1/A4q1o0As2f3fwwngqNU09d6CnxmFgr+7aaH8QY4 l7cRtceTIYGUl5PjIlbE65AnuLrHDcwI2Qm+3P4ROIBWUniH+36oyu7tnoDTAG2g YZjkkoiTfgCvlesMKexW9L071DwiA6amktVv6NkPD3lxDA0OisXqpw4npyYFtJez 9YPRVepnd/lSUvPVPQKfRmBAIX/uQsUyKH4ZWDVSb8XW5RBlxjtZbsavRpLijVfX BMRlWfqa2uLYwVlC0AiAkBkUjm/9lF2cS74yMl7i1LFgTO6JiO6TRDt6N/eoaZwy E5PS2VjUZCx1IlwErig0VLsSqwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFCrehXCV 2zIWlLvKpC1adUjL6uVxMB8GA1UdIwQYMBaAFNlc5fs2kVw9jNsQ24ZKTHGTPNpB MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3OTVDQS9GMzY0M0IxMDgz MDUxMUVCOTcxODlCMzlDNEY5QUUwMi8yVnpsLXphUlhEMk0yeERiaGtwTWNaTTgy a0UuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzJWemwtemFSWEQyTTJ4RGJoa3BNY1pNODJrRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 OTVDQS9GMzY0M0IxMDgzMDUxMUVCOTcxODlCMzlDNEY5QUUwMi8yVnpsLXphUlhE Mk0yeERiaGtwTWNaTTgya0UubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBAy168KnQQrj3e3q2Ppxr6RGn+GXwlhW8cvQQ1ZhkuwZ39RMdV7FkN P529OkNGYhcNNuhpOdazCteQpBZyvZpxsO0Bwf4bwKPASgC4IKwwXGC3j7ad0YPw 4ugkT0CNLKC9RBg/qNEwNjM6qbLxXLKHA7FCwe3OxqfYuK8pC6z7AZnxCJu2AM+X ra9eAaLrPOAn337uU29yGxtoXhymn270qjtzFknqAobGydRlSYRC7LyNxjKd9PE9 BqJCbkQ63IIgmq+bZOlsIwh6YFrW+17Znp1oPJYxLRLUoGI/2fSf3mIFQT4MgtMA B2JObSgvtpa+RyLWbjgCY609LviHZTGb -----END CERTIFICATE-----Generated at Sat Jun 14 19:40:46 2025 by rpki-client