$ rpki-client -vvf rpki.apnic.net/member_repository/A91971CB/010EB288808911EB8B505F20C4F9AE02/MZsxRPBqjysw1BIHH-EhB3T-huc.mft File: MZsxRPBqjysw1BIHH-EhB3T-huc.mft (raw, json) Hash identifier: e9v+y2PMDMHn7+NmiZ+/7EoitZjUZPHffcn5qYF+pys= Subject key identifier: CC:F7:03:D3:00:12:00:EC:BA:C6:81:A6:EF:04:8F:82:F3:EC:05:9A Authority key identifier: 31:9B:31:44:F0:6A:8F:2B:30:D4:12:07:1F:E1:21:07:74:FE:86:E7 Certificate issuer: /CN=A91971CB/serialNumber=319B3144F06A8F2B30D412071FE1210774FE86E7 Certificate serial: 066B Authority info access: rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/MZsxRPBqjysw1BIHH-EhB3T-huc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91971CB/010EB288808911EB8B505F20C4F9AE02/MZsxRPBqjysw1BIHH-EhB3T-huc.mft Manifest number: 0664 Signing time: Thu 24 Apr 2025 15:13:11 +0000 Manifest this update: Thu 24 Apr 2025 15:13:10 +0000 Manifest next update: Thu 01 May 2025 15:13:10 +0000 Files and hashes: 1: MZsxRPBqjysw1BIHH-EhB3T-huc.crl (hash: 2wV6FFLrduVdTigb+B2EqtVVdCATtZzqsTGvCYdw8xM=) 2: 27C29E5EF94411EDB4C6E91CC4F9AE02.roa (hash: PGlTDpEV17D+1hrLu4fdfibpz1YbRKMAlzpsoNFgyb4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91971CB/010EB288808911EB8B505F20C4F9AE02/MZsxRPBqjysw1BIHH-EhB3T-huc.crl rsync://rpki.apnic.net/member_repository/A91971CB/010EB288808911EB8B505F20C4F9AE02/MZsxRPBqjysw1BIHH-EhB3T-huc.mft rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/MZsxRPBqjysw1BIHH-EhB3T-huc.cer rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.crl rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DPzneFf88B852ZpitKpi5hWedvg.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 01 May 2025 15:13:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1643 (0x66b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91971CB, serialNumber=319B3144F06A8F2B30D412071FE1210774FE86E7 Validity Not Before: Apr 24 15:13:10 2025 GMT Not After : May 1 15:13:10 2025 GMT Subject: CN=680a5506-a778 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e4:ce:26:af:bd:ee:b8:97:45:9c:30:60:7c:6e: d5:ce:4a:6f:57:97:ba:bf:a9:14:cf:d6:f9:73:ca: 06:6f:c1:6c:47:a3:15:96:87:d9:6e:da:e1:aa:c1: c9:04:3e:8e:9b:c5:80:39:36:24:61:77:13:ba:62: 0c:ad:36:a4:4e:49:fb:98:08:69:fd:14:ad:46:b1: 00:d0:6e:09:85:77:96:f6:3e:ec:ba:a6:45:f3:24: a2:a6:33:d3:03:70:84:a6:87:6f:91:7f:32:fd:d9: 90:8a:35:1c:d0:de:57:d8:10:77:ab:62:f3:91:9c: 7c:d4:a9:ce:20:fb:c1:78:af:06:e5:0b:f6:e8:c9: d2:70:f1:97:1d:08:bb:50:dd:f8:d4:fe:e7:57:27: 76:db:99:cb:20:85:a0:72:39:4c:74:9b:8b:3c:16: 1e:b2:2c:4d:8c:f4:09:cc:e7:c7:34:79:a3:67:2c: 67:2e:c0:46:36:1d:ad:fa:8a:17:53:82:ac:6d:27: 6d:78:55:09:94:78:0c:aa:59:1a:65:78:11:52:ad: 90:16:2b:96:91:41:64:07:d9:36:6e:84:4e:c3:ea: 15:7b:2e:10:b5:1c:1d:67:e4:13:9e:d1:66:49:c4: 0e:a3:90:bd:24:0b:82:06:f1:26:0d:11:71:34:aa: a6:59 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CC:F7:03:D3:00:12:00:EC:BA:C6:81:A6:EF:04:8F:82:F3:EC:05:9A X509v3 Authority Key Identifier: keyid:31:9B:31:44:F0:6A:8F:2B:30:D4:12:07:1F:E1:21:07:74:FE:86:E7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91971CB/010EB288808911EB8B505F20C4F9AE02/MZsxRPBqjysw1BIHH-EhB3T-huc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/MZsxRPBqjysw1BIHH-EhB3T-huc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91971CB/010EB288808911EB8B505F20C4F9AE02/MZsxRPBqjysw1BIHH-EhB3T-huc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 39:2d:bc:f1:f4:d1:c6:28:51:81:49:20:cc:bd:d8:ba:36:6d: 47:77:c2:05:7b:0b:1d:79:39:32:69:99:33:a6:d6:ae:53:52: 63:64:bd:bf:bc:20:a4:4c:bd:df:1c:cb:4c:11:d2:80:07:d1: 2b:80:89:16:92:23:c3:c0:48:01:b4:c5:56:7c:cb:e7:42:d0: 7a:93:97:54:ac:d1:4c:89:d8:91:06:55:48:70:99:4e:be:1e: 36:15:7e:df:05:3d:9e:88:e9:c3:4e:7e:e5:91:eb:de:d8:6f: f7:a1:3b:cd:23:7f:d2:c2:58:ad:dd:77:11:c4:9c:52:58:e7: 7a:08:2c:64:8c:20:5d:97:b0:c2:c7:2a:f4:01:53:29:d6:0f: 52:e3:35:ee:4c:5f:f3:58:3f:17:b6:3c:1f:8f:6e:40:4b:a0: dc:6b:32:dc:78:af:9e:4b:15:2f:7d:b7:5b:41:64:5f:60:c4: e2:e3:fb:13:d9:b2:d9:25:46:e2:13:0c:01:dc:d2:41:ad:0e: 5d:a0:aa:fc:9a:b3:55:07:28:d3:b7:35:77:c5:67:b0:d9:56: a4:b3:5d:36:fe:7b:5c:12:d7:4e:1d:da:9b:11:40:7d:6b:12: 7d:0d:7f:85:76:60:9d:76:2c:e3:e0:2a:df:36:bf:8a:ab:a5: 4b:ac:5f:20 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBmswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTcxQ0IxMTAvBgNVBAUTKDMxOUIzMTQ0RjA2QThGMkIzMEQ0MTIwNzFGRTEyMTA3 NzRGRTg2RTcwHhcNMjUwNDI0MTUxMzEwWhcNMjUwNTAxMTUxMzEwWjAYMRYwFAYD VQQDEw02ODBhNTUwNi1hNzc4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA5M4mr73uuJdFnDBgfG7VzkpvV5e6v6kUz9b5c8oGb8FsR6MVlofZbtrhqsHJ BD6Om8WAOTYkYXcTumIMrTakTkn7mAhp/RStRrEA0G4JhXeW9j7suqZF8ySipjPT A3CEpodvkX8y/dmQijUc0N5X2BB3q2LzkZx81KnOIPvBeK8G5Qv26MnScPGXHQi7 UN341P7nVyd225nLIIWgcjlMdJuLPBYesixNjPQJzOfHNHmjZyxnLsBGNh2t+ooX U4KsbSdteFUJlHgMqlkaZXgRUq2QFiuWkUFkB9k2boROw+oVey4QtRwdZ+QTntFm ScQOo5C9JAuCBvEmDRFxNKqmWQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFMz3A9MA EgDsusaBpu8Ej4Lz7AWaMB8GA1UdIwQYMBaAFDGbMUTwao8rMNQSBx/hIQd0/obn MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5NzFDQi8wMTBFQjI4ODgw ODkxMUVCOEI1MDVGMjBDNEY5QUUwMi9NWnN4UlBCcWp5c3cxQklISC1FaEIzVC1o dWMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzMjJBNUY0MUQ2NjExRTJBM0YyN0Y3Qzcy RkQxRkYyL01ac3hSUEJxanlzdzFCSUhILUVoQjNULWh1Yy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 NzFDQi8wMTBFQjI4ODgwODkxMUVCOEI1MDVGMjBDNEY5QUUwMi9NWnN4UlBCcWp5 c3cxQklISC1FaEIzVC1odWMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA5Lbzx9NHGKFGBSSDMvdi6Nm1Hd8IFewsdeTkyaZkzptauU1JjZL2/ vCCkTL3fHMtMEdKAB9ErgIkWkiPDwEgBtMVWfMvnQtB6k5dUrNFMidiRBlVIcJlO vh42FX7fBT2eiOnDTn7lkeve2G/3oTvNI3/Swlit3XcRxJxSWOd6CCxkjCBdl7DC xyr0AVMp1g9S4zXuTF/zWD8Xtjwfj25AS6DcazLceK+eSxUvfbdbQWRfYMTi4/sT 2bLZJUbiEwwB3NJBrQ5doKr8mrNVByjTtzV3xWew2Vaks102/ntcEtdOHdqbEUB9 axJ9DX+FdmCddizj4CrfNr+Kq6VLrF8g -----END CERTIFICATE-----Generated at Sat Apr 26 15:25:06 2025 by rpki-client