$ rpki-client -vvf rpki.apnic.net/member_repository/A91BA044/A7C7E65A074A11ED90A35414C4F9AE02/Alr-kZVIIEnyUJPriYEVxr03FEg.mft File: Alr-kZVIIEnyUJPriYEVxr03FEg.mft (raw, json) Hash identifier: CaPGIvUn8cuEwSwfDLA36yOy3vaKuiexZx66fVeWtZ4= Subject key identifier: D5:00:22:EB:67:A8:7D:74:58:F2:AB:96:9F:60:A4:A2:95:23:D8:97 Authority key identifier: 02:5A:FE:91:95:48:20:49:F2:50:93:EB:89:81:15:C6:BD:37:14:48 Certificate issuer: /CN=A91BA044/serialNumber=025AFE9195482049F25093EB898115C6BD371448 Certificate serial: 027B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Alr-kZVIIEnyUJPriYEVxr03FEg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91BA044/A7C7E65A074A11ED90A35414C4F9AE02/Alr-kZVIIEnyUJPriYEVxr03FEg.mft Manifest number: 0277 Signing time: Fri 25 Apr 2025 01:26:37 +0000 Manifest this update: Fri 25 Apr 2025 01:26:37 +0000 Manifest next update: Fri 02 May 2025 01:26:37 +0000 Files and hashes: 1: Alr-kZVIIEnyUJPriYEVxr03FEg.crl (hash: cTasGEt56wffz8KrUCjK+xnJ7dqsFrQSjH108cqVerU=) 2: 5CE70ACC074E11ED99CF6642C4F9AE02.roa (hash: u8H4NSNtBcIg5GrlIWnmn+sl29NyMYEZMtRVlCln8c0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91BA044/A7C7E65A074A11ED90A35414C4F9AE02/Alr-kZVIIEnyUJPriYEVxr03FEg.crl rsync://rpki.apnic.net/member_repository/A91BA044/A7C7E65A074A11ED90A35414C4F9AE02/Alr-kZVIIEnyUJPriYEVxr03FEg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Alr-kZVIIEnyUJPriYEVxr03FEg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 02 May 2025 01:26:37 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 635 (0x27b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91BA044, serialNumber=025AFE9195482049F25093EB898115C6BD371448 Validity Not Before: Apr 25 01:26:37 2025 GMT Not After : May 2 01:26:37 2025 GMT Subject: CN=680ae4cd-f60a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a4:91:14:39:df:ba:3e:11:a1:89:54:8e:e9:33: a1:8a:38:f1:42:3a:d1:74:8a:9e:3f:5c:90:90:98: e3:2d:7e:25:3c:a9:4f:ed:be:0d:59:70:bd:f7:bc: b9:48:d8:7e:af:28:e1:fe:7e:52:28:13:2c:e4:cf: 5d:b1:73:d6:b0:39:d0:cb:d2:f0:8e:86:f1:49:f2: c8:c5:b8:9b:01:15:74:f8:7b:a2:56:87:4c:2d:b9: 5e:32:37:5a:e3:fa:2d:b9:39:06:14:31:23:14:22: ef:64:0a:b1:64:54:95:8a:f1:33:2f:67:f4:06:87: 4e:ee:18:62:9b:db:62:95:5f:73:cf:36:ad:c3:6e: cb:ef:c6:46:7b:9d:23:0a:75:65:4a:19:bc:2d:95: 33:9a:fe:04:8e:85:18:c7:53:65:5d:8f:99:52:33: 74:ef:a8:38:3f:03:96:cc:7c:b5:ea:b1:66:38:df: ec:44:ff:86:8d:84:49:81:ad:d1:2f:f5:cb:71:0c: e5:f9:eb:9f:db:09:50:43:33:c5:5b:16:6f:d9:a9: f7:29:1e:32:10:e5:e8:5f:b2:53:e1:fc:67:ec:d6: 31:72:98:1e:44:9d:b3:c5:6e:dd:1e:02:02:80:3f: 33:7e:3f:ca:66:ee:bc:32:e4:d6:35:8d:04:84:ac: 3f:0b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D5:00:22:EB:67:A8:7D:74:58:F2:AB:96:9F:60:A4:A2:95:23:D8:97 X509v3 Authority Key Identifier: keyid:02:5A:FE:91:95:48:20:49:F2:50:93:EB:89:81:15:C6:BD:37:14:48 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91BA044/A7C7E65A074A11ED90A35414C4F9AE02/Alr-kZVIIEnyUJPriYEVxr03FEg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Alr-kZVIIEnyUJPriYEVxr03FEg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91BA044/A7C7E65A074A11ED90A35414C4F9AE02/Alr-kZVIIEnyUJPriYEVxr03FEg.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 30:fe:10:85:78:cd:8c:e4:ca:7a:f3:8d:af:0c:30:ce:b1:09: 51:87:49:2e:59:01:f1:b8:61:a5:ff:a0:3a:05:06:73:fb:d8: b4:92:2f:70:ed:51:ed:91:2b:01:58:80:4e:6e:e3:3c:58:99: 09:96:59:56:92:87:be:e3:6f:df:51:b9:98:56:d6:7b:56:da: 7e:e7:6b:b0:8c:81:36:56:4b:6a:b1:55:4e:e1:aa:41:16:7c: 86:d0:78:8a:72:21:f4:0e:37:7f:2b:ec:56:a1:8d:b7:d4:aa: 81:ad:aa:51:e3:39:9e:c3:1e:a4:6f:0f:ef:9c:3a:72:c3:8e: fb:5d:ce:7e:54:a7:ee:15:d7:32:3b:b8:1b:15:54:42:a1:85: 4e:b2:02:80:2f:9e:97:a4:02:6d:fe:aa:0e:b0:cc:b1:38:7d: 57:b1:40:db:7f:8e:f9:cf:78:b8:51:d6:51:5e:c6:69:e8:96: ca:b1:b2:76:10:04:3e:60:3e:a1:4d:6e:20:f2:af:bb:31:b5: bd:39:55:50:01:3e:39:d4:a7:a0:b4:b9:af:d1:39:06:78:46: 10:96:b4:62:ed:1a:a7:02:d9:70:0c:0a:ec:f5:c3:2d:4e:9f: c4:e8:40:a4:d0:e8:0a:e9:44:dd:94:61:28:af:2c:a7:18:85: cd:88:72:24 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAnswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QkEwNDQxMTAvBgNVBAUTKDAyNUFGRTkxOTU0ODIwNDlGMjUwOTNFQjg5ODExNUM2 QkQzNzE0NDgwHhcNMjUwNDI1MDEyNjM3WhcNMjUwNTAyMDEyNjM3WjAYMRYwFAYD VQQDEw02ODBhZTRjZC1mNjBhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEApJEUOd+6PhGhiVSO6TOhijjxQjrRdIqeP1yQkJjjLX4lPKlP7b4NWXC997y5 SNh+ryjh/n5SKBMs5M9dsXPWsDnQy9LwjobxSfLIxbibARV0+HuiVodMLbleMjda 4/otuTkGFDEjFCLvZAqxZFSVivEzL2f0BodO7hhim9tilV9zzzatw27L78ZGe50j CnVlShm8LZUzmv4EjoUYx1NlXY+ZUjN076g4PwOWzHy16rFmON/sRP+GjYRJga3R L/XLcQzl+euf2wlQQzPFWxZv2an3KR4yEOXoX7JT4fxn7NYxcpgeRJ2zxW7dHgIC gD8zfj/KZu68MuTWNY0EhKw/CwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFNUAIutn qH10WPKrlp9gpKKVI9iXMB8GA1UdIwQYMBaAFAJa/pGVSCBJ8lCT64mBFca9NxRI MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCQTA0NC9BN0M3RTY1QTA3 NEExMUVEOTBBMzU0MTRDNEY5QUUwMi9BbHIta1pWSUlFbnlVSlByaVlFVnhyMDNG RWcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0Fsci1rWlZJSUVueVVKUHJpWUVWeHIwM0ZFZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC QTA0NC9BN0M3RTY1QTA3NEExMUVEOTBBMzU0MTRDNEY5QUUwMi9BbHIta1pWSUlF bnlVSlByaVlFVnhyMDNGRWcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAw/hCFeM2M5Mp6842vDDDOsQlRh0kuWQHxuGGl/6A6BQZz+9i0ki9w 7VHtkSsBWIBObuM8WJkJlllWkoe+42/fUbmYVtZ7Vtp+52uwjIE2VktqsVVO4apB FnyG0HiKciH0Djd/K+xWoY231KqBrapR4zmewx6kbw/vnDpyw477Xc5+VKfuFdcy O7gbFVRCoYVOsgKAL56XpAJt/qoOsMyxOH1XsUDbf475z3i4UdZRXsZp6JbKsbJ2 EAQ+YD6hTW4g8q+7MbW9OVVQAT451KegtLmv0TkGeEYQlrRi7RqnAtlwDArs9cMt Tp/E6ECk0OgK6UTdlGEoryynGIXNiHIk -----END CERTIFICATE-----Generated at Sat Apr 26 05:19:30 2025 by rpki-client