$ rpki-client -vvf rpki.apnic.net/member_repository/A91BA044/A7C7E65A074A11ED90A35414C4F9AE02/Alr-kZVIIEnyUJPriYEVxr03FEg.mft File: Alr-kZVIIEnyUJPriYEVxr03FEg.mft (raw, json) Hash identifier: DJ/wkC1tx/cbkdrbJBxNM3ykyw5/hoXw25cubvPwIUg= Subject key identifier: 6B:BA:A0:D8:4D:D8:3C:CC:93:DB:61:24:72:9B:A8:92:21:5E:C2:98 Authority key identifier: 02:5A:FE:91:95:48:20:49:F2:50:93:EB:89:81:15:C6:BD:37:14:48 Certificate issuer: /CN=A91BA044/serialNumber=025AFE9195482049F25093EB898115C6BD371448 Certificate serial: 0294 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Alr-kZVIIEnyUJPriYEVxr03FEg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91BA044/A7C7E65A074A11ED90A35414C4F9AE02/Alr-kZVIIEnyUJPriYEVxr03FEg.mft Manifest number: 0290 Signing time: Sun 15 Jun 2025 01:17:34 +0000 Manifest this update: Sun 15 Jun 2025 01:17:33 +0000 Manifest next update: Sun 22 Jun 2025 01:17:33 +0000 Files and hashes: 1: Alr-kZVIIEnyUJPriYEVxr03FEg.crl (hash: Pz0Tcg72495mD7/JhteTvdoRhMrG0tMZDULEnrhcJLU=) 2: 5CE70ACC074E11ED99CF6642C4F9AE02.roa (hash: u8H4NSNtBcIg5GrlIWnmn+sl29NyMYEZMtRVlCln8c0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91BA044/A7C7E65A074A11ED90A35414C4F9AE02/Alr-kZVIIEnyUJPriYEVxr03FEg.crl rsync://rpki.apnic.net/member_repository/A91BA044/A7C7E65A074A11ED90A35414C4F9AE02/Alr-kZVIIEnyUJPriYEVxr03FEg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Alr-kZVIIEnyUJPriYEVxr03FEg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 22 Jun 2025 01:17:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 660 (0x294) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91BA044, serialNumber=025AFE9195482049F25093EB898115C6BD371448 Validity Not Before: Jun 15 01:17:33 2025 GMT Not After : Jun 22 01:17:33 2025 GMT Subject: CN=684e1f2e-18b5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:fb:04:3f:6b:d5:d2:98:72:ec:51:f4:0f:fe: 9d:f8:d4:9b:6d:d6:a7:be:d0:ad:b3:a3:c9:ff:ce: 51:c7:db:0e:db:8e:c4:6a:c6:75:be:df:95:1c:9b: 8a:f8:1e:39:ac:6c:ec:06:16:50:23:bb:5f:e2:17: 42:4a:7d:63:32:37:ab:43:7e:18:d0:a2:b2:11:59: bf:45:77:a5:f2:c5:1a:90:f3:43:c5:38:37:d0:3d: d2:e8:eb:1a:ea:b5:66:f0:8c:be:1f:2f:1f:55:02: bd:0a:91:9b:25:0b:d5:6e:2e:62:a9:c2:ad:70:13: c3:e2:4d:04:63:3f:b8:ce:d7:61:82:7b:d4:79:29: 13:61:11:d3:ee:b3:18:63:3a:cb:07:eb:a5:b8:41: 61:be:42:9a:b0:88:dd:a5:a1:0d:cb:52:94:8e:2f: b3:4d:4a:de:55:bf:21:e5:df:98:0e:4b:38:d1:da: da:89:bb:a2:ad:5f:e2:51:33:1c:5c:f1:48:e9:20: 3d:af:1e:88:83:a5:5d:9f:8a:0c:2a:21:f0:b1:c5: 0d:0c:13:40:68:f7:79:a5:a2:30:13:8c:bd:06:2e: c9:07:65:cd:94:36:4b:9b:6b:2d:00:ff:67:ed:0e: af:f0:67:e4:e9:d4:4d:f3:2d:57:01:72:33:bb:69: 1a:1f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6B:BA:A0:D8:4D:D8:3C:CC:93:DB:61:24:72:9B:A8:92:21:5E:C2:98 X509v3 Authority Key Identifier: keyid:02:5A:FE:91:95:48:20:49:F2:50:93:EB:89:81:15:C6:BD:37:14:48 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91BA044/A7C7E65A074A11ED90A35414C4F9AE02/Alr-kZVIIEnyUJPriYEVxr03FEg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Alr-kZVIIEnyUJPriYEVxr03FEg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91BA044/A7C7E65A074A11ED90A35414C4F9AE02/Alr-kZVIIEnyUJPriYEVxr03FEg.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption ab:e0:87:cf:75:db:ab:b0:b6:01:16:26:d3:69:34:ad:9b:6e: b3:66:ff:89:69:03:b8:bb:e2:86:c8:55:76:b6:23:3a:0b:f4: 17:92:3d:3f:e9:b4:1d:93:45:be:a2:cb:e6:6a:68:ae:31:16: a4:e9:2c:1e:79:1f:e8:3a:5a:7c:b1:0c:4d:52:20:63:99:e8: df:0f:66:38:86:d2:eb:da:c9:ab:5f:4a:dc:fa:ac:e9:69:14: b1:0e:5e:ad:60:b8:a7:94:cb:df:f6:8d:ed:38:d6:cd:a6:28: 4e:c8:10:08:4b:a7:ac:87:27:d4:1d:c3:cb:86:92:5d:04:ba: be:79:34:21:91:22:ce:3b:d9:59:90:d6:6d:ed:3a:8b:e5:11: 1d:8f:90:0e:6e:fb:f9:ad:49:38:45:5a:b6:53:05:d1:52:8b: 0a:6d:01:75:34:88:37:88:d5:34:b7:c5:90:53:22:27:3a:2b: 48:aa:b7:cd:c9:8e:c8:8f:67:30:a4:73:72:51:2a:40:a8:0d: 99:f8:d6:ba:74:ef:2a:44:55:b9:33:53:98:55:c7:54:56:ca: d1:6c:45:83:8e:5b:a7:65:3f:0a:34:d6:07:aa:a7:2f:95:7f: 37:c3:12:c5:c7:69:c5:f2:1b:63:0f:85:5d:e6:c5:e5:41:1a: b0:8e:6f:5b -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICApQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QkEwNDQxMTAvBgNVBAUTKDAyNUFGRTkxOTU0ODIwNDlGMjUwOTNFQjg5ODExNUM2 QkQzNzE0NDgwHhcNMjUwNjE1MDExNzMzWhcNMjUwNjIyMDExNzMzWjAYMRYwFAYD VQQDEw02ODRlMWYyZS0xOGI1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAw/sEP2vV0phy7FH0D/6d+NSbbdanvtCts6PJ/85Rx9sO247EasZ1vt+VHJuK +B45rGzsBhZQI7tf4hdCSn1jMjerQ34Y0KKyEVm/RXel8sUakPNDxTg30D3S6Osa 6rVm8Iy+Hy8fVQK9CpGbJQvVbi5iqcKtcBPD4k0EYz+4ztdhgnvUeSkTYRHT7rMY YzrLB+uluEFhvkKasIjdpaENy1KUji+zTUreVb8h5d+YDks40draibuirV/iUTMc XPFI6SA9rx6Ig6Vdn4oMKiHwscUNDBNAaPd5paIwE4y9Bi7JB2XNlDZLm2stAP9n 7Q6v8Gfk6dRN8y1XAXIzu2kaHwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFGu6oNhN 2DzMk9thJHKbqJIhXsKYMB8GA1UdIwQYMBaAFAJa/pGVSCBJ8lCT64mBFca9NxRI MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCQTA0NC9BN0M3RTY1QTA3 NEExMUVEOTBBMzU0MTRDNEY5QUUwMi9BbHIta1pWSUlFbnlVSlByaVlFVnhyMDNG RWcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0Fsci1rWlZJSUVueVVKUHJpWUVWeHIwM0ZFZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC QTA0NC9BN0M3RTY1QTA3NEExMUVEOTBBMzU0MTRDNEY5QUUwMi9BbHIta1pWSUlF bnlVSlByaVlFVnhyMDNGRWcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCr4IfPddursLYBFibTaTStm26zZv+JaQO4u+KGyFV2tiM6C/QXkj0/ 6bQdk0W+osvmamiuMRak6SweeR/oOlp8sQxNUiBjmejfD2Y4htLr2smrX0rc+qzp aRSxDl6tYLinlMvf9o3tONbNpihOyBAIS6eshyfUHcPLhpJdBLq+eTQhkSLOO9lZ kNZt7TqL5REdj5AObvv5rUk4RVq2UwXRUosKbQF1NIg3iNU0t8WQUyInOitIqrfN yY7Ij2cwpHNyUSpAqA2Z+Na6dO8qRFW5M1OYVcdUVsrRbEWDjlunZT8KNNYHqqcv lX83wxLFx2nF8htjD4Vd5sXlQRqwjm9b -----END CERTIFICATE-----Generated at Sun Jun 15 08:29:34 2025 by rpki-client