$ rpki-client -vvf rpki.apnic.net/member_repository/A91BA044/A7C7E65A074A11ED90A35414C4F9AE02/Alr-kZVIIEnyUJPriYEVxr03FEg.mft File: Alr-kZVIIEnyUJPriYEVxr03FEg.mft (raw, json) Hash identifier: 2imPjoLhgmGV3HelCpH5Ez08rngXGTiUnS0ZSzlSPx4= Subject key identifier: CE:E5:62:3F:39:01:5C:88:76:BB:28:FF:14:FA:01:07:F2:9C:49:9C Authority key identifier: 02:5A:FE:91:95:48:20:49:F2:50:93:EB:89:81:15:C6:BD:37:14:48 Certificate issuer: /CN=A91BA044/serialNumber=025AFE9195482049F25093EB898115C6BD371448 Certificate serial: 02B0 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Alr-kZVIIEnyUJPriYEVxr03FEg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91BA044/A7C7E65A074A11ED90A35414C4F9AE02/Alr-kZVIIEnyUJPriYEVxr03FEg.mft Manifest number: 02AC Signing time: Sat 09 Aug 2025 02:02:56 +0000 Manifest this update: Sat 09 Aug 2025 02:02:56 +0000 Manifest next update: Sat 16 Aug 2025 02:02:56 +0000 Files and hashes: 1: Alr-kZVIIEnyUJPriYEVxr03FEg.crl (hash: pAU9GOPUQsziFdqa5ve/MK+MD7YXYE8aRDiiV/WFxR8=) 2: 5CE70ACC074E11ED99CF6642C4F9AE02.roa (hash: u8H4NSNtBcIg5GrlIWnmn+sl29NyMYEZMtRVlCln8c0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91BA044/A7C7E65A074A11ED90A35414C4F9AE02/Alr-kZVIIEnyUJPriYEVxr03FEg.crl rsync://rpki.apnic.net/member_repository/A91BA044/A7C7E65A074A11ED90A35414C4F9AE02/Alr-kZVIIEnyUJPriYEVxr03FEg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Alr-kZVIIEnyUJPriYEVxr03FEg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 Aug 2025 05:57:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 688 (0x2b0) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91BA044, serialNumber=025AFE9195482049F25093EB898115C6BD371448 Validity Not Before: Aug 9 02:02:56 2025 GMT Not After : Aug 16 02:02:56 2025 GMT Subject: CN=6896ac50-06a7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:f5:0d:c4:95:d3:f5:e3:f3:c0:da:07:47:fe: c3:b2:ec:07:c5:7e:32:7a:8f:ce:9c:69:41:e8:63: 3b:30:ee:46:13:c3:0e:b7:6d:4a:b8:b7:f3:be:a6: 3f:fb:5a:ac:17:81:28:ec:e4:e0:65:cc:48:57:15: 50:84:7e:56:d8:63:6a:ec:59:de:6a:25:3e:d1:13: 79:79:a0:ab:58:ea:4a:36:28:62:3c:27:6a:6a:32: c9:ce:81:1c:ad:9f:97:0e:d8:05:06:5b:69:bc:a8: 66:bf:68:dc:19:8c:1a:38:58:8c:7c:0e:8a:af:12: 49:11:83:08:75:c7:20:ae:72:60:ec:b7:24:c3:25: 72:9d:a4:03:dd:31:15:10:e9:0a:9d:3f:74:9a:10: 91:a6:0d:c8:68:a1:ea:a9:0d:3e:cf:50:fb:d4:58: 8e:14:de:57:2a:02:af:2d:bf:b5:6c:d7:d2:d4:d1: 75:a4:93:89:54:2d:c1:91:ba:cf:10:69:9d:2b:2b: 45:32:0d:fb:30:5c:6d:3e:bc:4d:48:b3:14:91:04: 77:d4:71:96:a8:6d:42:6b:a6:35:42:61:67:33:c5: 50:fa:7a:59:9e:c5:96:23:52:1e:53:bf:fa:1b:22: c6:1c:b4:86:ef:f4:85:62:63:6d:f2:ff:2f:0a:eb: 7a:75 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CE:E5:62:3F:39:01:5C:88:76:BB:28:FF:14:FA:01:07:F2:9C:49:9C X509v3 Authority Key Identifier: keyid:02:5A:FE:91:95:48:20:49:F2:50:93:EB:89:81:15:C6:BD:37:14:48 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91BA044/A7C7E65A074A11ED90A35414C4F9AE02/Alr-kZVIIEnyUJPriYEVxr03FEg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Alr-kZVIIEnyUJPriYEVxr03FEg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91BA044/A7C7E65A074A11ED90A35414C4F9AE02/Alr-kZVIIEnyUJPriYEVxr03FEg.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 18:71:12:0c:7f:82:41:11:fe:74:27:61:5b:4e:a9:b2:99:8a: fe:9d:a1:dc:b1:1c:b6:e9:e6:c4:56:1b:5a:01:0c:9b:c5:25: de:7f:a6:16:f6:83:05:01:d5:3f:46:9b:d2:e2:18:4b:a8:93: 9f:6f:d6:a6:b6:9e:33:e7:58:05:6c:70:04:38:8d:d0:8c:da: 7d:06:10:ba:ff:aa:dd:d5:c1:8b:eb:82:e7:3f:c8:9b:90:e2: 1e:c3:c2:67:24:5e:7e:70:0e:27:b3:ca:8f:78:c4:4a:c3:6a: 4c:7c:15:51:84:62:d9:01:39:79:79:ae:f6:d7:5f:d7:e8:29: be:0c:4c:a0:7c:d2:25:1b:06:3f:e4:69:2d:1f:b5:d5:78:d9: 34:6b:72:9c:cf:c4:89:b0:43:ad:ac:69:26:d4:2f:5a:ee:1b: e8:2c:26:45:47:f7:2d:8f:47:32:23:6b:bd:44:34:e5:17:ac: d3:f8:13:07:30:ae:4a:35:9f:57:9b:1f:9d:91:88:11:8f:aa: f2:54:3c:a8:29:14:51:ff:4f:d1:4b:ab:b7:0c:eb:7c:1c:ab: e6:b5:66:ce:f5:62:b1:07:56:38:63:69:c7:87:da:54:ff:1d: 16:55:86:e8:f0:6e:a7:dc:5c:21:1d:5d:c4:5a:0c:90:a0:be: 7e:90:92:fe -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICArAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QkEwNDQxMTAvBgNVBAUTKDAyNUFGRTkxOTU0ODIwNDlGMjUwOTNFQjg5ODExNUM2 QkQzNzE0NDgwHhcNMjUwODA5MDIwMjU2WhcNMjUwODE2MDIwMjU2WjAYMRYwFAYD VQQDEw02ODk2YWM1MC0wNmE3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtPUNxJXT9ePzwNoHR/7DsuwHxX4yeo/OnGlB6GM7MO5GE8MOt21KuLfzvqY/ +1qsF4Eo7OTgZcxIVxVQhH5W2GNq7FneaiU+0RN5eaCrWOpKNihiPCdqajLJzoEc rZ+XDtgFBltpvKhmv2jcGYwaOFiMfA6KrxJJEYMIdccgrnJg7LckwyVynaQD3TEV EOkKnT90mhCRpg3IaKHqqQ0+z1D71FiOFN5XKgKvLb+1bNfS1NF1pJOJVC3BkbrP EGmdKytFMg37MFxtPrxNSLMUkQR31HGWqG1Ca6Y1QmFnM8VQ+npZnsWWI1IeU7/6 GyLGHLSG7/SFYmNt8v8vCut6dQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFM7lYj85 AVyIdrso/xT6AQfynEmcMB8GA1UdIwQYMBaAFAJa/pGVSCBJ8lCT64mBFca9NxRI MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCQTA0NC9BN0M3RTY1QTA3 NEExMUVEOTBBMzU0MTRDNEY5QUUwMi9BbHIta1pWSUlFbnlVSlByaVlFVnhyMDNG RWcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0Fsci1rWlZJSUVueVVKUHJpWUVWeHIwM0ZFZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC QTA0NC9BN0M3RTY1QTA3NEExMUVEOTBBMzU0MTRDNEY5QUUwMi9BbHIta1pWSUlF bnlVSlByaVlFVnhyMDNGRWcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAYcRIMf4JBEf50J2FbTqmymYr+naHcsRy26ebEVhtaAQybxSXef6YW 9oMFAdU/RpvS4hhLqJOfb9amtp4z51gFbHAEOI3QjNp9BhC6/6rd1cGL64LnP8ib kOIew8JnJF5+cA4ns8qPeMRKw2pMfBVRhGLZATl5ea7211/X6Cm+DEygfNIlGwY/ 5GktH7XVeNk0a3Kcz8SJsEOtrGkm1C9a7hvoLCZFR/ctj0cyI2u9RDTlF6zT+BMH MK5KNZ9Xmx+dkYgRj6ryVDyoKRRR/0/RS6u3DOt8HKvmtWbO9WKxB1Y4Y2nHh9pU /x0WVYbo8G6n3FwhHV3EWgyQoL5+kJL+ -----END CERTIFICATE-----Generated at Sat Aug 9 10:46:58 2025 by rpki-client