$ rpki-client -vvf rpki.apnic.net/member_repository/A91C66B2/C4F15472201611F0A8D74314C4F9AE02/PzH7XY70fa043ZLqGonoiHFAOjE.mft File: PzH7XY70fa043ZLqGonoiHFAOjE.mft (raw, json) Hash identifier: iYLHrxl6SqmJY0ITcJG/RzBhFV0xfAg2R2j2eGaicyY= Subject key identifier: 40:DE:6F:E4:B8:BE:4D:90:FC:F2:71:37:46:FE:E2:0B:F6:1F:2F:95 Authority key identifier: 3F:31:FB:5D:8E:F4:7D:AD:38:DD:92:EA:1A:89:E8:88:71:40:3A:31 Certificate issuer: /CN=A91C66B2/serialNumber=3F31FB5D8EF47DAD38DD92EA1A89E88871403A31 Certificate serial: 1B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PzH7XY70fa043ZLqGonoiHFAOjE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C66B2/C4F15472201611F0A8D74314C4F9AE02/PzH7XY70fa043ZLqGonoiHFAOjE.mft Manifest number: 1A Signing time: Fri 13 Jun 2025 06:49:27 +0000 Manifest this update: Fri 13 Jun 2025 06:49:27 +0000 Manifest next update: Fri 20 Jun 2025 06:49:27 +0000 Files and hashes: 1: PzH7XY70fa043ZLqGonoiHFAOjE.crl (hash: myF2WZrIhF4/JllpQEI3kasao9c42VEZnZIl58wYYp4=) 2: F8C50B08201711F0A5D51F16C4F9AE02.roa (hash: YsXcAlte05qmGIgWu2vJoEwWF+8nksJR/jWNa1FgQP4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C66B2/C4F15472201611F0A8D74314C4F9AE02/PzH7XY70fa043ZLqGonoiHFAOjE.crl rsync://rpki.apnic.net/member_repository/A91C66B2/C4F15472201611F0A8D74314C4F9AE02/PzH7XY70fa043ZLqGonoiHFAOjE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PzH7XY70fa043ZLqGonoiHFAOjE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 20 Jun 2025 06:49:26 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 27 (0x1b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C66B2, serialNumber=3F31FB5D8EF47DAD38DD92EA1A89E88871403A31 Validity Not Before: Jun 13 06:49:27 2025 GMT Not After : Jun 20 06:49:27 2025 GMT Subject: CN=684bc9f7-5849 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d9:ab:3c:de:81:78:f2:ac:c8:d7:6c:6c:9e:73: 03:13:52:f3:3d:dc:a5:53:56:e5:fc:c5:ae:fd:dc: ea:6a:4c:b2:af:d2:7e:97:e3:e2:a1:ce:27:0f:d5: 27:72:f2:d8:38:53:d0:68:ab:26:4a:8a:b4:a5:cb: 6d:18:bc:a7:94:1a:44:0d:c3:6d:06:6c:00:bd:af: 12:20:c7:73:c3:16:47:a0:fc:25:a6:a3:e5:b0:0f: 14:ec:8b:cb:ce:08:7c:b5:ce:1a:27:7d:39:a7:20: 64:dd:48:d3:c4:95:97:c0:9b:d4:64:d9:b3:d2:01: fa:50:a0:78:75:c3:6a:c2:d2:24:c2:e0:f8:3c:f3: 01:ec:94:1d:18:a7:9f:b4:5d:bb:f5:42:ff:a7:40: fa:5f:3b:7a:37:94:68:ae:a9:61:18:16:4b:c9:71: b6:4b:3d:3c:ad:2b:8e:5c:38:89:44:e3:e7:e0:3e: f7:a6:56:58:54:98:a9:b9:9f:44:63:82:87:35:39: 6f:d9:05:36:01:e9:17:50:5d:97:b6:2d:ec:c8:14: 94:fa:70:a0:17:a0:d1:0e:90:9c:e6:8b:c5:15:1f: 01:f0:3f:79:42:f5:cb:f9:e3:54:1f:fc:a6:eb:75: e3:9b:ee:92:61:05:1e:7f:17:b9:4c:19:f7:e1:56: d6:1b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 40:DE:6F:E4:B8:BE:4D:90:FC:F2:71:37:46:FE:E2:0B:F6:1F:2F:95 X509v3 Authority Key Identifier: keyid:3F:31:FB:5D:8E:F4:7D:AD:38:DD:92:EA:1A:89:E8:88:71:40:3A:31 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C66B2/C4F15472201611F0A8D74314C4F9AE02/PzH7XY70fa043ZLqGonoiHFAOjE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PzH7XY70fa043ZLqGonoiHFAOjE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C66B2/C4F15472201611F0A8D74314C4F9AE02/PzH7XY70fa043ZLqGonoiHFAOjE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption bd:56:0c:d8:6c:62:0a:02:c0:5a:1b:51:36:31:9e:7a:51:46: ce:f5:53:05:65:1a:58:fd:52:81:5c:df:5b:2e:bb:f6:41:11: b2:2a:ee:73:da:85:a6:09:32:e1:88:5c:63:9f:08:7f:77:42: 5f:61:6b:fc:35:93:00:b4:37:6b:73:95:a6:6d:05:46:dc:5e: bb:fb:c1:08:5d:bf:9b:8d:fb:3c:55:02:c1:df:3d:a0:e8:c7: 4e:3b:7d:d4:6f:ab:40:99:f6:9e:a3:71:9b:70:dc:b0:5b:c3: 0f:e4:19:45:2f:91:4e:41:8d:79:c1:49:34:5b:dd:8c:51:a7: 51:3a:89:2e:9f:41:39:a8:a0:4a:9d:f9:0a:08:e2:3b:b7:bb: c7:78:c0:92:ac:44:97:91:ec:ad:a6:8a:6f:2e:dd:20:0a:ce: dd:1f:c0:4a:9d:01:5d:48:31:7e:4d:58:21:60:26:0e:c2:91: c2:aa:69:c7:d8:c3:e1:82:51:33:65:be:0b:98:0d:8a:21:1e: 59:8e:50:16:a5:3c:ab:21:c2:55:04:7c:48:4d:81:b4:11:c8: a6:22:54:39:17:76:91:6c:75:4a:80:16:68:4d:2e:76:00:25: 9c:c3:12:89:11:6b:87:f6:a8:f3:19:cb:4d:eb:c1:f8:c9:15: d1:3d:ed:28 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBGzANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFD NjZCMjExMC8GA1UEBRMoM0YzMUZCNUQ4RUY0N0RBRDM4REQ5MkVBMUE4OUU4ODg3 MTQwM0EzMTAeFw0yNTA2MTMwNjQ5MjdaFw0yNTA2MjAwNjQ5MjdaMBgxFjAUBgNV BAMTDTY4NGJjOWY3LTU4NDkwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDZqzzegXjyrMjXbGyecwMTUvM93KVTVuX8xa793OpqTLKv0n6X4+KhzicP1Sdy 8tg4U9BoqyZKirSly20YvKeUGkQNw20GbAC9rxIgx3PDFkeg/CWmo+WwDxTsi8vO CHy1zhonfTmnIGTdSNPElZfAm9Rk2bPSAfpQoHh1w2rC0iTC4Pg88wHslB0Yp5+0 Xbv1Qv+nQPpfO3o3lGiuqWEYFkvJcbZLPTytK45cOIlE4+fgPvemVlhUmKm5n0Rj goc1OW/ZBTYB6RdQXZe2LezIFJT6cKAXoNEOkJzmi8UVHwHwP3lC9cv541Qf/Kbr deOb7pJhBR5/F7lMGffhVtYbAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUQN5v5Li+ TZD88nE3Rv7iC/YfL5UwHwYDVR0jBBgwFoAUPzH7XY70fa043ZLqGonoiHFAOjEw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUM2NkIyL0M0RjE1NDcyMjAx NjExRjBBOEQ3NDMxNEM0RjlBRTAyL1B6SDdYWTcwZmEwNDNaTHFHb25vaUhGQU9q RS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvUHpIN1hZNzBmYTA0M1pMcUdvbm9pSEZBT2pFLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUM2 NkIyL0M0RjE1NDcyMjAxNjExRjBBOEQ3NDMxNEM0RjlBRTAyL1B6SDdYWTcwZmEw NDNaTHFHb25vaUhGQU9qRS5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAL1WDNhsYgoCwFobUTYxnnpRRs71UwVlGlj9UoFc31suu/ZBEbIq7nPa haYJMuGIXGOfCH93Ql9ha/w1kwC0N2tzlaZtBUbcXrv7wQhdv5uN+zxVAsHfPaDo x047fdRvq0CZ9p6jcZtw3LBbww/kGUUvkU5BjXnBSTRb3YxRp1E6iS6fQTmooEqd +QoI4ju3u8d4wJKsRJeR7K2mim8u3SAKzt0fwEqdAV1IMX5NWCFgJg7CkcKqacfY w+GCUTNlvguYDYohHlmOUBalPKshwlUEfEhNgbQRyKYiVDkXdpFsdUqAFmhNLnYA JZzDEokRa4f2qPMZy03rwfjJFdE97Sg= -----END CERTIFICATE-----Generated at Sun Jun 15 04:55:36 2025 by rpki-client