$ rpki-client -vvf rpki.apnic.net/member_repository/A91C66B2/C4F15472201611F0A8D74314C4F9AE02/PzH7XY70fa043ZLqGonoiHFAOjE.mft File: PzH7XY70fa043ZLqGonoiHFAOjE.mft (raw, json) Hash identifier: zrUmFT3a4Qw62qvYkcm7gySc/16lgdGhInZ884OgW9c= Subject key identifier: 55:0D:B9:E8:6F:DE:DE:FB:ED:14:4E:32:AB:F2:17:1C:93:45:D2:BF Authority key identifier: 3F:31:FB:5D:8E:F4:7D:AD:38:DD:92:EA:1A:89:E8:88:71:40:3A:31 Certificate issuer: /CN=A91C66B2/serialNumber=3F31FB5D8EF47DAD38DD92EA1A89E88871403A31 Certificate serial: 35 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PzH7XY70fa043ZLqGonoiHFAOjE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C66B2/C4F15472201611F0A8D74314C4F9AE02/PzH7XY70fa043ZLqGonoiHFAOjE.mft Manifest number: 34 Signing time: Sun 03 Aug 2025 08:01:07 +0000 Manifest this update: Sun 03 Aug 2025 08:01:07 +0000 Manifest next update: Sun 10 Aug 2025 08:01:07 +0000 Files and hashes: 1: PzH7XY70fa043ZLqGonoiHFAOjE.crl (hash: DleN7Djx6ofTuhFbSx4Spb8uI9PnUtQYlDr411rBKOs=) 2: F8C50B08201711F0A5D51F16C4F9AE02.roa (hash: YsXcAlte05qmGIgWu2vJoEwWF+8nksJR/jWNa1FgQP4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C66B2/C4F15472201611F0A8D74314C4F9AE02/PzH7XY70fa043ZLqGonoiHFAOjE.crl rsync://rpki.apnic.net/member_repository/A91C66B2/C4F15472201611F0A8D74314C4F9AE02/PzH7XY70fa043ZLqGonoiHFAOjE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PzH7XY70fa043ZLqGonoiHFAOjE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 10 Aug 2025 08:01:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 53 (0x35) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C66B2, serialNumber=3F31FB5D8EF47DAD38DD92EA1A89E88871403A31 Validity Not Before: Aug 3 08:01:07 2025 GMT Not After : Aug 10 08:01:07 2025 GMT Subject: CN=688f1743-3d7c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:c2:05:a9:e4:94:60:cb:d3:b5:29:86:5d:af: 15:8a:67:0d:ff:ec:a2:ab:e5:c8:ab:b2:26:e1:13: 39:11:58:74:2f:23:ca:cc:fb:7e:82:fb:e4:03:fd: 42:29:51:54:f2:0b:38:97:de:6d:83:92:ed:ae:3b: bd:cd:26:0b:4f:1d:ae:30:67:d1:bb:4c:44:9e:b4: 98:53:9b:9f:7b:eb:9e:10:d8:f4:5e:c1:87:4c:c5: a9:36:d0:39:40:e9:14:df:85:1b:b3:78:9f:4a:1b: 64:a1:1e:24:1e:cd:58:80:e6:0b:5d:6a:18:a3:85: af:29:ce:8e:fa:16:bb:c2:ee:a2:65:16:cf:71:62: 54:d6:0c:8e:af:ce:a5:f4:66:5a:4f:37:4c:c0:5f: 20:47:6d:8d:73:a4:7f:bb:7a:f3:dd:da:3d:e6:8b: 7f:e4:37:ba:c3:1a:74:f3:cd:14:0a:6d:25:b8:82: ca:24:c3:f5:85:a4:ae:d9:bd:06:1f:6c:84:ec:1e: 0d:8d:07:52:2e:4f:a4:fb:45:61:72:5a:65:a9:11: af:7e:17:93:fc:98:3f:09:59:ed:57:d8:f9:fa:b0: 6a:88:be:75:c7:f4:1a:d1:ae:f8:60:64:68:7e:1f: 4d:51:c6:3c:03:c0:f1:94:06:db:f1:bc:df:75:d0: 55:df Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 55:0D:B9:E8:6F:DE:DE:FB:ED:14:4E:32:AB:F2:17:1C:93:45:D2:BF X509v3 Authority Key Identifier: keyid:3F:31:FB:5D:8E:F4:7D:AD:38:DD:92:EA:1A:89:E8:88:71:40:3A:31 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C66B2/C4F15472201611F0A8D74314C4F9AE02/PzH7XY70fa043ZLqGonoiHFAOjE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PzH7XY70fa043ZLqGonoiHFAOjE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C66B2/C4F15472201611F0A8D74314C4F9AE02/PzH7XY70fa043ZLqGonoiHFAOjE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption b3:7b:94:23:c6:b3:42:d7:e4:d2:f6:c7:7d:c8:28:64:3a:bd: e9:08:38:d2:8f:bc:51:da:7b:f7:10:97:cd:2e:52:36:fc:1b: 3b:d9:98:ba:66:f3:08:f0:a4:6c:e4:25:69:54:73:21:50:22: c1:f6:a7:d1:8f:ab:77:b4:05:1a:b5:ce:64:b5:42:ee:1f:56: a2:5f:cf:df:6d:02:3b:90:cd:ac:2d:4a:5d:69:c9:14:05:f0: e1:d9:fb:e4:7e:a1:d4:dc:dc:a0:8d:7e:84:df:47:6b:6a:23: 38:73:c6:96:2b:6f:b5:65:f2:98:23:65:9f:9e:bb:4c:93:cc: dd:da:8a:da:2d:4f:2f:86:bb:3e:57:53:e3:da:01:3e:5f:1a: 49:53:8a:a5:12:51:a2:d4:91:64:29:f6:fb:9a:34:a9:cf:f6: cb:eb:06:b8:45:e4:98:63:bd:81:e2:db:c7:70:f7:67:d1:3f: 80:dc:39:9c:16:70:74:00:b1:e7:9e:fd:ed:7f:dd:a3:e7:8f: ca:4e:0d:be:4e:3e:7d:ce:22:b3:51:2c:00:59:f4:67:14:ff: 19:4e:c0:28:f3:f9:38:35:5f:52:a6:50:f1:67:8b:10:ea:39: 5f:c6:61:15:09:f0:0b:ed:ec:63:11:86:31:aa:1d:2d:0b:9c: d4:90:ba:b7 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBNTANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFD NjZCMjExMC8GA1UEBRMoM0YzMUZCNUQ4RUY0N0RBRDM4REQ5MkVBMUE4OUU4ODg3 MTQwM0EzMTAeFw0yNTA4MDMwODAxMDdaFw0yNTA4MTAwODAxMDdaMBgxFjAUBgNV BAMTDTY4OGYxNzQzLTNkN2MwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDEwgWp5JRgy9O1KYZdrxWKZw3/7KKr5cirsibhEzkRWHQvI8rM+36C++QD/UIp UVTyCziX3m2Dku2uO73NJgtPHa4wZ9G7TESetJhTm597654Q2PRewYdMxak20DlA 6RTfhRuzeJ9KG2ShHiQezViA5gtdahijha8pzo76FrvC7qJlFs9xYlTWDI6vzqX0 ZlpPN0zAXyBHbY1zpH+7evPd2j3mi3/kN7rDGnTzzRQKbSW4gsokw/WFpK7ZvQYf bITsHg2NB1IuT6T7RWFyWmWpEa9+F5P8mD8JWe1X2Pn6sGqIvnXH9BrRrvhgZGh+ H01RxjwDwPGUBtvxvN910FXfAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUVQ256G/e 3vvtFE4yq/IXHJNF0r8wHwYDVR0jBBgwFoAUPzH7XY70fa043ZLqGonoiHFAOjEw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUM2NkIyL0M0RjE1NDcyMjAx NjExRjBBOEQ3NDMxNEM0RjlBRTAyL1B6SDdYWTcwZmEwNDNaTHFHb25vaUhGQU9q RS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvUHpIN1hZNzBmYTA0M1pMcUdvbm9pSEZBT2pFLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUM2 NkIyL0M0RjE1NDcyMjAxNjExRjBBOEQ3NDMxNEM0RjlBRTAyL1B6SDdYWTcwZmEw NDNaTHFHb25vaUhGQU9qRS5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBALN7lCPGs0LX5NL2x33IKGQ6vekIONKPvFHae/cQl80uUjb8GzvZmLpm 8wjwpGzkJWlUcyFQIsH2p9GPq3e0BRq1zmS1Qu4fVqJfz99tAjuQzawtSl1pyRQF 8OHZ++R+odTc3KCNfoTfR2tqIzhzxpYrb7Vl8pgjZZ+eu0yTzN3aitotTy+Guz5X U+PaAT5fGklTiqUSUaLUkWQp9vuaNKnP9svrBrhF5JhjvYHi28dw92fRP4DcOZwW cHQAseee/e1/3aPnj8pODb5OPn3OIrNRLABZ9GcU/xlOwCjz+Tg1X1KmUPFnixDq OV/GYRUJ8Avt7GMRhjGqHS0LnNSQurc= -----END CERTIFICATE-----Generated at Mon Aug 4 11:21:04 2025 by rpki-client