$ rpki-client -vvf rpki.apnic.net/member_repository/A91104BD/4373D50C384311EAA6192E53C4F9AE02/pi3nVqmxabvP97VW1DMAlV1A4yA.mft File: pi3nVqmxabvP97VW1DMAlV1A4yA.mft (raw, json) Hash identifier: MWL0qxZ9qkDHkThVLSUyjiDLQYGQ/YqnPpKJuZBthVA= Subject key identifier: 0B:9F:57:67:D8:D3:80:AB:43:46:D3:BD:8F:84:74:50:94:EF:37:CC Authority key identifier: A6:2D:E7:56:A9:B1:69:BB:CF:F7:B5:56:D4:33:00:95:5D:40:E3:20 Certificate issuer: /CN=A91104BD/serialNumber=A62DE756A9B169BBCFF7B556D43300955D40E320 Certificate serial: 0B52 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pi3nVqmxabvP97VW1DMAlV1A4yA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91104BD/4373D50C384311EAA6192E53C4F9AE02/pi3nVqmxabvP97VW1DMAlV1A4yA.mft Manifest number: 0B4B Signing time: Wed 02 Jul 2025 19:20:58 +0000 Manifest this update: Wed 02 Jul 2025 19:20:58 +0000 Manifest next update: Wed 09 Jul 2025 19:20:58 +0000 Files and hashes: 1: pi3nVqmxabvP97VW1DMAlV1A4yA.crl (hash: ss2WIl8tr0/2zB63LTBhiX1iSN0XNGU9grKENocrzKA=) 2: D326CC30384411EA9D540B58C4F9AE02.roa (hash: y7gm3Ye3cCKsMlMiwHP3v0HJTLEmZvMTdt93lWQK5j4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91104BD/4373D50C384311EAA6192E53C4F9AE02/pi3nVqmxabvP97VW1DMAlV1A4yA.crl rsync://rpki.apnic.net/member_repository/A91104BD/4373D50C384311EAA6192E53C4F9AE02/pi3nVqmxabvP97VW1DMAlV1A4yA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pi3nVqmxabvP97VW1DMAlV1A4yA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 09 Jul 2025 19:20:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2898 (0xb52) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91104BD, serialNumber=A62DE756A9B169BBCFF7B556D43300955D40E320 Validity Not Before: Jul 2 19:20:58 2025 GMT Not After : Jul 9 19:20:58 2025 GMT Subject: CN=6865869a-6537 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:78:3d:ec:0a:7f:b6:25:1c:c5:28:78:f4:2a: 72:d8:81:0f:70:95:b3:83:7f:e8:81:14:53:d3:3b: 9a:89:18:3c:0d:59:87:6c:e4:79:28:04:31:19:01: 7a:24:bc:8b:99:e1:0f:69:f5:ac:e7:26:30:7c:06: 48:cf:5b:88:39:8e:18:c2:a5:27:24:75:69:ea:59: 80:50:04:45:b1:99:a4:9a:42:2a:3a:99:42:f9:33: 94:2d:04:44:e2:ec:d5:ff:fd:f0:85:46:96:63:24: b1:c0:fb:04:b8:ad:af:e5:20:46:39:ca:5a:72:9f: de:35:70:d9:ff:51:18:d7:f0:15:a5:46:f5:e5:33: a2:9b:cc:d7:61:67:c0:31:b7:83:bb:33:58:37:95: ed:f4:4b:ae:d1:fa:8a:56:f5:ff:32:e4:15:18:1f: 57:a7:7b:4f:6a:7d:4e:a7:67:9a:e6:a8:5b:b8:8f: 2d:d2:6e:82:10:21:f2:bb:fd:32:90:4f:64:40:4c: 0d:65:eb:d5:38:71:1a:82:2a:50:b5:1a:55:51:ae: de:e7:4a:2e:f3:a1:5f:b2:ad:5f:68:33:37:cf:8c: f2:e2:29:ef:09:36:75:04:fe:18:e8:22:3c:db:8f: 87:d9:a0:44:18:31:24:1e:93:65:bb:09:28:e5:ef: e2:91 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0B:9F:57:67:D8:D3:80:AB:43:46:D3:BD:8F:84:74:50:94:EF:37:CC X509v3 Authority Key Identifier: keyid:A6:2D:E7:56:A9:B1:69:BB:CF:F7:B5:56:D4:33:00:95:5D:40:E3:20 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91104BD/4373D50C384311EAA6192E53C4F9AE02/pi3nVqmxabvP97VW1DMAlV1A4yA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pi3nVqmxabvP97VW1DMAlV1A4yA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91104BD/4373D50C384311EAA6192E53C4F9AE02/pi3nVqmxabvP97VW1DMAlV1A4yA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 32:4a:a1:07:f2:21:24:c6:42:05:8c:5a:48:03:15:cf:d5:30: 91:fa:d6:19:aa:d7:53:44:92:39:f0:9e:6d:a8:03:24:4b:5a: 8a:29:02:d3:7b:9b:a1:47:41:ae:3e:1e:9f:c5:12:f1:7a:e5: 53:c0:d1:b7:b8:f0:96:47:8a:55:1f:13:35:a2:28:cc:9b:06: f1:59:b4:61:cd:12:61:cb:07:b9:6d:03:59:08:ed:cc:a2:f6: 9d:6d:4a:cf:a6:70:f3:54:11:1e:c6:c4:f5:74:1d:d1:43:e7: 83:ba:4c:d0:67:4b:c9:5f:4a:c6:15:f7:43:e8:e1:d0:84:aa: 14:48:63:e8:15:2b:dc:4b:33:9c:9e:7a:f2:2e:e6:1b:08:53: 78:3e:17:2f:71:a9:96:0c:5a:ba:76:07:c6:38:7c:c9:10:9c: b7:89:4b:39:ce:d7:f1:2c:27:78:cf:0a:f2:6c:eb:96:77:ba: af:73:8c:3b:80:f0:37:29:54:dd:b0:26:67:b1:f4:3f:60:23: b5:fb:0e:86:e2:e2:de:2a:26:38:6a:62:3a:ba:45:dc:dc:bc: f5:34:5d:1a:63:50:70:e2:42:79:a4:1c:bf:4a:d5:e9:f1:83: 67:06:c5:68:64:99:29:ab:98:3a:e6:ff:24:8c:d1:37:4e:71: 30:14:52:a8 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICC1IwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MTA0QkQxMTAvBgNVBAUTKEE2MkRFNzU2QTlCMTY5QkJDRkY3QjU1NkQ0MzMwMDk1 NUQ0MEUzMjAwHhcNMjUwNzAyMTkyMDU4WhcNMjUwNzA5MTkyMDU4WjAYMRYwFAYD VQQDEw02ODY1ODY5YS02NTM3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwHg97Ap/tiUcxSh49Cpy2IEPcJWzg3/ogRRT0zuaiRg8DVmHbOR5KAQxGQF6 JLyLmeEPafWs5yYwfAZIz1uIOY4YwqUnJHVp6lmAUARFsZmkmkIqOplC+TOULQRE 4uzV//3whUaWYySxwPsEuK2v5SBGOcpacp/eNXDZ/1EY1/AVpUb15TOim8zXYWfA MbeDuzNYN5Xt9Euu0fqKVvX/MuQVGB9Xp3tPan1Op2ea5qhbuI8t0m6CECHyu/0y kE9kQEwNZevVOHEagipQtRpVUa7e50ou86Ffsq1faDM3z4zy4invCTZ1BP4Y6CI8 24+H2aBEGDEkHpNluwko5e/ikQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFAufV2fY 04CrQ0bTvY+EdFCU7zfMMB8GA1UdIwQYMBaAFKYt51apsWm7z/e1VtQzAJVdQOMg MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExMDRCRC80MzczRDUwQzM4 NDMxMUVBQTYxOTJFNTNDNEY5QUUwMi9waTNuVnFteGFidlA5N1ZXMURNQWxWMUE0 eUEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3BpM25WcW14YWJ2UDk3VlcxRE1BbFYxQTR5QS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx MDRCRC80MzczRDUwQzM4NDMxMUVBQTYxOTJFNTNDNEY5QUUwMi9waTNuVnFteGFi dlA5N1ZXMURNQWxWMUE0eUEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAySqEH8iEkxkIFjFpIAxXP1TCR+tYZqtdTRJI58J5tqAMkS1qKKQLT e5uhR0GuPh6fxRLxeuVTwNG3uPCWR4pVHxM1oijMmwbxWbRhzRJhywe5bQNZCO3M ovadbUrPpnDzVBEexsT1dB3RQ+eDukzQZ0vJX0rGFfdD6OHQhKoUSGPoFSvcSzOc nnryLuYbCFN4PhcvcamWDFq6dgfGOHzJEJy3iUs5ztfxLCd4zwrybOuWd7qvc4w7 gPA3KVTdsCZnsfQ/YCO1+w6G4uLeKiY4amI6ukXc3Lz1NF0aY1Bw4kJ5pBy/StXp 8YNnBsVoZJkpq5g65v8kjNE3TnEwFFKo -----END CERTIFICATE-----Generated at Fri Jul 4 15:47:40 2025 by rpki-client