$ rpki-client -vvf rpki.apnic.net/member_repository/A91104BD/4373D50C384311EAA6192E53C4F9AE02/pi3nVqmxabvP97VW1DMAlV1A4yA.mft File: pi3nVqmxabvP97VW1DMAlV1A4yA.mft (raw, json) Hash identifier: 00sNRJsV+iYXCBCLfQBghkFipr8tUGKE2XJswXvBj0E= Subject key identifier: 7B:26:A2:10:DE:54:4B:44:9A:F7:6F:80:1E:8B:7D:9A:A8:93:68:E8 Authority key identifier: A6:2D:E7:56:A9:B1:69:BB:CF:F7:B5:56:D4:33:00:95:5D:40:E3:20 Certificate issuer: /CN=A91104BD/serialNumber=A62DE756A9B169BBCFF7B556D43300955D40E320 Certificate serial: 0B3B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pi3nVqmxabvP97VW1DMAlV1A4yA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91104BD/4373D50C384311EAA6192E53C4F9AE02/pi3nVqmxabvP97VW1DMAlV1A4yA.mft Manifest number: 0B34 Signing time: Fri 16 May 2025 19:23:32 +0000 Manifest this update: Fri 16 May 2025 19:23:31 +0000 Manifest next update: Fri 23 May 2025 19:23:31 +0000 Files and hashes: 1: pi3nVqmxabvP97VW1DMAlV1A4yA.crl (hash: BAQfAt9cPjg9XNLABwKIsfO+CjC092Izla11fn6GG+4=) 2: D326CC30384411EA9D540B58C4F9AE02.roa (hash: y7gm3Ye3cCKsMlMiwHP3v0HJTLEmZvMTdt93lWQK5j4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91104BD/4373D50C384311EAA6192E53C4F9AE02/pi3nVqmxabvP97VW1DMAlV1A4yA.crl rsync://rpki.apnic.net/member_repository/A91104BD/4373D50C384311EAA6192E53C4F9AE02/pi3nVqmxabvP97VW1DMAlV1A4yA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pi3nVqmxabvP97VW1DMAlV1A4yA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 23 May 2025 19:23:31 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2875 (0xb3b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91104BD, serialNumber=A62DE756A9B169BBCFF7B556D43300955D40E320 Validity Not Before: May 16 19:23:31 2025 GMT Not After : May 23 19:23:31 2025 GMT Subject: CN=682790b3-a2f6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b3:9a:1a:d5:66:e2:a7:51:dc:15:aa:bc:e0:cb: 3f:88:59:f2:79:a2:43:42:1b:28:39:45:d1:08:48: 54:9c:39:78:6a:27:eb:91:b0:f9:12:d3:cf:a1:61: cd:07:f8:da:6a:11:a2:6d:6a:26:95:56:4e:8c:c2: 28:90:09:3f:c1:c2:e2:b5:74:c0:47:09:62:bb:47: 53:f4:92:3c:01:8f:31:19:09:12:5d:70:f7:ac:44: ed:03:52:3c:06:fd:13:fb:ee:a4:91:56:8a:20:1e: d8:5c:c2:32:e3:ee:1a:3d:9d:fb:f7:49:5c:38:96: 9f:09:d8:79:db:59:08:0e:02:d5:70:7e:6a:16:27: a3:12:49:f8:44:84:0b:5a:35:32:f6:d2:7b:92:44: 99:c4:48:c9:9b:a9:4e:24:58:53:14:4b:11:9f:20: f3:be:1b:97:a6:07:38:ea:aa:b9:08:a1:16:b2:1d: c4:5a:2b:aa:57:1d:f1:0b:bb:40:bd:2a:7c:1a:73: a8:47:0b:f9:a3:46:b6:06:30:51:c7:f6:1a:d5:67: 1a:1d:58:ef:66:22:f6:bb:b0:68:fc:a8:16:de:d2: 35:11:7b:1c:bd:f0:d6:32:11:86:2f:43:97:f9:cb: ea:5f:66:fd:37:22:ab:c3:1c:4a:79:b8:b3:a3:da: 03:ab Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7B:26:A2:10:DE:54:4B:44:9A:F7:6F:80:1E:8B:7D:9A:A8:93:68:E8 X509v3 Authority Key Identifier: keyid:A6:2D:E7:56:A9:B1:69:BB:CF:F7:B5:56:D4:33:00:95:5D:40:E3:20 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91104BD/4373D50C384311EAA6192E53C4F9AE02/pi3nVqmxabvP97VW1DMAlV1A4yA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pi3nVqmxabvP97VW1DMAlV1A4yA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91104BD/4373D50C384311EAA6192E53C4F9AE02/pi3nVqmxabvP97VW1DMAlV1A4yA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 56:ed:d3:9c:5f:10:cb:66:30:61:01:cb:86:cf:b2:21:a2:94: a2:8a:b3:5e:d7:2e:0a:e2:c9:32:ff:dd:2b:21:91:bd:bb:ae: 57:84:21:a3:9d:94:c2:67:5b:ae:2e:f8:cd:e6:04:b4:57:f5: 66:61:75:ee:dc:f6:30:c9:e3:83:9f:96:34:d2:08:78:b3:cb: cf:c7:15:2d:1e:20:46:89:06:19:74:41:43:90:25:7c:57:c3: 45:b1:86:8a:eb:b4:cc:e2:28:2b:8f:b7:35:34:5f:70:87:7e: 37:5f:1b:c7:64:e7:0e:1b:ac:72:73:57:93:3c:81:51:9e:87: fa:bb:99:b3:0f:e8:22:c5:ad:61:66:c1:3a:15:b7:04:5a:90: 35:49:14:52:d5:0d:f2:ee:51:b1:90:44:90:c7:7c:c4:e9:5f: 08:3c:33:3a:2c:b4:e0:cb:a9:c2:80:75:6c:f7:61:94:e5:e4: c6:22:1b:9c:b4:8e:19:9e:fe:e3:ce:76:ab:d5:d9:3b:b9:d5: ae:65:f1:f7:4f:d8:f1:e1:99:09:20:d2:7b:02:16:cb:5a:a1: cf:21:20:64:9a:8d:55:81:3e:21:5e:fd:e3:d4:8e:4f:11:aa: 53:d4:64:cd:6a:d3:e9:42:80:f4:63:61:43:3e:c0:ac:0a:c2: 4d:29:b8:94 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCzswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MTA0QkQxMTAvBgNVBAUTKEE2MkRFNzU2QTlCMTY5QkJDRkY3QjU1NkQ0MzMwMDk1 NUQ0MEUzMjAwHhcNMjUwNTE2MTkyMzMxWhcNMjUwNTIzMTkyMzMxWjAYMRYwFAYD VQQDEw02ODI3OTBiMy1hMmY2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAs5oa1Wbip1HcFaq84Ms/iFnyeaJDQhsoOUXRCEhUnDl4aifrkbD5EtPPoWHN B/jaahGibWomlVZOjMIokAk/wcLitXTARwliu0dT9JI8AY8xGQkSXXD3rETtA1I8 Bv0T++6kkVaKIB7YXMIy4+4aPZ3790lcOJafCdh521kIDgLVcH5qFiejEkn4RIQL WjUy9tJ7kkSZxEjJm6lOJFhTFEsRnyDzvhuXpgc46qq5CKEWsh3EWiuqVx3xC7tA vSp8GnOoRwv5o0a2BjBRx/Ya1WcaHVjvZiL2u7Bo/KgW3tI1EXscvfDWMhGGL0OX +cvqX2b9NyKrwxxKebizo9oDqwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFHsmohDe VEtEmvdvgB6LfZqok2joMB8GA1UdIwQYMBaAFKYt51apsWm7z/e1VtQzAJVdQOMg MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExMDRCRC80MzczRDUwQzM4 NDMxMUVBQTYxOTJFNTNDNEY5QUUwMi9waTNuVnFteGFidlA5N1ZXMURNQWxWMUE0 eUEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3BpM25WcW14YWJ2UDk3VlcxRE1BbFYxQTR5QS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx MDRCRC80MzczRDUwQzM4NDMxMUVBQTYxOTJFNTNDNEY5QUUwMi9waTNuVnFteGFi dlA5N1ZXMURNQWxWMUE0eUEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBW7dOcXxDLZjBhAcuGz7IhopSiirNe1y4K4sky/90rIZG9u65XhCGj nZTCZ1uuLvjN5gS0V/VmYXXu3PYwyeODn5Y00gh4s8vPxxUtHiBGiQYZdEFDkCV8 V8NFsYaK67TM4igrj7c1NF9wh343XxvHZOcOG6xyc1eTPIFRnof6u5mzD+gixa1h ZsE6FbcEWpA1SRRS1Q3y7lGxkESQx3zE6V8IPDM6LLTgy6nCgHVs92GU5eTGIhuc tI4Znv7jznar1dk7udWuZfH3T9jx4ZkJINJ7AhbLWqHPISBkmo1VgT4hXv3j1I5P EapT1GTNatPpQoD0Y2FDPsCsCsJNKbiU -----END CERTIFICATE-----Generated at Sat May 17 00:58:35 2025 by rpki-client