$ rpki-client -vvf rpki.apnic.net/member_repository/A9122D89/C6A4A5E2084411EB9C736514C4F9AE02/PP5vPrHYknFeQTbpuoVrmPZxR7A.mft File: PP5vPrHYknFeQTbpuoVrmPZxR7A.mft (raw, json) Hash identifier: QpzEeF7zpVWN0TIxqfm6eF/MGb/l1YsmkOfkv2T7wVs= Subject key identifier: FD:90:DD:78:7A:C6:7E:B3:8C:71:54:B8:CE:1C:2A:45:12:0C:29:54 Authority key identifier: 3C:FE:6F:3E:B1:D8:92:71:5E:41:36:E9:BA:85:6B:98:F6:71:47:B0 Certificate issuer: /CN=A9122D89/serialNumber=3CFE6F3EB1D892715E4136E9BA856B98F67147B0 Certificate serial: 0797 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PP5vPrHYknFeQTbpuoVrmPZxR7A.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9122D89/C6A4A5E2084411EB9C736514C4F9AE02/PP5vPrHYknFeQTbpuoVrmPZxR7A.mft Manifest number: 0791 Signing time: Wed 14 May 2025 21:25:18 +0000 Manifest this update: Wed 14 May 2025 21:25:17 +0000 Manifest next update: Wed 21 May 2025 21:25:17 +0000 Files and hashes: 1: PP5vPrHYknFeQTbpuoVrmPZxR7A.crl (hash: zna9PAGtL9De2RbxvCkYOzzwbOETC8pH6zzev6Y+DpY=) 2: 7E8114F414E611EB82C98471C4F9AE02.roa (hash: J9GQPP4a7clIhGgoBAM9KLX43lz+eBaMPakWPFWVHmk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9122D89/C6A4A5E2084411EB9C736514C4F9AE02/PP5vPrHYknFeQTbpuoVrmPZxR7A.crl rsync://rpki.apnic.net/member_repository/A9122D89/C6A4A5E2084411EB9C736514C4F9AE02/PP5vPrHYknFeQTbpuoVrmPZxR7A.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PP5vPrHYknFeQTbpuoVrmPZxR7A.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 21 May 2025 21:25:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1943 (0x797) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9122D89, serialNumber=3CFE6F3EB1D892715E4136E9BA856B98F67147B0 Validity Not Before: May 14 21:25:17 2025 GMT Not After : May 21 21:25:17 2025 GMT Subject: CN=68250a3e-0962 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:a7:c0:0b:39:9d:a7:ab:7e:1c:f3:af:2c:4e: a1:f9:31:9d:b3:1a:90:e2:13:83:5e:17:8a:57:1d: e7:05:1c:69:7d:de:45:6a:f5:fb:2f:d7:4e:49:6a: 91:9d:da:c6:fd:38:b2:08:5e:0c:7d:0d:55:66:36: a8:91:f1:be:3f:ec:ab:b7:4a:e5:8d:ed:41:5a:cf: b4:ae:23:a7:19:7e:24:1a:20:b2:d1:66:b8:f9:d3: e7:41:fe:91:65:4f:dc:91:f4:56:03:7c:d6:ff:24: f1:2e:90:37:8b:0f:de:76:05:e2:93:94:44:90:80: c1:7a:27:71:e8:e2:a1:55:40:1e:20:5f:c4:cd:26: 49:4e:5b:27:f2:82:f2:e4:c1:d7:b0:6e:03:b8:80: 20:2d:4e:13:1d:50:75:f4:50:4d:c2:20:e9:7f:8b: ce:7a:6b:17:ad:19:ac:c2:dd:57:54:20:7f:fb:6a: d3:66:38:e3:ac:36:6c:a1:37:dd:cf:86:75:36:68: 7f:b7:9a:47:23:64:44:80:a0:6e:79:82:37:db:24: 97:84:19:e1:58:53:06:46:e1:60:b9:28:72:10:7d: ff:4e:0c:6c:28:17:00:71:c5:a3:35:b4:03:8c:9a: aa:7f:5d:ca:fa:c9:5a:f1:9b:94:20:a4:73:14:27: 03:03 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FD:90:DD:78:7A:C6:7E:B3:8C:71:54:B8:CE:1C:2A:45:12:0C:29:54 X509v3 Authority Key Identifier: keyid:3C:FE:6F:3E:B1:D8:92:71:5E:41:36:E9:BA:85:6B:98:F6:71:47:B0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9122D89/C6A4A5E2084411EB9C736514C4F9AE02/PP5vPrHYknFeQTbpuoVrmPZxR7A.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PP5vPrHYknFeQTbpuoVrmPZxR7A.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9122D89/C6A4A5E2084411EB9C736514C4F9AE02/PP5vPrHYknFeQTbpuoVrmPZxR7A.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 6d:b5:b4:d0:47:64:c2:c0:21:8c:8c:1c:c9:0f:10:5a:de:b4: c8:4e:e0:d9:87:43:ea:63:ed:3a:35:05:a4:30:eb:ab:99:c9: 17:7d:9e:06:45:36:eb:99:71:3a:89:d4:7f:8b:cc:ed:7e:b9: 45:de:bf:56:bf:6f:8a:f7:4b:5f:f1:f6:83:a1:90:d4:7b:53: 7e:a7:63:42:fe:39:97:32:64:9e:17:ba:f6:e1:bd:f4:1e:88: df:96:a8:b3:76:78:29:4e:d1:a5:b0:6d:fd:c7:1d:e5:fb:96: c2:5e:86:0d:49:9a:b8:a3:7c:98:64:11:c1:f8:ec:08:2b:25: 1d:0d:4d:f3:46:8c:0c:8d:92:b5:15:62:cd:c4:7f:99:45:1e: 61:c9:94:be:ee:94:09:34:b7:7e:ce:c6:2d:51:5a:f4:bb:0a: ef:37:22:6d:0b:dd:f1:2b:82:7c:96:4c:fb:59:5e:22:8d:4b: 06:93:02:79:97:91:ee:18:4a:b6:8b:6c:0e:a3:ce:86:11:ea: 7a:53:ee:fa:3a:e9:7d:0a:0e:95:26:40:9c:9d:7e:f5:ed:12: c5:6a:94:ca:a5:76:e2:7f:dc:c6:be:9f:2e:8c:a0:71:9d:3b: 1b:36:e5:d5:a3:cb:08:fe:35:cc:b2:1a:c9:e6:13:37:59:20: f8:e9:5f:d8 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICB5cwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MjJEODkxMTAvBgNVBAUTKDNDRkU2RjNFQjFEODkyNzE1RTQxMzZFOUJBODU2Qjk4 RjY3MTQ3QjAwHhcNMjUwNTE0MjEyNTE3WhcNMjUwNTIxMjEyNTE3WjAYMRYwFAYD VQQDEw02ODI1MGEzZS0wOTYyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwKfACzmdp6t+HPOvLE6h+TGdsxqQ4hODXheKVx3nBRxpfd5FavX7L9dOSWqR ndrG/TiyCF4MfQ1VZjaokfG+P+yrt0rlje1BWs+0riOnGX4kGiCy0Wa4+dPnQf6R ZU/ckfRWA3zW/yTxLpA3iw/edgXik5REkIDBeidx6OKhVUAeIF/EzSZJTlsn8oLy 5MHXsG4DuIAgLU4THVB19FBNwiDpf4vOemsXrRmswt1XVCB/+2rTZjjjrDZsoTfd z4Z1Nmh/t5pHI2REgKBueYI32ySXhBnhWFMGRuFguShyEH3/TgxsKBcAccWjNbQD jJqqf13K+sla8ZuUIKRzFCcDAwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFP2Q3Xh6 xn6zjHFUuM4cKkUSDClUMB8GA1UdIwQYMBaAFDz+bz6x2JJxXkE26bqFa5j2cUew MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyMkQ4OS9DNkE0QTVFMjA4 NDQxMUVCOUM3MzY1MTRDNEY5QUUwMi9QUDV2UHJIWWtuRmVRVGJwdW9Wcm1QWnhS N0EuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1BQNXZQckhZa25GZVFUYnB1b1ZybVBaeFI3QS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy MkQ4OS9DNkE0QTVFMjA4NDQxMUVCOUM3MzY1MTRDNEY5QUUwMi9QUDV2UHJIWWtu RmVRVGJwdW9Wcm1QWnhSN0EubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBttbTQR2TCwCGMjBzJDxBa3rTITuDZh0PqY+06NQWkMOurmckXfZ4G RTbrmXE6idR/i8ztfrlF3r9Wv2+K90tf8faDoZDUe1N+p2NC/jmXMmSeF7r24b30 HojflqizdngpTtGlsG39xx3l+5bCXoYNSZq4o3yYZBHB+OwIKyUdDU3zRowMjZK1 FWLNxH+ZRR5hyZS+7pQJNLd+zsYtUVr0uwrvNyJtC93xK4J8lkz7WV4ijUsGkwJ5 l5HuGEq2i2wOo86GEep6U+76Oul9Cg6VJkCcnX717RLFapTKpXbif9zGvp8ujKBx nTsbNuXVo8sI/jXMshrJ5hM3WSD46V/Y -----END CERTIFICATE-----Generated at Thu May 15 19:25:43 2025 by rpki-client