$ rpki-client -vvf rpki.apnic.net/member_repository/A916AF8E/D94A75941C1411EBB036DC63C4F9AE02/PcXSlD7UrPqSa3dnapi-yLPJea4.mft File: PcXSlD7UrPqSa3dnapi-yLPJea4.mft (raw, json) Hash identifier: tB2KXnLB4vUGiIytX0pHNXCRdM02S41Nf07PMUvrefw= Subject key identifier: B7:45:93:B9:4E:35:72:A7:D3:19:AF:6C:2D:7B:51:A8:FD:BF:F4:96 Authority key identifier: 3D:C5:D2:94:3E:D4:AC:FA:92:6B:77:67:6A:98:BE:C8:B3:C9:79:AE Certificate issuer: /CN=A916AF8E/serialNumber=3DC5D2943ED4ACFA926B77676A98BEC8B3C979AE Certificate serial: 0767 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PcXSlD7UrPqSa3dnapi-yLPJea4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A916AF8E/D94A75941C1411EBB036DC63C4F9AE02/PcXSlD7UrPqSa3dnapi-yLPJea4.mft Manifest number: 075F Signing time: Sat 10 May 2025 21:14:21 +0000 Manifest this update: Sat 10 May 2025 21:14:20 +0000 Manifest next update: Sat 17 May 2025 21:14:20 +0000 Files and hashes: 1: PcXSlD7UrPqSa3dnapi-yLPJea4.crl (hash: SeGraTHPKIQzp+s05NWrNUxmDoRc9kcV4KWdm5PSsTM=) 2: 499DE3FC1C1611EB8BD35065C4F9AE02.roa (hash: QnFh/0YdNLZr/ZfMn+21+lOUTuFHow1/2U5v+xOLivo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A916AF8E/D94A75941C1411EBB036DC63C4F9AE02/PcXSlD7UrPqSa3dnapi-yLPJea4.crl rsync://rpki.apnic.net/member_repository/A916AF8E/D94A75941C1411EBB036DC63C4F9AE02/PcXSlD7UrPqSa3dnapi-yLPJea4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PcXSlD7UrPqSa3dnapi-yLPJea4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 17 May 2025 21:14:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1895 (0x767) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A916AF8E, serialNumber=3DC5D2943ED4ACFA926B77676A98BEC8B3C979AE Validity Not Before: May 10 21:14:20 2025 GMT Not After : May 17 21:14:20 2025 GMT Subject: CN=681fc1ac-a036 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ae:f9:16:ea:89:a8:f9:ed:9b:d9:af:02:1b:fd: b9:60:bb:4b:72:24:97:21:62:f8:c7:ad:50:bf:0b: 13:bc:33:69:7a:6b:9e:48:9b:eb:2a:3d:d8:68:c2: c8:22:7f:9d:2f:3e:a7:44:d8:b3:f7:4e:d1:cc:22: 5a:b8:88:f5:8e:be:c1:5c:1a:f8:9e:af:20:1d:fd: d8:19:fc:66:d1:9c:7f:18:83:50:63:c5:68:fb:cb: 52:9a:44:58:00:dc:a5:ad:c5:9c:00:eb:3f:d1:3a: a7:9b:11:17:44:b6:50:4f:db:1d:88:90:78:24:16: 8a:3a:65:8c:42:b4:cb:73:64:79:d7:82:ff:92:0f: 87:84:63:c9:bc:82:07:c1:4a:de:32:cf:d1:34:26: 00:aa:5e:18:78:72:89:aa:fc:f3:f0:e7:9a:fe:17: f1:29:52:72:fa:82:fa:de:4e:eb:cd:25:84:a0:c2: 38:3a:a1:94:ca:6e:0c:b3:0e:47:92:ce:04:d9:33: 79:c5:ca:0c:60:ac:11:bb:40:71:54:72:c5:27:5e: 58:fe:5a:97:6c:3d:8e:3a:ef:d7:5d:dd:42:c6:df: ee:31:73:ee:8a:77:88:09:9b:c6:66:89:9e:8e:1d: 0c:5d:33:c7:cc:5e:79:31:91:1f:98:58:a8:21:4a: 0d:d3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B7:45:93:B9:4E:35:72:A7:D3:19:AF:6C:2D:7B:51:A8:FD:BF:F4:96 X509v3 Authority Key Identifier: keyid:3D:C5:D2:94:3E:D4:AC:FA:92:6B:77:67:6A:98:BE:C8:B3:C9:79:AE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A916AF8E/D94A75941C1411EBB036DC63C4F9AE02/PcXSlD7UrPqSa3dnapi-yLPJea4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PcXSlD7UrPqSa3dnapi-yLPJea4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A916AF8E/D94A75941C1411EBB036DC63C4F9AE02/PcXSlD7UrPqSa3dnapi-yLPJea4.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 05:a9:93:24:17:86:6b:ea:41:e1:c5:5b:d3:dd:74:f8:51:22: 33:16:df:75:e8:4d:02:0b:16:5d:1f:8e:55:27:7b:8c:e7:4b: 0c:e2:11:17:94:56:56:59:72:e8:9a:2d:e3:c4:23:83:ff:07: ea:cb:e4:f5:09:ff:d6:af:90:6f:c7:e9:1d:68:31:38:a2:f4: 58:85:b4:c4:c4:5c:df:94:c1:5f:e5:55:3b:50:01:28:c0:b2: 0a:3e:f2:0c:30:c2:b2:03:fc:4a:54:4f:74:26:e2:77:24:0c: cc:1a:8c:73:19:0d:0b:6d:b2:e6:4d:32:24:2a:68:3c:c1:d0: df:7c:ad:ea:1b:fd:5d:2a:41:6f:ea:d8:51:18:34:e9:b8:7a: 81:5b:8a:e1:e7:3b:95:64:04:b6:9e:ac:a2:ce:13:f7:50:6c: c9:90:36:1e:d6:c7:9b:06:c3:59:f5:3f:ee:60:69:81:5a:6a: 95:b6:cb:6b:fb:e6:a1:25:95:c5:f8:c7:bf:d9:70:26:2d:af: 86:f4:35:d6:30:29:98:d8:7d:69:23:dd:79:25:72:fc:d5:48: 19:ff:72:b0:be:4c:78:53:39:57:49:51:f2:cf:77:32:f3:da: 5d:53:c1:89:75:1f:bf:56:3a:9a:92:f7:1e:d0:b0:9b:b1:bd: d3:0f:1a:d9 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICB2cwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NkFGOEUxMTAvBgNVBAUTKDNEQzVEMjk0M0VENEFDRkE5MjZCNzc2NzZBOThCRUM4 QjNDOTc5QUUwHhcNMjUwNTEwMjExNDIwWhcNMjUwNTE3MjExNDIwWjAYMRYwFAYD VQQDEw02ODFmYzFhYy1hMDM2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArvkW6omo+e2b2a8CG/25YLtLciSXIWL4x61QvwsTvDNpemueSJvrKj3YaMLI In+dLz6nRNiz907RzCJauIj1jr7BXBr4nq8gHf3YGfxm0Zx/GINQY8Vo+8tSmkRY ANylrcWcAOs/0TqnmxEXRLZQT9sdiJB4JBaKOmWMQrTLc2R514L/kg+HhGPJvIIH wUreMs/RNCYAql4YeHKJqvzz8Oea/hfxKVJy+oL63k7rzSWEoMI4OqGUym4Msw5H ks4E2TN5xcoMYKwRu0BxVHLFJ15Y/lqXbD2OOu/XXd1Cxt/uMXPuineICZvGZome jh0MXTPHzF55MZEfmFioIUoN0wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFLdFk7lO NXKn0xmvbC17Uaj9v/SWMB8GA1UdIwQYMBaAFD3F0pQ+1Kz6kmt3Z2qYvsizyXmu MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2QUY4RS9EOTRBNzU5NDFD MTQxMUVCQjAzNkRDNjNDNEY5QUUwMi9QY1hTbEQ3VXJQcVNhM2RuYXBpLXlMUEpl YTQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1BjWFNsRDdVclBxU2EzZG5hcGkteUxQSmVhNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 QUY4RS9EOTRBNzU5NDFDMTQxMUVCQjAzNkRDNjNDNEY5QUUwMi9QY1hTbEQ3VXJQ cVNhM2RuYXBpLXlMUEplYTQubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAFqZMkF4Zr6kHhxVvT3XT4USIzFt916E0CCxZdH45VJ3uM50sM4hEX lFZWWXLomi3jxCOD/wfqy+T1Cf/Wr5Bvx+kdaDE4ovRYhbTExFzflMFf5VU7UAEo wLIKPvIMMMKyA/xKVE90JuJ3JAzMGoxzGQ0LbbLmTTIkKmg8wdDffK3qG/1dKkFv 6thRGDTpuHqBW4rh5zuVZAS2nqyizhP3UGzJkDYe1sebBsNZ9T/uYGmBWmqVtstr ++ahJZXF+Me/2XAmLa+G9DXWMCmY2H1pI915JXL81UgZ/3Kwvkx4UzlXSVHyz3cy 89pdU8GJdR+/Vjqakvce0LCbsb3TDxrZ -----END CERTIFICATE-----Generated at Sun May 11 13:38:27 2025 by rpki-client