$ rpki-client -vvf rpki.apnic.net/member_repository/A91A08FD/9F42EAD8C8AB11E9829D282FC4F9AE02/PB_di6MB3OPbPwvMJchpTOG83H0.mft File: PB_di6MB3OPbPwvMJchpTOG83H0.mft (raw, json) Hash identifier: 5+4+ExABcexidSdmI164Nmi1dOdAfxwO3FquN1O2C1A= Subject key identifier: 9D:D5:61:ED:3F:83:A8:BA:DE:CA:71:2F:CC:5E:88:B0:AC:59:A0:8D Authority key identifier: 3C:1F:DD:8B:A3:01:DC:E3:DB:3F:0B:CC:25:C8:69:4C:E1:BC:DC:7D Certificate issuer: /CN=A91A08FD/serialNumber=3C1FDD8BA301DCE3DB3F0BCC25C8694CE1BCDC7D Certificate serial: 0D8E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PB_di6MB3OPbPwvMJchpTOG83H0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A08FD/9F42EAD8C8AB11E9829D282FC4F9AE02/PB_di6MB3OPbPwvMJchpTOG83H0.mft Manifest number: 0D85 Signing time: Sat 28 Jun 2025 17:43:56 +0000 Manifest this update: Sat 28 Jun 2025 17:43:56 +0000 Manifest next update: Sat 05 Jul 2025 17:43:56 +0000 Files and hashes: 1: PB_di6MB3OPbPwvMJchpTOG83H0.crl (hash: Cy1BbMUuO93R38Rj4MED35bU85DBzvuWSFGXJDbmc+0=) 2: 3802A98EC8AC11E9877DCE2FC4F9AE02.roa (hash: pTMoVBZCsEARFbs1aGExyarMu+r7tLUk6ACYjZUvCyg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A08FD/9F42EAD8C8AB11E9829D282FC4F9AE02/PB_di6MB3OPbPwvMJchpTOG83H0.crl rsync://rpki.apnic.net/member_repository/A91A08FD/9F42EAD8C8AB11E9829D282FC4F9AE02/PB_di6MB3OPbPwvMJchpTOG83H0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PB_di6MB3OPbPwvMJchpTOG83H0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 05 Jul 2025 17:43:55 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3470 (0xd8e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A08FD, serialNumber=3C1FDD8BA301DCE3DB3F0BCC25C8694CE1BCDC7D Validity Not Before: Jun 28 17:43:56 2025 GMT Not After : Jul 5 17:43:56 2025 GMT Subject: CN=686029dc-eaec Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:df:72:a8:9d:b7:ad:92:a2:a5:8f:fc:d7:5b:05: 93:84:f9:24:06:b7:95:73:fa:aa:01:b0:2d:9e:0f: ff:a6:ed:02:02:95:a0:22:6e:c1:72:c8:df:50:0d: 1e:28:ed:a9:83:d9:e4:4a:91:9c:8b:47:69:b6:7f: a6:07:64:a9:3b:06:84:80:15:2e:2c:83:99:11:66: 0e:1e:51:3f:de:4a:a3:c3:c2:70:b5:10:1b:63:48: 97:23:d7:c5:3f:db:fd:f6:b2:02:9e:03:0f:b9:83: cb:ec:01:21:92:b0:fe:13:b6:e9:82:19:08:0f:e3: 09:eb:74:5e:a7:01:8d:35:be:09:7f:aa:c5:82:44: de:89:29:c7:4d:d4:3b:67:2b:70:05:97:d1:69:58: de:f8:17:07:f8:5c:13:06:a9:9d:f6:d4:3f:42:91: a6:9b:ca:7f:cd:ba:d4:8b:8f:fd:83:1e:12:3e:f8: eb:a9:fd:0c:f8:cf:69:d7:77:e9:8d:dc:77:c3:c8: 3f:d7:69:49:40:83:1d:de:f0:f6:7b:63:65:6a:98: 7c:6e:69:55:17:ad:14:c2:ba:e8:17:b1:ac:ae:b3: a8:76:3d:4d:24:4d:32:ae:a5:37:d2:20:e1:88:51: a0:df:2a:8b:a4:98:f6:a7:75:ba:84:c4:4b:b9:00: 7f:b3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9D:D5:61:ED:3F:83:A8:BA:DE:CA:71:2F:CC:5E:88:B0:AC:59:A0:8D X509v3 Authority Key Identifier: keyid:3C:1F:DD:8B:A3:01:DC:E3:DB:3F:0B:CC:25:C8:69:4C:E1:BC:DC:7D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A08FD/9F42EAD8C8AB11E9829D282FC4F9AE02/PB_di6MB3OPbPwvMJchpTOG83H0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PB_di6MB3OPbPwvMJchpTOG83H0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A08FD/9F42EAD8C8AB11E9829D282FC4F9AE02/PB_di6MB3OPbPwvMJchpTOG83H0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 0a:e1:01:73:e7:cb:01:85:8d:86:e6:2a:51:94:8c:c3:40:c4: 9a:e2:f6:6b:3b:cb:a5:76:ea:eb:14:bd:0c:c7:19:18:98:c2: 28:0d:0e:ae:33:f5:01:a8:e2:a4:74:de:9c:71:ed:49:11:cd: 9f:23:ee:36:23:fb:bc:b0:54:59:3b:5e:31:66:6f:74:dc:58: a4:bd:33:48:47:a1:c3:e5:0a:4b:46:33:7a:7c:52:27:aa:a1: fb:ee:6e:ff:f3:fa:65:da:25:1d:15:47:ea:a8:e6:b7:93:c4: 95:18:ab:57:ac:ac:e4:1e:78:9a:15:c4:61:b1:e0:68:27:29: 99:10:31:73:3e:58:87:39:83:3a:14:fb:25:ab:ce:48:fb:ea: 32:04:03:f5:65:c9:6a:83:c4:22:d7:45:12:26:cb:9e:1c:62: 6e:60:89:72:8f:ed:b2:93:99:0b:16:e7:5b:1d:2b:1c:1f:fa: 53:87:91:c4:29:4d:4e:b0:76:53:4e:34:a6:bc:df:79:ce:8e: 45:91:fa:f9:d3:89:cb:e4:f5:32:2f:84:af:53:0c:79:bb:71: cc:41:b0:03:c1:ce:95:50:98:19:14:55:64:3b:fd:8d:06:9b: c4:12:52:76:1d:20:93:06:5e:e0:65:fc:90:8e:57:21:8a:2a: 6e:aa:8d:86 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDY4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTA4RkQxMTAvBgNVBAUTKDNDMUZERDhCQTMwMURDRTNEQjNGMEJDQzI1Qzg2OTRD RTFCQ0RDN0QwHhcNMjUwNjI4MTc0MzU2WhcNMjUwNzA1MTc0MzU2WjAYMRYwFAYD VQQDEw02ODYwMjlkYy1lYWVjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA33KonbetkqKlj/zXWwWThPkkBreVc/qqAbAtng//pu0CApWgIm7BcsjfUA0e KO2pg9nkSpGci0dptn+mB2SpOwaEgBUuLIOZEWYOHlE/3kqjw8JwtRAbY0iXI9fF P9v99rICngMPuYPL7AEhkrD+E7bpghkID+MJ63RepwGNNb4Jf6rFgkTeiSnHTdQ7 ZytwBZfRaVje+BcH+FwTBqmd9tQ/QpGmm8p/zbrUi4/9gx4SPvjrqf0M+M9p13fp jdx3w8g/12lJQIMd3vD2e2Nlaph8bmlVF60UwrroF7GsrrOodj1NJE0yrqU30iDh iFGg3yqLpJj2p3W6hMRLuQB/swIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJ3VYe0/ g6i63spxL8xeiLCsWaCNMB8GA1UdIwQYMBaAFDwf3YujAdzj2z8LzCXIaUzhvNx9 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBMDhGRC85RjQyRUFEOEM4 QUIxMUU5ODI5RDI4MkZDNEY5QUUwMi9QQl9kaTZNQjNPUGJQd3ZNSmNocFRPRzgz SDAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1BCX2RpNk1CM09QYlB3dk1KY2hwVE9HODNIMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB MDhGRC85RjQyRUFEOEM4QUIxMUU5ODI5RDI4MkZDNEY5QUUwMi9QQl9kaTZNQjNP UGJQd3ZNSmNocFRPRzgzSDAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAK4QFz58sBhY2G5ipRlIzDQMSa4vZrO8uldurrFL0MxxkYmMIoDQ6u M/UBqOKkdN6cce1JEc2fI+42I/u8sFRZO14xZm903FikvTNIR6HD5QpLRjN6fFIn qqH77m7/8/pl2iUdFUfqqOa3k8SVGKtXrKzkHniaFcRhseBoJymZEDFzPliHOYM6 FPslq85I++oyBAP1Zclqg8Qi10USJsueHGJuYIlyj+2yk5kLFudbHSscH/pTh5HE KU1OsHZTTjSmvN95zo5Fkfr504nL5PUyL4SvUwx5u3HMQbADwc6VUJgZFFVkO/2N BpvEElJ2HSCTBl7gZfyQjlchiipuqo2G -----END CERTIFICATE-----Generated at Sun Jun 29 19:25:18 2025 by rpki-client