$ rpki-client -vvf rpki.apnic.net/member_repository/A91A3399/BA68C3285CB811EE8523BC7AC4F9AE02/Pb3X7UEkgOk1XCfzwRO1ZA0xhrM.mft File: Pb3X7UEkgOk1XCfzwRO1ZA0xhrM.mft (raw, json) Hash identifier: TNrOayG/Ps8NCCLDSrpQq/fHhsT1kuiF83RRhrYvx4k= Subject key identifier: EB:43:84:51:16:D1:18:9B:CC:50:6D:3D:E6:25:55:AE:D2:CD:05:7E Authority key identifier: 3D:BD:D7:ED:41:24:80:E9:35:5C:27:F3:C1:13:B5:64:0D:31:86:B3 Certificate issuer: /CN=A91A3399/serialNumber=3DBDD7ED412480E9355C27F3C113B5640D3186B3 Certificate serial: 0144 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Pb3X7UEkgOk1XCfzwRO1ZA0xhrM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A3399/BA68C3285CB811EE8523BC7AC4F9AE02/Pb3X7UEkgOk1XCfzwRO1ZA0xhrM.mft Manifest number: 013B Signing time: Tue 13 May 2025 03:43:46 +0000 Manifest this update: Tue 13 May 2025 03:43:46 +0000 Manifest next update: Tue 20 May 2025 03:43:46 +0000 Files and hashes: 1: Pb3X7UEkgOk1XCfzwRO1ZA0xhrM.crl (hash: o3a+xbKdInl5qn/xfzT+COBhp9ObunmrkzW3oocDoYw=) 2: 553596D65DB511EE841C151FC4F9AE02.roa (hash: 5aNVVXrrk5+fzIwBo8UDYAZxVOdmHrz5HqTDIZHkN8o=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A3399/BA68C3285CB811EE8523BC7AC4F9AE02/Pb3X7UEkgOk1XCfzwRO1ZA0xhrM.crl rsync://rpki.apnic.net/member_repository/A91A3399/BA68C3285CB811EE8523BC7AC4F9AE02/Pb3X7UEkgOk1XCfzwRO1ZA0xhrM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Pb3X7UEkgOk1XCfzwRO1ZA0xhrM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 20 May 2025 03:43:45 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 324 (0x144) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A3399, serialNumber=3DBDD7ED412480E9355C27F3C113B5640D3186B3 Validity Not Before: May 13 03:43:46 2025 GMT Not After : May 20 03:43:46 2025 GMT Subject: CN=6822bff2-0cf2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9e:53:60:d2:14:a1:d3:e0:80:38:c0:03:0f:37: ec:fa:42:4a:7c:61:45:aa:0e:cb:34:87:f8:3b:2b: 80:b8:8b:bd:31:6b:a7:34:a2:4b:dd:99:d4:11:47: 05:38:7c:9c:84:e7:fe:92:81:ed:08:21:32:77:5e: df:63:af:20:00:15:8f:46:08:6e:7b:ae:69:bf:be: 8b:18:18:97:ee:73:bd:d0:bf:ba:9d:9d:30:5f:b5: f7:56:43:96:1c:75:62:f3:f6:95:7b:4a:09:b4:e3: 33:0f:a1:e9:2c:e8:0a:85:f8:a0:1d:2d:8a:7f:f6: be:77:03:ff:b2:9d:3e:61:2f:e3:87:ce:16:3c:ad: 17:3e:fc:c8:0e:34:a2:5e:13:75:21:34:a0:9e:b3: c6:67:3b:72:91:c0:16:4d:ef:3f:c3:11:8f:18:d6: d2:b4:47:d3:6b:e2:bb:e6:d7:fa:76:e4:cd:4b:8b: 66:9a:2c:59:49:25:3a:a0:86:be:95:92:8e:cf:83: 8c:33:e3:f3:a6:cf:9d:cc:dc:b2:2b:fa:71:43:27: 07:c0:3e:4b:9b:e2:9c:80:61:c7:1f:20:85:36:26: fc:3a:96:30:43:ce:64:f8:c8:e5:7a:ef:b2:88:2f: cc:30:19:24:52:fd:08:ac:74:60:1f:71:2d:6e:8f: ba:37 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EB:43:84:51:16:D1:18:9B:CC:50:6D:3D:E6:25:55:AE:D2:CD:05:7E X509v3 Authority Key Identifier: keyid:3D:BD:D7:ED:41:24:80:E9:35:5C:27:F3:C1:13:B5:64:0D:31:86:B3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A3399/BA68C3285CB811EE8523BC7AC4F9AE02/Pb3X7UEkgOk1XCfzwRO1ZA0xhrM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Pb3X7UEkgOk1XCfzwRO1ZA0xhrM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A3399/BA68C3285CB811EE8523BC7AC4F9AE02/Pb3X7UEkgOk1XCfzwRO1ZA0xhrM.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 63:37:bf:74:34:0d:34:8c:8d:46:1f:3e:27:05:62:2a:ee:71: 06:ad:d2:16:ec:87:71:d3:c5:12:71:01:57:9c:d3:d3:a7:02: 05:9b:ac:3a:4b:10:b9:fe:21:44:b5:3c:8c:60:6a:20:c9:7e: bc:29:34:39:5f:81:02:09:98:f8:1b:9b:b7:dd:42:c8:ab:df: cb:b7:de:4f:c9:0e:a5:f4:fa:20:b7:53:1b:83:7f:21:df:71: e0:78:bc:af:d2:79:e8:71:3c:db:16:9a:5b:85:4c:a2:c9:15: 1c:b6:e3:88:dc:cd:e9:68:08:63:fa:1e:c4:fc:64:89:cc:0e: 44:53:25:e3:e9:76:75:c2:73:9a:42:f5:8a:4d:55:41:35:65: e8:16:70:5d:a2:5e:b6:c3:08:12:63:38:77:2b:aa:9d:9e:5b: a8:52:2f:2d:1c:66:ca:6f:03:72:8d:0b:26:02:59:ac:7d:10: c0:a8:46:7b:3f:c7:ed:f1:90:a5:f6:0d:17:52:b8:b6:88:85: 73:d3:8a:51:bf:a4:0b:68:12:7f:7b:52:2b:38:ed:7f:cd:ad: a5:9b:f6:48:ec:de:16:69:84:cf:ae:90:eb:eb:00:a2:18:0d: f1:46:67:a1:39:6e:79:83:89:4b:5c:fb:29:c1:ce:d8:98:2b: 5e:96:da:5e -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAUQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTMzOTkxMTAvBgNVBAUTKDNEQkREN0VENDEyNDgwRTkzNTVDMjdGM0MxMTNCNTY0 MEQzMTg2QjMwHhcNMjUwNTEzMDM0MzQ2WhcNMjUwNTIwMDM0MzQ2WjAYMRYwFAYD VQQDEw02ODIyYmZmMi0wY2YyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAnlNg0hSh0+CAOMADDzfs+kJKfGFFqg7LNIf4OyuAuIu9MWunNKJL3ZnUEUcF OHychOf+koHtCCEyd17fY68gABWPRghue65pv76LGBiX7nO90L+6nZ0wX7X3VkOW HHVi8/aVe0oJtOMzD6HpLOgKhfigHS2Kf/a+dwP/sp0+YS/jh84WPK0XPvzIDjSi XhN1ITSgnrPGZztykcAWTe8/wxGPGNbStEfTa+K75tf6duTNS4tmmixZSSU6oIa+ lZKOz4OMM+Pzps+dzNyyK/pxQycHwD5Lm+KcgGHHHyCFNib8OpYwQ85k+Mjleu+y iC/MMBkkUv0IrHRgH3Etbo+6NwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFOtDhFEW 0RibzFBtPeYlVa7SzQV+MB8GA1UdIwQYMBaAFD291+1BJIDpNVwn88ETtWQNMYaz MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBMzM5OS9CQTY4QzMyODVD QjgxMUVFODUyM0JDN0FDNEY5QUUwMi9QYjNYN1VFa2dPazFYQ2Z6d1JPMVpBMHho ck0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1BiM1g3VUVrZ09rMVhDZnp3Uk8xWkEweGhyTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB MzM5OS9CQTY4QzMyODVDQjgxMUVFODUyM0JDN0FDNEY5QUUwMi9QYjNYN1VFa2dP azFYQ2Z6d1JPMVpBMHhock0ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBjN790NA00jI1GHz4nBWIq7nEGrdIW7Idx08UScQFXnNPTpwIFm6w6 SxC5/iFEtTyMYGogyX68KTQ5X4ECCZj4G5u33ULIq9/Lt95PyQ6l9Pogt1Mbg38h 33HgeLyv0nnocTzbFppbhUyiyRUctuOI3M3paAhj+h7E/GSJzA5EUyXj6XZ1wnOa QvWKTVVBNWXoFnBdol62wwgSYzh3K6qdnluoUi8tHGbKbwNyjQsmAlmsfRDAqEZ7 P8ft8ZCl9g0XUri2iIVz04pRv6QLaBJ/e1IrOO1/za2lm/ZI7N4WaYTPrpDr6wCi GA3xRmehOW55g4lLXPspwc7YmCteltpe -----END CERTIFICATE-----Generated at Tue May 13 12:36:13 2025 by rpki-client