$ rpki-client -vvf rpki.apnic.net/member_repository/A91AA618/557EAB3C3ABE11EF8619D220C4F9AE02/pSvwKHcZGUlxLT2tKdSreid57EM.mft File: pSvwKHcZGUlxLT2tKdSreid57EM.mft (raw, json) Hash identifier: RgrITAiyNg6OcXKJqPGTQ+xOb7tFG7fw9H68HM11OlM= Subject key identifier: B6:16:12:65:A0:99:45:9E:41:5A:47:A6:8C:3A:26:D7:D8:67:CD:33 Authority key identifier: A5:2B:F0:28:77:19:19:49:71:2D:3D:AD:29:D4:AB:7A:27:79:EC:43 Certificate issuer: /CN=A91AA618/serialNumber=A52BF02877191949712D3DAD29D4AB7A2779EC43 Certificate serial: A4 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pSvwKHcZGUlxLT2tKdSreid57EM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91AA618/557EAB3C3ABE11EF8619D220C4F9AE02/pSvwKHcZGUlxLT2tKdSreid57EM.mft Manifest number: A3 Signing time: Sun 11 May 2025 05:00:12 +0000 Manifest this update: Sun 11 May 2025 05:00:12 +0000 Manifest next update: Sun 18 May 2025 05:00:12 +0000 Files and hashes: 1: pSvwKHcZGUlxLT2tKdSreid57EM.crl (hash: bkwzKOsSek8J+y1WXPJEx0z/2M6Y230JsG/JAenvP+E=) 2: 88F562E83DAD11EFAA46E417C4F9AE02.roa (hash: y+CwsCOmzO2omqt+7OucZwgkShxhjQvdzFrUFNJogYw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91AA618/557EAB3C3ABE11EF8619D220C4F9AE02/pSvwKHcZGUlxLT2tKdSreid57EM.crl rsync://rpki.apnic.net/member_repository/A91AA618/557EAB3C3ABE11EF8619D220C4F9AE02/pSvwKHcZGUlxLT2tKdSreid57EM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pSvwKHcZGUlxLT2tKdSreid57EM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 18 May 2025 05:00:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 164 (0xa4) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91AA618, serialNumber=A52BF02877191949712D3DAD29D4AB7A2779EC43 Validity Not Before: May 11 05:00:12 2025 GMT Not After : May 18 05:00:12 2025 GMT Subject: CN=68202edc-9c00 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c9:ea:5b:09:63:9f:00:6e:cb:db:b4:5f:5b:45: 0b:9a:fc:58:11:28:f7:1f:bc:50:f8:c2:59:ba:99: 43:26:b6:13:00:85:16:a4:7c:80:ca:b7:b4:b5:e8: d8:71:06:38:d2:3d:01:38:c9:8b:60:f1:08:db:07: f2:bb:5a:d8:10:30:8b:85:9e:1e:c7:da:7c:3a:35: 8b:bb:6e:eb:c0:0f:fd:cd:1d:0f:d0:89:09:15:04: 9f:1a:9f:ba:29:68:dc:12:27:57:2a:f4:2c:56:21: 1d:2a:57:c1:4b:ca:97:8d:3f:90:bf:26:21:a7:f9: d6:6a:71:f5:7a:f0:2d:71:9e:63:32:da:9d:74:65: 9e:08:16:41:3b:79:59:97:22:30:70:b2:3c:15:db: 31:5f:a6:0e:89:34:91:8a:b2:e4:fa:cb:09:42:43: 4a:33:4b:a5:e2:39:f0:58:08:9d:8c:56:3e:09:6a: 9f:f7:71:72:1b:4e:a9:19:6d:a6:53:e6:ec:8a:3f: 3f:2d:6d:62:5c:33:b4:2c:e3:98:58:50:f8:e2:a3: e8:b4:f7:47:ff:16:4d:79:e4:08:eb:02:11:c7:80: 7a:22:c8:f6:30:4b:ed:2c:37:d5:57:2d:fb:e1:c6: 50:02:b8:e6:06:74:37:75:6d:37:75:b5:f9:d7:6c: e0:cd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B6:16:12:65:A0:99:45:9E:41:5A:47:A6:8C:3A:26:D7:D8:67:CD:33 X509v3 Authority Key Identifier: keyid:A5:2B:F0:28:77:19:19:49:71:2D:3D:AD:29:D4:AB:7A:27:79:EC:43 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91AA618/557EAB3C3ABE11EF8619D220C4F9AE02/pSvwKHcZGUlxLT2tKdSreid57EM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pSvwKHcZGUlxLT2tKdSreid57EM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91AA618/557EAB3C3ABE11EF8619D220C4F9AE02/pSvwKHcZGUlxLT2tKdSreid57EM.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 56:3c:3d:fb:92:40:b2:7c:64:d7:70:82:62:a3:97:16:2e:af: ad:7a:1a:0c:77:54:ff:fc:36:00:44:ff:97:0a:9c:ab:a2:86: ef:31:64:4d:4c:c9:11:f2:99:70:89:dd:81:bc:1c:99:78:8c: c0:55:0a:b0:d6:55:00:ba:76:47:82:51:3b:02:fb:e6:1a:69: f2:82:b0:48:14:3b:7f:5d:04:34:89:ba:63:db:93:b0:6b:68: 59:92:46:7b:a6:53:89:f3:5e:73:fb:ae:5d:30:5c:b9:29:98: c0:43:a9:9f:2e:67:5e:b0:25:26:d8:3e:c6:a1:d3:84:88:01: cb:03:bf:b1:54:5b:fe:7a:fb:27:a3:0a:4a:74:e2:b9:fa:9d: f5:95:f3:6d:0a:3f:52:98:4b:a3:ad:bb:80:aa:42:d5:92:6d: 7a:6d:21:a5:aa:5a:39:ca:99:81:2b:c4:54:cf:06:b6:66:07: ce:ba:ef:e8:b7:d2:15:a9:77:76:63:70:38:64:5f:dd:ad:40: 71:80:4e:a2:39:8b:a1:16:1f:01:37:5a:f6:4c:d5:39:d1:65: b6:bb:68:24:e8:e1:64:54:38:2d:0a:6f:08:f3:56:6a:2c:bc: 47:83:f5:13:37:35:ec:99:a6:11:79:1b:da:c5:a8:5a:fd:bf: d5:fe:02:6d -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAKQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QUE2MTgxMTAvBgNVBAUTKEE1MkJGMDI4NzcxOTE5NDk3MTJEM0RBRDI5RDRBQjdB Mjc3OUVDNDMwHhcNMjUwNTExMDUwMDEyWhcNMjUwNTE4MDUwMDEyWjAYMRYwFAYD VQQDEw02ODIwMmVkYy05YzAwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyepbCWOfAG7L27RfW0ULmvxYESj3H7xQ+MJZuplDJrYTAIUWpHyAyre0tejY cQY40j0BOMmLYPEI2wfyu1rYEDCLhZ4ex9p8OjWLu27rwA/9zR0P0IkJFQSfGp+6 KWjcEidXKvQsViEdKlfBS8qXjT+QvyYhp/nWanH1evAtcZ5jMtqddGWeCBZBO3lZ lyIwcLI8FdsxX6YOiTSRirLk+ssJQkNKM0ul4jnwWAidjFY+CWqf93FyG06pGW2m U+bsij8/LW1iXDO0LOOYWFD44qPotPdH/xZNeeQI6wIRx4B6Isj2MEvtLDfVVy37 4cZQArjmBnQ3dW03dbX512zgzQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFLYWEmWg mUWeQVpHpow6JtfYZ80zMB8GA1UdIwQYMBaAFKUr8Ch3GRlJcS09rSnUq3oneexD MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBQTYxOC81NTdFQUIzQzNB QkUxMUVGODYxOUQyMjBDNEY5QUUwMi9wU3Z3S0hjWkdVbHhMVDJ0S2RTcmVpZDU3 RU0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3BTdndLSGNaR1VseExUMnRLZFNyZWlkNTdFTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB QTYxOC81NTdFQUIzQzNBQkUxMUVGODYxOUQyMjBDNEY5QUUwMi9wU3Z3S0hjWkdV bHhMVDJ0S2RTcmVpZDU3RU0ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBWPD37kkCyfGTXcIJio5cWLq+tehoMd1T//DYARP+XCpyroobvMWRN TMkR8plwid2BvByZeIzAVQqw1lUAunZHglE7AvvmGmnygrBIFDt/XQQ0ibpj25Ow a2hZkkZ7plOJ815z+65dMFy5KZjAQ6mfLmdesCUm2D7GodOEiAHLA7+xVFv+evsn owpKdOK5+p31lfNtCj9SmEujrbuAqkLVkm16bSGlqlo5ypmBK8RUzwa2ZgfOuu/o t9IVqXd2Y3A4ZF/drUBxgE6iOYuhFh8BN1r2TNU50WW2u2gk6OFkVDgtCm8I81Zq LLxHg/UTNzXsmaYReRvaxaha/b/V/gJt -----END CERTIFICATE-----Generated at Tue May 13 04:55:22 2025 by rpki-client