$ rpki-client -vvf rpki.apnic.net/member_repository/A91AA618/557EAB3C3ABE11EF8619D220C4F9AE02/pSvwKHcZGUlxLT2tKdSreid57EM.mft File: pSvwKHcZGUlxLT2tKdSreid57EM.mft (raw, json) Hash identifier: U+DPpZkuw4/L2NtYoAbwz/AYqp7S81V3QFwFQ760XVw= Subject key identifier: 4E:8D:F5:49:A6:E5:B0:3D:64:8A:5E:33:0C:AA:87:CC:C1:7C:46:F7 Authority key identifier: A5:2B:F0:28:77:19:19:49:71:2D:3D:AD:29:D4:AB:7A:27:79:EC:43 Certificate issuer: /CN=A91AA618/serialNumber=A52BF02877191949712D3DAD29D4AB7A2779EC43 Certificate serial: BD Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pSvwKHcZGUlxLT2tKdSreid57EM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91AA618/557EAB3C3ABE11EF8619D220C4F9AE02/pSvwKHcZGUlxLT2tKdSreid57EM.mft Manifest number: BC Signing time: Tue 01 Jul 2025 06:34:33 +0000 Manifest this update: Tue 01 Jul 2025 06:34:33 +0000 Manifest next update: Tue 08 Jul 2025 06:34:33 +0000 Files and hashes: 1: pSvwKHcZGUlxLT2tKdSreid57EM.crl (hash: KUGmynVI7sZhZaPqNIeO6/n1BKV5BYczgB6FdZ7gjz8=) 2: 88F562E83DAD11EFAA46E417C4F9AE02.roa (hash: y+CwsCOmzO2omqt+7OucZwgkShxhjQvdzFrUFNJogYw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91AA618/557EAB3C3ABE11EF8619D220C4F9AE02/pSvwKHcZGUlxLT2tKdSreid57EM.crl rsync://rpki.apnic.net/member_repository/A91AA618/557EAB3C3ABE11EF8619D220C4F9AE02/pSvwKHcZGUlxLT2tKdSreid57EM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pSvwKHcZGUlxLT2tKdSreid57EM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 08 Jul 2025 06:34:32 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 189 (0xbd) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91AA618, serialNumber=A52BF02877191949712D3DAD29D4AB7A2779EC43 Validity Not Before: Jul 1 06:34:33 2025 GMT Not After : Jul 8 06:34:33 2025 GMT Subject: CN=68638179-e832 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a4:5b:a7:bc:fa:2c:03:b4:a8:8b:37:3f:d2:9d: 91:9f:ba:f1:db:a9:22:a8:37:15:0a:98:46:5d:67: 9f:90:0d:da:be:78:6f:72:18:41:1d:fd:bd:ad:38: 51:4f:b1:b0:5e:5b:81:fb:00:3d:c4:1e:6d:b0:86: 67:9f:c1:05:79:0d:28:93:a9:ec:29:a2:e9:00:68: ce:3e:1b:fa:ff:72:5c:4b:f1:c9:6a:be:26:ac:8d: cd:0f:50:31:8e:07:7b:46:a6:6c:ba:75:92:c1:67: 7f:45:48:60:05:34:41:7d:a8:4d:1f:8a:48:e3:a9: b0:6f:7b:f5:2f:06:b2:81:c8:26:73:b5:6b:fe:d4: d2:5e:56:b0:e3:1f:71:2a:78:84:04:c4:50:1d:93: a8:e3:4e:47:4a:8f:f4:6e:eb:bc:70:6d:35:62:28: 16:33:4c:98:15:56:ea:4f:cc:7f:f3:6e:89:8f:c6: ef:dd:b8:8d:ff:37:e8:d0:8a:fe:75:f9:75:19:45: 23:f1:65:63:67:a2:b1:99:48:2f:51:01:8f:c2:14: 0e:ee:fe:5f:e8:20:75:b2:bb:7d:30:85:7f:42:1c: 16:21:8a:a9:77:07:55:03:fd:b2:12:b7:30:09:06: ea:8d:6a:ee:08:ad:a7:50:ed:bc:c6:35:20:8a:4b: a5:3b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4E:8D:F5:49:A6:E5:B0:3D:64:8A:5E:33:0C:AA:87:CC:C1:7C:46:F7 X509v3 Authority Key Identifier: keyid:A5:2B:F0:28:77:19:19:49:71:2D:3D:AD:29:D4:AB:7A:27:79:EC:43 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91AA618/557EAB3C3ABE11EF8619D220C4F9AE02/pSvwKHcZGUlxLT2tKdSreid57EM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pSvwKHcZGUlxLT2tKdSreid57EM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91AA618/557EAB3C3ABE11EF8619D220C4F9AE02/pSvwKHcZGUlxLT2tKdSreid57EM.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 33:9b:5f:c9:7c:22:61:a0:71:5e:ab:04:f1:fa:ca:d3:1d:0f: c6:cb:f8:86:32:87:3b:eb:ed:95:a0:09:8f:71:7b:55:66:5d: 8f:6b:26:1a:6c:43:bc:71:54:66:f3:7a:bd:de:cf:c4:04:72: f5:48:01:35:4c:83:5c:8c:9a:15:94:f8:d9:77:d0:73:a5:5f: 91:e2:72:be:a5:c4:05:6e:7f:5a:b0:bc:6c:18:75:51:4e:8c: da:c7:52:a9:7f:9a:a5:b2:27:26:42:aa:d1:d0:58:37:c2:10: da:15:a6:b0:35:4a:53:5c:d3:e7:bf:a7:61:ba:67:ae:70:9f: e8:06:82:00:32:24:af:ea:b6:f7:72:03:28:a3:27:dc:1d:f9: 42:1f:1a:70:e8:84:43:72:2a:41:c1:ce:98:4c:0c:84:26:61: 15:71:c4:9b:30:69:ec:0b:99:5f:c4:1f:05:3b:a6:04:04:07: 04:07:6c:75:6c:86:fa:4f:77:7b:ab:ae:a7:f4:fc:1a:bf:92: b3:38:4e:c3:00:7c:24:5f:62:22:b8:db:5b:12:35:87:ab:66: c0:05:bb:38:1d:8d:b0:23:55:14:91:77:6d:0e:4e:28:1d:59: a3:42:74:9c:2f:f6:25:5e:44:4c:f9:a7:d4:15:c8:23:4b:20: 86:0b:83:44 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAL0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QUE2MTgxMTAvBgNVBAUTKEE1MkJGMDI4NzcxOTE5NDk3MTJEM0RBRDI5RDRBQjdB Mjc3OUVDNDMwHhcNMjUwNzAxMDYzNDMzWhcNMjUwNzA4MDYzNDMzWjAYMRYwFAYD VQQDEw02ODYzODE3OS1lODMyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEApFunvPosA7Soizc/0p2Rn7rx26kiqDcVCphGXWefkA3avnhvchhBHf29rThR T7GwXluB+wA9xB5tsIZnn8EFeQ0ok6nsKaLpAGjOPhv6/3JcS/HJar4mrI3ND1Ax jgd7RqZsunWSwWd/RUhgBTRBfahNH4pI46mwb3v1Lwaygcgmc7Vr/tTSXlaw4x9x KniEBMRQHZOo405HSo/0buu8cG01YigWM0yYFVbqT8x/826Jj8bv3biN/zfo0Ir+ dfl1GUUj8WVjZ6KxmUgvUQGPwhQO7v5f6CB1srt9MIV/QhwWIYqpdwdVA/2yErcw CQbqjWruCK2nUO28xjUgikulOwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFE6N9Umm 5bA9ZIpeMwyqh8zBfEb3MB8GA1UdIwQYMBaAFKUr8Ch3GRlJcS09rSnUq3oneexD MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBQTYxOC81NTdFQUIzQzNB QkUxMUVGODYxOUQyMjBDNEY5QUUwMi9wU3Z3S0hjWkdVbHhMVDJ0S2RTcmVpZDU3 RU0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3BTdndLSGNaR1VseExUMnRLZFNyZWlkNTdFTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB QTYxOC81NTdFQUIzQzNBQkUxMUVGODYxOUQyMjBDNEY5QUUwMi9wU3Z3S0hjWkdV bHhMVDJ0S2RTcmVpZDU3RU0ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAzm1/JfCJhoHFeqwTx+srTHQ/Gy/iGMoc76+2VoAmPcXtVZl2PayYa bEO8cVRm83q93s/EBHL1SAE1TINcjJoVlPjZd9BzpV+R4nK+pcQFbn9asLxsGHVR Tozax1Kpf5qlsicmQqrR0Fg3whDaFaawNUpTXNPnv6dhumeucJ/oBoIAMiSv6rb3 cgMooyfcHflCHxpw6IRDcipBwc6YTAyEJmEVccSbMGnsC5lfxB8FO6YEBAcEB2x1 bIb6T3d7q66n9Pwav5KzOE7DAHwkX2IiuNtbEjWHq2bABbs4HY2wI1UUkXdtDk4o HVmjQnScL/YlXkRM+afUFcgjSyCGC4NE -----END CERTIFICATE-----Generated at Wed Jul 2 20:39:12 2025 by rpki-client