$ rpki-client -vvf rpki.apnic.net/member_repository/A91C5ED0/153A550A997311E8866F0060C4F9AE02/pGg4Xjj11YpziCOPLtMFVXig7V4.mft File: pGg4Xjj11YpziCOPLtMFVXig7V4.mft (raw, json) Hash identifier: AoNRqNqQB7+fqmNnGZ/tV3uRP3GVVJaAzE7uh2pq7SM= Subject key identifier: 12:CF:C3:9F:E1:DB:88:E9:F9:63:E7:F6:35:D2:4C:ED:18:A0:25:8D Authority key identifier: A4:68:38:5E:38:F5:D5:8A:73:88:23:8F:2E:D3:05:55:78:A0:ED:5E Certificate issuer: /CN=A91C5ED0/serialNumber=A468385E38F5D58A7388238F2ED3055578A0ED5E Certificate serial: 07FD Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pGg4Xjj11YpziCOPLtMFVXig7V4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C5ED0/153A550A997311E8866F0060C4F9AE02/pGg4Xjj11YpziCOPLtMFVXig7V4.mft Manifest number: 2997 Signing time: Wed 14 May 2025 17:03:44 +0000 Manifest this update: Wed 14 May 2025 17:03:43 +0000 Manifest next update: Wed 21 May 2025 17:03:43 +0000 Files and hashes: 1: pGg4Xjj11YpziCOPLtMFVXig7V4.crl (hash: 8iRRVdv7UaPYcsUAzxYiuAsXZ0XyN7Cz4MoEe3xQZtk=) 2: 54E2A752E17211ECA8128235C4F9AE02.roa (hash: gbmWhKuExbHxGm8suMn+9Fw+reSjRg+IHpYr9CQ3RBU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C5ED0/153A550A997311E8866F0060C4F9AE02/pGg4Xjj11YpziCOPLtMFVXig7V4.crl rsync://rpki.apnic.net/member_repository/A91C5ED0/153A550A997311E8866F0060C4F9AE02/pGg4Xjj11YpziCOPLtMFVXig7V4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pGg4Xjj11YpziCOPLtMFVXig7V4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 21 May 2025 17:03:43 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2045 (0x7fd) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C5ED0, serialNumber=A468385E38F5D58A7388238F2ED3055578A0ED5E Validity Not Before: May 14 17:03:43 2025 GMT Not After : May 21 17:03:43 2025 GMT Subject: CN=6824ccef-fb72 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d9:44:f9:87:bd:07:94:c5:31:15:6e:06:8f:96: ed:44:ec:a1:62:c0:31:51:33:73:1b:ac:e0:41:ad: e6:19:c5:e7:5f:a2:d4:6e:07:59:f0:84:32:5e:37: 8d:83:5b:bb:4c:f9:84:9f:96:02:63:a1:f0:ec:e2: f4:42:32:51:d3:c8:dc:de:31:7e:94:05:d1:f3:b8: 58:5b:fa:bc:d6:dd:df:f3:c7:57:d3:31:d1:f3:ad: 51:a7:ad:49:46:a6:d8:48:d2:c9:b3:69:2c:38:d8: 73:19:7c:8a:e4:c5:4e:33:c0:26:34:45:1c:33:86: a5:30:37:78:a2:14:a5:38:9b:10:54:d0:a6:80:76: 1c:3d:7b:7d:4a:79:6f:d8:66:7b:77:d0:0a:f8:be: a0:e8:e6:8c:02:96:de:6c:ac:90:56:44:55:90:6c: c8:9e:7d:00:e4:84:17:86:3d:7b:e3:f5:d8:e6:27: 79:0f:cd:34:b4:2e:8e:e1:58:46:9c:11:f6:18:7d: 8e:fc:08:3a:69:f7:95:38:80:37:80:0a:f8:9c:da: 62:1e:38:07:6a:29:f7:6d:61:8b:bb:04:e1:b2:14: da:13:c6:d8:3b:2d:98:3f:5e:0d:72:73:a3:e5:51: 99:a2:1c:79:c0:dc:8b:8c:08:a3:da:4a:9c:8e:c8: 48:3d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 12:CF:C3:9F:E1:DB:88:E9:F9:63:E7:F6:35:D2:4C:ED:18:A0:25:8D X509v3 Authority Key Identifier: keyid:A4:68:38:5E:38:F5:D5:8A:73:88:23:8F:2E:D3:05:55:78:A0:ED:5E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C5ED0/153A550A997311E8866F0060C4F9AE02/pGg4Xjj11YpziCOPLtMFVXig7V4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pGg4Xjj11YpziCOPLtMFVXig7V4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C5ED0/153A550A997311E8866F0060C4F9AE02/pGg4Xjj11YpziCOPLtMFVXig7V4.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 21:af:b7:75:4d:d9:6b:85:27:38:e4:5b:eb:c4:8c:d1:b3:a6: 29:c4:2f:74:2d:37:7f:e2:15:06:45:87:60:de:e7:8f:ad:d8: d8:a7:b9:8c:fe:56:6b:fd:44:46:70:df:09:2f:99:98:3d:28: 09:b9:db:dd:0d:5d:69:4c:11:4f:7c:21:d2:64:37:70:6d:03: 20:03:d6:80:ba:28:87:b5:f7:7f:bd:44:9e:0d:52:86:73:6a: f8:7e:f0:56:a2:f5:dd:fa:0b:fa:96:b0:c0:6d:5a:1e:19:5b: b2:69:a1:a6:1d:49:2e:7a:bd:6c:89:c5:67:47:3a:67:41:c4: 36:d9:5f:9c:61:0d:9c:29:12:c6:03:ed:85:a2:6c:4f:fa:3b: 01:03:45:94:b6:fc:b9:1e:c6:be:63:df:50:bb:80:f1:4d:08: 3e:d9:54:39:36:9d:7a:45:2e:6a:5c:c5:cb:27:30:e4:ed:d8: 60:d6:12:f0:08:4e:0f:40:09:da:ca:6b:ec:73:c6:8d:8a:7f: 0a:82:2d:bd:fb:e5:57:d3:96:90:ca:9e:65:35:92:d8:8b:5b: 2f:cf:d6:ee:f2:f5:50:35:34:01:c3:37:80:9d:0f:72:84:17: f3:c7:74:88:e2:d9:79:ab:62:0b:71:6c:ea:12:c3:6e:1f:3e: ee:5d:a6:85 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICB/0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzVFRDAxMTAvBgNVBAUTKEE0NjgzODVFMzhGNUQ1OEE3Mzg4MjM4RjJFRDMwNTU1 NzhBMEVENUUwHhcNMjUwNTE0MTcwMzQzWhcNMjUwNTIxMTcwMzQzWjAYMRYwFAYD VQQDEw02ODI0Y2NlZi1mYjcyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA2UT5h70HlMUxFW4Gj5btROyhYsAxUTNzG6zgQa3mGcXnX6LUbgdZ8IQyXjeN g1u7TPmEn5YCY6Hw7OL0QjJR08jc3jF+lAXR87hYW/q81t3f88dX0zHR861Rp61J RqbYSNLJs2ksONhzGXyK5MVOM8AmNEUcM4alMDd4ohSlOJsQVNCmgHYcPXt9Snlv 2GZ7d9AK+L6g6OaMApbebKyQVkRVkGzInn0A5IQXhj174/XY5id5D800tC6O4VhG nBH2GH2O/Ag6afeVOIA3gAr4nNpiHjgHain3bWGLuwThshTaE8bYOy2YP14NcnOj 5VGZohx5wNyLjAij2kqcjshIPQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFBLPw5/h 24jp+WPn9jXSTO0YoCWNMB8GA1UdIwQYMBaAFKRoOF449dWKc4gjjy7TBVV4oO1e MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDNUVEMC8xNTNBNTUwQTk5 NzMxMUU4ODY2RjAwNjBDNEY5QUUwMi9wR2c0WGpqMTFZcHppQ09QTHRNRlZYaWc3 VjQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3BHZzRYamoxMVlwemlDT1BMdE1GVlhpZzdWNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD NUVEMC8xNTNBNTUwQTk5NzMxMUU4ODY2RjAwNjBDNEY5QUUwMi9wR2c0WGpqMTFZ cHppQ09QTHRNRlZYaWc3VjQubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAhr7d1TdlrhSc45FvrxIzRs6YpxC90LTd/4hUGRYdg3uePrdjYp7mM /lZr/URGcN8JL5mYPSgJudvdDV1pTBFPfCHSZDdwbQMgA9aAuiiHtfd/vUSeDVKG c2r4fvBWovXd+gv6lrDAbVoeGVuyaaGmHUkuer1sicVnRzpnQcQ22V+cYQ2cKRLG A+2FomxP+jsBA0WUtvy5Hsa+Y99Qu4DxTQg+2VQ5Np16RS5qXMXLJzDk7dhg1hLw CE4PQAnaymvsc8aNin8Kgi29++VX05aQyp5lNZLYi1svz9bu8vVQNTQBwzeAnQ9y hBfzx3SI4tl5q2ILcWzqEsNuHz7uXaaF -----END CERTIFICATE-----Generated at Thu May 15 23:24:55 2025 by rpki-client