$ rpki-client -vvf rpki.apnic.net/member_repository/A91CED30/BE80C6A6AE1E11EEA7EA0A77C4F9AE02/PgzfiCrujHIh1YijxSYBjh1kyWg.mft File: PgzfiCrujHIh1YijxSYBjh1kyWg.mft (raw, json) Hash identifier: Q12Gg7XmHGTQzCOCwZ5bcpvq7W3gSbpK3O4jT6nRtfg= Subject key identifier: 0A:28:28:03:90:A7:E4:13:F0:F7:10:7C:2B:FE:62:9C:34:48:45:F5 Authority key identifier: 3E:0C:DF:88:2A:EE:8C:72:21:D5:88:A3:C5:26:01:8E:1D:64:C9:68 Certificate issuer: /CN=A91CED30/serialNumber=3E0CDF882AEE8C7221D588A3C526018E1D64C968 Certificate serial: 0103 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/PgzfiCrujHIh1YijxSYBjh1kyWg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CED30/BE80C6A6AE1E11EEA7EA0A77C4F9AE02/PgzfiCrujHIh1YijxSYBjh1kyWg.mft Manifest number: 0100 Signing time: Thu 15 May 2025 04:27:41 +0000 Manifest this update: Thu 15 May 2025 04:27:41 +0000 Manifest next update: Thu 22 May 2025 04:27:41 +0000 Files and hashes: 1: PgzfiCrujHIh1YijxSYBjh1kyWg.crl (hash: v3CjSHmKHf6h1aVo7I44JO9oiP7PUZGMg4y1TVG2Xps=) 2: 41E0B402AE1F11EE96A5C977C4F9AE02.roa (hash: 92n4boJHjJIj9KtZ2gabfQc0rIkNAgV+GGdiupr7NM8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CED30/BE80C6A6AE1E11EEA7EA0A77C4F9AE02/PgzfiCrujHIh1YijxSYBjh1kyWg.crl rsync://rpki.apnic.net/member_repository/A91CED30/BE80C6A6AE1E11EEA7EA0A77C4F9AE02/PgzfiCrujHIh1YijxSYBjh1kyWg.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/PgzfiCrujHIh1YijxSYBjh1kyWg.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 22 May 2025 04:27:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 259 (0x103) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CED30, serialNumber=3E0CDF882AEE8C7221D588A3C526018E1D64C968 Validity Not Before: May 15 04:27:41 2025 GMT Not After : May 22 04:27:41 2025 GMT Subject: CN=68256d3d-6db9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b0:a0:b1:af:c0:14:08:47:10:08:d7:32:1e:d9: a6:4d:6e:db:d0:45:8a:38:b5:4c:3c:c6:2a:fe:55: 10:be:5a:d4:9b:d3:40:d0:97:51:c8:f2:fd:5e:ba: 6c:46:73:a9:f7:50:59:32:e5:ee:f0:25:34:a0:33: 25:1e:bf:7e:0a:cc:34:32:e7:99:5e:bd:0b:ab:55: d5:78:35:1e:f5:0f:11:bb:9f:cc:39:81:c2:fb:9c: 81:4f:9b:42:f8:47:78:e2:67:2b:d9:71:81:76:8f: 3e:e2:e6:c1:a0:cb:2e:77:bb:69:2f:46:90:e1:69: 2b:53:5c:68:eb:d0:a1:de:2a:d5:e3:3e:8b:72:59: 02:e9:15:28:2d:5b:9d:89:cf:64:c1:62:e3:4d:ac: ae:9c:78:aa:10:7f:ef:55:97:aa:28:a7:18:c0:e3: 6c:23:e2:8d:1f:cf:f4:e1:9a:46:b3:f5:b0:9d:52: 17:c1:27:60:85:0a:be:95:fa:49:64:05:b3:0c:a1: 7d:0d:5a:23:be:85:1d:f7:dc:b7:ec:6e:21:23:c3: 55:78:7c:6d:54:6f:f7:2d:ad:01:67:85:91:5c:d9: 43:e0:04:b8:90:f2:1e:a1:43:65:e7:f1:f8:ca:52: 30:67:96:eb:4f:60:f7:8b:83:26:24:c0:4a:f2:ce: d3:93 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0A:28:28:03:90:A7:E4:13:F0:F7:10:7C:2B:FE:62:9C:34:48:45:F5 X509v3 Authority Key Identifier: keyid:3E:0C:DF:88:2A:EE:8C:72:21:D5:88:A3:C5:26:01:8E:1D:64:C9:68 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CED30/BE80C6A6AE1E11EEA7EA0A77C4F9AE02/PgzfiCrujHIh1YijxSYBjh1kyWg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/PgzfiCrujHIh1YijxSYBjh1kyWg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CED30/BE80C6A6AE1E11EEA7EA0A77C4F9AE02/PgzfiCrujHIh1YijxSYBjh1kyWg.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 33:ca:7e:77:01:eb:86:dd:9d:9d:ef:69:6c:4a:4b:77:70:f5: e4:9e:75:38:de:1f:1f:31:d7:1d:62:82:68:2d:03:08:a6:7a: 3a:e5:be:cd:13:3f:cc:c9:1c:44:c0:89:fe:47:f7:f2:85:86: 1d:c7:58:e4:fd:d3:63:f4:24:22:2e:c2:0e:99:f1:8f:3e:34: 4c:3d:bc:f2:50:6e:87:b7:e1:c3:d8:e7:d1:4f:37:ee:dd:a5: ac:63:ef:d7:5f:04:9a:b5:e4:d5:1b:78:3e:92:9d:69:1f:7c: 85:27:c6:bd:e0:a1:05:85:22:d1:69:64:11:22:a5:f2:06:49: a2:5e:20:9b:d1:40:28:f2:7d:85:cc:35:77:43:58:ea:dd:94: 99:fa:14:d3:d6:8e:07:ef:a4:b0:a7:6a:50:58:35:f5:bb:b9: b1:dc:21:cb:72:02:f5:e4:70:23:b5:89:25:53:bd:0a:22:d2: c2:a2:a6:72:26:f2:04:53:c3:b8:53:9d:ac:a4:1d:38:21:3d: 39:b2:5f:28:7d:2f:1c:0a:72:f4:62:ed:f2:3c:dc:55:60:6d: 0a:11:93:06:2b:92:5c:68:61:70:15:9d:a4:64:9d:ff:c8:22: d1:87:02:e8:4e:8c:ee:b6:eb:8c:ba:2f:b1:ad:c5:cf:89:77: f2:59:b7:7e -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAQMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Q0VEMzAxMTAvBgNVBAUTKDNFMENERjg4MkFFRThDNzIyMUQ1ODhBM0M1MjYwMThF MUQ2NEM5NjgwHhcNMjUwNTE1MDQyNzQxWhcNMjUwNTIyMDQyNzQxWjAYMRYwFAYD VQQDEw02ODI1NmQzZC02ZGI5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsKCxr8AUCEcQCNcyHtmmTW7b0EWKOLVMPMYq/lUQvlrUm9NA0JdRyPL9Xrps RnOp91BZMuXu8CU0oDMlHr9+Csw0MueZXr0Lq1XVeDUe9Q8Ru5/MOYHC+5yBT5tC +Ed44mcr2XGBdo8+4ubBoMsud7tpL0aQ4WkrU1xo69Ch3irV4z6LclkC6RUoLVud ic9kwWLjTayunHiqEH/vVZeqKKcYwONsI+KNH8/04ZpGs/WwnVIXwSdghQq+lfpJ ZAWzDKF9DVojvoUd99y37G4hI8NVeHxtVG/3La0BZ4WRXNlD4AS4kPIeoUNl5/H4 ylIwZ5brT2D3i4MmJMBK8s7TkwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFAooKAOQ p+QT8PcQfCv+Ypw0SEX1MB8GA1UdIwQYMBaAFD4M34gq7oxyIdWIo8UmAY4dZMlo MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDRUQzMC9CRTgwQzZBNkFF MUUxMUVFQTdFQTBBNzdDNEY5QUUwMi9QZ3pmaUNydWpISWgxWWlqeFNZQmpoMWt5 V2cuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL1BnemZpQ3J1akhJaDFZaWp4U1lCamgxa3lXZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD RUQzMC9CRTgwQzZBNkFFMUUxMUVFQTdFQTBBNzdDNEY5QUUwMi9QZ3pmaUNydWpI SWgxWWlqeFNZQmpoMWt5V2cubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAzyn53AeuG3Z2d72lsSkt3cPXknnU43h8fMdcdYoJoLQMIpno65b7N Ez/MyRxEwIn+R/fyhYYdx1jk/dNj9CQiLsIOmfGPPjRMPbzyUG6Ht+HD2OfRTzfu 3aWsY+/XXwSateTVG3g+kp1pH3yFJ8a94KEFhSLRaWQRIqXyBkmiXiCb0UAo8n2F zDV3Q1jq3ZSZ+hTT1o4H76Swp2pQWDX1u7mx3CHLcgL15HAjtYklU70KItLCoqZy JvIEU8O4U52spB04IT05sl8ofS8cCnL0Yu3yPNxVYG0KEZMGK5JcaGFwFZ2kZJ3/ yCLRhwLoTozutuuMui+xrcXPiXfyWbd+ -----END CERTIFICATE-----Generated at Sat May 17 03:31:19 2025 by rpki-client