$ rpki-client -vvf rpki.apnic.net/member_repository/A91D1003/AA4E95C8320311EA8D2A1B2BC4F9AE02/pSAa7m9KXB64p-HHhTv7srp1y9I.mft File: pSAa7m9KXB64p-HHhTv7srp1y9I.mft (raw, json) Hash identifier: yfvSTh2QneqsaHy8/znpVl6anTsHvi9+RwrV4WBDEac= Subject key identifier: 75:BB:AD:B7:64:1E:04:AA:AE:09:36:9C:09:B2:A3:F1:53:C4:D4:41 Authority key identifier: A5:20:1A:EE:6F:4A:5C:1E:B8:A7:E1:C7:85:3B:FB:B2:BA:75:CB:D2 Certificate issuer: /CN=A91D1003/serialNumber=A5201AEE6F4A5C1EB8A7E1C7853BFBB2BA75CBD2 Certificate serial: 0B63 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pSAa7m9KXB64p-HHhTv7srp1y9I.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D1003/AA4E95C8320311EA8D2A1B2BC4F9AE02/pSAa7m9KXB64p-HHhTv7srp1y9I.mft Manifest number: 0B58 Signing time: Mon 12 May 2025 18:57:55 +0000 Manifest this update: Mon 12 May 2025 18:57:55 +0000 Manifest next update: Mon 19 May 2025 18:57:55 +0000 Files and hashes: 1: pSAa7m9KXB64p-HHhTv7srp1y9I.crl (hash: micfb6I8C5zs7C+gT73HVWF6YiaOt8EwDTs9GC3SToc=) 2: 0DC2568E320511EA8CF6B72DC4F9AE02.roa (hash: dZqvR0xqd13+DRj0vsCnaFuawrKyEqpLXk81wck6o3Q=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D1003/AA4E95C8320311EA8D2A1B2BC4F9AE02/pSAa7m9KXB64p-HHhTv7srp1y9I.crl rsync://rpki.apnic.net/member_repository/A91D1003/AA4E95C8320311EA8D2A1B2BC4F9AE02/pSAa7m9KXB64p-HHhTv7srp1y9I.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pSAa7m9KXB64p-HHhTv7srp1y9I.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 19 May 2025 18:57:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2915 (0xb63) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D1003, serialNumber=A5201AEE6F4A5C1EB8A7E1C7853BFBB2BA75CBD2 Validity Not Before: May 12 18:57:55 2025 GMT Not After : May 19 18:57:55 2025 GMT Subject: CN=682244b3-8d78 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ce:5a:8d:93:5b:34:fc:fb:24:02:a6:9d:fa:e4: bd:69:41:11:45:23:db:56:bb:83:bb:e3:cb:f8:c7: c5:63:25:71:5c:29:8b:41:da:84:46:84:25:07:9d: 90:10:aa:13:2e:7f:30:8d:21:bf:4b:67:e2:7e:16: b0:54:83:ec:90:e1:54:85:a4:19:56:ee:8c:ba:0e: 41:f3:74:eb:f8:b1:ee:52:59:0d:d8:ce:e6:78:00: a4:b7:08:01:41:b2:bd:53:d3:76:7b:df:9f:d4:2a: 1f:88:13:6c:6d:1d:39:b7:05:d1:25:6f:19:fc:85: 33:df:a6:29:01:eb:4c:71:78:ab:3f:0a:af:48:39: 4e:5f:e3:64:2b:b9:fb:a8:07:e6:55:20:27:f3:12: 2e:bf:1e:0e:d4:11:63:24:24:5c:6f:25:d6:93:2a: 0a:95:d6:4d:0e:41:db:d4:e6:92:51:2a:28:25:47: 6e:29:31:b0:21:ad:82:72:62:db:ac:98:37:fe:7b: f9:3a:42:c8:30:9f:96:70:74:92:c7:91:99:10:2b: e0:a6:74:c2:a0:40:73:73:1f:c2:f6:cb:76:36:fc: 78:f5:c4:d0:d3:27:95:0f:dd:91:2a:75:1e:97:7b: 63:48:c2:17:09:e5:25:2a:80:43:d9:bb:f0:7d:80: 92:49 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 75:BB:AD:B7:64:1E:04:AA:AE:09:36:9C:09:B2:A3:F1:53:C4:D4:41 X509v3 Authority Key Identifier: keyid:A5:20:1A:EE:6F:4A:5C:1E:B8:A7:E1:C7:85:3B:FB:B2:BA:75:CB:D2 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D1003/AA4E95C8320311EA8D2A1B2BC4F9AE02/pSAa7m9KXB64p-HHhTv7srp1y9I.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pSAa7m9KXB64p-HHhTv7srp1y9I.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D1003/AA4E95C8320311EA8D2A1B2BC4F9AE02/pSAa7m9KXB64p-HHhTv7srp1y9I.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a6:05:0f:b5:c8:ca:1c:63:2f:94:3b:d4:97:cf:59:f2:07:22: 5e:82:75:c7:3c:07:4e:32:8a:c2:8a:fe:cc:e9:02:4a:c6:4f: d6:53:3d:6a:08:6b:af:ce:7d:7c:a0:17:51:52:6a:18:c4:db: e6:28:5d:7c:97:d3:2e:61:fc:c4:91:83:7d:81:c2:b8:6d:fb: 03:61:da:32:01:fe:4b:9c:0d:91:3d:25:0c:ad:07:a3:62:3d: 8d:47:32:05:33:86:55:69:c3:37:71:d5:35:8c:b1:88:25:7f: 09:15:33:9c:a9:2e:a0:c7:31:63:57:d1:ad:f6:cf:c4:ec:b5: e2:27:2c:a4:87:2b:e8:d8:84:e4:77:b4:88:b6:53:d0:f3:98: 0e:6e:b5:d3:95:52:fb:36:0e:f4:b2:a5:c9:2a:6a:f4:7f:04: 51:1f:f9:36:a3:b0:d4:a8:81:14:08:b5:21:a1:fe:e8:20:a2: b5:28:43:f2:74:f7:60:c7:fd:cd:8a:64:1a:f5:b5:db:c2:a6: 93:fe:e6:59:52:dd:ad:29:43:3b:80:49:8a:b8:97:1d:aa:c0: f3:a3:c3:da:d9:ee:21:00:83:68:78:1d:94:45:d8:95:cb:b0: 94:7d:6b:24:3b:73:42:e0:3b:c7:cb:d8:78:ab:af:ee:cf:01: ec:a2:c7:14 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICC2MwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDEwMDMxMTAvBgNVBAUTKEE1MjAxQUVFNkY0QTVDMUVCOEE3RTFDNzg1M0JGQkIy QkE3NUNCRDIwHhcNMjUwNTEyMTg1NzU1WhcNMjUwNTE5MTg1NzU1WjAYMRYwFAYD VQQDEw02ODIyNDRiMy04ZDc4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzlqNk1s0/PskAqad+uS9aUERRSPbVruDu+PL+MfFYyVxXCmLQdqERoQlB52Q EKoTLn8wjSG/S2fifhawVIPskOFUhaQZVu6Mug5B83Tr+LHuUlkN2M7meACktwgB QbK9U9N2e9+f1CofiBNsbR05twXRJW8Z/IUz36YpAetMcXirPwqvSDlOX+NkK7n7 qAfmVSAn8xIuvx4O1BFjJCRcbyXWkyoKldZNDkHb1OaSUSooJUduKTGwIa2CcmLb rJg3/nv5OkLIMJ+WcHSSx5GZECvgpnTCoEBzcx/C9st2Nvx49cTQ0yeVD92RKnUe l3tjSMIXCeUlKoBD2bvwfYCSSQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFHW7rbdk HgSqrgk2nAmyo/FTxNRBMB8GA1UdIwQYMBaAFKUgGu5vSlweuKfhx4U7+7K6dcvS MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEMTAwMy9BQTRFOTVDODMy MDMxMUVBOEQyQTFCMkJDNEY5QUUwMi9wU0FhN205S1hCNjRwLUhIaFR2N3NycDF5 OUkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3BTQWE3bTlLWEI2NHAtSEhoVHY3c3JwMXk5SS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE MTAwMy9BQTRFOTVDODMyMDMxMUVBOEQyQTFCMkJDNEY5QUUwMi9wU0FhN205S1hC NjRwLUhIaFR2N3NycDF5OUkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCmBQ+1yMocYy+UO9SXz1nyByJegnXHPAdOMorCiv7M6QJKxk/WUz1q CGuvzn18oBdRUmoYxNvmKF18l9MuYfzEkYN9gcK4bfsDYdoyAf5LnA2RPSUMrQej Yj2NRzIFM4ZVacM3cdU1jLGIJX8JFTOcqS6gxzFjV9Gt9s/E7LXiJyykhyvo2ITk d7SItlPQ85gObrXTlVL7Ng70sqXJKmr0fwRRH/k2o7DUqIEUCLUhof7oIKK1KEPy dPdgx/3NimQa9bXbwqaT/uZZUt2tKUM7gEmKuJcdqsDzo8Pa2e4hAINoeB2URdiV y7CUfWskO3NC4DvHy9h4q6/uzwHsoscU -----END CERTIFICATE-----Generated at Tue May 13 01:51:34 2025 by rpki-client