$ rpki-client -vvf rpki.apnic.net/member_repository/A91E5D0C/891B4ECA323611EC89838756C4F9AE02/PnOyvhMDe-dEOR06iZzdICuC920.mft File: PnOyvhMDe-dEOR06iZzdICuC920.mft (raw, json) Hash identifier: EaD852BYgMCMq4j3UMXgTMLHecaUx0cTXi9p94o//T4= Subject key identifier: 52:9F:FC:48:C9:59:9D:D3:A4:D4:27:78:B0:5B:D8:14:94:14:F3:43 Authority key identifier: 3E:73:B2:BE:13:03:7B:E7:44:39:1D:3A:89:9C:DD:20:2B:82:F7:6D Certificate issuer: /CN=A91E5D0C/serialNumber=3E73B2BE13037BE744391D3A899CDD202B82F76D Certificate serial: 04C4 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PnOyvhMDe-dEOR06iZzdICuC920.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E5D0C/891B4ECA323611EC89838756C4F9AE02/PnOyvhMDe-dEOR06iZzdICuC920.mft Manifest number: 04AF Signing time: Thu 15 May 2025 00:00:48 +0000 Manifest this update: Thu 15 May 2025 00:00:48 +0000 Manifest next update: Thu 22 May 2025 00:00:48 +0000 Files and hashes: 1: PnOyvhMDe-dEOR06iZzdICuC920.crl (hash: qR/RfSF5WfJ9+YdrDR+rGTguPn/df/GjpS4GbsHUldQ=) 2: EFFA034837D111EC9337B812C4F9AE02.roa (hash: GRUpCE+gVb2TzuJuLp6/bFNygGmQWG7Yo+BJcqN3ABA=) 3: 9C581C28B07511EF9D153813C4F9AE02.roa (hash: 2ILq0YdLX+uDk2zpnZWvB9sk0e06nVHIZcSy04DKJII=) 4: FE76F7D8EC4A11EFA7845862C4F9AE02.roa (hash: JmLkpvQJH0Uq9XtysKaBXjhAS8plkz/VizJFG4sBHBE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E5D0C/891B4ECA323611EC89838756C4F9AE02/PnOyvhMDe-dEOR06iZzdICuC920.crl rsync://rpki.apnic.net/member_repository/A91E5D0C/891B4ECA323611EC89838756C4F9AE02/PnOyvhMDe-dEOR06iZzdICuC920.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PnOyvhMDe-dEOR06iZzdICuC920.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 22 May 2025 00:00:47 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1220 (0x4c4) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E5D0C, serialNumber=3E73B2BE13037BE744391D3A899CDD202B82F76D Validity Not Before: May 15 00:00:48 2025 GMT Not After : May 22 00:00:48 2025 GMT Subject: CN=68252eb0-8ecc Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cb:27:17:fa:41:ce:f3:0f:3d:e1:3c:75:b0:c7: ef:57:be:dd:44:88:90:e1:1a:0a:fe:cd:ba:82:48: cf:8c:65:1d:78:46:bf:ef:b3:26:93:2a:f3:5b:b9: f9:83:d1:28:ea:42:61:d1:d3:63:87:7d:98:a5:6a: b8:01:8f:e2:76:fa:20:f5:8a:75:f0:c1:b2:b8:12: d7:25:19:5c:56:b6:13:0d:6b:69:f4:f2:6d:e8:27: 3b:3a:9d:51:96:27:d1:2c:d2:fc:30:d1:f5:aa:74: 74:e8:3a:ed:c7:bf:3d:2b:d4:83:48:71:35:5b:e2: b1:a3:d3:c0:10:32:8a:76:63:cd:7d:f6:92:61:2e: 89:2b:2f:0f:b6:1a:8d:28:06:c4:7e:62:58:27:b9: a6:94:5f:f2:fa:e0:77:de:62:a0:57:47:31:9a:fa: 77:7a:03:e4:6a:04:c1:c5:e5:24:23:2f:8b:ec:47: 29:db:e0:b3:c1:a4:7a:1b:55:f6:16:58:4b:86:aa: 56:8f:8c:9d:b3:4a:54:61:13:41:46:bc:82:db:e2: ac:24:24:df:2f:40:a7:d8:50:b9:28:f0:b5:84:9c: d4:30:80:f1:2f:a0:b7:de:e7:7a:75:c8:0c:f8:07: 03:19:23:2f:ab:0c:cc:4c:2b:16:ba:99:e4:0f:5f: 2f:3d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 52:9F:FC:48:C9:59:9D:D3:A4:D4:27:78:B0:5B:D8:14:94:14:F3:43 X509v3 Authority Key Identifier: keyid:3E:73:B2:BE:13:03:7B:E7:44:39:1D:3A:89:9C:DD:20:2B:82:F7:6D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E5D0C/891B4ECA323611EC89838756C4F9AE02/PnOyvhMDe-dEOR06iZzdICuC920.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PnOyvhMDe-dEOR06iZzdICuC920.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E5D0C/891B4ECA323611EC89838756C4F9AE02/PnOyvhMDe-dEOR06iZzdICuC920.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 5e:08:3a:ba:aa:e4:25:37:f9:7a:89:b5:12:a9:31:98:26:4e: 25:df:0d:0d:27:23:b3:0e:fb:4a:b1:92:8d:ce:96:d3:d5:47: 5a:ee:3c:09:df:d3:42:f2:13:4e:14:61:61:2e:a6:bd:04:8f: cd:6c:89:26:41:9f:a2:fc:98:8c:b2:00:85:92:c9:05:f9:aa: f3:48:43:7e:7b:45:07:31:4f:7f:71:d4:1b:c0:8b:13:fc:dc: f2:5b:bc:75:23:88:82:62:96:bb:f4:eb:f6:55:b5:03:33:2c: 16:66:f0:3e:c3:0f:b3:60:0a:73:5f:24:f9:a9:bb:7e:35:64: 9e:01:97:4d:e0:d4:43:ff:ae:5e:94:8c:5e:61:6e:ab:6c:b0: 29:6a:34:0f:de:e9:d2:a0:2c:a7:2d:57:df:f6:40:b8:d2:84: 17:e9:bd:46:0f:39:30:59:fc:70:42:88:31:34:d3:0d:58:05: 34:f9:3e:85:b9:df:2b:c6:6a:a5:b3:af:04:13:2a:4b:72:f7: c1:5e:a7:f4:06:e3:00:8b:95:ef:26:0f:15:46:90:f8:6c:78: 9c:20:b3:8c:5b:f7:d2:dc:d7:8e:14:85:cf:97:c2:22:ae:81: 90:32:f0:d1:0f:a7:63:29:bf:9c:c2:a2:92:17:a4:82:5c:bd: 69:02:77:86 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBMQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTVEMEMxMTAvBgNVBAUTKDNFNzNCMkJFMTMwMzdCRTc0NDM5MUQzQTg5OUNERDIw MkI4MkY3NkQwHhcNMjUwNTE1MDAwMDQ4WhcNMjUwNTIyMDAwMDQ4WjAYMRYwFAYD VQQDEw02ODI1MmViMC04ZWNjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyycX+kHO8w894Tx1sMfvV77dRIiQ4RoK/s26gkjPjGUdeEa/77MmkyrzW7n5 g9Eo6kJh0dNjh32YpWq4AY/idvog9Yp18MGyuBLXJRlcVrYTDWtp9PJt6Cc7Op1R lifRLNL8MNH1qnR06Drtx789K9SDSHE1W+Kxo9PAEDKKdmPNffaSYS6JKy8PthqN KAbEfmJYJ7mmlF/y+uB33mKgV0cxmvp3egPkagTBxeUkIy+L7Ecp2+CzwaR6G1X2 FlhLhqpWj4yds0pUYRNBRryC2+KsJCTfL0Cn2FC5KPC1hJzUMIDxL6C33ud6dcgM +AcDGSMvqwzMTCsWupnkD18vPQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFFKf/EjJ WZ3TpNQneLBb2BSUFPNDMB8GA1UdIwQYMBaAFD5zsr4TA3vnRDkdOomc3SArgvdt MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFNUQwQy84OTFCNEVDQTMy MzYxMUVDODk4Mzg3NTZDNEY5QUUwMi9Qbk95dmhNRGUtZEVPUjA2aVp6ZElDdUM5 MjAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1BuT3l2aE1EZS1kRU9SMDZpWnpkSUN1QzkyMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF NUQwQy84OTFCNEVDQTMyMzYxMUVDODk4Mzg3NTZDNEY5QUUwMi9Qbk95dmhNRGUt ZEVPUjA2aVp6ZElDdUM5MjAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBeCDq6quQlN/l6ibUSqTGYJk4l3w0NJyOzDvtKsZKNzpbT1Uda7jwJ 39NC8hNOFGFhLqa9BI/NbIkmQZ+i/JiMsgCFkskF+arzSEN+e0UHMU9/cdQbwIsT /NzyW7x1I4iCYpa79Ov2VbUDMywWZvA+ww+zYApzXyT5qbt+NWSeAZdN4NRD/65e lIxeYW6rbLApajQP3unSoCynLVff9kC40oQX6b1GDzkwWfxwQogxNNMNWAU0+T6F ud8rxmqls68EEypLcvfBXqf0BuMAi5XvJg8VRpD4bHicILOMW/fS3NeOFIXPl8Ii roGQMvDRD6djKb+cwqKSF6SCXL1pAneG -----END CERTIFICATE-----Generated at Thu May 15 03:47:16 2025 by rpki-client