$ rpki-client -vvf rpki.apnic.net/member_repository/A91F02EA/DB15CDE011DB11EA95F2B059C4F9AE02/PShwiOOGgqTkudgoRQszZr3q1d0.mft File: PShwiOOGgqTkudgoRQszZr3q1d0.mft (raw, json) Hash identifier: pAFOxUuokKn+SmUR+yT1FB6q2RMvMJ0fnNbwakg9OvI= Subject key identifier: 78:5B:70:3C:DA:43:E4:0B:CE:8F:FC:88:62:5C:04:CF:D7:08:AC:B4 Authority key identifier: 3D:28:70:88:E3:86:82:A4:E4:B9:D8:28:45:0B:33:66:BD:EA:D5:DD Certificate issuer: /CN=A91F02EA/serialNumber=3D287088E38682A4E4B9D828450B3366BDEAD5DD Certificate serial: 0C2A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PShwiOOGgqTkudgoRQszZr3q1d0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F02EA/DB15CDE011DB11EA95F2B059C4F9AE02/PShwiOOGgqTkudgoRQszZr3q1d0.mft Manifest number: 0C1A Signing time: Sat 28 Jun 2025 18:26:13 +0000 Manifest this update: Sat 28 Jun 2025 18:26:13 +0000 Manifest next update: Sat 05 Jul 2025 18:26:13 +0000 Files and hashes: 1: PShwiOOGgqTkudgoRQszZr3q1d0.crl (hash: XjnWUOJsEEEFZGWjgfaHc3fuEXldXBrHT6wZpo6C7nE=) 2: 7716938A416211EB9B0F3C54C4F9AE02.roa (hash: SaoXuslBHecNHa04UZ0EBB+W8ns+FIPHvzYnnMHMCbU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F02EA/DB15CDE011DB11EA95F2B059C4F9AE02/PShwiOOGgqTkudgoRQszZr3q1d0.crl rsync://rpki.apnic.net/member_repository/A91F02EA/DB15CDE011DB11EA95F2B059C4F9AE02/PShwiOOGgqTkudgoRQszZr3q1d0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PShwiOOGgqTkudgoRQszZr3q1d0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 05 Jul 2025 18:26:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3114 (0xc2a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F02EA, serialNumber=3D287088E38682A4E4B9D828450B3366BDEAD5DD Validity Not Before: Jun 28 18:26:13 2025 GMT Not After : Jul 5 18:26:13 2025 GMT Subject: CN=686033c5-0748 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:79:96:80:8e:f4:03:78:85:cb:55:89:1a:67: e3:18:3f:6b:3a:39:3d:c9:02:22:9c:99:b7:c7:13: 55:e4:7c:2f:3b:d9:75:3f:32:23:f6:b8:59:ce:45: 68:80:6d:22:ae:ce:31:6a:8f:90:64:97:b2:eb:62: 80:87:3a:1a:ad:da:f8:48:be:a6:3a:fd:87:fe:8b: 0a:04:dd:13:4d:b2:ed:a7:59:e8:e1:3f:80:06:c8: c8:fa:fa:42:32:62:e9:76:25:c8:ab:ab:95:02:87: ea:3a:77:a8:71:b5:70:2c:a4:e1:b9:96:7f:62:9d: 68:4b:fb:64:20:1f:b9:92:82:31:d5:41:7b:30:d8: 89:12:c8:57:9e:02:9c:6d:5e:58:f2:e6:26:6f:ae: 25:0a:46:de:ec:de:83:b3:b2:e4:b4:af:b2:6d:0c: 91:a8:b4:52:ac:17:ea:8b:9f:9c:13:e3:35:72:ab: b7:bf:bf:fa:e4:c6:30:76:3a:d0:37:b1:39:8b:00: 01:cf:3b:1f:b7:11:4f:6f:c1:fa:bb:9b:6f:02:98: 7e:9c:75:8d:b8:ff:a4:c8:56:5e:a4:d6:8f:97:23: 03:59:d0:59:95:5b:1b:03:5a:d7:fa:af:a1:e8:54: fb:5f:21:ac:6f:e6:89:ee:d9:8f:2f:ce:ff:0b:51: a7:bf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 78:5B:70:3C:DA:43:E4:0B:CE:8F:FC:88:62:5C:04:CF:D7:08:AC:B4 X509v3 Authority Key Identifier: keyid:3D:28:70:88:E3:86:82:A4:E4:B9:D8:28:45:0B:33:66:BD:EA:D5:DD X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F02EA/DB15CDE011DB11EA95F2B059C4F9AE02/PShwiOOGgqTkudgoRQszZr3q1d0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PShwiOOGgqTkudgoRQszZr3q1d0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F02EA/DB15CDE011DB11EA95F2B059C4F9AE02/PShwiOOGgqTkudgoRQszZr3q1d0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 41:2c:14:09:0f:87:76:02:b0:19:6b:33:80:98:c0:f3:42:31: a9:08:88:f2:8d:00:11:5d:3c:08:4e:ad:9c:25:c9:f4:8b:81: f1:ff:1f:dc:8a:f5:58:a0:b5:e0:fb:f1:8f:db:5d:16:e6:14: 1c:f9:24:db:86:6b:b8:59:a8:0b:d3:b7:c4:6e:3c:63:07:a1: d1:ab:f6:ba:70:9e:fd:3e:6c:4c:eb:6e:77:cd:ca:8f:8a:6a: ff:5a:7f:7a:fe:2e:7c:52:ad:e0:b7:a3:69:7d:50:2c:16:32: b0:bd:cc:5d:96:0c:2f:f7:75:56:f2:3d:88:97:6e:09:f0:a9: a1:27:af:c5:27:87:68:bc:a7:61:a5:91:85:fd:76:f7:19:71: 2b:e9:5e:ff:64:b0:26:a2:b8:89:ac:58:5a:76:69:66:53:21: b8:f1:ab:9f:54:fb:c0:e1:6b:05:d8:cb:a2:cf:6d:ce:be:eb: 32:46:aa:19:dc:e9:61:f8:f7:e4:c8:6b:1c:ce:b4:d6:12:83: 81:c3:21:b1:6f:14:e2:3d:ac:a1:f5:24:51:41:31:71:55:da: 05:a2:53:e3:66:87:5a:a8:db:86:78:d6:44:7e:a4:e6:ba:51: da:55:a1:d0:d5:ae:f2:b2:31:07:fc:a2:ee:2e:ca:b5:3c:e0: c8:02:6b:36 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDCowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjAyRUExMTAvBgNVBAUTKDNEMjg3MDg4RTM4NjgyQTRFNEI5RDgyODQ1MEIzMzY2 QkRFQUQ1REQwHhcNMjUwNjI4MTgyNjEzWhcNMjUwNzA1MTgyNjEzWjAYMRYwFAYD VQQDEw02ODYwMzNjNS0wNzQ4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwnmWgI70A3iFy1WJGmfjGD9rOjk9yQIinJm3xxNV5HwvO9l1PzIj9rhZzkVo gG0irs4xao+QZJey62KAhzoardr4SL6mOv2H/osKBN0TTbLtp1no4T+ABsjI+vpC MmLpdiXIq6uVAofqOneocbVwLKThuZZ/Yp1oS/tkIB+5koIx1UF7MNiJEshXngKc bV5Y8uYmb64lCkbe7N6Ds7LktK+ybQyRqLRSrBfqi5+cE+M1cqu3v7/65MYwdjrQ N7E5iwABzzsftxFPb8H6u5tvAph+nHWNuP+kyFZepNaPlyMDWdBZlVsbA1rX+q+h 6FT7XyGsb+aJ7tmPL87/C1GnvwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFHhbcDza Q+QLzo/8iGJcBM/XCKy0MB8GA1UdIwQYMBaAFD0ocIjjhoKk5LnYKEULM2a96tXd MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGMDJFQS9EQjE1Q0RFMDEx REIxMUVBOTVGMkIwNTlDNEY5QUUwMi9QU2h3aU9PR2dxVGt1ZGdvUlFzelpyM3Ex ZDAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1BTaHdpT09HZ3FUa3VkZ29SUXN6WnIzcTFkMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG MDJFQS9EQjE1Q0RFMDExREIxMUVBOTVGMkIwNTlDNEY5QUUwMi9QU2h3aU9PR2dx VGt1ZGdvUlFzelpyM3ExZDAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBBLBQJD4d2ArAZazOAmMDzQjGpCIjyjQARXTwITq2cJcn0i4Hx/x/c ivVYoLXg+/GP210W5hQc+STbhmu4WagL07fEbjxjB6HRq/a6cJ79PmxM6253zcqP imr/Wn96/i58Uq3gt6NpfVAsFjKwvcxdlgwv93VW8j2Il24J8KmhJ6/FJ4dovKdh pZGF/Xb3GXEr6V7/ZLAmoriJrFhadmlmUyG48aufVPvA4WsF2Muiz23OvusyRqoZ 3Olh+PfkyGsczrTWEoOBwyGxbxTiPayh9SRRQTFxVdoFolPjZodaqNuGeNZEfqTm ulHaVaHQ1a7ysjEH/KLuLsq1PODIAms2 -----END CERTIFICATE-----Generated at Sun Jun 29 20:07:25 2025 by rpki-client