$ rpki-client -vvf rpki.apnic.net/member_repository/A91F02EA/DB15CDE011DB11EA95F2B059C4F9AE02/PShwiOOGgqTkudgoRQszZr3q1d0.mft File: PShwiOOGgqTkudgoRQszZr3q1d0.mft (raw, json) Hash identifier: TGwcB+OMnigNsRdQ4ltmkskzYHbozq+82vrdzPdLAVM= Subject key identifier: 30:2D:49:F4:EA:F8:38:1D:62:B5:F3:81:5F:27:F0:90:7F:9A:72:3B Authority key identifier: 3D:28:70:88:E3:86:82:A4:E4:B9:D8:28:45:0B:33:66:BD:EA:D5:DD Certificate issuer: /CN=A91F02EA/serialNumber=3D287088E38682A4E4B9D828450B3366BDEAD5DD Certificate serial: 0C10 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PShwiOOGgqTkudgoRQszZr3q1d0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F02EA/DB15CDE011DB11EA95F2B059C4F9AE02/PShwiOOGgqTkudgoRQszZr3q1d0.mft Manifest number: 0C00 Signing time: Tue 06 May 2025 18:41:29 +0000 Manifest this update: Tue 06 May 2025 18:41:29 +0000 Manifest next update: Tue 13 May 2025 18:41:29 +0000 Files and hashes: 1: PShwiOOGgqTkudgoRQszZr3q1d0.crl (hash: dlLAUHkG5dtyXXDha7x5WkRDk+8yW3p2s3h7r9xSVxo=) 2: 7716938A416211EB9B0F3C54C4F9AE02.roa (hash: SaoXuslBHecNHa04UZ0EBB+W8ns+FIPHvzYnnMHMCbU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F02EA/DB15CDE011DB11EA95F2B059C4F9AE02/PShwiOOGgqTkudgoRQszZr3q1d0.crl rsync://rpki.apnic.net/member_repository/A91F02EA/DB15CDE011DB11EA95F2B059C4F9AE02/PShwiOOGgqTkudgoRQszZr3q1d0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PShwiOOGgqTkudgoRQszZr3q1d0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 13 May 2025 18:41:28 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3088 (0xc10) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F02EA, serialNumber=3D287088E38682A4E4B9D828450B3366BDEAD5DD Validity Not Before: May 6 18:41:29 2025 GMT Not After : May 13 18:41:29 2025 GMT Subject: CN=681a57d9-1489 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ca:97:1d:94:f9:f1:17:63:04:96:63:f0:84:18: 6e:27:a3:d3:d9:2c:a6:b3:8c:57:3a:f3:57:cd:af: e5:b1:ba:ff:7f:bd:35:14:00:a1:1a:0b:35:6d:29: db:f5:ab:b5:40:0f:a6:44:57:ca:ec:42:83:74:81: e4:b3:7a:a2:42:c4:48:37:83:a5:b5:92:bd:32:40: 11:89:52:29:49:b3:61:c5:f3:4f:5b:b9:33:de:8e: 78:b6:b6:4b:54:b8:ac:c6:c8:27:94:a5:aa:93:e4: 09:53:52:40:0a:6a:4d:61:76:85:29:97:8a:e1:b5: 0f:47:1f:4e:1f:67:16:7f:23:31:84:96:ce:5e:53: 8c:da:56:c7:a4:b5:da:de:20:1a:d8:ea:08:46:48: cb:48:c4:d5:f3:86:aa:44:ff:4d:af:6b:49:56:60: 22:fb:d5:f5:30:c4:bd:8d:e2:41:24:69:7e:06:6d: 1d:6c:f2:af:9d:28:f8:94:1a:c4:9c:6e:63:80:9c: ac:1b:a3:cd:d8:fb:44:1c:da:36:1c:f1:a5:d7:75: b5:72:eb:50:a1:33:59:d5:76:8b:61:67:b5:57:99: 4d:4c:8e:dd:fe:71:a9:12:90:ac:bd:6c:a9:5d:ad: a5:5a:10:bc:6a:f3:9d:69:8a:94:cc:22:e9:1c:1c: d0:b3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 30:2D:49:F4:EA:F8:38:1D:62:B5:F3:81:5F:27:F0:90:7F:9A:72:3B X509v3 Authority Key Identifier: keyid:3D:28:70:88:E3:86:82:A4:E4:B9:D8:28:45:0B:33:66:BD:EA:D5:DD X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F02EA/DB15CDE011DB11EA95F2B059C4F9AE02/PShwiOOGgqTkudgoRQszZr3q1d0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PShwiOOGgqTkudgoRQszZr3q1d0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F02EA/DB15CDE011DB11EA95F2B059C4F9AE02/PShwiOOGgqTkudgoRQszZr3q1d0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 80:38:fe:96:12:91:e7:5b:74:0a:e6:63:ee:33:a4:6d:ff:05: 2c:2b:4e:a3:84:0d:cd:5b:1f:eb:4a:34:19:c6:dd:80:cd:37: 5e:66:ae:76:59:74:67:cf:66:78:c0:50:00:6d:6c:fa:1d:8e: 0e:48:79:93:99:d0:42:01:e2:9b:e5:eb:ea:e9:f2:2e:48:0f: b3:87:7f:4d:6f:b4:95:1c:62:c5:8e:84:2e:d9:4d:4b:7f:7e: 39:98:50:c0:e4:07:5f:c9:85:ed:e6:c3:48:cf:a1:3e:cc:2b: 82:10:32:f9:90:b1:e8:dd:e4:17:c9:c5:eb:8a:e3:b8:65:fb: 3c:e2:97:da:dd:e9:73:dd:89:53:4a:90:8e:6a:0c:81:47:aa: 84:1f:0c:cc:6a:b2:39:96:43:44:4d:ab:35:b1:da:17:e8:b8: f0:d4:ba:56:b7:e0:a2:e6:8a:29:76:21:1d:50:c1:63:e6:21: 98:b7:8c:91:a9:84:8d:18:cd:4f:39:17:fc:42:56:11:51:d3: c4:e8:39:f4:6e:ba:0e:ec:5a:5d:e6:04:88:95:ae:d7:1b:b6: 87:8e:3f:6c:6d:ad:8c:0c:91:df:7e:53:7e:bd:aa:8f:3e:14: d4:b5:4b:6b:0c:65:37:66:8f:08:6a:31:e2:75:ba:8e:4f:49: d4:d7:60:cb -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDBAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjAyRUExMTAvBgNVBAUTKDNEMjg3MDg4RTM4NjgyQTRFNEI5RDgyODQ1MEIzMzY2 QkRFQUQ1REQwHhcNMjUwNTA2MTg0MTI5WhcNMjUwNTEzMTg0MTI5WjAYMRYwFAYD VQQDEw02ODFhNTdkOS0xNDg5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAypcdlPnxF2MElmPwhBhuJ6PT2Syms4xXOvNXza/lsbr/f701FAChGgs1bSnb 9au1QA+mRFfK7EKDdIHks3qiQsRIN4OltZK9MkARiVIpSbNhxfNPW7kz3o54trZL VLisxsgnlKWqk+QJU1JACmpNYXaFKZeK4bUPRx9OH2cWfyMxhJbOXlOM2lbHpLXa 3iAa2OoIRkjLSMTV84aqRP9Nr2tJVmAi+9X1MMS9jeJBJGl+Bm0dbPKvnSj4lBrE nG5jgJysG6PN2PtEHNo2HPGl13W1cutQoTNZ1XaLYWe1V5lNTI7d/nGpEpCsvWyp Xa2lWhC8avOdaYqUzCLpHBzQswIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFDAtSfTq +DgdYrXzgV8n8JB/mnI7MB8GA1UdIwQYMBaAFD0ocIjjhoKk5LnYKEULM2a96tXd MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGMDJFQS9EQjE1Q0RFMDEx REIxMUVBOTVGMkIwNTlDNEY5QUUwMi9QU2h3aU9PR2dxVGt1ZGdvUlFzelpyM3Ex ZDAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1BTaHdpT09HZ3FUa3VkZ29SUXN6WnIzcTFkMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG MDJFQS9EQjE1Q0RFMDExREIxMUVBOTVGMkIwNTlDNEY5QUUwMi9QU2h3aU9PR2dx VGt1ZGdvUlFzelpyM3ExZDAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCAOP6WEpHnW3QK5mPuM6Rt/wUsK06jhA3NWx/rSjQZxt2AzTdeZq52 WXRnz2Z4wFAAbWz6HY4OSHmTmdBCAeKb5evq6fIuSA+zh39Nb7SVHGLFjoQu2U1L f345mFDA5AdfyYXt5sNIz6E+zCuCEDL5kLHo3eQXycXriuO4Zfs84pfa3elz3YlT SpCOagyBR6qEHwzMarI5lkNETas1sdoX6Ljw1LpWt+Ci5oopdiEdUMFj5iGYt4yR qYSNGM1PORf8QlYRUdPE6Dn0broO7Fpd5gSIla7XG7aHjj9sba2MDJHfflN+vaqP PhTUtUtrDGU3Zo8IajHidbqOT0nU12DL -----END CERTIFICATE-----Generated at Wed May 7 22:13:19 2025 by rpki-client