$ rpki-client -vvf rpki.apnic.net/member_repository/A91FC9FE/53CB690CFDE211ED9D2D1F68C4F9AE02/pdnGpvlnW5HOVNEV-IyUEPGPkP4.mft File: pdnGpvlnW5HOVNEV-IyUEPGPkP4.mft (raw, json) Hash identifier: +CsCMylf/XEJ6LSdr4yHlTF0+v/Makz/TET8mfZLYfc= Subject key identifier: 99:71:48:92:E9:89:70:EB:58:D5:D1:A4:5A:05:42:3D:56:75:5E:CE Authority key identifier: A5:D9:C6:A6:F9:67:5B:91:CE:54:D1:15:F8:8C:94:10:F1:8F:90:FE Certificate issuer: /CN=A91FC9FE/serialNumber=A5D9C6A6F9675B91CE54D115F88C9410F18F90FE Certificate serial: 0177 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pdnGpvlnW5HOVNEV-IyUEPGPkP4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91FC9FE/53CB690CFDE211ED9D2D1F68C4F9AE02/pdnGpvlnW5HOVNEV-IyUEPGPkP4.mft Manifest number: 0170 Signing time: Tue 13 May 2025 03:03:39 +0000 Manifest this update: Tue 13 May 2025 03:03:38 +0000 Manifest next update: Tue 20 May 2025 03:03:38 +0000 Files and hashes: 1: pdnGpvlnW5HOVNEV-IyUEPGPkP4.crl (hash: 4WcGMSDs7BbI8jhHcR8Aq/EZNV+3It8pBtGBTyaxEtM=) 2: C5CD32AAE5DC11EE867C6F21C4F9AE02.roa (hash: a4fQ9/brXb5z2Mtyms5QfXYQ2TroFUoiyPnPZ317i3A=) 3: C6AA9D48E5DC11EE867C6F21C4F9AE02.roa (hash: AbLxDDz7EyW1J/bgbPyfasPFpKdJaru9haT9jeZMl/Y=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91FC9FE/53CB690CFDE211ED9D2D1F68C4F9AE02/pdnGpvlnW5HOVNEV-IyUEPGPkP4.crl rsync://rpki.apnic.net/member_repository/A91FC9FE/53CB690CFDE211ED9D2D1F68C4F9AE02/pdnGpvlnW5HOVNEV-IyUEPGPkP4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pdnGpvlnW5HOVNEV-IyUEPGPkP4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 20 May 2025 03:03:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 375 (0x177) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91FC9FE, serialNumber=A5D9C6A6F9675B91CE54D115F88C9410F18F90FE Validity Not Before: May 13 03:03:38 2025 GMT Not After : May 20 03:03:38 2025 GMT Subject: CN=6822b68a-ee1a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:03:fc:00:11:cb:4f:c2:1b:54:36:c8:10:bd: 37:c7:18:cd:e3:49:b0:29:41:72:8d:16:7f:71:cc: 59:79:e6:cf:12:e9:84:60:fb:d0:76:2b:dd:fd:f9: 19:d2:dd:af:54:40:85:c7:1f:2d:97:d6:e9:82:0f: fc:c5:4a:0a:af:a7:63:0a:b8:dd:f0:a5:c9:32:50: 83:2a:4c:2a:d6:8e:90:dc:3b:b2:b5:aa:7b:0b:7a: 0b:0c:2d:e8:1a:0d:f6:33:80:c3:38:18:ad:a0:3c: ef:7d:50:5f:cc:b1:05:65:70:f9:ff:6d:01:a7:44: 0d:be:a5:3d:76:a7:59:84:e4:8c:0d:c3:41:0f:c1: c8:8d:c8:79:83:4f:fd:c9:b0:97:dd:d3:f9:a5:12: a6:46:5f:35:fb:a4:00:d7:59:3a:8c:5a:38:8d:f6: 0c:50:76:de:b4:9a:30:e3:7e:60:2a:0b:f5:c8:54: b2:f9:53:cb:2b:d4:b9:9f:7f:c8:db:29:a5:2a:c7: d5:6c:26:58:32:49:fa:b6:af:2a:80:05:92:f3:27: 9b:af:43:46:e6:26:36:25:bc:fe:44:09:49:19:a0: 61:04:f3:65:83:00:de:aa:d2:a6:c1:8d:1d:d3:1f: bb:97:e6:1c:fc:ba:54:74:16:0f:92:8b:ec:d8:16: cb:d3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 99:71:48:92:E9:89:70:EB:58:D5:D1:A4:5A:05:42:3D:56:75:5E:CE X509v3 Authority Key Identifier: keyid:A5:D9:C6:A6:F9:67:5B:91:CE:54:D1:15:F8:8C:94:10:F1:8F:90:FE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91FC9FE/53CB690CFDE211ED9D2D1F68C4F9AE02/pdnGpvlnW5HOVNEV-IyUEPGPkP4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pdnGpvlnW5HOVNEV-IyUEPGPkP4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91FC9FE/53CB690CFDE211ED9D2D1F68C4F9AE02/pdnGpvlnW5HOVNEV-IyUEPGPkP4.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 6a:ba:3f:29:a0:89:5b:47:1a:50:34:47:32:55:4a:90:7b:4e: 77:61:58:8d:53:96:0f:6c:c4:22:50:f8:0c:31:45:2a:42:28: ab:56:3a:66:a6:9e:10:40:db:61:e5:fb:69:bf:b1:2e:2f:c0: 7c:be:d1:6a:f9:41:20:b8:ea:70:66:fb:2d:f0:97:12:48:46: 3d:19:89:89:6e:a8:82:87:83:4c:05:7e:81:51:f2:9d:1c:3b: 25:ae:89:24:3f:16:c4:a4:bf:dd:a2:57:c1:97:c3:94:70:5a: e1:27:6b:0e:11:23:0e:6a:8a:40:a2:7b:f0:18:cd:e9:02:e1: a8:e5:b4:4c:67:d7:18:9a:d1:fa:60:6f:33:32:76:b9:59:e8: 6c:43:71:83:83:e1:99:5a:a7:a7:04:b0:bd:e2:6b:33:62:ff: 56:9f:3a:01:d2:4b:98:98:66:8a:d3:30:4c:42:01:39:b2:cd: 45:32:21:18:db:66:a6:36:a3:80:85:f6:8b:c6:a3:fc:06:dc: 97:4e:3d:e4:97:51:f6:27:0a:8f:f5:78:b5:5c:bc:f8:46:19: b9:aa:07:94:f3:aa:eb:77:a2:7c:88:3e:23:9e:88:e2:9d:ad: 83:91:83:d9:f2:4c:23:76:fd:c6:22:53:c1:92:b1:f1:48:24: 04:d1:04:ec -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAXcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RkM5RkUxMTAvBgNVBAUTKEE1RDlDNkE2Rjk2NzVCOTFDRTU0RDExNUY4OEM5NDEw RjE4RjkwRkUwHhcNMjUwNTEzMDMwMzM4WhcNMjUwNTIwMDMwMzM4WjAYMRYwFAYD VQQDEw02ODIyYjY4YS1lZTFhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvAP8ABHLT8IbVDbIEL03xxjN40mwKUFyjRZ/ccxZeebPEumEYPvQdivd/fkZ 0t2vVECFxx8tl9bpgg/8xUoKr6djCrjd8KXJMlCDKkwq1o6Q3Duytap7C3oLDC3o Gg32M4DDOBitoDzvfVBfzLEFZXD5/20Bp0QNvqU9dqdZhOSMDcNBD8HIjch5g0/9 ybCX3dP5pRKmRl81+6QA11k6jFo4jfYMUHbetJow435gKgv1yFSy+VPLK9S5n3/I 2ymlKsfVbCZYMkn6tq8qgAWS8yebr0NG5iY2Jbz+RAlJGaBhBPNlgwDeqtKmwY0d 0x+7l+Yc/LpUdBYPkovs2BbL0wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJlxSJLp iXDrWNXRpFoFQj1WdV7OMB8GA1UdIwQYMBaAFKXZxqb5Z1uRzlTRFfiMlBDxj5D+ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGQzlGRS81M0NCNjkwQ0ZE RTIxMUVEOUQyRDFGNjhDNEY5QUUwMi9wZG5HcHZsblc1SE9WTkVWLUl5VUVQR1Br UDQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3BkbkdwdmxuVzVIT1ZORVYtSXlVRVBHUGtQNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG QzlGRS81M0NCNjkwQ0ZERTIxMUVEOUQyRDFGNjhDNEY5QUUwMi9wZG5HcHZsblc1 SE9WTkVWLUl5VUVQR1BrUDQubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBquj8poIlbRxpQNEcyVUqQe053YViNU5YPbMQiUPgMMUUqQiirVjpm pp4QQNth5ftpv7EuL8B8vtFq+UEguOpwZvst8JcSSEY9GYmJbqiCh4NMBX6BUfKd HDslrokkPxbEpL/dolfBl8OUcFrhJ2sOESMOaopAonvwGM3pAuGo5bRMZ9cYmtH6 YG8zMna5WehsQ3GDg+GZWqenBLC94mszYv9WnzoB0kuYmGaK0zBMQgE5ss1FMiEY 22amNqOAhfaLxqP8BtyXTj3kl1H2JwqP9Xi1XLz4Rhm5qgeU86rrd6J8iD4jnoji na2DkYPZ8kwjdv3GIlPBkrHxSCQE0QTs -----END CERTIFICATE-----Generated at Tue May 13 07:22:10 2025 by rpki-client