$ rpki-client -vvf rpki.apnic.net/member_repository/A91104BD/4373D50C384311EAA6192E53C4F9AE02/pi3nVqmxabvP97VW1DMAlV1A4yA.mft File: pi3nVqmxabvP97VW1DMAlV1A4yA.mft (raw, json) Hash identifier: 5KQIabwwp1Slsma7q/9V6RabSZ/AB7QRLInT1z6ark4= Subject key identifier: 07:19:6A:79:09:D9:34:C9:1E:98:3E:23:53:92:DC:C7:24:82:85:E0 Authority key identifier: A6:2D:E7:56:A9:B1:69:BB:CF:F7:B5:56:D4:33:00:95:5D:40:E3:20 Certificate issuer: /CN=A91104BD/serialNumber=A62DE756A9B169BBCFF7B556D43300955D40E320 Certificate serial: 0B41 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pi3nVqmxabvP97VW1DMAlV1A4yA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91104BD/4373D50C384311EAA6192E53C4F9AE02/pi3nVqmxabvP97VW1DMAlV1A4yA.mft Manifest number: 0B3A Signing time: Fri 30 May 2025 19:21:20 +0000 Manifest this update: Fri 30 May 2025 19:21:20 +0000 Manifest next update: Fri 06 Jun 2025 19:21:20 +0000 Files and hashes: 1: pi3nVqmxabvP97VW1DMAlV1A4yA.crl (hash: 86IVKQLTYeGgsXJHcpVUtvrYxLcHDYVcD7p+VQty2pA=) 2: D326CC30384411EA9D540B58C4F9AE02.roa (hash: y7gm3Ye3cCKsMlMiwHP3v0HJTLEmZvMTdt93lWQK5j4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91104BD/4373D50C384311EAA6192E53C4F9AE02/pi3nVqmxabvP97VW1DMAlV1A4yA.crl rsync://rpki.apnic.net/member_repository/A91104BD/4373D50C384311EAA6192E53C4F9AE02/pi3nVqmxabvP97VW1DMAlV1A4yA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pi3nVqmxabvP97VW1DMAlV1A4yA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 06 Jun 2025 19:21:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2881 (0xb41) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91104BD, serialNumber=A62DE756A9B169BBCFF7B556D43300955D40E320 Validity Not Before: May 30 19:21:20 2025 GMT Not After : Jun 6 19:21:20 2025 GMT Subject: CN=683a0530-2a09 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b3:f6:67:bc:ff:d4:e6:fb:ae:86:c5:d3:9e:e6: 05:ad:7e:6f:d0:06:c8:b0:23:d4:d7:bd:73:00:34: 15:a3:2e:5f:b6:16:43:e3:ce:86:23:6a:9f:82:4b: e7:93:ef:1d:f5:d9:e8:d2:98:b9:60:d8:05:f9:8b: 46:c2:df:33:d2:9c:42:f5:ab:75:cb:a0:d7:f8:17: d0:74:7c:20:e4:d4:58:e7:53:7d:d8:e2:e9:67:5b: 48:4e:d8:78:48:04:26:8e:5a:d2:36:40:d4:7c:ee: 72:f6:7d:a6:7b:0d:af:9a:0b:77:9b:9d:3b:d7:79: e6:00:42:4f:65:a9:ba:4a:ee:f9:0a:9f:7b:3d:95: f8:ec:a1:f6:dd:79:bb:61:41:11:68:79:d0:79:5d: 9e:95:f8:fd:83:2e:cb:7f:a3:77:28:77:82:86:b1: 5e:3c:ce:0b:62:88:9d:fd:a1:d9:f1:58:09:6c:d3: c4:c1:1c:7a:a2:d7:38:4a:9f:d0:86:ee:1a:ac:f6: c3:3a:48:96:4e:8c:31:0c:cf:b4:35:68:5e:3e:39: 27:04:c5:77:0e:01:c8:b5:61:42:c3:ee:34:9e:19: ef:eb:b4:b1:d6:ef:73:a2:4a:99:40:2c:dd:d8:a6: 7b:ea:46:d9:99:48:4e:53:dd:a4:e2:34:1b:d4:ee: 95:b1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 07:19:6A:79:09:D9:34:C9:1E:98:3E:23:53:92:DC:C7:24:82:85:E0 X509v3 Authority Key Identifier: keyid:A6:2D:E7:56:A9:B1:69:BB:CF:F7:B5:56:D4:33:00:95:5D:40:E3:20 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91104BD/4373D50C384311EAA6192E53C4F9AE02/pi3nVqmxabvP97VW1DMAlV1A4yA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pi3nVqmxabvP97VW1DMAlV1A4yA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91104BD/4373D50C384311EAA6192E53C4F9AE02/pi3nVqmxabvP97VW1DMAlV1A4yA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 1e:1b:8d:11:ec:92:d2:b8:71:a2:2e:79:61:10:9a:14:1f:c9: 39:a7:c6:c5:5c:b5:02:b9:e6:39:9e:b1:a4:ab:5d:4c:53:0a: b6:50:3b:18:f6:f0:bf:d4:48:b5:5b:83:c2:58:b2:b1:c5:44: b5:a1:07:4a:65:69:8f:c5:d1:d0:19:d2:62:da:ba:ab:6a:0c: e2:3e:ba:38:9b:5f:bb:de:78:b8:6f:5c:1d:03:9e:f4:f0:66: e8:f1:ff:28:d0:db:d5:ed:89:1a:57:78:a6:ac:8b:b3:81:6c: 12:8d:1f:99:9b:2c:8d:47:70:aa:27:4f:0b:67:5d:a2:06:20: 33:70:29:67:6d:f9:87:82:04:32:94:b0:f0:9d:cc:f2:2b:cb: b0:ec:bf:74:4a:f9:fb:13:eb:c8:79:f7:e4:2d:5d:23:59:fe: 2c:80:cc:8a:02:39:da:48:2f:b5:fe:7f:14:11:94:a3:a7:59: cf:4e:c8:87:83:55:19:9b:92:8d:dd:95:2c:96:0f:24:96:a3: 51:12:56:8f:4e:36:2e:38:b0:96:c6:8a:2b:2a:bf:dc:d0:b8: 82:0c:3d:0e:bc:80:3f:0d:b1:4e:d8:6a:1a:06:c1:52:0d:28: 11:73:7f:97:e8:2a:c2:32:37:43:33:bb:12:03:c3:0f:88:65: eb:b4:fc:b7 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICC0EwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MTA0QkQxMTAvBgNVBAUTKEE2MkRFNzU2QTlCMTY5QkJDRkY3QjU1NkQ0MzMwMDk1 NUQ0MEUzMjAwHhcNMjUwNTMwMTkyMTIwWhcNMjUwNjA2MTkyMTIwWjAYMRYwFAYD VQQDEw02ODNhMDUzMC0yYTA5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAs/ZnvP/U5vuuhsXTnuYFrX5v0AbIsCPU171zADQVoy5fthZD486GI2qfgkvn k+8d9dno0pi5YNgF+YtGwt8z0pxC9at1y6DX+BfQdHwg5NRY51N92OLpZ1tITth4 SAQmjlrSNkDUfO5y9n2mew2vmgt3m50713nmAEJPZam6Su75Cp97PZX47KH23Xm7 YUERaHnQeV2elfj9gy7Lf6N3KHeChrFePM4LYoid/aHZ8VgJbNPEwRx6otc4Sp/Q hu4arPbDOkiWTowxDM+0NWhePjknBMV3DgHItWFCw+40nhnv67Sx1u9zokqZQCzd 2KZ76kbZmUhOU92k4jQb1O6VsQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFAcZankJ 2TTJHpg+I1OS3MckgoXgMB8GA1UdIwQYMBaAFKYt51apsWm7z/e1VtQzAJVdQOMg MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExMDRCRC80MzczRDUwQzM4 NDMxMUVBQTYxOTJFNTNDNEY5QUUwMi9waTNuVnFteGFidlA5N1ZXMURNQWxWMUE0 eUEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3BpM25WcW14YWJ2UDk3VlcxRE1BbFYxQTR5QS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx MDRCRC80MzczRDUwQzM4NDMxMUVBQTYxOTJFNTNDNEY5QUUwMi9waTNuVnFteGFi dlA5N1ZXMURNQWxWMUE0eUEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAeG40R7JLSuHGiLnlhEJoUH8k5p8bFXLUCueY5nrGkq11MUwq2UDsY 9vC/1Ei1W4PCWLKxxUS1oQdKZWmPxdHQGdJi2rqragziPro4m1+73ni4b1wdA570 8Gbo8f8o0NvV7YkaV3imrIuzgWwSjR+ZmyyNR3CqJ08LZ12iBiAzcClnbfmHggQy lLDwnczyK8uw7L90Svn7E+vIeffkLV0jWf4sgMyKAjnaSC+1/n8UEZSjp1nPTsiH g1UZm5KN3ZUslg8klqNRElaPTjYuOLCWxoorKr/c0LiCDD0OvIA/DbFO2GoaBsFS DSgRc3+X6CrCMjdDM7sSA8MPiGXrtPy3 -----END CERTIFICATE-----Generated at Sat May 31 17:53:06 2025 by rpki-client