$ rpki-client -vvf rpki.apnic.net/member_repository/A91190B4/BC8C10AE573C11EAB0A4E335C4F9AE02/peado7v7jl3TlkjmpD4A-nI95lg.mft File: peado7v7jl3TlkjmpD4A-nI95lg.mft (raw, json) Hash identifier: akDmFXwrUoNwUORWCko/i3Il5NJeF17PNfCds1XDhwg= Subject key identifier: 36:E2:38:F5:8F:EA:82:96:C9:A5:32:8B:50:DA:7C:2F:1F:4E:B8:06 Authority key identifier: A5:E6:9D:A3:BB:FB:8E:5D:D3:96:48:E6:A4:3E:00:FA:72:3D:E6:58 Certificate issuer: /CN=A91190B4/serialNumber=A5E69DA3BBFB8E5DD39648E6A43E00FA723DE658 Certificate serial: 0AAA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/peado7v7jl3TlkjmpD4A-nI95lg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91190B4/BC8C10AE573C11EAB0A4E335C4F9AE02/peado7v7jl3TlkjmpD4A-nI95lg.mft Manifest number: 0AA2 Signing time: Fri 30 May 2025 19:44:40 +0000 Manifest this update: Fri 30 May 2025 19:44:39 +0000 Manifest next update: Fri 06 Jun 2025 19:44:39 +0000 Files and hashes: 1: peado7v7jl3TlkjmpD4A-nI95lg.crl (hash: IhnGATZRPDmiXhBhi+hVsQwcvtMazDyekq8hJFROEhs=) 2: 55BC5674573F11EAA8901D3EC4F9AE02.roa (hash: GpKaeFCXgLqKWUd4/mw0J3pe4Cuty7kr/IEGoWg6an0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91190B4/BC8C10AE573C11EAB0A4E335C4F9AE02/peado7v7jl3TlkjmpD4A-nI95lg.crl rsync://rpki.apnic.net/member_repository/A91190B4/BC8C10AE573C11EAB0A4E335C4F9AE02/peado7v7jl3TlkjmpD4A-nI95lg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/peado7v7jl3TlkjmpD4A-nI95lg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 06 Jun 2025 19:44:39 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2730 (0xaaa) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91190B4, serialNumber=A5E69DA3BBFB8E5DD39648E6A43E00FA723DE658 Validity Not Before: May 30 19:44:39 2025 GMT Not After : Jun 6 19:44:39 2025 GMT Subject: CN=683a0aa7-d563 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b0:db:b5:85:9e:21:a3:23:71:a2:c1:34:10:5a: f9:e7:14:9a:47:9d:50:8d:a9:c1:6a:e4:5e:7b:47: a5:86:24:ed:ba:78:c5:7b:d3:de:eb:5d:82:de:ef: 72:95:6f:30:9a:02:18:ed:cb:9d:43:b2:32:7c:8b: 35:83:32:c0:e7:36:8a:33:30:2c:1e:e4:dd:5a:66: c1:90:76:4a:8a:78:37:1b:83:d7:ff:2f:82:5d:06: 23:44:3b:c0:67:85:d9:91:5b:6f:bf:98:ab:4c:62: 8f:45:bc:d5:4a:a0:0e:9f:67:cc:c7:d3:f1:71:78: 07:01:30:bc:40:00:82:1d:90:5c:97:48:a2:f8:66: c6:94:58:8f:0e:24:c2:3b:33:c9:65:88:d3:3c:7c: 98:21:61:80:9b:c1:f0:3c:7b:14:c9:af:c2:81:39: 8e:15:70:49:11:28:d3:65:d3:9e:ea:2d:a5:8f:72: 8b:63:da:4f:f5:89:b6:64:09:b1:4b:b2:6d:e9:4e: b1:9c:b8:8d:a2:67:20:c9:1e:6f:32:3b:3c:fa:ac: b2:d9:ca:ce:c3:5b:48:59:1c:3f:5f:64:d3:ce:c0: f3:7d:97:b9:61:63:e8:d5:93:11:b8:71:ed:9d:d8: 01:75:9d:80:03:7a:cb:61:78:db:40:db:f0:ae:4c: a7:a1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 36:E2:38:F5:8F:EA:82:96:C9:A5:32:8B:50:DA:7C:2F:1F:4E:B8:06 X509v3 Authority Key Identifier: keyid:A5:E6:9D:A3:BB:FB:8E:5D:D3:96:48:E6:A4:3E:00:FA:72:3D:E6:58 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91190B4/BC8C10AE573C11EAB0A4E335C4F9AE02/peado7v7jl3TlkjmpD4A-nI95lg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/peado7v7jl3TlkjmpD4A-nI95lg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91190B4/BC8C10AE573C11EAB0A4E335C4F9AE02/peado7v7jl3TlkjmpD4A-nI95lg.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 64:c8:dc:29:12:a7:5a:0a:26:f3:c4:ed:6a:41:d1:cf:52:9d: e7:19:00:11:af:01:3a:d9:00:51:33:08:77:ed:3c:bf:b9:95: d2:28:43:57:69:27:f8:06:cb:96:e7:ec:ef:e3:b9:ce:09:89: 8c:3a:80:a5:31:94:c5:9b:9b:87:b9:57:38:64:ff:d4:af:cf: 50:71:7f:82:26:0c:d1:16:2b:9e:d5:b1:3d:3a:f1:78:bf:f1: 80:65:0f:a6:cd:cf:04:11:fc:88:bc:ce:58:6b:45:62:19:45: bb:fa:5c:16:f6:01:e8:7a:c2:eb:1a:5b:cb:61:89:dc:c4:55: b6:19:4c:37:ce:31:17:94:d1:db:d8:ea:c5:84:dd:60:ca:f9: 76:93:06:a6:c5:72:87:1b:c5:29:61:ba:9d:9d:d3:e3:d7:e9: b6:fb:1d:3b:f1:cf:e1:f2:62:3b:1e:ac:81:40:0d:9a:d1:49: f4:0d:61:7c:b3:47:f0:51:a0:a4:94:b5:76:d4:24:50:18:7c: c3:da:75:ec:a6:40:cb:04:b1:5a:fe:51:ff:bf:af:f6:16:ba: cd:43:03:ac:00:5d:36:ce:40:be:5e:a9:fc:92:53:1a:f0:3b: 66:bb:e3:e4:dd:54:dc:db:a8:c5:d1:f0:d1:8b:46:ce:a3:f3: 2e:5f:e9:c8 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCqowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MTkwQjQxMTAvBgNVBAUTKEE1RTY5REEzQkJGQjhFNUREMzk2NDhFNkE0M0UwMEZB NzIzREU2NTgwHhcNMjUwNTMwMTk0NDM5WhcNMjUwNjA2MTk0NDM5WjAYMRYwFAYD VQQDEw02ODNhMGFhNy1kNTYzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsNu1hZ4hoyNxosE0EFr55xSaR51QjanBauRee0elhiTtunjFe9Pe612C3u9y lW8wmgIY7cudQ7IyfIs1gzLA5zaKMzAsHuTdWmbBkHZKing3G4PX/y+CXQYjRDvA Z4XZkVtvv5irTGKPRbzVSqAOn2fMx9PxcXgHATC8QACCHZBcl0ii+GbGlFiPDiTC OzPJZYjTPHyYIWGAm8HwPHsUya/CgTmOFXBJESjTZdOe6i2lj3KLY9pP9Ym2ZAmx S7Jt6U6xnLiNomcgyR5vMjs8+qyy2crOw1tIWRw/X2TTzsDzfZe5YWPo1ZMRuHHt ndgBdZ2AA3rLYXjbQNvwrkynoQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFDbiOPWP 6oKWyaUyi1DafC8fTrgGMB8GA1UdIwQYMBaAFKXmnaO7+45d05ZI5qQ+APpyPeZY MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExOTBCNC9CQzhDMTBBRTU3 M0MxMUVBQjBBNEUzMzVDNEY5QUUwMi9wZWFkbzd2N2psM1Rsa2ptcEQ0QS1uSTk1 bGcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3BlYWRvN3Y3amwzVGxram1wRDRBLW5JOTVsZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx OTBCNC9CQzhDMTBBRTU3M0MxMUVBQjBBNEUzMzVDNEY5QUUwMi9wZWFkbzd2N2ps M1Rsa2ptcEQ0QS1uSTk1bGcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBkyNwpEqdaCibzxO1qQdHPUp3nGQARrwE62QBRMwh37Ty/uZXSKENX aSf4BsuW5+zv47nOCYmMOoClMZTFm5uHuVc4ZP/Ur89QcX+CJgzRFiue1bE9OvF4 v/GAZQ+mzc8EEfyIvM5Ya0ViGUW7+lwW9gHoesLrGlvLYYncxFW2GUw3zjEXlNHb 2OrFhN1gyvl2kwamxXKHG8UpYbqdndPj1+m2+x078c/h8mI7HqyBQA2a0Un0DWF8 s0fwUaCklLV21CRQGHzD2nXspkDLBLFa/lH/v6/2FrrNQwOsAF02zkC+Xqn8klMa 8Dtmu+Pk3VTc26jF0fDRi0bOo/MuX+nI -----END CERTIFICATE-----Generated at Sat May 31 17:51:38 2025 by rpki-client