$ rpki-client -vvf rpki.apnic.net/member_repository/A911C53D/84B58F668CFB11EB9DC62C3BC4F9AE02/pcdj6Klfa5qyQRNgHagVOhWRJu4.mft File: pcdj6Klfa5qyQRNgHagVOhWRJu4.mft (raw, json) Hash identifier: ujeTkQLV7yETPA9p6rjrH1JbJAfeBbVKIjrwBy0Rdkg= Subject key identifier: 29:D1:44:CF:2C:3B:AC:13:8C:CD:30:BD:9F:EA:14:9F:99:3F:E6:01 Authority key identifier: A5:C7:63:E8:A9:5F:6B:9A:B2:41:13:60:1D:A8:15:3A:15:91:26:EE Certificate issuer: /CN=A911C53D/serialNumber=A5C763E8A95F6B9AB24113601DA8153A159126EE Certificate serial: 0668 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pcdj6Klfa5qyQRNgHagVOhWRJu4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911C53D/84B58F668CFB11EB9DC62C3BC4F9AE02/pcdj6Klfa5qyQRNgHagVOhWRJu4.mft Manifest number: 0657 Signing time: Fri 30 May 2025 22:47:48 +0000 Manifest this update: Fri 30 May 2025 22:47:48 +0000 Manifest next update: Fri 06 Jun 2025 22:47:48 +0000 Files and hashes: 1: pcdj6Klfa5qyQRNgHagVOhWRJu4.crl (hash: QT0HhntnsVQ7PZkzQtXnj6BWH3ALIhBJq8P/jI/wYck=) 2: 45FE96F6A5F611EFA16E4B2FC4F9AE02.roa (hash: QKxHtK6gPEt6tq1AwAFxqNPlRptJP4WLysqBYZDRn14=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911C53D/84B58F668CFB11EB9DC62C3BC4F9AE02/pcdj6Klfa5qyQRNgHagVOhWRJu4.crl rsync://rpki.apnic.net/member_repository/A911C53D/84B58F668CFB11EB9DC62C3BC4F9AE02/pcdj6Klfa5qyQRNgHagVOhWRJu4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pcdj6Klfa5qyQRNgHagVOhWRJu4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 06 Jun 2025 22:47:47 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1640 (0x668) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911C53D, serialNumber=A5C763E8A95F6B9AB24113601DA8153A159126EE Validity Not Before: May 30 22:47:48 2025 GMT Not After : Jun 6 22:47:48 2025 GMT Subject: CN=683a3594-b040 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ad:be:0e:2f:4c:cc:82:fe:c3:c2:94:dd:f4:47: 0a:cf:2b:45:2b:7a:ed:42:e4:5c:52:8d:de:fa:34: 74:3d:ee:91:dd:ef:5e:d2:94:d0:69:65:bf:dd:45: 5f:76:b1:fc:1d:9a:75:c0:2d:4e:c4:79:da:d5:fc: 45:42:a6:91:35:26:ac:aa:0d:a0:27:42:de:d8:50: 5c:dc:65:7c:38:16:b2:7a:87:11:3b:e0:58:45:65: eb:e9:ad:26:bb:2d:6a:e2:e7:5c:ab:e9:ce:b1:eb: 49:ba:f1:a6:72:ae:65:c8:f1:d6:2e:5a:0f:bd:86: a5:b1:d5:03:0d:bf:71:a3:50:5e:a5:af:7d:2d:b2: 34:ae:48:17:4e:d4:ab:0a:fc:b4:01:00:c5:10:69: 0c:01:76:61:a4:9d:d4:e9:41:c1:2b:89:6c:c2:3b: e3:a0:4a:9b:c5:16:30:7b:10:f0:1a:bd:e6:be:9b: 6f:97:f1:09:87:4a:6e:e2:f8:75:fe:5a:95:62:99: c9:a4:db:5f:ce:57:a0:d9:5d:47:0b:8e:fb:d2:41: c9:0b:1d:15:c5:6e:39:b8:28:37:2a:0a:0c:74:a2: d5:90:99:39:1a:d0:30:5e:21:f3:42:eb:98:4d:61: 85:8d:17:31:5f:8c:d3:94:5f:ff:56:e3:56:12:f6: 18:31 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 29:D1:44:CF:2C:3B:AC:13:8C:CD:30:BD:9F:EA:14:9F:99:3F:E6:01 X509v3 Authority Key Identifier: keyid:A5:C7:63:E8:A9:5F:6B:9A:B2:41:13:60:1D:A8:15:3A:15:91:26:EE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911C53D/84B58F668CFB11EB9DC62C3BC4F9AE02/pcdj6Klfa5qyQRNgHagVOhWRJu4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pcdj6Klfa5qyQRNgHagVOhWRJu4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911C53D/84B58F668CFB11EB9DC62C3BC4F9AE02/pcdj6Klfa5qyQRNgHagVOhWRJu4.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 4b:68:04:66:e9:b3:f0:34:81:f8:3f:e4:f9:a4:8d:82:71:7c: a5:02:54:89:6e:a9:62:a8:e7:30:a0:fd:c7:83:99:3d:77:e7: 44:9a:e4:66:fb:f9:d7:04:85:a9:1c:ab:b5:73:2d:97:e8:ec: 2e:fe:cd:7c:e2:1b:9f:20:94:67:81:eb:9c:d8:9b:80:f6:da: ab:81:f3:b4:34:51:b0:9d:0a:eb:af:c2:e5:6a:b7:48:e3:b5: e5:ce:c3:ee:d7:41:22:1e:c2:77:48:a6:08:fc:62:f0:6b:59: 27:51:f7:fa:b1:33:a5:95:72:15:c4:8f:f9:a4:2f:7c:8b:f7: b3:80:51:ae:f1:2f:50:eb:63:bb:be:95:eb:9a:b4:dd:1c:8a: c1:92:3c:90:02:d4:21:51:39:26:06:32:4c:bf:b0:39:a5:11: 2f:58:13:e8:f5:62:c4:0f:ce:e4:fc:e7:02:4b:2f:af:f9:d9: 5f:c4:e4:5c:cf:86:ab:b0:2c:29:41:d7:dd:90:34:bb:e0:60: 92:32:1d:09:8f:d3:f7:db:99:cf:98:f1:29:09:7b:ee:44:a4: a7:30:f4:0e:92:d2:ab:68:71:55:fb:30:dd:7a:df:05:ab:f0: c0:04:63:9c:5c:5a:57:81:14:df:43:67:a8:20:76:dc:df:05: d2:ed:13:00 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBmgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MUM1M0QxMTAvBgNVBAUTKEE1Qzc2M0U4QTk1RjZCOUFCMjQxMTM2MDFEQTgxNTNB MTU5MTI2RUUwHhcNMjUwNTMwMjI0NzQ4WhcNMjUwNjA2MjI0NzQ4WjAYMRYwFAYD VQQDEw02ODNhMzU5NC1iMDQwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArb4OL0zMgv7DwpTd9EcKzytFK3rtQuRcUo3e+jR0Pe6R3e9e0pTQaWW/3UVf drH8HZp1wC1OxHna1fxFQqaRNSasqg2gJ0Le2FBc3GV8OBayeocRO+BYRWXr6a0m uy1q4udcq+nOsetJuvGmcq5lyPHWLloPvYalsdUDDb9xo1Bepa99LbI0rkgXTtSr Cvy0AQDFEGkMAXZhpJ3U6UHBK4lswjvjoEqbxRYwexDwGr3mvptvl/EJh0pu4vh1 /lqVYpnJpNtfzleg2V1HC4770kHJCx0VxW45uCg3KgoMdKLVkJk5GtAwXiHzQuuY TWGFjRcxX4zTlF//VuNWEvYYMQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFCnRRM8s O6wTjM0wvZ/qFJ+ZP+YBMB8GA1UdIwQYMBaAFKXHY+ipX2uaskETYB2oFToVkSbu MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExQzUzRC84NEI1OEY2NjhD RkIxMUVCOURDNjJDM0JDNEY5QUUwMi9wY2RqNktsZmE1cXlRUk5nSGFnVk9oV1JK dTQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3BjZGo2S2xmYTVxeVFSTmdIYWdWT2hXUkp1NC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx QzUzRC84NEI1OEY2NjhDRkIxMUVCOURDNjJDM0JDNEY5QUUwMi9wY2RqNktsZmE1 cXlRUk5nSGFnVk9oV1JKdTQubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBLaARm6bPwNIH4P+T5pI2CcXylAlSJbqliqOcwoP3Hg5k9d+dEmuRm +/nXBIWpHKu1cy2X6Owu/s184hufIJRngeuc2JuA9tqrgfO0NFGwnQrrr8LlardI 47XlzsPu10EiHsJ3SKYI/GLwa1knUff6sTOllXIVxI/5pC98i/ezgFGu8S9Q62O7 vpXrmrTdHIrBkjyQAtQhUTkmBjJMv7A5pREvWBPo9WLED87k/OcCSy+v+dlfxORc z4arsCwpQdfdkDS74GCSMh0Jj9P325nPmPEpCXvuRKSnMPQOktKraHFV+zDdet8F q/DABGOcXFpXgRTfQ2eoIHbc3wXS7RMA -----END CERTIFICATE-----Generated at Sat May 31 17:12:56 2025 by rpki-client