$ rpki-client -vvf rpki.apnic.net/member_repository/A911CA78/028F58FE16D911EE9F175315C4F9AE02/PnIyBI3L0sabqyJbikIhYEbBiyU.mft File: PnIyBI3L0sabqyJbikIhYEbBiyU.mft (raw, json) Hash identifier: c9Ejtw2jJG4kb8c4VJqtYlVtGChzrP05A6v9TSa01+U= Subject key identifier: C6:88:A5:B1:41:B4:EE:BA:0D:11:62:13:3C:3B:04:13:98:1F:AB:38 Authority key identifier: 3E:72:32:04:8D:CB:D2:C6:9B:AB:22:5B:8A:42:21:60:46:C1:8B:25 Certificate issuer: /CN=A911CA78/serialNumber=3E7232048DCBD2C69BAB225B8A42216046C18B25 Certificate serial: 017E Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/PnIyBI3L0sabqyJbikIhYEbBiyU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911CA78/028F58FE16D911EE9F175315C4F9AE02/PnIyBI3L0sabqyJbikIhYEbBiyU.mft Manifest number: 017A Signing time: Sat 31 May 2025 19:11:53 +0000 Manifest this update: Sat 31 May 2025 19:11:52 +0000 Manifest next update: Sat 07 Jun 2025 19:11:52 +0000 Files and hashes: 1: PnIyBI3L0sabqyJbikIhYEbBiyU.crl (hash: fgD6NSmwP9Z0P0mB/d77Km748WiwSxZT3203niDhl5U=) 2: 1ABB6C4E17DB11EE92B1C26FC4F9AE02.roa (hash: jx7hnJAbOWXi06R8EaUqGVH9j+g4HwGKu5sUmUZqpVQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911CA78/028F58FE16D911EE9F175315C4F9AE02/PnIyBI3L0sabqyJbikIhYEbBiyU.crl rsync://rpki.apnic.net/member_repository/A911CA78/028F58FE16D911EE9F175315C4F9AE02/PnIyBI3L0sabqyJbikIhYEbBiyU.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/PnIyBI3L0sabqyJbikIhYEbBiyU.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 07 Jun 2025 19:11:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 382 (0x17e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911CA78, serialNumber=3E7232048DCBD2C69BAB225B8A42216046C18B25 Validity Not Before: May 31 19:11:52 2025 GMT Not After : Jun 7 19:11:52 2025 GMT Subject: CN=683b5479-f375 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:af:38:91:eb:35:8a:1a:0f:a6:21:30:0d:d6:12: d3:1e:d6:b2:d7:52:32:b6:dc:6d:36:c4:81:3b:97: 74:e5:20:9d:08:ed:21:0b:85:1b:e0:e3:b0:ab:11: d2:5a:1a:f3:87:53:6d:f4:ef:f5:5b:54:6c:02:4b: 98:25:19:6d:7d:e4:ce:1c:e0:87:24:33:1f:6d:39: e6:4f:57:61:1d:c2:b2:b8:01:29:6b:c4:e8:c8:03: fb:6a:97:08:bc:97:8f:34:74:80:48:d7:fa:74:cf: 69:8e:ac:6d:2e:4e:1e:89:50:0e:38:3d:b8:56:c0: 32:e4:b5:b3:3b:3e:78:04:2b:fc:79:a0:ef:c6:20: ca:fb:54:72:2d:8c:61:a4:e4:0b:34:23:7a:b9:b2: ed:f1:f2:e2:26:a8:d1:83:06:76:4f:5f:87:55:59: 78:83:c6:b6:62:ae:6f:c6:61:e6:51:48:31:fb:16: b7:32:65:90:c0:80:29:06:de:0e:2e:45:6c:4c:35: 7a:63:01:0c:a2:ee:55:cf:3d:35:3a:ad:95:5b:c7: da:bd:82:a6:09:f2:fa:82:de:92:bc:ac:bc:c8:d4: 7b:0d:fb:4e:e9:75:45:ca:5a:c4:df:75:6d:ea:b2: 09:b2:ec:e9:39:ff:4a:fc:a4:0e:81:77:b5:f0:4f: 2d:15 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C6:88:A5:B1:41:B4:EE:BA:0D:11:62:13:3C:3B:04:13:98:1F:AB:38 X509v3 Authority Key Identifier: keyid:3E:72:32:04:8D:CB:D2:C6:9B:AB:22:5B:8A:42:21:60:46:C1:8B:25 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911CA78/028F58FE16D911EE9F175315C4F9AE02/PnIyBI3L0sabqyJbikIhYEbBiyU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/PnIyBI3L0sabqyJbikIhYEbBiyU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911CA78/028F58FE16D911EE9F175315C4F9AE02/PnIyBI3L0sabqyJbikIhYEbBiyU.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 23:b3:60:d6:5e:c6:81:78:9e:08:f1:c1:99:08:1d:0b:36:f0: a5:f6:0f:b0:00:06:0c:ee:0e:ba:2f:c8:11:c3:49:cc:7b:f0: 26:41:40:ba:75:18:b0:c6:18:2c:44:22:00:57:1e:27:4f:ae: e9:83:cc:cd:87:76:b6:87:72:f5:c5:44:9c:6d:b1:ee:cd:9e: 02:74:f6:48:59:50:21:16:7d:39:e1:8f:2d:31:51:f0:8e:08: d3:e2:39:8d:71:4a:51:81:d6:2a:99:85:11:27:6d:43:c9:e6: cc:00:52:d5:f4:07:56:9a:19:9d:3c:2d:a5:ba:9c:ea:00:0b: 45:09:7a:68:19:cb:5f:c6:c4:5e:3d:6f:74:d9:d0:02:f4:f6: 38:99:ad:2d:f3:5a:1c:dc:80:f3:e6:ed:6b:f6:61:d3:0e:16: 4e:6c:50:46:07:c2:a6:26:06:83:7f:d3:1b:42:f4:40:9e:34: 62:fd:7c:e4:49:bf:c1:11:f2:fe:bc:d2:dd:5e:0d:1c:64:91: e4:4e:0c:76:41:60:47:5e:03:dc:57:8a:ea:ec:53:43:3c:1f: af:7f:95:cc:56:75:53:2b:9e:23:9b:da:51:2e:17:d8:75:6d: 7e:86:08:b7:5d:33:10:cd:78:3a:85:95:26:ad:fb:1c:da:af: 12:53:b8:b2 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAX4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MUNBNzgxMTAvBgNVBAUTKDNFNzIzMjA0OERDQkQyQzY5QkFCMjI1QjhBNDIyMTYw NDZDMThCMjUwHhcNMjUwNTMxMTkxMTUyWhcNMjUwNjA3MTkxMTUyWjAYMRYwFAYD VQQDEw02ODNiNTQ3OS1mMzc1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArziR6zWKGg+mITAN1hLTHtay11IyttxtNsSBO5d05SCdCO0hC4Ub4OOwqxHS Whrzh1Nt9O/1W1RsAkuYJRltfeTOHOCHJDMfbTnmT1dhHcKyuAEpa8ToyAP7apcI vJePNHSASNf6dM9pjqxtLk4eiVAOOD24VsAy5LWzOz54BCv8eaDvxiDK+1RyLYxh pOQLNCN6ubLt8fLiJqjRgwZ2T1+HVVl4g8a2Yq5vxmHmUUgx+xa3MmWQwIApBt4O LkVsTDV6YwEMou5Vzz01Oq2VW8favYKmCfL6gt6SvKy8yNR7DftO6XVFylrE33Vt 6rIJsuzpOf9K/KQOgXe18E8tFQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFMaIpbFB tO66DRFiEzw7BBOYH6s4MB8GA1UdIwQYMBaAFD5yMgSNy9LGm6siW4pCIWBGwYsl MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExQ0E3OC8wMjhGNThGRTE2 RDkxMUVFOUYxNzUzMTVDNEY5QUUwMi9Qbkl5QkkzTDBzYWJxeUpiaWtJaFlFYkJp eVUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL1BuSXlCSTNMMHNhYnF5SmJpa0loWUViQml5VS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx Q0E3OC8wMjhGNThGRTE2RDkxMUVFOUYxNzUzMTVDNEY5QUUwMi9Qbkl5QkkzTDBz YWJxeUpiaWtJaFlFYkJpeVUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAjs2DWXsaBeJ4I8cGZCB0LNvCl9g+wAAYM7g66L8gRw0nMe/AmQUC6 dRiwxhgsRCIAVx4nT67pg8zNh3a2h3L1xUScbbHuzZ4CdPZIWVAhFn054Y8tMVHw jgjT4jmNcUpRgdYqmYURJ21DyebMAFLV9AdWmhmdPC2lupzqAAtFCXpoGctfxsRe PW902dAC9PY4ma0t81oc3IDz5u1r9mHTDhZObFBGB8KmJgaDf9MbQvRAnjRi/Xzk Sb/BEfL+vNLdXg0cZJHkTgx2QWBHXgPcV4rq7FNDPB+vf5XMVnVTK54jm9pRLhfY dW1+hgi3XTMQzXg6hZUmrfsc2q8SU7iy -----END CERTIFICATE-----Generated at Mon Jun 2 20:18:05 2025 by rpki-client