$ rpki-client -vvf rpki.apnic.net/member_repository/A911DCFB/AAEA0DC0F9BF11EB80245E6AC4F9AE02/pRdB3BnLk5BAJnagOh_a6-Dn8rw.mft File: pRdB3BnLk5BAJnagOh_a6-Dn8rw.mft (raw, json) Hash identifier: eE1SJmpXwtGgO3ZRXUiR3u6XyDyEAaVIHusIjr0qx0E= Subject key identifier: 36:06:32:7F:22:A8:05:2D:70:33:F0:67:44:AF:79:95:A7:0F:78:1B Authority key identifier: A5:17:41:DC:19:CB:93:90:40:26:76:A0:3A:1F:DA:EB:E0:E7:F2:BC Certificate issuer: /CN=A911DCFB/serialNumber=A51741DC19CB9390402676A03A1FDAEBE0E7F2BC Certificate serial: 053B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pRdB3BnLk5BAJnagOh_a6-Dn8rw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911DCFB/AAEA0DC0F9BF11EB80245E6AC4F9AE02/pRdB3BnLk5BAJnagOh_a6-Dn8rw.mft Manifest number: 0536 Signing time: Fri 06 Jun 2025 23:31:26 +0000 Manifest this update: Fri 06 Jun 2025 23:31:26 +0000 Manifest next update: Fri 13 Jun 2025 23:31:26 +0000 Files and hashes: 1: pRdB3BnLk5BAJnagOh_a6-Dn8rw.crl (hash: a1piTQfh5UHDyn/zpDAPWZVnaznWe4XrHnX0bAc6WaI=) 2: 4CBECA5CF9C311EBBA064C70C4F9AE02.roa (hash: Xe7orzQUYbTeZbeATWUGaYq/rRlqzWXLpAilQy3hdVI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911DCFB/AAEA0DC0F9BF11EB80245E6AC4F9AE02/pRdB3BnLk5BAJnagOh_a6-Dn8rw.crl rsync://rpki.apnic.net/member_repository/A911DCFB/AAEA0DC0F9BF11EB80245E6AC4F9AE02/pRdB3BnLk5BAJnagOh_a6-Dn8rw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pRdB3BnLk5BAJnagOh_a6-Dn8rw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 13 Jun 2025 23:31:25 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1339 (0x53b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911DCFB, serialNumber=A51741DC19CB9390402676A03A1FDAEBE0E7F2BC Validity Not Before: Jun 6 23:31:26 2025 GMT Not After : Jun 13 23:31:26 2025 GMT Subject: CN=68437a4e-dda0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:48:47:25:13:2a:b5:74:e5:6c:1f:54:34:3f: 5b:2a:1f:44:06:da:67:33:b9:e2:f5:e1:4a:68:70: 2f:52:6a:7e:eb:e1:be:1c:ad:ff:ca:90:10:66:55: 41:d7:ba:0c:c0:09:12:ca:99:c6:16:f6:cf:cf:4a: 77:ba:90:ce:28:93:1b:11:0e:66:76:86:03:ea:87: 11:ae:54:be:ac:63:b2:ca:dd:87:9a:40:29:f0:5f: 7e:19:d2:c3:1e:02:32:b8:52:7d:a3:5c:19:c3:f1: db:36:75:39:eb:99:46:c9:32:57:35:aa:f9:93:c0: 4d:07:35:d1:1e:8f:a3:4f:d8:91:40:1b:d6:b4:05: 7d:80:ca:db:23:c3:e4:9b:0d:6a:9a:dc:5f:1d:2a: e9:d7:54:62:c6:86:2e:1b:77:77:0e:2d:52:ae:eb: b6:4d:2c:75:98:60:d0:40:b5:de:03:c7:70:78:f4: fb:1a:2c:ce:2b:7b:46:61:22:ec:dc:2a:d3:57:1f: aa:d0:91:d8:5b:4b:d8:8f:6b:a9:bd:50:6f:52:94: b6:f9:1b:4e:1e:b5:81:63:20:eb:c1:dd:7b:e6:6a: f2:14:5e:59:fe:89:6f:bb:a2:29:b1:74:42:d3:d9: 22:c7:2a:f9:44:b4:5c:16:11:df:4a:67:1c:d1:b0: 52:3b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 36:06:32:7F:22:A8:05:2D:70:33:F0:67:44:AF:79:95:A7:0F:78:1B X509v3 Authority Key Identifier: keyid:A5:17:41:DC:19:CB:93:90:40:26:76:A0:3A:1F:DA:EB:E0:E7:F2:BC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911DCFB/AAEA0DC0F9BF11EB80245E6AC4F9AE02/pRdB3BnLk5BAJnagOh_a6-Dn8rw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pRdB3BnLk5BAJnagOh_a6-Dn8rw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911DCFB/AAEA0DC0F9BF11EB80245E6AC4F9AE02/pRdB3BnLk5BAJnagOh_a6-Dn8rw.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 47:cd:2b:03:5b:4e:91:b3:44:84:f0:c7:51:72:fb:a6:76:17: 16:90:e4:9e:87:e2:a2:9c:e6:89:2d:f0:4e:f0:d1:75:e6:ff: dd:06:02:8f:a9:b2:66:7e:b1:38:dd:32:74:d6:07:a9:00:08: 83:ed:66:24:75:29:6c:4a:86:11:1f:3c:84:48:36:5f:a7:21: e6:93:f0:64:43:78:05:20:b5:6d:74:00:45:fe:6e:33:b4:f9: e0:1a:6b:4c:d0:ab:55:45:0f:e4:5a:ad:41:57:42:57:79:d9: ed:9f:e0:83:ec:0f:28:ca:17:c0:f2:85:0a:73:4d:a3:6b:33: 0b:57:d4:25:2a:20:18:e8:94:b6:8d:1b:d6:a1:a6:6c:43:2c: a1:fc:7a:b2:4e:45:08:51:4d:9a:61:f9:e7:4f:ea:14:8c:f4: 94:bd:9a:36:a5:41:69:38:68:2f:1d:79:b6:c1:ff:e8:f0:64: 0c:4e:6e:26:24:f1:7f:c6:3b:ca:74:2f:a3:15:25:7f:19:c7: 01:72:ea:5c:53:bb:77:af:57:a1:33:5a:0a:ac:1b:51:88:f9: 61:2a:c4:b3:00:c6:76:ec:45:97:6e:81:89:fb:70:6d:61:25: 5e:bd:5c:08:36:a0:93:0f:09:b0:d7:f7:f6:08:a1:99:d5:45: 2a:02:b3:56 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBTswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MURDRkIxMTAvBgNVBAUTKEE1MTc0MURDMTlDQjkzOTA0MDI2NzZBMDNBMUZEQUVC RTBFN0YyQkMwHhcNMjUwNjA2MjMzMTI2WhcNMjUwNjEzMjMzMTI2WjAYMRYwFAYD VQQDEw02ODQzN2E0ZS1kZGEwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtEhHJRMqtXTlbB9UND9bKh9EBtpnM7ni9eFKaHAvUmp+6+G+HK3/ypAQZlVB 17oMwAkSypnGFvbPz0p3upDOKJMbEQ5mdoYD6ocRrlS+rGOyyt2HmkAp8F9+GdLD HgIyuFJ9o1wZw/HbNnU565lGyTJXNar5k8BNBzXRHo+jT9iRQBvWtAV9gMrbI8Pk mw1qmtxfHSrp11RixoYuG3d3Di1Sruu2TSx1mGDQQLXeA8dwePT7GizOK3tGYSLs 3CrTVx+q0JHYW0vYj2upvVBvUpS2+RtOHrWBYyDrwd175mryFF5Z/olvu6IpsXRC 09kixyr5RLRcFhHfSmcc0bBSOwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFDYGMn8i qAUtcDPwZ0SveZWnD3gbMB8GA1UdIwQYMBaAFKUXQdwZy5OQQCZ2oDof2uvg5/K8 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExRENGQi9BQUVBMERDMEY5 QkYxMUVCODAyNDVFNkFDNEY5QUUwMi9wUmRCM0JuTGs1QkFKbmFnT2hfYTYtRG44 cncuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3BSZEIzQm5MazVCQUpuYWdPaF9hNi1Ebjhydy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx RENGQi9BQUVBMERDMEY5QkYxMUVCODAyNDVFNkFDNEY5QUUwMi9wUmRCM0JuTGs1 QkFKbmFnT2hfYTYtRG44cncubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBHzSsDW06Rs0SE8MdRcvumdhcWkOSeh+KinOaJLfBO8NF15v/dBgKP qbJmfrE43TJ01gepAAiD7WYkdSlsSoYRHzyESDZfpyHmk/BkQ3gFILVtdABF/m4z tPngGmtM0KtVRQ/kWq1BV0JXedntn+CD7A8oyhfA8oUKc02jazMLV9QlKiAY6JS2 jRvWoaZsQyyh/HqyTkUIUU2aYfnnT+oUjPSUvZo2pUFpOGgvHXm2wf/o8GQMTm4m JPF/xjvKdC+jFSV/GccBcupcU7t3r1ehM1oKrBtRiPlhKsSzAMZ27EWXboGJ+3Bt YSVevVwINqCTDwmw1/f2CKGZ1UUqArNW -----END CERTIFICATE-----Generated at Sat Jun 7 17:58:48 2025 by rpki-client