$ rpki-client -vvf rpki.apnic.net/member_repository/A91288D9/F83E3FCEADBC11EFB302983EC4F9AE02/pkvkSssA5L2uRJGw-gzXCZ0scnw.mft File: pkvkSssA5L2uRJGw-gzXCZ0scnw.mft (raw, json) Hash identifier: jsYGMoAhhwoHWf2bNGTVT4JJfJMO826LRyFZdtUCNEs= Subject key identifier: E9:88:BD:8E:76:CA:82:A9:1F:F3:E9:C7:83:DC:5C:8B:47:36:17:D1 Authority key identifier: A6:4B:E4:4A:CB:00:E4:BD:AE:44:91:B0:FA:0C:D7:09:9D:2C:72:7C Certificate issuer: /CN=A91288D9/serialNumber=A64BE44ACB00E4BDAE4491B0FA0CD7099D2C727C Certificate serial: 61 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/pkvkSssA5L2uRJGw-gzXCZ0scnw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91288D9/F83E3FCEADBC11EFB302983EC4F9AE02/pkvkSssA5L2uRJGw-gzXCZ0scnw.mft Manifest number: 60 Signing time: Mon 02 Jun 2025 19:28:07 +0000 Manifest this update: Mon 02 Jun 2025 19:28:06 +0000 Manifest next update: Mon 09 Jun 2025 19:28:06 +0000 Files and hashes: 1: pkvkSssA5L2uRJGw-gzXCZ0scnw.crl (hash: +PSUbgEqSnHGtlm3M6FRoRAzxR+dZDO5H4g2sNgcoSU=) 2: 8D431594FFDF11EF8DF72930C4F9AE02.roa (hash: m/ts4+3+KZRfhNwqXbAAZsLEK7jXSiR3RbLIiPT9ph8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91288D9/F83E3FCEADBC11EFB302983EC4F9AE02/pkvkSssA5L2uRJGw-gzXCZ0scnw.crl rsync://rpki.apnic.net/member_repository/A91288D9/F83E3FCEADBC11EFB302983EC4F9AE02/pkvkSssA5L2uRJGw-gzXCZ0scnw.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/pkvkSssA5L2uRJGw-gzXCZ0scnw.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Jun 2025 19:28:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 97 (0x61) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91288D9, serialNumber=A64BE44ACB00E4BDAE4491B0FA0CD7099D2C727C Validity Not Before: Jun 2 19:28:06 2025 GMT Not After : Jun 9 19:28:06 2025 GMT Subject: CN=683dfb46-53b2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f0:f5:f8:c1:d5:cb:7e:7c:19:cd:a2:86:e7:87: c9:6c:ff:ab:58:28:2a:f9:f2:e3:e9:96:13:b2:e0: fb:88:04:9a:9a:7a:c4:51:a9:34:76:0b:33:5f:ea: 42:80:5c:e9:e6:d3:49:93:0c:53:4f:70:62:50:5e: 75:83:a1:bd:2b:c6:a2:fa:51:7f:3a:70:4b:eb:53: ba:da:9d:d5:6e:74:d0:5e:27:5b:6f:9c:11:9b:aa: 09:6b:a6:a6:30:b4:eb:42:49:89:22:da:61:4f:4f: 2f:f3:e8:db:2d:5b:b8:8b:ed:2d:fc:62:82:50:72: 0c:3a:9e:13:9b:9a:ce:98:51:be:60:e4:fa:8e:e2: 52:97:51:81:ef:97:ef:ca:a4:2a:01:45:b7:8e:2f: 80:5d:b5:9d:d4:6a:73:91:12:07:0e:b9:54:09:4d: fc:77:ba:a6:6f:01:87:3e:20:3f:1b:5e:07:eb:db: 07:e9:d0:c0:62:1e:1a:f8:61:ef:07:bd:85:b5:3d: b4:bd:06:f0:bf:60:ec:55:c7:ad:54:82:af:80:cb: 76:2e:13:70:85:17:0f:4f:b8:38:f8:9b:6f:f2:70: 65:88:93:83:d3:c4:12:a8:e5:a0:52:cd:a9:87:b1: a8:50:1d:f1:28:f8:54:e2:41:78:f7:0d:22:57:f8: 43:1f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E9:88:BD:8E:76:CA:82:A9:1F:F3:E9:C7:83:DC:5C:8B:47:36:17:D1 X509v3 Authority Key Identifier: keyid:A6:4B:E4:4A:CB:00:E4:BD:AE:44:91:B0:FA:0C:D7:09:9D:2C:72:7C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91288D9/F83E3FCEADBC11EFB302983EC4F9AE02/pkvkSssA5L2uRJGw-gzXCZ0scnw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/pkvkSssA5L2uRJGw-gzXCZ0scnw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91288D9/F83E3FCEADBC11EFB302983EC4F9AE02/pkvkSssA5L2uRJGw-gzXCZ0scnw.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 36:27:21:41:8a:a0:c5:e5:ea:34:95:26:8c:94:7e:15:64:30: e3:15:de:6b:03:ae:cb:4d:45:7c:c8:7d:d3:c3:2c:88:27:38: 7c:96:14:13:62:75:e2:c6:5c:21:70:48:17:de:13:e4:0f:c3: 59:1f:0a:71:37:6c:8d:2b:b9:3f:ed:0f:22:00:9b:a9:da:34: 4b:ac:54:b6:33:17:10:0f:66:b7:e0:f9:15:c2:c7:70:c1:1d: 70:79:db:a8:ea:47:e9:26:92:0c:b4:e1:68:fc:5e:18:15:47: 95:0f:f3:5e:07:eb:f7:1c:bb:0a:cf:3f:43:40:ee:50:eb:28: da:24:9f:dc:b2:a5:6a:2c:3d:02:15:45:8c:7f:93:6f:ee:82: 69:2a:4a:1e:00:8a:90:12:32:94:aa:d3:ba:26:4c:be:c0:94: 30:17:48:ca:69:e8:2a:39:30:57:a3:0a:c8:c6:a8:a8:cc:28: 70:d2:9a:e5:24:2d:47:0d:84:83:de:60:6c:0c:ac:c3:45:e4: 92:51:d4:9a:c9:fc:a6:6f:f8:c2:7a:fb:87:89:06:9e:f7:a3: c3:41:3d:83:3e:3b:d6:3d:06:47:fe:30:cb:2f:e9:9d:ec:bb: 95:82:26:5a:5b:23:e2:11:ad:68:a5:45:8f:62:ed:c7:c4:89: 80:1b:da:7a -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBYTANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTEy ODhEOTExMC8GA1UEBRMoQTY0QkU0NEFDQjAwRTRCREFFNDQ5MUIwRkEwQ0Q3MDk5 RDJDNzI3QzAeFw0yNTA2MDIxOTI4MDZaFw0yNTA2MDkxOTI4MDZaMBgxFjAUBgNV BAMTDTY4M2RmYjQ2LTUzYjIwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDw9fjB1ct+fBnNoobnh8ls/6tYKCr58uPplhOy4PuIBJqaesRRqTR2CzNf6kKA XOnm00mTDFNPcGJQXnWDob0rxqL6UX86cEvrU7randVudNBeJ1tvnBGbqglrpqYw tOtCSYki2mFPTy/z6NstW7iL7S38YoJQcgw6nhObms6YUb5g5PqO4lKXUYHvl+/K pCoBRbeOL4BdtZ3UanOREgcOuVQJTfx3uqZvAYc+ID8bXgfr2wfp0MBiHhr4Ye8H vYW1PbS9BvC/YOxVx61Ugq+Ay3YuE3CFFw9PuDj4m2/ycGWIk4PTxBKo5aBSzamH sahQHfEo+FTiQXj3DSJX+EMfAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQU6Yi9jnbK gqkf8+nHg9xci0c2F9EwHwYDVR0jBBgwFoAUpkvkSssA5L2uRJGw+gzXCZ0scnww DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTI4OEQ5L0Y4M0UzRkNFQURC QzExRUZCMzAyOTgzRUM0RjlBRTAyL3BrdmtTc3NBNUwydVJKR3ctZ3pYQ1owc2Nu dy5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvcGt2a1Nzc0E1TDJ1UkpHdy1nelhDWjBzY253LmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTI4 OEQ5L0Y4M0UzRkNFQURCQzExRUZCMzAyOTgzRUM0RjlBRTAyL3BrdmtTc3NBNUwy dVJKR3ctZ3pYQ1owc2Nudy5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBADYnIUGKoMXl6jSVJoyUfhVkMOMV3msDrstNRXzIfdPDLIgnOHyWFBNi deLGXCFwSBfeE+QPw1kfCnE3bI0ruT/tDyIAm6naNEusVLYzFxAPZrfg+RXCx3DB HXB526jqR+kmkgy04Wj8XhgVR5UP814H6/ccuwrPP0NA7lDrKNokn9yypWosPQIV RYx/k2/ugmkqSh4AipASMpSq07omTL7AlDAXSMpp6Co5MFejCsjGqKjMKHDSmuUk LUcNhIPeYGwMrMNF5JJR1JrJ/KZv+MJ6+4eJBp73o8NBPYM+O9Y9Bkf+MMsv6Z3s u5WCJlpbI+IRrWilRY9i7cfEiYAb2no= -----END CERTIFICATE-----Generated at Tue Jun 3 23:58:32 2025 by rpki-client