$ rpki-client -vvf rpki.apnic.net/member_repository/A9158620/0E919934884211EEA7D8C814C4F9AE02/pAislKDTNvRzJJBakYrySQLw3os.mft File: pAislKDTNvRzJJBakYrySQLw3os.mft (raw, json) Hash identifier: khuHDCuAMiMKicQPtZ7ZtGPxF/1dyjUCUmBoZwsC8sM= Subject key identifier: 90:6E:C6:2C:73:D4:CD:2E:DD:D9:AD:A6:A8:44:34:E0:BF:07:3F:EE Authority key identifier: A4:08:AC:94:A0:D3:36:F4:73:24:90:5A:91:8A:F2:49:02:F0:DE:8B Certificate issuer: /CN=A9158620/serialNumber=A408AC94A0D336F47324905A918AF24902F0DE8B Certificate serial: 0140 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pAislKDTNvRzJJBakYrySQLw3os.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9158620/0E919934884211EEA7D8C814C4F9AE02/pAislKDTNvRzJJBakYrySQLw3os.mft Manifest number: 0130 Signing time: Sat 31 May 2025 04:23:08 +0000 Manifest this update: Sat 31 May 2025 04:23:08 +0000 Manifest next update: Sat 07 Jun 2025 04:23:08 +0000 Files and hashes: 1: pAislKDTNvRzJJBakYrySQLw3os.crl (hash: wQUdCohKlb9rDj78i+SkWRFIr+L/8Wfy4+XmOpyljYs=) 2: 62258D42C93A11EEA1A4CA4FC4F9AE02.roa (hash: h5rk3Xz6VW0VeUtdbytEnw8Pa8H3Io324xwpZFHPhXc=) 3: 31A1996898F711EEB7B27877C4F9AE02.roa (hash: Vl/bZ/gdPwuufyZFmfVq5SymVLQXqPiJLzDWamKz3l4=) 4: 62C61398C93A11EEA1A4CA4FC4F9AE02.roa (hash: ROYJghlVOvaMnbHvL/73QuVNi54B62NVGwKlydNJjfk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9158620/0E919934884211EEA7D8C814C4F9AE02/pAislKDTNvRzJJBakYrySQLw3os.crl rsync://rpki.apnic.net/member_repository/A9158620/0E919934884211EEA7D8C814C4F9AE02/pAislKDTNvRzJJBakYrySQLw3os.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pAislKDTNvRzJJBakYrySQLw3os.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 07 Jun 2025 04:23:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 320 (0x140) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9158620, serialNumber=A408AC94A0D336F47324905A918AF24902F0DE8B Validity Not Before: May 31 04:23:08 2025 GMT Not After : Jun 7 04:23:08 2025 GMT Subject: CN=683a842c-066f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d1:bc:c4:84:2d:5f:b6:fe:67:76:b8:d8:83:d0: fb:25:b7:3b:a1:ef:62:a1:44:a4:f8:9e:68:d8:51: 8c:16:1b:eb:5e:e9:24:68:49:76:d7:2c:86:13:d0: ce:b2:ab:fa:77:59:8d:5a:bc:83:7d:9a:0f:0e:ef: 87:9d:9b:f1:5b:f2:ee:33:4a:21:dc:c6:3d:70:e3: 9c:34:e4:fa:ac:ed:a7:98:c1:48:bc:a4:20:0e:68: 8d:96:10:dc:64:e4:1c:55:fc:1b:f0:a0:65:1f:02: 1b:d1:38:54:bc:0f:67:79:05:66:af:d3:95:2d:24: 71:8d:6a:47:a8:1a:39:58:a2:6f:8d:23:4c:ae:cb: 6a:11:65:9e:c3:9d:53:d0:be:01:4b:1f:53:07:54: 56:bf:eb:21:07:35:14:42:46:cf:e1:b2:8c:05:8f: d8:a6:0d:fa:a7:03:06:94:d5:a6:e0:09:c2:43:5c: c6:90:d9:51:36:57:70:43:e6:db:d6:df:60:07:10: 78:4a:8d:b0:90:df:e4:90:8b:e3:5a:27:01:bf:cd: 50:02:f6:25:b0:e2:37:89:7b:9a:bd:29:83:9e:9f: 54:de:6b:8d:f9:64:2b:78:bf:79:2f:94:d8:f2:24: 4b:c2:b3:f4:bc:d3:c5:5b:37:62:c8:95:0a:eb:b4: 4b:6b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 90:6E:C6:2C:73:D4:CD:2E:DD:D9:AD:A6:A8:44:34:E0:BF:07:3F:EE X509v3 Authority Key Identifier: keyid:A4:08:AC:94:A0:D3:36:F4:73:24:90:5A:91:8A:F2:49:02:F0:DE:8B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9158620/0E919934884211EEA7D8C814C4F9AE02/pAislKDTNvRzJJBakYrySQLw3os.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pAislKDTNvRzJJBakYrySQLw3os.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9158620/0E919934884211EEA7D8C814C4F9AE02/pAislKDTNvRzJJBakYrySQLw3os.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 68:3b:65:75:59:c5:f9:fc:38:fb:f9:43:94:df:4b:9f:ef:cf: d9:ae:3b:75:9d:4a:aa:a3:ea:33:0b:d6:00:c5:2a:db:6f:6b: bf:0e:b1:a1:23:3b:01:03:36:b8:24:ae:8a:2a:d2:42:46:a0: c9:59:e8:21:b5:47:4b:f8:61:ef:5d:af:5f:4c:eb:26:6e:a7: f3:08:9a:98:d5:65:b2:de:e8:1f:98:1b:00:63:e4:96:c2:28: c3:db:74:80:cc:6a:1a:75:2a:ab:bc:9a:27:95:1b:f2:99:93: 66:1d:3f:ca:f9:79:2b:37:19:d9:91:a1:9f:6e:d3:be:b7:c3: d4:14:8f:1f:0d:56:15:00:9f:b1:4f:88:91:71:30:da:b2:47: 06:df:36:bd:8e:a3:d7:69:b7:b8:41:e8:74:39:0b:45:44:d0: 87:33:5b:8d:49:b9:4a:0f:50:3c:5d:78:03:68:53:10:14:c9: 46:cc:cc:03:b4:89:11:e3:3f:90:93:fa:e0:52:29:5a:82:a4: 8e:98:f9:d1:5b:3e:e0:cb:65:b3:6c:3c:7b:86:bf:12:67:43: 28:ae:29:f3:5e:bc:3b:86:30:be:73:d4:d6:eb:69:ec:ae:24: fd:2f:ef:e7:53:dd:7e:1b:18:e3:ca:6a:13:38:f6:04:cb:0b: 2e:3e:4b:3f -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAUAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTg2MjAxMTAvBgNVBAUTKEE0MDhBQzk0QTBEMzM2RjQ3MzI0OTA1QTkxOEFGMjQ5 MDJGMERFOEIwHhcNMjUwNTMxMDQyMzA4WhcNMjUwNjA3MDQyMzA4WjAYMRYwFAYD VQQDEw02ODNhODQyYy0wNjZmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0bzEhC1ftv5ndrjYg9D7Jbc7oe9ioUSk+J5o2FGMFhvrXukkaEl21yyGE9DO sqv6d1mNWryDfZoPDu+HnZvxW/LuM0oh3MY9cOOcNOT6rO2nmMFIvKQgDmiNlhDc ZOQcVfwb8KBlHwIb0ThUvA9neQVmr9OVLSRxjWpHqBo5WKJvjSNMrstqEWWew51T 0L4BSx9TB1RWv+shBzUUQkbP4bKMBY/Ypg36pwMGlNWm4AnCQ1zGkNlRNldwQ+bb 1t9gBxB4So2wkN/kkIvjWicBv81QAvYlsOI3iXuavSmDnp9U3muN+WQreL95L5TY 8iRLwrP0vNPFWzdiyJUK67RLawIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJBuxixz 1M0u3dmtpqhENOC/Bz/uMB8GA1UdIwQYMBaAFKQIrJSg0zb0cySQWpGK8kkC8N6L MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1ODYyMC8wRTkxOTkzNDg4 NDIxMUVFQTdEOEM4MTRDNEY5QUUwMi9wQWlzbEtEVE52UnpKSkJha1lyeVNRTHcz b3MuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3BBaXNsS0RUTnZSekpKQmFrWXJ5U1FMdzNvcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 ODYyMC8wRTkxOTkzNDg4NDIxMUVFQTdEOEM4MTRDNEY5QUUwMi9wQWlzbEtEVE52 UnpKSkJha1lyeVNRTHczb3MubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBoO2V1WcX5/Dj7+UOU30uf78/Zrjt1nUqqo+ozC9YAxSrbb2u/DrGh IzsBAza4JK6KKtJCRqDJWeghtUdL+GHvXa9fTOsmbqfzCJqY1WWy3ugfmBsAY+SW wijD23SAzGoadSqrvJonlRvymZNmHT/K+XkrNxnZkaGfbtO+t8PUFI8fDVYVAJ+x T4iRcTDaskcG3za9jqPXabe4Qeh0OQtFRNCHM1uNSblKD1A8XXgDaFMQFMlGzMwD tIkR4z+Qk/rgUilagqSOmPnRWz7gy2WzbDx7hr8SZ0MorinzXrw7hjC+c9TW62ns riT9L+/nU91+GxjjymoTOPYEywsuPks/ -----END CERTIFICATE-----Generated at Sat May 31 16:25:54 2025 by rpki-client