$ rpki-client -vvf rpki.apnic.net/member_repository/A916AF8E/D94A75941C1411EBB036DC63C4F9AE02/PcXSlD7UrPqSa3dnapi-yLPJea4.mft File: PcXSlD7UrPqSa3dnapi-yLPJea4.mft (raw, json) Hash identifier: 9/4JukbTSwcyZyiDZx4QP7VZptj1Av4D1HK1H7oBCn8= Subject key identifier: 18:1A:4D:19:CA:75:D8:04:27:B5:90:21:9E:32:15:2D:8D:E0:F2:A5 Authority key identifier: 3D:C5:D2:94:3E:D4:AC:FA:92:6B:77:67:6A:98:BE:C8:B3:C9:79:AE Certificate issuer: /CN=A916AF8E/serialNumber=3DC5D2943ED4ACFA926B77676A98BEC8B3C979AE Certificate serial: 0770 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PcXSlD7UrPqSa3dnapi-yLPJea4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A916AF8E/D94A75941C1411EBB036DC63C4F9AE02/PcXSlD7UrPqSa3dnapi-yLPJea4.mft Manifest number: 0768 Signing time: Fri 30 May 2025 21:47:15 +0000 Manifest this update: Fri 30 May 2025 21:47:15 +0000 Manifest next update: Fri 06 Jun 2025 21:47:15 +0000 Files and hashes: 1: PcXSlD7UrPqSa3dnapi-yLPJea4.crl (hash: 5+GuTV/rVywKpV/+zbMUhn6ElanukGPsUNc+9zUWCWE=) 2: 499DE3FC1C1611EB8BD35065C4F9AE02.roa (hash: QnFh/0YdNLZr/ZfMn+21+lOUTuFHow1/2U5v+xOLivo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A916AF8E/D94A75941C1411EBB036DC63C4F9AE02/PcXSlD7UrPqSa3dnapi-yLPJea4.crl rsync://rpki.apnic.net/member_repository/A916AF8E/D94A75941C1411EBB036DC63C4F9AE02/PcXSlD7UrPqSa3dnapi-yLPJea4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PcXSlD7UrPqSa3dnapi-yLPJea4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 06 Jun 2025 21:47:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1904 (0x770) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A916AF8E, serialNumber=3DC5D2943ED4ACFA926B77676A98BEC8B3C979AE Validity Not Before: May 30 21:47:15 2025 GMT Not After : Jun 6 21:47:15 2025 GMT Subject: CN=683a2763-7f87 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d5:eb:1f:47:67:32:e4:21:51:9f:14:11:03:96: 72:d4:95:00:5d:f6:4a:48:db:b3:bd:a9:e1:a0:22: ce:88:d9:e2:60:24:15:32:be:fe:f8:e7:59:6e:af: 0e:0b:da:62:53:0c:fa:48:60:e4:10:4b:29:cb:f7: 7c:7f:e5:67:1c:12:96:2f:1c:7b:79:56:4f:cf:72: be:70:b4:95:f7:9e:51:22:13:db:fe:94:b5:5a:22: 41:03:c0:7d:3c:e0:ae:e4:40:06:c8:5d:d3:6a:e5: d8:a5:72:75:e8:91:fc:b0:e2:86:66:29:3b:24:11: de:5c:c5:d1:32:f8:d6:1e:98:94:82:87:34:95:b0: fa:25:36:e8:c5:92:4d:6b:26:0a:3f:c7:ca:66:c6: e4:c3:89:c0:58:42:36:c0:a0:fc:f8:84:49:f2:95: b7:97:41:9b:31:89:8d:ae:1a:5a:45:3e:31:35:d5: 0c:fe:9d:82:d7:45:75:cc:bf:57:28:c6:ff:0f:c5: d9:70:af:c2:d7:75:9b:10:ae:44:2e:88:eb:3e:a7: 60:21:a3:47:49:65:1c:42:dc:21:6d:05:ae:4a:bd: e6:f6:99:e0:f3:a2:ea:b8:ff:78:08:b4:02:fb:a2: 7f:a2:a1:62:9f:e8:35:f1:1e:ef:4b:f6:f3:bd:c4: 94:e3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 18:1A:4D:19:CA:75:D8:04:27:B5:90:21:9E:32:15:2D:8D:E0:F2:A5 X509v3 Authority Key Identifier: keyid:3D:C5:D2:94:3E:D4:AC:FA:92:6B:77:67:6A:98:BE:C8:B3:C9:79:AE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A916AF8E/D94A75941C1411EBB036DC63C4F9AE02/PcXSlD7UrPqSa3dnapi-yLPJea4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PcXSlD7UrPqSa3dnapi-yLPJea4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A916AF8E/D94A75941C1411EBB036DC63C4F9AE02/PcXSlD7UrPqSa3dnapi-yLPJea4.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 12:2a:33:7e:71:01:38:12:75:1d:20:14:44:16:6b:ad:07:11: d0:1b:6e:6c:04:bf:4d:8e:48:b9:c2:a5:07:20:89:14:5d:6d: 96:31:6e:30:b6:2e:b7:16:33:f9:a3:43:ce:f2:ec:c1:4a:c9: 6e:b0:6f:3b:96:d9:2c:93:5d:af:4d:c8:e2:ca:bb:2a:ea:6d: e4:c4:3f:0f:19:d3:77:91:04:e6:81:5c:ee:70:a7:57:ea:46: 82:68:02:02:2e:00:26:e1:91:15:e4:ba:fc:22:f0:dd:a9:4f: 28:98:ba:9e:c8:08:2b:e0:0c:51:d2:d4:fc:98:79:ad:6a:3b: ff:03:d3:e2:93:20:a6:c1:7c:db:63:e9:50:e1:24:60:16:38: 23:71:e4:e2:4c:ec:eb:03:6b:5b:14:c4:9f:24:88:00:09:fa: ec:28:87:01:d1:d2:9e:90:5a:06:5d:04:3d:d1:73:01:d5:fb: 06:ca:e2:c8:e9:2e:e9:6e:7e:ec:17:64:62:6f:4f:c3:09:38: a7:7c:d9:9b:48:b6:bc:52:7c:f8:51:e5:7e:2a:c1:2c:01:c0: ea:3a:59:67:86:06:de:f9:53:ba:24:4d:23:3f:9f:ef:6b:c8: 6f:42:57:5c:a8:50:f6:f5:a9:e8:f2:26:08:6f:f6:7e:c6:44: ce:0d:39:4a -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICB3AwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NkFGOEUxMTAvBgNVBAUTKDNEQzVEMjk0M0VENEFDRkE5MjZCNzc2NzZBOThCRUM4 QjNDOTc5QUUwHhcNMjUwNTMwMjE0NzE1WhcNMjUwNjA2MjE0NzE1WjAYMRYwFAYD VQQDEw02ODNhMjc2My03Zjg3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1esfR2cy5CFRnxQRA5Zy1JUAXfZKSNuzvanhoCLOiNniYCQVMr7++OdZbq8O C9piUwz6SGDkEEspy/d8f+VnHBKWLxx7eVZPz3K+cLSV955RIhPb/pS1WiJBA8B9 POCu5EAGyF3TauXYpXJ16JH8sOKGZik7JBHeXMXRMvjWHpiUgoc0lbD6JTboxZJN ayYKP8fKZsbkw4nAWEI2wKD8+IRJ8pW3l0GbMYmNrhpaRT4xNdUM/p2C10V1zL9X KMb/D8XZcK/C13WbEK5ELojrPqdgIaNHSWUcQtwhbQWuSr3m9png86LquP94CLQC +6J/oqFin+g18R7vS/bzvcSU4wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFBgaTRnK ddgEJ7WQIZ4yFS2N4PKlMB8GA1UdIwQYMBaAFD3F0pQ+1Kz6kmt3Z2qYvsizyXmu MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2QUY4RS9EOTRBNzU5NDFD MTQxMUVCQjAzNkRDNjNDNEY5QUUwMi9QY1hTbEQ3VXJQcVNhM2RuYXBpLXlMUEpl YTQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1BjWFNsRDdVclBxU2EzZG5hcGkteUxQSmVhNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 QUY4RS9EOTRBNzU5NDFDMTQxMUVCQjAzNkRDNjNDNEY5QUUwMi9QY1hTbEQ3VXJQ cVNhM2RuYXBpLXlMUEplYTQubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQASKjN+cQE4EnUdIBREFmutBxHQG25sBL9Njki5wqUHIIkUXW2WMW4w ti63FjP5o0PO8uzBSslusG87ltksk12vTcjiyrsq6m3kxD8PGdN3kQTmgVzucKdX 6kaCaAICLgAm4ZEV5Lr8IvDdqU8omLqeyAgr4AxR0tT8mHmtajv/A9PikyCmwXzb Y+lQ4SRgFjgjceTiTOzrA2tbFMSfJIgACfrsKIcB0dKekFoGXQQ90XMB1fsGyuLI 6S7pbn7sF2Rib0/DCTinfNmbSLa8Unz4UeV+KsEsAcDqOllnhgbe+VO6JE0jP5/v a8hvQldcqFD29ano8iYIb/Z+xkTODTlK -----END CERTIFICATE-----Generated at Sat May 31 16:40:46 2025 by rpki-client