$ rpki-client -vvf rpki.apnic.net/member_repository/A917C81C/D19AEE3EFF1011EB9BD13D6CC4F9AE02/PzsvWzuuUqa1aSyvkqJVSwbahj0.mft File: PzsvWzuuUqa1aSyvkqJVSwbahj0.mft (raw, json) Hash identifier: QBrpvMV3QDGlsrebahx6nG6TFD0yt4JunVoOE36zUYY= Subject key identifier: 05:B6:A6:D5:88:34:0E:51:D8:ED:B9:AB:AB:61:ED:5C:6C:E6:F5:29 Authority key identifier: 3F:3B:2F:5B:3B:AE:52:A6:B5:69:2C:AF:92:A2:55:4B:06:DA:86:3D Certificate issuer: /CN=A917C81C/serialNumber=3F3B2F5B3BAE52A6B5692CAF92A2554B06DA863D Certificate serial: 052C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PzsvWzuuUqa1aSyvkqJVSwbahj0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917C81C/D19AEE3EFF1011EB9BD13D6CC4F9AE02/PzsvWzuuUqa1aSyvkqJVSwbahj0.mft Manifest number: 0527 Signing time: Fri 06 Jun 2025 23:34:19 +0000 Manifest this update: Fri 06 Jun 2025 23:34:19 +0000 Manifest next update: Fri 13 Jun 2025 23:34:19 +0000 Files and hashes: 1: PzsvWzuuUqa1aSyvkqJVSwbahj0.crl (hash: NkSsUzfvnmzlRM9o4n9Lxn2DyMqszKGINcxSdx8CMXY=) 2: 1953EB90FF1B11EBA5CEF970C4F9AE02.roa (hash: GyNWMA5uS2CM++CZD9BiRxHkePo3mscOl1IpeulPgT0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917C81C/D19AEE3EFF1011EB9BD13D6CC4F9AE02/PzsvWzuuUqa1aSyvkqJVSwbahj0.crl rsync://rpki.apnic.net/member_repository/A917C81C/D19AEE3EFF1011EB9BD13D6CC4F9AE02/PzsvWzuuUqa1aSyvkqJVSwbahj0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PzsvWzuuUqa1aSyvkqJVSwbahj0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 13 Jun 2025 23:34:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1324 (0x52c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917C81C, serialNumber=3F3B2F5B3BAE52A6B5692CAF92A2554B06DA863D Validity Not Before: Jun 6 23:34:19 2025 GMT Not After : Jun 13 23:34:19 2025 GMT Subject: CN=68437afb-1d9b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f0:16:8b:89:29:46:5a:37:2b:21:92:7d:fc:e4: d8:a2:4c:28:78:b7:ba:e2:79:af:3a:78:18:27:73: d0:0e:57:7d:e4:2f:50:d0:09:77:0c:fd:e7:52:fa: b5:4a:52:74:2e:53:70:ed:31:72:1f:02:c2:81:ac: b5:00:ce:e5:86:e8:36:df:f7:04:1f:80:91:fc:44: 63:c7:a8:be:61:8e:96:06:ef:38:46:68:2b:89:e6: 0c:76:41:b7:3e:0f:60:2c:e6:38:06:2e:71:5b:b0: 92:78:6c:f0:a2:b3:45:82:e8:64:58:d3:66:f7:02: 01:7c:98:4b:5a:fa:7e:2d:69:51:e7:2c:11:c1:57: 8b:97:1b:84:93:de:4a:cb:be:df:59:db:c4:8e:2d: 46:2a:72:1e:b7:f4:b0:ff:0c:8b:d5:b4:c6:11:57: 71:ab:2c:25:fe:f4:e9:61:ec:8c:64:6f:1e:ca:32: 99:97:63:e4:01:ac:e1:66:d7:b3:dd:14:74:98:87: e8:4c:81:e8:06:66:e3:7b:de:17:ee:98:e8:8c:07: 8d:44:1f:ab:71:7e:12:89:52:cb:a0:b0:31:de:dc: 9d:29:8f:b7:cd:f3:8c:af:a3:91:88:ce:b4:f8:4e: 01:d0:88:27:15:1a:74:03:ce:88:94:fa:c2:da:05: d8:11 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 05:B6:A6:D5:88:34:0E:51:D8:ED:B9:AB:AB:61:ED:5C:6C:E6:F5:29 X509v3 Authority Key Identifier: keyid:3F:3B:2F:5B:3B:AE:52:A6:B5:69:2C:AF:92:A2:55:4B:06:DA:86:3D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917C81C/D19AEE3EFF1011EB9BD13D6CC4F9AE02/PzsvWzuuUqa1aSyvkqJVSwbahj0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PzsvWzuuUqa1aSyvkqJVSwbahj0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917C81C/D19AEE3EFF1011EB9BD13D6CC4F9AE02/PzsvWzuuUqa1aSyvkqJVSwbahj0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 25:da:43:3b:b1:d3:2c:41:27:cb:83:ef:da:bc:94:6b:e0:21: e3:18:e8:17:30:7e:45:72:e6:44:5a:87:30:13:28:c3:76:13: b2:af:3e:93:ec:80:1f:79:fe:9a:9d:d7:52:0c:7f:c0:dd:56: 9b:75:0e:0b:29:8e:66:5a:46:e9:00:8f:a6:a1:56:3d:a6:48: 92:0d:6f:1c:05:de:e0:fb:17:d0:7f:a3:c5:60:5c:4e:98:e4: 04:1c:a1:f8:8b:de:e7:8f:57:08:68:69:14:b3:f1:d5:44:7d: 73:71:39:69:07:25:c5:86:31:d0:3d:76:c6:90:01:29:ee:5c: ef:ac:f3:0a:3d:0b:50:06:c8:ae:7a:59:de:ff:dd:c6:a7:fc: 37:c3:ee:32:fd:da:53:72:51:fd:14:13:46:8c:87:67:79:47: 24:99:24:f8:0c:f6:67:ca:b2:a1:7d:b3:4b:2d:b3:33:4b:80: f7:56:1b:f7:19:b3:be:5f:3e:a7:59:ca:19:ef:86:5b:c2:a0: f3:05:d7:b4:d2:d8:39:44:72:eb:a2:3f:cc:a9:6f:77:7c:93: 8f:1f:28:3d:1a:57:76:66:78:da:92:1f:ba:4f:7d:49:31:1a: de:5f:e7:81:26:65:15:a6:fb:0a:e4:3f:30:75:a8:30:ac:58: cb:f9:c8:7a -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBSwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0M4MUMxMTAvBgNVBAUTKDNGM0IyRjVCM0JBRTUyQTZCNTY5MkNBRjkyQTI1NTRC MDZEQTg2M0QwHhcNMjUwNjA2MjMzNDE5WhcNMjUwNjEzMjMzNDE5WjAYMRYwFAYD VQQDEw02ODQzN2FmYi0xZDliMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA8BaLiSlGWjcrIZJ9/OTYokwoeLe64nmvOngYJ3PQDld95C9Q0Al3DP3nUvq1 SlJ0LlNw7TFyHwLCgay1AM7lhug23/cEH4CR/ERjx6i+YY6WBu84RmgrieYMdkG3 Pg9gLOY4Bi5xW7CSeGzworNFguhkWNNm9wIBfJhLWvp+LWlR5ywRwVeLlxuEk95K y77fWdvEji1GKnIet/Sw/wyL1bTGEVdxqywl/vTpYeyMZG8eyjKZl2PkAazhZtez 3RR0mIfoTIHoBmbje94X7pjojAeNRB+rcX4SiVLLoLAx3tydKY+3zfOMr6ORiM60 +E4B0IgnFRp0A86IlPrC2gXYEQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFAW2ptWI NA5R2O25q6th7Vxs5vUpMB8GA1UdIwQYMBaAFD87L1s7rlKmtWksr5KiVUsG2oY9 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3QzgxQy9EMTlBRUUzRUZG MTAxMUVCOUJEMTNENkNDNEY5QUUwMi9QenN2V3p1dVVxYTFhU3l2a3FKVlN3YmFo ajAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1B6c3ZXenV1VXFhMWFTeXZrcUpWU3diYWhqMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 QzgxQy9EMTlBRUUzRUZGMTAxMUVCOUJEMTNENkNDNEY5QUUwMi9QenN2V3p1dVVx YTFhU3l2a3FKVlN3YmFoajAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAl2kM7sdMsQSfLg+/avJRr4CHjGOgXMH5FcuZEWocwEyjDdhOyrz6T 7IAfef6anddSDH/A3VabdQ4LKY5mWkbpAI+moVY9pkiSDW8cBd7g+xfQf6PFYFxO mOQEHKH4i97nj1cIaGkUs/HVRH1zcTlpByXFhjHQPXbGkAEp7lzvrPMKPQtQBsiu elne/93Gp/w3w+4y/dpTclH9FBNGjIdneUckmST4DPZnyrKhfbNLLbMzS4D3Vhv3 GbO+Xz6nWcoZ74ZbwqDzBde00tg5RHLroj/MqW93fJOPHyg9Gld2Znjakh+6T31J MRreX+eBJmUVpvsK5D8wdagwrFjL+ch6 -----END CERTIFICATE-----Generated at Sat Jun 7 12:38:38 2025 by rpki-client