$ rpki-client -vvf rpki.apnic.net/member_repository/A919D109/DAC666C05CE011EEB6C1B513C4F9AE02/Pq60tRb3A-pY8W4I2opmdwP7XK4.mft File: Pq60tRb3A-pY8W4I2opmdwP7XK4.mft (raw, json) Hash identifier: X3/SsqRpOCZtgqYkNIq5RutIV9JoZgBz5MbzZfarrYQ= Subject key identifier: D8:05:FA:C6:FA:E5:94:3C:D1:4E:69:55:E9:4C:16:97:9C:91:6C:D1 Authority key identifier: 3E:AE:B4:B5:16:F7:03:EA:58:F1:6E:08:DA:8A:66:77:03:FB:5C:AE Certificate issuer: /CN=A919D109/serialNumber=3EAEB4B516F703EA58F16E08DA8A667703FB5CAE Certificate serial: 014A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Pq60tRb3A-pY8W4I2opmdwP7XK4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A919D109/DAC666C05CE011EEB6C1B513C4F9AE02/Pq60tRb3A-pY8W4I2opmdwP7XK4.mft Manifest number: 0142 Signing time: Sat 31 May 2025 04:04:41 +0000 Manifest this update: Sat 31 May 2025 04:04:41 +0000 Manifest next update: Sat 07 Jun 2025 04:04:41 +0000 Files and hashes: 1: Pq60tRb3A-pY8W4I2opmdwP7XK4.crl (hash: n9JQ9snuiOcALTub4KXCt4WHNXaR0LnD+rUwmA3y3bE=) 2: B67DC27A60E311EEB04BEA49C4F9AE02.roa (hash: Uh7NExbaYKDBSUUKd+crKnXeWpl3+22sEhcewGQ9kp8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A919D109/DAC666C05CE011EEB6C1B513C4F9AE02/Pq60tRb3A-pY8W4I2opmdwP7XK4.crl rsync://rpki.apnic.net/member_repository/A919D109/DAC666C05CE011EEB6C1B513C4F9AE02/Pq60tRb3A-pY8W4I2opmdwP7XK4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Pq60tRb3A-pY8W4I2opmdwP7XK4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 07 Jun 2025 04:04:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 330 (0x14a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A919D109, serialNumber=3EAEB4B516F703EA58F16E08DA8A667703FB5CAE Validity Not Before: May 31 04:04:41 2025 GMT Not After : Jun 7 04:04:41 2025 GMT Subject: CN=683a7fd9-b98c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:8c:b3:b0:83:d8:18:90:0a:82:45:97:e4:b0: 87:dd:3d:93:1e:82:27:0a:58:da:9c:fe:5e:1c:f5: d2:57:13:23:0f:da:24:3b:a6:b5:28:26:31:0e:b8: ef:f4:86:b7:a6:11:64:c9:5c:e8:40:65:af:9c:a3: fb:36:13:1c:8e:44:46:dd:02:b4:74:62:10:a2:fa: fb:11:01:d7:1e:71:f4:c0:f3:1b:1f:15:a8:51:2b: b9:d0:5f:bc:02:75:ad:9f:3c:97:6c:e9:77:a5:b4: f9:b2:88:79:f7:cd:41:d3:f7:c1:9a:74:ed:66:14: fa:f2:d9:01:b0:d2:50:11:7f:4a:d0:a9:12:81:7e: af:0f:77:77:b3:bd:91:fc:59:f7:e9:94:bf:97:ad: 16:61:e8:5d:8d:21:af:a1:e1:09:dd:25:e1:e7:d6: 67:7f:a7:2b:73:92:34:f6:f1:aa:ac:fe:e0:57:17: 02:03:96:6e:5a:dc:73:85:ba:99:6e:7d:21:cd:c9: aa:42:05:98:28:30:25:d5:7d:74:00:20:34:be:db: 55:93:bc:29:02:48:f2:85:a3:9f:d2:ef:e3:1d:cf: 33:c4:be:e2:06:c7:a6:98:00:76:d3:d0:ac:6d:65: f6:d7:ae:f6:0e:55:80:c6:0f:de:ce:15:59:da:eb: ea:53 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D8:05:FA:C6:FA:E5:94:3C:D1:4E:69:55:E9:4C:16:97:9C:91:6C:D1 X509v3 Authority Key Identifier: keyid:3E:AE:B4:B5:16:F7:03:EA:58:F1:6E:08:DA:8A:66:77:03:FB:5C:AE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A919D109/DAC666C05CE011EEB6C1B513C4F9AE02/Pq60tRb3A-pY8W4I2opmdwP7XK4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Pq60tRb3A-pY8W4I2opmdwP7XK4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A919D109/DAC666C05CE011EEB6C1B513C4F9AE02/Pq60tRb3A-pY8W4I2opmdwP7XK4.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 80:46:3a:d2:d9:01:03:9a:30:49:1a:25:d4:05:86:d6:d1:2d: 7d:39:ec:6f:c9:42:eb:7e:35:24:22:ec:4a:9e:c5:d9:57:ad: d0:62:77:01:48:16:35:11:b2:1d:cd:89:66:b2:5e:c3:82:8d: d0:5e:d4:5c:65:c3:fa:5a:32:bb:db:e0:07:25:db:50:15:43: 6d:8b:5c:11:21:77:9e:94:ef:13:02:06:c5:63:a3:ff:ae:fe: 21:13:9c:a4:da:92:8d:7f:b8:70:4d:2c:2f:57:35:52:87:d4: 04:1e:88:e8:92:52:9c:1c:fa:07:c4:11:0a:be:df:7b:7a:d0: a1:48:f1:c9:8e:c1:65:d4:02:e4:29:6e:f8:be:e7:be:34:43: 5f:cc:2b:8a:e6:22:a7:67:96:63:5c:6c:ea:da:78:39:f4:a1: b3:07:e2:94:c8:e0:34:03:21:8d:fb:2d:46:dd:33:27:2a:6e: 7f:f5:7a:db:0e:4f:98:3f:e6:73:96:c0:d4:3f:f3:6b:a5:37: f7:13:82:1f:fd:37:b7:e6:b9:7d:5d:f5:1a:1e:bf:38:ef:8b: be:09:64:6f:81:cf:bc:cf:b3:e5:81:8b:17:8d:ba:d1:22:5f: c3:a9:68:00:ba:82:02:46:3e:14:c0:9e:d2:01:b6:21:6e:e4: 4c:c1:39:73 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAUowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OUQxMDkxMTAvBgNVBAUTKDNFQUVCNEI1MTZGNzAzRUE1OEYxNkUwOERBOEE2Njc3 MDNGQjVDQUUwHhcNMjUwNTMxMDQwNDQxWhcNMjUwNjA3MDQwNDQxWjAYMRYwFAYD VQQDEw02ODNhN2ZkOS1iOThjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvIyzsIPYGJAKgkWX5LCH3T2THoInCljanP5eHPXSVxMjD9okO6a1KCYxDrjv 9Ia3phFkyVzoQGWvnKP7NhMcjkRG3QK0dGIQovr7EQHXHnH0wPMbHxWoUSu50F+8 AnWtnzyXbOl3pbT5soh5981B0/fBmnTtZhT68tkBsNJQEX9K0KkSgX6vD3d3s72R /Fn36ZS/l60WYehdjSGvoeEJ3SXh59Znf6crc5I09vGqrP7gVxcCA5ZuWtxzhbqZ bn0hzcmqQgWYKDAl1X10ACA0vttVk7wpAkjyhaOf0u/jHc8zxL7iBsemmAB209Cs bWX21672DlWAxg/ezhVZ2uvqUwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFNgF+sb6 5ZQ80U5pVelMFpeckWzRMB8GA1UdIwQYMBaAFD6utLUW9wPqWPFuCNqKZncD+1yu MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5RDEwOS9EQUM2NjZDMDVD RTAxMUVFQjZDMUI1MTNDNEY5QUUwMi9QcTYwdFJiM0EtcFk4VzRJMm9wbWR3UDdY SzQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1BxNjB0UmIzQS1wWThXNEkyb3BtZHdQN1hLNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 RDEwOS9EQUM2NjZDMDVDRTAxMUVFQjZDMUI1MTNDNEY5QUUwMi9QcTYwdFJiM0Et cFk4VzRJMm9wbWR3UDdYSzQubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCARjrS2QEDmjBJGiXUBYbW0S19OexvyULrfjUkIuxKnsXZV63QYncB SBY1EbIdzYlmsl7Dgo3QXtRcZcP6WjK72+AHJdtQFUNti1wRIXeelO8TAgbFY6P/ rv4hE5yk2pKNf7hwTSwvVzVSh9QEHojoklKcHPoHxBEKvt97etChSPHJjsFl1ALk KW74vue+NENfzCuK5iKnZ5ZjXGzq2ng59KGzB+KUyOA0AyGN+y1G3TMnKm5/9Xrb Dk+YP+ZzlsDUP/NrpTf3E4If/Te35rl9XfUaHr8474u+CWRvgc+8z7PlgYsXjbrR Il/DqWgAuoICRj4UwJ7SAbYhbuRMwTlz -----END CERTIFICATE-----Generated at Sat May 31 17:00:27 2025 by rpki-client