$ rpki-client -vvf rpki.apnic.net/member_repository/A91A08FD/9F42EAD8C8AB11E9829D282FC4F9AE02/PB_di6MB3OPbPwvMJchpTOG83H0.mft File: PB_di6MB3OPbPwvMJchpTOG83H0.mft (raw, json) Hash identifier: U95kPBQNWFAFZWGFnlfFTyVV7RMzRogU/ZVl2Tx1R5g= Subject key identifier: AF:E6:EA:47:18:B8:FF:6F:7D:14:A2:FB:F5:25:6C:15:A6:EB:B4:8B Authority key identifier: 3C:1F:DD:8B:A3:01:DC:E3:DB:3F:0B:CC:25:C8:69:4C:E1:BC:DC:7D Certificate issuer: /CN=A91A08FD/serialNumber=3C1FDD8BA301DCE3DB3F0BCC25C8694CE1BCDC7D Certificate serial: 0D7F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PB_di6MB3OPbPwvMJchpTOG83H0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A08FD/9F42EAD8C8AB11E9829D282FC4F9AE02/PB_di6MB3OPbPwvMJchpTOG83H0.mft Manifest number: 0D76 Signing time: Fri 30 May 2025 18:07:38 +0000 Manifest this update: Fri 30 May 2025 18:07:38 +0000 Manifest next update: Fri 06 Jun 2025 18:07:38 +0000 Files and hashes: 1: PB_di6MB3OPbPwvMJchpTOG83H0.crl (hash: Y7JiJJuBrSs9+AgytvkHqLeLyU6LXRsindsIrphWbsE=) 2: 3802A98EC8AC11E9877DCE2FC4F9AE02.roa (hash: pTMoVBZCsEARFbs1aGExyarMu+r7tLUk6ACYjZUvCyg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A08FD/9F42EAD8C8AB11E9829D282FC4F9AE02/PB_di6MB3OPbPwvMJchpTOG83H0.crl rsync://rpki.apnic.net/member_repository/A91A08FD/9F42EAD8C8AB11E9829D282FC4F9AE02/PB_di6MB3OPbPwvMJchpTOG83H0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PB_di6MB3OPbPwvMJchpTOG83H0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 06 Jun 2025 18:07:37 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3455 (0xd7f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A08FD, serialNumber=3C1FDD8BA301DCE3DB3F0BCC25C8694CE1BCDC7D Validity Not Before: May 30 18:07:38 2025 GMT Not After : Jun 6 18:07:38 2025 GMT Subject: CN=6839f3ea-693d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:0d:4a:cd:7d:74:f4:41:e0:32:a9:8e:ed:12: f2:36:a7:7d:0f:e8:28:70:02:9a:df:68:aa:da:e1: 0a:60:99:21:e9:8b:48:00:90:c8:36:0a:1d:11:44: 23:ae:b5:8a:e9:b2:0d:34:73:66:b3:23:2e:57:55: b1:f3:38:43:20:6b:c5:63:4a:89:fe:53:7e:a3:40: c6:c0:b2:e0:f5:f3:4b:75:cc:b2:71:d1:de:21:a3: d8:ab:d6:2a:3f:a4:67:04:94:32:3d:bb:a3:81:84: 5f:2f:1d:9e:d1:09:0a:81:11:a7:e7:eb:89:02:a4: ee:41:7d:25:5d:01:a0:83:79:01:a3:b9:ce:9b:91: 94:5f:b4:01:40:78:16:aa:65:01:cc:ce:1f:c5:fe: e4:db:e7:7d:de:5b:9f:e3:07:4c:c4:6a:0f:07:17: 32:8c:60:32:e1:91:6e:41:00:5d:7c:f6:3f:2d:f6: fd:22:b7:91:75:5f:39:0d:79:e1:93:de:14:a2:db: 25:71:fe:25:be:a1:e8:af:ff:12:22:24:29:8d:a4: 78:68:6a:55:d3:a5:9b:72:dc:32:cf:ac:7f:ee:1c: 71:69:7f:9d:68:05:ea:ed:5f:66:74:1a:a4:b3:bb: d8:36:16:ad:e3:18:fa:69:9d:e6:a1:c3:03:e6:70: a3:d3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AF:E6:EA:47:18:B8:FF:6F:7D:14:A2:FB:F5:25:6C:15:A6:EB:B4:8B X509v3 Authority Key Identifier: keyid:3C:1F:DD:8B:A3:01:DC:E3:DB:3F:0B:CC:25:C8:69:4C:E1:BC:DC:7D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A08FD/9F42EAD8C8AB11E9829D282FC4F9AE02/PB_di6MB3OPbPwvMJchpTOG83H0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PB_di6MB3OPbPwvMJchpTOG83H0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A08FD/9F42EAD8C8AB11E9829D282FC4F9AE02/PB_di6MB3OPbPwvMJchpTOG83H0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 62:cb:f5:e2:5b:b9:dc:67:29:e0:40:83:84:34:36:26:49:ab: 55:be:6c:d5:96:47:6d:9d:39:08:0e:29:b1:f6:15:6b:4d:7a: ef:bc:52:41:0c:b1:9e:5d:e8:57:8a:61:03:e2:50:ef:af:36: 1b:b0:b5:f3:73:d1:4d:ab:25:18:ad:bf:c6:72:b5:28:7b:4f: 56:39:d3:35:6b:94:29:f3:f2:00:14:1a:b3:7a:4d:97:d5:1e: f7:2a:ce:df:f4:0f:6e:d9:24:0f:59:cd:3d:9a:c2:79:b7:05: 57:47:9e:b6:29:73:2e:bf:63:f1:5d:c0:20:42:1b:06:6c:fa: 83:9a:99:a0:dc:1a:07:1d:da:37:37:cc:27:14:2e:a6:8f:38: 1c:21:23:9a:a0:8b:ad:e5:86:a0:3c:7f:38:53:d6:af:4c:4d: 99:6d:6f:2d:68:bd:be:18:57:21:fc:90:7d:9d:19:f6:4a:0d: eb:17:4b:3d:2d:27:f6:ad:30:8b:ae:e6:8b:b0:b0:0f:c2:06: 42:81:fd:85:5d:1a:1f:53:7f:e2:9a:7c:b0:9e:8f:69:13:48: f9:4e:1b:99:b3:ee:c1:40:5a:9f:c4:94:f4:5f:7b:f2:08:69: b6:7c:f2:14:85:44:c7:61:ea:49:4b:a3:54:e8:d0:d0:1b:06: ce:ec:6a:49 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDX8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTA4RkQxMTAvBgNVBAUTKDNDMUZERDhCQTMwMURDRTNEQjNGMEJDQzI1Qzg2OTRD RTFCQ0RDN0QwHhcNMjUwNTMwMTgwNzM4WhcNMjUwNjA2MTgwNzM4WjAYMRYwFAYD VQQDEw02ODM5ZjNlYS02OTNkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvw1KzX109EHgMqmO7RLyNqd9D+gocAKa32iq2uEKYJkh6YtIAJDINgodEUQj rrWK6bINNHNmsyMuV1Wx8zhDIGvFY0qJ/lN+o0DGwLLg9fNLdcyycdHeIaPYq9Yq P6RnBJQyPbujgYRfLx2e0QkKgRGn5+uJAqTuQX0lXQGgg3kBo7nOm5GUX7QBQHgW qmUBzM4fxf7k2+d93luf4wdMxGoPBxcyjGAy4ZFuQQBdfPY/Lfb9IreRdV85DXnh k94Uotslcf4lvqHor/8SIiQpjaR4aGpV06Wbctwyz6x/7hxxaX+daAXq7V9mdBqk s7vYNhat4xj6aZ3mocMD5nCj0wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFK/m6kcY uP9vfRSi+/UlbBWm67SLMB8GA1UdIwQYMBaAFDwf3YujAdzj2z8LzCXIaUzhvNx9 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBMDhGRC85RjQyRUFEOEM4 QUIxMUU5ODI5RDI4MkZDNEY5QUUwMi9QQl9kaTZNQjNPUGJQd3ZNSmNocFRPRzgz SDAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1BCX2RpNk1CM09QYlB3dk1KY2hwVE9HODNIMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB MDhGRC85RjQyRUFEOEM4QUIxMUU5ODI5RDI4MkZDNEY5QUUwMi9QQl9kaTZNQjNP UGJQd3ZNSmNocFRPRzgzSDAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBiy/XiW7ncZyngQIOENDYmSatVvmzVlkdtnTkIDimx9hVrTXrvvFJB DLGeXehXimED4lDvrzYbsLXzc9FNqyUYrb/GcrUoe09WOdM1a5Qp8/IAFBqzek2X 1R73Ks7f9A9u2SQPWc09msJ5twVXR562KXMuv2PxXcAgQhsGbPqDmpmg3BoHHdo3 N8wnFC6mjzgcISOaoIut5YagPH84U9avTE2ZbW8taL2+GFch/JB9nRn2Sg3rF0s9 LSf2rTCLruaLsLAPwgZCgf2FXRofU3/imnywno9pE0j5ThuZs+7BQFqfxJT0X3vy CGm2fPIUhUTHYepJS6NU6NDQGwbO7GpJ -----END CERTIFICATE-----Generated at Sat May 31 16:26:53 2025 by rpki-client