$ rpki-client -vvf rpki.apnic.net/member_repository/A91AA5C6/D55519B44C3411EEAEEDA22CC4F9AE02/PUfmaHu030DFGwOkVZwQyiL2dy8.mft File: PUfmaHu030DFGwOkVZwQyiL2dy8.mft (raw, json) Hash identifier: enPSmBZv+YGbKu3719gbb9wj3TxrBfLV3PNjBdwJM6k= Subject key identifier: C1:48:E7:0E:92:91:F1:24:CA:98:23:B8:AA:05:2E:3F:60:C6:6A:62 Authority key identifier: 3D:47:E6:68:7B:B4:DF:40:C5:1B:03:A4:55:9C:10:CA:22:F6:77:2F Certificate issuer: /CN=A91AA5C6/serialNumber=3D47E6687BB4DF40C51B03A4559C10CA22F6772F Certificate serial: 0156 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PUfmaHu030DFGwOkVZwQyiL2dy8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91AA5C6/D55519B44C3411EEAEEDA22CC4F9AE02/PUfmaHu030DFGwOkVZwQyiL2dy8.mft Manifest number: 014C Signing time: Sat 31 May 2025 03:56:23 +0000 Manifest this update: Sat 31 May 2025 03:56:22 +0000 Manifest next update: Sat 07 Jun 2025 03:56:22 +0000 Files and hashes: 1: PUfmaHu030DFGwOkVZwQyiL2dy8.crl (hash: fNYbs8CwOfVlt2Wmtuq4gy5H/hXmyqPW0xjU/fkOnPY=) 2: EA1E8B8A51C711EE9A3CC954C4F9AE02.roa (hash: mRgAmQOm70v82zzEgYDnDn2brEuaNu5y2crpXyX3sdg=) 3: FAA2E3324C3811EEB7116433C4F9AE02.roa (hash: bbT6hxERjo8lnAEspIks/q29jjxdhXSux3U2mM5P3u0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91AA5C6/D55519B44C3411EEAEEDA22CC4F9AE02/PUfmaHu030DFGwOkVZwQyiL2dy8.crl rsync://rpki.apnic.net/member_repository/A91AA5C6/D55519B44C3411EEAEEDA22CC4F9AE02/PUfmaHu030DFGwOkVZwQyiL2dy8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PUfmaHu030DFGwOkVZwQyiL2dy8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 07 Jun 2025 03:56:21 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 342 (0x156) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91AA5C6, serialNumber=3D47E6687BB4DF40C51B03A4559C10CA22F6772F Validity Not Before: May 31 03:56:22 2025 GMT Not After : Jun 7 03:56:22 2025 GMT Subject: CN=683a7de6-07c9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:96:a5:1d:3a:47:fb:2d:54:56:53:76:00:29:7e: af:c1:e1:fb:cf:df:3b:7d:5b:67:20:fd:46:8f:7b: 5b:25:64:13:73:54:c1:c6:1a:c7:8b:56:9c:5a:95: f7:24:c7:13:af:84:2a:02:52:91:61:74:0e:4f:02: db:80:d9:c3:d4:84:80:d2:eb:30:92:2f:e8:e9:02: 54:e5:0f:a9:8e:15:53:7d:46:e5:09:6e:90:f5:b6: 1d:ca:10:ea:c4:22:b4:10:0f:58:b7:ae:e5:7e:36: 19:fd:d0:bc:c8:26:48:7d:c8:47:d4:6c:e3:85:b1: 06:03:28:e3:c8:8a:25:ae:bd:da:62:9b:d4:0b:b7: 30:b4:17:60:0b:98:f4:29:08:8b:57:3f:18:d9:b3: ce:42:2c:ca:ff:88:75:b9:2d:b2:49:b0:9c:2e:56: 05:88:ac:95:b1:d8:28:9e:55:80:ee:76:bb:e8:0c: 34:22:bb:2e:83:9a:73:31:58:fd:00:1c:c1:5c:d6: c6:11:5c:a8:0c:81:ef:ff:85:9a:4c:65:46:03:cc: f7:74:bd:72:7a:60:2e:ff:89:73:65:09:a4:71:7e: fd:b5:2f:e8:27:82:e7:d8:3a:14:9c:f9:e1:38:bd: d6:25:94:a7:5e:d0:64:8c:c9:00:63:e1:29:73:51: 77:7b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C1:48:E7:0E:92:91:F1:24:CA:98:23:B8:AA:05:2E:3F:60:C6:6A:62 X509v3 Authority Key Identifier: keyid:3D:47:E6:68:7B:B4:DF:40:C5:1B:03:A4:55:9C:10:CA:22:F6:77:2F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91AA5C6/D55519B44C3411EEAEEDA22CC4F9AE02/PUfmaHu030DFGwOkVZwQyiL2dy8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PUfmaHu030DFGwOkVZwQyiL2dy8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91AA5C6/D55519B44C3411EEAEEDA22CC4F9AE02/PUfmaHu030DFGwOkVZwQyiL2dy8.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 1e:58:b8:06:b5:d5:f0:d4:ff:99:ed:76:e8:45:ea:e1:4a:82: 01:56:40:2e:19:0b:5f:c9:62:e5:9f:a9:8c:e9:8b:91:99:c4: e6:8d:ea:47:5f:33:e9:ed:3f:70:25:14:bd:c2:fe:46:70:0e: 97:5e:71:c1:b0:bc:67:b2:cc:86:fc:10:ed:d3:28:57:c1:cf: bb:d6:3a:2a:e4:12:23:f6:8c:69:72:d0:f2:34:6c:c3:7b:55: 10:7a:d8:5b:76:fa:d2:b0:61:29:6e:04:fa:3f:50:ed:90:eb: 99:0d:1a:65:2c:3d:8b:e9:8a:95:ad:33:39:4c:c0:8d:e2:3e: 18:e3:2f:4b:37:ec:b4:f6:d8:52:d6:55:1f:55:fb:8f:7d:0c: ba:5c:e9:0d:9d:f7:cf:32:21:cd:7d:94:50:7d:02:2a:56:43: 2e:67:39:19:52:ec:e8:13:7a:fb:20:ff:6a:08:a9:cb:9a:fb: 79:f9:3f:6c:8a:7a:d8:c8:79:6f:2a:72:03:6d:f9:2f:da:28: fb:db:ee:4c:4b:02:b4:2a:f2:84:dd:f7:16:10:e3:78:f8:5b: 89:f7:28:05:57:b6:39:28:48:6a:d3:66:a9:68:4f:b9:d3:8b: 69:e3:49:9b:1e:6c:2f:8c:16:15:42:8e:7d:71:9c:f3:fb:cc: f3:7f:10:d2 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAVYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QUE1QzYxMTAvBgNVBAUTKDNENDdFNjY4N0JCNERGNDBDNTFCMDNBNDU1OUMxMENB MjJGNjc3MkYwHhcNMjUwNTMxMDM1NjIyWhcNMjUwNjA3MDM1NjIyWjAYMRYwFAYD VQQDEw02ODNhN2RlNi0wN2M5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAlqUdOkf7LVRWU3YAKX6vweH7z987fVtnIP1Gj3tbJWQTc1TBxhrHi1acWpX3 JMcTr4QqAlKRYXQOTwLbgNnD1ISA0uswki/o6QJU5Q+pjhVTfUblCW6Q9bYdyhDq xCK0EA9Yt67lfjYZ/dC8yCZIfchH1GzjhbEGAyjjyIolrr3aYpvUC7cwtBdgC5j0 KQiLVz8Y2bPOQizK/4h1uS2ySbCcLlYFiKyVsdgonlWA7na76Aw0Irsug5pzMVj9 ABzBXNbGEVyoDIHv/4WaTGVGA8z3dL1yemAu/4lzZQmkcX79tS/oJ4Ln2DoUnPnh OL3WJZSnXtBkjMkAY+Epc1F3ewIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFMFI5w6S kfEkypgjuKoFLj9gxmpiMB8GA1UdIwQYMBaAFD1H5mh7tN9AxRsDpFWcEMoi9ncv MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBQTVDNi9ENTU1MTlCNDRD MzQxMUVFQUVFREEyMkNDNEY5QUUwMi9QVWZtYUh1MDMwREZHd09rVlp3UXlpTDJk eTguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1BVZm1hSHUwMzBERkd3T2tWWndReWlMMmR5OC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB QTVDNi9ENTU1MTlCNDRDMzQxMUVFQUVFREEyMkNDNEY5QUUwMi9QVWZtYUh1MDMw REZHd09rVlp3UXlpTDJkeTgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAeWLgGtdXw1P+Z7XboRerhSoIBVkAuGQtfyWLln6mM6YuRmcTmjepH XzPp7T9wJRS9wv5GcA6XXnHBsLxnssyG/BDt0yhXwc+71joq5BIj9oxpctDyNGzD e1UQethbdvrSsGEpbgT6P1DtkOuZDRplLD2L6YqVrTM5TMCN4j4Y4y9LN+y09thS 1lUfVfuPfQy6XOkNnffPMiHNfZRQfQIqVkMuZzkZUuzoE3r7IP9qCKnLmvt5+T9s inrYyHlvKnIDbfkv2ij72+5MSwK0KvKE3fcWEON4+FuJ9ygFV7Y5KEhq02apaE+5 04tp40mbHmwvjBYVQo59cZzz+8zzfxDS -----END CERTIFICATE-----Generated at Sat May 31 17:02:16 2025 by rpki-client