$ rpki-client -vvf rpki.apnic.net/member_repository/A91AA618/557EAB3C3ABE11EF8619D220C4F9AE02/pSvwKHcZGUlxLT2tKdSreid57EM.mft File: pSvwKHcZGUlxLT2tKdSreid57EM.mft (raw, json) Hash identifier: L/glT5phMZ/9Y4tlaXZOWIn1Wu//MqHlcy08l1Jv/OI= Subject key identifier: 0C:FA:B6:74:19:B8:ED:DC:09:0F:5D:B5:5B:8A:B4:C6:CF:7A:22:8A Authority key identifier: A5:2B:F0:28:77:19:19:49:71:2D:3D:AD:29:D4:AB:7A:27:79:EC:43 Certificate issuer: /CN=A91AA618/serialNumber=A52BF02877191949712D3DAD29D4AB7A2779EC43 Certificate serial: AD Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pSvwKHcZGUlxLT2tKdSreid57EM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91AA618/557EAB3C3ABE11EF8619D220C4F9AE02/pSvwKHcZGUlxLT2tKdSreid57EM.mft Manifest number: AC Signing time: Sat 31 May 2025 05:41:50 +0000 Manifest this update: Sat 31 May 2025 05:41:50 +0000 Manifest next update: Sat 07 Jun 2025 05:41:50 +0000 Files and hashes: 1: pSvwKHcZGUlxLT2tKdSreid57EM.crl (hash: TIzt6/dcBsOC8DJafwWFSYbW/mWkSpczL9uWN5R6UHM=) 2: 88F562E83DAD11EFAA46E417C4F9AE02.roa (hash: y+CwsCOmzO2omqt+7OucZwgkShxhjQvdzFrUFNJogYw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91AA618/557EAB3C3ABE11EF8619D220C4F9AE02/pSvwKHcZGUlxLT2tKdSreid57EM.crl rsync://rpki.apnic.net/member_repository/A91AA618/557EAB3C3ABE11EF8619D220C4F9AE02/pSvwKHcZGUlxLT2tKdSreid57EM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pSvwKHcZGUlxLT2tKdSreid57EM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 07 Jun 2025 05:41:49 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 173 (0xad) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91AA618, serialNumber=A52BF02877191949712D3DAD29D4AB7A2779EC43 Validity Not Before: May 31 05:41:50 2025 GMT Not After : Jun 7 05:41:50 2025 GMT Subject: CN=683a969e-7ab5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e5:f9:74:2e:cd:83:67:80:e7:d2:2d:78:b0:ed: e9:1a:79:1d:62:0a:8f:db:15:2b:d6:e8:e2:8e:b5: a9:ba:41:33:6b:cd:88:ed:e6:23:af:42:7b:fa:88: c5:fb:ae:3e:70:c8:d1:c4:43:ee:06:06:27:70:89: 80:b1:4b:90:c2:ad:f2:e7:82:a7:0d:f1:e6:a7:88: 66:8d:9d:5d:dc:3e:8d:f9:4c:a0:31:36:ea:99:e1: 8f:31:1d:32:06:d2:48:58:2d:49:40:2e:e7:3d:65: 21:f5:ba:1b:96:9e:f5:39:50:28:e8:bd:ac:0e:31: 4b:b0:b0:eb:4b:03:d6:d5:6f:1e:cf:47:2d:00:09: f1:a0:46:39:04:77:95:da:bb:47:fa:2a:b3:85:28: 1c:b1:bc:b5:ac:4d:54:8f:39:a3:a7:aa:4d:4c:d6: 32:6e:2b:34:c8:a1:16:5f:64:b1:da:96:0a:a3:8b: 0f:18:62:d3:2f:a3:ae:d0:0c:f0:64:5b:8f:76:27: fb:08:cc:9a:ff:68:6c:6c:37:b2:fc:21:ea:68:48: 05:51:93:63:e7:87:0c:4c:d0:4e:1f:af:6b:ac:66: 37:b3:ce:96:7d:53:d0:05:af:ed:c5:86:a6:75:91: 22:b2:eb:5d:8b:85:9d:85:96:76:c5:a4:af:57:c5: 0d:0f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0C:FA:B6:74:19:B8:ED:DC:09:0F:5D:B5:5B:8A:B4:C6:CF:7A:22:8A X509v3 Authority Key Identifier: keyid:A5:2B:F0:28:77:19:19:49:71:2D:3D:AD:29:D4:AB:7A:27:79:EC:43 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91AA618/557EAB3C3ABE11EF8619D220C4F9AE02/pSvwKHcZGUlxLT2tKdSreid57EM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pSvwKHcZGUlxLT2tKdSreid57EM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91AA618/557EAB3C3ABE11EF8619D220C4F9AE02/pSvwKHcZGUlxLT2tKdSreid57EM.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 67:a3:d6:04:5b:12:12:2d:95:bd:40:8f:17:26:2a:c7:09:62: 22:c6:df:15:43:43:84:65:bb:1e:60:94:95:ef:4c:ba:92:ea: 75:b5:35:16:6e:cf:7e:e2:aa:49:3e:13:ae:64:00:be:99:20: 35:69:be:3a:42:9d:fc:9e:6c:09:7f:7e:35:b6:48:13:a7:fa: be:2e:4b:8a:dd:e2:4a:ea:12:9d:fa:b9:31:3f:de:3b:53:b5: 42:19:76:7d:22:9a:a8:09:5d:3d:3e:7b:6e:f3:ee:bd:a8:35: cb:8b:a6:9b:81:c1:ac:ef:7a:35:48:b6:c4:1c:98:99:8d:ac: bb:b0:32:dd:70:11:c6:7a:d8:f0:00:93:26:ee:e0:d1:11:ff: 27:f8:88:75:f2:f6:9a:c0:c4:5d:cb:b4:57:56:1f:28:77:e0: 4e:07:f6:05:18:fb:db:52:ad:c7:50:7c:61:a2:53:44:65:23: 91:bc:6e:59:b1:22:21:5b:1e:59:1a:4e:94:bc:b6:1d:78:c7: 0d:fc:26:89:fe:3f:34:ba:2a:b9:38:f2:8c:dd:93:1a:6f:77: 58:4c:99:ea:26:2a:bb:d9:56:cd:e1:dd:8e:18:78:c0:99:c8: a6:8a:98:a5:8e:03:b9:27:4b:7b:63:32:f0:58:30:7f:4c:24: 87:06:7e:f0 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAK0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QUE2MTgxMTAvBgNVBAUTKEE1MkJGMDI4NzcxOTE5NDk3MTJEM0RBRDI5RDRBQjdB Mjc3OUVDNDMwHhcNMjUwNTMxMDU0MTUwWhcNMjUwNjA3MDU0MTUwWjAYMRYwFAYD VQQDEw02ODNhOTY5ZS03YWI1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA5fl0Ls2DZ4Dn0i14sO3pGnkdYgqP2xUr1ujijrWpukEza82I7eYjr0J7+ojF +64+cMjRxEPuBgYncImAsUuQwq3y54KnDfHmp4hmjZ1d3D6N+UygMTbqmeGPMR0y BtJIWC1JQC7nPWUh9boblp71OVAo6L2sDjFLsLDrSwPW1W8ez0ctAAnxoEY5BHeV 2rtH+iqzhSgcsby1rE1Ujzmjp6pNTNYybis0yKEWX2Sx2pYKo4sPGGLTL6Ou0Azw ZFuPdif7CMya/2hsbDey/CHqaEgFUZNj54cMTNBOH69rrGY3s86WfVPQBa/txYam dZEisutdi4WdhZZ2xaSvV8UNDwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFAz6tnQZ uO3cCQ9dtVuKtMbPeiKKMB8GA1UdIwQYMBaAFKUr8Ch3GRlJcS09rSnUq3oneexD MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBQTYxOC81NTdFQUIzQzNB QkUxMUVGODYxOUQyMjBDNEY5QUUwMi9wU3Z3S0hjWkdVbHhMVDJ0S2RTcmVpZDU3 RU0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3BTdndLSGNaR1VseExUMnRLZFNyZWlkNTdFTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB QTYxOC81NTdFQUIzQzNBQkUxMUVGODYxOUQyMjBDNEY5QUUwMi9wU3Z3S0hjWkdV bHhMVDJ0S2RTcmVpZDU3RU0ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBno9YEWxISLZW9QI8XJirHCWIixt8VQ0OEZbseYJSV70y6kup1tTUW bs9+4qpJPhOuZAC+mSA1ab46Qp38nmwJf341tkgTp/q+LkuK3eJK6hKd+rkxP947 U7VCGXZ9IpqoCV09Pntu8+69qDXLi6abgcGs73o1SLbEHJiZjay7sDLdcBHGetjw AJMm7uDREf8n+Ih18vaawMRdy7RXVh8od+BOB/YFGPvbUq3HUHxholNEZSORvG5Z sSIhWx5ZGk6UvLYdeMcN/CaJ/j80uiq5OPKM3ZMab3dYTJnqJiq72VbN4d2OGHjA mcimipiljgO5J0t7YzLwWDB/TCSHBn7w -----END CERTIFICATE-----Generated at Sat May 31 17:00:18 2025 by rpki-client