$ rpki-client -vvf rpki.apnic.net/member_repository/A91AAEC2/2DDDD26CC2C011EA93D5857FC4F9AE02/PTiRpGy8urR0eN6kDSkI9nzOOyo.mft File: PTiRpGy8urR0eN6kDSkI9nzOOyo.mft (raw, json) Hash identifier: PI5zOqNODhkBEDOnObspM8ohKw90d0E3Nc9eYwBOsos= Subject key identifier: C1:A9:51:CA:C6:4B:37:CA:F9:7B:4B:B3:4F:49:EB:0A:8B:7F:B7:09 Authority key identifier: 3D:38:91:A4:6C:BC:BA:B4:74:78:DE:A4:0D:29:08:F6:7C:CE:3B:2A Certificate issuer: /CN=A91AAEC2/serialNumber=3D3891A46CBCBAB47478DEA40D2908F67CCE3B2A Certificate serial: 0880 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PTiRpGy8urR0eN6kDSkI9nzOOyo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91AAEC2/2DDDD26CC2C011EA93D5857FC4F9AE02/PTiRpGy8urR0eN6kDSkI9nzOOyo.mft Manifest number: 0878 Signing time: Fri 30 May 2025 20:53:20 +0000 Manifest this update: Fri 30 May 2025 20:53:20 +0000 Manifest next update: Fri 06 Jun 2025 20:53:20 +0000 Files and hashes: 1: PTiRpGy8urR0eN6kDSkI9nzOOyo.crl (hash: Gohox0v2bV1AJ6TQos7RrrfqivYsHm5tfBAiIhD0Ri4=) 2: DFEA30745C3011EEB250DE0EC4F9AE02.roa (hash: tsMkLvjKn0Jno43pXfv561BkhcMo5hMdRzf+ZccASKU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91AAEC2/2DDDD26CC2C011EA93D5857FC4F9AE02/PTiRpGy8urR0eN6kDSkI9nzOOyo.crl rsync://rpki.apnic.net/member_repository/A91AAEC2/2DDDD26CC2C011EA93D5857FC4F9AE02/PTiRpGy8urR0eN6kDSkI9nzOOyo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PTiRpGy8urR0eN6kDSkI9nzOOyo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 06 Jun 2025 20:53:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2176 (0x880) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91AAEC2, serialNumber=3D3891A46CBCBAB47478DEA40D2908F67CCE3B2A Validity Not Before: May 30 20:53:20 2025 GMT Not After : Jun 6 20:53:20 2025 GMT Subject: CN=683a1ac0-ca6b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a2:df:99:26:df:6a:82:aa:13:16:97:fc:9a:7d: 7e:fe:2a:c7:8c:f2:a9:44:e1:1a:17:39:e5:a4:b3: ec:31:a0:a0:4e:3d:29:c6:ef:e7:ed:14:f4:ac:aa: 3b:c6:79:50:d1:f1:1a:7c:d1:b6:8e:4e:32:94:4d: 5f:bc:1b:68:e3:55:29:4a:3e:4a:96:b2:c7:c6:6b: 88:95:a2:e0:8f:02:bf:f0:de:5d:03:29:9c:17:25: 92:13:ca:9b:98:3c:7c:b1:4e:5a:94:9d:98:16:19: 0d:df:ad:50:88:61:c3:cb:09:d0:cd:27:41:91:8e: a6:76:96:aa:43:6c:e9:c6:53:3e:18:8e:3b:5a:5f: d4:ed:a0:02:6e:a1:bd:86:26:ee:1d:9f:66:c2:a4: d9:51:96:47:87:a6:06:e8:1b:83:bf:f5:8d:44:ea: cd:2d:0b:50:65:8a:ea:78:4c:21:ad:b8:9a:9c:24: 62:60:84:59:18:37:78:2e:94:97:ed:30:d8:ce:5b: a5:2c:28:58:54:00:d7:02:cf:85:08:67:f4:96:fa: fc:f3:9d:58:14:ee:dd:2f:88:cf:b6:60:a2:fb:86: 1f:d1:e4:94:48:ef:21:84:c9:0d:f4:b1:ca:99:db: b5:18:9c:a2:1e:fc:9c:dd:aa:18:fe:7c:61:1a:51: 0f:29 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C1:A9:51:CA:C6:4B:37:CA:F9:7B:4B:B3:4F:49:EB:0A:8B:7F:B7:09 X509v3 Authority Key Identifier: keyid:3D:38:91:A4:6C:BC:BA:B4:74:78:DE:A4:0D:29:08:F6:7C:CE:3B:2A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91AAEC2/2DDDD26CC2C011EA93D5857FC4F9AE02/PTiRpGy8urR0eN6kDSkI9nzOOyo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PTiRpGy8urR0eN6kDSkI9nzOOyo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91AAEC2/2DDDD26CC2C011EA93D5857FC4F9AE02/PTiRpGy8urR0eN6kDSkI9nzOOyo.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption ad:23:84:c3:83:83:62:88:b9:a4:a6:4e:ee:65:44:e5:27:f5: 53:95:1e:a4:1a:78:34:dd:a7:91:9e:9d:cf:be:35:2a:4f:2c: 96:f5:5e:b0:61:a9:ec:66:f3:35:17:1e:b7:88:80:43:91:cf: 91:d1:50:58:7d:fb:13:33:60:5a:fe:70:a5:66:15:1a:ef:50: 30:9b:3d:55:ec:c5:ac:08:f9:1c:77:3d:46:04:e8:54:1f:06: 7d:12:37:22:e9:17:b9:90:1a:ae:ef:22:52:2a:9e:e6:95:9a: 49:83:b3:17:80:f0:d7:7b:7c:9d:13:e2:71:f5:e5:f1:50:b0: 68:68:bd:9c:7e:f9:90:da:9d:f4:f6:6a:e1:27:3f:81:91:a2: 02:c8:85:ef:9d:b6:be:8e:31:d0:e4:2d:84:88:37:8a:ce:19: e9:59:46:38:83:b8:d7:5b:ac:8d:f7:b2:37:2e:58:83:bc:4d: 5e:a7:ae:32:3f:c9:d0:fd:34:d6:a2:4b:dc:03:8d:1d:36:99: 86:0e:7d:fe:67:a8:2a:e3:dc:38:8d:15:ca:68:ff:66:38:ca: 1e:2a:a7:03:48:49:e1:44:e2:58:45:ae:d8:72:37:c4:b2:46: 10:fb:a7:59:a3:71:27:59:ae:04:47:76:1e:a6:32:56:e2:43: 0e:00:9a:49 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCIAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QUFFQzIxMTAvBgNVBAUTKDNEMzg5MUE0NkNCQ0JBQjQ3NDc4REVBNDBEMjkwOEY2 N0NDRTNCMkEwHhcNMjUwNTMwMjA1MzIwWhcNMjUwNjA2MjA1MzIwWjAYMRYwFAYD VQQDEw02ODNhMWFjMC1jYTZiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAot+ZJt9qgqoTFpf8mn1+/irHjPKpROEaFznlpLPsMaCgTj0pxu/n7RT0rKo7 xnlQ0fEafNG2jk4ylE1fvBto41UpSj5KlrLHxmuIlaLgjwK/8N5dAymcFyWSE8qb mDx8sU5alJ2YFhkN361QiGHDywnQzSdBkY6mdpaqQ2zpxlM+GI47Wl/U7aACbqG9 hibuHZ9mwqTZUZZHh6YG6BuDv/WNROrNLQtQZYrqeEwhrbianCRiYIRZGDd4LpSX 7TDYzlulLChYVADXAs+FCGf0lvr8851YFO7dL4jPtmCi+4Yf0eSUSO8hhMkN9LHK mdu1GJyiHvyc3aoY/nxhGlEPKQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFMGpUcrG SzfK+XtLs09J6wqLf7cJMB8GA1UdIwQYMBaAFD04kaRsvLq0dHjepA0pCPZ8zjsq MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBQUVDMi8yRERERDI2Q0My QzAxMUVBOTNENTg1N0ZDNEY5QUUwMi9QVGlScEd5OHVyUjBlTjZrRFNrSTluek9P eW8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1BUaVJwR3k4dXJSMGVONmtEU2tJOW56T095by5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB QUVDMi8yRERERDI2Q0MyQzAxMUVBOTNENTg1N0ZDNEY5QUUwMi9QVGlScEd5OHVy UjBlTjZrRFNrSTluek9PeW8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCtI4TDg4NiiLmkpk7uZUTlJ/VTlR6kGng03aeRnp3PvjUqTyyW9V6w YansZvM1Fx63iIBDkc+R0VBYffsTM2Ba/nClZhUa71Awmz1V7MWsCPkcdz1GBOhU HwZ9Ejci6Re5kBqu7yJSKp7mlZpJg7MXgPDXe3ydE+Jx9eXxULBoaL2cfvmQ2p30 9mrhJz+BkaICyIXvnba+jjHQ5C2EiDeKzhnpWUY4g7jXW6yN97I3LliDvE1ep64y P8nQ/TTWokvcA40dNpmGDn3+Z6gq49w4jRXKaP9mOMoeKqcDSEnhROJYRa7YcjfE skYQ+6dZo3EnWa4ER3YepjJW4kMOAJpJ -----END CERTIFICATE-----Generated at Sat May 31 16:59:23 2025 by rpki-client