$ rpki-client -vvf rpki.apnic.net/member_repository/A91C71A5/3BFA28340A8311ED8D6D832AC4F9AE02/PykJw_UywAsCV7klbHbroxTc0A8.mft File: PykJw_UywAsCV7klbHbroxTc0A8.mft (raw, json) Hash identifier: e3qQcaAon5F1Wk7wQ7hjNIBb7v2Vv/GXBHZhPIzhQ8M= Subject key identifier: D2:45:40:02:B3:0E:4D:00:13:18:EF:70:B6:30:12:E1:7C:52:9D:F2 Authority key identifier: 3F:29:09:C3:F5:32:C0:0B:02:57:B9:25:6C:76:EB:A3:14:DC:D0:0F Certificate issuer: /CN=A91C71A5/serialNumber=3F2909C3F532C00B0257B9256C76EBA314DCD00F Certificate serial: 0291 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PykJw_UywAsCV7klbHbroxTc0A8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C71A5/3BFA28340A8311ED8D6D832AC4F9AE02/PykJw_UywAsCV7klbHbroxTc0A8.mft Manifest number: 0288 Signing time: Thu 05 Jun 2025 01:29:39 +0000 Manifest this update: Thu 05 Jun 2025 01:29:38 +0000 Manifest next update: Thu 12 Jun 2025 01:29:38 +0000 Files and hashes: 1: PykJw_UywAsCV7klbHbroxTc0A8.crl (hash: /PEjx9DJzeZdejEwKyyFyyWsAviJj3Ebe6bw6hDXjc4=) 2: 99A7637060B311EEBA329E54C4F9AE02.roa (hash: yZy+TqtowAyp3q8j4FvJTBd3TEpqHb7gUX+ZaoqGeKI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C71A5/3BFA28340A8311ED8D6D832AC4F9AE02/PykJw_UywAsCV7klbHbroxTc0A8.crl rsync://rpki.apnic.net/member_repository/A91C71A5/3BFA28340A8311ED8D6D832AC4F9AE02/PykJw_UywAsCV7klbHbroxTc0A8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PykJw_UywAsCV7klbHbroxTc0A8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 12 Jun 2025 01:29:37 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 657 (0x291) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C71A5, serialNumber=3F2909C3F532C00B0257B9256C76EBA314DCD00F Validity Not Before: Jun 5 01:29:38 2025 GMT Not After : Jun 12 01:29:38 2025 GMT Subject: CN=6840f302-a3ed Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:fc:8b:6f:fe:48:42:d1:ac:4b:14:2a:5a:ec: b4:f5:f7:ea:b4:88:5d:4b:be:a3:05:6e:5c:1e:3d: d1:cf:bc:b7:15:77:b7:2a:3e:c9:97:e3:98:77:3a: 33:4b:fa:67:c4:3a:6a:6c:ff:0f:52:45:d2:b6:a0: 3e:a6:fd:b0:3f:07:a6:78:86:c7:8e:ce:af:0d:fa: 1e:fc:15:e8:c8:8d:4b:0d:0d:85:62:0c:3a:df:cd: 08:59:79:e6:1a:18:73:7a:f8:d8:87:b5:d9:0d:07: db:75:9a:bd:0b:2e:8a:a5:4f:93:97:35:c2:3c:73: f5:0c:66:83:24:75:dc:4d:d0:c2:28:b6:82:87:07: b1:66:c5:ec:a9:a9:cb:49:fe:a0:81:1a:e2:ac:cd: e0:13:4b:5e:17:e2:9f:07:18:e2:c5:f2:70:8a:b3: 05:f0:3d:d4:97:21:ae:ba:cd:bb:bb:de:81:c8:41: 42:08:fa:f4:92:c3:79:47:17:73:06:f4:8e:14:70: d6:f3:fb:39:93:8b:37:62:c5:5b:1a:1b:e5:92:5d: 0e:66:cc:53:8b:a4:2c:ca:94:3d:e0:68:93:2c:10: 1b:37:4f:da:ef:14:f5:a0:e0:06:85:1d:ac:5f:2b: 39:c6:81:bf:68:64:2d:c3:71:2f:53:65:12:c0:a6: 3a:49 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D2:45:40:02:B3:0E:4D:00:13:18:EF:70:B6:30:12:E1:7C:52:9D:F2 X509v3 Authority Key Identifier: keyid:3F:29:09:C3:F5:32:C0:0B:02:57:B9:25:6C:76:EB:A3:14:DC:D0:0F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C71A5/3BFA28340A8311ED8D6D832AC4F9AE02/PykJw_UywAsCV7klbHbroxTc0A8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PykJw_UywAsCV7klbHbroxTc0A8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C71A5/3BFA28340A8311ED8D6D832AC4F9AE02/PykJw_UywAsCV7klbHbroxTc0A8.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 34:db:e9:5f:73:da:fd:5d:81:5a:89:54:0a:c6:f1:5b:d4:d8: a7:34:b5:7f:72:74:7b:4d:1d:cf:22:d7:00:ea:85:77:6a:76: b7:48:86:fc:d2:48:d0:1c:ca:6c:3b:82:9e:5b:09:1c:89:56: 78:84:21:74:68:a3:29:98:00:ed:de:cb:80:66:26:28:15:1e: 14:cf:c5:b5:7e:0e:a8:14:7a:e8:30:80:09:5e:20:e8:7b:a9: 15:c3:00:e2:12:c4:e7:03:3c:1a:a9:69:86:89:8d:a2:ef:21: 40:d5:bf:64:03:f4:85:4c:a5:24:a8:0f:a2:a8:e1:4b:49:53: 9e:82:00:d7:cd:ff:51:55:ff:2f:fb:22:fa:33:e6:3d:83:5a: c1:db:d5:27:6c:0c:e7:0c:01:05:ce:ff:78:3a:a9:53:38:0a: 2a:f2:1d:4d:36:a9:8c:5a:fc:27:a6:bf:4d:c9:50:87:29:b8: bb:06:dd:54:9c:5b:69:06:17:9a:86:b1:52:e7:01:5c:6d:47: 1f:31:eb:24:e6:ca:d1:e1:2f:c0:c9:b4:07:78:6e:f5:0a:b4: c8:fb:34:d6:27:26:cf:9b:11:c7:9e:e5:6e:32:cf:2d:1c:c0: a0:d1:78:ce:32:d7:e3:e8:44:5b:56:2a:a5:ce:de:e4:a2:f6: 08:de:e3:3a -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICApEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzcxQTUxMTAvBgNVBAUTKDNGMjkwOUMzRjUzMkMwMEIwMjU3QjkyNTZDNzZFQkEz MTREQ0QwMEYwHhcNMjUwNjA1MDEyOTM4WhcNMjUwNjEyMDEyOTM4WjAYMRYwFAYD VQQDEw02ODQwZjMwMi1hM2VkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuvyLb/5IQtGsSxQqWuy09ffqtIhdS76jBW5cHj3Rz7y3FXe3Kj7Jl+OYdzoz S/pnxDpqbP8PUkXStqA+pv2wPwemeIbHjs6vDfoe/BXoyI1LDQ2FYgw6380IWXnm GhhzevjYh7XZDQfbdZq9Cy6KpU+TlzXCPHP1DGaDJHXcTdDCKLaChwexZsXsqanL Sf6ggRrirM3gE0teF+KfBxjixfJwirMF8D3UlyGuus27u96ByEFCCPr0ksN5Rxdz BvSOFHDW8/s5k4s3YsVbGhvlkl0OZsxTi6QsypQ94GiTLBAbN0/a7xT1oOAGhR2s Xys5xoG/aGQtw3EvU2USwKY6SQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFNJFQAKz Dk0AExjvcLYwEuF8Up3yMB8GA1UdIwQYMBaAFD8pCcP1MsALAle5JWx266MU3NAP MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDNzFBNS8zQkZBMjgzNDBB ODMxMUVEOEQ2RDgzMkFDNEY5QUUwMi9QeWtKd19VeXdBc0NWN2tsYkhicm94VGMw QTguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1B5a0p3X1V5d0FzQ1Y3a2xiSGJyb3hUYzBBOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD NzFBNS8zQkZBMjgzNDBBODMxMUVEOEQ2RDgzMkFDNEY5QUUwMi9QeWtKd19VeXdB c0NWN2tsYkhicm94VGMwQTgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA02+lfc9r9XYFaiVQKxvFb1NinNLV/cnR7TR3PItcA6oV3ana3SIb8 0kjQHMpsO4KeWwkciVZ4hCF0aKMpmADt3suAZiYoFR4Uz8W1fg6oFHroMIAJXiDo e6kVwwDiEsTnAzwaqWmGiY2i7yFA1b9kA/SFTKUkqA+iqOFLSVOeggDXzf9RVf8v +yL6M+Y9g1rB29UnbAznDAEFzv94OqlTOAoq8h1NNqmMWvwnpr9NyVCHKbi7Bt1U nFtpBheahrFS5wFcbUcfMesk5srR4S/AybQHeG71CrTI+zTWJybPmxHHnuVuMs8t HMCg0XjOMtfj6ERbViqlzt7kovYI3uM6 -----END CERTIFICATE-----Generated at Thu Jun 5 19:50:58 2025 by rpki-client