$ rpki-client -vvf rpki.apnic.net/member_repository/A91C8307/3432F60CBECD11EF98C74132C4F9AE02/PdCVvno70d2CniomSfx-gafv40w.mft File: PdCVvno70d2CniomSfx-gafv40w.mft (raw, json) Hash identifier: nzOWLLdVi7HajPYep25vo/6uIV8+8Y1oDb1w659Qsp4= Subject key identifier: 75:04:B1:1E:CA:81:8A:FF:F7:73:B3:38:C5:73:E3:8B:AE:04:22:18 Authority key identifier: 3D:D0:95:BE:7A:3B:D1:DD:82:9E:2A:26:49:FC:7E:81:A7:EF:E3:4C Certificate issuer: /CN=A91C8307/serialNumber=3DD095BE7A3BD1DD829E2A2649FC7E81A7EFE34C Certificate serial: 55 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PdCVvno70d2CniomSfx-gafv40w.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C8307/3432F60CBECD11EF98C74132C4F9AE02/PdCVvno70d2CniomSfx-gafv40w.mft Manifest number: 54 Signing time: Sat 31 May 2025 06:48:14 +0000 Manifest this update: Sat 31 May 2025 06:48:14 +0000 Manifest next update: Sat 07 Jun 2025 06:48:14 +0000 Files and hashes: 1: PdCVvno70d2CniomSfx-gafv40w.crl (hash: +BXUeYpTITsmQ34E03n9mTzo+B8PJM+wQfaGKCUqr70=) 2: DEDB3932BED411EF835BB47AC4F9AE02.roa (hash: O2sa7pTiQKdOhkw1Yh9cM+13JLJmRbo0IeSALJBybOk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C8307/3432F60CBECD11EF98C74132C4F9AE02/PdCVvno70d2CniomSfx-gafv40w.crl rsync://rpki.apnic.net/member_repository/A91C8307/3432F60CBECD11EF98C74132C4F9AE02/PdCVvno70d2CniomSfx-gafv40w.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PdCVvno70d2CniomSfx-gafv40w.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 07 Jun 2025 06:48:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 85 (0x55) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C8307, serialNumber=3DD095BE7A3BD1DD829E2A2649FC7E81A7EFE34C Validity Not Before: May 31 06:48:14 2025 GMT Not After : Jun 7 06:48:14 2025 GMT Subject: CN=683aa62e-d023 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:de:b6:09:50:e6:cf:42:f6:f1:92:be:05:1f:94: e8:de:3a:92:87:b0:d6:1e:36:57:66:3c:3d:30:a5: f3:1f:fc:fa:5a:3a:e5:12:9d:46:b2:04:23:03:c4: a4:e7:ed:79:85:3f:ca:bc:af:93:d1:e0:26:fe:b0: 98:35:f4:b4:65:a2:06:27:f4:82:46:dc:30:95:46: 36:b8:c9:74:ff:cc:f5:61:fe:69:af:fc:b7:55:88: 1c:3e:9a:10:7a:06:80:25:60:ad:74:21:9f:0e:eb: 5f:7e:71:6e:1f:00:68:0d:58:2b:fe:03:be:21:e7: 43:31:53:6b:dd:d6:a7:87:cb:85:02:13:0e:05:2e: 47:a1:5d:72:2b:03:11:4c:2c:ef:4e:d9:13:5b:69: d1:fb:91:b3:63:46:29:20:76:a2:19:91:d6:d8:38: f9:ae:6d:6e:11:55:23:2e:5a:9e:3c:45:f3:bb:6f: 66:13:6e:b0:45:68:14:66:81:af:55:3d:5c:b0:a4: 5b:a6:dc:2d:fd:c6:83:b3:36:fe:eb:c4:49:d2:91: a6:d4:23:ca:d4:53:4b:fe:09:8e:5f:7d:0e:6a:50: 27:af:08:be:c8:e2:e7:dd:fc:35:68:68:85:07:c8: c4:47:75:4f:b1:c7:a8:0a:24:18:11:02:c1:22:62: 64:dd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 75:04:B1:1E:CA:81:8A:FF:F7:73:B3:38:C5:73:E3:8B:AE:04:22:18 X509v3 Authority Key Identifier: keyid:3D:D0:95:BE:7A:3B:D1:DD:82:9E:2A:26:49:FC:7E:81:A7:EF:E3:4C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C8307/3432F60CBECD11EF98C74132C4F9AE02/PdCVvno70d2CniomSfx-gafv40w.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PdCVvno70d2CniomSfx-gafv40w.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C8307/3432F60CBECD11EF98C74132C4F9AE02/PdCVvno70d2CniomSfx-gafv40w.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 03:0b:98:87:29:e3:76:1b:f8:0a:04:9c:78:04:e9:26:f5:a4: 37:25:bc:f2:ca:09:b0:72:0d:f4:19:cd:46:19:3a:6c:5f:f9: 4c:c9:19:6e:49:72:ae:53:64:fa:af:95:83:e8:61:1b:4a:7c: 74:c5:2a:fc:19:35:bc:6f:88:4d:cf:93:13:70:7a:69:1d:32: 52:33:6b:a3:bd:0e:73:60:b9:ca:64:c2:2c:aa:18:92:1c:65: 69:3d:e6:41:ec:4f:58:74:b5:7d:47:d9:d0:60:22:f7:a8:b1: 15:e9:51:a1:74:cd:d8:66:8a:0c:32:f9:66:fa:bd:62:00:c3: 1a:62:85:d6:2a:f2:00:ca:7a:7c:cc:00:f1:b4:c5:60:2f:e5: d4:b3:36:22:97:e5:46:0d:85:60:25:63:c1:67:8a:4a:97:78: 0a:c7:2f:17:5d:af:b3:e7:33:36:78:2c:2c:9c:83:e2:a7:dc: e4:e2:8c:00:19:d7:09:e8:2a:8e:61:3c:69:03:ad:54:d2:05: ab:6b:8c:75:bf:e3:7a:bd:9d:d5:c1:ee:53:4d:52:9e:36:ef: 1d:53:9d:51:67:43:cb:b5:ee:89:8b:c1:66:6f:b1:26:c7:5f: 20:a5:a1:59:f3:86:ba:1d:70:8c:df:ab:ae:bb:1d:62:5f:81: 7d:3e:eb:a3 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBVTANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFD ODMwNzExMC8GA1UEBRMoM0REMDk1QkU3QTNCRDFERDgyOUUyQTI2NDlGQzdFODFB N0VGRTM0QzAeFw0yNTA1MzEwNjQ4MTRaFw0yNTA2MDcwNjQ4MTRaMBgxFjAUBgNV BAMTDTY4M2FhNjJlLWQwMjMwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDetglQ5s9C9vGSvgUflOjeOpKHsNYeNldmPD0wpfMf/PpaOuUSnUayBCMDxKTn 7XmFP8q8r5PR4Cb+sJg19LRlogYn9IJG3DCVRja4yXT/zPVh/mmv/LdViBw+mhB6 BoAlYK10IZ8O619+cW4fAGgNWCv+A74h50MxU2vd1qeHy4UCEw4FLkehXXIrAxFM LO9O2RNbadH7kbNjRikgdqIZkdbYOPmubW4RVSMuWp48RfO7b2YTbrBFaBRmga9V PVywpFum3C39xoOzNv7rxEnSkabUI8rUU0v+CY5ffQ5qUCevCL7I4ufd/DVoaIUH yMRHdU+xx6gKJBgRAsEiYmTdAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUdQSxHsqB iv/3c7M4xXPji64EIhgwHwYDVR0jBBgwFoAUPdCVvno70d2CniomSfx+gafv40ww DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUM4MzA3LzM0MzJGNjBDQkVD RDExRUY5OEM3NDEzMkM0RjlBRTAyL1BkQ1Z2bm83MGQyQ25pb21TZngtZ2FmdjQw dy5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvUGRDVnZubzcwZDJDbmlvbVNmeC1nYWZ2NDB3LmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUM4 MzA3LzM0MzJGNjBDQkVDRDExRUY5OEM3NDEzMkM0RjlBRTAyL1BkQ1Z2bm83MGQy Q25pb21TZngtZ2FmdjQwdy5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAAMLmIcp43Yb+AoEnHgE6Sb1pDclvPLKCbByDfQZzUYZOmxf+UzJGW5J cq5TZPqvlYPoYRtKfHTFKvwZNbxviE3PkxNwemkdMlIza6O9DnNgucpkwiyqGJIc ZWk95kHsT1h0tX1H2dBgIveosRXpUaF0zdhmigwy+Wb6vWIAwxpihdYq8gDKenzM APG0xWAv5dSzNiKX5UYNhWAlY8FnikqXeArHLxddr7PnMzZ4LCycg+Kn3OTijAAZ 1wnoKo5hPGkDrVTSBatrjHW/43q9ndXB7lNNUp427x1TnVFnQ8u17omLwWZvsSbH XyCloVnzhrodcIzfq667HWJfgX0+66M= -----END CERTIFICATE-----Generated at Sat May 31 16:53:45 2025 by rpki-client