$ rpki-client -vvf rpki.apnic.net/member_repository/A91CD5B5/A46B9912164D11EE96858534C4F9AE02/pVDumUQoL8_DhLCCv_qI-G2wQXk.mft File: pVDumUQoL8_DhLCCv_qI-G2wQXk.mft (raw, json) Hash identifier: ImdM/qytr4JCAcRYQQdxTQq0ZZq1QjsYssl6l9OC4LY= Subject key identifier: 24:C3:EB:B8:69:2C:54:ED:37:98:38:CF:A8:AC:67:97:66:90:C4:8D Authority key identifier: A5:50:EE:99:44:28:2F:CF:C3:84:B0:82:BF:FA:88:F8:6D:B0:41:79 Certificate issuer: /CN=A91CD5B5/serialNumber=A550EE9944282FCFC384B082BFFA88F86DB04179 Certificate serial: 017C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pVDumUQoL8_DhLCCv_qI-G2wQXk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CD5B5/A46B9912164D11EE96858534C4F9AE02/pVDumUQoL8_DhLCCv_qI-G2wQXk.mft Manifest number: 0173 Signing time: Mon 09 Jun 2025 02:55:08 +0000 Manifest this update: Mon 09 Jun 2025 02:55:07 +0000 Manifest next update: Mon 16 Jun 2025 02:55:07 +0000 Files and hashes: 1: pVDumUQoL8_DhLCCv_qI-G2wQXk.crl (hash: eohWTrXQXxypXpFIkqZVL+9XXuOyxQMU7MHln08fDVQ=) 2: 935947E8234B11F0B6DF721FC4F9AE02.roa (hash: H5Ajktl0QcAUjjjN3KtJEIqSFF+VP9DSE9anvuAM0K8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CD5B5/A46B9912164D11EE96858534C4F9AE02/pVDumUQoL8_DhLCCv_qI-G2wQXk.crl rsync://rpki.apnic.net/member_repository/A91CD5B5/A46B9912164D11EE96858534C4F9AE02/pVDumUQoL8_DhLCCv_qI-G2wQXk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pVDumUQoL8_DhLCCv_qI-G2wQXk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 16 Jun 2025 02:55:06 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 380 (0x17c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CD5B5, serialNumber=A550EE9944282FCFC384B082BFFA88F86DB04179 Validity Not Before: Jun 9 02:55:07 2025 GMT Not After : Jun 16 02:55:07 2025 GMT Subject: CN=68464d0b-07ce Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d3:ef:15:ac:aa:35:de:3e:67:ec:0b:e2:3a:52: 7c:78:b5:32:65:1f:d0:d7:5d:68:9a:28:b6:dd:38: c9:3d:69:25:98:a7:de:31:38:75:14:36:f2:ca:02: f3:54:02:f0:c4:52:bd:1d:5b:7d:44:97:9a:99:82: 86:1f:19:91:c3:6c:4d:75:2a:d5:24:4c:00:0c:97: c1:9f:86:de:86:8c:38:1f:67:ae:52:5d:b5:d3:ad: a8:80:26:44:64:84:75:e9:6d:74:98:ca:39:ae:32: 16:05:0a:55:b6:32:59:c9:d4:32:34:36:db:40:fb: 6b:c2:ed:f2:46:43:fa:49:07:77:66:c0:17:95:87: 97:0e:d5:9d:42:21:df:df:6f:14:90:33:24:32:60: 3a:50:ee:52:76:8b:41:64:d6:81:ff:4b:fc:da:67: b9:12:2a:71:09:4d:38:99:6b:67:09:43:cd:dc:72: 4b:f5:21:2b:2f:0e:51:40:e3:19:36:08:67:5a:90: c6:19:bc:b9:ed:bf:45:0d:d9:48:5a:ae:00:91:75: 4a:c4:35:d1:4b:fc:f9:c5:3b:d1:52:60:e6:23:61: 98:c6:64:2b:cb:83:e9:17:97:5a:e5:bb:b6:2c:f3: 4c:9a:aa:38:35:b0:c5:4d:42:71:a0:36:58:a0:6b: 13:cf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 24:C3:EB:B8:69:2C:54:ED:37:98:38:CF:A8:AC:67:97:66:90:C4:8D X509v3 Authority Key Identifier: keyid:A5:50:EE:99:44:28:2F:CF:C3:84:B0:82:BF:FA:88:F8:6D:B0:41:79 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CD5B5/A46B9912164D11EE96858534C4F9AE02/pVDumUQoL8_DhLCCv_qI-G2wQXk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pVDumUQoL8_DhLCCv_qI-G2wQXk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CD5B5/A46B9912164D11EE96858534C4F9AE02/pVDumUQoL8_DhLCCv_qI-G2wQXk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 49:f2:54:62:b0:cf:b6:cb:36:86:e4:e7:97:c7:d8:1a:be:92: cc:8c:a2:e7:fb:22:12:64:a4:30:ab:43:1a:3a:08:aa:95:62: 3d:13:fc:20:eb:55:46:a0:46:c1:56:a0:86:3f:86:39:79:1e: 6c:c0:d9:f6:6b:59:aa:fa:59:c0:66:62:ce:c8:48:bb:84:9e: 06:ab:54:7b:88:1b:dd:2e:97:a5:ca:79:ea:1a:80:bd:47:38: 3e:bf:e5:10:2d:3b:d5:b2:a3:3d:ad:b1:8f:64:68:c5:a9:44: 5e:e7:8d:2c:71:c9:69:eb:e6:15:20:c7:1c:3b:f8:1c:84:1f: 78:fb:a8:bf:8e:96:70:2b:99:dc:b4:c7:4e:45:bf:57:8e:d8: 40:ad:0f:88:79:b7:6a:d6:6b:81:0b:ef:4a:82:d7:54:dc:c6: 75:f0:7e:ad:b0:43:6d:66:83:2d:f2:4c:fc:ba:ef:4f:e3:39: 68:4b:1b:92:94:48:02:8c:dd:1e:fe:de:e2:f1:37:0c:c8:1b: 52:0a:96:95:61:ab:fe:8f:83:53:7f:ac:9c:2c:e0:32:8e:49: 97:0f:1a:14:13:42:2b:90:b6:2f:15:9b:17:63:8b:44:6d:e4: 84:a9:6a:07:74:40:ab:f6:b4:6e:bf:eb:10:d2:84:ae:42:ba: 46:f6:37:dd -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAXwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Q0Q1QjUxMTAvBgNVBAUTKEE1NTBFRTk5NDQyODJGQ0ZDMzg0QjA4MkJGRkE4OEY4 NkRCMDQxNzkwHhcNMjUwNjA5MDI1NTA3WhcNMjUwNjE2MDI1NTA3WjAYMRYwFAYD VQQDEw02ODQ2NGQwYi0wN2NlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0+8VrKo13j5n7AviOlJ8eLUyZR/Q111omii23TjJPWklmKfeMTh1FDbyygLz VALwxFK9HVt9RJeamYKGHxmRw2xNdSrVJEwADJfBn4behow4H2euUl21062ogCZE ZIR16W10mMo5rjIWBQpVtjJZydQyNDbbQPtrwu3yRkP6SQd3ZsAXlYeXDtWdQiHf 328UkDMkMmA6UO5SdotBZNaB/0v82me5EipxCU04mWtnCUPN3HJL9SErLw5RQOMZ NghnWpDGGby57b9FDdlIWq4AkXVKxDXRS/z5xTvRUmDmI2GYxmQry4PpF5da5bu2 LPNMmqo4NbDFTUJxoDZYoGsTzwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFCTD67hp LFTtN5g4z6isZ5dmkMSNMB8GA1UdIwQYMBaAFKVQ7plEKC/Pw4Swgr/6iPhtsEF5 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDRDVCNS9BNDZCOTkxMjE2 NEQxMUVFOTY4NTg1MzRDNEY5QUUwMi9wVkR1bVVRb0w4X0RoTENDdl9xSS1HMndR WGsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3BWRHVtVVFvTDhfRGhMQ0N2X3FJLUcyd1FYay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD RDVCNS9BNDZCOTkxMjE2NEQxMUVFOTY4NTg1MzRDNEY5QUUwMi9wVkR1bVVRb0w4 X0RoTENDdl9xSS1HMndRWGsubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBJ8lRisM+2yzaG5OeXx9gavpLMjKLn+yISZKQwq0MaOgiqlWI9E/wg 61VGoEbBVqCGP4Y5eR5swNn2a1mq+lnAZmLOyEi7hJ4Gq1R7iBvdLpelynnqGoC9 Rzg+v+UQLTvVsqM9rbGPZGjFqURe540scclp6+YVIMccO/gchB94+6i/jpZwK5nc tMdORb9XjthArQ+Iebdq1muBC+9KgtdU3MZ18H6tsENtZoMt8kz8uu9P4zloSxuS lEgCjN0e/t7i8TcMyBtSCpaVYav+j4NTf6ycLOAyjkmXDxoUE0IrkLYvFZsXY4tE beSEqWoHdECr9rRuv+sQ0oSuQrpG9jfd -----END CERTIFICATE-----Generated at Mon Jun 9 07:28:07 2025 by rpki-client