$ rpki-client -vvf rpki.apnic.net/member_repository/A91D1003/AA4E95C8320311EA8D2A1B2BC4F9AE02/pSAa7m9KXB64p-HHhTv7srp1y9I.mft File: pSAa7m9KXB64p-HHhTv7srp1y9I.mft (raw, json) Hash identifier: jFxr9RusnmhuxQlgrBm3Dang63VCtuS5WhVeGoz3URE= Subject key identifier: 69:4D:CB:76:E2:8F:90:E5:25:CC:15:E5:0F:82:BC:88:6A:6A:5A:A5 Authority key identifier: A5:20:1A:EE:6F:4A:5C:1E:B8:A7:E1:C7:85:3B:FB:B2:BA:75:CB:D2 Certificate issuer: /CN=A91D1003/serialNumber=A5201AEE6F4A5C1EB8A7E1C7853BFBB2BA75CBD2 Certificate serial: 0B6B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pSAa7m9KXB64p-HHhTv7srp1y9I.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D1003/AA4E95C8320311EA8D2A1B2BC4F9AE02/pSAa7m9KXB64p-HHhTv7srp1y9I.mft Manifest number: 0B60 Signing time: Fri 30 May 2025 19:17:51 +0000 Manifest this update: Fri 30 May 2025 19:17:51 +0000 Manifest next update: Fri 06 Jun 2025 19:17:51 +0000 Files and hashes: 1: pSAa7m9KXB64p-HHhTv7srp1y9I.crl (hash: nKYonNYyDcIf2myZyh5qG/otnmgI/zVMO+z5TqzChNY=) 2: 0DC2568E320511EA8CF6B72DC4F9AE02.roa (hash: dZqvR0xqd13+DRj0vsCnaFuawrKyEqpLXk81wck6o3Q=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D1003/AA4E95C8320311EA8D2A1B2BC4F9AE02/pSAa7m9KXB64p-HHhTv7srp1y9I.crl rsync://rpki.apnic.net/member_repository/A91D1003/AA4E95C8320311EA8D2A1B2BC4F9AE02/pSAa7m9KXB64p-HHhTv7srp1y9I.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pSAa7m9KXB64p-HHhTv7srp1y9I.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 06 Jun 2025 19:17:50 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2923 (0xb6b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D1003, serialNumber=A5201AEE6F4A5C1EB8A7E1C7853BFBB2BA75CBD2 Validity Not Before: May 30 19:17:51 2025 GMT Not After : Jun 6 19:17:51 2025 GMT Subject: CN=683a045f-3640 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:24:5a:60:f2:ea:b5:57:5d:bf:1a:25:46:de: 07:2c:dc:ec:19:2e:db:2a:97:8b:20:dd:66:e2:30: 31:15:22:76:5c:ee:85:f0:74:1e:25:e2:09:7b:b0: 42:96:59:06:38:78:2f:7d:6a:f6:f6:c7:bf:58:a7: 8e:30:48:b0:9b:ef:e5:e6:5a:9e:4c:b6:31:03:e8: 5d:9e:38:e3:a6:04:5a:8e:42:b4:5f:06:c7:f3:d0: d6:13:4b:17:b5:a8:07:9d:8c:29:e7:55:f4:0b:02: cd:f4:4d:e2:eb:ee:d1:2f:95:14:2b:90:00:d9:4a: c1:50:dc:e1:bf:17:41:fb:1f:cc:d4:4f:cd:87:a3: 2a:82:56:85:08:49:f3:1f:af:a2:a3:c4:84:f5:4d: 3c:30:59:44:85:17:d2:a9:99:c0:53:54:f7:ee:e6: 68:fe:8d:72:68:2b:b4:0d:a2:a7:12:5d:21:38:67: 62:2b:ee:5d:ec:50:74:fb:f4:99:fb:2d:51:96:da: 46:82:a1:90:15:bc:ea:56:4e:70:8f:69:f0:0b:84: 71:6e:b9:74:28:2b:c0:0c:ab:40:fc:e9:53:ef:a5: f5:52:40:86:eb:ea:64:7a:1d:b1:a7:a6:e8:4d:d9: 98:7c:d0:0c:fe:7e:ad:7f:41:bf:ef:76:03:f0:52: 02:5b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 69:4D:CB:76:E2:8F:90:E5:25:CC:15:E5:0F:82:BC:88:6A:6A:5A:A5 X509v3 Authority Key Identifier: keyid:A5:20:1A:EE:6F:4A:5C:1E:B8:A7:E1:C7:85:3B:FB:B2:BA:75:CB:D2 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D1003/AA4E95C8320311EA8D2A1B2BC4F9AE02/pSAa7m9KXB64p-HHhTv7srp1y9I.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pSAa7m9KXB64p-HHhTv7srp1y9I.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D1003/AA4E95C8320311EA8D2A1B2BC4F9AE02/pSAa7m9KXB64p-HHhTv7srp1y9I.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 76:a0:4c:8f:3b:4c:7e:81:34:02:ca:bb:bb:1a:32:77:d0:9b: ae:01:58:b2:2d:ab:67:25:e3:ff:2f:de:5a:c3:a4:2f:8d:1c: 5e:a1:05:47:12:09:c9:bf:54:79:6f:45:24:4a:7c:75:23:57: 02:ea:75:f6:94:a4:ee:8e:59:65:34:39:dc:75:7d:37:14:26: 9c:42:33:eb:9c:c6:f6:e9:34:0f:e9:d5:12:e7:a0:1f:97:17: c8:28:58:cf:0b:03:f4:4a:10:d6:0a:94:2b:9a:39:3a:ca:cc: 8a:e6:6d:69:53:d7:93:7e:fb:ef:84:02:7f:78:64:f9:48:80: db:27:60:ed:9c:11:a7:d0:69:ea:58:1a:15:2e:cb:56:1a:24: db:85:59:3d:ad:50:07:7f:e5:a4:5b:b3:e1:50:f7:61:07:6f: 46:d3:cf:38:74:ac:09:29:27:4c:ea:d5:60:ab:b6:99:46:bb: be:46:84:45:47:99:65:3e:79:97:61:a4:59:81:af:24:dd:cc: 08:b0:37:21:bb:e8:31:c3:78:f6:0d:8d:d1:44:4a:86:20:ad: 2a:9d:5f:02:40:5a:10:50:88:6e:58:af:13:25:cc:3a:ba:4b: 45:84:60:c7:1d:b3:48:06:8d:35:7d:d9:76:0d:46:31:55:a8: bf:e2:a2:4d -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICC2swDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDEwMDMxMTAvBgNVBAUTKEE1MjAxQUVFNkY0QTVDMUVCOEE3RTFDNzg1M0JGQkIy QkE3NUNCRDIwHhcNMjUwNTMwMTkxNzUxWhcNMjUwNjA2MTkxNzUxWjAYMRYwFAYD VQQDEw02ODNhMDQ1Zi0zNjQwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuyRaYPLqtVddvxolRt4HLNzsGS7bKpeLIN1m4jAxFSJ2XO6F8HQeJeIJe7BC llkGOHgvfWr29se/WKeOMEiwm+/l5lqeTLYxA+hdnjjjpgRajkK0XwbH89DWE0sX tagHnYwp51X0CwLN9E3i6+7RL5UUK5AA2UrBUNzhvxdB+x/M1E/Nh6MqglaFCEnz H6+io8SE9U08MFlEhRfSqZnAU1T37uZo/o1yaCu0DaKnEl0hOGdiK+5d7FB0+/SZ +y1RltpGgqGQFbzqVk5wj2nwC4Rxbrl0KCvADKtA/OlT76X1UkCG6+pkeh2xp6bo TdmYfNAM/n6tf0G/73YD8FICWwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFGlNy3bi j5DlJcwV5Q+CvIhqalqlMB8GA1UdIwQYMBaAFKUgGu5vSlweuKfhx4U7+7K6dcvS MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEMTAwMy9BQTRFOTVDODMy MDMxMUVBOEQyQTFCMkJDNEY5QUUwMi9wU0FhN205S1hCNjRwLUhIaFR2N3NycDF5 OUkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3BTQWE3bTlLWEI2NHAtSEhoVHY3c3JwMXk5SS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE MTAwMy9BQTRFOTVDODMyMDMxMUVBOEQyQTFCMkJDNEY5QUUwMi9wU0FhN205S1hC NjRwLUhIaFR2N3NycDF5OUkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB2oEyPO0x+gTQCyru7GjJ30JuuAViyLatnJeP/L95aw6QvjRxeoQVH EgnJv1R5b0UkSnx1I1cC6nX2lKTujlllNDncdX03FCacQjPrnMb26TQP6dUS56Af lxfIKFjPCwP0ShDWCpQrmjk6ysyK5m1pU9eTfvvvhAJ/eGT5SIDbJ2DtnBGn0Gnq WBoVLstWGiTbhVk9rVAHf+WkW7PhUPdhB29G0884dKwJKSdM6tVgq7aZRru+RoRF R5llPnmXYaRZga8k3cwIsDchu+gxw3j2DY3RREqGIK0qnV8CQFoQUIhuWK8TJcw6 uktFhGDHHbNIBo01fdl2DUYxVai/4qJN -----END CERTIFICATE-----Generated at Sat May 31 16:56:16 2025 by rpki-client