$ rpki-client -vvf rpki.apnic.net/member_repository/A91DA2D5/5F861EE6B89A11E3B4AC7E785911EA32/PByHc0fugnKWNq8POjddORCQ-SE.mft File: PByHc0fugnKWNq8POjddORCQ-SE.mft (raw, json) Hash identifier: EtXnaDQOn5KcRZPpQgwRxODLUBlGaFUAy50/OXGQsSo= Subject key identifier: 82:E3:DB:F2:B2:CF:55:5F:B9:3E:6E:5E:2B:46:62:30:EF:D9:CF:07 Authority key identifier: 3C:1C:87:73:47:EE:82:72:96:36:AF:0F:3A:37:5D:39:10:90:F9:21 Certificate issuer: /CN=A91DA2D5/serialNumber=3C1C877347EE82729636AF0F3A375D391090F921 Certificate serial: 2CDC Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PByHc0fugnKWNq8POjddORCQ-SE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91DA2D5/5F861EE6B89A11E3B4AC7E785911EA32/PByHc0fugnKWNq8POjddORCQ-SE.mft Manifest number: 2CAB Signing time: Sat 31 May 2025 15:30:41 +0000 Manifest this update: Sat 31 May 2025 15:30:41 +0000 Manifest next update: Sat 07 Jun 2025 15:30:41 +0000 Files and hashes: 1: PByHc0fugnKWNq8POjddORCQ-SE.crl (hash: 9aDK2SXS7lz3WwzG2B6oLv320570djV7/niV27OkB2U=) 2: 5728551C6E9611EF8FEC9C1BC4F9AE02.roa (hash: rd1Y32xkoeiGOMGm6/GALVzy5u2L42RHVTq0ym4rGxc=) 3: 14820EDE248611EEB600357DC4F9AE02.roa (hash: pfSrv7ABwA9/SpzKbTS+fYCpaS8uDOGjDIZI4jVwlaM=) 4: DE61D0DC2A7311F08DDC6D17C4F9AE02.roa (hash: fo5MHUuRRZ0aet/6odghmGpOjhNAEkaCj7xDRNlqGJo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91DA2D5/5F861EE6B89A11E3B4AC7E785911EA32/PByHc0fugnKWNq8POjddORCQ-SE.crl rsync://rpki.apnic.net/member_repository/A91DA2D5/5F861EE6B89A11E3B4AC7E785911EA32/PByHc0fugnKWNq8POjddORCQ-SE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PByHc0fugnKWNq8POjddORCQ-SE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 07 Jun 2025 15:23:03 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 11484 (0x2cdc) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DA2D5, serialNumber=3C1C877347EE82729636AF0F3A375D391090F921 Validity Not Before: May 31 15:30:41 2025 GMT Not After : Jun 7 15:30:41 2025 GMT Subject: CN=683b20a1-1fb2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c9:4e:59:72:1f:cd:de:e3:a9:f1:ba:06:16:d9: 6d:61:1a:5f:0c:24:a6:3c:6d:c9:48:74:93:d3:03: 41:76:95:46:e3:7c:82:7f:c0:3c:d9:82:d3:78:db: df:9c:16:24:a3:66:b1:2e:ef:30:e6:43:a0:de:5d: 83:1e:b1:da:48:76:26:62:b2:bc:27:ab:66:c1:56: 80:57:b8:74:d1:43:64:b6:d0:b4:29:7c:6d:43:e5: b2:6c:bb:18:ea:2e:5b:a5:68:d8:44:a6:4d:ae:27: fc:7d:d1:38:64:1e:63:a6:90:b1:05:18:3d:5e:3e: d7:bd:2a:97:ed:3e:32:12:cc:3d:5a:17:27:e0:67: 23:de:03:7f:22:85:05:05:64:37:55:0a:46:76:f6: 0b:0c:53:67:b5:8c:48:7c:c3:14:fe:fb:20:7f:a2: a1:09:cb:ac:21:00:83:54:ad:36:11:45:ef:7b:48: 3d:49:63:58:e3:fc:bc:ef:94:5e:66:93:c9:2e:f6: 88:23:67:87:ff:5b:8a:c1:a8:be:46:a3:bd:7d:1f: e6:30:44:0f:b2:09:3b:1c:33:71:26:b2:fb:28:16: 32:6a:8b:a7:c8:db:00:1c:db:63:e0:03:e5:51:60: 25:a9:4e:48:18:b8:b6:77:95:2f:8a:80:a1:45:d7: c1:9b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 82:E3:DB:F2:B2:CF:55:5F:B9:3E:6E:5E:2B:46:62:30:EF:D9:CF:07 X509v3 Authority Key Identifier: keyid:3C:1C:87:73:47:EE:82:72:96:36:AF:0F:3A:37:5D:39:10:90:F9:21 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91DA2D5/5F861EE6B89A11E3B4AC7E785911EA32/PByHc0fugnKWNq8POjddORCQ-SE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PByHc0fugnKWNq8POjddORCQ-SE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DA2D5/5F861EE6B89A11E3B4AC7E785911EA32/PByHc0fugnKWNq8POjddORCQ-SE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 29:ab:f2:a8:0d:93:9f:f3:1f:a7:c8:7d:73:c2:17:97:06:9c: 5e:46:26:ab:64:f6:9f:23:77:02:3d:9b:47:df:45:d1:17:e6: f5:bc:1d:bf:99:be:13:fb:82:df:89:2f:fa:34:37:af:a3:63: 06:2a:4a:7f:62:00:78:7d:cb:5d:bb:5c:6b:5d:d3:ee:97:b6: 4a:a2:82:15:f8:74:87:16:82:9f:92:8f:65:b5:36:03:d8:31: fd:60:07:a4:2f:e9:a5:b3:df:37:4a:44:cf:07:32:80:b9:3c: b7:4e:45:a8:c5:b6:c9:0c:4c:09:e2:88:54:82:ba:83:ad:6b: 82:2c:63:67:1a:b7:1b:87:d9:4a:59:c7:f2:1e:6b:20:ee:c2: fc:94:a8:01:4c:21:3a:a7:a8:f5:6a:82:f8:b2:d7:3a:63:a8: 7d:3e:0e:86:9a:d9:53:6a:f9:3b:de:4e:79:94:3b:cc:83:a0: 2f:98:a9:1d:c2:12:3e:1f:c2:86:e5:d0:49:aa:20:69:3c:75: f3:7c:31:2a:d7:a6:4b:b2:36:c0:16:9f:6e:fc:42:86:12:c0: 04:9d:27:14:1d:d0:05:79:28:73:96:e4:4d:c6:2a:8a:e9:6e: 27:44:01:0b:f2:91:87:6a:99:73:90:d3:a4:36:17:11:61:29: ac:b6:d5:7b -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICLNwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx REEyRDUxMTAvBgNVBAUTKDNDMUM4NzczNDdFRTgyNzI5NjM2QUYwRjNBMzc1RDM5 MTA5MEY5MjEwHhcNMjUwNTMxMTUzMDQxWhcNMjUwNjA3MTUzMDQxWjAYMRYwFAYD VQQDEw02ODNiMjBhMS0xZmIyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyU5Zch/N3uOp8boGFtltYRpfDCSmPG3JSHST0wNBdpVG43yCf8A82YLTeNvf nBYko2axLu8w5kOg3l2DHrHaSHYmYrK8J6tmwVaAV7h00UNkttC0KXxtQ+WybLsY 6i5bpWjYRKZNrif8fdE4ZB5jppCxBRg9Xj7XvSqX7T4yEsw9Whcn4Gcj3gN/IoUF BWQ3VQpGdvYLDFNntYxIfMMU/vsgf6KhCcusIQCDVK02EUXve0g9SWNY4/y875Re ZpPJLvaII2eH/1uKwai+RqO9fR/mMEQPsgk7HDNxJrL7KBYyaounyNsAHNtj4APl UWAlqU5IGLi2d5UvioChRdfBmwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFILj2/Ky z1VfuT5uXitGYjDv2c8HMB8GA1UdIwQYMBaAFDwch3NH7oJyljavDzo3XTkQkPkh MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEQTJENS81Rjg2MUVFNkI4 OUExMUUzQjRBQzdFNzg1OTExRUEzMi9QQnlIYzBmdWduS1dOcThQT2pkZE9SQ1Et U0UuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1BCeUhjMGZ1Z25LV05xOFBPamRkT1JDUS1TRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE QTJENS81Rjg2MUVFNkI4OUExMUUzQjRBQzdFNzg1OTExRUEzMi9QQnlIYzBmdWdu S1dOcThQT2pkZE9SQ1EtU0UubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQApq/KoDZOf8x+nyH1zwheXBpxeRiarZPafI3cCPZtH30XRF+b1vB2/ mb4T+4LfiS/6NDevo2MGKkp/YgB4fctdu1xrXdPul7ZKooIV+HSHFoKfko9ltTYD 2DH9YAekL+mls983SkTPBzKAuTy3TkWoxbbJDEwJ4ohUgrqDrWuCLGNnGrcbh9lK WcfyHmsg7sL8lKgBTCE6p6j1aoL4stc6Y6h9Pg6GmtlTavk73k55lDvMg6AvmKkd whI+H8KG5dBJqiBpPHXzfDEq16ZLsjbAFp9u/EKGEsAEnScUHdAFeShzluRNxiqK 6W4nRAEL8pGHaplzkNOkNhcRYSmsttV7 -----END CERTIFICATE-----Generated at Sat May 31 16:53:48 2025 by rpki-client