$ rpki-client -vvf rpki.apnic.net/member_repository/A91DD902/570B3F8EC92611EDAF2B9D4DC4F9AE02/pnTGcB4rDOPRB-nyNsVc7-aHaPE.mft File: pnTGcB4rDOPRB-nyNsVc7-aHaPE.mft (raw, json) Hash identifier: LLMAYaKRf/jkYxWbCl6M8QmudlKDf7EE4ly7b1xJErY= Subject key identifier: 67:6E:CD:63:93:73:46:E8:93:FD:36:7E:96:73:25:08:86:5B:71:29 Authority key identifier: A6:74:C6:70:1E:2B:0C:E3:D1:07:E9:F2:36:C5:5C:EF:E6:87:68:F1 Certificate issuer: /CN=A91DD902/serialNumber=A674C6701E2B0CE3D107E9F236C55CEFE68768F1 Certificate serial: 019D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pnTGcB4rDOPRB-nyNsVc7-aHaPE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91DD902/570B3F8EC92611EDAF2B9D4DC4F9AE02/pnTGcB4rDOPRB-nyNsVc7-aHaPE.mft Manifest number: 019A Signing time: Sat 31 May 2025 03:04:58 +0000 Manifest this update: Sat 31 May 2025 03:04:58 +0000 Manifest next update: Sat 07 Jun 2025 03:04:58 +0000 Files and hashes: 1: pnTGcB4rDOPRB-nyNsVc7-aHaPE.crl (hash: ygQhE8LdKh6JPnqeIGRnOXhZHp9/0bwQnQ7ETUXVzNQ=) 2: 33A48584C92911EDAE3AB84EC4F9AE02.roa (hash: ZbC1fIWVYM0VLVl8rd4V+PKdCpSrgSM3tfi0uNsU2b0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91DD902/570B3F8EC92611EDAF2B9D4DC4F9AE02/pnTGcB4rDOPRB-nyNsVc7-aHaPE.crl rsync://rpki.apnic.net/member_repository/A91DD902/570B3F8EC92611EDAF2B9D4DC4F9AE02/pnTGcB4rDOPRB-nyNsVc7-aHaPE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pnTGcB4rDOPRB-nyNsVc7-aHaPE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 07 Jun 2025 03:04:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 413 (0x19d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DD902, serialNumber=A674C6701E2B0CE3D107E9F236C55CEFE68768F1 Validity Not Before: May 31 03:04:58 2025 GMT Not After : Jun 7 03:04:58 2025 GMT Subject: CN=683a71da-1560 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:96:14:78:6b:22:cf:8b:a9:13:d3:15:3c:61:ac: 51:80:58:d9:fd:ad:1e:06:d5:8a:f5:09:15:fa:64: 4d:8f:15:21:69:47:5d:a9:75:8a:59:91:5e:8f:8c: ea:6d:3d:ef:46:f1:b0:82:d1:14:26:ac:c7:30:1e: ed:87:8c:22:59:be:23:12:b4:45:7c:31:7d:8c:51: 1e:6c:e1:3c:30:24:47:6a:47:ac:2f:fd:33:c1:db: eb:c0:c7:36:d4:1f:ea:a2:95:93:8b:ab:38:28:7e: a1:51:f8:22:a3:1a:1b:27:6b:b0:44:c1:0f:fb:85: d6:a5:47:de:98:f2:8a:74:fb:11:b2:8a:d0:50:2a: 57:0e:a1:b9:54:8f:70:fb:71:66:dd:06:9c:e5:5f: 19:95:0f:e2:80:b3:29:d7:e6:51:a3:e1:67:63:17: 70:0a:3a:a2:22:e8:5e:7b:09:86:b2:fe:b5:52:46: db:07:e3:a4:22:ba:15:b9:79:1c:f5:2b:8b:00:71: 36:8f:5e:bf:0c:ee:98:92:8e:6c:d8:ee:fc:f9:31: bf:05:20:db:f5:5c:1d:7e:2f:0f:6b:af:84:4e:1e: e6:bb:7d:7a:e0:21:0d:3c:7d:24:e8:40:ac:5f:8e: 99:af:2d:7f:01:22:e6:e2:ea:39:3a:c8:72:65:39: 53:af Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 67:6E:CD:63:93:73:46:E8:93:FD:36:7E:96:73:25:08:86:5B:71:29 X509v3 Authority Key Identifier: keyid:A6:74:C6:70:1E:2B:0C:E3:D1:07:E9:F2:36:C5:5C:EF:E6:87:68:F1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91DD902/570B3F8EC92611EDAF2B9D4DC4F9AE02/pnTGcB4rDOPRB-nyNsVc7-aHaPE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pnTGcB4rDOPRB-nyNsVc7-aHaPE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DD902/570B3F8EC92611EDAF2B9D4DC4F9AE02/pnTGcB4rDOPRB-nyNsVc7-aHaPE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 3e:93:25:da:7b:bb:e5:16:c0:2e:87:6f:ff:7f:2f:d9:46:48: 2a:19:16:a3:15:0b:a2:d7:4b:46:d8:d7:b1:10:4e:e4:ca:2c: 27:6a:b8:7b:3b:82:aa:53:1c:af:c6:e8:01:3e:24:5a:89:9e: 7c:f0:28:bb:4d:fb:27:75:26:1c:4f:1e:08:55:67:5c:52:f3: ff:06:3e:35:a4:11:d1:92:70:69:1c:df:51:31:a2:15:a8:f0: 9b:59:7d:99:84:91:c8:cb:cd:92:bb:52:b6:11:3e:e3:4b:20: bb:f5:8d:b4:e0:21:10:16:89:1d:5c:16:00:e2:0a:f1:ae:37: fa:89:d8:41:72:6b:6d:d0:2c:ec:7d:44:2b:cb:5b:c1:c6:a5: 1c:cf:1c:ba:10:aa:d0:bd:b2:c7:1e:83:eb:6f:1d:80:14:cd: cb:ae:8f:ce:23:09:69:db:82:a9:2d:80:3c:ea:7f:fb:48:92: 4f:d5:5f:24:47:99:42:49:04:58:b8:d7:50:36:86:44:f7:50: 5d:5b:60:b0:85:ca:fa:f5:39:b1:e6:e7:86:e0:d6:35:64:4b: f3:c4:7d:ea:17:85:1f:cd:98:4a:a9:ba:e5:66:27:26:13:97: 73:f2:ea:17:e0:25:c6:9a:08:49:53:64:77:09:a5:85:c0:fa: 2d:86:b3:45 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAZ0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx REQ5MDIxMTAvBgNVBAUTKEE2NzRDNjcwMUUyQjBDRTNEMTA3RTlGMjM2QzU1Q0VG RTY4NzY4RjEwHhcNMjUwNTMxMDMwNDU4WhcNMjUwNjA3MDMwNDU4WjAYMRYwFAYD VQQDEw02ODNhNzFkYS0xNTYwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAlhR4ayLPi6kT0xU8YaxRgFjZ/a0eBtWK9QkV+mRNjxUhaUddqXWKWZFej4zq bT3vRvGwgtEUJqzHMB7th4wiWb4jErRFfDF9jFEebOE8MCRHakesL/0zwdvrwMc2 1B/qopWTi6s4KH6hUfgioxobJ2uwRMEP+4XWpUfemPKKdPsRsorQUCpXDqG5VI9w +3Fm3Qac5V8ZlQ/igLMp1+ZRo+FnYxdwCjqiIuheewmGsv61UkbbB+OkIroVuXkc 9SuLAHE2j16/DO6Yko5s2O78+TG/BSDb9Vwdfi8Pa6+ETh7mu3164CENPH0k6ECs X46Zry1/ASLm4uo5OshyZTlTrwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFGduzWOT c0bok/02fpZzJQiGW3EpMB8GA1UdIwQYMBaAFKZ0xnAeKwzj0Qfp8jbFXO/mh2jx MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFERDkwMi81NzBCM0Y4RUM5 MjYxMUVEQUYyQjlENERDNEY5QUUwMi9wblRHY0I0ckRPUFJCLW55TnNWYzctYUhh UEUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3BuVEdjQjRyRE9QUkItbnlOc1ZjNy1hSGFQRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE RDkwMi81NzBCM0Y4RUM5MjYxMUVEQUYyQjlENERDNEY5QUUwMi9wblRHY0I0ckRP UFJCLW55TnNWYzctYUhhUEUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA+kyXae7vlFsAuh2//fy/ZRkgqGRajFQui10tG2NexEE7kyiwnarh7 O4KqUxyvxugBPiRaiZ588Ci7TfsndSYcTx4IVWdcUvP/Bj41pBHRknBpHN9RMaIV qPCbWX2ZhJHIy82Su1K2ET7jSyC79Y204CEQFokdXBYA4grxrjf6idhBcmtt0Czs fUQry1vBxqUczxy6EKrQvbLHHoPrbx2AFM3Lro/OIwlp24KpLYA86n/7SJJP1V8k R5lCSQRYuNdQNoZE91BdW2Cwhcr69Tmx5ueG4NY1ZEvzxH3qF4UfzZhKqbrlZicm E5dz8uoX4CXGmghJU2R3CaWFwPothrNF -----END CERTIFICATE-----Generated at Sat May 31 16:35:56 2025 by rpki-client