$ rpki-client -vvf rpki.apnic.net/member_repository/A91DE4AC/3441D2D06C6E11ECB233FB61C4F9AE02/PusZaI0z1iGZTls9nkbsqqUJ9CM.mft File: PusZaI0z1iGZTls9nkbsqqUJ9CM.mft (raw, json) Hash identifier: r29YynYzJiZNkTgeGwZVkyQwv6v34ppAdICPfXbRGgE= Subject key identifier: F9:84:41:34:03:3D:69:00:79:14:1C:AE:C4:C7:9F:7D:94:39:2E:CE Authority key identifier: 3E:EB:19:68:8D:33:D6:21:99:4E:5B:3D:9E:46:EC:AA:A5:09:F4:23 Certificate issuer: /CN=A91DE4AC/serialNumber=3EEB19688D33D621994E5B3D9E46ECAAA509F423 Certificate serial: 041D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PusZaI0z1iGZTls9nkbsqqUJ9CM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91DE4AC/3441D2D06C6E11ECB233FB61C4F9AE02/PusZaI0z1iGZTls9nkbsqqUJ9CM.mft Manifest number: 0417 Signing time: Sat 31 May 2025 00:36:48 +0000 Manifest this update: Sat 31 May 2025 00:36:48 +0000 Manifest next update: Sat 07 Jun 2025 00:36:48 +0000 Files and hashes: 1: PusZaI0z1iGZTls9nkbsqqUJ9CM.crl (hash: nipw1Ohpp2qlMEVfzDJv4RWMugXyoSVksum90BU3IxA=) 2: 0716B2646C7111EC8C5E6967C4F9AE02.roa (hash: FC5KH7zmbNiXwzzDmtV6gG59796J2EuM05tZKkGKGqk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91DE4AC/3441D2D06C6E11ECB233FB61C4F9AE02/PusZaI0z1iGZTls9nkbsqqUJ9CM.crl rsync://rpki.apnic.net/member_repository/A91DE4AC/3441D2D06C6E11ECB233FB61C4F9AE02/PusZaI0z1iGZTls9nkbsqqUJ9CM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PusZaI0z1iGZTls9nkbsqqUJ9CM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 07 Jun 2025 00:36:47 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1053 (0x41d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DE4AC, serialNumber=3EEB19688D33D621994E5B3D9E46ECAAA509F423 Validity Not Before: May 31 00:36:48 2025 GMT Not After : Jun 7 00:36:48 2025 GMT Subject: CN=683a4f20-1a71 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c5:e0:3a:a8:fd:b6:57:8e:d3:ef:95:0c:d2:84: 65:75:9d:a0:f2:9f:eb:2b:83:38:fc:19:69:3f:e0: 88:f8:72:ff:f9:c7:97:26:b1:92:e8:30:19:95:14: 59:d0:06:b1:31:77:89:b9:0b:ec:b8:85:11:3b:8f: dd:c2:15:12:ae:c8:38:42:9d:d7:c8:8f:e6:5a:e3: 51:87:6c:3a:b7:c5:9d:43:16:de:c8:33:e1:9a:f2: c4:a2:13:d0:50:d2:2f:e4:53:18:fd:a7:48:71:32: 9a:24:5f:23:f8:d8:b6:ba:fb:73:5a:18:6f:25:fc: 34:9c:20:47:b6:14:d9:ed:d1:20:06:c1:46:72:f4: 4f:6a:76:b3:f7:73:9e:3d:c5:b2:ff:53:ba:cc:c9: 58:fa:a2:1b:62:15:2c:83:99:0f:57:c7:c3:57:d5: e7:08:82:ca:e0:95:a1:23:b1:3b:e5:fa:82:1e:5a: 6b:43:44:23:25:30:15:c7:f6:d0:3d:58:f6:5e:d6: 3e:4d:66:a5:b3:cf:94:44:3f:2d:7d:73:ef:35:ae: 99:eb:41:9c:f5:69:5c:45:d9:41:a6:59:3e:b3:15: cc:e8:2e:5e:1b:03:06:60:6a:ba:56:fc:ca:20:d6: 9d:64:f7:d7:1e:af:82:99:15:2a:c7:8d:5c:82:fc: 91:37 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F9:84:41:34:03:3D:69:00:79:14:1C:AE:C4:C7:9F:7D:94:39:2E:CE X509v3 Authority Key Identifier: keyid:3E:EB:19:68:8D:33:D6:21:99:4E:5B:3D:9E:46:EC:AA:A5:09:F4:23 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91DE4AC/3441D2D06C6E11ECB233FB61C4F9AE02/PusZaI0z1iGZTls9nkbsqqUJ9CM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PusZaI0z1iGZTls9nkbsqqUJ9CM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DE4AC/3441D2D06C6E11ECB233FB61C4F9AE02/PusZaI0z1iGZTls9nkbsqqUJ9CM.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 5a:12:cf:17:9d:65:35:31:09:c2:9a:e0:bb:8d:98:ab:00:14: df:3a:29:ea:00:bb:4b:d3:08:73:83:e8:47:25:e3:3c:75:85: 16:9f:5e:b9:da:d2:19:a1:5e:87:bc:d3:a5:ba:b9:79:07:21: c8:e6:0f:43:61:20:c0:c5:29:1d:82:26:ea:49:e0:4b:ec:5a: 59:ab:a5:60:6d:18:9e:3c:fe:98:3e:2b:ad:80:75:32:36:b6: db:7d:c8:c2:fc:c6:7d:94:8d:8f:0d:6a:57:ee:ba:a6:d9:fd: ee:63:a9:37:03:3b:1b:51:8d:09:2c:de:26:c7:33:09:70:a9: cd:aa:f7:ca:0c:5b:b3:d1:76:55:7f:bf:c7:13:1e:60:c7:66: db:ad:c2:a7:3c:2c:5c:59:9d:2f:51:f6:2c:76:fd:98:ca:81: 42:2e:b3:61:f9:00:15:f4:87:3b:3c:cd:d6:85:6c:d0:f8:bc: 5c:a6:0f:aa:cc:53:ea:16:1b:17:f0:26:7a:c9:27:28:a7:8b: f0:b4:b9:55:91:c2:51:44:9b:90:d7:75:d2:f7:53:28:83:55: 5d:10:08:93:83:92:11:2f:c5:9d:08:b7:80:ae:fa:df:c1:cb: e2:c6:07:a3:f4:03:34:96:73:54:fd:a6:e4:64:b2:eb:8d:53: 9e:8c:b6:b1 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBB0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx REU0QUMxMTAvBgNVBAUTKDNFRUIxOTY4OEQzM0Q2MjE5OTRFNUIzRDlFNDZFQ0FB QTUwOUY0MjMwHhcNMjUwNTMxMDAzNjQ4WhcNMjUwNjA3MDAzNjQ4WjAYMRYwFAYD VQQDEw02ODNhNGYyMC0xYTcxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxeA6qP22V47T75UM0oRldZ2g8p/rK4M4/BlpP+CI+HL/+ceXJrGS6DAZlRRZ 0AaxMXeJuQvsuIURO4/dwhUSrsg4Qp3XyI/mWuNRh2w6t8WdQxbeyDPhmvLEohPQ UNIv5FMY/adIcTKaJF8j+Ni2uvtzWhhvJfw0nCBHthTZ7dEgBsFGcvRPanaz93Oe PcWy/1O6zMlY+qIbYhUsg5kPV8fDV9XnCILK4JWhI7E75fqCHlprQ0QjJTAVx/bQ PVj2XtY+TWals8+URD8tfXPvNa6Z60Gc9WlcRdlBplk+sxXM6C5eGwMGYGq6VvzK INadZPfXHq+CmRUqx41cgvyRNwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFPmEQTQD PWkAeRQcrsTHn32UOS7OMB8GA1UdIwQYMBaAFD7rGWiNM9YhmU5bPZ5G7KqlCfQj MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFERTRBQy8zNDQxRDJEMDZD NkUxMUVDQjIzM0ZCNjFDNEY5QUUwMi9QdXNaYUkwejFpR1pUbHM5bmtic3FxVUo5 Q00uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1B1c1phSTB6MWlHWlRsczlua2JzcXFVSjlDTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE RTRBQy8zNDQxRDJEMDZDNkUxMUVDQjIzM0ZCNjFDNEY5QUUwMi9QdXNaYUkwejFp R1pUbHM5bmtic3FxVUo5Q00ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBaEs8XnWU1MQnCmuC7jZirABTfOinqALtL0whzg+hHJeM8dYUWn165 2tIZoV6HvNOlurl5ByHI5g9DYSDAxSkdgibqSeBL7FpZq6VgbRiePP6YPiutgHUy NrbbfcjC/MZ9lI2PDWpX7rqm2f3uY6k3AzsbUY0JLN4mxzMJcKnNqvfKDFuz0XZV f7/HEx5gx2bbrcKnPCxcWZ0vUfYsdv2YyoFCLrNh+QAV9Ic7PM3WhWzQ+Lxcpg+q zFPqFhsX8CZ6yScop4vwtLlVkcJRRJuQ13XS91Mog1VdEAiTg5IRL8WdCLeArvrf wcvixgej9AM0lnNU/abkZLLrjVOejLax -----END CERTIFICATE-----Generated at Sat May 31 17:48:41 2025 by rpki-client