$ rpki-client -vvf rpki.apnic.net/member_repository/A91E0EF2/AB6B27F65EE211ECAFA64B44C4F9AE02/PV2GR6upu0BiXDxkPNg2fxUHgBo.mft File: PV2GR6upu0BiXDxkPNg2fxUHgBo.mft (raw, json) Hash identifier: t4yWk2jodjX47H5Xn0Se2MGYjJWGhCX4KScY8HRevD4= Subject key identifier: 9E:C7:FB:36:89:97:59:E4:81:B7:7C:8F:FF:5E:4E:BE:C5:A5:D2:C8 Authority key identifier: 3D:5D:86:47:AB:A9:BB:40:62:5C:3C:64:3C:D8:36:7F:15:07:80:1A Certificate issuer: /CN=A91E0EF2/serialNumber=3D5D8647ABA9BB40625C3C643CD8367F1507801A Certificate serial: 0459 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/PV2GR6upu0BiXDxkPNg2fxUHgBo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E0EF2/AB6B27F65EE211ECAFA64B44C4F9AE02/PV2GR6upu0BiXDxkPNg2fxUHgBo.mft Manifest number: 0453 Signing time: Mon 21 Jul 2025 00:28:53 +0000 Manifest this update: Mon 21 Jul 2025 00:28:52 +0000 Manifest next update: Mon 28 Jul 2025 00:28:52 +0000 Files and hashes: 1: PV2GR6upu0BiXDxkPNg2fxUHgBo.crl (hash: on3egQaveQxa38O5w7vC9lE0Xld1iBTh4hvW2xAyQFU=) 2: CA7DCCFE5EE511ECA6B8CA48C4F9AE02.roa (hash: mDuBvAb87vc0xqlLuEIwzuSg0BaaCa9nDXGB49E/55o=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E0EF2/AB6B27F65EE211ECAFA64B44C4F9AE02/PV2GR6upu0BiXDxkPNg2fxUHgBo.crl rsync://rpki.apnic.net/member_repository/A91E0EF2/AB6B27F65EE211ECAFA64B44C4F9AE02/PV2GR6upu0BiXDxkPNg2fxUHgBo.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/PV2GR6upu0BiXDxkPNg2fxUHgBo.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 28 Jul 2025 00:28:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1113 (0x459) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E0EF2, serialNumber=3D5D8647ABA9BB40625C3C643CD8367F1507801A Validity Not Before: Jul 21 00:28:52 2025 GMT Not After : Jul 28 00:28:52 2025 GMT Subject: CN=687d89c4-bd87 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d2:a2:35:0f:45:08:d0:f0:3a:25:95:a8:0d:83: 83:5c:01:c1:6e:3d:5c:29:22:7b:b2:dc:d6:6b:3d: 75:41:74:4e:71:6f:27:10:99:03:4f:f4:b0:90:17: c8:fa:4a:42:de:16:69:88:90:4d:ba:27:9e:25:4c: c2:0e:a0:76:2c:66:6c:aa:18:84:23:64:9b:5f:14: 8f:b6:20:65:38:f7:0b:25:eb:20:e4:ee:48:f0:15: be:31:33:eb:26:56:6c:a1:ce:41:8c:43:b1:42:d5: c7:90:5f:eb:26:e9:ff:2d:6f:d2:d5:b6:64:21:1d: 78:45:64:79:0e:92:cf:34:53:c2:67:da:11:e7:8e: 14:5d:7c:df:6c:02:e5:e7:34:cd:3f:59:20:9e:21: 0d:2f:ee:64:b4:d2:a2:f7:34:bc:22:58:c4:78:bb: 88:93:76:9e:58:2f:0f:5e:c0:4e:75:cc:6c:34:0e: d5:7f:70:5c:0a:d4:a1:d0:89:76:4e:2f:54:82:80: f4:15:c8:d5:57:06:6d:91:52:62:9d:46:7c:38:40: 18:a8:67:44:30:c9:01:4c:88:91:7a:bc:fb:c7:c0: ce:dd:bd:a7:ae:f4:9a:4a:5f:cb:8a:e5:f7:64:d1: f2:76:c7:d8:4e:52:7c:a6:30:49:62:5f:11:34:c6: ce:bd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9E:C7:FB:36:89:97:59:E4:81:B7:7C:8F:FF:5E:4E:BE:C5:A5:D2:C8 X509v3 Authority Key Identifier: keyid:3D:5D:86:47:AB:A9:BB:40:62:5C:3C:64:3C:D8:36:7F:15:07:80:1A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E0EF2/AB6B27F65EE211ECAFA64B44C4F9AE02/PV2GR6upu0BiXDxkPNg2fxUHgBo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/PV2GR6upu0BiXDxkPNg2fxUHgBo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E0EF2/AB6B27F65EE211ECAFA64B44C4F9AE02/PV2GR6upu0BiXDxkPNg2fxUHgBo.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 87:b1:29:75:0b:47:27:73:40:f7:df:45:03:af:93:05:03:27: e9:8c:1f:bb:e2:6c:03:ef:da:b5:ad:eb:0c:be:e9:a2:6f:a3: 61:3e:2b:c6:f1:e8:48:f8:ae:7e:11:a2:44:4d:cd:9e:a2:7b: ca:46:3f:dc:d1:2b:71:56:36:67:03:2b:32:20:22:9e:75:16: a9:ff:06:15:cf:04:ba:eb:30:35:c8:ff:2a:e5:5b:fc:e3:5f: d6:50:5b:72:75:91:b6:c4:aa:ed:cd:12:8f:dc:e2:64:dd:de: 8b:10:6d:94:1b:44:cd:8f:08:e8:24:4c:95:de:8d:e6:a9:36: 11:18:79:e4:99:72:71:45:e2:4d:d1:50:ac:50:ba:50:a8:e7: c4:6c:38:1a:7a:3b:b6:a0:dd:56:d4:a2:85:05:1a:96:94:6b: 57:9f:88:d5:70:f2:c1:99:51:6e:21:01:42:7d:d7:fe:84:b1: 59:a3:a7:34:63:9a:f8:5f:0e:0a:94:26:dc:1c:d6:bd:a7:f3: d9:4b:8d:90:4f:36:1e:cb:e8:b2:d5:63:40:a1:74:3c:18:b9: 65:24:8c:ae:53:3f:f2:f3:e8:cd:3e:b2:82:b9:81:43:44:4d: 13:a0:d2:ed:49:15:5f:e7:c5:10:70:16:07:2b:b7:46:bb:c3: ae:35:3a:6b -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBFkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTBFRjIxMTAvBgNVBAUTKDNENUQ4NjQ3QUJBOUJCNDA2MjVDM0M2NDNDRDgzNjdG MTUwNzgwMUEwHhcNMjUwNzIxMDAyODUyWhcNMjUwNzI4MDAyODUyWjAYMRYwFAYD VQQDEw02ODdkODljNC1iZDg3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0qI1D0UI0PA6JZWoDYODXAHBbj1cKSJ7stzWaz11QXROcW8nEJkDT/SwkBfI +kpC3hZpiJBNuieeJUzCDqB2LGZsqhiEI2SbXxSPtiBlOPcLJesg5O5I8BW+MTPr JlZsoc5BjEOxQtXHkF/rJun/LW/S1bZkIR14RWR5DpLPNFPCZ9oR544UXXzfbALl 5zTNP1kgniENL+5ktNKi9zS8IljEeLuIk3aeWC8PXsBOdcxsNA7Vf3BcCtSh0Il2 Ti9UgoD0FcjVVwZtkVJinUZ8OEAYqGdEMMkBTIiRerz7x8DO3b2nrvSaSl/LiuX3 ZNHydsfYTlJ8pjBJYl8RNMbOvQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJ7H+zaJ l1nkgbd8j/9eTr7FpdLIMB8GA1UdIwQYMBaAFD1dhkerqbtAYlw8ZDzYNn8VB4Aa MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFMEVGMi9BQjZCMjdGNjVF RTIxMUVDQUZBNjRCNDRDNEY5QUUwMi9QVjJHUjZ1cHUwQmlYRHhrUE5nMmZ4VUhn Qm8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL1BWMkdSNnVwdTBCaVhEeGtQTmcyZnhVSGdCby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF MEVGMi9BQjZCMjdGNjVFRTIxMUVDQUZBNjRCNDRDNEY5QUUwMi9QVjJHUjZ1cHUw QmlYRHhrUE5nMmZ4VUhnQm8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCHsSl1C0cnc0D330UDr5MFAyfpjB+74mwD79q1resMvumib6NhPivG 8ehI+K5+EaJETc2eonvKRj/c0StxVjZnAysyICKedRap/wYVzwS66zA1yP8q5Vv8 41/WUFtydZG2xKrtzRKP3OJk3d6LEG2UG0TNjwjoJEyV3o3mqTYRGHnkmXJxReJN 0VCsULpQqOfEbDgaeju2oN1W1KKFBRqWlGtXn4jVcPLBmVFuIQFCfdf+hLFZo6c0 Y5r4Xw4KlCbcHNa9p/PZS42QTzYey+iy1WNAoXQ8GLllJIyuUz/y8+jNPrKCuYFD RE0ToNLtSRVf58UQcBYHK7dGu8OuNTpr -----END CERTIFICATE-----Generated at Mon Jul 21 12:47:13 2025 by rpki-client