$ rpki-client -vvf rpki.apnic.net/member_repository/A91E0EF2/AB6B27F65EE211ECAFA64B44C4F9AE02/PV2GR6upu0BiXDxkPNg2fxUHgBo.mft File: PV2GR6upu0BiXDxkPNg2fxUHgBo.mft (raw, json) Hash identifier: Uq8AHZCXduWSljmTE6LN00DEDT7Xyj93EFN9VscK1lI= Subject key identifier: 7D:37:BA:28:A0:73:88:31:04:44:41:9F:E0:A6:4A:00:E0:40:8C:D6 Authority key identifier: 3D:5D:86:47:AB:A9:BB:40:62:5C:3C:64:3C:D8:36:7F:15:07:80:1A Certificate issuer: /CN=A91E0EF2/serialNumber=3D5D8647ABA9BB40625C3C643CD8367F1507801A Certificate serial: 0440 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/PV2GR6upu0BiXDxkPNg2fxUHgBo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E0EF2/AB6B27F65EE211ECAFA64B44C4F9AE02/PV2GR6upu0BiXDxkPNg2fxUHgBo.mft Manifest number: 043A Signing time: Sun 01 Jun 2025 00:32:32 +0000 Manifest this update: Sun 01 Jun 2025 00:32:32 +0000 Manifest next update: Sun 08 Jun 2025 00:32:32 +0000 Files and hashes: 1: PV2GR6upu0BiXDxkPNg2fxUHgBo.crl (hash: f2lIGSH2c1sovhB2MaRRKn/NHGf2oVuHbVvDZlfilsQ=) 2: CA7DCCFE5EE511ECA6B8CA48C4F9AE02.roa (hash: mDuBvAb87vc0xqlLuEIwzuSg0BaaCa9nDXGB49E/55o=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E0EF2/AB6B27F65EE211ECAFA64B44C4F9AE02/PV2GR6upu0BiXDxkPNg2fxUHgBo.crl rsync://rpki.apnic.net/member_repository/A91E0EF2/AB6B27F65EE211ECAFA64B44C4F9AE02/PV2GR6upu0BiXDxkPNg2fxUHgBo.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/PV2GR6upu0BiXDxkPNg2fxUHgBo.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 08 Jun 2025 00:32:31 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1088 (0x440) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E0EF2, serialNumber=3D5D8647ABA9BB40625C3C643CD8367F1507801A Validity Not Before: Jun 1 00:32:32 2025 GMT Not After : Jun 8 00:32:32 2025 GMT Subject: CN=683b9fa0-6949 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c5:d4:ef:22:b0:73:ac:a4:e4:47:51:6d:6c:85: db:52:a8:30:af:03:21:cb:aa:f0:68:b3:f5:33:b6: b5:bb:e8:2f:06:0f:56:a1:d0:c8:3b:09:3e:cc:63: d9:82:a1:5d:98:6d:b7:df:64:73:86:0c:c2:b3:da: 68:83:be:a6:62:24:03:54:03:bb:6b:97:de:a0:ea: 9d:71:cd:f8:c4:27:4b:a2:83:e8:b3:8e:09:fe:a5: d5:1a:39:aa:d2:be:0d:7f:85:82:d5:41:f5:f6:5b: c8:6d:70:ac:3f:59:c8:93:71:26:42:a3:2d:86:2d: 0e:31:ec:cb:fa:d7:eb:9a:4b:6a:c0:e6:68:ae:37: f9:08:1c:be:8c:24:2a:ee:c5:f2:ec:39:21:8c:b2: 58:93:84:9f:11:b4:d6:bc:69:a3:88:13:d3:5e:ad: a1:29:30:75:c8:03:53:fc:04:4c:5e:52:79:5b:ab: 18:25:49:71:05:e4:78:79:41:5d:6e:35:dc:43:4a: 64:c0:76:fd:16:53:7c:11:2c:97:61:f1:cf:5c:35: 18:a5:08:dc:82:80:03:7b:65:cd:5e:d6:95:8e:fc: 19:e5:16:47:ae:2e:8f:98:79:fe:11:17:27:53:9d: 4f:89:a5:c0:b2:f0:83:32:8a:65:2d:f2:6a:94:c6: 35:83 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7D:37:BA:28:A0:73:88:31:04:44:41:9F:E0:A6:4A:00:E0:40:8C:D6 X509v3 Authority Key Identifier: keyid:3D:5D:86:47:AB:A9:BB:40:62:5C:3C:64:3C:D8:36:7F:15:07:80:1A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E0EF2/AB6B27F65EE211ECAFA64B44C4F9AE02/PV2GR6upu0BiXDxkPNg2fxUHgBo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/PV2GR6upu0BiXDxkPNg2fxUHgBo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E0EF2/AB6B27F65EE211ECAFA64B44C4F9AE02/PV2GR6upu0BiXDxkPNg2fxUHgBo.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 8a:66:5e:15:87:e9:16:aa:67:67:2f:9d:ee:75:d4:79:b7:84: db:a8:e5:30:5d:2e:64:2a:01:6a:af:77:84:35:3c:66:6e:98: fc:47:e7:86:ae:05:3b:06:75:29:00:c6:26:38:6f:8d:b5:7c: 36:18:93:1e:6e:35:6f:bf:df:1e:93:88:18:8c:29:87:9c:0f: 4c:f9:05:3c:a5:9b:fb:22:46:d3:f2:54:6a:a8:e4:5e:94:4d: 09:0e:1f:fc:dd:87:55:a5:2c:9f:06:d8:78:80:fb:be:bb:d9: fe:fe:07:60:83:1a:58:46:b0:5b:e0:23:78:54:f4:a3:cc:4c: 2d:3c:a3:98:0a:b6:c5:8f:d3:ec:16:ef:35:97:48:42:8c:fa: da:42:47:99:31:d8:e6:7a:00:29:5e:3e:3c:b1:49:f7:98:6b: f7:1b:4b:66:21:66:e2:d7:80:69:0b:e6:ed:2b:dc:c1:7d:78: 2b:60:da:b2:27:e5:13:4d:78:92:60:be:63:b7:53:3a:c5:2b: 9f:60:0d:32:38:66:35:c2:1a:d5:df:1b:97:de:76:be:81:91: 46:3f:b8:21:4c:27:5c:f0:81:31:11:47:bf:da:1c:a9:65:35: cf:6d:46:9a:08:6e:58:40:b7:0a:f3:b4:2d:1c:e2:96:86:28: 3f:7e:1e:88 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBEAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTBFRjIxMTAvBgNVBAUTKDNENUQ4NjQ3QUJBOUJCNDA2MjVDM0M2NDNDRDgzNjdG MTUwNzgwMUEwHhcNMjUwNjAxMDAzMjMyWhcNMjUwNjA4MDAzMjMyWjAYMRYwFAYD VQQDEw02ODNiOWZhMC02OTQ5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxdTvIrBzrKTkR1FtbIXbUqgwrwMhy6rwaLP1M7a1u+gvBg9WodDIOwk+zGPZ gqFdmG2332RzhgzCs9pog76mYiQDVAO7a5feoOqdcc34xCdLooPos44J/qXVGjmq 0r4Nf4WC1UH19lvIbXCsP1nIk3EmQqMthi0OMezL+tfrmktqwOZorjf5CBy+jCQq 7sXy7DkhjLJYk4SfEbTWvGmjiBPTXq2hKTB1yANT/ARMXlJ5W6sYJUlxBeR4eUFd bjXcQ0pkwHb9FlN8ESyXYfHPXDUYpQjcgoADe2XNXtaVjvwZ5RZHri6PmHn+ERcn U51PiaXAsvCDMoplLfJqlMY1gwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFH03uiig c4gxBERBn+CmSgDgQIzWMB8GA1UdIwQYMBaAFD1dhkerqbtAYlw8ZDzYNn8VB4Aa MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFMEVGMi9BQjZCMjdGNjVF RTIxMUVDQUZBNjRCNDRDNEY5QUUwMi9QVjJHUjZ1cHUwQmlYRHhrUE5nMmZ4VUhn Qm8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL1BWMkdSNnVwdTBCaVhEeGtQTmcyZnhVSGdCby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF MEVGMi9BQjZCMjdGNjVFRTIxMUVDQUZBNjRCNDRDNEY5QUUwMi9QVjJHUjZ1cHUw QmlYRHhrUE5nMmZ4VUhnQm8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCKZl4Vh+kWqmdnL53uddR5t4TbqOUwXS5kKgFqr3eENTxmbpj8R+eG rgU7BnUpAMYmOG+NtXw2GJMebjVvv98ek4gYjCmHnA9M+QU8pZv7IkbT8lRqqORe lE0JDh/83YdVpSyfBth4gPu+u9n+/gdggxpYRrBb4CN4VPSjzEwtPKOYCrbFj9Ps Fu81l0hCjPraQkeZMdjmegApXj48sUn3mGv3G0tmIWbi14BpC+btK9zBfXgrYNqy J+UTTXiSYL5jt1M6xSufYA0yOGY1whrV3xuX3na+gZFGP7ghTCdc8IExEUe/2hyp ZTXPbUaaCG5YQLcK87QtHOKWhig/fh6I -----END CERTIFICATE-----Generated at Mon Jun 2 20:12:50 2025 by rpki-client