$ rpki-client -vvf rpki.apnic.net/member_repository/A91E2F2C/FFB761FA967811EA840F0029C4F9AE02/PDml0ZGM9lqyVjMi8PXxQwmme48.mft File: PDml0ZGM9lqyVjMi8PXxQwmme48.mft (raw, json) Hash identifier: eAUV2N6tRL8Yf6x1uMX8cBzXYG2R0ezmT2gNbTMfuMc= Subject key identifier: 97:62:46:EA:5E:31:9E:6B:88:71:B1:5D:D6:CB:44:E8:9F:5A:82:01 Authority key identifier: 3C:39:A5:D1:91:8C:F6:5A:B2:56:33:22:F0:F5:F1:43:09:A6:7B:8F Certificate issuer: /CN=A91E2F2C/serialNumber=3C39A5D1918CF65AB2563322F0F5F14309A67B8F Certificate serial: 0984 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PDml0ZGM9lqyVjMi8PXxQwmme48.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E2F2C/FFB761FA967811EA840F0029C4F9AE02/PDml0ZGM9lqyVjMi8PXxQwmme48.mft Manifest number: 0973 Signing time: Fri 30 May 2025 21:02:38 +0000 Manifest this update: Fri 30 May 2025 21:02:38 +0000 Manifest next update: Fri 06 Jun 2025 21:02:38 +0000 Files and hashes: 1: PDml0ZGM9lqyVjMi8PXxQwmme48.crl (hash: sYpfuvhx+5iwUxNmzy8xMHJQxjP2k26/oV4SK3zJUZg=) 2: DE07328A778911ECBD9C7748C4F9AE02.roa (hash: dv7m/vWVCsxj8ZbnKigzGyA9Di8bR9HnPMOcVlR8lHI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E2F2C/FFB761FA967811EA840F0029C4F9AE02/PDml0ZGM9lqyVjMi8PXxQwmme48.crl rsync://rpki.apnic.net/member_repository/A91E2F2C/FFB761FA967811EA840F0029C4F9AE02/PDml0ZGM9lqyVjMi8PXxQwmme48.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PDml0ZGM9lqyVjMi8PXxQwmme48.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 06 Jun 2025 21:02:37 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2436 (0x984) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E2F2C, serialNumber=3C39A5D1918CF65AB2563322F0F5F14309A67B8F Validity Not Before: May 30 21:02:38 2025 GMT Not After : Jun 6 21:02:38 2025 GMT Subject: CN=683a1cee-fff8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:38:ac:29:45:0b:b8:22:bc:ec:8d:0d:ae:24: 76:e5:00:19:87:c6:d7:88:8e:bc:b9:57:d0:7c:a9: 3c:a9:07:1c:95:31:f3:82:32:c1:29:ca:61:d7:b5: c5:05:88:59:1b:66:54:cd:ce:da:ad:d8:32:fc:35: e3:9e:00:fc:31:0f:55:73:f2:07:0d:fb:51:6c:ba: 58:b9:95:5a:42:5d:5f:02:ed:5a:28:04:bc:c1:b8: 75:70:a0:d0:8a:2e:66:55:60:4d:63:26:b5:93:9f: e6:b0:00:5d:0d:d8:59:b6:c2:1c:61:88:02:0d:08: 77:05:3e:dc:3d:66:47:06:00:ad:ba:a8:69:b4:84: 92:5a:6c:26:d5:29:46:82:3f:8f:c8:2b:7a:0c:5e: 6c:60:38:73:73:c1:1f:fc:d1:ba:57:dc:0e:43:22: e7:6d:31:4a:88:4e:50:2b:50:23:e8:9c:9a:a1:f9: 73:4b:5f:84:ed:75:a3:c7:2a:3d:3a:8a:3e:72:af: 15:57:25:79:73:6d:84:5a:d5:81:4a:d6:84:94:48: 60:6f:21:53:9e:37:78:89:e2:a5:bf:fc:58:2d:dd: 48:46:80:25:a7:f4:b4:e5:8d:80:2b:80:75:94:22: 81:35:f5:87:2f:d3:97:db:fd:10:ab:eb:e9:bb:f7: 88:05 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 97:62:46:EA:5E:31:9E:6B:88:71:B1:5D:D6:CB:44:E8:9F:5A:82:01 X509v3 Authority Key Identifier: keyid:3C:39:A5:D1:91:8C:F6:5A:B2:56:33:22:F0:F5:F1:43:09:A6:7B:8F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E2F2C/FFB761FA967811EA840F0029C4F9AE02/PDml0ZGM9lqyVjMi8PXxQwmme48.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PDml0ZGM9lqyVjMi8PXxQwmme48.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E2F2C/FFB761FA967811EA840F0029C4F9AE02/PDml0ZGM9lqyVjMi8PXxQwmme48.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption aa:0c:37:8a:c8:b1:24:d8:0d:83:ff:7c:55:31:87:99:f7:e4: 08:ba:c1:11:00:ce:e3:d9:50:be:06:2d:8f:ae:42:55:7f:9d: 40:44:05:42:16:d8:41:ec:20:b5:8a:20:ae:e7:bb:fe:3a:60: 4c:84:72:d4:45:de:a7:77:b7:1e:6f:23:5a:d0:cb:0b:ba:10: 0a:cc:fc:83:76:ab:67:dc:a0:6c:d9:be:1b:b2:59:41:a1:bf: 86:1d:f9:39:a0:dc:80:4c:3e:76:8c:b1:be:b3:a1:44:63:ee: cb:fe:cb:5b:5d:20:e9:26:3f:95:be:27:1e:a5:4f:8f:49:f2: bb:61:56:4d:d5:07:fb:45:13:9f:e2:0a:57:90:b6:0c:5d:1c: 36:de:42:b6:e4:19:f4:5a:78:61:8e:65:48:7e:03:91:47:5f: eb:61:0d:7a:39:5b:14:c3:6c:8d:af:de:12:ba:97:15:fa:dc: b7:22:55:dc:f1:06:a2:f0:ff:d2:e6:d2:2a:c2:3a:e2:57:d0: bc:95:97:7d:02:9b:5f:a4:54:bd:ca:2f:98:6e:ee:26:26:4f: c3:43:ea:02:5d:ff:96:3b:b0:9b:1b:dd:bd:8e:ea:fc:a9:49: cc:1c:4d:1e:3d:95:20:b7:0f:b5:e5:74:10:aa:5f:8c:a3:0c: c1:dc:53:f5 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCYQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTJGMkMxMTAvBgNVBAUTKDNDMzlBNUQxOTE4Q0Y2NUFCMjU2MzMyMkYwRjVGMTQz MDlBNjdCOEYwHhcNMjUwNTMwMjEwMjM4WhcNMjUwNjA2MjEwMjM4WjAYMRYwFAYD VQQDEw02ODNhMWNlZS1mZmY4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtDisKUULuCK87I0NriR25QAZh8bXiI68uVfQfKk8qQcclTHzgjLBKcph17XF BYhZG2ZUzc7ardgy/DXjngD8MQ9Vc/IHDftRbLpYuZVaQl1fAu1aKAS8wbh1cKDQ ii5mVWBNYya1k5/msABdDdhZtsIcYYgCDQh3BT7cPWZHBgCtuqhptISSWmwm1SlG gj+PyCt6DF5sYDhzc8Ef/NG6V9wOQyLnbTFKiE5QK1Aj6JyaoflzS1+E7XWjxyo9 Ooo+cq8VVyV5c22EWtWBStaElEhgbyFTnjd4ieKlv/xYLd1IRoAlp/S05Y2AK4B1 lCKBNfWHL9OX2/0Qq+vpu/eIBQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJdiRupe MZ5riHGxXdbLROifWoIBMB8GA1UdIwQYMBaAFDw5pdGRjPZaslYzIvD18UMJpnuP MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFMkYyQy9GRkI3NjFGQTk2 NzgxMUVBODQwRjAwMjlDNEY5QUUwMi9QRG1sMFpHTTlscXlWak1pOFBYeFF3bW1l NDguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1BEbWwwWkdNOWxxeVZqTWk4UFh4UXdtbWU0OC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF MkYyQy9GRkI3NjFGQTk2NzgxMUVBODQwRjAwMjlDNEY5QUUwMi9QRG1sMFpHTTls cXlWak1pOFBYeFF3bW1lNDgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCqDDeKyLEk2A2D/3xVMYeZ9+QIusERAM7j2VC+Bi2PrkJVf51ARAVC FthB7CC1iiCu57v+OmBMhHLURd6nd7cebyNa0MsLuhAKzPyDdqtn3KBs2b4bsllB ob+GHfk5oNyATD52jLG+s6FEY+7L/stbXSDpJj+VvicepU+PSfK7YVZN1Qf7RROf 4gpXkLYMXRw23kK25Bn0WnhhjmVIfgORR1/rYQ16OVsUw2yNr94SupcV+ty3IlXc 8Qai8P/S5tIqwjriV9C8lZd9AptfpFS9yi+Ybu4mJk/DQ+oCXf+WO7CbG929jur8 qUnMHE0ePZUgtw+15XQQql+MowzB3FP1 -----END CERTIFICATE-----Generated at Sat May 31 17:44:06 2025 by rpki-client