$ rpki-client -vvf rpki.apnic.net/member_repository/A91E3BB3/95AEA9E8CBE411EA806A4A75C4F9AE02/PN9D1xf8WEnyOpTimncrKKXXAeM.mft File: PN9D1xf8WEnyOpTimncrKKXXAeM.mft (raw, json) Hash identifier: /S0xGNaq1YE3/InfEKYr5NXDUzG+pJ7dMSe36tttgGI= Subject key identifier: 2B:D7:88:F0:EC:1D:3C:D9:82:39:DE:81:79:5B:AA:DB:23:85:36:6E Authority key identifier: 3C:DF:43:D7:17:FC:58:49:F2:3A:94:E2:9A:77:2B:28:A5:D7:01:E3 Certificate issuer: /CN=A91E3BB3/serialNumber=3CDF43D717FC5849F23A94E29A772B28A5D701E3 Certificate serial: 084E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PN9D1xf8WEnyOpTimncrKKXXAeM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E3BB3/95AEA9E8CBE411EA806A4A75C4F9AE02/PN9D1xf8WEnyOpTimncrKKXXAeM.mft Manifest number: 0846 Signing time: Fri 30 May 2025 20:58:15 +0000 Manifest this update: Fri 30 May 2025 20:58:15 +0000 Manifest next update: Fri 06 Jun 2025 20:58:15 +0000 Files and hashes: 1: PN9D1xf8WEnyOpTimncrKKXXAeM.crl (hash: xEQzdU/+yoNDSW1jXGcbaRHGzphRYbha9FZx/ZduqCc=) 2: D0CF108ED85111EF9DC0826CC4F9AE02.roa (hash: zvHITej7x6G5n4QCQAElY7CsJ+bvYQTRcFwTwkacxFI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E3BB3/95AEA9E8CBE411EA806A4A75C4F9AE02/PN9D1xf8WEnyOpTimncrKKXXAeM.crl rsync://rpki.apnic.net/member_repository/A91E3BB3/95AEA9E8CBE411EA806A4A75C4F9AE02/PN9D1xf8WEnyOpTimncrKKXXAeM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PN9D1xf8WEnyOpTimncrKKXXAeM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 06 Jun 2025 20:58:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2126 (0x84e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E3BB3, serialNumber=3CDF43D717FC5849F23A94E29A772B28A5D701E3 Validity Not Before: May 30 20:58:15 2025 GMT Not After : Jun 6 20:58:15 2025 GMT Subject: CN=683a1be7-5f51 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e2:50:c1:b1:81:43:2b:26:96:07:01:cd:8d:e6: be:1e:c0:7d:71:d7:90:c9:7f:da:0d:ae:ce:93:e3: e4:fe:fe:08:4b:0a:ee:24:84:91:21:e9:ca:60:4d: f8:61:22:a0:c4:12:b1:e7:58:43:a2:80:3b:f1:c1: 10:7c:57:71:3d:84:ae:40:4a:ef:51:19:c6:9a:02: 2d:f4:35:22:b8:52:48:5d:69:37:f6:91:a3:18:96: e5:aa:09:18:61:b3:06:0f:fc:d7:4f:ab:fd:1e:24: 37:af:41:31:64:5a:bc:b4:82:98:f9:3e:ec:1b:f6: 0c:a8:9f:d7:a5:f7:e6:d7:e4:bc:61:92:03:e9:58: ae:b8:61:ac:6c:ca:7c:21:ee:7f:34:43:38:5c:00: 81:e3:60:6d:68:33:69:f3:cb:46:2e:0c:1a:9f:0e: 03:bd:cf:b5:0c:c9:2b:63:08:90:bb:be:c4:5b:36: b4:ad:5f:07:2c:27:c3:3f:f0:e1:4b:68:04:38:83: a4:7f:c4:8d:36:53:d5:40:05:8c:b8:c5:88:16:54: 97:b2:18:ab:71:f6:2b:d7:46:f2:34:fa:bb:06:ba: 17:05:9f:37:94:4b:11:39:e1:86:a2:10:ef:7e:54: 03:f9:00:23:3d:dc:82:33:f9:d2:23:ed:9f:d4:f1: 26:dd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2B:D7:88:F0:EC:1D:3C:D9:82:39:DE:81:79:5B:AA:DB:23:85:36:6E X509v3 Authority Key Identifier: keyid:3C:DF:43:D7:17:FC:58:49:F2:3A:94:E2:9A:77:2B:28:A5:D7:01:E3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E3BB3/95AEA9E8CBE411EA806A4A75C4F9AE02/PN9D1xf8WEnyOpTimncrKKXXAeM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PN9D1xf8WEnyOpTimncrKKXXAeM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E3BB3/95AEA9E8CBE411EA806A4A75C4F9AE02/PN9D1xf8WEnyOpTimncrKKXXAeM.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 11:5c:be:15:c8:ad:08:f4:19:7f:35:21:2f:cc:41:59:d2:70: 1f:33:8b:3c:a4:8f:bc:74:2d:db:d2:08:9e:3a:e7:81:d2:b9: a6:82:89:1d:02:e2:17:77:af:90:ce:d9:8f:2d:0c:85:66:d7: 6e:98:b0:f2:8d:47:a5:ac:0a:e6:49:e9:c3:ec:0b:db:d8:2e: f1:69:3a:d4:7c:7e:2b:26:e2:83:fe:6f:ca:e8:90:f4:10:33: 0a:00:67:eb:91:ff:ac:b0:8b:40:55:57:63:3f:5b:ea:5c:41: 4b:22:c4:7e:df:56:90:31:66:cc:0f:c0:51:63:c7:32:53:c2: 94:9e:27:7f:90:cf:e1:fe:38:75:6e:e7:ea:45:b3:59:f4:07: 76:46:10:11:3f:58:79:cb:5c:db:55:c0:f3:41:06:d1:c5:d6: 30:3d:5f:83:4e:13:b4:f2:82:ff:a2:5b:93:47:69:1a:20:2c: ce:b6:27:db:bc:14:dd:5d:30:d6:27:83:93:5e:01:d0:c4:97: 8c:93:35:b1:c0:33:e2:dd:fb:8f:13:4a:7d:bf:75:26:fe:01: e6:90:19:2d:d2:41:f2:f8:1a:3d:c2:55:31:1b:9b:bc:d4:02: 88:f6:55:6a:76:9a:b4:d5:a9:a8:de:36:4c:55:c8:98:d1:c9: fb:f3:ba:8b -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCE4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTNCQjMxMTAvBgNVBAUTKDNDREY0M0Q3MTdGQzU4NDlGMjNBOTRFMjlBNzcyQjI4 QTVENzAxRTMwHhcNMjUwNTMwMjA1ODE1WhcNMjUwNjA2MjA1ODE1WjAYMRYwFAYD VQQDEw02ODNhMWJlNy01ZjUxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA4lDBsYFDKyaWBwHNjea+HsB9cdeQyX/aDa7Ok+Pk/v4ISwruJISRIenKYE34 YSKgxBKx51hDooA78cEQfFdxPYSuQErvURnGmgIt9DUiuFJIXWk39pGjGJblqgkY YbMGD/zXT6v9HiQ3r0ExZFq8tIKY+T7sG/YMqJ/Xpffm1+S8YZID6ViuuGGsbMp8 Ie5/NEM4XACB42BtaDNp88tGLgwanw4Dvc+1DMkrYwiQu77EWza0rV8HLCfDP/Dh S2gEOIOkf8SNNlPVQAWMuMWIFlSXshircfYr10byNPq7BroXBZ83lEsROeGGohDv flQD+QAjPdyCM/nSI+2f1PEm3QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFCvXiPDs HTzZgjnegXlbqtsjhTZuMB8GA1UdIwQYMBaAFDzfQ9cX/FhJ8jqU4pp3Kyil1wHj MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFM0JCMy85NUFFQTlFOENC RTQxMUVBODA2QTRBNzVDNEY5QUUwMi9QTjlEMXhmOFdFbnlPcFRpbW5jcktLWFhB ZU0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1BOOUQxeGY4V0VueU9wVGltbmNyS0tYWEFlTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF M0JCMy85NUFFQTlFOENCRTQxMUVBODA2QTRBNzVDNEY5QUUwMi9QTjlEMXhmOFdF bnlPcFRpbW5jcktLWFhBZU0ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQARXL4VyK0I9Bl/NSEvzEFZ0nAfM4s8pI+8dC3b0gieOueB0rmmgokd AuIXd6+QztmPLQyFZtdumLDyjUelrArmSenD7Avb2C7xaTrUfH4rJuKD/m/K6JD0 EDMKAGfrkf+ssItAVVdjP1vqXEFLIsR+31aQMWbMD8BRY8cyU8KUnid/kM/h/jh1 bufqRbNZ9Ad2RhARP1h5y1zbVcDzQQbRxdYwPV+DThO08oL/oluTR2kaICzOtifb vBTdXTDWJ4OTXgHQxJeMkzWxwDPi3fuPE0p9v3Um/gHmkBkt0kHy+Bo9wlUxG5u8 1AKI9lVqdpq01amo3jZMVciY0cn787qL -----END CERTIFICATE-----Generated at Sat May 31 17:53:11 2025 by rpki-client