$ rpki-client -vvf rpki.apnic.net/member_repository/A91E4668/7C9009AC97F111E9A2E51981C4F9AE02/PQVW0ZO8kqIep0f5WMaXqX7F1dY.mft File: PQVW0ZO8kqIep0f5WMaXqX7F1dY.mft (raw, json) Hash identifier: c5SG4r9gzCyAioUUlaOxxrOFL2wVDyPZZL81IEsaEQI= Subject key identifier: 92:EB:4B:FA:2C:56:BF:DE:D0:40:D9:EC:32:0A:4D:61:7D:19:34:D3 Authority key identifier: 3D:05:56:D1:93:BC:92:A2:1E:A7:47:F9:58:C6:97:A9:7E:C5:D5:D6 Certificate issuer: /CN=A91E4668/serialNumber=3D0556D193BC92A21EA747F958C697A97EC5D5D6 Certificate serial: 0E81 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PQVW0ZO8kqIep0f5WMaXqX7F1dY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E4668/7C9009AC97F111E9A2E51981C4F9AE02/PQVW0ZO8kqIep0f5WMaXqX7F1dY.mft Manifest number: 0E75 Signing time: Fri 30 May 2025 17:53:35 +0000 Manifest this update: Fri 30 May 2025 17:53:35 +0000 Manifest next update: Fri 06 Jun 2025 17:53:35 +0000 Files and hashes: 1: PQVW0ZO8kqIep0f5WMaXqX7F1dY.crl (hash: QgZ58pJJE/PzNz7CS0hWULJ7xlEe3e3XH4VFqco8voQ=) 2: A5B7D874091F11EFA6EDE141C4F9AE02.roa (hash: vN4eTkgE+NqzrGCF55MmLQiQ1U4uCoJcvi6VZO9X/KY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E4668/7C9009AC97F111E9A2E51981C4F9AE02/PQVW0ZO8kqIep0f5WMaXqX7F1dY.crl rsync://rpki.apnic.net/member_repository/A91E4668/7C9009AC97F111E9A2E51981C4F9AE02/PQVW0ZO8kqIep0f5WMaXqX7F1dY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PQVW0ZO8kqIep0f5WMaXqX7F1dY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 06 Jun 2025 17:53:34 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3713 (0xe81) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E4668, serialNumber=3D0556D193BC92A21EA747F958C697A97EC5D5D6 Validity Not Before: May 30 17:53:35 2025 GMT Not After : Jun 6 17:53:35 2025 GMT Subject: CN=6839f09f-f785 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:8c:a6:7d:af:0c:ef:99:2a:0c:0e:e0:50:21: 73:84:da:65:47:02:d9:d9:f7:55:0e:ce:8e:53:ac: e2:82:49:0e:11:40:d3:19:21:bb:4e:4a:04:2d:53: 0b:59:b9:99:ba:fb:4f:d6:db:89:01:07:0b:01:ac: 8a:bb:11:b6:cd:eb:ac:2e:ac:11:03:95:ad:52:79: 4f:54:11:65:6c:7a:df:9a:9e:d8:2f:a1:ac:ec:e7: d2:37:83:14:33:7f:6e:e3:4f:72:7f:12:92:15:4d: c9:a0:1b:06:91:c9:6b:2b:b3:fa:05:c8:53:22:f2: 64:d7:ed:c5:00:65:1a:7d:58:6e:71:90:6f:41:6f: 13:06:8a:8a:27:a1:c3:4f:3d:65:38:06:0a:08:51: a8:42:95:e8:78:13:5b:80:c0:54:2d:07:ec:aa:8b: c6:be:59:d6:18:2a:2c:2f:ac:cd:93:39:35:24:2f: 12:3e:52:45:3c:04:54:28:0c:df:92:3a:e5:3c:4c: ac:ae:58:b0:90:6f:99:7d:cc:15:de:3f:84:bd:fa: 24:59:f3:45:96:17:13:33:b6:b5:9e:47:8b:78:06: cd:71:ec:f9:c7:59:3b:08:f0:96:7c:e4:b5:e9:ce: 73:2c:e8:bb:39:21:ed:1f:ad:92:03:a0:72:09:67: 1f:2b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 92:EB:4B:FA:2C:56:BF:DE:D0:40:D9:EC:32:0A:4D:61:7D:19:34:D3 X509v3 Authority Key Identifier: keyid:3D:05:56:D1:93:BC:92:A2:1E:A7:47:F9:58:C6:97:A9:7E:C5:D5:D6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E4668/7C9009AC97F111E9A2E51981C4F9AE02/PQVW0ZO8kqIep0f5WMaXqX7F1dY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PQVW0ZO8kqIep0f5WMaXqX7F1dY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E4668/7C9009AC97F111E9A2E51981C4F9AE02/PQVW0ZO8kqIep0f5WMaXqX7F1dY.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 38:99:3a:e1:95:5c:58:8e:d8:84:bd:70:a4:2e:82:60:7d:a0: 70:25:01:82:bd:d2:35:8c:2c:4b:bb:9a:4e:c3:0d:ef:75:be: 3d:b5:7e:7c:1d:5f:e8:a8:99:6e:31:57:74:fd:a9:30:02:3c: 6f:39:78:05:66:9c:45:ee:06:ed:01:90:64:e9:3e:e8:da:88: a2:35:1d:17:65:49:22:6d:b4:77:14:c6:27:cf:7a:a5:92:17: 1c:d0:a0:bf:dd:0f:08:f2:73:6d:e4:34:21:34:3a:90:a2:50: b6:a0:1f:73:fa:1d:0e:00:44:22:45:25:d8:7a:c0:6e:bd:89: 79:1a:fe:aa:34:88:41:1c:cb:05:58:7f:48:ee:ae:61:d8:fc: 58:13:04:5c:41:f9:f3:9d:60:d4:74:18:a1:e0:ac:25:ec:ce: ae:14:cd:84:5d:02:6e:85:77:f9:c5:48:c5:df:06:3b:b7:39: e2:40:5d:73:49:54:1e:cd:1f:2f:42:7c:da:ee:55:33:d5:e8: 89:17:4a:e3:9b:9e:80:69:4c:d7:d4:3c:30:1c:58:98:01:8a: 8b:1d:78:fc:fe:92:cc:2a:39:ab:08:83:9f:51:29:7d:a5:01: 9b:6a:59:fa:f3:11:eb:07:b5:16:bb:26:0e:05:15:c2:dc:dd: 34:e9:47:29 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDoEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTQ2NjgxMTAvBgNVBAUTKDNEMDU1NkQxOTNCQzkyQTIxRUE3NDdGOTU4QzY5N0E5 N0VDNUQ1RDYwHhcNMjUwNTMwMTc1MzM1WhcNMjUwNjA2MTc1MzM1WjAYMRYwFAYD VQQDEw02ODM5ZjA5Zi1mNzg1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtYymfa8M75kqDA7gUCFzhNplRwLZ2fdVDs6OU6zigkkOEUDTGSG7TkoELVML WbmZuvtP1tuJAQcLAayKuxG2zeusLqwRA5WtUnlPVBFlbHrfmp7YL6Gs7OfSN4MU M39u409yfxKSFU3JoBsGkclrK7P6BchTIvJk1+3FAGUafVhucZBvQW8TBoqKJ6HD Tz1lOAYKCFGoQpXoeBNbgMBULQfsqovGvlnWGCosL6zNkzk1JC8SPlJFPARUKAzf kjrlPEysrliwkG+ZfcwV3j+EvfokWfNFlhcTM7a1nkeLeAbNcez5x1k7CPCWfOS1 6c5zLOi7OSHtH62SA6ByCWcfKwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJLrS/os Vr/e0EDZ7DIKTWF9GTTTMB8GA1UdIwQYMBaAFD0FVtGTvJKiHqdH+VjGl6l+xdXW MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFNDY2OC83QzkwMDlBQzk3 RjExMUU5QTJFNTE5ODFDNEY5QUUwMi9QUVZXMFpPOGtxSWVwMGY1V01hWHFYN0Yx ZFkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1BRVlcwWk84a3FJZXAwZjVXTWFYcVg3RjFkWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF NDY2OC83QzkwMDlBQzk3RjExMUU5QTJFNTE5ODFDNEY5QUUwMi9QUVZXMFpPOGtx SWVwMGY1V01hWHFYN0YxZFkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA4mTrhlVxYjtiEvXCkLoJgfaBwJQGCvdI1jCxLu5pOww3vdb49tX58 HV/oqJluMVd0/akwAjxvOXgFZpxF7gbtAZBk6T7o2oiiNR0XZUkibbR3FMYnz3ql khcc0KC/3Q8I8nNt5DQhNDqQolC2oB9z+h0OAEQiRSXYesBuvYl5Gv6qNIhBHMsF WH9I7q5h2PxYEwRcQfnznWDUdBih4Kwl7M6uFM2EXQJuhXf5xUjF3wY7tzniQF1z SVQezR8vQnza7lUz1eiJF0rjm56AaUzX1DwwHFiYAYqLHXj8/pLMKjmrCIOfUSl9 pQGbaln68xHrB7UWuyYOBRXC3N006Ucp -----END CERTIFICATE-----Generated at Sat May 31 17:36:05 2025 by rpki-client