$ rpki-client -vvf rpki.apnic.net/member_repository/A91F823E/7D69A83CD5B111EC9351E620C4F9AE02/PurfFFrim0gkCj-6OvvZSajxU10.mft File: PurfFFrim0gkCj-6OvvZSajxU10.mft (raw, json) Hash identifier: I4WWMI8ZNG6s4hW7K0hL9H9M0/jSUkNmNSgEHGvqW4Y= Subject key identifier: 91:85:96:D1:57:EB:D7:2F:C2:1E:7C:CD:46:92:E8:13:23:07:64:C7 Authority key identifier: 3E:EA:DF:14:5A:E2:9B:48:24:0A:3F:BA:3A:FB:D9:49:A8:F1:53:5D Certificate issuer: /CN=A91F823E/serialNumber=3EEADF145AE29B48240A3FBA3AFBD949A8F1535D Certificate serial: 0309 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PurfFFrim0gkCj-6OvvZSajxU10.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F823E/7D69A83CD5B111EC9351E620C4F9AE02/PurfFFrim0gkCj-6OvvZSajxU10.mft Manifest number: 0305 Signing time: Sat 31 May 2025 01:25:50 +0000 Manifest this update: Sat 31 May 2025 01:25:50 +0000 Manifest next update: Sat 07 Jun 2025 01:25:50 +0000 Files and hashes: 1: PurfFFrim0gkCj-6OvvZSajxU10.crl (hash: 2SjSW6vuHZarOlkBvAKnS4CY1mOfyA90ERMTT/8ubyI=) 2: B3481ED4D5B611ECA61EEC28C4F9AE02.roa (hash: 7bYPkVMZrrnunuEV97KsBcLOn5jOLNiIR6VQXBJQwkA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F823E/7D69A83CD5B111EC9351E620C4F9AE02/PurfFFrim0gkCj-6OvvZSajxU10.crl rsync://rpki.apnic.net/member_repository/A91F823E/7D69A83CD5B111EC9351E620C4F9AE02/PurfFFrim0gkCj-6OvvZSajxU10.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PurfFFrim0gkCj-6OvvZSajxU10.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 07 Jun 2025 01:25:49 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 777 (0x309) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F823E, serialNumber=3EEADF145AE29B48240A3FBA3AFBD949A8F1535D Validity Not Before: May 31 01:25:50 2025 GMT Not After : Jun 7 01:25:50 2025 GMT Subject: CN=683a5a9e-7b26 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b3:c7:40:41:49:13:a0:5f:3d:b6:12:38:9e:4c: ef:c6:7c:47:3d:ee:a1:58:d5:ac:9d:a1:3b:06:b9: ea:08:8f:6b:48:40:8b:7b:db:5e:4d:62:bc:b4:e1: 3c:10:99:b5:fb:c1:ff:c7:65:03:d8:7e:3f:8a:f9: ab:ff:58:86:5c:78:9d:b1:7b:b6:34:7a:fa:7e:19: 54:02:6e:49:9e:a3:5e:02:df:ff:82:07:d0:17:84: 4e:f2:4d:ba:cc:a5:6a:b7:1e:e3:03:4a:58:48:69: ed:60:87:d9:6e:e8:97:3e:9c:e5:f0:1e:7b:5d:37: 3b:d6:c4:d5:e4:1e:45:37:6c:18:01:43:83:1d:ec: 05:0e:45:ac:77:17:44:a5:b9:60:6a:30:77:8a:7d: 24:8e:18:40:73:d0:c2:1c:ff:34:f0:97:93:29:25: b7:3a:b1:74:e8:11:b5:09:96:44:3a:41:5c:c9:8c: 6d:49:d5:eb:ff:96:c2:41:69:51:a2:62:b8:e9:f7: b1:29:ab:72:45:a2:aa:16:40:ce:16:03:d7:0d:1f: d1:49:ab:4a:a1:f5:04:63:53:8d:7d:54:9a:56:76: a0:e6:f2:0c:ea:5c:d0:df:0d:62:91:a3:0e:78:fd: e7:2e:f0:d5:3b:50:e0:6a:af:7f:9a:00:e7:fc:20: fd:91 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 91:85:96:D1:57:EB:D7:2F:C2:1E:7C:CD:46:92:E8:13:23:07:64:C7 X509v3 Authority Key Identifier: keyid:3E:EA:DF:14:5A:E2:9B:48:24:0A:3F:BA:3A:FB:D9:49:A8:F1:53:5D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F823E/7D69A83CD5B111EC9351E620C4F9AE02/PurfFFrim0gkCj-6OvvZSajxU10.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PurfFFrim0gkCj-6OvvZSajxU10.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F823E/7D69A83CD5B111EC9351E620C4F9AE02/PurfFFrim0gkCj-6OvvZSajxU10.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 1f:49:09:5c:3a:5a:60:67:06:a5:88:22:b3:8e:49:90:ea:cd: 99:bf:05:b5:a6:f1:26:60:4e:59:a4:f7:be:80:a8:c8:4a:6e: d5:50:b7:d0:0d:ca:b6:f0:bd:aa:b7:6a:3e:60:a3:86:d2:54: b7:5b:f1:59:9c:f3:6f:7f:ba:02:94:4c:10:e8:55:f6:55:67: 8b:d3:a9:17:b4:4e:0d:47:63:07:cc:67:40:33:6f:13:dd:1a: 28:4e:6e:5e:d6:ce:58:a5:c9:fa:8a:67:cd:ca:78:59:50:f1: f1:b4:da:13:e7:96:87:f6:a9:3b:1b:b2:0d:f6:1d:30:6e:df: 0b:98:de:d4:f8:35:6b:bd:22:a9:c8:29:74:4d:9f:0d:72:23: fb:44:a2:b3:4f:a6:b5:87:3d:43:1a:e6:db:a6:4e:3f:35:bd: 04:34:32:1f:cf:e7:2c:56:1f:b2:b2:82:12:c2:e5:2f:a8:9d: d5:72:2b:f2:a1:80:ca:17:f2:c1:35:f9:af:ac:52:c4:78:68: 22:95:19:43:5e:fc:94:56:4b:4b:02:d5:94:0d:87:69:a3:e4: e8:8c:99:59:a7:b2:84:83:46:ca:ae:06:30:83:bf:7b:d5:8c: 27:b4:4c:b2:6b:4f:26:23:f1:ff:25:56:52:69:55:82:c9:f7: 85:ca:ed:ac -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAwkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjgyM0UxMTAvBgNVBAUTKDNFRUFERjE0NUFFMjlCNDgyNDBBM0ZCQTNBRkJEOTQ5 QThGMTUzNUQwHhcNMjUwNTMxMDEyNTUwWhcNMjUwNjA3MDEyNTUwWjAYMRYwFAYD VQQDEw02ODNhNWE5ZS03YjI2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAs8dAQUkToF89thI4nkzvxnxHPe6hWNWsnaE7BrnqCI9rSECLe9teTWK8tOE8 EJm1+8H/x2UD2H4/ivmr/1iGXHidsXu2NHr6fhlUAm5JnqNeAt//ggfQF4RO8k26 zKVqtx7jA0pYSGntYIfZbuiXPpzl8B57XTc71sTV5B5FN2wYAUODHewFDkWsdxdE pblgajB3in0kjhhAc9DCHP808JeTKSW3OrF06BG1CZZEOkFcyYxtSdXr/5bCQWlR omK46fexKatyRaKqFkDOFgPXDR/RSatKofUEY1ONfVSaVnag5vIM6lzQ3w1ikaMO eP3nLvDVO1Dgaq9/mgDn/CD9kQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJGFltFX 69cvwh58zUaS6BMjB2THMB8GA1UdIwQYMBaAFD7q3xRa4ptIJAo/ujr72Umo8VNd MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGODIzRS83RDY5QTgzQ0Q1 QjExMUVDOTM1MUU2MjBDNEY5QUUwMi9QdXJmRkZyaW0wZ2tDai02T3Z2WlNhanhV MTAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1B1cmZGRnJpbTBna0NqLTZPdnZaU2FqeFUxMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG ODIzRS83RDY5QTgzQ0Q1QjExMUVDOTM1MUU2MjBDNEY5QUUwMi9QdXJmRkZyaW0w Z2tDai02T3Z2WlNhanhVMTAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAfSQlcOlpgZwaliCKzjkmQ6s2ZvwW1pvEmYE5ZpPe+gKjISm7VULfQ Dcq28L2qt2o+YKOG0lS3W/FZnPNvf7oClEwQ6FX2VWeL06kXtE4NR2MHzGdAM28T 3RooTm5e1s5Ypcn6imfNynhZUPHxtNoT55aH9qk7G7IN9h0wbt8LmN7U+DVrvSKp yCl0TZ8NciP7RKKzT6a1hz1DGubbpk4/Nb0ENDIfz+csVh+ysoISwuUvqJ3Vcivy oYDKF/LBNfmvrFLEeGgilRlDXvyUVktLAtWUDYdpo+TojJlZp7KEg0bKrgYwg797 1YwntEyya08mI/H/JVZSaVWCyfeFyu2s -----END CERTIFICATE-----Generated at Sat May 31 17:45:03 2025 by rpki-client