$ rpki-client -vvf rpki.apnic.net/member_repository/A911C53D/84B58F668CFB11EB9DC62C3BC4F9AE02/pcdj6Klfa5qyQRNgHagVOhWRJu4.mft File: pcdj6Klfa5qyQRNgHagVOhWRJu4.mft (raw, json) Hash identifier: dwAz5qmQ2UDxQft17zG6EXcJHL8BeudQr44UGxIidkM= Subject key identifier: D3:5A:A4:AB:FB:BB:0B:94:A7:D4:C8:97:A6:30:64:FB:89:C2:D4:4F Authority key identifier: A5:C7:63:E8:A9:5F:6B:9A:B2:41:13:60:1D:A8:15:3A:15:91:26:EE Certificate issuer: /CN=A911C53D/serialNumber=A5C763E8A95F6B9AB24113601DA8153A159126EE Certificate serial: 0670 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pcdj6Klfa5qyQRNgHagVOhWRJu4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911C53D/84B58F668CFB11EB9DC62C3BC4F9AE02/pcdj6Klfa5qyQRNgHagVOhWRJu4.mft Manifest number: 065F Signing time: Sat 14 Jun 2025 22:17:32 +0000 Manifest this update: Sat 14 Jun 2025 22:17:31 +0000 Manifest next update: Sat 21 Jun 2025 22:17:31 +0000 Files and hashes: 1: pcdj6Klfa5qyQRNgHagVOhWRJu4.crl (hash: LtjmrY7nrhnGQNOQYhD2JIDVGIvwaEk3lDSvK1lqG0Q=) 2: 45FE96F6A5F611EFA16E4B2FC4F9AE02.roa (hash: QKxHtK6gPEt6tq1AwAFxqNPlRptJP4WLysqBYZDRn14=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911C53D/84B58F668CFB11EB9DC62C3BC4F9AE02/pcdj6Klfa5qyQRNgHagVOhWRJu4.crl rsync://rpki.apnic.net/member_repository/A911C53D/84B58F668CFB11EB9DC62C3BC4F9AE02/pcdj6Klfa5qyQRNgHagVOhWRJu4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pcdj6Klfa5qyQRNgHagVOhWRJu4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 21 Jun 2025 22:17:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1648 (0x670) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911C53D, serialNumber=A5C763E8A95F6B9AB24113601DA8153A159126EE Validity Not Before: Jun 14 22:17:31 2025 GMT Not After : Jun 21 22:17:31 2025 GMT Subject: CN=684df4fb-a906 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:59:d9:26:47:99:fc:0f:08:db:30:38:c1:3f: 17:38:dc:5c:04:00:a1:71:e2:79:3c:7e:31:85:6c: ae:99:85:be:bc:42:cd:b8:b4:ae:96:69:01:d0:99: 12:f8:11:b0:f4:1f:ba:a2:e4:87:8f:62:0c:cc:06: 94:fe:91:43:c7:db:8c:00:a1:1c:6d:0c:55:0c:b3: ac:c3:f8:db:b2:18:c8:f7:43:2c:99:9a:dd:de:92: 04:a9:0e:9d:08:9d:e6:fd:23:9b:2f:01:fd:79:5c: 53:c4:bf:29:de:fc:38:e0:ec:08:d0:87:54:3e:7d: f4:b3:50:1e:5f:8a:46:87:d5:26:b3:b3:4d:75:1e: 5f:3f:65:86:d6:8b:7f:ad:70:b0:77:bb:b6:b4:cf: 5f:7b:32:9e:b0:94:7b:8f:f4:bb:3f:f0:b4:8e:6f: 65:d4:4a:8b:6d:4b:d2:59:69:0f:96:49:ef:5c:c3: 59:f6:0d:44:a9:06:08:41:e7:a9:d4:ab:ef:a9:42: fd:5f:6f:74:27:1e:96:87:ff:f5:63:fc:a3:96:73: c6:e5:74:e0:64:43:0d:8a:75:dc:17:23:6d:f3:63: df:7e:f4:98:fc:fa:e7:fe:bb:a0:95:2c:36:13:d0: 02:d1:4e:f7:b3:30:e9:0d:57:21:42:bf:91:2d:5e: 70:cf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D3:5A:A4:AB:FB:BB:0B:94:A7:D4:C8:97:A6:30:64:FB:89:C2:D4:4F X509v3 Authority Key Identifier: keyid:A5:C7:63:E8:A9:5F:6B:9A:B2:41:13:60:1D:A8:15:3A:15:91:26:EE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911C53D/84B58F668CFB11EB9DC62C3BC4F9AE02/pcdj6Klfa5qyQRNgHagVOhWRJu4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pcdj6Klfa5qyQRNgHagVOhWRJu4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911C53D/84B58F668CFB11EB9DC62C3BC4F9AE02/pcdj6Klfa5qyQRNgHagVOhWRJu4.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 29:50:a4:b9:5a:9c:9d:22:db:af:60:a2:d7:cb:4d:84:f5:97: 96:57:fa:22:82:54:52:ae:4a:44:5c:54:a9:48:a0:e7:2c:16: c2:4f:92:77:f9:ab:12:be:01:ca:f0:76:f5:04:b9:75:53:92: e7:6a:5d:d8:73:53:20:27:b3:6b:dd:8e:22:53:aa:0e:fb:3a: b5:5b:f5:08:4a:dc:0c:17:47:9f:4d:57:92:e4:50:a8:29:f2: 79:13:92:77:b9:7c:dd:65:68:6a:fa:7c:de:7d:c1:48:a9:21: b7:7f:d1:f9:a7:53:97:37:45:da:19:ee:54:8f:fb:13:20:40: 0d:61:1f:c5:d9:a0:ba:2c:dc:18:86:a7:ae:a7:0c:60:e4:4f: dc:13:fc:55:b0:d3:14:6c:80:26:91:6f:0d:66:73:33:2d:28: 29:b3:44:97:42:e6:e6:bd:ec:b8:c1:b0:aa:f6:e7:ed:1c:ff: 01:d5:43:d6:c3:d9:27:18:57:73:71:a1:ee:7f:da:30:2f:4d: 04:24:3f:9d:d5:4b:19:35:02:6f:82:e5:a7:8d:43:f3:07:86: 3d:18:cd:bb:e7:10:c0:33:11:3d:d9:57:8d:5a:1b:7c:ac:e7: dc:5e:a3:a4:f4:32:88:92:3d:cb:f2:67:cd:cb:19:1c:70:e7: a7:70:83:f5 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBnAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MUM1M0QxMTAvBgNVBAUTKEE1Qzc2M0U4QTk1RjZCOUFCMjQxMTM2MDFEQTgxNTNB MTU5MTI2RUUwHhcNMjUwNjE0MjIxNzMxWhcNMjUwNjIxMjIxNzMxWjAYMRYwFAYD VQQDEw02ODRkZjRmYi1hOTA2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtFnZJkeZ/A8I2zA4wT8XONxcBAChceJ5PH4xhWyumYW+vELNuLSulmkB0JkS +BGw9B+6ouSHj2IMzAaU/pFDx9uMAKEcbQxVDLOsw/jbshjI90MsmZrd3pIEqQ6d CJ3m/SObLwH9eVxTxL8p3vw44OwI0IdUPn30s1AeX4pGh9Ums7NNdR5fP2WG1ot/ rXCwd7u2tM9fezKesJR7j/S7P/C0jm9l1EqLbUvSWWkPlknvXMNZ9g1EqQYIQeep 1KvvqUL9X290Jx6Wh//1Y/yjlnPG5XTgZEMNinXcFyNt82PffvSY/Prn/ruglSw2 E9AC0U73szDpDVchQr+RLV5wzwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFNNapKv7 uwuUp9TIl6YwZPuJwtRPMB8GA1UdIwQYMBaAFKXHY+ipX2uaskETYB2oFToVkSbu MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExQzUzRC84NEI1OEY2NjhD RkIxMUVCOURDNjJDM0JDNEY5QUUwMi9wY2RqNktsZmE1cXlRUk5nSGFnVk9oV1JK dTQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3BjZGo2S2xmYTVxeVFSTmdIYWdWT2hXUkp1NC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx QzUzRC84NEI1OEY2NjhDRkIxMUVCOURDNjJDM0JDNEY5QUUwMi9wY2RqNktsZmE1 cXlRUk5nSGFnVk9oV1JKdTQubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQApUKS5WpydItuvYKLXy02E9ZeWV/oiglRSrkpEXFSpSKDnLBbCT5J3 +asSvgHK8Hb1BLl1U5Lnal3Yc1MgJ7Nr3Y4iU6oO+zq1W/UIStwMF0efTVeS5FCo KfJ5E5J3uXzdZWhq+nzefcFIqSG3f9H5p1OXN0XaGe5Uj/sTIEANYR/F2aC6LNwY hqeupwxg5E/cE/xVsNMUbIAmkW8NZnMzLSgps0SXQubmvey4wbCq9uftHP8B1UPW w9knGFdzcaHuf9owL00EJD+d1UsZNQJvguWnjUPzB4Y9GM275xDAMxE92VeNWht8 rOfcXqOk9DKIkj3L8mfNyxkccOencIP1 -----END CERTIFICATE-----Generated at Sun Jun 15 09:31:26 2025 by rpki-client