$ rpki-client -vvf rpki.apnic.net/member_repository/A91A08FD/9F42EAD8C8AB11E9829D282FC4F9AE02/PB_di6MB3OPbPwvMJchpTOG83H0.mft File: PB_di6MB3OPbPwvMJchpTOG83H0.mft (raw, json) Hash identifier: 0fNl2U2qNzjVi7fIHZvAbXIdvKfYAC5I5QL4iLqHUWI= Subject key identifier: 8D:23:80:A8:77:DA:D6:11:D4:1F:94:57:52:12:0F:E0:01:BE:ED:FA Authority key identifier: 3C:1F:DD:8B:A3:01:DC:E3:DB:3F:0B:CC:25:C8:69:4C:E1:BC:DC:7D Certificate issuer: /CN=A91A08FD/serialNumber=3C1FDD8BA301DCE3DB3F0BCC25C8694CE1BCDC7D Certificate serial: 0D86 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PB_di6MB3OPbPwvMJchpTOG83H0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A08FD/9F42EAD8C8AB11E9829D282FC4F9AE02/PB_di6MB3OPbPwvMJchpTOG83H0.mft Manifest number: 0D7D Signing time: Thu 12 Jun 2025 17:49:27 +0000 Manifest this update: Thu 12 Jun 2025 17:49:27 +0000 Manifest next update: Thu 19 Jun 2025 17:49:27 +0000 Files and hashes: 1: PB_di6MB3OPbPwvMJchpTOG83H0.crl (hash: LKZmhM/+1HvzxVtGeNRaA1xVwlnnnWuCnmoYMPlT42Y=) 2: 3802A98EC8AC11E9877DCE2FC4F9AE02.roa (hash: pTMoVBZCsEARFbs1aGExyarMu+r7tLUk6ACYjZUvCyg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A08FD/9F42EAD8C8AB11E9829D282FC4F9AE02/PB_di6MB3OPbPwvMJchpTOG83H0.crl rsync://rpki.apnic.net/member_repository/A91A08FD/9F42EAD8C8AB11E9829D282FC4F9AE02/PB_di6MB3OPbPwvMJchpTOG83H0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PB_di6MB3OPbPwvMJchpTOG83H0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 19 Jun 2025 17:49:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3462 (0xd86) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A08FD, serialNumber=3C1FDD8BA301DCE3DB3F0BCC25C8694CE1BCDC7D Validity Not Before: Jun 12 17:49:27 2025 GMT Not After : Jun 19 17:49:27 2025 GMT Subject: CN=684b1327-4144 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d3:95:82:b3:50:18:20:32:80:05:5f:b2:63:0e: 0d:5b:8b:9d:04:8e:3b:28:f6:2e:07:2b:e5:08:0b: 91:79:3c:32:1b:4a:c9:8d:0e:af:fb:43:09:dc:12: 8e:f2:1d:6e:f1:4a:a9:8b:d9:d0:f1:fc:19:3e:1e: ea:36:c5:f8:3a:ad:51:71:b2:d6:eb:cf:43:16:46: 4d:43:cf:34:cc:6a:b3:6d:34:33:28:c9:97:f4:09: 85:ed:50:c2:db:a0:df:d1:85:b3:c7:c7:81:d8:19: 49:66:0d:23:7d:15:0b:de:bb:c0:d5:30:39:e4:eb: fc:5c:82:b3:0d:d3:47:6f:99:a6:c5:91:1a:0d:1f: ad:dc:27:20:75:f5:20:f4:74:dc:e1:4f:8f:aa:e3: 9b:af:bf:22:47:6e:42:f5:28:2d:65:73:d7:d4:0b: e2:83:12:d8:ec:0a:1a:6e:7e:8c:ff:62:48:86:59: 36:63:4a:d9:7b:53:c7:61:86:56:5c:2c:07:9d:09: cb:c6:02:93:83:6b:2b:6f:dd:18:d1:d3:02:a3:e9: 82:c4:f7:33:d4:45:3b:5c:99:49:af:b0:e1:42:21: 04:7a:2a:cc:8f:11:65:7c:62:fa:a6:ab:66:a8:c5: 94:06:b9:79:99:29:c9:a0:88:b4:1b:6e:20:be:91: 57:f9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8D:23:80:A8:77:DA:D6:11:D4:1F:94:57:52:12:0F:E0:01:BE:ED:FA X509v3 Authority Key Identifier: keyid:3C:1F:DD:8B:A3:01:DC:E3:DB:3F:0B:CC:25:C8:69:4C:E1:BC:DC:7D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A08FD/9F42EAD8C8AB11E9829D282FC4F9AE02/PB_di6MB3OPbPwvMJchpTOG83H0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PB_di6MB3OPbPwvMJchpTOG83H0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A08FD/9F42EAD8C8AB11E9829D282FC4F9AE02/PB_di6MB3OPbPwvMJchpTOG83H0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 17:8c:f5:98:6e:c8:45:84:61:e8:18:ee:c0:91:14:ac:37:a0: c0:2e:b2:04:96:ce:18:bc:d7:d0:d6:4d:fd:38:90:2e:c3:00: 17:5d:33:cd:f6:74:6f:67:99:02:6a:e0:83:1b:a0:f0:53:3a: ab:58:57:e0:f4:90:e4:41:3d:d0:af:ca:84:16:e0:87:f9:1f: 43:f5:84:f6:2d:e6:7f:7f:f1:71:18:4c:de:ca:14:73:31:32: 5e:7b:f7:07:bb:8a:8e:d6:d2:f2:a4:6f:f6:4b:66:30:95:f7: 99:3a:be:53:7e:f2:00:4a:fc:bf:4d:c4:2d:ad:96:87:20:20: 19:50:46:bd:bd:bd:4f:15:1c:a2:63:84:b7:e4:8d:15:ec:d1: 7b:57:c4:41:87:b6:02:cf:f3:0d:77:92:90:49:ba:d2:c6:e4: 14:da:06:4d:f7:48:ad:1c:07:a1:54:24:a5:50:61:55:c9:80: 6a:6f:cd:f3:19:98:96:8c:f9:67:5f:86:c7:70:ec:4f:2b:50: 0e:fe:30:a2:55:a7:ae:76:bc:58:9d:fc:79:46:75:ac:19:a1: 37:e9:11:44:e8:4d:91:d3:7d:ee:69:5b:5f:ab:8e:f7:bf:1b: 1c:3f:c5:ae:c0:21:df:2c:6e:be:69:09:3c:c0:43:b6:cf:4f: 33:6e:cf:ae -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDYYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTA4RkQxMTAvBgNVBAUTKDNDMUZERDhCQTMwMURDRTNEQjNGMEJDQzI1Qzg2OTRD RTFCQ0RDN0QwHhcNMjUwNjEyMTc0OTI3WhcNMjUwNjE5MTc0OTI3WjAYMRYwFAYD VQQDEw02ODRiMTMyNy00MTQ0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA05WCs1AYIDKABV+yYw4NW4udBI47KPYuByvlCAuReTwyG0rJjQ6v+0MJ3BKO 8h1u8Uqpi9nQ8fwZPh7qNsX4Oq1RcbLW689DFkZNQ880zGqzbTQzKMmX9AmF7VDC 26Df0YWzx8eB2BlJZg0jfRUL3rvA1TA55Ov8XIKzDdNHb5mmxZEaDR+t3CcgdfUg 9HTc4U+PquObr78iR25C9SgtZXPX1AvigxLY7Aoabn6M/2JIhlk2Y0rZe1PHYYZW XCwHnQnLxgKTg2srb90Y0dMCo+mCxPcz1EU7XJlJr7DhQiEEeirMjxFlfGL6pqtm qMWUBrl5mSnJoIi0G24gvpFX+QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFI0jgKh3 2tYR1B+UV1ISD+ABvu36MB8GA1UdIwQYMBaAFDwf3YujAdzj2z8LzCXIaUzhvNx9 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBMDhGRC85RjQyRUFEOEM4 QUIxMUU5ODI5RDI4MkZDNEY5QUUwMi9QQl9kaTZNQjNPUGJQd3ZNSmNocFRPRzgz SDAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1BCX2RpNk1CM09QYlB3dk1KY2hwVE9HODNIMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB MDhGRC85RjQyRUFEOEM4QUIxMUU5ODI5RDI4MkZDNEY5QUUwMi9QQl9kaTZNQjNP UGJQd3ZNSmNocFRPRzgzSDAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAXjPWYbshFhGHoGO7AkRSsN6DALrIEls4YvNfQ1k39OJAuwwAXXTPN 9nRvZ5kCauCDG6DwUzqrWFfg9JDkQT3Qr8qEFuCH+R9D9YT2LeZ/f/FxGEzeyhRz MTJee/cHu4qO1tLypG/2S2YwlfeZOr5TfvIASvy/TcQtrZaHICAZUEa9vb1PFRyi Y4S35I0V7NF7V8RBh7YCz/MNd5KQSbrSxuQU2gZN90itHAehVCSlUGFVyYBqb83z GZiWjPlnX4bHcOxPK1AO/jCiVaeudrxYnfx5RnWsGaE36RFE6E2R033uaVtfq473 vxscP8WuwCHfLG6+aQk8wEO2z08zbs+u -----END CERTIFICATE-----Generated at Sat Jun 14 18:40:09 2025 by rpki-client