$ rpki-client -vvf rpki.apnic.net/member_repository/A91B10B9/D13BEAAAA0FB11ECA5D1DF5BC4F9AE02/PXe1hqP2gsVjtkJlJiiR1NpGp6g.mft File: PXe1hqP2gsVjtkJlJiiR1NpGp6g.mft (raw, json) Hash identifier: fal9cVCg5zwV+y2Cq9YPZ1VXx7m6YAt8BhQtIYioWjg= Subject key identifier: 35:40:D8:D1:C1:9D:0D:9C:2E:C0:FF:2A:9E:A4:E2:2C:6D:E1:5A:19 Authority key identifier: 3D:77:B5:86:A3:F6:82:C5:63:B6:42:65:26:28:91:D4:DA:46:A7:A8 Certificate issuer: /CN=A91B10B9/serialNumber=3D77B586A3F682C563B64265262891D4DA46A7A8 Certificate serial: 039A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PXe1hqP2gsVjtkJlJiiR1NpGp6g.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B10B9/D13BEAAAA0FB11ECA5D1DF5BC4F9AE02/PXe1hqP2gsVjtkJlJiiR1NpGp6g.mft Manifest number: 0395 Signing time: Sun 15 Jun 2025 00:32:46 +0000 Manifest this update: Sun 15 Jun 2025 00:32:45 +0000 Manifest next update: Sun 22 Jun 2025 00:32:45 +0000 Files and hashes: 1: PXe1hqP2gsVjtkJlJiiR1NpGp6g.crl (hash: Lb+kGIoAB7Ot316kCKxv4N9q0uNVp0QlmqTTe17ILhs=) 2: BCD0F6B0A0FF11EC924D4461C4F9AE02.roa (hash: eYkm574zXfPZBssf+KqgdlPvB8riPVJCVgCP7O8B6S0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B10B9/D13BEAAAA0FB11ECA5D1DF5BC4F9AE02/PXe1hqP2gsVjtkJlJiiR1NpGp6g.crl rsync://rpki.apnic.net/member_repository/A91B10B9/D13BEAAAA0FB11ECA5D1DF5BC4F9AE02/PXe1hqP2gsVjtkJlJiiR1NpGp6g.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PXe1hqP2gsVjtkJlJiiR1NpGp6g.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 22 Jun 2025 00:32:45 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 922 (0x39a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B10B9, serialNumber=3D77B586A3F682C563B64265262891D4DA46A7A8 Validity Not Before: Jun 15 00:32:45 2025 GMT Not After : Jun 22 00:32:45 2025 GMT Subject: CN=684e14ae-6c2c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cf:57:ad:d1:ce:0f:a6:76:71:f8:9c:dd:06:0b: f3:9e:34:df:33:4b:55:98:db:31:64:01:10:6b:54: ef:41:87:d1:89:bd:de:25:5a:a6:1c:05:54:5f:e5: a5:66:fd:6c:8c:b7:c8:6d:f6:c5:8d:80:18:05:ed: 14:0d:f6:52:76:89:13:6a:65:b2:d2:a6:4e:5d:a3: de:e2:7e:e5:2f:4c:3d:b2:0b:c5:dc:91:16:4b:ab: 26:c2:4b:35:4f:91:4d:30:3d:fe:28:c9:07:c5:47: c1:6a:a5:05:1e:cb:90:af:18:98:39:a6:28:73:ea: d4:96:51:4c:1e:03:c2:c7:2b:cc:71:c7:3e:b3:e1: b6:7f:0a:b9:05:c4:af:99:dd:72:86:52:76:3e:42: 56:f2:52:10:f6:a4:13:0e:10:4b:b0:10:ab:44:3e: 88:db:5c:0a:bc:80:40:28:f9:4f:5e:14:38:e3:c0: 36:32:f8:3d:5d:4f:46:50:90:04:18:70:ce:f8:31: 08:ba:2e:27:4f:2f:70:ec:e2:bc:1d:4e:48:f9:37: 76:65:f5:14:63:fd:1b:2c:86:09:4f:61:03:f6:27: 97:67:13:9c:09:97:1b:05:67:0c:4e:c5:48:50:29: 90:16:65:aa:1e:fa:e9:4a:44:4b:09:f8:10:9e:81: 1c:55 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 35:40:D8:D1:C1:9D:0D:9C:2E:C0:FF:2A:9E:A4:E2:2C:6D:E1:5A:19 X509v3 Authority Key Identifier: keyid:3D:77:B5:86:A3:F6:82:C5:63:B6:42:65:26:28:91:D4:DA:46:A7:A8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B10B9/D13BEAAAA0FB11ECA5D1DF5BC4F9AE02/PXe1hqP2gsVjtkJlJiiR1NpGp6g.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PXe1hqP2gsVjtkJlJiiR1NpGp6g.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B10B9/D13BEAAAA0FB11ECA5D1DF5BC4F9AE02/PXe1hqP2gsVjtkJlJiiR1NpGp6g.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 85:93:f5:45:d7:e8:c6:97:e3:c3:07:23:9d:14:14:75:80:4d: c5:e8:f5:ee:cd:2e:05:97:70:55:d4:d5:c4:2b:e5:c3:b8:58: 86:4d:55:61:ad:39:2a:07:d9:ab:51:61:6a:b3:e2:e9:7c:8b: 3c:70:8d:ef:13:30:fc:ee:98:68:fa:72:17:f1:4c:f4:f6:49: 4b:21:1e:5b:29:b4:7e:48:2e:e0:39:09:60:81:97:c4:09:49: a6:45:cd:ea:68:ba:be:e8:5d:cc:9b:03:52:fe:71:49:8a:9d: c5:48:c1:9f:0c:83:a8:f4:4f:39:62:50:73:99:d4:bd:ae:21: 38:66:9a:e6:43:f9:e5:44:90:e9:32:42:a1:b5:ba:ff:bc:60: 51:f5:4c:b2:62:8c:54:5f:14:1f:b6:5b:f8:15:da:8c:16:33: cd:21:3d:9f:79:72:32:61:9d:d0:bb:1b:a2:07:b3:86:3f:33: 5c:50:9c:ce:c2:b8:86:28:d7:13:f0:36:ff:b6:43:c8:ff:50: d3:3b:03:ae:63:42:e2:20:13:27:e2:d4:04:f7:f8:9e:ff:5b: 08:66:b7:14:01:2f:4d:af:b4:5f:1a:76:8d:d3:34:7f:75:db: 67:0a:f7:5f:5d:cf:c9:cc:3e:d7:52:12:3a:57:bc:c6:cc:17: 7b:f6:3b:5e -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICA5owDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjEwQjkxMTAvBgNVBAUTKDNENzdCNTg2QTNGNjgyQzU2M0I2NDI2NTI2Mjg5MUQ0 REE0NkE3QTgwHhcNMjUwNjE1MDAzMjQ1WhcNMjUwNjIyMDAzMjQ1WjAYMRYwFAYD VQQDEw02ODRlMTRhZS02YzJjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAz1et0c4PpnZx+JzdBgvznjTfM0tVmNsxZAEQa1TvQYfRib3eJVqmHAVUX+Wl Zv1sjLfIbfbFjYAYBe0UDfZSdokTamWy0qZOXaPe4n7lL0w9sgvF3JEWS6smwks1 T5FNMD3+KMkHxUfBaqUFHsuQrxiYOaYoc+rUllFMHgPCxyvMccc+s+G2fwq5BcSv md1yhlJ2PkJW8lIQ9qQTDhBLsBCrRD6I21wKvIBAKPlPXhQ448A2Mvg9XU9GUJAE GHDO+DEIui4nTy9w7OK8HU5I+Td2ZfUUY/0bLIYJT2ED9ieXZxOcCZcbBWcMTsVI UCmQFmWqHvrpSkRLCfgQnoEcVQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFDVA2NHB nQ2cLsD/Kp6k4ixt4VoZMB8GA1UdIwQYMBaAFD13tYaj9oLFY7ZCZSYokdTaRqeo MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCMTBCOS9EMTNCRUFBQUEw RkIxMUVDQTVEMURGNUJDNEY5QUUwMi9QWGUxaHFQMmdzVmp0a0psSmlpUjFOcEdw NmcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1BYZTFocVAyZ3NWanRrSmxKaWlSMU5wR3A2Zy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC MTBCOS9EMTNCRUFBQUEwRkIxMUVDQTVEMURGNUJDNEY5QUUwMi9QWGUxaHFQMmdz Vmp0a0psSmlpUjFOcEdwNmcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCFk/VF1+jGl+PDByOdFBR1gE3F6PXuzS4Fl3BV1NXEK+XDuFiGTVVh rTkqB9mrUWFqs+LpfIs8cI3vEzD87pho+nIX8Uz09klLIR5bKbR+SC7gOQlggZfE CUmmRc3qaLq+6F3MmwNS/nFJip3FSMGfDIOo9E85YlBzmdS9riE4ZprmQ/nlRJDp MkKhtbr/vGBR9UyyYoxUXxQftlv4FdqMFjPNIT2feXIyYZ3QuxuiB7OGPzNcUJzO wriGKNcT8Db/tkPI/1DTOwOuY0LiIBMn4tQE9/ie/1sIZrcUAS9Nr7RfGnaN0zR/ ddtnCvdfXc/JzD7XUhI6V7zGzBd79jte -----END CERTIFICATE-----Generated at Sun Jun 15 04:50:59 2025 by rpki-client