$ rpki-client -vvf rpki.apnic.net/member_repository/A91E0EF2/AB6B27F65EE211ECAFA64B44C4F9AE02/PV2GR6upu0BiXDxkPNg2fxUHgBo.mft File: PV2GR6upu0BiXDxkPNg2fxUHgBo.mft (raw, json) Hash identifier: saVRJP8/926fxbLxQGoP8qXMIZ8l0dV8eC3JxkoVHtk= Subject key identifier: 45:2F:C0:A9:2E:D7:16:CE:4E:C0:49:5A:69:97:82:12:E0:28:B7:91 Authority key identifier: 3D:5D:86:47:AB:A9:BB:40:62:5C:3C:64:3C:D8:36:7F:15:07:80:1A Certificate issuer: /CN=A91E0EF2/serialNumber=3D5D8647ABA9BB40625C3C643CD8367F1507801A Certificate serial: 0449 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/PV2GR6upu0BiXDxkPNg2fxUHgBo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E0EF2/AB6B27F65EE211ECAFA64B44C4F9AE02/PV2GR6upu0BiXDxkPNg2fxUHgBo.mft Manifest number: 0443 Signing time: Thu 19 Jun 2025 00:08:07 +0000 Manifest this update: Thu 19 Jun 2025 00:08:06 +0000 Manifest next update: Thu 26 Jun 2025 00:08:06 +0000 Files and hashes: 1: PV2GR6upu0BiXDxkPNg2fxUHgBo.crl (hash: HPZ23m/Pv/Yc+ICKHnfdTAFtOQ44fr3p0ghO7rUEssA=) 2: CA7DCCFE5EE511ECA6B8CA48C4F9AE02.roa (hash: mDuBvAb87vc0xqlLuEIwzuSg0BaaCa9nDXGB49E/55o=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E0EF2/AB6B27F65EE211ECAFA64B44C4F9AE02/PV2GR6upu0BiXDxkPNg2fxUHgBo.crl rsync://rpki.apnic.net/member_repository/A91E0EF2/AB6B27F65EE211ECAFA64B44C4F9AE02/PV2GR6upu0BiXDxkPNg2fxUHgBo.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/PV2GR6upu0BiXDxkPNg2fxUHgBo.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 26 Jun 2025 00:08:06 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1097 (0x449) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E0EF2, serialNumber=3D5D8647ABA9BB40625C3C643CD8367F1507801A Validity Not Before: Jun 19 00:08:06 2025 GMT Not After : Jun 26 00:08:06 2025 GMT Subject: CN=685354e7-ebd9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:1c:51:b0:23:0f:4b:dd:c8:e2:2b:8b:1d:c0: 3d:cd:01:d0:4b:fb:63:20:e8:48:84:57:31:eb:62: b4:6a:63:b2:b0:65:09:13:db:06:ef:05:28:04:3a: 16:47:0d:78:6d:d3:ee:96:80:f3:90:6f:a5:a7:28: 05:3a:e2:79:a2:38:c9:f2:de:0b:fb:0a:70:9b:bf: bb:32:1e:5d:0e:1e:83:c6:1d:02:77:4a:f3:9d:f6: 14:14:04:82:fb:fd:e5:f0:ca:da:7c:ad:52:d6:a2: 5a:c6:75:66:18:f7:9d:dc:cf:7b:1d:46:fc:80:d1: 6f:68:ad:4b:6f:ce:0a:0b:5b:b2:c8:2d:67:4b:19: 4f:d3:9d:48:0b:ab:57:4c:48:ab:a6:cb:f4:04:64: 87:74:1e:0c:fe:91:93:a2:08:c6:37:82:5f:54:d9: bd:8c:ae:9e:b4:a2:d9:2f:34:5c:02:5e:9f:ce:57: be:96:c8:1c:4c:13:f6:a2:0b:aa:40:7a:36:b4:06: c1:d7:c1:0b:b5:63:81:76:52:1a:a9:2a:03:df:b8: 35:8d:1b:ab:b9:c2:42:5e:33:6e:1f:5d:95:79:e4: a3:87:0b:74:bc:bd:77:40:e1:86:88:d7:d4:5d:07: 84:08:20:ea:96:48:ca:d5:6d:f7:e8:f2:a4:d4:71: 0e:83 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 45:2F:C0:A9:2E:D7:16:CE:4E:C0:49:5A:69:97:82:12:E0:28:B7:91 X509v3 Authority Key Identifier: keyid:3D:5D:86:47:AB:A9:BB:40:62:5C:3C:64:3C:D8:36:7F:15:07:80:1A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E0EF2/AB6B27F65EE211ECAFA64B44C4F9AE02/PV2GR6upu0BiXDxkPNg2fxUHgBo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/PV2GR6upu0BiXDxkPNg2fxUHgBo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E0EF2/AB6B27F65EE211ECAFA64B44C4F9AE02/PV2GR6upu0BiXDxkPNg2fxUHgBo.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 3a:ea:b8:56:fe:e2:04:96:28:46:54:47:0d:4c:36:53:8f:41: cf:f5:a7:5d:91:96:b8:bb:66:65:4d:57:75:a6:17:b8:d8:b9: 97:73:ad:8e:e1:e8:69:cd:30:db:64:72:2e:d3:b5:70:ce:ad: 25:8b:00:af:22:9b:4f:bf:e4:26:18:2b:e0:0b:02:d8:48:68: b5:3c:1f:2c:16:af:f3:a1:e8:d3:09:25:b6:da:a2:b8:65:0a: 63:da:67:d0:91:71:51:06:2a:a1:71:db:96:7b:8d:2a:95:ee: 2d:b5:a4:c7:ad:11:c3:54:4c:89:67:d4:80:16:cf:a2:59:56: b5:9d:c4:e0:e9:36:b1:31:59:a3:1e:87:f6:d0:de:4e:da:05: aa:51:6e:ee:18:59:f8:11:76:39:05:ff:2c:59:30:c9:3d:ba: f0:db:35:53:f4:95:72:88:46:c7:b0:44:19:56:3d:20:12:19: d8:4b:e3:97:8c:f2:89:71:9e:00:30:36:83:44:c9:70:dc:29: 17:38:a5:48:86:ab:b1:85:df:67:81:3d:26:ff:42:cf:84:c6: d1:e9:08:17:9b:82:ff:fb:92:0a:5d:35:cf:23:6f:d5:81:61: f7:3c:d1:7c:e2:e8:21:da:65:bb:a7:87:46:ae:a0:9c:75:34: 4c:8c:80:66 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBEkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTBFRjIxMTAvBgNVBAUTKDNENUQ4NjQ3QUJBOUJCNDA2MjVDM0M2NDNDRDgzNjdG MTUwNzgwMUEwHhcNMjUwNjE5MDAwODA2WhcNMjUwNjI2MDAwODA2WjAYMRYwFAYD VQQDEw02ODUzNTRlNy1lYmQ5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwhxRsCMPS93I4iuLHcA9zQHQS/tjIOhIhFcx62K0amOysGUJE9sG7wUoBDoW Rw14bdPuloDzkG+lpygFOuJ5ojjJ8t4L+wpwm7+7Mh5dDh6Dxh0Cd0rznfYUFASC +/3l8MrafK1S1qJaxnVmGPed3M97HUb8gNFvaK1Lb84KC1uyyC1nSxlP051IC6tX TEirpsv0BGSHdB4M/pGTogjGN4JfVNm9jK6etKLZLzRcAl6fzle+lsgcTBP2oguq QHo2tAbB18ELtWOBdlIaqSoD37g1jRurucJCXjNuH12VeeSjhwt0vL13QOGGiNfU XQeECCDqlkjK1W336PKk1HEOgwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFEUvwKku 1xbOTsBJWmmXghLgKLeRMB8GA1UdIwQYMBaAFD1dhkerqbtAYlw8ZDzYNn8VB4Aa MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFMEVGMi9BQjZCMjdGNjVF RTIxMUVDQUZBNjRCNDRDNEY5QUUwMi9QVjJHUjZ1cHUwQmlYRHhrUE5nMmZ4VUhn Qm8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL1BWMkdSNnVwdTBCaVhEeGtQTmcyZnhVSGdCby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF MEVGMi9BQjZCMjdGNjVFRTIxMUVDQUZBNjRCNDRDNEY5QUUwMi9QVjJHUjZ1cHUw QmlYRHhrUE5nMmZ4VUhnQm8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA66rhW/uIElihGVEcNTDZTj0HP9addkZa4u2ZlTVd1phe42LmXc62O 4ehpzTDbZHIu07Vwzq0liwCvIptPv+QmGCvgCwLYSGi1PB8sFq/zoejTCSW22qK4 ZQpj2mfQkXFRBiqhcduWe40qle4ttaTHrRHDVEyJZ9SAFs+iWVa1ncTg6TaxMVmj Hof20N5O2gWqUW7uGFn4EXY5Bf8sWTDJPbrw2zVT9JVyiEbHsEQZVj0gEhnYS+OX jPKJcZ4AMDaDRMlw3CkXOKVIhquxhd9ngT0m/0LPhMbR6QgXm4L/+5IKXTXPI2/V gWH3PNF84ugh2mW7p4dGrqCcdTRMjIBm -----END CERTIFICATE-----Generated at Thu Jun 19 21:29:29 2025 by rpki-client