$ rpki-client -vvf rpki.apnic.net/member_repository/A91E2F2C/FFB761FA967811EA840F0029C4F9AE02/PDml0ZGM9lqyVjMi8PXxQwmme48.mft File: PDml0ZGM9lqyVjMi8PXxQwmme48.mft (raw, json) Hash identifier: Z5BzMPuzmlxqiH6StgwX2pR6dy4uRRs1BQXh2GY1Oyo= Subject key identifier: CA:14:40:8C:4B:46:5B:4E:E1:D1:98:16:D4:D4:85:E4:98:43:40:24 Authority key identifier: 3C:39:A5:D1:91:8C:F6:5A:B2:56:33:22:F0:F5:F1:43:09:A6:7B:8F Certificate issuer: /CN=A91E2F2C/serialNumber=3C39A5D1918CF65AB2563322F0F5F14309A67B8F Certificate serial: 098B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PDml0ZGM9lqyVjMi8PXxQwmme48.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E2F2C/FFB761FA967811EA840F0029C4F9AE02/PDml0ZGM9lqyVjMi8PXxQwmme48.mft Manifest number: 097A Signing time: Thu 12 Jun 2025 19:57:47 +0000 Manifest this update: Thu 12 Jun 2025 19:57:47 +0000 Manifest next update: Thu 19 Jun 2025 19:57:47 +0000 Files and hashes: 1: PDml0ZGM9lqyVjMi8PXxQwmme48.crl (hash: nae1iZEQyy64vM3Zc+AnqO+7jLyWhJVbgj9r6baWD2k=) 2: DE07328A778911ECBD9C7748C4F9AE02.roa (hash: dv7m/vWVCsxj8ZbnKigzGyA9Di8bR9HnPMOcVlR8lHI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E2F2C/FFB761FA967811EA840F0029C4F9AE02/PDml0ZGM9lqyVjMi8PXxQwmme48.crl rsync://rpki.apnic.net/member_repository/A91E2F2C/FFB761FA967811EA840F0029C4F9AE02/PDml0ZGM9lqyVjMi8PXxQwmme48.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PDml0ZGM9lqyVjMi8PXxQwmme48.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 19 Jun 2025 19:57:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2443 (0x98b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E2F2C, serialNumber=3C39A5D1918CF65AB2563322F0F5F14309A67B8F Validity Not Before: Jun 12 19:57:47 2025 GMT Not After : Jun 19 19:57:47 2025 GMT Subject: CN=684b313b-7452 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:94:67:d4:72:0c:f5:4b:92:f6:e5:d6:3e:56:27: 04:93:f5:91:46:af:08:66:ff:73:93:55:fc:ff:8b: f5:f5:34:eb:98:13:51:5f:6e:9a:7e:52:de:37:65: 79:5b:04:e7:16:3e:80:24:7c:84:79:72:c9:78:b2: 6a:32:47:ec:a3:f0:0a:ce:95:21:a5:8a:19:bd:6c: 9f:2d:f6:98:d6:f4:7f:1a:66:b8:c0:ba:bd:f5:87: 87:66:1f:0d:2a:d2:10:47:08:44:9f:9e:eb:39:12: ec:ec:cd:41:02:a8:0b:4a:69:c9:e8:09:6c:59:d6: 5a:4b:76:9f:c8:45:fd:2f:ea:0e:1b:51:03:d2:ac: 9d:69:93:85:a3:7b:df:9c:33:05:9b:bc:f5:1b:b2: a3:f1:72:28:90:29:14:ca:53:6c:bc:82:81:00:b8: 09:b1:3e:2b:ab:79:e4:88:95:f4:01:71:f8:95:91: 51:bc:57:ef:28:f5:07:18:d3:b3:66:4c:ea:ae:a2: 44:63:d8:b9:92:0d:eb:d3:78:08:20:93:97:09:47: ba:8c:ca:2b:de:39:03:9b:f6:c9:87:27:3e:0c:08: 5e:19:bf:82:b1:65:bb:c1:eb:ea:ab:2a:2e:b7:21: 86:7c:3d:20:a9:3e:0c:c5:c6:5e:35:48:bf:a1:5a: 71:af Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CA:14:40:8C:4B:46:5B:4E:E1:D1:98:16:D4:D4:85:E4:98:43:40:24 X509v3 Authority Key Identifier: keyid:3C:39:A5:D1:91:8C:F6:5A:B2:56:33:22:F0:F5:F1:43:09:A6:7B:8F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E2F2C/FFB761FA967811EA840F0029C4F9AE02/PDml0ZGM9lqyVjMi8PXxQwmme48.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PDml0ZGM9lqyVjMi8PXxQwmme48.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E2F2C/FFB761FA967811EA840F0029C4F9AE02/PDml0ZGM9lqyVjMi8PXxQwmme48.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a3:0e:42:85:dc:98:e1:d2:d1:f9:0a:ad:29:9d:07:dc:7a:67: 9b:88:ee:86:f4:cd:4c:76:41:2e:2a:e8:69:ae:41:76:a7:ba: 70:66:fe:2c:45:5b:05:aa:07:d3:e8:86:0a:6f:dc:ce:6a:6e: d4:59:9d:68:92:b1:ce:e7:30:e3:b6:fa:9b:e7:f0:fa:4b:51: 3c:f7:39:2f:d4:46:cf:ba:69:38:b0:35:30:d2:5b:96:49:cc: 7b:cc:a4:60:9f:9a:bc:8b:79:8e:25:e0:12:32:41:c6:b4:71: a3:42:66:8e:19:28:7c:a3:8e:d3:f4:ee:00:75:2b:2c:c4:6f: 05:af:a8:eb:c3:0c:af:56:5b:79:40:1a:30:07:2d:f5:98:bc: 81:43:fb:07:d7:c0:fd:47:1f:e2:04:b1:1f:af:3a:02:73:14: 10:26:fa:5f:2a:65:72:c1:ae:37:1a:50:85:c2:7a:f1:32:af: 49:be:b7:7a:24:3a:39:cc:29:1b:c8:83:cb:bb:33:4d:9b:5d: c8:be:68:50:8c:be:15:7d:62:c7:16:15:1b:5d:98:5d:94:85: 6a:bc:94:ef:17:c9:19:a9:f3:75:0b:e6:c5:66:f8:76:62:23: 2e:7e:a6:c6:c5:09:f4:a2:66:8b:07:ca:b5:9b:df:67:c6:73: 2e:79:f9:18 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCYswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTJGMkMxMTAvBgNVBAUTKDNDMzlBNUQxOTE4Q0Y2NUFCMjU2MzMyMkYwRjVGMTQz MDlBNjdCOEYwHhcNMjUwNjEyMTk1NzQ3WhcNMjUwNjE5MTk1NzQ3WjAYMRYwFAYD VQQDEw02ODRiMzEzYi03NDUyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAlGfUcgz1S5L25dY+VicEk/WRRq8IZv9zk1X8/4v19TTrmBNRX26aflLeN2V5 WwTnFj6AJHyEeXLJeLJqMkfso/AKzpUhpYoZvWyfLfaY1vR/Gma4wLq99YeHZh8N KtIQRwhEn57rORLs7M1BAqgLSmnJ6AlsWdZaS3afyEX9L+oOG1ED0qydaZOFo3vf nDMFm7z1G7Kj8XIokCkUylNsvIKBALgJsT4rq3nkiJX0AXH4lZFRvFfvKPUHGNOz ZkzqrqJEY9i5kg3r03gIIJOXCUe6jMor3jkDm/bJhyc+DAheGb+CsWW7wevqqyou tyGGfD0gqT4MxcZeNUi/oVpxrwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFMoUQIxL RltO4dGYFtTUheSYQ0AkMB8GA1UdIwQYMBaAFDw5pdGRjPZaslYzIvD18UMJpnuP MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFMkYyQy9GRkI3NjFGQTk2 NzgxMUVBODQwRjAwMjlDNEY5QUUwMi9QRG1sMFpHTTlscXlWak1pOFBYeFF3bW1l NDguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1BEbWwwWkdNOWxxeVZqTWk4UFh4UXdtbWU0OC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF MkYyQy9GRkI3NjFGQTk2NzgxMUVBODQwRjAwMjlDNEY5QUUwMi9QRG1sMFpHTTls cXlWak1pOFBYeFF3bW1lNDgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCjDkKF3Jjh0tH5Cq0pnQfcemebiO6G9M1MdkEuKuhprkF2p7pwZv4s RVsFqgfT6IYKb9zOam7UWZ1okrHO5zDjtvqb5/D6S1E89zkv1EbPumk4sDUw0luW Scx7zKRgn5q8i3mOJeASMkHGtHGjQmaOGSh8o47T9O4AdSssxG8Fr6jrwwyvVlt5 QBowBy31mLyBQ/sH18D9Rx/iBLEfrzoCcxQQJvpfKmVywa43GlCFwnrxMq9Jvrd6 JDo5zCkbyIPLuzNNm13IvmhQjL4VfWLHFhUbXZhdlIVqvJTvF8kZqfN1C+bFZvh2 YiMufqbGxQn0omaLB8q1m99nxnMuefkY -----END CERTIFICATE-----Generated at Sat Jun 14 19:31:34 2025 by rpki-client