$ rpki-client -vvf rpki.apnic.net/member_repository/A91F02EA/DB15CDE011DB11EA95F2B059C4F9AE02/PShwiOOGgqTkudgoRQszZr3q1d0.mft File: PShwiOOGgqTkudgoRQszZr3q1d0.mft (raw, json) Hash identifier: Z2GYwJePEXMaUNxYqcMIpHBg4Dt1pDN/MAlVSjYffIE= Subject key identifier: A3:29:A8:0F:F9:8C:DE:63:27:79:2C:DB:60:5F:FF:02:EF:26:E0:E3 Authority key identifier: 3D:28:70:88:E3:86:82:A4:E4:B9:D8:28:45:0B:33:66:BD:EA:D5:DD Certificate issuer: /CN=A91F02EA/serialNumber=3D287088E38682A4E4B9D828450B3366BDEAD5DD Certificate serial: 0C23 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PShwiOOGgqTkudgoRQszZr3q1d0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F02EA/DB15CDE011DB11EA95F2B059C4F9AE02/PShwiOOGgqTkudgoRQszZr3q1d0.mft Manifest number: 0C13 Signing time: Sat 14 Jun 2025 18:34:45 +0000 Manifest this update: Sat 14 Jun 2025 18:34:44 +0000 Manifest next update: Sat 21 Jun 2025 18:34:44 +0000 Files and hashes: 1: PShwiOOGgqTkudgoRQszZr3q1d0.crl (hash: KBDdV1PN6f9gyt2nxyJjiXdp7niZw5EDIpPgd8eE2d8=) 2: 7716938A416211EB9B0F3C54C4F9AE02.roa (hash: SaoXuslBHecNHa04UZ0EBB+W8ns+FIPHvzYnnMHMCbU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F02EA/DB15CDE011DB11EA95F2B059C4F9AE02/PShwiOOGgqTkudgoRQszZr3q1d0.crl rsync://rpki.apnic.net/member_repository/A91F02EA/DB15CDE011DB11EA95F2B059C4F9AE02/PShwiOOGgqTkudgoRQszZr3q1d0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PShwiOOGgqTkudgoRQszZr3q1d0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 21 Jun 2025 18:34:44 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3107 (0xc23) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F02EA, serialNumber=3D287088E38682A4E4B9D828450B3366BDEAD5DD Validity Not Before: Jun 14 18:34:44 2025 GMT Not After : Jun 21 18:34:44 2025 GMT Subject: CN=684dc0c4-119e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f3:ec:48:d1:61:51:31:2c:47:67:6a:d2:1b:f8: 9b:0d:89:e8:76:8a:ef:bd:c2:10:16:7e:36:d7:cd: df:d3:a7:87:d7:05:02:6e:85:1c:a3:2a:63:c8:f2: 85:72:d8:c0:94:40:a4:30:43:53:bf:72:c4:7b:a5: ce:5a:4a:14:4d:a4:cd:fc:5a:f6:3f:e5:fa:ed:c5: 98:f1:9b:c4:bb:e9:b1:b1:f7:7e:0d:f7:3c:12:dc: be:6b:60:da:db:0f:05:d9:88:d7:f9:94:d3:f9:fc: 1f:15:b4:33:81:1f:da:19:07:99:95:70:a2:1f:1b: 19:59:7b:44:3d:df:69:61:c4:d2:78:73:e5:5e:bf: de:f2:91:25:ef:80:75:fa:fc:3a:24:66:90:95:9c: 89:79:e9:f9:10:7b:42:4e:90:9d:76:26:47:88:d3: 74:6c:06:b5:9d:ae:40:c7:41:cd:f8:b6:b9:c4:38: b2:2a:ac:a6:cc:72:d3:f7:d7:00:12:9c:1d:42:51: db:5e:5d:02:ae:22:ba:19:0c:09:d9:be:16:f4:8a: 8d:96:22:80:e8:fe:7a:b4:c0:12:80:38:92:23:16: d2:2c:37:30:a7:2d:57:0f:02:66:7a:64:3b:f9:fc: d2:a9:45:f1:11:a2:5b:48:df:ff:6b:91:ff:33:9e: 4b:bf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A3:29:A8:0F:F9:8C:DE:63:27:79:2C:DB:60:5F:FF:02:EF:26:E0:E3 X509v3 Authority Key Identifier: keyid:3D:28:70:88:E3:86:82:A4:E4:B9:D8:28:45:0B:33:66:BD:EA:D5:DD X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F02EA/DB15CDE011DB11EA95F2B059C4F9AE02/PShwiOOGgqTkudgoRQszZr3q1d0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PShwiOOGgqTkudgoRQszZr3q1d0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F02EA/DB15CDE011DB11EA95F2B059C4F9AE02/PShwiOOGgqTkudgoRQszZr3q1d0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 50:62:c0:15:5d:96:7e:58:0e:2a:e4:4c:b9:a1:f7:fa:d5:8b: cc:d3:c4:a2:a1:f2:b6:88:2c:c8:d8:3a:b3:1f:70:18:4e:4b: 22:26:e4:9e:10:1c:01:be:84:6e:56:ee:00:cf:4a:03:8b:3a: 04:b7:ad:8a:b4:7c:e9:de:12:1b:71:d7:d8:fd:ec:0c:d3:e0: dd:ef:23:e8:01:c2:81:62:86:1d:dd:c0:92:92:bd:71:ae:f5: 71:59:fa:39:f4:aa:ea:27:cd:42:e8:e0:d2:21:59:2a:d9:93: d3:48:ac:a2:18:c8:81:3f:83:d7:f6:1f:c7:f9:d6:e1:7e:91: a5:5f:78:40:83:0d:d7:5a:eb:b0:c0:39:46:fd:53:59:57:ac: ca:b1:0a:a4:a1:8d:e1:73:8d:cf:4a:68:32:61:62:b8:3b:d5: 10:bc:7a:1f:c6:4c:d8:8b:b1:9b:7e:cb:72:f3:9e:5a:d2:cb: 1e:30:8b:46:53:41:60:5a:57:07:e4:b4:dc:7c:33:a4:3f:11: d3:1e:7b:09:b3:36:c7:82:cf:ae:5b:e5:6c:4c:cf:87:2e:a2: 22:d6:9c:bb:a8:ef:87:8c:9b:46:b1:c7:19:07:aa:e1:f2:97: 61:54:cc:82:f4:91:31:f5:17:17:14:8d:4c:90:b0:e5:9e:0e: d8:75:37:0f -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDCMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjAyRUExMTAvBgNVBAUTKDNEMjg3MDg4RTM4NjgyQTRFNEI5RDgyODQ1MEIzMzY2 QkRFQUQ1REQwHhcNMjUwNjE0MTgzNDQ0WhcNMjUwNjIxMTgzNDQ0WjAYMRYwFAYD VQQDEw02ODRkYzBjNC0xMTllMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA8+xI0WFRMSxHZ2rSG/ibDYnodorvvcIQFn42183f06eH1wUCboUcoypjyPKF ctjAlECkMENTv3LEe6XOWkoUTaTN/Fr2P+X67cWY8ZvEu+mxsfd+Dfc8Ety+a2Da 2w8F2YjX+ZTT+fwfFbQzgR/aGQeZlXCiHxsZWXtEPd9pYcTSeHPlXr/e8pEl74B1 +vw6JGaQlZyJeen5EHtCTpCddiZHiNN0bAa1na5Ax0HN+La5xDiyKqymzHLT99cA EpwdQlHbXl0CriK6GQwJ2b4W9IqNliKA6P56tMASgDiSIxbSLDcwpy1XDwJmemQ7 +fzSqUXxEaJbSN//a5H/M55LvwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFKMpqA/5 jN5jJ3ks22Bf/wLvJuDjMB8GA1UdIwQYMBaAFD0ocIjjhoKk5LnYKEULM2a96tXd MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGMDJFQS9EQjE1Q0RFMDEx REIxMUVBOTVGMkIwNTlDNEY5QUUwMi9QU2h3aU9PR2dxVGt1ZGdvUlFzelpyM3Ex ZDAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1BTaHdpT09HZ3FUa3VkZ29SUXN6WnIzcTFkMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG MDJFQS9EQjE1Q0RFMDExREIxMUVBOTVGMkIwNTlDNEY5QUUwMi9QU2h3aU9PR2dx VGt1ZGdvUlFzelpyM3ExZDAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBQYsAVXZZ+WA4q5Ey5off61YvM08SiofK2iCzI2DqzH3AYTksiJuSe EBwBvoRuVu4Az0oDizoEt62KtHzp3hIbcdfY/ewM0+Dd7yPoAcKBYoYd3cCSkr1x rvVxWfo59KrqJ81C6ODSIVkq2ZPTSKyiGMiBP4PX9h/H+dbhfpGlX3hAgw3XWuuw wDlG/VNZV6zKsQqkoY3hc43PSmgyYWK4O9UQvHofxkzYi7Gbfsty855a0sseMItG U0FgWlcH5LTcfDOkPxHTHnsJszbHgs+uW+VsTM+HLqIi1py7qO+HjJtGsccZB6rh 8pdhVMyC9JEx9RcXFI1MkLDlng7YdTcP -----END CERTIFICATE-----Generated at Sun Jun 15 17:52:22 2025 by rpki-client