$ rpki-client -vvf rpki.apnic.net/member_repository/A91F9E0A/0BD985E83E6911EFA2CE676AC4F9AE02/PVlGAD7uVIrZXXlssYi3UcV82sg.mft File: PVlGAD7uVIrZXXlssYi3UcV82sg.mft (raw, json) Hash identifier: O8neF6uENljuGZWMGl9JkzGiaHGH3X3qYJImiWxy3kg= Subject key identifier: 32:B7:D7:22:BE:B4:A4:0E:EE:3C:19:B3:68:5D:D7:05:18:51:7C:D7 Authority key identifier: 3D:59:46:00:3E:EE:54:8A:D9:5D:79:6C:B1:88:B7:51:C5:7C:DA:C8 Certificate issuer: /CN=A91F9E0A/serialNumber=3D5946003EEE548AD95D796CB188B751C57CDAC8 Certificate serial: B5 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PVlGAD7uVIrZXXlssYi3UcV82sg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F9E0A/0BD985E83E6911EFA2CE676AC4F9AE02/PVlGAD7uVIrZXXlssYi3UcV82sg.mft Manifest number: B2 Signing time: Fri 13 Jun 2025 04:59:32 +0000 Manifest this update: Fri 13 Jun 2025 04:59:31 +0000 Manifest next update: Fri 20 Jun 2025 04:59:31 +0000 Files and hashes: 1: PVlGAD7uVIrZXXlssYi3UcV82sg.crl (hash: jQTW0C4NgpyKKtH7oInJ89T0qQ6Rr4wDb39gGV3Yy18=) 2: D0CDFEEA406E11EFA085272AC4F9AE02.roa (hash: Ls+MqXGV/peb18S4iXh7J0QZNFdZuOz4J59MYeTRfFI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F9E0A/0BD985E83E6911EFA2CE676AC4F9AE02/PVlGAD7uVIrZXXlssYi3UcV82sg.crl rsync://rpki.apnic.net/member_repository/A91F9E0A/0BD985E83E6911EFA2CE676AC4F9AE02/PVlGAD7uVIrZXXlssYi3UcV82sg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PVlGAD7uVIrZXXlssYi3UcV82sg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 20 Jun 2025 04:59:31 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 181 (0xb5) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F9E0A, serialNumber=3D5946003EEE548AD95D796CB188B751C57CDAC8 Validity Not Before: Jun 13 04:59:31 2025 GMT Not After : Jun 20 04:59:31 2025 GMT Subject: CN=684bb034-1dfe Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dd:68:33:45:19:e9:d0:c3:d6:fa:c8:4e:e6:20: 2f:f1:c4:c3:58:a8:b3:4f:70:a4:c3:9b:ed:24:ec: c2:60:9d:a8:a4:99:ec:51:45:38:35:d3:b7:cd:dd: a9:6c:3b:d3:8b:ab:f2:ad:93:c5:7b:bb:75:eb:6b: c8:9b:dc:be:81:c6:0a:bd:31:2f:c5:2a:9a:2e:77: 1f:b8:c0:6e:86:13:9e:4e:e0:4e:12:61:47:52:82: fe:c7:72:09:4f:48:22:9e:61:b8:e5:50:92:28:b2: 7c:6e:fc:bc:9f:f4:dc:01:af:5e:8f:3e:b4:49:90: 82:0f:e3:dd:38:94:e9:1a:26:45:d7:34:bf:77:40: 1e:51:16:2b:03:68:56:41:c1:74:fd:c9:c6:8e:77: a2:12:2d:54:f8:46:1c:fe:5c:d0:f4:6e:ee:36:f0: ae:75:2a:48:2c:88:b5:da:2b:f7:ed:63:68:00:da: c4:26:7f:1f:05:c8:35:89:12:2a:7f:41:23:a5:08: ef:0f:09:b9:19:a0:26:a8:21:db:6f:f0:12:6a:3e: 9b:d4:d0:c2:95:1d:98:84:6f:f8:cf:0c:a2:86:c8: c0:2d:16:eb:40:1d:24:cb:29:89:30:67:b3:e8:ab: a3:2a:1e:cf:c5:89:ca:e9:ba:43:84:a3:07:78:31: d1:c9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 32:B7:D7:22:BE:B4:A4:0E:EE:3C:19:B3:68:5D:D7:05:18:51:7C:D7 X509v3 Authority Key Identifier: keyid:3D:59:46:00:3E:EE:54:8A:D9:5D:79:6C:B1:88:B7:51:C5:7C:DA:C8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F9E0A/0BD985E83E6911EFA2CE676AC4F9AE02/PVlGAD7uVIrZXXlssYi3UcV82sg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PVlGAD7uVIrZXXlssYi3UcV82sg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F9E0A/0BD985E83E6911EFA2CE676AC4F9AE02/PVlGAD7uVIrZXXlssYi3UcV82sg.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 5e:4c:c0:2d:8f:18:22:3c:4f:29:fe:68:91:05:ce:a9:bc:18: 76:3b:37:dc:73:dd:03:0d:39:df:5a:7f:7f:4e:fd:5b:0b:29: 28:8d:c0:5e:dd:e8:37:47:98:86:53:72:03:d9:b2:9a:4f:4e: 02:04:c2:27:07:ee:0c:28:04:91:20:bc:7c:5c:82:61:cb:db: c2:93:11:cd:57:94:39:0e:4f:c6:52:92:24:a5:0a:34:76:b2: 0a:dc:32:39:55:66:13:32:4f:da:03:38:0a:90:57:a1:5c:67: 3e:9e:15:76:59:2e:08:2a:6e:6c:4e:62:ee:3d:70:11:c1:ce: 43:c0:19:05:43:98:d3:54:3d:1b:63:85:9f:04:aa:f7:d1:b4: f0:70:50:13:8c:df:4c:01:b8:5a:fd:20:ee:2e:c5:48:a4:3b: 6c:f8:16:08:ce:81:b2:00:e0:69:ac:41:45:bc:8c:6c:fa:d6: 0f:ce:3e:9d:64:fa:c3:4c:88:e1:0d:fb:ab:40:ce:b2:df:07: e8:78:dc:88:34:73:95:28:b9:47:f0:70:23:58:d4:2a:3c:04: b7:ba:58:47:1f:aa:a0:d0:03:4d:02:b4:d3:bf:79:38:a3:22: a8:4e:91:e8:1f:a2:ba:4e:b0:d6:04:f0:0a:f1:62:1a:41:95: 85:f1:11:45 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICALUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjlFMEExMTAvBgNVBAUTKDNENTk0NjAwM0VFRTU0OEFEOTVENzk2Q0IxODhCNzUx QzU3Q0RBQzgwHhcNMjUwNjEzMDQ1OTMxWhcNMjUwNjIwMDQ1OTMxWjAYMRYwFAYD VQQDEw02ODRiYjAzNC0xZGZlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA3WgzRRnp0MPW+shO5iAv8cTDWKizT3Ckw5vtJOzCYJ2opJnsUUU4NdO3zd2p bDvTi6vyrZPFe7t162vIm9y+gcYKvTEvxSqaLncfuMBuhhOeTuBOEmFHUoL+x3IJ T0ginmG45VCSKLJ8bvy8n/TcAa9ejz60SZCCD+PdOJTpGiZF1zS/d0AeURYrA2hW QcF0/cnGjneiEi1U+EYc/lzQ9G7uNvCudSpILIi12iv37WNoANrEJn8fBcg1iRIq f0EjpQjvDwm5GaAmqCHbb/ASaj6b1NDClR2YhG/4zwyihsjALRbrQB0kyymJMGez 6KujKh7PxYnK6bpDhKMHeDHRyQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFDK31yK+ tKQO7jwZs2hd1wUYUXzXMB8GA1UdIwQYMBaAFD1ZRgA+7lSK2V15bLGIt1HFfNrI MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGOUUwQS8wQkQ5ODVFODNF NjkxMUVGQTJDRTY3NkFDNEY5QUUwMi9QVmxHQUQ3dVZJclpYWGxzc1lpM1VjVjgy c2cuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1BWbEdBRDd1VklyWlhYbHNzWWkzVWNWODJzZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG OUUwQS8wQkQ5ODVFODNFNjkxMUVGQTJDRTY3NkFDNEY5QUUwMi9QVmxHQUQ3dVZJ clpYWGxzc1lpM1VjVjgyc2cubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBeTMAtjxgiPE8p/miRBc6pvBh2Ozfcc90DDTnfWn9/Tv1bCykojcBe 3eg3R5iGU3ID2bKaT04CBMInB+4MKASRILx8XIJhy9vCkxHNV5Q5Dk/GUpIkpQo0 drIK3DI5VWYTMk/aAzgKkFehXGc+nhV2WS4IKm5sTmLuPXARwc5DwBkFQ5jTVD0b Y4WfBKr30bTwcFATjN9MAbha/SDuLsVIpDts+BYIzoGyAOBprEFFvIxs+tYPzj6d ZPrDTIjhDfurQM6y3wfoeNyINHOVKLlH8HAjWNQqPAS3ulhHH6qg0ANNArTTv3k4 oyKoTpHoH6K6TrDWBPAK8WIaQZWF8RFF -----END CERTIFICATE-----Generated at Sat Jun 14 19:38:03 2025 by rpki-client