$ rpki-client -vvf rpki.apnic.net/member_repository/A91FC9FE/53CB690CFDE211ED9D2D1F68C4F9AE02/pdnGpvlnW5HOVNEV-IyUEPGPkP4.mft File: pdnGpvlnW5HOVNEV-IyUEPGPkP4.mft (raw, json) Hash identifier: zWlsEa3xPqTiAMtvF7tPCk3rLs5BxuCYCu7QALUBoWA= Subject key identifier: 8E:CF:3A:06:9D:F5:29:87:6E:12:D1:3D:E5:6A:D7:84:77:6A:29:77 Authority key identifier: A5:D9:C6:A6:F9:67:5B:91:CE:54:D1:15:F8:8C:94:10:F1:8F:90:FE Certificate issuer: /CN=A91FC9FE/serialNumber=A5D9C6A6F9675B91CE54D115F88C9410F18F90FE Certificate serial: 0188 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pdnGpvlnW5HOVNEV-IyUEPGPkP4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91FC9FE/53CB690CFDE211ED9D2D1F68C4F9AE02/pdnGpvlnW5HOVNEV-IyUEPGPkP4.mft Manifest number: 0181 Signing time: Tue 17 Jun 2025 02:44:11 +0000 Manifest this update: Tue 17 Jun 2025 02:44:11 +0000 Manifest next update: Tue 24 Jun 2025 02:44:11 +0000 Files and hashes: 1: pdnGpvlnW5HOVNEV-IyUEPGPkP4.crl (hash: Ge4x2LnTtQqVpgAoCwzjZwX0jlqGfMBZD08rRSlmFws=) 2: C5CD32AAE5DC11EE867C6F21C4F9AE02.roa (hash: a4fQ9/brXb5z2Mtyms5QfXYQ2TroFUoiyPnPZ317i3A=) 3: C6AA9D48E5DC11EE867C6F21C4F9AE02.roa (hash: AbLxDDz7EyW1J/bgbPyfasPFpKdJaru9haT9jeZMl/Y=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91FC9FE/53CB690CFDE211ED9D2D1F68C4F9AE02/pdnGpvlnW5HOVNEV-IyUEPGPkP4.crl rsync://rpki.apnic.net/member_repository/A91FC9FE/53CB690CFDE211ED9D2D1F68C4F9AE02/pdnGpvlnW5HOVNEV-IyUEPGPkP4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pdnGpvlnW5HOVNEV-IyUEPGPkP4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 24 Jun 2025 02:44:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 392 (0x188) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91FC9FE, serialNumber=A5D9C6A6F9675B91CE54D115F88C9410F18F90FE Validity Not Before: Jun 17 02:44:11 2025 GMT Not After : Jun 24 02:44:11 2025 GMT Subject: CN=6850d67b-42ca Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f5:b5:e5:b8:85:8f:c8:25:a3:16:ca:42:6a:e3: 5f:0a:6d:aa:db:ee:a3:bb:6f:14:1d:08:5a:26:05: 7f:40:29:16:de:b2:1c:64:91:a5:44:c5:f2:42:2a: d5:ea:a3:90:4f:bd:7d:53:9f:7b:be:58:9f:06:5a: 47:a3:b3:c9:76:37:9b:5e:32:6b:44:1e:2e:8c:43: 4f:02:d4:26:79:00:9f:b3:b7:a4:04:2a:3f:44:66: 52:b6:cd:62:7e:35:71:6c:d5:97:2a:1e:d4:db:f8: 2f:dd:00:87:f9:77:07:91:b7:a2:90:ef:98:95:2d: e5:61:1d:de:4b:de:ec:f5:d4:8c:02:7f:df:65:d8: 03:57:91:c9:78:b9:6a:ee:29:54:55:45:41:86:d9: 5b:67:40:2e:2a:51:16:64:36:91:11:23:89:59:97: 1f:9a:64:13:66:2b:41:2c:c1:5b:b4:39:89:7f:9f: eb:49:99:73:76:93:25:7f:60:57:7f:cf:a4:35:cb: d7:ca:08:36:79:0a:90:2d:13:52:8d:4e:1e:12:ff: 38:44:a4:46:4d:f6:ad:02:4c:9a:f4:ec:9d:63:d7: 3f:08:26:a2:69:36:f3:14:7a:d3:0c:3c:ab:23:a2: ed:0d:c4:f0:6f:bd:6a:b7:e0:67:4f:62:a5:82:60: 12:17 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8E:CF:3A:06:9D:F5:29:87:6E:12:D1:3D:E5:6A:D7:84:77:6A:29:77 X509v3 Authority Key Identifier: keyid:A5:D9:C6:A6:F9:67:5B:91:CE:54:D1:15:F8:8C:94:10:F1:8F:90:FE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91FC9FE/53CB690CFDE211ED9D2D1F68C4F9AE02/pdnGpvlnW5HOVNEV-IyUEPGPkP4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pdnGpvlnW5HOVNEV-IyUEPGPkP4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91FC9FE/53CB690CFDE211ED9D2D1F68C4F9AE02/pdnGpvlnW5HOVNEV-IyUEPGPkP4.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 21:28:b3:a6:6d:77:f9:eb:98:03:5a:67:44:8e:3c:05:84:d6: f6:4e:6c:f4:9c:fc:5b:ec:b0:27:26:b6:74:fc:26:0f:8f:42: 8c:49:0e:04:94:d2:e4:53:40:3d:56:36:a3:d9:36:29:a1:db: 68:1f:93:8c:10:c5:e9:e7:cf:32:32:58:86:ca:d4:32:6c:b2: a8:b5:b8:93:ac:a2:32:4c:32:11:40:df:ac:5e:93:f2:71:ac: 32:ef:57:e8:09:c7:f2:59:ef:9c:29:29:5f:15:1e:1b:7e:e5: 67:40:a7:03:4c:6d:80:8d:65:8c:47:bd:ec:5f:8e:8b:b5:0f: 38:b6:53:5a:15:48:be:16:7c:11:f7:ee:1c:c6:d8:a6:8e:c5: 49:00:91:c9:a9:a0:80:e7:e3:b6:88:af:a8:e2:81:b3:8f:2d: 3f:73:2d:c7:b6:f2:ff:a3:9a:58:96:b2:c1:fd:de:26:0b:97: e8:c7:19:17:82:25:89:bb:26:4d:b7:ff:82:38:30:7f:85:40: ca:32:42:31:af:f6:8d:29:ea:c0:96:72:fa:de:a9:62:41:9f: b4:ed:79:98:cb:a7:f0:24:60:94:63:45:5b:ee:b6:e6:eb:b6: 04:5a:77:26:63:8a:49:37:62:20:93:c8:34:fb:c2:c4:74:a1: aa:c4:26:72 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAYgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RkM5RkUxMTAvBgNVBAUTKEE1RDlDNkE2Rjk2NzVCOTFDRTU0RDExNUY4OEM5NDEw RjE4RjkwRkUwHhcNMjUwNjE3MDI0NDExWhcNMjUwNjI0MDI0NDExWjAYMRYwFAYD VQQDEw02ODUwZDY3Yi00MmNhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA9bXluIWPyCWjFspCauNfCm2q2+6ju28UHQhaJgV/QCkW3rIcZJGlRMXyQirV 6qOQT719U597vlifBlpHo7PJdjebXjJrRB4ujENPAtQmeQCfs7ekBCo/RGZSts1i fjVxbNWXKh7U2/gv3QCH+XcHkbeikO+YlS3lYR3eS97s9dSMAn/fZdgDV5HJeLlq 7ilUVUVBhtlbZ0AuKlEWZDaRESOJWZcfmmQTZitBLMFbtDmJf5/rSZlzdpMlf2BX f8+kNcvXygg2eQqQLRNSjU4eEv84RKRGTfatAkya9OydY9c/CCaiaTbzFHrTDDyr I6LtDcTwb71qt+BnT2KlgmASFwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFI7POgad 9SmHbhLRPeVq14R3ail3MB8GA1UdIwQYMBaAFKXZxqb5Z1uRzlTRFfiMlBDxj5D+ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGQzlGRS81M0NCNjkwQ0ZE RTIxMUVEOUQyRDFGNjhDNEY5QUUwMi9wZG5HcHZsblc1SE9WTkVWLUl5VUVQR1Br UDQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3BkbkdwdmxuVzVIT1ZORVYtSXlVRVBHUGtQNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG QzlGRS81M0NCNjkwQ0ZERTIxMUVEOUQyRDFGNjhDNEY5QUUwMi9wZG5HcHZsblc1 SE9WTkVWLUl5VUVQR1BrUDQubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAhKLOmbXf565gDWmdEjjwFhNb2Tmz0nPxb7LAnJrZ0/CYPj0KMSQ4E lNLkU0A9Vjaj2TYpodtoH5OMEMXp588yMliGytQybLKotbiTrKIyTDIRQN+sXpPy cawy71foCcfyWe+cKSlfFR4bfuVnQKcDTG2AjWWMR73sX46LtQ84tlNaFUi+FnwR 9+4cxtimjsVJAJHJqaCA5+O2iK+o4oGzjy0/cy3HtvL/o5pYlrLB/d4mC5foxxkX giWJuyZNt/+CODB/hUDKMkIxr/aNKerAlnL63qliQZ+07XmYy6fwJGCUY0Vb7rbm 67YEWncmY4pJN2Igk8g0+8LEdKGqxCZy -----END CERTIFICATE-----Generated at Wed Jun 18 08:27:05 2025 by rpki-client