$ rpki-client -vvf rpki.apnic.net/member_repository/A91FC9FE/53CB690CFDE211ED9D2D1F68C4F9AE02/pdnGpvlnW5HOVNEV-IyUEPGPkP4.mft File: pdnGpvlnW5HOVNEV-IyUEPGPkP4.mft (raw, json) Hash identifier: m5RsTBgkpV78D/NNFAe/txAkIxWBhLFpy2yfRmx+2x8= Subject key identifier: C8:15:D3:95:BD:7E:FE:1A:D4:50:22:EE:9E:84:F5:83:FD:24:0B:75 Authority key identifier: A5:D9:C6:A6:F9:67:5B:91:CE:54:D1:15:F8:8C:94:10:F1:8F:90:FE Certificate issuer: /CN=A91FC9FE/serialNumber=A5D9C6A6F9675B91CE54D115F88C9410F18F90FE Certificate serial: 016E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pdnGpvlnW5HOVNEV-IyUEPGPkP4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91FC9FE/53CB690CFDE211ED9D2D1F68C4F9AE02/pdnGpvlnW5HOVNEV-IyUEPGPkP4.mft Manifest number: 0167 Signing time: Fri 25 Apr 2025 03:03:37 +0000 Manifest this update: Fri 25 Apr 2025 03:03:36 +0000 Manifest next update: Fri 02 May 2025 03:03:36 +0000 Files and hashes: 1: pdnGpvlnW5HOVNEV-IyUEPGPkP4.crl (hash: JqW74sftblbpylT4vTUzOE9vANZEVRhYjFtNYMfcCro=) 2: C5CD32AAE5DC11EE867C6F21C4F9AE02.roa (hash: a4fQ9/brXb5z2Mtyms5QfXYQ2TroFUoiyPnPZ317i3A=) 3: C6AA9D48E5DC11EE867C6F21C4F9AE02.roa (hash: AbLxDDz7EyW1J/bgbPyfasPFpKdJaru9haT9jeZMl/Y=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91FC9FE/53CB690CFDE211ED9D2D1F68C4F9AE02/pdnGpvlnW5HOVNEV-IyUEPGPkP4.crl rsync://rpki.apnic.net/member_repository/A91FC9FE/53CB690CFDE211ED9D2D1F68C4F9AE02/pdnGpvlnW5HOVNEV-IyUEPGPkP4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pdnGpvlnW5HOVNEV-IyUEPGPkP4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 02 May 2025 03:03:36 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 366 (0x16e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91FC9FE, serialNumber=A5D9C6A6F9675B91CE54D115F88C9410F18F90FE Validity Not Before: Apr 25 03:03:36 2025 GMT Not After : May 2 03:03:36 2025 GMT Subject: CN=680afb89-dea9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ce:85:9b:c9:fe:80:2f:26:89:26:6a:72:18:ae: fc:b6:98:0d:a5:26:2a:84:29:d7:f2:31:1f:8b:92: c6:7f:95:22:85:0e:67:e8:95:3a:47:b9:0a:50:0d: ed:fb:c1:7a:c7:d5:fe:2a:8e:1c:b0:d9:b3:3f:cc: c3:ec:26:26:e2:69:c2:36:c3:86:9a:ff:d0:66:e3: 1d:c4:11:e8:d6:a9:82:4e:dd:db:86:e7:bd:43:ab: e3:c8:40:5c:3e:47:77:26:88:d5:5a:ff:91:1f:46: 89:3b:cd:cc:49:5e:86:26:07:05:75:2b:84:0d:b2: 39:2d:a0:f0:16:de:a7:0f:a0:2a:81:32:f6:98:a2: 6c:ab:fe:d1:82:18:bf:da:f7:d7:80:90:14:5b:44: e5:d1:cd:aa:3e:d4:a5:31:d1:2a:e1:8f:69:f2:12: 5f:54:26:ac:6c:55:a0:3d:8e:de:8e:6d:15:10:32: e3:ac:4b:94:fb:9d:69:a4:5e:c3:f4:b8:b6:1a:f6: e0:07:46:15:72:20:41:1a:07:25:29:ea:d2:fe:b0: 93:04:6e:98:b6:49:d3:8c:86:ef:e1:43:0e:6c:41: fe:9f:6f:ed:ad:bd:54:a4:c6:f3:a6:f9:25:be:88: dd:b2:56:e0:85:b8:cb:84:c1:b1:6c:7d:58:af:50: aa:c1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C8:15:D3:95:BD:7E:FE:1A:D4:50:22:EE:9E:84:F5:83:FD:24:0B:75 X509v3 Authority Key Identifier: keyid:A5:D9:C6:A6:F9:67:5B:91:CE:54:D1:15:F8:8C:94:10:F1:8F:90:FE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91FC9FE/53CB690CFDE211ED9D2D1F68C4F9AE02/pdnGpvlnW5HOVNEV-IyUEPGPkP4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pdnGpvlnW5HOVNEV-IyUEPGPkP4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91FC9FE/53CB690CFDE211ED9D2D1F68C4F9AE02/pdnGpvlnW5HOVNEV-IyUEPGPkP4.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 06:af:5c:f2:5c:4b:80:54:6c:a1:99:bd:b0:ee:6c:06:74:3f: 43:9f:af:a3:bb:b6:ed:6e:22:1f:7e:0a:e8:9d:60:37:aa:e8: 95:30:f5:52:76:ff:30:cf:1a:8e:69:66:b2:9f:28:03:85:7a: db:07:46:9f:f6:91:67:d6:2e:13:bb:2b:ec:77:49:de:6a:ec: b2:2b:f6:3b:c8:ad:14:c4:63:4e:4f:e7:8e:e6:59:45:de:9c: 61:d8:76:89:28:9a:8b:77:46:bd:e2:f4:b7:8a:fe:f6:6c:fb: e5:33:6b:33:ff:2c:ac:2b:f4:5a:be:d6:90:a0:4a:a0:d3:da: 27:4b:99:d6:2b:15:3e:05:6d:f8:f6:28:92:53:20:69:1f:2c: ce:d9:00:b5:e8:66:40:4d:6b:cc:7a:04:e9:d5:6e:de:72:58: 5d:d1:61:dc:02:4b:57:5f:7e:c5:7c:92:ae:6d:76:c5:93:98: 16:7c:55:a3:df:93:02:f7:42:a5:b6:b5:e6:57:53:1f:88:d1: 51:17:4b:4d:ed:84:1b:8d:e0:d0:32:e9:c5:27:31:c4:92:54: 3a:b8:be:ca:8f:09:7a:39:a2:3e:b0:6b:ac:82:73:57:b8:27: 36:49:ee:8a:76:5d:2c:0b:3d:c3:1c:48:69:f2:37:2c:30:dc: 84:aa:f1:fa -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAW4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RkM5RkUxMTAvBgNVBAUTKEE1RDlDNkE2Rjk2NzVCOTFDRTU0RDExNUY4OEM5NDEw RjE4RjkwRkUwHhcNMjUwNDI1MDMwMzM2WhcNMjUwNTAyMDMwMzM2WjAYMRYwFAYD VQQDEw02ODBhZmI4OS1kZWE5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzoWbyf6ALyaJJmpyGK78tpgNpSYqhCnX8jEfi5LGf5UihQ5n6JU6R7kKUA3t +8F6x9X+Ko4csNmzP8zD7CYm4mnCNsOGmv/QZuMdxBHo1qmCTt3bhue9Q6vjyEBc Pkd3JojVWv+RH0aJO83MSV6GJgcFdSuEDbI5LaDwFt6nD6AqgTL2mKJsq/7Rghi/ 2vfXgJAUW0Tl0c2qPtSlMdEq4Y9p8hJfVCasbFWgPY7ejm0VEDLjrEuU+51ppF7D 9Li2GvbgB0YVciBBGgclKerS/rCTBG6YtknTjIbv4UMObEH+n2/trb1UpMbzpvkl vojdslbghbjLhMGxbH1Yr1CqwQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFMgV05W9 fv4a1FAi7p6E9YP9JAt1MB8GA1UdIwQYMBaAFKXZxqb5Z1uRzlTRFfiMlBDxj5D+ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGQzlGRS81M0NCNjkwQ0ZE RTIxMUVEOUQyRDFGNjhDNEY5QUUwMi9wZG5HcHZsblc1SE9WTkVWLUl5VUVQR1Br UDQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3BkbkdwdmxuVzVIT1ZORVYtSXlVRVBHUGtQNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG QzlGRS81M0NCNjkwQ0ZERTIxMUVEOUQyRDFGNjhDNEY5QUUwMi9wZG5HcHZsblc1 SE9WTkVWLUl5VUVQR1BrUDQubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAGr1zyXEuAVGyhmb2w7mwGdD9Dn6+ju7btbiIffgronWA3quiVMPVS dv8wzxqOaWaynygDhXrbB0af9pFn1i4Tuyvsd0neauyyK/Y7yK0UxGNOT+eO5llF 3pxh2HaJKJqLd0a94vS3iv72bPvlM2sz/yysK/RavtaQoEqg09onS5nWKxU+BW34 9iiSUyBpHyzO2QC16GZATWvMegTp1W7eclhd0WHcAktXX37FfJKubXbFk5gWfFWj 35MC90KltrXmV1MfiNFRF0tN7YQbjeDQMunFJzHEklQ6uL7Kjwl6OaI+sGusgnNX uCc2Se6Kdl0sCz3DHEhp8jcsMNyEqvH6 -----END CERTIFICATE-----Generated at Sat Apr 26 16:50:33 2025 by rpki-client