$ rpki-client -vvf rpki.apnic.net/member_repository/A9163EB9/051C9E6454A011EF86AE5922C4F9AE02/PMd5DiA3Zl70liuB2tL9B-1G-LI.mft File: PMd5DiA3Zl70liuB2tL9B-1G-LI.mft (raw, json) Hash identifier: 70aBFIXaCOaLAE7fl2MDm9C5JolxhJUSwjRHRguo9i4= Subject key identifier: B7:D3:61:7D:0E:0A:66:7D:FA:4E:96:3B:5D:C7:FF:0A:E9:40:D6:B2 Authority key identifier: 3C:C7:79:0E:20:37:66:5E:F4:96:2B:81:DA:D2:FD:07:ED:46:F8:B2 Certificate issuer: /CN=A9163EB9/serialNumber=3CC7790E2037665EF4962B81DAD2FD07ED46F8B2 Certificate serial: B8 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PMd5DiA3Zl70liuB2tL9B-1G-LI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9163EB9/051C9E6454A011EF86AE5922C4F9AE02/PMd5DiA3Zl70liuB2tL9B-1G-LI.mft Manifest number: B6 Signing time: Fri 25 Jul 2025 06:14:48 +0000 Manifest this update: Fri 25 Jul 2025 06:14:48 +0000 Manifest next update: Fri 01 Aug 2025 06:14:47 +0000 Files and hashes: 1: PMd5DiA3Zl70liuB2tL9B-1G-LI.crl (hash: 9PF1Y8NEWzE1ASz9uzT+MrCybr7sOC8QLF0O5e/gvZY=) 2: A6449CBA54A011EFB35AED26C4F9AE02.roa (hash: TlHlbn6q/SJJmLaIdFeAVpNRm4YQAAsTE8XrQ+CUo9Q=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9163EB9/051C9E6454A011EF86AE5922C4F9AE02/PMd5DiA3Zl70liuB2tL9B-1G-LI.crl rsync://rpki.apnic.net/member_repository/A9163EB9/051C9E6454A011EF86AE5922C4F9AE02/PMd5DiA3Zl70liuB2tL9B-1G-LI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PMd5DiA3Zl70liuB2tL9B-1G-LI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 01 Aug 2025 06:14:47 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 184 (0xb8) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9163EB9, serialNumber=3CC7790E2037665EF4962B81DAD2FD07ED46F8B2 Validity Not Before: Jul 25 06:14:48 2025 GMT Not After : Aug 1 06:14:47 2025 GMT Subject: CN=688320d8-402e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b1:7b:50:91:8b:c2:cc:44:02:29:81:a2:42:f8: 72:5c:53:08:c9:fc:5f:f8:11:c0:3a:af:d2:4d:41: 53:de:cb:a5:1f:dd:1f:80:4c:7c:86:3d:88:55:b7: b6:1d:b0:16:fd:8c:e9:04:73:94:2f:11:5d:5d:56: b6:d0:69:6d:61:73:dd:80:99:90:2a:28:93:91:7f: f3:61:44:dc:83:5e:13:42:60:15:19:6d:df:20:23: e0:47:c2:7c:b9:32:18:71:cc:94:9c:48:85:69:dc: 1a:de:16:4d:ed:b2:d3:5e:2a:9d:5a:28:f1:92:ef: 0e:6e:85:bd:d6:0e:29:5c:e2:62:68:95:d8:1f:66: 48:16:c4:97:52:d3:a5:66:67:03:85:c4:db:a0:ca: b9:2b:92:ac:2e:c6:a0:a4:75:93:71:65:b9:7c:e7: a4:3a:d4:9c:2f:0f:94:0e:00:ed:14:d7:11:2a:37: 6f:26:6a:9d:89:07:e1:33:eb:b8:b6:40:7a:ea:5a: c4:d9:bc:56:3e:e8:bb:bd:29:73:2f:cc:49:b8:f4: 1e:98:10:55:aa:96:c8:36:01:61:ab:b6:db:76:9e: 93:00:58:6e:7b:d2:eb:10:a9:4b:04:23:9b:e7:b2: bd:d2:ba:24:02:94:be:1c:c4:99:ab:d4:ed:81:45: a5:53 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B7:D3:61:7D:0E:0A:66:7D:FA:4E:96:3B:5D:C7:FF:0A:E9:40:D6:B2 X509v3 Authority Key Identifier: keyid:3C:C7:79:0E:20:37:66:5E:F4:96:2B:81:DA:D2:FD:07:ED:46:F8:B2 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9163EB9/051C9E6454A011EF86AE5922C4F9AE02/PMd5DiA3Zl70liuB2tL9B-1G-LI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PMd5DiA3Zl70liuB2tL9B-1G-LI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9163EB9/051C9E6454A011EF86AE5922C4F9AE02/PMd5DiA3Zl70liuB2tL9B-1G-LI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 9f:dd:c7:2d:68:8f:9b:a4:fc:d5:f5:5f:eb:9c:dd:25:70:8d: 78:98:0c:0f:cf:54:ea:ee:53:5e:8b:ae:68:8b:8d:ad:5f:1a: fd:27:8a:ca:01:bf:59:a2:e5:fe:3b:1c:b7:e3:a0:4b:a8:c6: d0:a0:bb:56:d1:5b:09:20:1d:92:b4:13:b8:d1:87:97:da:9b: 92:fa:be:b5:50:40:75:a5:ca:c6:47:4b:31:dc:d3:37:ad:c9: 49:e2:21:f6:20:bf:ce:22:fd:21:dc:dd:9a:91:10:6e:4a:37: 05:59:7b:c2:13:b7:e0:a2:81:fc:5c:af:2d:cc:3a:d6:7b:0e: 91:b3:4c:26:b9:d5:ac:71:1b:de:3d:ff:c8:72:09:0b:f6:b0: a1:28:9f:e6:21:b8:ad:60:c0:14:a3:59:23:80:6a:a8:87:5a: dd:dc:39:fc:71:16:84:f1:3f:a9:68:e8:bc:58:46:32:0a:84: fe:93:f1:1f:24:51:53:58:e2:e9:b7:2b:b3:b4:99:42:ef:30: c3:04:fc:76:be:26:d5:84:0f:93:0a:f5:56:76:e0:46:b1:40: 5f:8f:28:f1:b9:20:32:9d:ea:62:36:ca:f1:b0:45:e6:16:d2: 01:28:6b:bf:7d:3a:98:0e:0f:2b:65:d5:c0:41:fe:2a:bf:16: b8:98:4c:77 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICALgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NjNFQjkxMTAvBgNVBAUTKDNDQzc3OTBFMjAzNzY2NUVGNDk2MkI4MURBRDJGRDA3 RUQ0NkY4QjIwHhcNMjUwNzI1MDYxNDQ4WhcNMjUwODAxMDYxNDQ3WjAYMRYwFAYD VQQDEw02ODgzMjBkOC00MDJlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsXtQkYvCzEQCKYGiQvhyXFMIyfxf+BHAOq/STUFT3sulH90fgEx8hj2IVbe2 HbAW/YzpBHOULxFdXVa20GltYXPdgJmQKiiTkX/zYUTcg14TQmAVGW3fICPgR8J8 uTIYccyUnEiFadwa3hZN7bLTXiqdWijxku8OboW91g4pXOJiaJXYH2ZIFsSXUtOl ZmcDhcTboMq5K5KsLsagpHWTcWW5fOekOtScLw+UDgDtFNcRKjdvJmqdiQfhM+u4 tkB66lrE2bxWPui7vSlzL8xJuPQemBBVqpbINgFhq7bbdp6TAFhue9LrEKlLBCOb 57K90rokApS+HMSZq9TtgUWlUwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFLfTYX0O CmZ9+k6WO13H/wrpQNayMB8GA1UdIwQYMBaAFDzHeQ4gN2Ze9JYrgdrS/QftRviy MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2M0VCOS8wNTFDOUU2NDU0 QTAxMUVGODZBRTU5MjJDNEY5QUUwMi9QTWQ1RGlBM1psNzBsaXVCMnRMOUItMUct TEkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1BNZDVEaUEzWmw3MGxpdUIydEw5Qi0xRy1MSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 M0VCOS8wNTFDOUU2NDU0QTAxMUVGODZBRTU5MjJDNEY5QUUwMi9QTWQ1RGlBM1ps NzBsaXVCMnRMOUItMUctTEkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCf3cctaI+bpPzV9V/rnN0lcI14mAwPz1Tq7lNei65oi42tXxr9J4rK Ab9ZouX+Oxy346BLqMbQoLtW0VsJIB2StBO40YeX2puS+r61UEB1pcrGR0sx3NM3 rclJ4iH2IL/OIv0h3N2akRBuSjcFWXvCE7fgooH8XK8tzDrWew6Rs0wmudWscRve Pf/IcgkL9rChKJ/mIbitYMAUo1kjgGqoh1rd3Dn8cRaE8T+paOi8WEYyCoT+k/Ef JFFTWOLptyuztJlC7zDDBPx2vibVhA+TCvVWduBGsUBfjyjxuSAynepiNsrxsEXm FtIBKGu/fTqYDg8rZdXAQf4qvxa4mEx3 -----END CERTIFICATE-----Generated at Sat Jul 26 02:04:05 2025 by rpki-client