$ rpki-client -vvf rpki.apnic.net/member_repository/A9163EB9/051C9E6454A011EF86AE5922C4F9AE02/PMd5DiA3Zl70liuB2tL9B-1G-LI.mft File: PMd5DiA3Zl70liuB2tL9B-1G-LI.mft (raw, json) Hash identifier: 0DuAAWqHo6LbA2VY2SnPgjEmhzu2TbQAJFfCJ0tPq54= Subject key identifier: 64:E8:DB:B8:6B:4F:AF:8B:8E:A3:86:8A:0A:04:02:86:E4:0A:BB:F5 Authority key identifier: 3C:C7:79:0E:20:37:66:5E:F4:96:2B:81:DA:D2:FD:07:ED:46:F8:B2 Certificate issuer: /CN=A9163EB9/serialNumber=3CC7790E2037665EF4962B81DAD2FD07ED46F8B2 Certificate serial: B6 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PMd5DiA3Zl70liuB2tL9B-1G-LI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9163EB9/051C9E6454A011EF86AE5922C4F9AE02/PMd5DiA3Zl70liuB2tL9B-1G-LI.mft Manifest number: B4 Signing time: Mon 21 Jul 2025 06:07:33 +0000 Manifest this update: Mon 21 Jul 2025 06:07:32 +0000 Manifest next update: Mon 28 Jul 2025 06:07:32 +0000 Files and hashes: 1: PMd5DiA3Zl70liuB2tL9B-1G-LI.crl (hash: pLjUqI0kzwdGRcOzEMCQL8po7F5ZowbSq3kvYSvySqE=) 2: A6449CBA54A011EFB35AED26C4F9AE02.roa (hash: TlHlbn6q/SJJmLaIdFeAVpNRm4YQAAsTE8XrQ+CUo9Q=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9163EB9/051C9E6454A011EF86AE5922C4F9AE02/PMd5DiA3Zl70liuB2tL9B-1G-LI.crl rsync://rpki.apnic.net/member_repository/A9163EB9/051C9E6454A011EF86AE5922C4F9AE02/PMd5DiA3Zl70liuB2tL9B-1G-LI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PMd5DiA3Zl70liuB2tL9B-1G-LI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 28 Jul 2025 06:07:32 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 182 (0xb6) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9163EB9, serialNumber=3CC7790E2037665EF4962B81DAD2FD07ED46F8B2 Validity Not Before: Jul 21 06:07:32 2025 GMT Not After : Jul 28 06:07:32 2025 GMT Subject: CN=687dd925-c1b9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:69:df:a7:57:0d:68:b4:e5:e2:b2:80:68:60: c0:51:34:7a:2e:0c:2b:d5:af:0a:9e:de:b0:f3:5d: d7:d9:8c:ff:37:8b:8c:05:4e:b1:45:8b:d7:37:bc: 84:df:62:38:96:c6:1f:05:c4:e5:df:72:fc:42:a5: e9:14:b4:bc:59:49:8c:71:7a:da:02:43:8c:8f:f9: 24:ba:14:1a:6b:5f:11:d8:cd:1f:40:7d:ed:a9:ee: 48:19:62:61:82:0a:fb:75:a5:81:b9:da:15:b9:6b: ff:83:fc:d7:c6:d0:a9:37:60:57:93:33:a3:80:45: 3e:5e:1f:f8:79:9a:ed:02:fb:c9:f0:5e:dd:c0:db: fc:b9:ed:06:4d:76:d8:d7:58:0c:2f:01:e8:3a:a5: 52:1c:d9:71:ea:a4:c4:ec:83:5c:fe:ed:a8:8e:99: d1:8a:dd:48:05:b0:64:56:ff:c3:6e:90:f4:b9:64: 3b:84:d3:fb:c0:88:7d:0b:b6:39:b0:10:37:c5:f9: 1b:ec:c9:03:b5:4f:dd:01:1c:f0:77:52:79:70:33: fa:b2:7b:24:38:2c:c4:0b:b2:61:91:26:3d:bf:59: 90:53:1d:31:62:9b:d5:06:0d:2c:e5:e8:5e:4b:df: 94:cf:f5:e6:09:d9:c8:ee:49:29:00:88:7c:ae:14: 90:0b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 64:E8:DB:B8:6B:4F:AF:8B:8E:A3:86:8A:0A:04:02:86:E4:0A:BB:F5 X509v3 Authority Key Identifier: keyid:3C:C7:79:0E:20:37:66:5E:F4:96:2B:81:DA:D2:FD:07:ED:46:F8:B2 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9163EB9/051C9E6454A011EF86AE5922C4F9AE02/PMd5DiA3Zl70liuB2tL9B-1G-LI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PMd5DiA3Zl70liuB2tL9B-1G-LI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9163EB9/051C9E6454A011EF86AE5922C4F9AE02/PMd5DiA3Zl70liuB2tL9B-1G-LI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 49:99:e1:77:bf:6b:23:4d:bf:f2:4d:08:8e:93:ca:a6:97:0a: 57:2c:f4:a4:42:52:3a:78:9e:f9:0e:40:e4:62:43:a9:3d:9a: 74:ea:56:f6:bd:1a:f8:5b:e4:95:9f:7b:d2:3f:b7:f8:da:4f: 90:ef:3b:57:23:89:cf:4b:93:fa:2a:3e:8e:3d:f2:07:1a:a9: ea:6c:88:d2:1a:e7:17:f8:c4:aa:8c:2c:77:83:38:e1:ed:2d: 52:99:32:0b:76:f8:22:64:a6:12:eb:32:86:86:2a:1f:71:ab: 9c:4e:09:d6:59:49:e8:fb:8a:29:11:d0:cd:59:90:35:10:ca: 88:58:85:77:14:0b:cd:9c:ad:49:6c:d0:ce:f2:19:c7:88:84: ea:9d:f6:26:0f:9c:33:e0:c4:c0:43:e9:de:fa:86:4b:57:56: a1:9e:92:17:08:d7:3e:67:a7:38:db:76:45:f1:45:dc:96:31: 68:f9:1e:1b:c0:e4:1f:64:75:13:29:3a:f6:39:87:96:31:00: 0a:23:04:29:0b:d5:1f:95:f4:e1:b7:c2:0c:73:de:ac:34:5b: ea:41:ef:9c:75:10:4a:54:76:f0:64:99:48:55:2f:40:88:8c: 64:fe:1f:1d:f4:63:0b:bc:f1:b2:d2:f8:fc:5b:71:6a:bf:01: 7d:55:0f:50 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICALYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NjNFQjkxMTAvBgNVBAUTKDNDQzc3OTBFMjAzNzY2NUVGNDk2MkI4MURBRDJGRDA3 RUQ0NkY4QjIwHhcNMjUwNzIxMDYwNzMyWhcNMjUwNzI4MDYwNzMyWjAYMRYwFAYD VQQDEw02ODdkZDkyNS1jMWI5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAumnfp1cNaLTl4rKAaGDAUTR6Lgwr1a8Knt6w813X2Yz/N4uMBU6xRYvXN7yE 32I4lsYfBcTl33L8QqXpFLS8WUmMcXraAkOMj/kkuhQaa18R2M0fQH3tqe5IGWJh ggr7daWBudoVuWv/g/zXxtCpN2BXkzOjgEU+Xh/4eZrtAvvJ8F7dwNv8ue0GTXbY 11gMLwHoOqVSHNlx6qTE7INc/u2ojpnRit1IBbBkVv/DbpD0uWQ7hNP7wIh9C7Y5 sBA3xfkb7MkDtU/dARzwd1J5cDP6snskOCzEC7JhkSY9v1mQUx0xYpvVBg0s5ehe S9+Uz/XmCdnI7kkpAIh8rhSQCwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFGTo27hr T6+LjqOGigoEAobkCrv1MB8GA1UdIwQYMBaAFDzHeQ4gN2Ze9JYrgdrS/QftRviy MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2M0VCOS8wNTFDOUU2NDU0 QTAxMUVGODZBRTU5MjJDNEY5QUUwMi9QTWQ1RGlBM1psNzBsaXVCMnRMOUItMUct TEkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1BNZDVEaUEzWmw3MGxpdUIydEw5Qi0xRy1MSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 M0VCOS8wNTFDOUU2NDU0QTAxMUVGODZBRTU5MjJDNEY5QUUwMi9QTWQ1RGlBM1ps NzBsaXVCMnRMOUItMUctTEkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBJmeF3v2sjTb/yTQiOk8qmlwpXLPSkQlI6eJ75DkDkYkOpPZp06lb2 vRr4W+SVn3vSP7f42k+Q7ztXI4nPS5P6Kj6OPfIHGqnqbIjSGucX+MSqjCx3gzjh 7S1SmTILdvgiZKYS6zKGhiofcaucTgnWWUno+4opEdDNWZA1EMqIWIV3FAvNnK1J bNDO8hnHiITqnfYmD5wz4MTAQ+ne+oZLV1ahnpIXCNc+Z6c423ZF8UXcljFo+R4b wOQfZHUTKTr2OYeWMQAKIwQpC9UflfTht8IMc96sNFvqQe+cdRBKVHbwZJlIVS9A iIxk/h8d9GMLvPGy0vj8W3FqvwF9VQ9Q -----END CERTIFICATE-----Generated at Wed Jul 23 02:34:58 2025 by rpki-client