$ rpki-client -vvf rpki.apnic.net/member_repository/A917BB51/25ACF5C0C4B811EEBD71C446C4F9AE02/PqQ0fS2f1utqAbROVXH4iwiswls.mft File: PqQ0fS2f1utqAbROVXH4iwiswls.mft (raw, json) Hash identifier: 45zvEX5xRxFUeJ9yupyYa8IHl/bkSY4cjXxhwPCY7xg= Subject key identifier: 65:97:F2:6A:AC:72:2E:95:C5:01:4B:54:EF:EF:D9:DC:BB:5B:5C:D2 Authority key identifier: 3E:A4:34:7D:2D:9F:D6:EB:6A:01:B4:4E:55:71:F8:8B:08:AC:C2:5B Certificate issuer: /CN=A917BB51/serialNumber=3EA4347D2D9FD6EB6A01B44E5571F88B08ACC25B Certificate serial: 011E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PqQ0fS2f1utqAbROVXH4iwiswls.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917BB51/25ACF5C0C4B811EEBD71C446C4F9AE02/PqQ0fS2f1utqAbROVXH4iwiswls.mft Manifest number: 0117 Signing time: Sat 19 Jul 2025 05:08:42 +0000 Manifest this update: Sat 19 Jul 2025 05:08:41 +0000 Manifest next update: Sat 26 Jul 2025 05:08:41 +0000 Files and hashes: 1: PqQ0fS2f1utqAbROVXH4iwiswls.crl (hash: ZOMpq4rdIEyYz2LrPx5Zif4vqqmma5tFab1nKE4ZdSs=) 2: A9C5C1CAC4B811EE8A03D547C4F9AE02.roa (hash: 3GOqN8PMZ/cxFE5yg/l01rtznIl/3wsy8K8LEuE8lEg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917BB51/25ACF5C0C4B811EEBD71C446C4F9AE02/PqQ0fS2f1utqAbROVXH4iwiswls.crl rsync://rpki.apnic.net/member_repository/A917BB51/25ACF5C0C4B811EEBD71C446C4F9AE02/PqQ0fS2f1utqAbROVXH4iwiswls.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PqQ0fS2f1utqAbROVXH4iwiswls.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 26 Jul 2025 05:08:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 286 (0x11e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917BB51, serialNumber=3EA4347D2D9FD6EB6A01B44E5571F88B08ACC25B Validity Not Before: Jul 19 05:08:41 2025 GMT Not After : Jul 26 05:08:41 2025 GMT Subject: CN=687b285a-15ea Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:f1:fd:66:72:72:88:52:f8:16:ee:1b:14:b6: 13:c3:83:a4:bc:19:56:69:ab:40:97:38:e7:00:05: a1:bf:cc:45:a3:81:44:cc:a4:37:9a:c9:23:2a:5e: 7e:0d:cf:f9:fc:86:d3:a7:bd:bb:7f:dc:fb:bc:a6: 6b:53:cf:b7:b4:37:22:8c:69:10:45:be:29:4e:43: 9f:9d:b5:31:17:d4:cc:44:eb:44:10:c4:9e:7c:8b: a3:92:04:20:2e:9b:22:12:26:c4:af:25:80:9c:8e: e7:8a:5c:c4:fd:b7:bb:4b:1e:87:9f:85:3a:16:2c: 9a:50:ee:a2:c3:11:b5:c9:ba:59:67:ee:05:3d:2e: 95:3e:d3:d8:de:54:67:b5:10:2c:c2:4e:12:25:f0: b7:14:70:96:82:50:42:48:ca:24:ef:48:14:42:2d: e0:e7:f0:ac:d5:7b:ca:0c:1b:24:a0:b6:5f:53:46: 4b:ab:3f:a2:75:ba:e4:6c:fc:ae:55:dc:4e:06:e4: bd:7b:e6:c1:c7:d4:04:3d:7b:42:32:5b:df:ee:d5: 30:b8:04:88:da:86:18:22:08:e2:a0:e7:72:7d:b6: c7:b4:2a:fe:30:71:a8:51:88:0f:54:1c:38:5e:2a: f9:3b:9c:d1:a3:37:20:d6:f1:6a:17:a6:66:7d:df: b3:31 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 65:97:F2:6A:AC:72:2E:95:C5:01:4B:54:EF:EF:D9:DC:BB:5B:5C:D2 X509v3 Authority Key Identifier: keyid:3E:A4:34:7D:2D:9F:D6:EB:6A:01:B4:4E:55:71:F8:8B:08:AC:C2:5B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917BB51/25ACF5C0C4B811EEBD71C446C4F9AE02/PqQ0fS2f1utqAbROVXH4iwiswls.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PqQ0fS2f1utqAbROVXH4iwiswls.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917BB51/25ACF5C0C4B811EEBD71C446C4F9AE02/PqQ0fS2f1utqAbROVXH4iwiswls.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption ec:ac:39:6c:a2:96:6e:1a:33:35:40:fc:4b:51:cd:3f:03:fb: 38:da:7a:f4:22:a3:fc:4e:27:72:ba:76:b0:6a:22:62:1a:d1: 83:d4:18:3d:31:81:20:e4:9a:f5:1e:f3:75:d4:fc:51:fe:90: 92:83:9a:c3:d2:51:6e:fd:83:23:ea:90:5e:eb:a8:8f:be:e0: eb:70:f6:7c:bd:32:99:ca:b4:cb:07:8c:1b:79:2f:80:a5:82: 7f:8e:5a:2d:7c:24:c1:f4:f0:6c:49:c0:fd:ef:d0:f7:b5:b6: 07:3c:47:e2:06:cc:f9:1c:4c:24:be:3e:b7:47:55:2b:9b:0f: fd:16:90:f1:b5:79:9d:9a:34:84:e1:b8:78:1c:9e:0a:3c:ed: ac:fd:56:7a:6e:66:97:a8:44:6f:40:60:e5:0c:ab:2c:c5:6f: e2:2d:1b:9f:4f:17:b9:ea:d1:98:09:42:ed:e8:78:09:f6:2d: 06:38:85:d4:53:9e:95:50:56:82:a7:f0:49:2c:f0:40:9d:3a: d0:c1:08:90:38:98:56:d4:df:9c:26:3d:91:4e:98:c9:a8:fc: fd:07:87:19:53:e2:5e:a3:95:4c:9f:4b:e2:20:a8:27:1b:5c: 66:42:4b:47:fa:66:d8:7c:5f:6d:25:96:de:9e:98:f7:88:c0: 4c:5e:80:b3 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAR4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0JCNTExMTAvBgNVBAUTKDNFQTQzNDdEMkQ5RkQ2RUI2QTAxQjQ0RTU1NzFGODhC MDhBQ0MyNUIwHhcNMjUwNzE5MDUwODQxWhcNMjUwNzI2MDUwODQxWjAYMRYwFAYD VQQDEw02ODdiMjg1YS0xNWVhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAufH9ZnJyiFL4Fu4bFLYTw4OkvBlWaatAlzjnAAWhv8xFo4FEzKQ3mskjKl5+ Dc/5/IbTp727f9z7vKZrU8+3tDcijGkQRb4pTkOfnbUxF9TMROtEEMSefIujkgQg LpsiEibEryWAnI7nilzE/be7Sx6Hn4U6FiyaUO6iwxG1ybpZZ+4FPS6VPtPY3lRn tRAswk4SJfC3FHCWglBCSMok70gUQi3g5/Cs1XvKDBskoLZfU0ZLqz+idbrkbPyu VdxOBuS9e+bBx9QEPXtCMlvf7tUwuASI2oYYIgjioOdyfbbHtCr+MHGoUYgPVBw4 Xir5O5zRozcg1vFqF6Zmfd+zMQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFGWX8mqs ci6VxQFLVO/v2dy7W1zSMB8GA1UdIwQYMBaAFD6kNH0tn9bragG0TlVx+IsIrMJb MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3QkI1MS8yNUFDRjVDMEM0 QjgxMUVFQkQ3MUM0NDZDNEY5QUUwMi9QcVEwZlMyZjF1dHFBYlJPVlhINGl3aXN3 bHMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1BxUTBmUzJmMXV0cUFiUk9WWEg0aXdpc3dscy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 QkI1MS8yNUFDRjVDMEM0QjgxMUVFQkQ3MUM0NDZDNEY5QUUwMi9QcVEwZlMyZjF1 dHFBYlJPVlhINGl3aXN3bHMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQDsrDlsopZuGjM1QPxLUc0/A/s42nr0IqP8TidyunawaiJiGtGD1Bg9 MYEg5Jr1HvN11PxR/pCSg5rD0lFu/YMj6pBe66iPvuDrcPZ8vTKZyrTLB4wbeS+A pYJ/jlotfCTB9PBsScD979D3tbYHPEfiBsz5HEwkvj63R1Urmw/9FpDxtXmdmjSE 4bh4HJ4KPO2s/VZ6bmaXqERvQGDlDKssxW/iLRufTxe56tGYCULt6HgJ9i0GOIXU U56VUFaCp/BJLPBAnTrQwQiQOJhW1N+cJj2RTpjJqPz9B4cZU+Jeo5VMn0viIKgn G1xmQktH+mbYfF9tJZbenpj3iMBMXoCz -----END CERTIFICATE-----Generated at Sun Jul 20 07:54:23 2025 by rpki-client