$ rpki-client -vvf rpki.apnic.net/member_repository/A9194522/DE20FC96275C11ED8DAC6A68C4F9AE02/pjicd02tZdiN8ubU9D3ioLVy7no.mft File: pjicd02tZdiN8ubU9D3ioLVy7no.mft (raw, json) Hash identifier: ZXTA+lfZafv1UV8ItoIRXnrxKIOkr6vtyttnYzf55YA= Subject key identifier: 49:35:1B:CD:18:B9:8F:57:7D:6E:66:3F:61:A9:18:66:29:EA:50:11 Authority key identifier: A6:38:9C:77:4D:AD:65:D8:8D:F2:E6:D4:F4:3D:E2:A0:B5:72:EE:7A Certificate issuer: /CN=A9194522/serialNumber=A6389C774DAD65D88DF2E6D4F43DE2A0B572EE7A Certificate serial: 0266 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pjicd02tZdiN8ubU9D3ioLVy7no.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9194522/DE20FC96275C11ED8DAC6A68C4F9AE02/pjicd02tZdiN8ubU9D3ioLVy7no.mft Manifest number: 025D Signing time: Mon 21 Jul 2025 02:07:24 +0000 Manifest this update: Mon 21 Jul 2025 02:07:23 +0000 Manifest next update: Mon 28 Jul 2025 02:07:23 +0000 Files and hashes: 1: pjicd02tZdiN8ubU9D3ioLVy7no.crl (hash: 6MeMg5Xv6dFOKNjGt9GHObz81Zw9DN09PXqZ2zS+7lU=) 2: 9995D8D6276011EDAF21D06DC4F9AE02.roa (hash: De/y5SymwOEb9D5+rzbdyyNd+/EfQtgf39FuJEq4RYk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9194522/DE20FC96275C11ED8DAC6A68C4F9AE02/pjicd02tZdiN8ubU9D3ioLVy7no.crl rsync://rpki.apnic.net/member_repository/A9194522/DE20FC96275C11ED8DAC6A68C4F9AE02/pjicd02tZdiN8ubU9D3ioLVy7no.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pjicd02tZdiN8ubU9D3ioLVy7no.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 28 Jul 2025 02:07:22 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 614 (0x266) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9194522, serialNumber=A6389C774DAD65D88DF2E6D4F43DE2A0B572EE7A Validity Not Before: Jul 21 02:07:23 2025 GMT Not After : Jul 28 02:07:23 2025 GMT Subject: CN=687da0db-f036 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:78:49:87:b5:4a:18:32:68:b3:82:4e:ab:1d: a9:d2:3a:01:b4:9a:4b:2a:bd:55:9d:fd:3c:09:00: d6:6b:d5:4b:84:5a:21:c8:b5:29:70:0b:ce:77:f6: 76:2f:43:e5:b3:af:60:29:36:49:0a:b9:84:20:8d: fe:57:81:22:93:b7:5f:ff:67:13:3e:7f:2b:10:58: 0e:43:d4:a3:d1:44:8f:7a:a9:be:44:dc:1b:c3:c0: 19:41:b7:9d:80:6f:9b:19:4a:e8:30:10:e7:69:5c: 3e:25:99:17:22:5c:67:58:05:5d:c7:a3:9c:1f:30: 09:cd:6b:5a:ad:91:1d:6c:fe:91:c7:f5:88:0b:c3: ae:b5:8e:6b:26:b7:26:d5:b5:fe:16:3f:f7:6b:04: c6:42:bb:f6:88:51:f4:20:f8:6c:1e:05:ec:df:d8: d5:76:e0:80:49:68:9f:dc:8e:ba:d5:27:de:57:4e: 36:d0:5e:7c:09:bc:55:6a:42:50:47:d0:4e:ff:bf: 78:5e:e6:8d:71:7d:f3:b9:55:3b:db:6a:c6:e1:1c: 80:8b:96:54:68:9e:49:d9:9c:d0:5d:d1:b1:c8:dd: 9d:12:18:0f:ee:89:66:66:03:2d:e7:c6:f1:9b:d7: b5:21:71:94:4d:e7:47:40:9f:84:c9:0b:d9:d0:4c: 03:b1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 49:35:1B:CD:18:B9:8F:57:7D:6E:66:3F:61:A9:18:66:29:EA:50:11 X509v3 Authority Key Identifier: keyid:A6:38:9C:77:4D:AD:65:D8:8D:F2:E6:D4:F4:3D:E2:A0:B5:72:EE:7A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9194522/DE20FC96275C11ED8DAC6A68C4F9AE02/pjicd02tZdiN8ubU9D3ioLVy7no.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pjicd02tZdiN8ubU9D3ioLVy7no.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9194522/DE20FC96275C11ED8DAC6A68C4F9AE02/pjicd02tZdiN8ubU9D3ioLVy7no.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 1f:23:26:80:41:65:9a:60:76:3e:7a:62:5a:c5:78:69:3b:af: 20:db:c1:36:0d:0a:1d:c7:13:de:0f:c2:c2:a3:92:86:3a:53: 2d:65:2e:dc:f3:9c:aa:1f:6d:c4:8f:e9:2a:47:f4:51:5d:4d: 93:91:eb:6d:9c:d2:d3:41:a3:8a:c1:2f:93:cf:ac:2a:99:30: 4b:d3:66:f1:7d:a8:a9:73:bd:4f:95:d7:00:3f:e7:67:6c:08: 18:99:32:ff:1c:5e:b9:61:39:97:4f:f9:fc:e5:6e:d0:b1:5f: 64:6e:70:f8:df:5f:f8:64:78:63:6d:60:18:e6:d3:cc:9f:af: 52:4c:b9:cf:c9:42:95:5a:72:c2:7f:cd:7b:a7:7c:c3:b3:cf: 7b:36:eb:dc:a9:b4:1e:66:79:d9:86:3e:30:97:b0:12:3d:87: c1:ad:11:ca:0c:a3:e8:61:08:59:ae:ef:a9:d9:c0:c0:a0:f0: a7:55:e2:8c:9d:71:5e:d2:16:29:b5:d7:4b:1d:6a:be:65:dd: 27:53:e0:35:46:91:b3:67:cb:3e:b5:d3:39:47:1a:2e:59:0d: e0:7c:65:6b:5a:b1:f0:da:81:bf:5e:0c:27:f6:a6:be:81:89: 7c:cd:16:67:a0:e9:4d:10:c0:21:15:86:96:c0:b7:f6:9a:09: 75:de:46:66 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAmYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTQ1MjIxMTAvBgNVBAUTKEE2Mzg5Qzc3NERBRDY1RDg4REYyRTZENEY0M0RFMkEw QjU3MkVFN0EwHhcNMjUwNzIxMDIwNzIzWhcNMjUwNzI4MDIwNzIzWjAYMRYwFAYD VQQDEw02ODdkYTBkYi1mMDM2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAt3hJh7VKGDJos4JOqx2p0joBtJpLKr1Vnf08CQDWa9VLhFohyLUpcAvOd/Z2 L0Pls69gKTZJCrmEII3+V4Eik7df/2cTPn8rEFgOQ9Sj0USPeqm+RNwbw8AZQbed gG+bGUroMBDnaVw+JZkXIlxnWAVdx6OcHzAJzWtarZEdbP6Rx/WIC8OutY5rJrcm 1bX+Fj/3awTGQrv2iFH0IPhsHgXs39jVduCASWif3I661SfeV0420F58CbxVakJQ R9BO/794XuaNcX3zuVU722rG4RyAi5ZUaJ5J2ZzQXdGxyN2dEhgP7olmZgMt58bx m9e1IXGUTedHQJ+EyQvZ0EwDsQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFEk1G80Y uY9XfW5mP2GpGGYp6lARMB8GA1UdIwQYMBaAFKY4nHdNrWXYjfLm1PQ94qC1cu56 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5NDUyMi9ERTIwRkM5NjI3 NUMxMUVEOERBQzZBNjhDNEY5QUUwMi9wamljZDAydFpkaU44dWJVOUQzaW9MVnk3 bm8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3BqaWNkMDJ0WmRpTjh1YlU5RDNpb0xWeTduby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 NDUyMi9ERTIwRkM5NjI3NUMxMUVEOERBQzZBNjhDNEY5QUUwMi9wamljZDAydFpk aU44dWJVOUQzaW9MVnk3bm8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAfIyaAQWWaYHY+emJaxXhpO68g28E2DQodxxPeD8LCo5KGOlMtZS7c 85yqH23Ej+kqR/RRXU2TkettnNLTQaOKwS+Tz6wqmTBL02bxfaipc71PldcAP+dn bAgYmTL/HF65YTmXT/n85W7QsV9kbnD431/4ZHhjbWAY5tPMn69STLnPyUKVWnLC f817p3zDs897NuvcqbQeZnnZhj4wl7ASPYfBrRHKDKPoYQhZru+p2cDAoPCnVeKM nXFe0hYptddLHWq+Zd0nU+A1RpGzZ8s+tdM5RxouWQ3gfGVrWrHw2oG/Xgwn9qa+ gYl8zRZnoOlNEMAhFYaWwLf2mgl13kZm -----END CERTIFICATE-----Generated at Mon Jul 21 13:28:14 2025 by rpki-client