$ rpki-client -vvf rpki.apnic.net/member_repository/A919D109/DAC666C05CE011EEB6C1B513C4F9AE02/Pq60tRb3A-pY8W4I2opmdwP7XK4.mft File: Pq60tRb3A-pY8W4I2opmdwP7XK4.mft (raw, json) Hash identifier: 2xRcV8ULI/FgXNHrxtRBNbUCgZ/AjeFSxkJb1tymKMU= Subject key identifier: FC:3D:CD:58:2E:95:EF:78:CE:80:43:0C:17:FB:2F:69:8A:4B:43:56 Authority key identifier: 3E:AE:B4:B5:16:F7:03:EA:58:F1:6E:08:DA:8A:66:77:03:FB:5C:AE Certificate issuer: /CN=A919D109/serialNumber=3EAEB4B516F703EA58F16E08DA8A667703FB5CAE Certificate serial: 0164 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Pq60tRb3A-pY8W4I2opmdwP7XK4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A919D109/DAC666C05CE011EEB6C1B513C4F9AE02/Pq60tRb3A-pY8W4I2opmdwP7XK4.mft Manifest number: 015C Signing time: Mon 21 Jul 2025 04:12:38 +0000 Manifest this update: Mon 21 Jul 2025 04:12:38 +0000 Manifest next update: Mon 28 Jul 2025 04:12:38 +0000 Files and hashes: 1: Pq60tRb3A-pY8W4I2opmdwP7XK4.crl (hash: 67Rx3YkGtyEnnlBmfJUxZk1e/mxw3WcWLm9CNio99oo=) 2: B67DC27A60E311EEB04BEA49C4F9AE02.roa (hash: Uh7NExbaYKDBSUUKd+crKnXeWpl3+22sEhcewGQ9kp8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A919D109/DAC666C05CE011EEB6C1B513C4F9AE02/Pq60tRb3A-pY8W4I2opmdwP7XK4.crl rsync://rpki.apnic.net/member_repository/A919D109/DAC666C05CE011EEB6C1B513C4F9AE02/Pq60tRb3A-pY8W4I2opmdwP7XK4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Pq60tRb3A-pY8W4I2opmdwP7XK4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 28 Jul 2025 04:12:37 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 356 (0x164) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A919D109, serialNumber=3EAEB4B516F703EA58F16E08DA8A667703FB5CAE Validity Not Before: Jul 21 04:12:38 2025 GMT Not After : Jul 28 04:12:38 2025 GMT Subject: CN=687dbe36-7009 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dd:3b:d9:a0:86:29:ca:3d:aa:be:86:5a:4f:75: 68:c2:db:e9:c6:04:d9:af:a2:e9:2d:b8:32:5b:60: a6:0c:bd:c3:67:c9:ee:b0:72:76:2f:72:d6:a6:d8: f2:da:03:61:6a:7a:a7:f2:0a:1a:e6:90:2d:93:7f: f7:be:d4:b6:8d:d8:f6:f4:cd:37:66:f8:ac:2f:46: 0c:e0:55:c2:f7:e0:68:80:aa:85:86:0f:26:6a:b8: de:d6:e2:a2:38:25:14:65:2c:52:c1:b8:3b:17:78: 7f:1d:b2:26:e3:3c:ca:ce:7b:47:23:70:8d:18:90: 74:da:ac:4d:4e:67:ff:71:5f:d8:a7:71:b6:b9:e8: d3:85:9a:9b:f8:15:f0:b2:b7:7d:20:45:fd:48:53: 1c:62:33:46:02:31:6e:1b:b2:f0:e2:c4:0f:c4:fe: 4e:37:1b:4d:cd:60:6b:b9:4c:e1:ba:6d:4e:d4:1a: 9b:97:27:6d:ac:9e:49:ed:ad:ec:4e:ea:fc:43:ab: 2e:8d:ce:57:64:02:20:76:6a:57:b5:7e:5b:2b:03: bf:3a:4b:48:44:47:a1:07:f3:7e:0f:73:e3:fe:8c: c2:25:ef:f5:42:37:72:31:d0:59:1d:df:d7:4c:02: 00:74:4f:24:df:fd:10:7e:f9:74:e7:59:11:06:ad: cd:ed Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FC:3D:CD:58:2E:95:EF:78:CE:80:43:0C:17:FB:2F:69:8A:4B:43:56 X509v3 Authority Key Identifier: keyid:3E:AE:B4:B5:16:F7:03:EA:58:F1:6E:08:DA:8A:66:77:03:FB:5C:AE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A919D109/DAC666C05CE011EEB6C1B513C4F9AE02/Pq60tRb3A-pY8W4I2opmdwP7XK4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Pq60tRb3A-pY8W4I2opmdwP7XK4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A919D109/DAC666C05CE011EEB6C1B513C4F9AE02/Pq60tRb3A-pY8W4I2opmdwP7XK4.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 8f:56:f9:24:de:3f:bd:dc:2e:ab:a9:08:72:7b:5b:63:94:f0: 5a:19:93:a7:6d:a4:31:44:66:de:9f:a6:97:bc:7e:f8:37:80: 7f:e9:77:4c:1a:90:a3:3b:91:d2:b6:10:4d:9d:7a:1b:a7:c7: fe:75:2d:7e:56:19:04:12:dc:34:20:ab:52:64:1a:b2:78:ae: 18:17:54:f7:3c:66:e0:e6:89:b3:63:6b:4d:71:80:0b:59:fc: c5:8a:3b:73:66:6b:09:39:69:2b:7c:5f:44:07:a1:13:e2:8a: 1e:d6:3c:07:08:f6:ac:34:93:86:a6:04:d2:2c:94:0f:c3:14: 70:b8:be:03:59:27:d4:cb:73:15:d3:7c:9b:37:1c:c7:92:89: 33:77:62:fe:6f:07:c5:a0:6e:1b:c0:b1:02:12:f6:e1:17:b4: 67:06:31:85:f8:29:0c:27:bd:95:bd:d5:81:ea:48:ea:c5:b7: 31:7f:50:1e:ec:67:ff:e0:78:62:7e:b6:a4:3b:ff:5b:3f:03: 16:58:ab:f1:47:73:bb:fe:69:e0:30:c9:57:01:d1:dc:e3:7e: f1:e4:90:a4:68:0e:94:6d:1d:30:e0:da:c6:2f:4c:7f:20:68: 5c:20:d9:f6:9b:47:a8:f1:cc:db:ee:8c:a3:5d:d1:37:94:62: ce:65:01:91 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAWQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OUQxMDkxMTAvBgNVBAUTKDNFQUVCNEI1MTZGNzAzRUE1OEYxNkUwOERBOEE2Njc3 MDNGQjVDQUUwHhcNMjUwNzIxMDQxMjM4WhcNMjUwNzI4MDQxMjM4WjAYMRYwFAYD VQQDEw02ODdkYmUzNi03MDA5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA3TvZoIYpyj2qvoZaT3VowtvpxgTZr6LpLbgyW2CmDL3DZ8nusHJ2L3LWptjy 2gNhanqn8goa5pAtk3/3vtS2jdj29M03ZvisL0YM4FXC9+BogKqFhg8marje1uKi OCUUZSxSwbg7F3h/HbIm4zzKzntHI3CNGJB02qxNTmf/cV/Yp3G2uejThZqb+BXw srd9IEX9SFMcYjNGAjFuG7Lw4sQPxP5ONxtNzWBruUzhum1O1BqblydtrJ5J7a3s Tur8Q6sujc5XZAIgdmpXtX5bKwO/OktIREehB/N+D3Pj/ozCJe/1QjdyMdBZHd/X TAIAdE8k3/0Qfvl051kRBq3N7QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFPw9zVgu le94zoBDDBf7L2mKS0NWMB8GA1UdIwQYMBaAFD6utLUW9wPqWPFuCNqKZncD+1yu MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5RDEwOS9EQUM2NjZDMDVD RTAxMUVFQjZDMUI1MTNDNEY5QUUwMi9QcTYwdFJiM0EtcFk4VzRJMm9wbWR3UDdY SzQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1BxNjB0UmIzQS1wWThXNEkyb3BtZHdQN1hLNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 RDEwOS9EQUM2NjZDMDVDRTAxMUVFQjZDMUI1MTNDNEY5QUUwMi9QcTYwdFJiM0Et cFk4VzRJMm9wbWR3UDdYSzQubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCPVvkk3j+93C6rqQhye1tjlPBaGZOnbaQxRGben6aXvH74N4B/6XdM GpCjO5HSthBNnXobp8f+dS1+VhkEEtw0IKtSZBqyeK4YF1T3PGbg5omzY2tNcYAL WfzFijtzZmsJOWkrfF9EB6ET4ooe1jwHCPasNJOGpgTSLJQPwxRwuL4DWSfUy3MV 03ybNxzHkokzd2L+bwfFoG4bwLECEvbhF7RnBjGF+CkMJ72VvdWB6kjqxbcxf1Ae 7Gf/4HhifrakO/9bPwMWWKvxR3O7/mngMMlXAdHc437x5JCkaA6UbR0w4NrGL0x/ IGhcINn2m0eo8czb7oyjXdE3lGLOZQGR -----END CERTIFICATE-----Generated at Mon Jul 21 12:45:25 2025 by rpki-client