$ rpki-client -vvf rpki.apnic.net/member_repository/A91AA5C6/D55519B44C3411EEAEEDA22CC4F9AE02/PUfmaHu030DFGwOkVZwQyiL2dy8.mft File: PUfmaHu030DFGwOkVZwQyiL2dy8.mft (raw, json) Hash identifier: NozgYX5Rr6slg7ofl6047nNV+ZNVCuNX32VLT2XM1J0= Subject key identifier: F4:CA:91:49:20:20:D6:B6:8A:BF:5A:E4:F3:86:0A:D6:44:77:99:88 Authority key identifier: 3D:47:E6:68:7B:B4:DF:40:C5:1B:03:A4:55:9C:10:CA:22:F6:77:2F Certificate issuer: /CN=A91AA5C6/serialNumber=3D47E6687BB4DF40C51B03A4559C10CA22F6772F Certificate serial: 016F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PUfmaHu030DFGwOkVZwQyiL2dy8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91AA5C6/D55519B44C3411EEAEEDA22CC4F9AE02/PUfmaHu030DFGwOkVZwQyiL2dy8.mft Manifest number: 0165 Signing time: Sat 19 Jul 2025 04:11:30 +0000 Manifest this update: Sat 19 Jul 2025 04:11:30 +0000 Manifest next update: Sat 26 Jul 2025 04:11:30 +0000 Files and hashes: 1: PUfmaHu030DFGwOkVZwQyiL2dy8.crl (hash: 6S8dbcQ91osFIvLPvGF9Jhb8UOn6bIgzPDBqnumUXEg=) 2: EA1E8B8A51C711EE9A3CC954C4F9AE02.roa (hash: mRgAmQOm70v82zzEgYDnDn2brEuaNu5y2crpXyX3sdg=) 3: FAA2E3324C3811EEB7116433C4F9AE02.roa (hash: bbT6hxERjo8lnAEspIks/q29jjxdhXSux3U2mM5P3u0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91AA5C6/D55519B44C3411EEAEEDA22CC4F9AE02/PUfmaHu030DFGwOkVZwQyiL2dy8.crl rsync://rpki.apnic.net/member_repository/A91AA5C6/D55519B44C3411EEAEEDA22CC4F9AE02/PUfmaHu030DFGwOkVZwQyiL2dy8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PUfmaHu030DFGwOkVZwQyiL2dy8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 26 Jul 2025 04:11:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 367 (0x16f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91AA5C6, serialNumber=3D47E6687BB4DF40C51B03A4559C10CA22F6772F Validity Not Before: Jul 19 04:11:30 2025 GMT Not After : Jul 26 04:11:30 2025 GMT Subject: CN=687b1af2-f399 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a7:3c:b5:47:3c:a4:40:88:b5:b6:75:32:87:44: bf:9b:8a:79:f8:22:2a:59:1d:b4:6b:91:3a:7a:b8: 27:ba:96:7f:88:ac:25:5e:f1:f0:b8:4c:95:6a:d8: ce:b9:78:05:1f:7e:f0:b6:dc:3b:6e:7a:6b:40:6d: 61:2f:d9:ba:06:3f:10:c4:68:e6:18:ba:49:ca:ac: 11:87:fd:e6:36:03:43:fe:83:8a:40:76:63:2e:5a: a4:73:3b:46:f4:48:99:e3:66:83:dd:c3:b5:68:20: 3c:4b:1a:a4:1c:4b:28:ba:7d:75:71:6c:36:45:67: 53:75:16:4c:1c:dd:0d:92:c2:d5:8c:df:3d:10:c3: 22:21:92:93:de:94:ac:5b:89:3c:c4:1d:4c:c9:85: 35:99:87:66:1b:ba:62:00:6a:cf:11:54:80:b8:92: d3:0c:b9:7b:29:56:80:65:9e:92:18:30:2d:98:a6: d9:50:65:58:9c:30:2b:16:1e:0f:c8:72:3f:40:c8: 43:90:99:9b:7d:54:4d:97:57:e7:b1:3d:f4:0c:22: 06:a3:cd:61:3c:2e:5c:ba:7f:97:40:e5:e4:5e:ac: 61:91:12:81:4b:7d:2c:64:08:68:e3:73:7b:d7:62: 52:39:20:76:f8:4b:12:dd:46:ae:a2:32:a5:6b:49: 7c:2d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F4:CA:91:49:20:20:D6:B6:8A:BF:5A:E4:F3:86:0A:D6:44:77:99:88 X509v3 Authority Key Identifier: keyid:3D:47:E6:68:7B:B4:DF:40:C5:1B:03:A4:55:9C:10:CA:22:F6:77:2F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91AA5C6/D55519B44C3411EEAEEDA22CC4F9AE02/PUfmaHu030DFGwOkVZwQyiL2dy8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PUfmaHu030DFGwOkVZwQyiL2dy8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91AA5C6/D55519B44C3411EEAEEDA22CC4F9AE02/PUfmaHu030DFGwOkVZwQyiL2dy8.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a9:fd:12:77:c6:59:6e:42:0e:70:e4:f1:21:0a:ae:b9:d5:5e: 06:20:3b:1c:6f:27:1b:93:8a:2a:a6:d4:08:b1:dd:a3:34:8e: 76:97:b7:b2:ce:10:73:04:83:48:fe:75:1f:b2:45:52:63:8d: fe:c7:a2:ee:29:c2:45:38:e3:c0:24:98:dd:a7:a6:c8:fd:92: 86:c8:dd:d6:3a:37:07:45:6c:59:90:8c:aa:8a:00:19:e7:0a: ff:7d:29:3f:66:5a:f9:80:3a:be:10:6e:e0:10:92:54:92:c0: e0:ae:99:c2:d6:a6:07:09:bc:43:64:c2:e6:21:ee:cc:29:be: 24:42:18:ad:51:76:bf:24:78:12:0f:43:e0:a7:09:82:dd:71: a9:f0:89:15:4a:2c:2b:2e:0b:8d:4d:33:a2:b3:c7:44:ff:73: 97:cd:12:0a:ee:c4:9a:0f:bb:f0:b8:dd:29:7a:fe:df:72:cb: ce:03:ac:a7:3a:a7:55:9b:bd:7a:18:ff:28:ec:0f:33:e7:7d: e6:32:b4:05:23:7a:59:fc:22:c8:84:e6:df:53:54:2a:66:7a: b1:92:1e:e4:6a:11:50:65:36:55:fb:7f:fc:54:f1:26:6d:61: fc:3a:bf:80:17:bd:44:e7:e9:cf:43:ee:ed:88:83:2b:ba:1d: 50:23:31:a3 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAW8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QUE1QzYxMTAvBgNVBAUTKDNENDdFNjY4N0JCNERGNDBDNTFCMDNBNDU1OUMxMENB MjJGNjc3MkYwHhcNMjUwNzE5MDQxMTMwWhcNMjUwNzI2MDQxMTMwWjAYMRYwFAYD VQQDEw02ODdiMWFmMi1mMzk5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEApzy1RzykQIi1tnUyh0S/m4p5+CIqWR20a5E6ergnupZ/iKwlXvHwuEyVatjO uXgFH37wttw7bnprQG1hL9m6Bj8QxGjmGLpJyqwRh/3mNgND/oOKQHZjLlqkcztG 9EiZ42aD3cO1aCA8SxqkHEsoun11cWw2RWdTdRZMHN0NksLVjN89EMMiIZKT3pSs W4k8xB1MyYU1mYdmG7piAGrPEVSAuJLTDLl7KVaAZZ6SGDAtmKbZUGVYnDArFh4P yHI/QMhDkJmbfVRNl1fnsT30DCIGo81hPC5cun+XQOXkXqxhkRKBS30sZAho43N7 12JSOSB2+EsS3UauojKla0l8LQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFPTKkUkg INa2ir9a5POGCtZEd5mIMB8GA1UdIwQYMBaAFD1H5mh7tN9AxRsDpFWcEMoi9ncv MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBQTVDNi9ENTU1MTlCNDRD MzQxMUVFQUVFREEyMkNDNEY5QUUwMi9QVWZtYUh1MDMwREZHd09rVlp3UXlpTDJk eTguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1BVZm1hSHUwMzBERkd3T2tWWndReWlMMmR5OC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB QTVDNi9ENTU1MTlCNDRDMzQxMUVFQUVFREEyMkNDNEY5QUUwMi9QVWZtYUh1MDMw REZHd09rVlp3UXlpTDJkeTgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCp/RJ3xlluQg5w5PEhCq651V4GIDscbycbk4oqptQIsd2jNI52l7ey zhBzBINI/nUfskVSY43+x6LuKcJFOOPAJJjdp6bI/ZKGyN3WOjcHRWxZkIyqigAZ 5wr/fSk/Zlr5gDq+EG7gEJJUksDgrpnC1qYHCbxDZMLmIe7MKb4kQhitUXa/JHgS D0PgpwmC3XGp8IkVSiwrLguNTTOis8dE/3OXzRIK7sSaD7vwuN0pev7fcsvOA6yn OqdVm716GP8o7A8z533mMrQFI3pZ/CLIhObfU1QqZnqxkh7kahFQZTZV+3/8VPEm bWH8Or+AF71E5+nPQ+7tiIMruh1QIzGj -----END CERTIFICATE-----Generated at Sun Jul 20 06:59:47 2025 by rpki-client