$ rpki-client -vvf rpki.apnic.net/member_repository/A91C71A5/3BFA28340A8311ED8D6D832AC4F9AE02/PykJw_UywAsCV7klbHbroxTc0A8.mft File: PykJw_UywAsCV7klbHbroxTc0A8.mft (raw, json) Hash identifier: hc0QnKAcbxqeBTt2KWSRsYnikmE8RgBQUOMSFvUGlNY= Subject key identifier: FF:40:33:AE:E0:81:06:F0:AF:E9:EE:E7:5D:CA:BA:59:3A:00:13:83 Authority key identifier: 3F:29:09:C3:F5:32:C0:0B:02:57:B9:25:6C:76:EB:A3:14:DC:D0:0F Certificate issuer: /CN=A91C71A5/serialNumber=3F2909C3F532C00B0257B9256C76EBA314DCD00F Certificate serial: 02AB Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PykJw_UywAsCV7klbHbroxTc0A8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C71A5/3BFA28340A8311ED8D6D832AC4F9AE02/PykJw_UywAsCV7klbHbroxTc0A8.mft Manifest number: 02A2 Signing time: Sun 27 Jul 2025 01:56:19 +0000 Manifest this update: Sun 27 Jul 2025 01:56:18 +0000 Manifest next update: Sun 03 Aug 2025 01:56:18 +0000 Files and hashes: 1: PykJw_UywAsCV7klbHbroxTc0A8.crl (hash: 8ecBRa6n5pky9YkR3Y2lXxbEYmMmGDLFOSSy87PieaM=) 2: 99A7637060B311EEBA329E54C4F9AE02.roa (hash: yZy+TqtowAyp3q8j4FvJTBd3TEpqHb7gUX+ZaoqGeKI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C71A5/3BFA28340A8311ED8D6D832AC4F9AE02/PykJw_UywAsCV7klbHbroxTc0A8.crl rsync://rpki.apnic.net/member_repository/A91C71A5/3BFA28340A8311ED8D6D832AC4F9AE02/PykJw_UywAsCV7klbHbroxTc0A8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PykJw_UywAsCV7klbHbroxTc0A8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 03 Aug 2025 01:56:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 683 (0x2ab) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C71A5, serialNumber=3F2909C3F532C00B0257B9256C76EBA314DCD00F Validity Not Before: Jul 27 01:56:18 2025 GMT Not After : Aug 3 01:56:18 2025 GMT Subject: CN=68858743-b055 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e2:52:70:7e:5c:45:bd:10:bf:66:6d:39:85:e3: 6c:1c:60:b9:08:1c:9f:b2:f8:d7:a1:e1:49:89:14: 6b:26:85:9e:4a:b5:12:a0:e0:71:da:e3:18:cd:78: e0:47:40:8b:f0:3f:cc:58:39:e4:f3:14:1e:2b:8d: dd:f6:5b:a6:c1:52:1d:0c:8e:a8:a1:f1:89:d5:09: 9c:92:d7:a7:fb:32:b5:73:63:95:0f:84:8b:36:aa: 92:8d:f8:9b:65:a4:99:30:a0:80:8a:4b:bb:6c:60: 99:8a:21:78:19:83:86:8f:76:35:60:0a:7a:0b:4b: 02:c7:f4:52:8e:81:fa:e2:19:84:1a:ac:5e:cf:48: a1:57:64:b4:e1:ce:3c:d4:be:a6:2e:b8:3d:be:a3: cb:fc:28:69:df:72:09:5c:28:f1:5e:fc:fa:37:af: c8:ea:c2:11:14:a8:2c:5d:18:2f:b2:77:da:2e:59: 6e:5d:05:a9:22:0a:c1:4e:be:7a:82:fe:95:f9:f8: e1:b3:c8:a4:bc:93:81:56:a6:19:b4:fd:9e:64:5b: c6:60:b0:5b:73:8f:cf:88:d0:e5:d5:87:37:7e:e6: 3c:3e:3d:38:4f:5d:fc:7f:88:ea:20:27:95:d0:40: 00:2a:24:67:53:9d:6e:c3:6f:f6:a0:b1:4b:c8:b7: c4:c3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FF:40:33:AE:E0:81:06:F0:AF:E9:EE:E7:5D:CA:BA:59:3A:00:13:83 X509v3 Authority Key Identifier: keyid:3F:29:09:C3:F5:32:C0:0B:02:57:B9:25:6C:76:EB:A3:14:DC:D0:0F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C71A5/3BFA28340A8311ED8D6D832AC4F9AE02/PykJw_UywAsCV7klbHbroxTc0A8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PykJw_UywAsCV7klbHbroxTc0A8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C71A5/3BFA28340A8311ED8D6D832AC4F9AE02/PykJw_UywAsCV7klbHbroxTc0A8.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a4:22:ad:f6:4e:da:48:fc:5d:38:88:78:21:a0:4e:a0:34:56: 98:75:fa:81:bb:06:91:ec:fe:4b:bb:48:a1:dc:08:c4:7e:d7: 87:52:e4:25:1c:92:88:6b:80:98:24:e0:15:a5:0e:43:2c:27: eb:41:28:10:5b:7f:6b:00:81:1f:a8:8e:3f:62:da:13:5d:be: e7:18:ba:cc:0f:1c:47:44:56:03:2d:23:fa:79:f5:4d:7d:d6: b0:f0:1f:fb:53:0a:14:84:c6:e4:f2:45:5f:4a:8c:85:02:c2: 4b:5c:3c:50:0c:5e:0f:7f:ab:29:a3:5e:59:0e:74:b2:78:e5: 92:19:f3:0e:de:fa:26:0f:0b:a6:b4:e7:0b:63:dc:b8:6d:95: 1c:d5:31:0e:28:4b:13:17:00:b7:1e:91:34:ce:8d:32:5d:fc: f1:3d:12:9d:28:f2:80:c2:5f:58:ee:ac:c4:59:0c:ab:c2:90: 24:6f:00:65:a6:73:45:9c:4d:a4:54:b3:d2:93:a3:da:1a:2d: 21:66:23:7b:75:cf:b6:4d:2a:0b:2f:8d:cb:03:b3:1c:b3:42: c4:80:a5:52:a3:08:ff:dd:53:f8:31:fa:e4:7e:e2:f9:10:3d: db:3f:0b:74:b5:2c:90:9f:ad:7b:6a:ff:50:b2:20:83:df:e6: 8d:a6:ed:09 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAqswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzcxQTUxMTAvBgNVBAUTKDNGMjkwOUMzRjUzMkMwMEIwMjU3QjkyNTZDNzZFQkEz MTREQ0QwMEYwHhcNMjUwNzI3MDE1NjE4WhcNMjUwODAzMDE1NjE4WjAYMRYwFAYD VQQDEw02ODg1ODc0My1iMDU1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA4lJwflxFvRC/Zm05heNsHGC5CByfsvjXoeFJiRRrJoWeSrUSoOBx2uMYzXjg R0CL8D/MWDnk8xQeK43d9lumwVIdDI6oofGJ1Qmckten+zK1c2OVD4SLNqqSjfib ZaSZMKCAiku7bGCZiiF4GYOGj3Y1YAp6C0sCx/RSjoH64hmEGqxez0ihV2S04c48 1L6mLrg9vqPL/Chp33IJXCjxXvz6N6/I6sIRFKgsXRgvsnfaLlluXQWpIgrBTr56 gv6V+fjhs8ikvJOBVqYZtP2eZFvGYLBbc4/PiNDl1Yc3fuY8Pj04T138f4jqICeV 0EAAKiRnU51uw2/2oLFLyLfEwwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFP9AM67g gQbwr+nu513Kulk6ABODMB8GA1UdIwQYMBaAFD8pCcP1MsALAle5JWx266MU3NAP MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDNzFBNS8zQkZBMjgzNDBB ODMxMUVEOEQ2RDgzMkFDNEY5QUUwMi9QeWtKd19VeXdBc0NWN2tsYkhicm94VGMw QTguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1B5a0p3X1V5d0FzQ1Y3a2xiSGJyb3hUYzBBOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD NzFBNS8zQkZBMjgzNDBBODMxMUVEOEQ2RDgzMkFDNEY5QUUwMi9QeWtKd19VeXdB c0NWN2tsYkhicm94VGMwQTgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCkIq32TtpI/F04iHghoE6gNFaYdfqBuwaR7P5Lu0ih3AjEfteHUuQl HJKIa4CYJOAVpQ5DLCfrQSgQW39rAIEfqI4/YtoTXb7nGLrMDxxHRFYDLSP6efVN fdaw8B/7UwoUhMbk8kVfSoyFAsJLXDxQDF4Pf6spo15ZDnSyeOWSGfMO3vomDwum tOcLY9y4bZUc1TEOKEsTFwC3HpE0zo0yXfzxPRKdKPKAwl9Y7qzEWQyrwpAkbwBl pnNFnE2kVLPSk6PaGi0hZiN7dc+2TSoLL43LA7Mcs0LEgKVSowj/3VP4MfrkfuL5 ED3bPwt0tSyQn617av9QsiCD3+aNpu0J -----END CERTIFICATE-----Generated at Tue Jul 29 00:15:22 2025 by rpki-client