$ rpki-client -vvf rpki.apnic.net/member_repository/A91E3680/D4991862C5C811EB890C0D0BC4F9AE02/PudBKv6HPx1FurYUcUoyAeNilpE.mft File: PudBKv6HPx1FurYUcUoyAeNilpE.mft (raw, json) Hash identifier: gM4VG8FheeqsO80UXMJRUM7GF42eghg8D5KlLHAV1+s= Subject key identifier: DC:17:76:7E:7B:6D:E6:C3:38:0A:54:ED:21:61:E4:32:C6:DE:1D:5C Authority key identifier: 3E:E7:41:2A:FE:87:3F:1D:45:BA:B6:14:71:4A:32:01:E3:62:96:91 Certificate issuer: /CN=A91E3680/serialNumber=3EE7412AFE873F1D45BAB614714A3201E3629691 Certificate serial: 05D9 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PudBKv6HPx1FurYUcUoyAeNilpE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E3680/D4991862C5C811EB890C0D0BC4F9AE02/PudBKv6HPx1FurYUcUoyAeNilpE.mft Manifest number: 05D3 Signing time: Sun 20 Jul 2025 23:13:08 +0000 Manifest this update: Sun 20 Jul 2025 23:13:08 +0000 Manifest next update: Sun 27 Jul 2025 23:13:08 +0000 Files and hashes: 1: PudBKv6HPx1FurYUcUoyAeNilpE.crl (hash: 41frauBBKE3Rvbrz5R0LKvq05yqimIKzz7KHrWUTI+E=) 2: B46FE2D0C5CA11EBB86D320BC4F9AE02.roa (hash: 3B4/3AAyZ28QeeGH+anThU9lLQ63dUv2fBzc3BmfNS0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E3680/D4991862C5C811EB890C0D0BC4F9AE02/PudBKv6HPx1FurYUcUoyAeNilpE.crl rsync://rpki.apnic.net/member_repository/A91E3680/D4991862C5C811EB890C0D0BC4F9AE02/PudBKv6HPx1FurYUcUoyAeNilpE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PudBKv6HPx1FurYUcUoyAeNilpE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 27 Jul 2025 23:13:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1497 (0x5d9) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E3680, serialNumber=3EE7412AFE873F1D45BAB614714A3201E3629691 Validity Not Before: Jul 20 23:13:08 2025 GMT Not After : Jul 27 23:13:08 2025 GMT Subject: CN=687d7804-0d68 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d8:e4:76:f0:0d:43:c7:3f:c3:d6:c1:ae:76:e1: 10:65:23:5a:49:9b:e7:6d:40:cb:02:80:d6:4d:e2: 74:85:b9:63:b5:98:57:e2:d0:26:40:de:74:02:53: 3d:aa:ee:bb:d7:77:04:0a:3d:bb:bb:d0:56:b1:b7: d9:52:d8:a7:97:38:12:34:5c:59:b2:a3:73:ea:0e: 7e:7c:f1:c3:04:c7:ef:bb:8d:01:58:ec:2a:db:6a: 6c:f0:da:8c:78:09:2d:b6:bf:bc:00:69:63:01:0e: a6:1d:6c:e8:6f:e6:43:d5:df:d3:0a:69:c6:01:5c: 3d:53:ca:1e:ba:46:e7:d8:f2:11:2f:d2:3f:d1:18: 21:0a:04:2b:62:db:0a:27:8c:11:09:52:53:fe:83: f4:ec:ef:fe:a8:0a:24:ed:55:3d:52:a2:9c:78:7f: fd:8e:78:bd:f6:56:6e:32:cd:87:76:5a:ae:86:a0: f2:7d:47:79:57:ed:7a:aa:6a:9d:40:d4:c9:8d:44: 73:d8:cc:2d:75:95:ac:3c:0c:9e:72:3d:e6:49:e8: ef:6a:26:4c:28:57:73:82:8b:bb:7d:98:d1:06:09: 94:6f:14:65:c9:01:c9:a8:58:3c:ce:53:27:5c:bf: ba:2f:31:d4:8e:5e:7a:f0:e8:08:ac:ce:61:4e:35: 37:3f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DC:17:76:7E:7B:6D:E6:C3:38:0A:54:ED:21:61:E4:32:C6:DE:1D:5C X509v3 Authority Key Identifier: keyid:3E:E7:41:2A:FE:87:3F:1D:45:BA:B6:14:71:4A:32:01:E3:62:96:91 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E3680/D4991862C5C811EB890C0D0BC4F9AE02/PudBKv6HPx1FurYUcUoyAeNilpE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PudBKv6HPx1FurYUcUoyAeNilpE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E3680/D4991862C5C811EB890C0D0BC4F9AE02/PudBKv6HPx1FurYUcUoyAeNilpE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 70:4b:f0:13:09:a1:89:d4:05:51:67:b7:7f:a0:f1:0e:e4:0d: ef:1c:15:4a:7e:54:85:7d:f2:8d:c9:5e:19:de:6c:1c:50:65: a4:93:31:20:3f:56:8d:65:57:bc:ee:15:3d:91:51:60:dd:4f: ed:f1:64:a1:a3:7c:75:87:99:14:6e:5b:f0:23:72:fc:de:8b: c7:ba:76:a1:f1:28:35:ff:66:45:55:50:92:1c:2b:56:de:e5: e6:80:7b:81:66:a5:a8:46:e0:33:49:c1:d2:1e:49:a5:0e:74: b2:99:4c:e3:ca:ca:f1:b0:de:27:92:66:06:89:4b:1f:cb:83: 67:2b:93:0f:94:ea:f9:7f:b5:e2:db:85:53:43:53:13:23:7b: 5b:f6:81:58:33:c8:d2:f9:e2:47:eb:a2:3a:00:67:1c:60:36: f5:64:6c:ea:29:dd:3b:fa:f3:62:bc:59:90:84:e4:1e:06:60: a9:7f:f3:b6:4c:e6:96:1f:e2:d5:c7:ab:8f:5e:d6:e4:cb:c2: f2:c2:f3:48:67:34:f2:49:c8:c6:e5:e2:13:64:e4:1d:5c:11: 2e:39:65:01:26:e1:ad:d3:92:6e:ea:03:db:1e:e8:f0:aa:3d: a0:fe:58:50:4c:4f:d1:7b:dd:21:47:54:c1:52:f2:56:17:9f: b6:45:82:7d -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBdkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTM2ODAxMTAvBgNVBAUTKDNFRTc0MTJBRkU4NzNGMUQ0NUJBQjYxNDcxNEEzMjAx RTM2Mjk2OTEwHhcNMjUwNzIwMjMxMzA4WhcNMjUwNzI3MjMxMzA4WjAYMRYwFAYD VQQDEw02ODdkNzgwNC0wZDY4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA2OR28A1Dxz/D1sGuduEQZSNaSZvnbUDLAoDWTeJ0hbljtZhX4tAmQN50AlM9 qu6713cECj27u9BWsbfZUtinlzgSNFxZsqNz6g5+fPHDBMfvu40BWOwq22ps8NqM eAkttr+8AGljAQ6mHWzob+ZD1d/TCmnGAVw9U8oeukbn2PIRL9I/0RghCgQrYtsK J4wRCVJT/oP07O/+qAok7VU9UqKceH/9jni99lZuMs2HdlquhqDyfUd5V+16qmqd QNTJjURz2MwtdZWsPAyecj3mSejvaiZMKFdzgou7fZjRBgmUbxRlyQHJqFg8zlMn XL+6LzHUjl568OgIrM5hTjU3PwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFNwXdn57 bebDOApU7SFh5DLG3h1cMB8GA1UdIwQYMBaAFD7nQSr+hz8dRbq2FHFKMgHjYpaR MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFMzY4MC9ENDk5MTg2MkM1 QzgxMUVCODkwQzBEMEJDNEY5QUUwMi9QdWRCS3Y2SFB4MUZ1cllVY1VveUFlTmls cEUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1B1ZEJLdjZIUHgxRnVyWVVjVW95QWVOaWxwRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF MzY4MC9ENDk5MTg2MkM1QzgxMUVCODkwQzBEMEJDNEY5QUUwMi9QdWRCS3Y2SFB4 MUZ1cllVY1VveUFlTmlscEUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBwS/ATCaGJ1AVRZ7d/oPEO5A3vHBVKflSFffKNyV4Z3mwcUGWkkzEg P1aNZVe87hU9kVFg3U/t8WSho3x1h5kUblvwI3L83ovHunah8Sg1/2ZFVVCSHCtW 3uXmgHuBZqWoRuAzScHSHkmlDnSymUzjysrxsN4nkmYGiUsfy4NnK5MPlOr5f7Xi 24VTQ1MTI3tb9oFYM8jS+eJH66I6AGccYDb1ZGzqKd07+vNivFmQhOQeBmCpf/O2 TOaWH+LVx6uPXtbky8LywvNIZzTyScjG5eITZOQdXBEuOWUBJuGt05Ju6gPbHujw qj2g/lhQTE/Re90hR1TBUvJWF5+2RYJ9 -----END CERTIFICATE-----Generated at Mon Jul 21 12:40:01 2025 by rpki-client