$ rpki-client -vvf rpki.apnic.net/member_repository/A91E5D0C/891B4ECA323611EC89838756C4F9AE02/PnOyvhMDe-dEOR06iZzdICuC920.mft File: PnOyvhMDe-dEOR06iZzdICuC920.mft (raw, json) Hash identifier: wbA4i9CFD9tV1Dg1MhiaPdzWL2eamv9IzJdOuj3mVSk= Subject key identifier: 7F:01:DF:5B:47:BE:1F:33:D6:AA:1B:C6:B2:D0:53:6F:43:5D:8E:6C Authority key identifier: 3E:73:B2:BE:13:03:7B:E7:44:39:1D:3A:89:9C:DD:20:2B:82:F7:6D Certificate issuer: /CN=A91E5D0C/serialNumber=3E73B2BE13037BE744391D3A899CDD202B82F76D Certificate serial: 04E4 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PnOyvhMDe-dEOR06iZzdICuC920.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E5D0C/891B4ECA323611EC89838756C4F9AE02/PnOyvhMDe-dEOR06iZzdICuC920.mft Manifest number: 04CF Signing time: Sat 19 Jul 2025 00:15:05 +0000 Manifest this update: Sat 19 Jul 2025 00:15:04 +0000 Manifest next update: Sat 26 Jul 2025 00:15:04 +0000 Files and hashes: 1: PnOyvhMDe-dEOR06iZzdICuC920.crl (hash: YkO2CHEag4B9JRY1/aH94E4H7deJO2ew35LE9DXKFKo=) 2: EFFA034837D111EC9337B812C4F9AE02.roa (hash: GRUpCE+gVb2TzuJuLp6/bFNygGmQWG7Yo+BJcqN3ABA=) 3: 9C581C28B07511EF9D153813C4F9AE02.roa (hash: 2ILq0YdLX+uDk2zpnZWvB9sk0e06nVHIZcSy04DKJII=) 4: FE76F7D8EC4A11EFA7845862C4F9AE02.roa (hash: JmLkpvQJH0Uq9XtysKaBXjhAS8plkz/VizJFG4sBHBE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E5D0C/891B4ECA323611EC89838756C4F9AE02/PnOyvhMDe-dEOR06iZzdICuC920.crl rsync://rpki.apnic.net/member_repository/A91E5D0C/891B4ECA323611EC89838756C4F9AE02/PnOyvhMDe-dEOR06iZzdICuC920.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PnOyvhMDe-dEOR06iZzdICuC920.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 26 Jul 2025 00:15:02 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1252 (0x4e4) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E5D0C, serialNumber=3E73B2BE13037BE744391D3A899CDD202B82F76D Validity Not Before: Jul 19 00:15:04 2025 GMT Not After : Jul 26 00:15:04 2025 GMT Subject: CN=687ae388-40cc Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:09:34:40:3d:9c:1c:54:db:2e:7f:4f:02:1e: 4a:ae:25:1f:da:ce:f3:77:b0:17:01:15:62:d0:8f: df:97:16:3e:fa:06:65:c5:57:da:a5:2f:69:bd:8b: 31:47:df:ab:fa:8a:e5:4e:ca:bb:02:20:13:1d:35: 6d:98:54:20:89:b3:bc:b1:78:8e:6d:c6:54:3d:02: ae:fb:88:da:47:38:ff:66:8f:ed:24:d8:47:fb:1f: 7a:ec:96:c0:43:69:8f:ef:bb:a8:e0:f1:84:5e:86: fc:39:d1:5d:41:93:d4:6f:c1:63:70:c4:9c:e3:34: 56:eb:24:2d:ba:3b:cf:36:ee:97:d1:11:b4:70:e2: 99:2a:62:62:40:d3:c7:0d:1a:7d:72:d4:f3:f4:f0: ec:6c:3e:96:38:a5:d4:a9:06:a3:89:55:ea:c8:14: b0:46:0b:61:d5:82:1d:d4:49:dc:2b:43:11:dc:75: c8:d0:c7:c9:42:b8:f2:6d:dc:0c:ee:7b:7c:4c:4f: e8:15:98:2e:8c:27:0b:b6:31:25:a1:db:14:d5:be: c0:33:c1:d7:c4:38:e3:ff:e5:3d:08:00:65:09:dd: 03:fb:a7:be:0d:24:b9:d8:34:af:d3:3f:be:70:15: 9b:98:ea:7b:80:c5:55:91:9d:de:73:8c:0c:ad:74: 9e:c9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7F:01:DF:5B:47:BE:1F:33:D6:AA:1B:C6:B2:D0:53:6F:43:5D:8E:6C X509v3 Authority Key Identifier: keyid:3E:73:B2:BE:13:03:7B:E7:44:39:1D:3A:89:9C:DD:20:2B:82:F7:6D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E5D0C/891B4ECA323611EC89838756C4F9AE02/PnOyvhMDe-dEOR06iZzdICuC920.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PnOyvhMDe-dEOR06iZzdICuC920.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E5D0C/891B4ECA323611EC89838756C4F9AE02/PnOyvhMDe-dEOR06iZzdICuC920.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 25:e3:36:9e:0c:2a:fa:4e:5a:a3:2a:77:52:8c:61:3b:ff:ec: 0d:a9:57:3e:48:f5:c9:f1:ca:c2:5a:4a:54:c4:e7:3f:ee:3f: e4:91:76:d1:59:1e:5f:0c:a7:c4:11:d4:33:90:09:c1:12:8c: cc:87:7a:94:01:49:8b:b3:97:97:e2:55:cb:88:f2:9f:d8:78: 44:6c:65:e1:ac:fd:9e:16:5e:37:28:5d:1a:29:5c:47:46:71: 37:65:6d:26:4a:85:88:25:f2:66:38:41:75:c0:60:0a:8e:cc: 93:1c:e8:6a:96:c6:c3:88:1a:33:ad:00:3d:a5:d1:29:a4:d0: 4d:8d:10:ca:c3:55:fd:13:5c:f4:6c:f9:27:5c:39:92:4f:c6: c7:5c:eb:b2:ae:20:02:db:ca:97:8d:a4:9a:db:7e:27:eb:0f: a3:43:7b:ea:fa:58:37:b8:12:a6:4f:83:bf:eb:b8:bf:d8:06: 47:6e:e0:7a:5c:e4:9b:50:39:62:f0:16:da:35:ce:20:f6:10: 9d:34:0e:d8:fe:58:93:1c:45:8b:9b:aa:fb:f9:a2:90:c0:83: f0:cc:23:fc:03:70:66:54:81:f9:17:e2:50:db:68:a5:e6:9c: 6e:a0:eb:c6:b3:f8:6c:24:bb:bb:3b:fb:ce:c9:8a:cb:0d:2b: 98:04:51:32 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBOQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTVEMEMxMTAvBgNVBAUTKDNFNzNCMkJFMTMwMzdCRTc0NDM5MUQzQTg5OUNERDIw MkI4MkY3NkQwHhcNMjUwNzE5MDAxNTA0WhcNMjUwNzI2MDAxNTA0WjAYMRYwFAYD VQQDEw02ODdhZTM4OC00MGNjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuQk0QD2cHFTbLn9PAh5KriUf2s7zd7AXARVi0I/flxY++gZlxVfapS9pvYsx R9+r+orlTsq7AiATHTVtmFQgibO8sXiObcZUPQKu+4jaRzj/Zo/tJNhH+x967JbA Q2mP77uo4PGEXob8OdFdQZPUb8FjcMSc4zRW6yQtujvPNu6X0RG0cOKZKmJiQNPH DRp9ctTz9PDsbD6WOKXUqQajiVXqyBSwRgth1YId1EncK0MR3HXI0MfJQrjybdwM 7nt8TE/oFZgujCcLtjElodsU1b7AM8HXxDjj/+U9CABlCd0D+6e+DSS52DSv0z++ cBWbmOp7gMVVkZ3ec4wMrXSeyQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFH8B31tH vh8z1qobxrLQU29DXY5sMB8GA1UdIwQYMBaAFD5zsr4TA3vnRDkdOomc3SArgvdt MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFNUQwQy84OTFCNEVDQTMy MzYxMUVDODk4Mzg3NTZDNEY5QUUwMi9Qbk95dmhNRGUtZEVPUjA2aVp6ZElDdUM5 MjAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1BuT3l2aE1EZS1kRU9SMDZpWnpkSUN1QzkyMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF NUQwQy84OTFCNEVDQTMyMzYxMUVDODk4Mzg3NTZDNEY5QUUwMi9Qbk95dmhNRGUt ZEVPUjA2aVp6ZElDdUM5MjAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAl4zaeDCr6TlqjKndSjGE7/+wNqVc+SPXJ8crCWkpUxOc/7j/kkXbR WR5fDKfEEdQzkAnBEozMh3qUAUmLs5eX4lXLiPKf2HhEbGXhrP2eFl43KF0aKVxH RnE3ZW0mSoWIJfJmOEF1wGAKjsyTHOhqlsbDiBozrQA9pdEppNBNjRDKw1X9E1z0 bPknXDmST8bHXOuyriAC28qXjaSa234n6w+jQ3vq+lg3uBKmT4O/67i/2AZHbuB6 XOSbUDli8BbaNc4g9hCdNA7Y/liTHEWLm6r7+aKQwIPwzCP8A3BmVIH5F+JQ22il 5pxuoOvGs/hsJLu7O/vOyYrLDSuYBFEy -----END CERTIFICATE-----Generated at Sun Jul 20 16:33:49 2025 by rpki-client