$ rpki-client -vvf rpki.apnic.net/member_repository/A911CA78/028F58FE16D911EE9F175315C4F9AE02/PnIyBI3L0sabqyJbikIhYEbBiyU.mft File: PnIyBI3L0sabqyJbikIhYEbBiyU.mft (raw, json) Hash identifier: /xSx2d5x6oGAvv1xbtxpEUJHn7IrUHd4SpKmFC+gTxU= Subject key identifier: 9E:AB:49:14:4B:E5:10:F9:69:E9:7F:C8:1D:CD:73:01:5A:24:09:9F Authority key identifier: 3E:72:32:04:8D:CB:D2:C6:9B:AB:22:5B:8A:42:21:60:46:C1:8B:25 Certificate issuer: /CN=A911CA78/serialNumber=3E7232048DCBD2C69BAB225B8A42216046C18B25 Certificate serial: 0197 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/PnIyBI3L0sabqyJbikIhYEbBiyU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911CA78/028F58FE16D911EE9F175315C4F9AE02/PnIyBI3L0sabqyJbikIhYEbBiyU.mft Manifest number: 0193 Signing time: Sun 20 Jul 2025 19:10:00 +0000 Manifest this update: Sun 20 Jul 2025 19:09:59 +0000 Manifest next update: Sun 27 Jul 2025 19:09:59 +0000 Files and hashes: 1: PnIyBI3L0sabqyJbikIhYEbBiyU.crl (hash: TZEHiVH+pPAqC4Y93rllnMVY/1+C/phnqtEbyHIHox8=) 2: 1ABB6C4E17DB11EE92B1C26FC4F9AE02.roa (hash: jx7hnJAbOWXi06R8EaUqGVH9j+g4HwGKu5sUmUZqpVQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911CA78/028F58FE16D911EE9F175315C4F9AE02/PnIyBI3L0sabqyJbikIhYEbBiyU.crl rsync://rpki.apnic.net/member_repository/A911CA78/028F58FE16D911EE9F175315C4F9AE02/PnIyBI3L0sabqyJbikIhYEbBiyU.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/PnIyBI3L0sabqyJbikIhYEbBiyU.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 27 Jul 2025 19:09:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 407 (0x197) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911CA78, serialNumber=3E7232048DCBD2C69BAB225B8A42216046C18B25 Validity Not Before: Jul 20 19:09:59 2025 GMT Not After : Jul 27 19:09:59 2025 GMT Subject: CN=687d3f07-e7ad Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a8:65:ac:45:fa:03:9e:f9:ef:f8:74:3c:a9:6c: 20:f2:86:7c:b6:c8:e8:df:75:69:a3:96:39:fc:62: 58:ad:7c:a3:ea:7a:52:b9:3f:08:a2:3d:3e:72:6c: 26:b3:f5:75:3a:dc:68:11:db:1a:c2:04:3f:f1:09: 99:c3:cd:7f:ed:29:d3:72:85:af:e4:4d:cb:17:aa: 75:1f:0c:79:3f:28:7b:17:54:0d:55:05:8f:fb:3b: ab:73:8a:f2:73:23:65:22:22:25:bb:a5:d6:45:82: da:7b:22:8a:da:27:eb:10:e4:ae:74:9c:ca:9e:c7: b6:a9:4c:f7:fc:57:a6:6b:14:f3:a7:98:5b:58:2b: bf:ba:d4:c9:a9:06:b4:f6:44:7b:8e:1d:e4:76:6d: 41:51:71:d1:11:51:5f:32:aa:de:05:db:ac:27:c8: ac:e9:76:cf:82:a4:4d:90:63:97:38:3d:63:57:17: 08:4a:02:46:d0:85:a7:24:87:15:6a:88:67:25:d3: 5b:3d:f5:d3:76:83:5a:a8:50:1e:6c:e0:69:c5:c8: 66:c5:53:cc:8a:29:a6:10:c3:48:79:9b:99:70:95: cd:99:6a:54:ca:87:31:f7:40:34:69:13:c3:5f:fd: c0:98:44:8b:86:f6:3a:8c:75:a5:43:c5:3e:83:24: 74:49 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9E:AB:49:14:4B:E5:10:F9:69:E9:7F:C8:1D:CD:73:01:5A:24:09:9F X509v3 Authority Key Identifier: keyid:3E:72:32:04:8D:CB:D2:C6:9B:AB:22:5B:8A:42:21:60:46:C1:8B:25 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911CA78/028F58FE16D911EE9F175315C4F9AE02/PnIyBI3L0sabqyJbikIhYEbBiyU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/PnIyBI3L0sabqyJbikIhYEbBiyU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911CA78/028F58FE16D911EE9F175315C4F9AE02/PnIyBI3L0sabqyJbikIhYEbBiyU.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 71:08:27:5f:ea:5e:5b:a4:d2:ed:af:8f:03:ec:04:8d:79:cb: 8e:89:27:cb:91:98:5c:4a:f7:c6:50:0f:ff:e4:db:26:f8:32: ce:d3:4e:ec:87:69:ed:98:97:e7:14:08:b3:52:e8:eb:49:9b: be:9b:c0:ca:ad:61:6d:df:6a:ae:5b:b8:5b:e8:b4:61:dd:41: 4f:f2:1a:ec:ae:e2:11:00:db:2a:cc:15:5f:80:4b:6b:10:85: 20:34:68:bc:a7:98:7a:91:e6:09:8f:37:bf:4e:41:a0:69:d5: 0c:ba:7c:a6:58:4a:fe:4d:12:22:10:a4:ae:74:b5:30:02:e9: 5b:83:2e:a9:75:1b:19:4d:de:89:3f:b7:bd:c1:4b:5b:a8:5e: f7:92:38:b5:bd:74:bd:d7:e2:8b:20:c2:a9:c9:24:1e:10:1f: 4d:dc:44:23:b2:05:3f:ce:b9:23:a8:85:42:4f:7f:4a:29:5a: 01:ba:0e:38:e4:c1:e2:96:dc:c5:9e:8e:ea:ee:47:77:22:03: e4:a2:be:77:9c:cc:6e:76:64:8b:16:17:68:78:33:32:a0:26: 43:d0:a5:de:af:f8:3c:db:20:f2:38:18:41:5a:5a:d8:5d:04: a4:64:81:1f:da:14:3e:9b:d9:77:60:bc:7c:66:37:47:1f:ce: a0:e4:aa:ef -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAZcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MUNBNzgxMTAvBgNVBAUTKDNFNzIzMjA0OERDQkQyQzY5QkFCMjI1QjhBNDIyMTYw NDZDMThCMjUwHhcNMjUwNzIwMTkwOTU5WhcNMjUwNzI3MTkwOTU5WjAYMRYwFAYD VQQDEw02ODdkM2YwNy1lN2FkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqGWsRfoDnvnv+HQ8qWwg8oZ8tsjo33Vpo5Y5/GJYrXyj6npSuT8Ioj0+cmwm s/V1OtxoEdsawgQ/8QmZw81/7SnTcoWv5E3LF6p1Hwx5Pyh7F1QNVQWP+zurc4ry cyNlIiIlu6XWRYLaeyKK2ifrEOSudJzKnse2qUz3/FemaxTzp5hbWCu/utTJqQa0 9kR7jh3kdm1BUXHREVFfMqreBdusJ8is6XbPgqRNkGOXOD1jVxcISgJG0IWnJIcV aohnJdNbPfXTdoNaqFAebOBpxchmxVPMiimmEMNIeZuZcJXNmWpUyocx90A0aRPD X/3AmESLhvY6jHWlQ8U+gyR0SQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJ6rSRRL 5RD5ael/yB3NcwFaJAmfMB8GA1UdIwQYMBaAFD5yMgSNy9LGm6siW4pCIWBGwYsl MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExQ0E3OC8wMjhGNThGRTE2 RDkxMUVFOUYxNzUzMTVDNEY5QUUwMi9Qbkl5QkkzTDBzYWJxeUpiaWtJaFlFYkJp eVUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL1BuSXlCSTNMMHNhYnF5SmJpa0loWUViQml5VS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx Q0E3OC8wMjhGNThGRTE2RDkxMUVFOUYxNzUzMTVDNEY5QUUwMi9Qbkl5QkkzTDBz YWJxeUpiaWtJaFlFYkJpeVUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBxCCdf6l5bpNLtr48D7ASNecuOiSfLkZhcSvfGUA//5Nsm+DLO007s h2ntmJfnFAizUujrSZu+m8DKrWFt32quW7hb6LRh3UFP8hrsruIRANsqzBVfgEtr EIUgNGi8p5h6keYJjze/TkGgadUMunymWEr+TRIiEKSudLUwAulbgy6pdRsZTd6J P7e9wUtbqF73kji1vXS91+KLIMKpySQeEB9N3EQjsgU/zrkjqIVCT39KKVoBug44 5MHiltzFno7q7kd3IgPkor53nMxudmSLFhdoeDMyoCZD0KXer/g82yDyOBhBWlrY XQSkZIEf2hQ+m9l3YLx8ZjdHH86g5Krv -----END CERTIFICATE-----Generated at Sun Jul 20 20:40:50 2025 by rpki-client