$ rpki-client -vvf rpki.apnic.net/member_repository/A9189B41/69B7698E605911EF9C223760C4F9AE02/punLpSnAWpYkymA1SKPjFJF1jys.mft File: punLpSnAWpYkymA1SKPjFJF1jys.mft (raw, json) Hash identifier: 5rWNaSECCKBGepdzx6N5W66rRrXFkx1eOcpwVPN4cu8= Subject key identifier: BF:C3:7D:7D:0F:B8:AF:13:BA:E6:DE:92:4A:AC:63:13:D0:A1:40:98 Authority key identifier: A6:E9:CB:A5:29:C0:5A:96:24:CA:60:35:48:A3:E3:14:91:75:8F:2B Certificate issuer: /CN=A9189B41/serialNumber=A6E9CBA529C05A9624CA603548A3E31491758F2B Certificate serial: 99 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/punLpSnAWpYkymA1SKPjFJF1jys.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9189B41/69B7698E605911EF9C223760C4F9AE02/punLpSnAWpYkymA1SKPjFJF1jys.mft Manifest number: 98 Signing time: Fri 13 Jun 2025 05:16:59 +0000 Manifest this update: Fri 13 Jun 2025 05:16:58 +0000 Manifest next update: Fri 20 Jun 2025 05:16:58 +0000 Files and hashes: 1: punLpSnAWpYkymA1SKPjFJF1jys.crl (hash: CtcN14Wtx3IK2SjkIqduz0U5DVkAn2vDvxEP3+e5Xgw=) 2: 17AF252C605A11EFB7F45361C4F9AE02.roa (hash: hIohGLAEr9r6SYuLg+aGzwQmujzK2d8ao66pEwxDxz4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9189B41/69B7698E605911EF9C223760C4F9AE02/punLpSnAWpYkymA1SKPjFJF1jys.crl rsync://rpki.apnic.net/member_repository/A9189B41/69B7698E605911EF9C223760C4F9AE02/punLpSnAWpYkymA1SKPjFJF1jys.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/punLpSnAWpYkymA1SKPjFJF1jys.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 20 Jun 2025 05:16:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 153 (0x99) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9189B41, serialNumber=A6E9CBA529C05A9624CA603548A3E31491758F2B Validity Not Before: Jun 13 05:16:58 2025 GMT Not After : Jun 20 05:16:58 2025 GMT Subject: CN=684bb44a-32c4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b3:8c:56:4c:ec:a9:14:94:3f:e4:d1:a5:ce:b0: 12:c0:fb:3b:52:a1:c4:24:af:c3:47:a1:9a:06:31: 96:26:3c:22:10:83:7d:f6:07:fb:d3:8c:9b:ee:1c: 0f:6e:33:e1:d6:fe:50:55:63:30:e2:70:e8:15:38: 92:40:d8:74:86:24:33:8c:64:bf:6d:01:6d:94:f2: 8b:20:3b:01:0c:b4:dc:0d:2c:f5:72:60:2d:7f:7a: 0d:a8:d3:7d:5f:17:c8:bc:28:10:c7:a9:7e:82:77: 27:86:9d:18:bf:38:90:69:37:f5:5e:ed:32:44:9a: 9f:3f:07:00:79:6a:5a:c7:04:f8:7c:6a:7a:7a:00: 16:ae:21:e4:5a:fd:f7:b6:67:0f:5a:80:c3:d1:3d: 57:fb:19:5a:fe:78:70:96:7f:e6:02:0d:5a:e9:a4: 31:b1:79:8f:5f:c0:98:9c:77:05:c3:fd:02:94:c4: 1e:6e:06:6c:37:86:2f:00:22:da:fb:7d:12:9c:6d: b1:3c:7f:0d:b7:0b:c3:49:c1:85:07:3c:de:9f:20: 61:27:31:a5:64:55:8b:76:a0:5d:8e:25:54:31:05: 48:5d:eb:ea:56:ec:6d:1c:65:ad:f5:25:0e:4a:89: 90:51:56:cd:60:b6:7b:fc:51:8d:3a:3d:24:09:37: 01:f9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BF:C3:7D:7D:0F:B8:AF:13:BA:E6:DE:92:4A:AC:63:13:D0:A1:40:98 X509v3 Authority Key Identifier: keyid:A6:E9:CB:A5:29:C0:5A:96:24:CA:60:35:48:A3:E3:14:91:75:8F:2B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9189B41/69B7698E605911EF9C223760C4F9AE02/punLpSnAWpYkymA1SKPjFJF1jys.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/punLpSnAWpYkymA1SKPjFJF1jys.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9189B41/69B7698E605911EF9C223760C4F9AE02/punLpSnAWpYkymA1SKPjFJF1jys.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 1b:7a:ad:7e:1a:5b:de:d4:02:5d:5c:19:b5:2d:2b:0a:51:47: bb:7f:15:f1:67:cc:01:6a:7d:f0:b1:5b:15:19:cd:a4:9d:bc: 21:f0:50:e9:09:47:25:5b:16:46:16:67:a6:8b:e5:ce:bd:c3: 94:a6:53:fa:cc:3c:64:0b:52:19:81:b8:87:01:8f:9b:21:3e: 0e:ff:79:08:8b:81:c2:82:cc:c6:db:b6:26:2c:51:8b:87:9c: cd:bd:60:f3:28:07:9f:d7:d5:1d:f1:3a:66:d0:10:42:d6:92: 7a:26:a0:31:f8:0e:2a:27:0e:8e:a8:d8:d4:7f:cb:b9:ac:e4: 3d:9c:80:93:91:11:35:28:1b:76:64:6d:63:99:7f:4f:b1:9d: 96:9d:c9:49:25:c0:2a:0e:a2:c5:2f:47:4c:03:e4:96:a3:23: 20:f0:0f:8d:11:cf:85:6b:e9:e4:d2:a6:41:53:71:42:76:51: 64:dc:b2:a4:55:63:84:72:bd:9c:2b:06:14:ea:42:67:57:13: 6c:a8:8d:55:c5:6e:89:82:a6:28:5a:c7:74:63:68:1a:9e:6c: 17:88:2c:15:19:f4:79:0a:f1:56:b4:89:47:9e:e3:3c:b5:21: 9c:70:f4:c8:f9:50:ab:9f:51:5e:09:ff:6c:e2:90:8f:3b:e8: 31:15:54:ad -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAJkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx ODlCNDExMTAvBgNVBAUTKEE2RTlDQkE1MjlDMDVBOTYyNENBNjAzNTQ4QTNFMzE0 OTE3NThGMkIwHhcNMjUwNjEzMDUxNjU4WhcNMjUwNjIwMDUxNjU4WjAYMRYwFAYD VQQDEw02ODRiYjQ0YS0zMmM0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAs4xWTOypFJQ/5NGlzrASwPs7UqHEJK/DR6GaBjGWJjwiEIN99gf704yb7hwP bjPh1v5QVWMw4nDoFTiSQNh0hiQzjGS/bQFtlPKLIDsBDLTcDSz1cmAtf3oNqNN9 XxfIvCgQx6l+gncnhp0YvziQaTf1Xu0yRJqfPwcAeWpaxwT4fGp6egAWriHkWv33 tmcPWoDD0T1X+xla/nhwln/mAg1a6aQxsXmPX8CYnHcFw/0ClMQebgZsN4YvACLa +30SnG2xPH8NtwvDScGFBzzenyBhJzGlZFWLdqBdjiVUMQVIXevqVuxtHGWt9SUO SomQUVbNYLZ7/FGNOj0kCTcB+QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFL/DfX0P uK8TuubekkqsYxPQoUCYMB8GA1UdIwQYMBaAFKbpy6UpwFqWJMpgNUij4xSRdY8r MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4OUI0MS82OUI3Njk4RTYw NTkxMUVGOUMyMjM3NjBDNEY5QUUwMi9wdW5McFNuQVdwWWt5bUExU0tQakZKRjFq eXMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL3B1bkxwU25BV3BZa3ltQTFTS1BqRkpGMWp5cy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 OUI0MS82OUI3Njk4RTYwNTkxMUVGOUMyMjM3NjBDNEY5QUUwMi9wdW5McFNuQVdw WWt5bUExU0tQakZKRjFqeXMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAbeq1+Glve1AJdXBm1LSsKUUe7fxXxZ8wBan3wsVsVGc2knbwh8FDp CUclWxZGFmemi+XOvcOUplP6zDxkC1IZgbiHAY+bIT4O/3kIi4HCgszG27YmLFGL h5zNvWDzKAef19Ud8Tpm0BBC1pJ6JqAx+A4qJw6OqNjUf8u5rOQ9nICTkRE1KBt2 ZG1jmX9PsZ2WnclJJcAqDqLFL0dMA+SWoyMg8A+NEc+Fa+nk0qZBU3FCdlFk3LKk VWOEcr2cKwYU6kJnVxNsqI1VxW6JgqYoWsd0Y2ganmwXiCwVGfR5CvFWtIlHnuM8 tSGccPTI+VCrn1FeCf9s4pCPO+gxFVSt -----END CERTIFICATE-----Generated at Fri Jun 13 15:31:48 2025 by rpki-client