$ rpki-client -vvf rpki.apnic.net/member_repository/A9189B41/69B7698E605911EF9C223760C4F9AE02/punLpSnAWpYkymA1SKPjFJF1jys.mft File: punLpSnAWpYkymA1SKPjFJF1jys.mft (raw, json) Hash identifier: lE2d7/ThbFPrTz+IPbe38ZSdgjLoPSMl8f0/kCydlZQ= Subject key identifier: DE:E6:06:CB:3D:7D:6E:0D:DC:63:93:F4:32:49:37:03:EE:DA:C4:C2 Authority key identifier: A6:E9:CB:A5:29:C0:5A:96:24:CA:60:35:48:A3:E3:14:91:75:8F:2B Certificate issuer: /CN=A9189B41/serialNumber=A6E9CBA529C05A9624CA603548A3E31491758F2B Certificate serial: C4 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/punLpSnAWpYkymA1SKPjFJF1jys.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9189B41/69B7698E605911EF9C223760C4F9AE02/punLpSnAWpYkymA1SKPjFJF1jys.mft Manifest number: C3 Signing time: Fri 05 Sep 2025 06:15:37 +0000 Manifest this update: Fri 05 Sep 2025 06:15:36 +0000 Manifest next update: Fri 12 Sep 2025 06:15:36 +0000 Files and hashes: 1: punLpSnAWpYkymA1SKPjFJF1jys.crl (hash: aBKOOu+Z1Od/HeJ0sR5xCdtLdCkbGa/ZPqQ9d/Zad1k=) 2: 17AF252C605A11EFB7F45361C4F9AE02.roa (hash: hIohGLAEr9r6SYuLg+aGzwQmujzK2d8ao66pEwxDxz4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9189B41/69B7698E605911EF9C223760C4F9AE02/punLpSnAWpYkymA1SKPjFJF1jys.crl rsync://rpki.apnic.net/member_repository/A9189B41/69B7698E605911EF9C223760C4F9AE02/punLpSnAWpYkymA1SKPjFJF1jys.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/punLpSnAWpYkymA1SKPjFJF1jys.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 12 Sep 2025 06:15:35 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 196 (0xc4) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9189B41, serialNumber=A6E9CBA529C05A9624CA603548A3E31491758F2B Validity Not Before: Sep 5 06:15:36 2025 GMT Not After : Sep 12 06:15:36 2025 GMT Subject: CN=68ba8008-f866 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:9e:51:f0:14:2a:0f:64:f6:6b:ac:60:29:a8: f3:1a:da:5d:15:78:25:f6:2a:79:87:51:da:7b:bd: 27:e9:59:04:78:34:7a:60:6b:3f:fc:e3:83:36:bc: 28:30:30:5a:05:4a:6b:28:01:99:ee:8e:f8:4a:7c: af:c2:8b:a5:de:9e:8b:6c:b5:c2:3b:26:81:42:6e: cf:08:be:d3:15:7b:ca:be:6c:2c:4c:01:ef:95:d2: e6:fe:11:c3:26:95:67:de:21:ff:a3:b7:0c:e7:5d: af:4c:44:ac:c1:1d:e3:b3:31:a0:a2:2b:3a:3d:40: c1:96:b7:3c:c7:97:57:87:e9:a4:00:ce:27:3b:20: bd:c3:2f:cb:90:54:96:2c:71:3d:55:97:01:54:11: 3d:3d:1c:2f:45:15:28:a5:ed:44:bb:10:43:dd:dc: 44:96:65:8b:61:70:7b:c2:68:92:e7:f6:40:e1:fb: 1a:eb:6c:c7:05:b3:df:a5:5e:f3:40:30:b2:41:d7: 58:10:52:b1:2f:36:6d:f1:c6:7c:be:e8:50:c9:75: 85:68:66:35:56:ab:5f:49:c7:ea:b3:7c:97:79:86: 0d:00:89:82:12:24:e0:56:c1:21:a7:65:37:cd:98: 95:5d:66:0b:85:25:a7:b4:f1:a6:90:9a:38:51:f7: 46:67 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DE:E6:06:CB:3D:7D:6E:0D:DC:63:93:F4:32:49:37:03:EE:DA:C4:C2 X509v3 Authority Key Identifier: keyid:A6:E9:CB:A5:29:C0:5A:96:24:CA:60:35:48:A3:E3:14:91:75:8F:2B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9189B41/69B7698E605911EF9C223760C4F9AE02/punLpSnAWpYkymA1SKPjFJF1jys.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/punLpSnAWpYkymA1SKPjFJF1jys.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9189B41/69B7698E605911EF9C223760C4F9AE02/punLpSnAWpYkymA1SKPjFJF1jys.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 15:cd:fd:cb:7d:e1:d8:1b:c3:86:5b:31:59:ec:9f:0c:0b:0b: 06:17:32:f2:0d:b6:78:ec:ac:fa:dd:10:8a:c2:9a:cd:a2:13: 2c:99:f7:d7:94:9d:6b:57:ce:5b:d1:d2:39:16:0c:a8:28:17: 2b:1e:02:fb:9a:d3:ad:b7:f5:9d:3a:78:da:a3:a2:a2:56:24: 84:2c:bb:90:4f:5a:86:7d:98:dc:06:a7:4d:f0:71:77:86:10: e8:b4:ce:57:57:e4:b8:42:1b:f3:15:21:d2:a6:01:0d:63:50: 09:05:93:2e:52:e8:5c:1a:fc:d3:9c:45:38:42:9c:be:28:af: e2:34:a1:c8:fc:3f:5f:b8:b1:a1:a5:52:8c:d4:2d:66:b9:3b: 86:3b:fe:f5:43:cb:cf:76:a0:22:19:60:03:de:10:b7:1e:fc: f2:6f:8f:e8:01:6f:a0:e9:63:39:2a:58:41:4d:8e:39:eb:2b: f7:36:01:04:eb:44:7c:89:ca:bf:43:89:8c:8a:6e:1a:40:cb: 8c:ae:44:5b:1f:44:76:77:bc:85:82:3a:1f:34:d0:fb:d0:66: 8e:2d:96:a4:34:79:f0:88:77:15:04:e9:86:3e:9e:d9:1e:85: 82:0d:2e:fd:b3:5b:70:84:4e:89:51:84:23:b1:2b:06:ea:bc: 5f:f4:e1:64 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAMQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx ODlCNDExMTAvBgNVBAUTKEE2RTlDQkE1MjlDMDVBOTYyNENBNjAzNTQ4QTNFMzE0 OTE3NThGMkIwHhcNMjUwOTA1MDYxNTM2WhcNMjUwOTEyMDYxNTM2WjAYMRYwFAYD VQQDEw02OGJhODAwOC1mODY2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuJ5R8BQqD2T2a6xgKajzGtpdFXgl9ip5h1Hae70n6VkEeDR6YGs//OODNrwo MDBaBUprKAGZ7o74Snyvwoul3p6LbLXCOyaBQm7PCL7TFXvKvmwsTAHvldLm/hHD JpVn3iH/o7cM512vTESswR3jszGgois6PUDBlrc8x5dXh+mkAM4nOyC9wy/LkFSW LHE9VZcBVBE9PRwvRRUope1EuxBD3dxElmWLYXB7wmiS5/ZA4fsa62zHBbPfpV7z QDCyQddYEFKxLzZt8cZ8vuhQyXWFaGY1VqtfScfqs3yXeYYNAImCEiTgVsEhp2U3 zZiVXWYLhSWntPGmkJo4UfdGZwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFN7mBss9 fW4N3GOT9DJJNwPu2sTCMB8GA1UdIwQYMBaAFKbpy6UpwFqWJMpgNUij4xSRdY8r MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4OUI0MS82OUI3Njk4RTYw NTkxMUVGOUMyMjM3NjBDNEY5QUUwMi9wdW5McFNuQVdwWWt5bUExU0tQakZKRjFq eXMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL3B1bkxwU25BV3BZa3ltQTFTS1BqRkpGMWp5cy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 OUI0MS82OUI3Njk4RTYwNTkxMUVGOUMyMjM3NjBDNEY5QUUwMi9wdW5McFNuQVdw WWt5bUExU0tQakZKRjFqeXMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAVzf3LfeHYG8OGWzFZ7J8MCwsGFzLyDbZ47Kz63RCKwprNohMsmffX lJ1rV85b0dI5FgyoKBcrHgL7mtOtt/WdOnjao6KiViSELLuQT1qGfZjcBqdN8HF3 hhDotM5XV+S4QhvzFSHSpgENY1AJBZMuUuhcGvzTnEU4Qpy+KK/iNKHI/D9fuLGh pVKM1C1muTuGO/71Q8vPdqAiGWAD3hC3Hvzyb4/oAW+g6WM5KlhBTY456yv3NgEE 60R8icq/Q4mMim4aQMuMrkRbH0R2d7yFgjofNND70GaOLZakNHnwiHcVBOmGPp7Z HoWCDS79s1twhE6JUYQjsSsG6rxf9OFk -----END CERTIFICATE-----Generated at Sat Sep 6 21:10:14 2025 by rpki-client