$ rpki-client -vvf rpki.apnic.net/member_repository/A919F0F1/40B13BC00A3611E987A9C464C4F9AE02/pnlJEZesgi4NGBlxE3pGfSfCsCw.mft File: pnlJEZesgi4NGBlxE3pGfSfCsCw.mft (raw, json) Hash identifier: U4aT94njCfPI/axxmm8rINZK2km5PjHW3E8k40ETkz8= Subject key identifier: C4:28:DF:9A:2B:EC:E8:FF:7C:B9:1D:CB:FC:F3:85:49:7A:1E:97:3C Authority key identifier: A6:79:49:11:97:AC:82:2E:0D:18:19:71:13:7A:46:7D:27:C2:B0:2C Certificate issuer: /CN=A919F0F1/serialNumber=A679491197AC822E0D181971137A467D27C2B02C Certificate serial: 1157 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pnlJEZesgi4NGBlxE3pGfSfCsCw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A919F0F1/40B13BC00A3611E987A9C464C4F9AE02/pnlJEZesgi4NGBlxE3pGfSfCsCw.mft Manifest number: 1143 Signing time: Fri 06 Jun 2025 17:17:31 +0000 Manifest this update: Fri 06 Jun 2025 17:17:30 +0000 Manifest next update: Fri 13 Jun 2025 17:17:30 +0000 Files and hashes: 1: pnlJEZesgi4NGBlxE3pGfSfCsCw.crl (hash: jO0qm/S0qmrd6T1+fbhnBx3vU9tPPpBAv1m89yD2DEI=) 2: DB4085480A3A11E999FA296FC4F9AE02.roa (hash: 16660dDxZH468UZss0VebZFnv/Ql37+WVYt3vkRrUmQ=) 3: 041E1E420A3811E9BE336267C4F9AE02.roa (hash: Spb+pH4GvP2Ukki1wFpymghuHWZTFJjsX3H/le8aCzw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A919F0F1/40B13BC00A3611E987A9C464C4F9AE02/pnlJEZesgi4NGBlxE3pGfSfCsCw.crl rsync://rpki.apnic.net/member_repository/A919F0F1/40B13BC00A3611E987A9C464C4F9AE02/pnlJEZesgi4NGBlxE3pGfSfCsCw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pnlJEZesgi4NGBlxE3pGfSfCsCw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 13 Jun 2025 17:17:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4439 (0x1157) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A919F0F1, serialNumber=A679491197AC822E0D181971137A467D27C2B02C Validity Not Before: Jun 6 17:17:30 2025 GMT Not After : Jun 13 17:17:30 2025 GMT Subject: CN=684322aa-d4c3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b0:ee:41:22:a6:63:92:b6:ba:5c:2e:06:3b:39: e9:a5:5b:a0:5f:20:bc:04:b2:36:f9:97:40:d1:b4: 02:ce:81:de:1a:5b:40:39:e1:23:ad:5b:0c:21:1e: 7e:f9:87:fc:2c:b8:7a:d0:6e:db:c0:de:f8:09:02: 7f:d4:d0:f6:7a:2c:52:61:fa:df:0a:04:e3:06:3a: d3:6d:0c:39:37:63:2d:bb:f1:18:36:58:64:d5:05: 5a:87:c4:51:3a:51:c7:a3:03:fd:33:c1:5a:88:22: 2d:09:c4:e0:4a:f4:72:69:c8:fa:1a:b9:33:05:1b: 3a:24:e1:d5:a3:99:7d:c4:4d:99:95:cc:42:38:e1: 8f:44:f4:a6:a6:79:97:98:8f:59:89:77:75:51:23: 01:ff:13:90:f4:bd:9d:f8:54:70:82:a0:ae:2e:bc: 4d:4d:4e:cc:62:ea:77:aa:77:f0:bb:df:ef:5a:8f: 46:37:7b:74:c0:d7:9f:a1:aa:ad:2d:60:c3:fe:c2: df:e9:e5:6e:75:a2:6b:b6:f3:f1:83:a8:b5:39:d7: da:86:64:ae:a7:d2:c9:7d:4e:5a:f4:8e:80:4a:fd: 84:39:87:58:14:87:bf:44:72:d9:c9:79:9c:d3:3e: 0f:ae:e4:f7:f4:aa:67:34:57:07:6c:e2:54:3f:31: 54:97 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C4:28:DF:9A:2B:EC:E8:FF:7C:B9:1D:CB:FC:F3:85:49:7A:1E:97:3C X509v3 Authority Key Identifier: keyid:A6:79:49:11:97:AC:82:2E:0D:18:19:71:13:7A:46:7D:27:C2:B0:2C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A919F0F1/40B13BC00A3611E987A9C464C4F9AE02/pnlJEZesgi4NGBlxE3pGfSfCsCw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pnlJEZesgi4NGBlxE3pGfSfCsCw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A919F0F1/40B13BC00A3611E987A9C464C4F9AE02/pnlJEZesgi4NGBlxE3pGfSfCsCw.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 58:dd:d7:23:7d:97:bb:9f:55:dd:7f:e4:dc:58:dc:d6:5f:00: 6b:1a:f9:12:1b:6c:8b:0a:bc:28:6b:03:55:ef:f8:37:d9:c9: 0d:51:fd:7f:0f:c0:c0:7c:18:dd:88:d2:7f:66:f4:c8:43:fd: d4:d3:84:ef:ee:9b:92:b3:9f:ae:0c:32:10:51:70:4e:c6:0e: 7d:f3:e1:8d:cf:85:2e:65:f2:b4:f7:46:57:31:17:4f:e7:a7: a6:7d:cd:95:1d:dc:07:ce:d5:49:84:f3:7a:e4:1a:40:8a:bf: 6f:84:39:22:64:d1:91:e9:4a:56:33:8b:c0:e9:69:32:1e:af: 37:42:7e:38:b6:59:bb:55:31:e1:23:8d:65:45:07:a0:2b:3a: 2b:75:1d:c8:b1:fe:1e:c9:b0:41:04:4e:80:69:46:0e:a3:d6: e9:a7:03:a2:b4:46:fe:a7:46:18:b6:9e:49:9a:a1:dc:fa:4c: 84:1e:7a:fb:14:20:97:7f:5f:53:13:60:10:f8:ae:8e:df:cf: f6:31:55:8d:2e:7e:55:69:a2:69:ce:36:5d:b6:07:1d:fd:71: 6a:f4:c7:31:fe:3a:12:52:fc:66:45:c8:9f:69:f9:4a:27:d4: f9:7f:96:90:90:9d:b5:a5:b6:08:c5:69:eb:f6:4c:20:78:16: fc:d7:e1:91 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICEVcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OUYwRjExMTAvBgNVBAUTKEE2Nzk0OTExOTdBQzgyMkUwRDE4MTk3MTEzN0E0NjdE MjdDMkIwMkMwHhcNMjUwNjA2MTcxNzMwWhcNMjUwNjEzMTcxNzMwWjAYMRYwFAYD VQQDEw02ODQzMjJhYS1kNGMzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsO5BIqZjkra6XC4GOznppVugXyC8BLI2+ZdA0bQCzoHeGltAOeEjrVsMIR5+ +Yf8LLh60G7bwN74CQJ/1ND2eixSYfrfCgTjBjrTbQw5N2Mtu/EYNlhk1QVah8RR OlHHowP9M8FaiCItCcTgSvRyacj6GrkzBRs6JOHVo5l9xE2ZlcxCOOGPRPSmpnmX mI9ZiXd1USMB/xOQ9L2d+FRwgqCuLrxNTU7MYup3qnfwu9/vWo9GN3t0wNefoaqt LWDD/sLf6eVudaJrtvPxg6i1OdfahmSup9LJfU5a9I6ASv2EOYdYFIe/RHLZyXmc 0z4PruT39KpnNFcHbOJUPzFUlwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFMQo35or 7Oj/fLkdy/zzhUl6Hpc8MB8GA1UdIwQYMBaAFKZ5SRGXrIIuDRgZcRN6Rn0nwrAs MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5RjBGMS80MEIxM0JDMDBB MzYxMUU5ODdBOUM0NjRDNEY5QUUwMi9wbmxKRVplc2dpNE5HQmx4RTNwR2ZTZkNz Q3cuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3BubEpFWmVzZ2k0TkdCbHhFM3BHZlNmQ3NDdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 RjBGMS80MEIxM0JDMDBBMzYxMUU5ODdBOUM0NjRDNEY5QUUwMi9wbmxKRVplc2dp NE5HQmx4RTNwR2ZTZkNzQ3cubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBY3dcjfZe7n1Xdf+TcWNzWXwBrGvkSG2yLCrwoawNV7/g32ckNUf1/ D8DAfBjdiNJ/ZvTIQ/3U04Tv7puSs5+uDDIQUXBOxg598+GNz4UuZfK090ZXMRdP 56emfc2VHdwHztVJhPN65BpAir9vhDkiZNGR6UpWM4vA6WkyHq83Qn44tlm7VTHh I41lRQegKzordR3Isf4eybBBBE6AaUYOo9bppwOitEb+p0YYtp5JmqHc+kyEHnr7 FCCXf19TE2AQ+K6O38/2MVWNLn5VaaJpzjZdtgcd/XFq9Mcx/joSUvxmRcifaflK J9T5f5aQkJ21pbYIxWnr9kwgeBb81+GR -----END CERTIFICATE-----Generated at Sat Jun 7 05:34:58 2025 by rpki-client