$ rpki-client -vvf rpki.apnic.net/member_repository/A91AA5C6/D55519B44C3411EEAEEDA22CC4F9AE02/PUfmaHu030DFGwOkVZwQyiL2dy8.mft File: PUfmaHu030DFGwOkVZwQyiL2dy8.mft (raw, json) Hash identifier: VVJ76KjyZ0CSzMhtmfwG93Qb5+kDNN50w7hY91ek2OA= Subject key identifier: 04:7A:24:FE:BD:4A:C3:45:DF:96:52:8D:2F:3B:47:ED:A8:AB:0F:4D Authority key identifier: 3D:47:E6:68:7B:B4:DF:40:C5:1B:03:A4:55:9C:10:CA:22:F6:77:2F Certificate issuer: /CN=A91AA5C6/serialNumber=3D47E6687BB4DF40C51B03A4559C10CA22F6772F Certificate serial: 0188 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PUfmaHu030DFGwOkVZwQyiL2dy8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91AA5C6/D55519B44C3411EEAEEDA22CC4F9AE02/PUfmaHu030DFGwOkVZwQyiL2dy8.mft Manifest number: 017E Signing time: Fri 05 Sep 2025 04:03:49 +0000 Manifest this update: Fri 05 Sep 2025 04:03:49 +0000 Manifest next update: Fri 12 Sep 2025 04:03:49 +0000 Files and hashes: 1: PUfmaHu030DFGwOkVZwQyiL2dy8.crl (hash: XzcWOjxIArmNXlFYXlf6ahKcRzlAhRGlgnJKa9AhXkk=) 2: EA1E8B8A51C711EE9A3CC954C4F9AE02.roa (hash: mRgAmQOm70v82zzEgYDnDn2brEuaNu5y2crpXyX3sdg=) 3: FAA2E3324C3811EEB7116433C4F9AE02.roa (hash: bbT6hxERjo8lnAEspIks/q29jjxdhXSux3U2mM5P3u0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91AA5C6/D55519B44C3411EEAEEDA22CC4F9AE02/PUfmaHu030DFGwOkVZwQyiL2dy8.crl rsync://rpki.apnic.net/member_repository/A91AA5C6/D55519B44C3411EEAEEDA22CC4F9AE02/PUfmaHu030DFGwOkVZwQyiL2dy8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PUfmaHu030DFGwOkVZwQyiL2dy8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 12 Sep 2025 04:03:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 392 (0x188) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91AA5C6, serialNumber=3D47E6687BB4DF40C51B03A4559C10CA22F6772F Validity Not Before: Sep 5 04:03:49 2025 GMT Not After : Sep 12 04:03:49 2025 GMT Subject: CN=68ba6125-4d71 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:cd:c5:b0:cd:39:37:59:d4:bc:66:45:3b:45: e5:a2:50:e6:87:b6:98:c7:20:f1:db:97:0d:d7:61: ca:30:84:49:3e:ac:60:d9:06:6f:a1:9d:a2:22:3d: 67:bd:32:8e:e6:9a:eb:07:00:2b:28:53:8a:ab:73: 02:47:16:f5:91:02:73:1d:77:63:e9:32:65:77:16: 99:ab:42:2c:a6:26:40:42:a0:7d:bc:61:12:f9:bd: 25:7b:0c:43:d6:c2:69:a5:8e:e5:f9:b3:59:20:4a: d0:0c:c0:99:2e:0e:95:86:53:b1:15:17:83:41:ab: 6b:0d:a8:c6:8c:53:2b:01:5f:53:0e:82:ab:e8:79: d4:09:96:40:45:51:35:ab:12:52:67:89:67:ad:a2: e6:e9:92:dd:18:36:71:61:63:b5:a9:d7:c1:67:d3: 07:b5:6e:49:83:18:17:98:56:6e:06:db:6a:70:a7: fc:57:38:61:56:a1:b4:55:0d:c5:f8:f1:ee:63:78: 11:79:1f:a5:ff:26:59:b1:f7:be:ca:9b:5d:c2:2d: 43:20:6c:2c:b8:cf:2c:eb:c1:1d:98:1c:08:21:09: c3:ee:3d:28:37:fd:26:f7:d6:05:a9:10:70:68:07: 2a:39:2f:48:48:90:cc:e3:7b:9d:e8:08:bc:fa:eb: f8:27 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 04:7A:24:FE:BD:4A:C3:45:DF:96:52:8D:2F:3B:47:ED:A8:AB:0F:4D X509v3 Authority Key Identifier: keyid:3D:47:E6:68:7B:B4:DF:40:C5:1B:03:A4:55:9C:10:CA:22:F6:77:2F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91AA5C6/D55519B44C3411EEAEEDA22CC4F9AE02/PUfmaHu030DFGwOkVZwQyiL2dy8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PUfmaHu030DFGwOkVZwQyiL2dy8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91AA5C6/D55519B44C3411EEAEEDA22CC4F9AE02/PUfmaHu030DFGwOkVZwQyiL2dy8.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 50:f7:ff:34:0e:fa:a4:93:ee:44:2a:06:34:eb:28:19:eb:b1: 7c:da:f3:8f:d7:17:96:f3:1e:11:e5:36:b5:fe:57:cc:68:3e: d7:41:89:95:56:53:56:9a:30:a5:9c:78:a8:3d:13:62:bc:98: 05:0d:21:66:69:c7:66:3e:c8:f4:06:dc:05:dd:4b:b0:64:d5: 46:69:06:ba:5c:e1:f0:ff:f5:6b:e4:34:64:88:3c:e2:5a:15: 4c:24:7d:d1:f9:be:68:da:f9:2e:ce:72:80:e6:71:f8:7b:b7: ba:71:29:ac:42:f9:78:51:37:b2:fd:b7:c1:27:7c:b0:e5:8a: c3:c4:14:34:dc:6a:ae:96:2b:cd:7e:76:e0:99:fa:45:dd:8f: b3:e8:32:5a:b7:18:c2:d8:88:4f:44:fe:91:0d:30:34:ed:9b: ee:37:83:00:66:30:90:16:89:29:2b:d7:9d:06:e9:c5:ab:35: 02:ec:3a:ed:77:df:21:56:5a:dd:ed:9c:39:d2:13:78:fd:e6: 20:73:50:51:f8:d1:9f:63:cc:92:22:07:0a:81:dd:c6:8f:6d: 2e:66:02:af:45:36:67:01:5a:43:ab:ce:c8:5a:e1:5f:d3:7c: b5:9c:34:79:57:a3:13:c9:0c:45:a3:89:9a:10:a5:dc:35:08: 2f:8c:0e:73 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAYgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QUE1QzYxMTAvBgNVBAUTKDNENDdFNjY4N0JCNERGNDBDNTFCMDNBNDU1OUMxMENB MjJGNjc3MkYwHhcNMjUwOTA1MDQwMzQ5WhcNMjUwOTEyMDQwMzQ5WjAYMRYwFAYD VQQDEw02OGJhNjEyNS00ZDcxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAu83FsM05N1nUvGZFO0XlolDmh7aYxyDx25cN12HKMIRJPqxg2QZvoZ2iIj1n vTKO5prrBwArKFOKq3MCRxb1kQJzHXdj6TJldxaZq0IspiZAQqB9vGES+b0lewxD 1sJppY7l+bNZIErQDMCZLg6VhlOxFReDQatrDajGjFMrAV9TDoKr6HnUCZZARVE1 qxJSZ4lnraLm6ZLdGDZxYWO1qdfBZ9MHtW5JgxgXmFZuBttqcKf8VzhhVqG0VQ3F +PHuY3gReR+l/yZZsfe+yptdwi1DIGwsuM8s68EdmBwIIQnD7j0oN/0m99YFqRBw aAcqOS9ISJDM43ud6Ai8+uv4JwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFAR6JP69 SsNF35ZSjS87R+2oqw9NMB8GA1UdIwQYMBaAFD1H5mh7tN9AxRsDpFWcEMoi9ncv MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBQTVDNi9ENTU1MTlCNDRD MzQxMUVFQUVFREEyMkNDNEY5QUUwMi9QVWZtYUh1MDMwREZHd09rVlp3UXlpTDJk eTguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1BVZm1hSHUwMzBERkd3T2tWWndReWlMMmR5OC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB QTVDNi9ENTU1MTlCNDRDMzQxMUVFQUVFREEyMkNDNEY5QUUwMi9QVWZtYUh1MDMw REZHd09rVlp3UXlpTDJkeTgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBQ9/80Dvqkk+5EKgY06ygZ67F82vOP1xeW8x4R5Ta1/lfMaD7XQYmV VlNWmjClnHioPRNivJgFDSFmacdmPsj0BtwF3UuwZNVGaQa6XOHw//Vr5DRkiDzi WhVMJH3R+b5o2vkuznKA5nH4e7e6cSmsQvl4UTey/bfBJ3yw5YrDxBQ03GqulivN fnbgmfpF3Y+z6DJatxjC2IhPRP6RDTA07ZvuN4MAZjCQFokpK9edBunFqzUC7Drt d98hVlrd7Zw50hN4/eYgc1BR+NGfY8ySIgcKgd3Gj20uZgKvRTZnAVpDq87IWuFf 03y1nDR5V6MTyQxFo4maEKXcNQgvjA5z -----END CERTIFICATE-----Generated at Sat Sep 6 08:15:04 2025 by rpki-client