$ rpki-client -vvf rpki.apnic.net/member_repository/A911CA78/028F58FE16D911EE9F175315C4F9AE02/PnIyBI3L0sabqyJbikIhYEbBiyU.mft File: PnIyBI3L0sabqyJbikIhYEbBiyU.mft (raw, json) Hash identifier: 3uhOsyeGRmmkgowgN6O/LL3Xt8o7kVSRel9I19ejxXU= Subject key identifier: 6B:97:DB:63:8A:D3:27:FD:DC:F7:A2:AA:C8:3D:A4:4B:F5:6E:DB:45 Authority key identifier: 3E:72:32:04:8D:CB:D2:C6:9B:AB:22:5B:8A:42:21:60:46:C1:8B:25 Certificate issuer: /CN=A911CA78/serialNumber=3E7232048DCBD2C69BAB225B8A42216046C18B25 Certificate serial: 01A1 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/PnIyBI3L0sabqyJbikIhYEbBiyU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911CA78/028F58FE16D911EE9F175315C4F9AE02/PnIyBI3L0sabqyJbikIhYEbBiyU.mft Manifest number: 019D Signing time: Fri 08 Aug 2025 19:18:40 +0000 Manifest this update: Fri 08 Aug 2025 19:18:40 +0000 Manifest next update: Fri 15 Aug 2025 19:18:40 +0000 Files and hashes: 1: PnIyBI3L0sabqyJbikIhYEbBiyU.crl (hash: WCo0Xy8+Pe1QYlMYJIPhiTGkkncZVhNfaQ/BxUG9Y1w=) 2: 1ABB6C4E17DB11EE92B1C26FC4F9AE02.roa (hash: jx7hnJAbOWXi06R8EaUqGVH9j+g4HwGKu5sUmUZqpVQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911CA78/028F58FE16D911EE9F175315C4F9AE02/PnIyBI3L0sabqyJbikIhYEbBiyU.crl rsync://rpki.apnic.net/member_repository/A911CA78/028F58FE16D911EE9F175315C4F9AE02/PnIyBI3L0sabqyJbikIhYEbBiyU.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/PnIyBI3L0sabqyJbikIhYEbBiyU.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 Aug 2025 05:57:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 417 (0x1a1) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911CA78, serialNumber=3E7232048DCBD2C69BAB225B8A42216046C18B25 Validity Not Before: Aug 8 19:18:40 2025 GMT Not After : Aug 15 19:18:40 2025 GMT Subject: CN=68964d90-bfd2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ae:64:cb:4a:a5:8e:62:77:ff:6c:ed:97:24:0c: f7:d1:49:21:ac:21:05:f4:42:64:6e:ec:75:9c:ad: 88:1f:38:5c:fc:f4:cc:a0:b8:09:14:e4:2a:53:9f: 13:e2:9b:c1:94:fb:a5:4e:4a:cf:49:15:a5:dc:0f: 7b:d6:cc:13:02:79:e3:2f:28:31:4b:c4:81:ac:c9: 72:be:5d:50:b3:16:ff:17:c3:5a:e5:6d:f2:f5:27: de:bc:1a:a4:56:d2:bd:10:e4:6e:7f:aa:6e:fb:c0: 72:2f:30:a7:f9:66:fa:ea:7f:ea:03:b6:52:a0:e3: 66:8b:eb:df:e4:fa:30:75:81:f1:f7:6d:72:c4:79: c6:8f:23:f3:30:09:fe:0c:68:b0:e8:90:3f:63:25: e0:a8:73:3a:6a:ed:cc:cf:44:1b:ee:3d:e7:81:b1: 62:94:ce:84:1d:df:1d:2d:74:1e:62:ca:9f:2d:60: 6f:40:5a:75:96:4c:9a:4b:53:d6:00:30:b4:2f:d4: fa:88:fa:5a:d7:fe:fa:73:12:81:aa:d3:5b:6e:3b: 04:9c:38:b4:3a:a2:a8:db:1a:22:50:7e:f6:6d:2a: f0:ea:61:0c:76:51:36:63:e5:e0:46:82:15:b4:f5: 09:54:7e:92:6c:14:37:6a:ba:3a:28:3b:ea:01:10: f4:6b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6B:97:DB:63:8A:D3:27:FD:DC:F7:A2:AA:C8:3D:A4:4B:F5:6E:DB:45 X509v3 Authority Key Identifier: keyid:3E:72:32:04:8D:CB:D2:C6:9B:AB:22:5B:8A:42:21:60:46:C1:8B:25 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911CA78/028F58FE16D911EE9F175315C4F9AE02/PnIyBI3L0sabqyJbikIhYEbBiyU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/PnIyBI3L0sabqyJbikIhYEbBiyU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911CA78/028F58FE16D911EE9F175315C4F9AE02/PnIyBI3L0sabqyJbikIhYEbBiyU.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 11:58:f3:55:af:8b:56:f0:cd:2b:9e:52:63:09:42:c0:0a:e6: b4:be:27:7e:d6:f3:59:b0:07:94:fe:fa:7f:8a:0d:60:c3:7a: f7:63:34:18:f9:aa:78:42:49:8c:d2:12:8e:dd:c6:46:aa:6c: 3d:a0:f4:3e:bd:8c:00:cc:bb:b7:55:a4:ee:40:10:ae:29:9a: 19:0a:e0:c5:a0:0b:69:a0:1f:67:12:2d:a6:38:0c:46:1d:51: 99:0f:59:f2:bf:f8:df:18:9c:7a:e2:2e:7a:ec:0c:b2:ab:26: d6:4c:cc:81:72:b4:b7:22:9d:3c:e4:0a:42:02:74:8c:da:55: 24:72:c3:86:e1:e6:11:3e:44:76:e2:22:b2:50:37:42:0e:90: c4:95:6b:6d:a6:25:5e:3b:ba:92:89:11:11:f2:8b:3d:d8:af: 54:eb:05:e3:67:70:b2:90:be:c7:3e:80:cd:13:22:c7:57:01: 8c:19:f1:9a:8d:a7:7b:a2:18:2b:bc:ee:4c:4f:37:d3:7a:03: e1:0a:9f:e7:99:68:3e:29:bc:30:2f:77:72:6c:56:1f:61:89: 53:b4:13:4a:d8:3c:7e:b2:e0:49:4c:57:d5:01:e8:6d:09:29: 2e:4d:22:bc:13:50:84:71:eb:5b:3c:5d:5e:75:f1:f2:2c:b0: ad:e1:94:eb -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAaEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MUNBNzgxMTAvBgNVBAUTKDNFNzIzMjA0OERDQkQyQzY5QkFCMjI1QjhBNDIyMTYw NDZDMThCMjUwHhcNMjUwODA4MTkxODQwWhcNMjUwODE1MTkxODQwWjAYMRYwFAYD VQQDEw02ODk2NGQ5MC1iZmQyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArmTLSqWOYnf/bO2XJAz30UkhrCEF9EJkbux1nK2IHzhc/PTMoLgJFOQqU58T 4pvBlPulTkrPSRWl3A971swTAnnjLygxS8SBrMlyvl1Qsxb/F8Na5W3y9SfevBqk VtK9EORuf6pu+8ByLzCn+Wb66n/qA7ZSoONmi+vf5PowdYHx921yxHnGjyPzMAn+ DGiw6JA/YyXgqHM6au3Mz0Qb7j3ngbFilM6EHd8dLXQeYsqfLWBvQFp1lkyaS1PW ADC0L9T6iPpa1/76cxKBqtNbbjsEnDi0OqKo2xoiUH72bSrw6mEMdlE2Y+XgRoIV tPUJVH6SbBQ3aro6KDvqARD0awIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFGuX22OK 0yf93Peiqsg9pEv1bttFMB8GA1UdIwQYMBaAFD5yMgSNy9LGm6siW4pCIWBGwYsl MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExQ0E3OC8wMjhGNThGRTE2 RDkxMUVFOUYxNzUzMTVDNEY5QUUwMi9Qbkl5QkkzTDBzYWJxeUpiaWtJaFlFYkJp eVUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL1BuSXlCSTNMMHNhYnF5SmJpa0loWUViQml5VS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx Q0E3OC8wMjhGNThGRTE2RDkxMUVFOUYxNzUzMTVDNEY5QUUwMi9Qbkl5QkkzTDBz YWJxeUpiaWtJaFlFYkJpeVUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQARWPNVr4tW8M0rnlJjCULACua0vid+1vNZsAeU/vp/ig1gw3r3YzQY +ap4QkmM0hKO3cZGqmw9oPQ+vYwAzLu3VaTuQBCuKZoZCuDFoAtpoB9nEi2mOAxG HVGZD1nyv/jfGJx64i567AyyqybWTMyBcrS3Ip085ApCAnSM2lUkcsOG4eYRPkR2 4iKyUDdCDpDElWttpiVeO7qSiRER8os92K9U6wXjZ3CykL7HPoDNEyLHVwGMGfGa jad7ohgrvO5MTzfTegPhCp/nmWg+KbwwL3dybFYfYYlTtBNK2Dx+suBJTFfVAeht CSkuTSK8E1CEcetbPF1edfHyLLCt4ZTr -----END CERTIFICATE-----Generated at Sun Aug 10 14:00:02 2025 by rpki-client