$ rpki-client -vvf rpki.apnic.net/member_repository/A91210E0/3EB10C9A6D9811EEAA2AA36AC4F9AE02/PyDCnh1-UV3z49hapE51H4Fycxo.mft File: PyDCnh1-UV3z49hapE51H4Fycxo.mft (raw, json) Hash identifier: Dy/pjiVvG5ymE91P4dTV+5Rb8Bg9K3RqWwyOISUyM4w= Subject key identifier: 87:BC:FD:71:AD:3B:14:F6:0C:65:95:F7:94:53:AF:94:50:65:CB:E1 Authority key identifier: 3F:20:C2:9E:1D:7E:51:5D:F3:E3:D8:5A:A4:4E:75:1F:81:72:73:1A Certificate issuer: /CN=A91210E0/serialNumber=3F20C29E1D7E515DF3E3D85AA44E751F8172731A Certificate serial: 013E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PyDCnh1-UV3z49hapE51H4Fycxo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91210E0/3EB10C9A6D9811EEAA2AA36AC4F9AE02/PyDCnh1-UV3z49hapE51H4Fycxo.mft Manifest number: 0139 Signing time: Fri 13 Jun 2025 03:25:19 +0000 Manifest this update: Fri 13 Jun 2025 03:25:19 +0000 Manifest next update: Fri 20 Jun 2025 03:25:19 +0000 Files and hashes: 1: PyDCnh1-UV3z49hapE51H4Fycxo.crl (hash: vVQve22Q++aBiXGUpGu3K54YK5RsMvpUM+inZqBQFLU=) 2: 503E43126E5E11EEB39D9E48C4F9AE02.roa (hash: L+aSJH2lWC1anAfV1QDeoFg2+6ljff+C6eVKVad/Lj8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91210E0/3EB10C9A6D9811EEAA2AA36AC4F9AE02/PyDCnh1-UV3z49hapE51H4Fycxo.crl rsync://rpki.apnic.net/member_repository/A91210E0/3EB10C9A6D9811EEAA2AA36AC4F9AE02/PyDCnh1-UV3z49hapE51H4Fycxo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PyDCnh1-UV3z49hapE51H4Fycxo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 20 Jun 2025 03:25:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 318 (0x13e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91210E0, serialNumber=3F20C29E1D7E515DF3E3D85AA44E751F8172731A Validity Not Before: Jun 13 03:25:19 2025 GMT Not After : Jun 20 03:25:19 2025 GMT Subject: CN=684b9a1f-e428 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:af:0c:38:21:13:86:a5:7b:ae:ba:f3:2a:2a: b2:f0:9b:3c:c4:c2:77:45:53:40:b9:08:fc:6d:75: 6c:d7:e5:97:62:16:1b:cd:6f:af:6b:69:a9:40:07: 6c:0b:f0:f2:7f:ec:9f:43:2a:f8:b4:16:b6:a8:82: 70:df:d4:bf:69:fb:40:86:6b:c0:fd:39:3a:f5:67: 8e:4f:48:67:39:fd:41:30:b7:26:a3:3f:42:57:55: 8f:71:2b:e7:68:34:59:17:87:06:2b:a1:27:2a:34: cd:7d:1b:23:b9:4e:c7:05:1a:3c:43:f2:e8:5d:30: 95:4f:54:3c:e9:93:b1:06:64:69:a4:58:2e:09:74: 19:d6:64:82:99:8a:7f:6c:e2:dc:02:f1:db:c0:37: c2:e1:f4:a7:4c:f4:b8:54:78:f5:f6:5a:8f:fa:e5: 64:df:57:33:9e:cf:51:b8:4d:a3:cd:02:5a:ec:20: 4a:2b:88:d9:c4:91:b9:70:52:f2:a1:d3:c0:2f:00: 15:d8:c1:ef:1c:eb:c1:ac:66:4f:93:7a:be:8a:b8: 80:39:2d:c4:a7:81:58:40:2c:dd:fd:a5:03:2f:af: 0f:a0:88:5a:aa:9c:8a:5a:7e:94:63:4f:88:a9:d6: a9:17:75:fe:8a:33:ee:86:cf:4a:b1:29:ed:3b:ee: 3f:63 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 87:BC:FD:71:AD:3B:14:F6:0C:65:95:F7:94:53:AF:94:50:65:CB:E1 X509v3 Authority Key Identifier: keyid:3F:20:C2:9E:1D:7E:51:5D:F3:E3:D8:5A:A4:4E:75:1F:81:72:73:1A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91210E0/3EB10C9A6D9811EEAA2AA36AC4F9AE02/PyDCnh1-UV3z49hapE51H4Fycxo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PyDCnh1-UV3z49hapE51H4Fycxo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91210E0/3EB10C9A6D9811EEAA2AA36AC4F9AE02/PyDCnh1-UV3z49hapE51H4Fycxo.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 78:35:4d:22:59:8e:bb:5e:0f:84:e9:91:fb:25:43:57:0c:1d: 4b:d6:d4:d6:49:b4:56:1f:c4:4c:a9:0c:1f:86:54:53:f7:b0: 2c:3a:0b:2c:53:24:24:82:1f:cf:1e:7f:1a:b2:23:44:ae:4e: 36:2e:9c:89:0f:97:c4:c3:3a:c4:eb:3e:dd:24:ef:ca:16:c8: a7:5a:af:6c:c0:41:a9:b0:5b:0b:30:85:49:e1:f6:43:41:8a: 60:d1:c2:87:f7:67:76:ef:4f:cf:d4:87:27:cd:d9:29:62:1d: 22:0b:49:9f:24:fc:64:d2:1d:ef:b1:4f:cb:57:e2:3d:ec:53: 15:40:21:f1:5d:70:f4:93:54:0a:80:61:03:dd:c6:de:14:ba: 98:88:12:00:3f:1a:04:84:a1:27:63:e1:cc:5f:f0:a5:ae:be: 1e:b2:d6:e0:8a:88:db:68:49:f4:e3:76:f7:3f:cc:cd:7b:60: 90:06:bf:46:51:bd:91:87:fe:fe:06:cf:29:ed:77:a7:7f:06: ce:8e:0b:03:f8:05:66:20:65:29:cb:4b:79:f1:90:c2:e4:52: 19:82:27:92:7b:50:cc:30:a2:74:23:e9:03:cf:9c:7f:a2:f1: 36:77:60:b5:aa:b4:36:1b:a0:bf:c1:2f:9b:7f:84:b9:94:4b: 51:79:13:07 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAT4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MjEwRTAxMTAvBgNVBAUTKDNGMjBDMjlFMUQ3RTUxNURGM0UzRDg1QUE0NEU3NTFG ODE3MjczMUEwHhcNMjUwNjEzMDMyNTE5WhcNMjUwNjIwMDMyNTE5WjAYMRYwFAYD VQQDEw02ODRiOWExZi1lNDI4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwa8MOCEThqV7rrrzKiqy8Js8xMJ3RVNAuQj8bXVs1+WXYhYbzW+va2mpQAds C/Dyf+yfQyr4tBa2qIJw39S/aftAhmvA/Tk69WeOT0hnOf1BMLcmoz9CV1WPcSvn aDRZF4cGK6EnKjTNfRsjuU7HBRo8Q/LoXTCVT1Q86ZOxBmRppFguCXQZ1mSCmYp/ bOLcAvHbwDfC4fSnTPS4VHj19lqP+uVk31czns9RuE2jzQJa7CBKK4jZxJG5cFLy odPALwAV2MHvHOvBrGZPk3q+iriAOS3Ep4FYQCzd/aUDL68PoIhaqpyKWn6UY0+I qdapF3X+ijPuhs9KsSntO+4/YwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFIe8/XGt OxT2DGWV95RTr5RQZcvhMB8GA1UdIwQYMBaAFD8gwp4dflFd8+PYWqROdR+BcnMa MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyMTBFMC8zRUIxMEM5QTZE OTgxMUVFQUEyQUEzNkFDNEY5QUUwMi9QeURDbmgxLVVWM3o0OWhhcEU1MUg0Rnlj eG8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1B5RENuaDEtVVYzejQ5aGFwRTUxSDRGeWN4by5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy MTBFMC8zRUIxMEM5QTZEOTgxMUVFQUEyQUEzNkFDNEY5QUUwMi9QeURDbmgxLVVW M3o0OWhhcEU1MUg0RnljeG8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB4NU0iWY67Xg+E6ZH7JUNXDB1L1tTWSbRWH8RMqQwfhlRT97AsOgss UyQkgh/PHn8asiNErk42LpyJD5fEwzrE6z7dJO/KFsinWq9swEGpsFsLMIVJ4fZD QYpg0cKH92d270/P1IcnzdkpYh0iC0mfJPxk0h3vsU/LV+I97FMVQCHxXXD0k1QK gGED3cbeFLqYiBIAPxoEhKEnY+HMX/Clrr4estbgiojbaEn043b3P8zNe2CQBr9G Ub2Rh/7+Bs8p7XenfwbOjgsD+AVmIGUpy0t58ZDC5FIZgieSe1DMMKJ0I+kDz5x/ ovE2d2C1qrQ2G6C/wS+bf4S5lEtReRMH -----END CERTIFICATE-----Generated at Sat Jun 14 17:57:24 2025 by rpki-client