$ rpki-client -vvf rpki.apnic.net/member_repository/A913FE3D/81E654BCE53611EBB980326AC4F9AE02/pBhnIpZRYlTNTMrUSSUeGdG26V0.mft File: pBhnIpZRYlTNTMrUSSUeGdG26V0.mft (raw, json) Hash identifier: hZVotA6w5jHRm0LBym3ixID3oFjZF2D9v76Y5EyN8tg= Subject key identifier: E6:E8:49:44:28:0F:66:68:7C:82:67:6D:F8:DD:B1:05:71:66:1F:BE Authority key identifier: A4:18:67:22:96:51:62:54:CD:4C:CA:D4:49:25:1E:19:D1:B6:E9:5D Certificate issuer: /CN=A913FE3D/serialNumber=A418672296516254CD4CCAD449251E19D1B6E95D Certificate serial: 058E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pBhnIpZRYlTNTMrUSSUeGdG26V0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A913FE3D/81E654BCE53611EBB980326AC4F9AE02/pBhnIpZRYlTNTMrUSSUeGdG26V0.mft Manifest number: 0589 Signing time: Sat 09 Aug 2025 00:05:17 +0000 Manifest this update: Sat 09 Aug 2025 00:05:17 +0000 Manifest next update: Sat 16 Aug 2025 00:05:17 +0000 Files and hashes: 1: pBhnIpZRYlTNTMrUSSUeGdG26V0.crl (hash: E1h9uswFO+DmvcLaf8wfjazdWJDM/uVy6cTXDlOFnEw=) 2: 679A6FA4E53A11EB8197AD70C4F9AE02.roa (hash: cpEsjV03pQHsVjR1FwtppeHQdTtgrIUVyZ08K7ajurs=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A913FE3D/81E654BCE53611EBB980326AC4F9AE02/pBhnIpZRYlTNTMrUSSUeGdG26V0.crl rsync://rpki.apnic.net/member_repository/A913FE3D/81E654BCE53611EBB980326AC4F9AE02/pBhnIpZRYlTNTMrUSSUeGdG26V0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pBhnIpZRYlTNTMrUSSUeGdG26V0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 Aug 2025 05:57:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1422 (0x58e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A913FE3D, serialNumber=A418672296516254CD4CCAD449251E19D1B6E95D Validity Not Before: Aug 9 00:05:17 2025 GMT Not After : Aug 16 00:05:17 2025 GMT Subject: CN=689690bd-bdc2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:2a:df:ed:fb:64:a5:5d:27:ba:98:22:a3:66: 77:cd:b2:89:ca:c8:54:6c:bd:e7:4f:d1:57:16:78: c8:c4:46:b4:6d:44:88:00:a3:33:44:08:0f:56:82: df:3f:fc:db:ea:6f:f1:a0:12:bf:53:63:15:2b:18: 66:86:e5:0d:85:62:78:e0:93:08:50:33:c4:6c:8a: a7:c7:7f:59:b3:ac:58:81:2b:2e:b0:75:3f:fa:7b: c5:fa:28:1a:cd:41:01:ef:9d:18:b9:ca:46:98:bd: 73:1e:98:18:af:e8:96:10:db:d2:ae:35:12:e8:f7: 45:ad:3b:26:d0:71:53:c8:13:18:ab:aa:a5:dc:d7: 09:d8:b3:c8:e8:29:00:58:c9:fc:44:b3:fc:bb:49: ba:a9:c2:20:07:ae:c8:91:2b:26:16:47:d2:a7:39: c3:80:f0:83:35:69:6c:41:a5:e3:8f:a7:88:7b:47: b0:72:b9:55:12:96:a8:81:56:f1:ae:46:c5:60:c9: a0:62:e0:b0:d2:82:4a:9c:d7:97:58:35:0d:11:6b: 5d:c8:4d:27:b1:9e:3f:3f:5d:8b:c1:85:01:48:6b: d4:da:84:15:8e:23:15:42:27:bd:d0:63:b9:f5:54: 35:bc:7b:c4:3a:ba:52:ba:85:c5:e1:91:38:42:d9: c9:a3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E6:E8:49:44:28:0F:66:68:7C:82:67:6D:F8:DD:B1:05:71:66:1F:BE X509v3 Authority Key Identifier: keyid:A4:18:67:22:96:51:62:54:CD:4C:CA:D4:49:25:1E:19:D1:B6:E9:5D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A913FE3D/81E654BCE53611EBB980326AC4F9AE02/pBhnIpZRYlTNTMrUSSUeGdG26V0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pBhnIpZRYlTNTMrUSSUeGdG26V0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A913FE3D/81E654BCE53611EBB980326AC4F9AE02/pBhnIpZRYlTNTMrUSSUeGdG26V0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 79:ed:e3:57:33:1d:2f:0e:4d:6e:bc:a1:0d:e8:07:4b:08:73: b9:f1:88:20:47:b2:e6:5b:5b:26:cf:d2:13:ed:44:b7:aa:2b: 3b:6f:21:1b:6f:5e:b4:d6:88:0b:fb:df:5d:da:e9:32:03:a5: 7e:74:e4:33:19:ea:3a:96:77:bd:85:6c:7f:af:b6:43:d4:fa: 69:27:96:1f:30:64:56:54:54:bc:ca:ce:0f:5d:67:68:1d:7f: 37:b9:6e:f9:f6:64:b3:2c:7c:6a:d4:39:18:4b:63:d3:12:96: 5f:1e:04:5a:09:02:6e:8a:f2:3d:8f:02:49:d8:05:f0:36:41: a3:41:48:f4:5a:6b:b1:30:42:c6:0b:66:0c:8c:78:41:07:5d: 62:a8:69:2e:37:9b:08:15:3f:5a:e4:a5:71:5a:41:47:96:2c: a9:9f:64:55:8c:e9:63:3d:b0:53:85:03:e0:21:95:9a:10:8a: 11:5c:82:af:45:0a:07:f5:49:55:4b:57:40:ce:0e:92:11:7c: 0e:52:2c:7c:f5:86:94:c2:2e:5c:12:09:0a:50:7c:bb:49:69: b4:3a:3d:ab:8f:a3:00:d6:14:02:06:9f:4b:23:c5:66:fe:34: 27:e7:08:5d:40:3d:45:d3:85:ca:94:2c:e7:36:b7:2d:20:0f: d5:f2:84:00 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBY4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx M0ZFM0QxMTAvBgNVBAUTKEE0MTg2NzIyOTY1MTYyNTRDRDRDQ0FENDQ5MjUxRTE5 RDFCNkU5NUQwHhcNMjUwODA5MDAwNTE3WhcNMjUwODE2MDAwNTE3WjAYMRYwFAYD VQQDEw02ODk2OTBiZC1iZGMyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwCrf7ftkpV0nupgio2Z3zbKJyshUbL3nT9FXFnjIxEa0bUSIAKMzRAgPVoLf P/zb6m/xoBK/U2MVKxhmhuUNhWJ44JMIUDPEbIqnx39Zs6xYgSsusHU/+nvF+iga zUEB750YucpGmL1zHpgYr+iWENvSrjUS6PdFrTsm0HFTyBMYq6ql3NcJ2LPI6CkA WMn8RLP8u0m6qcIgB67IkSsmFkfSpznDgPCDNWlsQaXjj6eIe0ewcrlVEpaogVbx rkbFYMmgYuCw0oJKnNeXWDUNEWtdyE0nsZ4/P12LwYUBSGvU2oQVjiMVQie90GO5 9VQ1vHvEOrpSuoXF4ZE4QtnJowIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFOboSUQo D2ZofIJnbfjdsQVxZh++MB8GA1UdIwQYMBaAFKQYZyKWUWJUzUzK1EklHhnRtuld MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzRkUzRC84MUU2NTRCQ0U1 MzYxMUVCQjk4MDMyNkFDNEY5QUUwMi9wQmhuSXBaUllsVE5UTXJVU1NVZUdkRzI2 VjAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3BCaG5JcFpSWWxUTlRNclVTU1VlR2RHMjZWMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz RkUzRC84MUU2NTRCQ0U1MzYxMUVCQjk4MDMyNkFDNEY5QUUwMi9wQmhuSXBaUlls VE5UTXJVU1NVZUdkRzI2VjAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB57eNXMx0vDk1uvKEN6AdLCHO58YggR7LmW1smz9IT7US3qis7byEb b1601ogL+99d2ukyA6V+dOQzGeo6lne9hWx/r7ZD1PppJ5YfMGRWVFS8ys4PXWdo HX83uW759mSzLHxq1DkYS2PTEpZfHgRaCQJuivI9jwJJ2AXwNkGjQUj0WmuxMELG C2YMjHhBB11iqGkuN5sIFT9a5KVxWkFHliypn2RVjOljPbBThQPgIZWaEIoRXIKv RQoH9UlVS1dAzg6SEXwOUix89YaUwi5cEgkKUHy7SWm0Oj2rj6MA1hQCBp9LI8Vm /jQn5whdQD1F04XKlCznNrctIA/V8oQA -----END CERTIFICATE-----Generated at Sun Aug 10 18:51:23 2025 by rpki-client