$ rpki-client -vvf rpki.apnic.net/member_repository/A914E6AA/8EDB107EADA811EBA7C9F567C4F9AE02/PVHtxDo5mbE3HOXAQUIIP-KH0PI.mft File: PVHtxDo5mbE3HOXAQUIIP-KH0PI.mft (raw, json) Hash identifier: gwogkx4j4gLFHuDGofzdIjnCldp7pUz5vhj/1tIqcIE= Subject key identifier: AB:FC:5F:05:22:5C:9A:FC:DA:9E:75:5B:08:69:B4:53:95:1B:14:83 Authority key identifier: 3D:51:ED:C4:3A:39:99:B1:37:1C:E5:C0:41:42:08:3F:E2:87:D0:F2 Certificate issuer: /CN=A914E6AA/serialNumber=3D51EDC43A3999B1371CE5C04142083FE287D0F2 Certificate serial: 017A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PVHtxDo5mbE3HOXAQUIIP-KH0PI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914E6AA/8EDB107EADA811EBA7C9F567C4F9AE02/PVHtxDo5mbE3HOXAQUIIP-KH0PI.mft Manifest number: 08F6 Signing time: Thu 12 Jun 2025 22:31:35 +0000 Manifest this update: Thu 12 Jun 2025 22:31:34 +0000 Manifest next update: Thu 19 Jun 2025 22:31:34 +0000 Files and hashes: 1: PVHtxDo5mbE3HOXAQUIIP-KH0PI.crl (hash: d4hgrMA3Tucw3VQPXhCZbdnQtJDL6hTa1Drr2Srbkfw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914E6AA/8EDB107EADA811EBA7C9F567C4F9AE02/PVHtxDo5mbE3HOXAQUIIP-KH0PI.crl rsync://rpki.apnic.net/member_repository/A914E6AA/8EDB107EADA811EBA7C9F567C4F9AE02/PVHtxDo5mbE3HOXAQUIIP-KH0PI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PVHtxDo5mbE3HOXAQUIIP-KH0PI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 19 Jun 2025 22:31:34 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 378 (0x17a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914E6AA, serialNumber=3D51EDC43A3999B1371CE5C04142083FE287D0F2 Validity Not Before: Jun 12 22:31:34 2025 GMT Not After : Jun 19 22:31:34 2025 GMT Subject: CN=684b5547-a150 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ec:de:e4:ad:e9:b8:53:e6:e4:e0:a7:83:b8:03: 66:fe:d3:1a:9e:de:4c:57:ed:7d:f9:43:16:fa:77: ff:23:02:b1:d4:f7:e7:3d:15:92:75:bf:cb:1c:65: da:e4:de:1a:f8:26:d0:78:1a:ba:6b:ef:a2:5a:7a: 83:81:09:23:0c:80:13:11:7b:e0:c3:e2:7c:c6:d2: 25:7c:e1:85:4a:20:a4:45:55:08:24:a8:37:bc:b3: 7b:39:7e:24:d2:9e:b6:f7:c1:00:f2:65:86:ad:da: de:ac:31:b2:87:2f:65:dc:87:53:58:c4:85:1a:07: a0:ef:62:64:48:35:d9:7b:5e:04:80:3d:37:2d:9f: b7:46:20:10:ce:92:18:64:f7:97:4d:fa:12:79:76: eb:86:7a:aa:35:da:e0:51:32:2a:4f:8b:ab:e6:8a: a9:c1:e5:9c:06:e6:92:10:7d:46:5f:e6:9a:93:9b: aa:c2:1d:44:5b:ef:bb:92:22:54:24:a0:53:16:27: 21:43:4d:cf:25:9c:ed:64:c8:c5:2e:34:2b:b0:b1: 2e:07:f5:89:e9:48:28:56:1f:09:38:4b:41:29:24: aa:45:3e:7c:87:f2:1c:e3:6c:9a:2e:7d:6f:ee:3f: 7a:c8:32:f2:c8:c6:e7:fc:c8:82:af:a3:09:a8:19: d4:6b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AB:FC:5F:05:22:5C:9A:FC:DA:9E:75:5B:08:69:B4:53:95:1B:14:83 X509v3 Authority Key Identifier: keyid:3D:51:ED:C4:3A:39:99:B1:37:1C:E5:C0:41:42:08:3F:E2:87:D0:F2 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914E6AA/8EDB107EADA811EBA7C9F567C4F9AE02/PVHtxDo5mbE3HOXAQUIIP-KH0PI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PVHtxDo5mbE3HOXAQUIIP-KH0PI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914E6AA/8EDB107EADA811EBA7C9F567C4F9AE02/PVHtxDo5mbE3HOXAQUIIP-KH0PI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 9d:a3:07:06:06:3c:ee:a7:5e:12:1b:74:02:4f:b3:ef:a7:86: 5d:5e:9a:b3:99:67:72:54:a8:36:a7:9d:c4:9f:56:fc:db:21: cd:d3:bf:21:e5:14:fd:c8:3d:da:68:b0:69:de:ed:6e:26:b3: 4b:eb:d2:4c:61:e2:5e:69:65:fe:21:b4:02:34:be:59:36:6d: eb:a0:3a:a7:c4:85:3b:99:7c:9f:6a:91:eb:4d:fd:a5:18:2d: 99:86:91:41:c2:05:37:27:3f:b4:21:c4:2a:7e:8a:a4:19:5b: a5:2e:e6:15:50:8f:70:68:35:92:c5:51:a4:ca:2d:09:cc:b8: 8c:cf:c4:68:fa:cf:0d:2e:61:63:ad:4d:aa:69:6a:cf:54:05: 6e:ef:0c:83:1f:03:a9:b8:a7:f7:55:b8:15:4c:e8:e5:93:ff: 56:2d:d1:12:78:30:50:23:a4:a1:b9:c5:a9:d0:c2:39:fa:ab: 86:d3:8c:ca:36:9d:b1:3a:3e:7b:9d:3c:dd:6f:f9:e8:8f:72: 8b:ce:b9:e1:44:1e:0e:a0:a2:2c:c5:26:bf:0e:9a:83:7f:78: 0b:32:ee:8c:c6:79:c8:17:e1:52:92:68:f4:64:1c:42:50:c4: 91:f7:c9:36:e1:93:97:2c:af:99:7b:84:e4:0e:9e:0e:96:5b: 83:f5:cf:da -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAXowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NEU2QUExMTAvBgNVBAUTKDNENTFFREM0M0EzOTk5QjEzNzFDRTVDMDQxNDIwODNG RTI4N0QwRjIwHhcNMjUwNjEyMjIzMTM0WhcNMjUwNjE5MjIzMTM0WjAYMRYwFAYD VQQDEw02ODRiNTU0Ny1hMTUwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA7N7krem4U+bk4KeDuANm/tMant5MV+19+UMW+nf/IwKx1PfnPRWSdb/LHGXa 5N4a+CbQeBq6a++iWnqDgQkjDIATEXvgw+J8xtIlfOGFSiCkRVUIJKg3vLN7OX4k 0p6298EA8mWGrdrerDGyhy9l3IdTWMSFGgeg72JkSDXZe14EgD03LZ+3RiAQzpIY ZPeXTfoSeXbrhnqqNdrgUTIqT4ur5oqpweWcBuaSEH1GX+aak5uqwh1EW++7kiJU JKBTFichQ03PJZztZMjFLjQrsLEuB/WJ6UgoVh8JOEtBKSSqRT58h/Ic42yaLn1v 7j96yDLyyMbn/MiCr6MJqBnUawIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFKv8XwUi XJr82p51WwhptFOVGxSDMB8GA1UdIwQYMBaAFD1R7cQ6OZmxNxzlwEFCCD/ih9Dy MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0RTZBQS84RURCMTA3RUFE QTgxMUVCQTdDOUY1NjdDNEY5QUUwMi9QVkh0eERvNW1iRTNIT1hBUVVJSVAtS0gw UEkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1BWSHR4RG81bWJFM0hPWEFRVUlJUC1LSDBQSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 RTZBQS84RURCMTA3RUFEQTgxMUVCQTdDOUY1NjdDNEY5QUUwMi9QVkh0eERvNW1i RTNIT1hBUVVJSVAtS0gwUEkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCdowcGBjzup14SG3QCT7Pvp4ZdXpqzmWdyVKg2p53En1b82yHN078h 5RT9yD3aaLBp3u1uJrNL69JMYeJeaWX+IbQCNL5ZNm3roDqnxIU7mXyfapHrTf2l GC2ZhpFBwgU3Jz+0IcQqfoqkGVulLuYVUI9waDWSxVGkyi0JzLiMz8Ro+s8NLmFj rU2qaWrPVAVu7wyDHwOpuKf3VbgVTOjlk/9WLdESeDBQI6ShucWp0MI5+quG04zK Np2xOj57nTzdb/noj3KLzrnhRB4OoKIsxSa/DpqDf3gLMu6MxnnIF+FSkmj0ZBxC UMSR98k24ZOXLK+Ze4TkDp4OlluD9c/a -----END CERTIFICATE-----Generated at Sat Jun 14 17:54:35 2025 by rpki-client