$ rpki-client -vvf rpki.apnic.net/member_repository/A914E6AA/8EDB107EADA811EBA7C9F567C4F9AE02/PVHtxDo5mbE3HOXAQUIIP-KH0PI.mft File: PVHtxDo5mbE3HOXAQUIIP-KH0PI.mft (raw, json) Hash identifier: fRzCeyQxOZvbCdNh+0mvu5TmH2fBoD68+ZvjkBDaQkk= Subject key identifier: 04:BC:46:24:37:0A:D7:9D:5B:BF:39:69:20:3B:F6:00:09:83:A2:69 Authority key identifier: 3D:51:ED:C4:3A:39:99:B1:37:1C:E5:C0:41:42:08:3F:E2:87:D0:F2 Certificate issuer: /CN=A914E6AA/serialNumber=3D51EDC43A3999B1371CE5C04142083FE287D0F2 Certificate serial: 0196 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PVHtxDo5mbE3HOXAQUIIP-KH0PI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914E6AA/8EDB107EADA811EBA7C9F567C4F9AE02/PVHtxDo5mbE3HOXAQUIIP-KH0PI.mft Manifest number: 0966 Signing time: Wed 06 Aug 2025 23:12:55 +0000 Manifest this update: Wed 06 Aug 2025 23:12:54 +0000 Manifest next update: Wed 13 Aug 2025 23:12:54 +0000 Files and hashes: 1: PVHtxDo5mbE3HOXAQUIIP-KH0PI.crl (hash: Xs5g32EyEp7lD1PrYlDNyi6Wfmn8k6YiQdwB2gmnEug=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914E6AA/8EDB107EADA811EBA7C9F567C4F9AE02/PVHtxDo5mbE3HOXAQUIIP-KH0PI.crl rsync://rpki.apnic.net/member_repository/A914E6AA/8EDB107EADA811EBA7C9F567C4F9AE02/PVHtxDo5mbE3HOXAQUIIP-KH0PI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PVHtxDo5mbE3HOXAQUIIP-KH0PI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 Aug 2025 23:12:53 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 406 (0x196) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914E6AA, serialNumber=3D51EDC43A3999B1371CE5C04142083FE287D0F2 Validity Not Before: Aug 6 23:12:54 2025 GMT Not After : Aug 13 23:12:54 2025 GMT Subject: CN=6893e176-f231 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c5:39:b8:b3:fb:77:40:6f:ce:a2:61:57:fb:68: 88:b5:a3:60:18:90:18:17:1e:0e:32:5e:8c:21:2b: e0:07:dd:34:ba:af:ad:0e:f8:43:dd:27:c8:6b:48: 67:64:f6:b3:79:72:db:42:a5:f8:fc:36:d4:b1:bc: 0c:33:2d:50:2a:09:09:eb:60:1c:77:1d:e1:e5:8d: 96:bb:97:5d:01:4c:93:66:d2:19:d9:3c:cf:60:60: 0e:40:bb:e8:50:66:1a:2f:2f:3d:55:5a:23:ce:d2: 36:e7:e6:b6:b2:b9:78:b7:92:51:cc:4c:a7:5c:25: 58:ee:4d:0f:4b:b3:17:ad:44:15:0c:52:83:b4:e5: d6:0d:a5:35:4c:cc:14:d2:ef:36:83:92:f9:69:43: 18:67:c9:7e:fd:80:f5:aa:16:64:e6:fe:e7:c6:57: f8:93:a8:00:43:9a:bd:75:8e:09:ee:c1:22:6e:7b: 90:3c:89:84:28:d1:fc:47:84:d3:01:69:cb:51:98: d3:91:50:e7:9e:42:f9:8d:8f:e6:84:fb:fc:8a:8a: f2:d1:3c:c7:5e:02:9c:50:c0:e3:f8:90:78:8a:5e: 50:8e:6b:d7:61:b9:6a:31:cc:e3:0b:1b:56:81:5d: 9f:06:0e:88:1e:52:8b:d6:a5:28:9f:57:1c:e5:65: e8:19 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 04:BC:46:24:37:0A:D7:9D:5B:BF:39:69:20:3B:F6:00:09:83:A2:69 X509v3 Authority Key Identifier: keyid:3D:51:ED:C4:3A:39:99:B1:37:1C:E5:C0:41:42:08:3F:E2:87:D0:F2 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914E6AA/8EDB107EADA811EBA7C9F567C4F9AE02/PVHtxDo5mbE3HOXAQUIIP-KH0PI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PVHtxDo5mbE3HOXAQUIIP-KH0PI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914E6AA/8EDB107EADA811EBA7C9F567C4F9AE02/PVHtxDo5mbE3HOXAQUIIP-KH0PI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption cd:63:0b:81:b5:70:f6:91:10:76:fc:1e:5d:f0:bd:c8:74:aa: 32:2f:8e:df:de:ec:ee:56:9a:4e:c4:79:77:db:34:9f:c0:22: 95:7e:59:56:44:c4:f0:0f:6a:6a:ce:7b:52:fb:d3:00:8c:3c: 8b:ca:8f:6a:ed:bb:84:27:b1:64:db:90:b3:9a:79:d3:57:03: 56:c9:49:58:2a:5d:9f:f4:6e:ed:e6:14:69:68:3d:4c:bc:71: 97:a8:34:b6:fc:40:f7:cd:0e:69:21:9b:27:0b:09:e3:cc:cc: 88:82:4c:db:5f:b9:b3:d0:52:b2:29:25:38:99:ae:41:c4:ce: da:1f:01:f0:17:da:4c:2d:e0:c7:e1:fa:21:9a:60:d0:a0:46: 38:ab:41:be:de:62:cc:88:87:61:7a:c5:ff:d6:2c:96:42:b5: 7d:90:b9:1f:68:b1:ed:55:ef:4f:56:22:76:6c:12:39:22:ac: cf:ea:9e:fa:93:5a:e0:26:bc:04:3a:9b:2b:43:3c:06:6a:ae: fd:ab:f9:11:e7:bf:ce:fe:dd:eb:ed:63:80:fe:37:93:2f:2a: 1f:4d:af:85:d6:1c:d5:f7:92:48:fb:b6:c5:55:c0:5c:e6:44: 6d:84:cc:e7:f3:c6:6d:ac:06:9e:ba:f0:4b:28:e4:92:f7:d4: cc:17:7d:32 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAZYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NEU2QUExMTAvBgNVBAUTKDNENTFFREM0M0EzOTk5QjEzNzFDRTVDMDQxNDIwODNG RTI4N0QwRjIwHhcNMjUwODA2MjMxMjU0WhcNMjUwODEzMjMxMjU0WjAYMRYwFAYD VQQDEw02ODkzZTE3Ni1mMjMxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxTm4s/t3QG/OomFX+2iItaNgGJAYFx4OMl6MISvgB900uq+tDvhD3SfIa0hn ZPazeXLbQqX4/DbUsbwMMy1QKgkJ62Acdx3h5Y2Wu5ddAUyTZtIZ2TzPYGAOQLvo UGYaLy89VVojztI25+a2srl4t5JRzEynXCVY7k0PS7MXrUQVDFKDtOXWDaU1TMwU 0u82g5L5aUMYZ8l+/YD1qhZk5v7nxlf4k6gAQ5q9dY4J7sEibnuQPImEKNH8R4TT AWnLUZjTkVDnnkL5jY/mhPv8iory0TzHXgKcUMDj+JB4il5QjmvXYblqMczjCxtW gV2fBg6IHlKL1qUon1cc5WXoGQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFAS8RiQ3 CtedW785aSA79gAJg6JpMB8GA1UdIwQYMBaAFD1R7cQ6OZmxNxzlwEFCCD/ih9Dy MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0RTZBQS84RURCMTA3RUFE QTgxMUVCQTdDOUY1NjdDNEY5QUUwMi9QVkh0eERvNW1iRTNIT1hBUVVJSVAtS0gw UEkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1BWSHR4RG81bWJFM0hPWEFRVUlJUC1LSDBQSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 RTZBQS84RURCMTA3RUFEQTgxMUVCQTdDOUY1NjdDNEY5QUUwMi9QVkh0eERvNW1i RTNIT1hBUVVJSVAtS0gwUEkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQDNYwuBtXD2kRB2/B5d8L3IdKoyL47f3uzuVppOxHl32zSfwCKVfllW RMTwD2pqzntS+9MAjDyLyo9q7buEJ7Fk25CzmnnTVwNWyUlYKl2f9G7t5hRpaD1M vHGXqDS2/ED3zQ5pIZsnCwnjzMyIgkzbX7mz0FKyKSU4ma5BxM7aHwHwF9pMLeDH 4fohmmDQoEY4q0G+3mLMiIdhesX/1iyWQrV9kLkfaLHtVe9PViJ2bBI5IqzP6p76 k1rgJrwEOpsrQzwGaq79q/kR57/O/t3r7WOA/jeTLyofTa+F1hzV95JI+7bFVcBc 5kRthMzn88ZtrAaeuvBLKOSS99TMF30y -----END CERTIFICATE-----Generated at Fri Aug 8 13:10:02 2025 by rpki-client