$ rpki-client -vvf rpki.apnic.net/member_repository/A914EE0C/22D53652D67211E4A2122351C4F9AE02/PitYQ36GJEE5rkzQPZf0A0KFBzY.mft File: PitYQ36GJEE5rkzQPZf0A0KFBzY.mft (raw, json) Hash identifier: b6XxRdBeClDDVAtApcAMEkSigCwn1zQcolX9e6nLyjg= Subject key identifier: F4:1B:9B:5E:26:E1:BB:D3:0E:BA:04:3E:03:60:D9:4C:52:4F:83:DF Authority key identifier: 3E:2B:58:43:7E:86:24:41:39:AE:4C:D0:3D:97:F4:03:42:85:07:36 Certificate issuer: /CN=A914EE0C/serialNumber=3E2B58437E86244139AE4CD03D97F40342850736 Certificate serial: 26E8 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PitYQ36GJEE5rkzQPZf0A0KFBzY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914EE0C/22D53652D67211E4A2122351C4F9AE02/PitYQ36GJEE5rkzQPZf0A0KFBzY.mft Manifest number: 26C6 Signing time: Sat 14 Jun 2025 15:38:42 +0000 Manifest this update: Sat 14 Jun 2025 15:38:42 +0000 Manifest next update: Sat 21 Jun 2025 15:38:42 +0000 Files and hashes: 1: PitYQ36GJEE5rkzQPZf0A0KFBzY.crl (hash: ySTGdB64asCCw9w+udDd9Q99ZfzUif0ZxrJPgDebAuE=) 2: 7CEC0182B10C11E5BB6B2A16C4F9AE02.roa (hash: szs84NZp6PRkDbAazU5Vux6gnoQk27OVrBFKSwWNnmU=) 3: 7E75C196B10C11E5BB6B2A16C4F9AE02.roa (hash: 84MBUnVnF5YSfCtGOyL/Mf1o361blRMq4zWtu5Lhyug=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914EE0C/22D53652D67211E4A2122351C4F9AE02/PitYQ36GJEE5rkzQPZf0A0KFBzY.crl rsync://rpki.apnic.net/member_repository/A914EE0C/22D53652D67211E4A2122351C4F9AE02/PitYQ36GJEE5rkzQPZf0A0KFBzY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PitYQ36GJEE5rkzQPZf0A0KFBzY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 21 Jun 2025 15:38:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 9960 (0x26e8) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914EE0C, serialNumber=3E2B58437E86244139AE4CD03D97F40342850736 Validity Not Before: Jun 14 15:38:42 2025 GMT Not After : Jun 21 15:38:42 2025 GMT Subject: CN=684d9782-55e3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:e8:c8:51:e0:76:fe:48:02:7f:f2:2c:74:ba: 02:a6:65:f7:27:c9:97:51:49:ff:2a:cb:d8:1e:ec: 64:e2:ce:85:cb:09:61:03:e1:5e:7f:65:db:8b:9d: dc:55:0e:51:1a:ab:d5:1b:d2:4d:c0:a5:62:3c:07: 9c:b9:39:7d:ae:8b:0b:d7:9f:7e:bb:84:40:d3:c7: 2b:be:ea:94:ea:9d:5f:33:79:b4:0e:ee:a9:16:b6: 86:2a:02:ed:d9:d9:08:0b:ef:b0:61:1a:e3:f5:9e: af:94:53:af:4b:3f:98:c3:a3:56:d9:98:5b:ea:ff: 03:e6:18:15:e4:95:e5:a8:da:d1:63:71:9e:e4:86: e5:40:5b:b8:fe:d6:51:cf:d4:5f:67:c1:a3:fd:8d: f8:49:ff:ba:f0:44:d2:5e:33:c7:fe:fe:ca:40:ae: 3b:89:60:46:59:cb:1d:0f:52:ed:72:85:a1:58:bc: 6d:78:42:45:5d:88:0b:d6:33:52:b3:50:bc:a6:b6: bf:88:5a:e1:8d:f9:87:7d:b3:d1:47:a3:93:d2:bd: cc:a5:69:b3:2c:23:c5:9d:3b:e2:56:c9:97:a7:73: fb:91:8f:75:42:de:5c:8e:55:97:60:33:7e:2a:28: c2:bf:14:22:37:8b:b8:eb:a5:4e:ba:20:f8:95:0f: d2:b7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F4:1B:9B:5E:26:E1:BB:D3:0E:BA:04:3E:03:60:D9:4C:52:4F:83:DF X509v3 Authority Key Identifier: keyid:3E:2B:58:43:7E:86:24:41:39:AE:4C:D0:3D:97:F4:03:42:85:07:36 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914EE0C/22D53652D67211E4A2122351C4F9AE02/PitYQ36GJEE5rkzQPZf0A0KFBzY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PitYQ36GJEE5rkzQPZf0A0KFBzY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914EE0C/22D53652D67211E4A2122351C4F9AE02/PitYQ36GJEE5rkzQPZf0A0KFBzY.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 19:81:ff:2e:c9:1e:65:3f:ca:aa:04:e1:69:82:af:63:da:ef: 49:11:42:5a:01:91:43:0f:b9:ff:5d:ec:6d:f8:c2:cb:50:80: f6:6b:69:89:31:a0:da:0a:49:5c:62:88:ad:ef:40:e7:bf:19: 19:98:9b:50:da:a6:e6:56:d5:15:a7:a3:cd:89:71:d9:3c:17: 36:fb:d6:1a:b3:c7:b6:b8:e8:fc:58:b3:82:d1:b7:3c:9a:08: e3:0d:3d:54:f0:ed:c6:12:fd:f0:e5:57:de:f0:06:46:f5:ee: 4d:bb:88:03:98:cb:35:cb:65:6f:83:c8:20:6a:62:ce:1b:6a: 4b:8b:ec:ca:42:70:f7:c5:f4:47:12:26:69:44:b6:04:47:7c: 8c:8a:58:3a:cc:3a:32:8f:bf:4b:18:4a:43:f0:f3:7b:ed:e6: 4c:f1:6b:59:73:2c:64:d9:f0:2d:a7:65:43:d5:4b:af:16:d5: 51:b3:ac:33:7b:86:26:92:a2:7c:1f:4f:01:7d:21:bc:14:38: 69:7f:83:9c:35:ed:e3:ae:0a:5a:fe:3c:3f:f7:60:14:a6:81: 44:16:a0:ad:85:48:c2:16:e5:bd:1a:38:b6:8a:98:4d:a5:e4: 35:68:2b:73:eb:db:c5:b9:be:64:9a:18:9a:a1:3e:f8:9a:b9: df:c0:4f:cd -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICJugwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NEVFMEMxMTAvBgNVBAUTKDNFMkI1ODQzN0U4NjI0NDEzOUFFNENEMDNEOTdGNDAz NDI4NTA3MzYwHhcNMjUwNjE0MTUzODQyWhcNMjUwNjIxMTUzODQyWjAYMRYwFAYD VQQDEw02ODRkOTc4Mi01NWUzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwejIUeB2/kgCf/IsdLoCpmX3J8mXUUn/KsvYHuxk4s6FywlhA+Fef2Xbi53c VQ5RGqvVG9JNwKViPAecuTl9rosL159+u4RA08crvuqU6p1fM3m0Du6pFraGKgLt 2dkIC++wYRrj9Z6vlFOvSz+Yw6NW2Zhb6v8D5hgV5JXlqNrRY3Ge5IblQFu4/tZR z9RfZ8Gj/Y34Sf+68ETSXjPH/v7KQK47iWBGWcsdD1LtcoWhWLxteEJFXYgL1jNS s1C8pra/iFrhjfmHfbPRR6OT0r3MpWmzLCPFnTviVsmXp3P7kY91Qt5cjlWXYDN+ KijCvxQiN4u466VOuiD4lQ/StwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFPQbm14m 4bvTDroEPgNg2UxST4PfMB8GA1UdIwQYMBaAFD4rWEN+hiRBOa5M0D2X9ANChQc2 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0RUUwQy8yMkQ1MzY1MkQ2 NzIxMUU0QTIxMjIzNTFDNEY5QUUwMi9QaXRZUTM2R0pFRTVya3pRUFpmMEEwS0ZC elkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1BpdFlRMzZHSkVFNXJrelFQWmYwQTBLRkJ6WS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 RUUwQy8yMkQ1MzY1MkQ2NzIxMUU0QTIxMjIzNTFDNEY5QUUwMi9QaXRZUTM2R0pF RTVya3pRUFpmMEEwS0ZCelkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAZgf8uyR5lP8qqBOFpgq9j2u9JEUJaAZFDD7n/Xext+MLLUID2a2mJ MaDaCklcYoit70DnvxkZmJtQ2qbmVtUVp6PNiXHZPBc2+9Yas8e2uOj8WLOC0bc8 mgjjDT1U8O3GEv3w5Vfe8AZG9e5Nu4gDmMs1y2Vvg8ggamLOG2pLi+zKQnD3xfRH EiZpRLYER3yMilg6zDoyj79LGEpD8PN77eZM8WtZcyxk2fAtp2VD1UuvFtVRs6wz e4YmkqJ8H08BfSG8FDhpf4OcNe3jrgpa/jw/92AUpoFEFqCthUjCFuW9Gji2iphN peQ1aCtz69vFub5kmhiaoT74mrnfwE/N -----END CERTIFICATE-----Generated at Sat Jun 14 19:39:24 2025 by rpki-client