$ rpki-client -vvf rpki.apnic.net/member_repository/A914EE0C/22D53652D67211E4A2122351C4F9AE02/PitYQ36GJEE5rkzQPZf0A0KFBzY.mft File: PitYQ36GJEE5rkzQPZf0A0KFBzY.mft (raw, json) Hash identifier: /efkP3yXarmDFTJAfrElAX69n/Mz3X0uww4uuNiOnjY= Subject key identifier: D9:56:EF:F2:D5:33:9F:C4:EB:EB:58:55:9A:96:31:C4:2A:34:A6:4C Authority key identifier: 3E:2B:58:43:7E:86:24:41:39:AE:4C:D0:3D:97:F4:03:42:85:07:36 Certificate issuer: /CN=A914EE0C/serialNumber=3E2B58437E86244139AE4CD03D97F40342850736 Certificate serial: 270B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PitYQ36GJEE5rkzQPZf0A0KFBzY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914EE0C/22D53652D67211E4A2122351C4F9AE02/PitYQ36GJEE5rkzQPZf0A0KFBzY.mft Manifest number: 26E7 Signing time: Sun 10 Aug 2025 15:37:07 +0000 Manifest this update: Sun 10 Aug 2025 15:37:07 +0000 Manifest next update: Sun 17 Aug 2025 15:37:07 +0000 Files and hashes: 1: PitYQ36GJEE5rkzQPZf0A0KFBzY.crl (hash: gkSg5WpDeZHSaZouzQa8yCUnC0FuuVy66uADp836gPk=) 2: 7CEC0182B10C11E5BB6B2A16C4F9AE02.roa (hash: rWS5j2TJ+tCGGvBtanx4musy7r04IRKphVI4Md/BpKk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914EE0C/22D53652D67211E4A2122351C4F9AE02/PitYQ36GJEE5rkzQPZf0A0KFBzY.crl rsync://rpki.apnic.net/member_repository/A914EE0C/22D53652D67211E4A2122351C4F9AE02/PitYQ36GJEE5rkzQPZf0A0KFBzY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PitYQ36GJEE5rkzQPZf0A0KFBzY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 Aug 2025 05:57:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 9995 (0x270b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914EE0C, serialNumber=3E2B58437E86244139AE4CD03D97F40342850736 Validity Not Before: Aug 10 15:37:07 2025 GMT Not After : Aug 17 15:37:07 2025 GMT Subject: CN=6898bca3-da12 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cf:91:26:bf:81:09:9d:c6:db:9b:29:2f:47:4e: d5:b0:41:87:5a:9e:0a:89:e5:72:7a:23:c1:14:ff: b9:96:d5:87:25:bc:fa:17:dc:c6:31:97:df:a3:d3: fa:bf:de:7e:7a:51:d3:91:98:ce:ed:e1:55:1a:32: 29:fb:80:57:a6:72:1d:58:d2:c9:bc:85:da:d1:aa: f5:27:21:71:e7:2e:6d:81:36:e2:87:b4:4e:32:e1: 1d:8e:e2:03:7f:5f:ec:8f:81:2a:95:f8:c0:a7:f9: c1:9d:3e:36:b3:36:81:b3:98:8e:dd:4f:cf:f2:16: 85:56:c2:8b:63:ca:d8:36:26:7b:af:4f:ab:d7:13: e4:a6:8c:7b:10:f5:67:97:33:fa:51:99:39:8f:40: 76:92:b7:78:97:4d:71:06:df:26:b4:fb:03:c6:15: 12:83:64:4e:9d:18:c9:06:08:a8:e6:e9:3b:51:82: fa:12:04:9e:98:f3:f6:d5:dd:3d:e4:6c:f5:13:60: 53:2d:a3:dd:38:0f:46:7c:12:de:c5:9c:99:dd:93: 3e:bd:2e:c6:47:7d:c9:cd:a4:2e:f8:09:7b:ea:ac: 15:bf:a4:d8:b0:3a:e4:ca:27:0b:08:42:b6:9b:4a: 1a:84:a7:00:5f:54:11:36:f8:ae:48:01:99:01:a9: 9d:07 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D9:56:EF:F2:D5:33:9F:C4:EB:EB:58:55:9A:96:31:C4:2A:34:A6:4C X509v3 Authority Key Identifier: keyid:3E:2B:58:43:7E:86:24:41:39:AE:4C:D0:3D:97:F4:03:42:85:07:36 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914EE0C/22D53652D67211E4A2122351C4F9AE02/PitYQ36GJEE5rkzQPZf0A0KFBzY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PitYQ36GJEE5rkzQPZf0A0KFBzY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914EE0C/22D53652D67211E4A2122351C4F9AE02/PitYQ36GJEE5rkzQPZf0A0KFBzY.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 21:73:1e:39:37:4a:c8:e4:cd:28:20:f5:4a:9f:42:cd:37:39: 50:3d:52:e4:e4:06:7d:35:b5:ed:80:86:db:d2:26:d7:5e:ae: 44:7c:0a:2d:ef:ca:70:22:c0:a6:78:ea:ef:cb:d9:ea:ee:b1: fe:a0:10:38:06:97:29:f0:4a:d3:2b:4a:6f:6b:e0:eb:e4:18: 00:d5:f6:74:82:91:ad:4d:37:01:08:ab:9b:1a:3a:9c:ab:7d: d6:2b:89:b2:a2:8b:a6:e3:ec:1b:29:9c:e9:5b:78:27:1d:58: 34:60:1a:63:ce:ff:50:d8:3e:9a:71:34:eb:b6:15:80:9e:c6: 83:b8:96:81:2f:67:29:a3:28:08:d1:f3:fd:bb:1f:f2:be:11: cc:b7:fc:42:a7:26:ac:61:f9:c7:a3:cd:c5:85:10:e9:06:f0: 30:01:e1:2e:66:cc:81:7b:8c:53:50:be:a6:e4:11:36:fe:a3: 14:6e:0f:31:88:13:f6:9b:31:33:b0:dc:c0:2f:f3:82:f2:53: ad:2d:2a:5b:6f:e9:d7:f0:a3:68:11:51:b6:58:e9:41:80:7a: f6:92:35:7c:d1:03:ee:75:8b:2d:62:8f:38:73:ec:a9:91:1d: 27:c1:12:6f:1b:a7:9d:5c:56:71:dc:37:63:f7:6c:1b:c2:c8: f1:22:05:5b -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICJwswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NEVFMEMxMTAvBgNVBAUTKDNFMkI1ODQzN0U4NjI0NDEzOUFFNENEMDNEOTdGNDAz NDI4NTA3MzYwHhcNMjUwODEwMTUzNzA3WhcNMjUwODE3MTUzNzA3WjAYMRYwFAYD VQQDEw02ODk4YmNhMy1kYTEyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAz5Emv4EJncbbmykvR07VsEGHWp4KieVyeiPBFP+5ltWHJbz6F9zGMZffo9P6 v95+elHTkZjO7eFVGjIp+4BXpnIdWNLJvIXa0ar1JyFx5y5tgTbih7ROMuEdjuID f1/sj4EqlfjAp/nBnT42szaBs5iO3U/P8haFVsKLY8rYNiZ7r0+r1xPkpox7EPVn lzP6UZk5j0B2krd4l01xBt8mtPsDxhUSg2ROnRjJBgio5uk7UYL6EgSemPP21d09 5Gz1E2BTLaPdOA9GfBLexZyZ3ZM+vS7GR33JzaQu+Al76qwVv6TYsDrkyicLCEK2 m0oahKcAX1QRNviuSAGZAamdBwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFNlW7/LV M5/E6+tYVZqWMcQqNKZMMB8GA1UdIwQYMBaAFD4rWEN+hiRBOa5M0D2X9ANChQc2 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0RUUwQy8yMkQ1MzY1MkQ2 NzIxMUU0QTIxMjIzNTFDNEY5QUUwMi9QaXRZUTM2R0pFRTVya3pRUFpmMEEwS0ZC elkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1BpdFlRMzZHSkVFNXJrelFQWmYwQTBLRkJ6WS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 RUUwQy8yMkQ1MzY1MkQ2NzIxMUU0QTIxMjIzNTFDNEY5QUUwMi9QaXRZUTM2R0pF RTVya3pRUFpmMEEwS0ZCelkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAhcx45N0rI5M0oIPVKn0LNNzlQPVLk5AZ9NbXtgIbb0ibXXq5EfAot 78pwIsCmeOrvy9nq7rH+oBA4Bpcp8ErTK0pva+Dr5BgA1fZ0gpGtTTcBCKubGjqc q33WK4myooum4+wbKZzpW3gnHVg0YBpjzv9Q2D6acTTrthWAnsaDuJaBL2cpoygI 0fP9ux/yvhHMt/xCpyasYfnHo83FhRDpBvAwAeEuZsyBe4xTUL6m5BE2/qMUbg8x iBP2mzEzsNzAL/OC8lOtLSpbb+nX8KNoEVG2WOlBgHr2kjV80QPudYstYo84c+yp kR0nwRJvG6edXFZx3Ddj92wbwsjxIgVb -----END CERTIFICATE-----Generated at Mon Aug 11 04:31:22 2025 by rpki-client