$ rpki-client -vvf rpki.apnic.net/member_repository/A9166F0E/1A758B0E261F11EAAE2E8F28C4F9AE02/PUXFozv53U06Htp-0mQGWOH4Mf8.mft File: PUXFozv53U06Htp-0mQGWOH4Mf8.mft (raw, json) Hash identifier: JBbvD0ROEqe7/oG3IYel6UQcH6+1/RDpUIjVBnBrpGQ= Subject key identifier: 2E:08:BD:31:11:9A:BB:0D:22:BB:61:2A:C8:9A:F1:9F:08:D7:21:24 Authority key identifier: 3D:45:C5:A3:3B:F9:DD:4D:3A:1E:DA:7E:D2:64:06:58:E1:F8:31:FF Certificate issuer: /CN=A9166F0E/serialNumber=3D45C5A33BF9DD4D3A1EDA7ED2640658E1F831FF Certificate serial: 0BC7 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PUXFozv53U06Htp-0mQGWOH4Mf8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9166F0E/1A758B0E261F11EAAE2E8F28C4F9AE02/PUXFozv53U06Htp-0mQGWOH4Mf8.mft Manifest number: 0BC0 Signing time: Tue 12 Aug 2025 19:08:32 +0000 Manifest this update: Tue 12 Aug 2025 19:08:32 +0000 Manifest next update: Tue 19 Aug 2025 19:08:32 +0000 Files and hashes: 1: PUXFozv53U06Htp-0mQGWOH4Mf8.crl (hash: ep5qxvTbNdURwPnv6eCvUgcMJmH+ky4lV++9pJk1lJI=) 2: A11D7694261F11EAA88CE128C4F9AE02.roa (hash: UABSLYRv5F+q/4e5iQCmZDPY3VJdi+9iaRXz535SqfM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9166F0E/1A758B0E261F11EAAE2E8F28C4F9AE02/PUXFozv53U06Htp-0mQGWOH4Mf8.crl rsync://rpki.apnic.net/member_repository/A9166F0E/1A758B0E261F11EAAE2E8F28C4F9AE02/PUXFozv53U06Htp-0mQGWOH4Mf8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PUXFozv53U06Htp-0mQGWOH4Mf8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 19 Aug 2025 19:08:31 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3015 (0xbc7) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9166F0E, serialNumber=3D45C5A33BF9DD4D3A1EDA7ED2640658E1F831FF Validity Not Before: Aug 12 19:08:32 2025 GMT Not After : Aug 19 19:08:32 2025 GMT Subject: CN=689b9130-2409 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:d6:cc:69:f8:e6:f8:07:db:47:7d:21:c6:82: 0f:fb:76:09:4a:dc:79:c4:db:ec:03:b5:1b:11:56: 1c:e4:27:34:f2:91:ef:20:8b:f1:48:84:37:ba:5c: 65:80:7b:18:9c:28:b6:ec:80:62:48:85:da:b4:25: 18:35:26:91:45:76:6c:bc:db:57:d7:aa:49:46:f0: 84:b8:cb:9e:82:4e:8e:7a:ac:8b:e7:6a:91:f9:ac: dd:b9:df:9d:72:b7:be:1b:7a:50:54:00:db:29:c8: 1b:98:aa:cf:11:a8:ae:0a:cd:0b:e7:8b:3b:6a:f8: d5:53:bf:03:c6:dd:b3:fd:5b:6d:b5:50:fa:be:d8: 7a:51:ae:ab:e2:45:c3:21:2f:e0:64:b4:a8:7e:82: 94:6d:df:c7:f8:c7:3e:55:88:d8:17:51:d1:ea:a0: 1f:0e:a0:2f:f9:49:09:ca:79:45:c8:6a:f8:7e:37: 22:5a:d4:c3:9e:13:28:53:2f:9d:74:11:f9:9d:d2: e9:91:c9:fb:1e:80:ad:22:fa:73:3a:87:72:25:c7: ff:10:ee:9d:ea:71:9c:be:4f:d7:53:3f:81:e6:30: 17:a1:b9:c9:d7:14:54:20:9a:2c:2f:3d:68:5c:aa: 13:03:ac:33:d2:57:4e:7c:c2:2f:b3:44:b4:ad:84: cf:25 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2E:08:BD:31:11:9A:BB:0D:22:BB:61:2A:C8:9A:F1:9F:08:D7:21:24 X509v3 Authority Key Identifier: keyid:3D:45:C5:A3:3B:F9:DD:4D:3A:1E:DA:7E:D2:64:06:58:E1:F8:31:FF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9166F0E/1A758B0E261F11EAAE2E8F28C4F9AE02/PUXFozv53U06Htp-0mQGWOH4Mf8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PUXFozv53U06Htp-0mQGWOH4Mf8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9166F0E/1A758B0E261F11EAAE2E8F28C4F9AE02/PUXFozv53U06Htp-0mQGWOH4Mf8.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 05:45:c5:23:4a:19:12:18:3d:93:97:4b:6b:f3:ce:ed:fe:7d: 3b:63:8f:2f:3d:ea:ea:8e:ca:ef:5d:4f:0e:e9:ff:44:71:36: 70:89:48:b8:46:9b:a3:1f:8d:d2:f2:01:94:52:dc:b6:05:2b: 09:c8:ec:3d:7d:87:c2:af:68:e1:f2:36:c2:be:46:f6:7f:f5: fc:64:50:f8:87:6f:c3:53:83:45:fa:f6:c6:f8:87:b5:e3:6a: b0:a0:7d:34:e7:e4:67:bd:d0:18:8f:3c:34:34:09:6d:e7:25: b5:d5:c0:79:b0:c4:ef:00:35:6d:86:28:b1:35:df:ce:b5:29: 8c:ea:14:da:e0:b6:a3:79:c8:d4:70:1f:0f:54:f5:31:97:2b: b6:87:7c:65:03:a7:5a:cd:f5:39:a3:ab:00:eb:8a:30:14:d5: d7:bb:9d:d6:d2:bc:c9:20:c5:a4:a9:ae:f3:73:a4:1f:d0:ad: 16:68:d0:f3:d8:64:ff:0f:02:f8:ff:90:9d:d0:2d:ae:56:10: 35:8f:49:0b:43:62:88:ba:b9:4c:b5:90:d3:30:45:6d:9e:6a: f1:55:36:6e:d6:84:5f:09:7f:c5:90:5d:86:15:0a:cd:f4:d9: 2a:9c:cb:2c:3b:18:b2:58:68:c3:06:38:58:57:5a:0a:8e:f0: eb:df:02:53 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICC8cwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NjZGMEUxMTAvBgNVBAUTKDNENDVDNUEzM0JGOURENEQzQTFFREE3RUQyNjQwNjU4 RTFGODMxRkYwHhcNMjUwODEyMTkwODMyWhcNMjUwODE5MTkwODMyWjAYMRYwFAYD VQQDEw02ODliOTEzMC0yNDA5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAudbMafjm+AfbR30hxoIP+3YJStx5xNvsA7UbEVYc5Cc08pHvIIvxSIQ3ulxl gHsYnCi27IBiSIXatCUYNSaRRXZsvNtX16pJRvCEuMuegk6OeqyL52qR+azdud+d cre+G3pQVADbKcgbmKrPEaiuCs0L54s7avjVU78Dxt2z/VtttVD6vth6Ua6r4kXD IS/gZLSofoKUbd/H+Mc+VYjYF1HR6qAfDqAv+UkJynlFyGr4fjciWtTDnhMoUy+d dBH5ndLpkcn7HoCtIvpzOodyJcf/EO6d6nGcvk/XUz+B5jAXobnJ1xRUIJosLz1o XKoTA6wz0ldOfMIvs0S0rYTPJQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFC4IvTER mrsNIrthKsia8Z8I1yEkMB8GA1UdIwQYMBaAFD1FxaM7+d1NOh7aftJkBljh+DH/ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2NkYwRS8xQTc1OEIwRTI2 MUYxMUVBQUUyRThGMjhDNEY5QUUwMi9QVVhGb3p2NTNVMDZIdHAtMG1RR1dPSDRN ZjguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1BVWEZvenY1M1UwNkh0cC0wbVFHV09INE1mOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 NkYwRS8xQTc1OEIwRTI2MUYxMUVBQUUyRThGMjhDNEY5QUUwMi9QVVhGb3p2NTNV MDZIdHAtMG1RR1dPSDRNZjgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAFRcUjShkSGD2Tl0tr887t/n07Y48vPerqjsrvXU8O6f9EcTZwiUi4 RpujH43S8gGUUty2BSsJyOw9fYfCr2jh8jbCvkb2f/X8ZFD4h2/DU4NF+vbG+Ie1 42qwoH005+RnvdAYjzw0NAlt5yW11cB5sMTvADVthiixNd/OtSmM6hTa4LajecjU cB8PVPUxlyu2h3xlA6dazfU5o6sA64owFNXXu53W0rzJIMWkqa7zc6Qf0K0WaNDz 2GT/DwL4/5Cd0C2uVhA1j0kLQ2KIurlMtZDTMEVtnmrxVTZu1oRfCX/FkF2GFQrN 9NkqnMssOxiyWGjDBjhYV1oKjvDr3wJT -----END CERTIFICATE-----Generated at Wed Aug 13 02:47:24 2025 by rpki-client