$ rpki-client -vvf rpki.apnic.net/member_repository/A916AF8E/D94A75941C1411EBB036DC63C4F9AE02/PcXSlD7UrPqSa3dnapi-yLPJea4.mft File: PcXSlD7UrPqSa3dnapi-yLPJea4.mft (raw, json) Hash identifier: evtYQPwgptwJ7PFVy3hQDJIMLnpd2YYE/BdWV2WCQiA= Subject key identifier: BF:D7:54:3D:B6:3F:86:9B:AD:EF:15:55:8A:D8:04:94:27:3B:DF:6D Authority key identifier: 3D:C5:D2:94:3E:D4:AC:FA:92:6B:77:67:6A:98:BE:C8:B3:C9:79:AE Certificate issuer: /CN=A916AF8E/serialNumber=3DC5D2943ED4ACFA926B77676A98BEC8B3C979AE Certificate serial: 0779 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PcXSlD7UrPqSa3dnapi-yLPJea4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A916AF8E/D94A75941C1411EBB036DC63C4F9AE02/PcXSlD7UrPqSa3dnapi-yLPJea4.mft Manifest number: 0771 Signing time: Mon 16 Jun 2025 21:16:22 +0000 Manifest this update: Mon 16 Jun 2025 21:16:22 +0000 Manifest next update: Mon 23 Jun 2025 21:16:22 +0000 Files and hashes: 1: PcXSlD7UrPqSa3dnapi-yLPJea4.crl (hash: mpwkc8PS6iO/hoNHcdd/ihvKloxHhOTss9bEUsaft80=) 2: 499DE3FC1C1611EB8BD35065C4F9AE02.roa (hash: QnFh/0YdNLZr/ZfMn+21+lOUTuFHow1/2U5v+xOLivo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A916AF8E/D94A75941C1411EBB036DC63C4F9AE02/PcXSlD7UrPqSa3dnapi-yLPJea4.crl rsync://rpki.apnic.net/member_repository/A916AF8E/D94A75941C1411EBB036DC63C4F9AE02/PcXSlD7UrPqSa3dnapi-yLPJea4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PcXSlD7UrPqSa3dnapi-yLPJea4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 23 Jun 2025 21:16:21 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1913 (0x779) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A916AF8E, serialNumber=3DC5D2943ED4ACFA926B77676A98BEC8B3C979AE Validity Not Before: Jun 16 21:16:22 2025 GMT Not After : Jun 23 21:16:22 2025 GMT Subject: CN=685089a6-d92f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d7:64:b4:d0:07:bc:06:e5:a5:73:0b:80:a1:27: 2d:85:64:36:c8:14:26:ae:7c:f8:30:dd:1b:f9:7c: 37:4f:e3:b7:8a:2e:51:17:7a:f3:7e:06:a2:50:d4: 72:0f:eb:b5:a5:dd:56:d4:a3:87:11:fb:80:f7:1c: 38:d9:4a:77:04:ef:68:1a:1a:0f:b8:9f:a2:a0:4a: 62:62:fc:5c:4d:3b:b6:0d:6f:13:3c:90:9f:69:f6: fc:78:cd:88:21:c1:75:4d:87:74:75:a6:28:77:20: 6c:c9:20:60:b1:89:95:eb:6c:36:a2:b3:88:bd:c7: 1c:78:f1:d0:fc:7c:ae:0a:04:13:03:4e:59:51:4c: 93:a0:b1:89:0c:61:e4:64:11:e3:0d:fa:a5:86:0d: 72:37:ca:8b:f3:ad:9d:c8:7f:62:83:b4:69:ae:85: 05:25:31:e7:be:b9:61:53:ae:9d:b3:12:2c:1c:94: a6:e1:9e:28:8b:2f:90:a3:74:a5:f7:5a:af:34:99: 6d:46:3c:43:e5:07:57:f1:69:fa:d3:ce:0d:bd:48: d6:42:92:4b:0f:4e:1c:8d:e4:5e:28:8a:d8:ac:96: 1e:46:ed:80:47:3b:be:ea:a5:29:07:0b:ec:bb:b6: 5c:54:d0:11:d4:af:7e:f0:e8:eb:4a:e0:cd:0e:e4: 5c:c1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BF:D7:54:3D:B6:3F:86:9B:AD:EF:15:55:8A:D8:04:94:27:3B:DF:6D X509v3 Authority Key Identifier: keyid:3D:C5:D2:94:3E:D4:AC:FA:92:6B:77:67:6A:98:BE:C8:B3:C9:79:AE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A916AF8E/D94A75941C1411EBB036DC63C4F9AE02/PcXSlD7UrPqSa3dnapi-yLPJea4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PcXSlD7UrPqSa3dnapi-yLPJea4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A916AF8E/D94A75941C1411EBB036DC63C4F9AE02/PcXSlD7UrPqSa3dnapi-yLPJea4.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 7e:0e:87:dc:00:5f:cb:a7:ef:38:85:92:94:0a:2a:d6:f2:0b: fd:43:67:44:7c:2b:d3:e4:37:ad:a7:5d:3d:1c:56:30:5c:5d: 36:81:f8:b3:15:56:99:17:e6:02:64:4b:2a:4a:7b:80:6d:7c: 57:62:b5:a7:57:1c:e1:03:ee:ec:3d:e9:53:cb:39:f9:fa:9f: 89:41:7f:4e:ce:2e:0b:2f:45:1b:bf:03:5d:35:67:9e:8a:e9: 26:c4:7d:ee:78:e0:06:96:16:43:38:ec:e0:4b:48:61:c2:bc: 10:34:42:ec:6a:df:3c:9f:0e:f0:f7:bd:b2:89:02:1b:1d:ff: 57:86:03:50:2f:30:01:be:1a:99:7e:a8:34:86:fb:93:cc:22: bf:56:26:71:8a:13:97:09:87:db:a6:c9:92:ca:fe:a5:d0:f1: 5b:e3:a9:b1:bc:b5:35:13:48:4e:7f:4a:64:cd:ac:2b:dd:43: 3c:62:e6:c6:8f:fd:ef:20:4e:6a:13:70:04:c9:59:42:4c:07: 04:b2:88:dc:73:f6:0e:39:a2:60:9d:98:2b:95:ed:30:d6:74: 55:d1:9e:e1:0a:78:1f:c3:54:5d:ad:a6:10:00:33:67:0a:24: 1e:48:5a:66:b0:ac:04:78:07:62:1f:b5:ee:c5:2e:c3:ba:ed: 61:db:d9:9e -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICB3kwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NkFGOEUxMTAvBgNVBAUTKDNEQzVEMjk0M0VENEFDRkE5MjZCNzc2NzZBOThCRUM4 QjNDOTc5QUUwHhcNMjUwNjE2MjExNjIyWhcNMjUwNjIzMjExNjIyWjAYMRYwFAYD VQQDEw02ODUwODlhNi1kOTJmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA12S00Ae8BuWlcwuAoScthWQ2yBQmrnz4MN0b+Xw3T+O3ii5RF3rzfgaiUNRy D+u1pd1W1KOHEfuA9xw42Up3BO9oGhoPuJ+ioEpiYvxcTTu2DW8TPJCfafb8eM2I IcF1TYd0daYodyBsySBgsYmV62w2orOIvcccePHQ/HyuCgQTA05ZUUyToLGJDGHk ZBHjDfqlhg1yN8qL862dyH9ig7RproUFJTHnvrlhU66dsxIsHJSm4Z4oiy+Qo3Sl 91qvNJltRjxD5QdX8Wn6084NvUjWQpJLD04cjeReKIrYrJYeRu2ARzu+6qUpBwvs u7ZcVNAR1K9+8OjrSuDNDuRcwQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFL/XVD22 P4abre8VVYrYBJQnO99tMB8GA1UdIwQYMBaAFD3F0pQ+1Kz6kmt3Z2qYvsizyXmu MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2QUY4RS9EOTRBNzU5NDFD MTQxMUVCQjAzNkRDNjNDNEY5QUUwMi9QY1hTbEQ3VXJQcVNhM2RuYXBpLXlMUEpl YTQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1BjWFNsRDdVclBxU2EzZG5hcGkteUxQSmVhNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 QUY4RS9EOTRBNzU5NDFDMTQxMUVCQjAzNkRDNjNDNEY5QUUwMi9QY1hTbEQ3VXJQ cVNhM2RuYXBpLXlMUEplYTQubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB+DofcAF/Lp+84hZKUCirW8gv9Q2dEfCvT5Detp109HFYwXF02gfiz FVaZF+YCZEsqSnuAbXxXYrWnVxzhA+7sPelTyzn5+p+JQX9Ozi4LL0UbvwNdNWee iukmxH3ueOAGlhZDOOzgS0hhwrwQNELsat88nw7w972yiQIbHf9XhgNQLzABvhqZ fqg0hvuTzCK/ViZxihOXCYfbpsmSyv6l0PFb46mxvLU1E0hOf0pkzawr3UM8YubG j/3vIE5qE3AEyVlCTAcEsojcc/YOOaJgnZgrle0w1nRV0Z7hCngfw1RdraYQADNn CiQeSFpmsKwEeAdiH7XuxS7Duu1h29me -----END CERTIFICATE-----Generated at Tue Jun 17 08:55:09 2025 by rpki-client