$ rpki-client -vvf rpki.apnic.net/member_repository/A9194522/DE20FC96275C11ED8DAC6A68C4F9AE02/pjicd02tZdiN8ubU9D3ioLVy7no.mft File: pjicd02tZdiN8ubU9D3ioLVy7no.mft (raw, json) Hash identifier: rIMGvQKQSPu+Q7fAyqO9I1vivatpNoWGfsKRIBtZ88c= Subject key identifier: 1A:64:19:C8:38:01:B6:2E:1F:E4:5F:E4:54:D4:AA:19:4D:3D:7B:64 Authority key identifier: A6:38:9C:77:4D:AD:65:D8:8D:F2:E6:D4:F4:3D:E2:A0:B5:72:EE:7A Certificate issuer: /CN=A9194522/serialNumber=A6389C774DAD65D88DF2E6D4F43DE2A0B572EE7A Certificate serial: 0253 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pjicd02tZdiN8ubU9D3ioLVy7no.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9194522/DE20FC96275C11ED8DAC6A68C4F9AE02/pjicd02tZdiN8ubU9D3ioLVy7no.mft Manifest number: 024A Signing time: Fri 13 Jun 2025 01:22:21 +0000 Manifest this update: Fri 13 Jun 2025 01:22:21 +0000 Manifest next update: Fri 20 Jun 2025 01:22:21 +0000 Files and hashes: 1: pjicd02tZdiN8ubU9D3ioLVy7no.crl (hash: XOtwzEJUw8QDJb0P8xZc4yuBNMeTY9cJfeoyjatKsbA=) 2: 9995D8D6276011EDAF21D06DC4F9AE02.roa (hash: De/y5SymwOEb9D5+rzbdyyNd+/EfQtgf39FuJEq4RYk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9194522/DE20FC96275C11ED8DAC6A68C4F9AE02/pjicd02tZdiN8ubU9D3ioLVy7no.crl rsync://rpki.apnic.net/member_repository/A9194522/DE20FC96275C11ED8DAC6A68C4F9AE02/pjicd02tZdiN8ubU9D3ioLVy7no.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pjicd02tZdiN8ubU9D3ioLVy7no.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 20 Jun 2025 01:22:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 595 (0x253) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9194522, serialNumber=A6389C774DAD65D88DF2E6D4F43DE2A0B572EE7A Validity Not Before: Jun 13 01:22:21 2025 GMT Not After : Jun 20 01:22:21 2025 GMT Subject: CN=684b7d4d-99fc Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c5:f6:0f:1c:34:2e:7a:df:68:80:85:e1:82:37: 45:db:17:ca:e2:b3:c1:fb:25:ea:63:e4:e3:50:0a: 1f:b7:07:f2:ff:03:93:87:57:2a:c7:26:f3:3e:a3: f8:7e:6f:f0:eb:fd:ae:b7:a4:40:13:f8:02:a3:9a: 11:9f:c2:d2:78:b2:dd:7a:00:2b:ba:6e:4f:c4:4f: 5a:74:ff:ca:63:bc:2e:73:d7:7a:c1:0f:83:05:68: 0c:41:9a:ec:a2:9b:30:65:e1:11:da:bc:8a:db:6a: e1:a0:72:e9:08:1b:20:cc:c6:14:b9:65:26:70:1b: 09:c2:8d:2f:c8:4b:9e:9d:77:a1:d9:6f:78:2f:fa: 49:d1:07:26:5b:15:6e:a8:29:54:78:2d:07:0d:8b: 9b:a8:09:65:0b:ee:8d:bf:dc:b7:03:40:95:08:a5: 3c:f3:a3:35:6f:1e:44:34:be:82:16:2b:9c:fa:03: 95:29:e4:6b:55:a8:8a:d7:9b:be:67:2e:7a:da:53: c5:ee:1b:7b:14:5d:17:a1:bc:ae:bf:3d:da:3b:81: e2:e1:f2:c3:f8:a7:88:eb:8e:b9:d6:51:4b:d5:89: d6:be:8d:26:14:ad:2e:4a:14:44:ee:26:9f:81:e1: 7f:de:02:49:ae:94:a8:e2:33:bb:cd:a3:cc:e3:70: 47:0d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1A:64:19:C8:38:01:B6:2E:1F:E4:5F:E4:54:D4:AA:19:4D:3D:7B:64 X509v3 Authority Key Identifier: keyid:A6:38:9C:77:4D:AD:65:D8:8D:F2:E6:D4:F4:3D:E2:A0:B5:72:EE:7A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9194522/DE20FC96275C11ED8DAC6A68C4F9AE02/pjicd02tZdiN8ubU9D3ioLVy7no.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pjicd02tZdiN8ubU9D3ioLVy7no.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9194522/DE20FC96275C11ED8DAC6A68C4F9AE02/pjicd02tZdiN8ubU9D3ioLVy7no.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 29:6b:86:0c:8e:ca:5c:ca:a9:19:03:80:32:b8:65:78:01:86: 3c:25:b8:a8:6b:6d:21:19:f1:3b:87:91:14:f2:49:fa:ac:2c: 4f:6d:18:3f:85:88:28:c5:4f:f0:29:23:96:cb:c4:f6:0b:5c: ce:26:d6:9c:11:e1:1f:ec:0e:9f:51:8d:9b:5b:82:bd:f4:fa: 9c:80:1c:34:5a:65:13:9e:b2:66:0e:6e:3b:09:e6:5e:85:0e: f6:28:34:c0:f7:70:a1:42:43:0a:b2:0a:9e:19:d7:3b:11:45: eb:a4:03:6c:fd:5e:b2:2a:2b:b0:48:e6:c7:02:9a:c2:6d:e9: 28:23:fe:79:45:86:f4:26:9e:1d:19:36:18:50:c5:ac:11:01: 91:67:87:1b:a5:07:15:59:9d:59:d4:be:b0:ae:bc:c6:a9:e9: 4f:0d:4a:82:5c:82:bb:c5:5b:ae:c1:34:21:62:55:e3:c7:30: 4f:a0:cf:00:17:c4:dd:9e:d9:c4:8d:0c:e7:7d:b7:64:b6:6b: 5d:21:b0:50:8f:8b:42:b0:fa:66:93:26:50:e2:1c:8f:11:ea: 91:cc:3b:9e:92:1b:5b:f9:d9:56:63:ec:4c:af:8a:10:df:80: 23:34:55:8a:a7:d1:be:f9:a5:c6:c4:ea:8d:e1:e5:6a:91:90: dd:f7:5a:83 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAlMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTQ1MjIxMTAvBgNVBAUTKEE2Mzg5Qzc3NERBRDY1RDg4REYyRTZENEY0M0RFMkEw QjU3MkVFN0EwHhcNMjUwNjEzMDEyMjIxWhcNMjUwNjIwMDEyMjIxWjAYMRYwFAYD VQQDEw02ODRiN2Q0ZC05OWZjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxfYPHDQuet9ogIXhgjdF2xfK4rPB+yXqY+TjUAoftwfy/wOTh1cqxybzPqP4 fm/w6/2ut6RAE/gCo5oRn8LSeLLdegArum5PxE9adP/KY7wuc9d6wQ+DBWgMQZrs opswZeER2ryK22rhoHLpCBsgzMYUuWUmcBsJwo0vyEuenXeh2W94L/pJ0QcmWxVu qClUeC0HDYubqAllC+6Nv9y3A0CVCKU886M1bx5ENL6CFiuc+gOVKeRrVaiK15u+ Zy562lPF7ht7FF0Xobyuvz3aO4Hi4fLD+KeI64651lFL1YnWvo0mFK0uShRE7iaf geF/3gJJrpSo4jO7zaPM43BHDQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFBpkGcg4 AbYuH+Rf5FTUqhlNPXtkMB8GA1UdIwQYMBaAFKY4nHdNrWXYjfLm1PQ94qC1cu56 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5NDUyMi9ERTIwRkM5NjI3 NUMxMUVEOERBQzZBNjhDNEY5QUUwMi9wamljZDAydFpkaU44dWJVOUQzaW9MVnk3 bm8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3BqaWNkMDJ0WmRpTjh1YlU5RDNpb0xWeTduby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 NDUyMi9ERTIwRkM5NjI3NUMxMUVEOERBQzZBNjhDNEY5QUUwMi9wamljZDAydFpk aU44dWJVOUQzaW9MVnk3bm8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQApa4YMjspcyqkZA4AyuGV4AYY8Jbioa20hGfE7h5EU8kn6rCxPbRg/ hYgoxU/wKSOWy8T2C1zOJtacEeEf7A6fUY2bW4K99PqcgBw0WmUTnrJmDm47CeZe hQ72KDTA93ChQkMKsgqeGdc7EUXrpANs/V6yKiuwSObHAprCbekoI/55RYb0Jp4d GTYYUMWsEQGRZ4cbpQcVWZ1Z1L6wrrzGqelPDUqCXIK7xVuuwTQhYlXjxzBPoM8A F8TdntnEjQznfbdktmtdIbBQj4tCsPpmkyZQ4hyPEeqRzDuekhtb+dlWY+xMr4oQ 34AjNFWKp9G++aXGxOqN4eVqkZDd91qD -----END CERTIFICATE-----Generated at Sat Jun 14 19:39:51 2025 by rpki-client