$ rpki-client -vvf rpki.apnic.net/member_repository/A9196CE1/E881E8EC82B611EE9BFC061DC4F9AE02/PNcVUq-qATj5pk4BYO7wYJYGUyM.mft File: PNcVUq-qATj5pk4BYO7wYJYGUyM.mft (raw, json) Hash identifier: qeRnyYgjQHp1yQZr1JirxsEJs81Lk9q0v+ODpb+gBC8= Subject key identifier: E2:16:F3:CB:8F:F7:53:BB:D6:3F:21:3E:38:C0:42:A1:FF:EE:F7:D8 Authority key identifier: 3C:D7:15:52:AF:AA:01:38:F9:A6:4E:01:60:EE:F0:60:96:06:53:23 Certificate issuer: /CN=A9196CE1/serialNumber=3CD71552AFAA0138F9A64E0160EEF06096065323 Certificate serial: 012D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PNcVUq-qATj5pk4BYO7wYJYGUyM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9196CE1/E881E8EC82B611EE9BFC061DC4F9AE02/PNcVUq-qATj5pk4BYO7wYJYGUyM.mft Manifest number: 012A Signing time: Sun 15 Jun 2025 03:47:35 +0000 Manifest this update: Sun 15 Jun 2025 03:47:34 +0000 Manifest next update: Sun 22 Jun 2025 03:47:34 +0000 Files and hashes: 1: PNcVUq-qATj5pk4BYO7wYJYGUyM.crl (hash: DgGY8MWbag6O7dch8tmCHHKp+vUpROmHZSWPci49fG8=) 2: 4F7CFB9A82B711EE997EB92AC4F9AE02.roa (hash: VY07hPoAnZ6HhFnmDGOrse/S2/32FKp0YWgAY+x8IqE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9196CE1/E881E8EC82B611EE9BFC061DC4F9AE02/PNcVUq-qATj5pk4BYO7wYJYGUyM.crl rsync://rpki.apnic.net/member_repository/A9196CE1/E881E8EC82B611EE9BFC061DC4F9AE02/PNcVUq-qATj5pk4BYO7wYJYGUyM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PNcVUq-qATj5pk4BYO7wYJYGUyM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 22 Jun 2025 02:50:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 301 (0x12d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9196CE1, serialNumber=3CD71552AFAA0138F9A64E0160EEF06096065323 Validity Not Before: Jun 15 03:47:34 2025 GMT Not After : Jun 22 03:47:34 2025 GMT Subject: CN=684e4256-914e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b3:ac:c6:48:09:4b:15:b0:3c:bc:3c:dc:3e:f2: dd:99:64:7a:77:5a:8a:1c:5a:b9:89:6f:8b:3d:f7: 49:d0:c5:81:c9:f2:e8:fe:42:a6:c9:d8:40:af:cc: 67:ae:c5:0e:60:a1:cd:b8:b7:6b:ae:8f:01:9d:d4: c4:7f:80:05:7d:12:29:3e:f2:b4:d9:1c:36:67:bb: 8d:9f:95:7e:75:ce:66:e0:e4:7a:d7:53:c2:a5:d9: 82:7a:a5:9c:48:79:80:47:15:c5:13:cc:ab:31:51: 41:0e:ec:50:d5:90:e6:19:44:f3:11:23:7a:59:e9: c6:81:86:26:cf:34:e0:55:3d:ce:4f:49:72:bb:d0: ff:0b:8d:69:db:9d:a4:67:f1:8b:88:c0:e1:af:9a: 58:76:4b:d8:d8:e8:81:63:85:d5:1b:81:9c:50:6b: dc:16:f4:36:1a:c7:d7:66:7b:5d:cd:8d:72:4e:99: 23:b6:18:13:cd:1c:d8:6e:0f:5a:cc:5f:fc:ee:03: da:16:c9:e4:ff:d0:61:aa:bf:68:6a:72:3f:68:7a: c6:96:22:dc:eb:0e:43:4b:88:1e:54:c8:93:8c:0b: 79:72:9f:ae:ff:43:c6:a7:05:38:23:77:ec:9b:25: a8:75:e5:62:41:e2:52:17:59:a3:26:c2:4e:c1:26: 43:dd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E2:16:F3:CB:8F:F7:53:BB:D6:3F:21:3E:38:C0:42:A1:FF:EE:F7:D8 X509v3 Authority Key Identifier: keyid:3C:D7:15:52:AF:AA:01:38:F9:A6:4E:01:60:EE:F0:60:96:06:53:23 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9196CE1/E881E8EC82B611EE9BFC061DC4F9AE02/PNcVUq-qATj5pk4BYO7wYJYGUyM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PNcVUq-qATj5pk4BYO7wYJYGUyM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9196CE1/E881E8EC82B611EE9BFC061DC4F9AE02/PNcVUq-qATj5pk4BYO7wYJYGUyM.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 9c:24:f5:6a:21:01:e4:86:1e:b7:78:86:93:5a:f9:11:d9:8a: 78:77:91:e4:2f:34:62:9f:36:43:e1:df:f2:93:08:e6:d2:a9: 51:f5:09:ae:03:6a:7f:f8:c0:2d:d8:60:ea:53:2e:77:7b:16: e1:83:f4:81:25:af:f4:c4:1d:f1:db:7b:d8:c9:5d:f6:0e:ad: fc:79:a1:18:3b:d1:86:db:d6:ab:41:14:d4:3d:22:9d:bc:f4: ea:59:ab:98:fa:8c:0e:39:75:27:6d:1f:29:51:41:96:3b:83: 89:0b:bb:a6:be:91:1e:b1:52:4f:5e:e0:0e:fc:a8:03:e0:3f: 1d:dd:42:a3:ad:a7:17:08:2c:9c:56:89:de:4f:18:b6:d6:e0: 1b:65:65:f0:30:f8:ed:3d:a8:1e:99:65:95:44:26:96:2d:34: 9d:81:5c:24:ed:d1:dd:77:d1:c6:ea:cf:ab:d8:88:12:ee:04: 1b:b7:5d:aa:64:61:aa:81:66:ae:9b:6d:b0:53:8f:31:87:33: c0:da:22:a5:df:3a:48:54:81:dd:ad:1a:95:f4:2a:8e:41:fc: 61:d8:3f:20:7f:f0:72:f8:4c:ef:22:ef:c0:94:31:ce:3a:6d: a7:82:25:7b:bc:5a:b7:65:27:5b:3a:28:3b:f5:38:4f:b2:39: af:aa:63:94 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAS0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTZDRTExMTAvBgNVBAUTKDNDRDcxNTUyQUZBQTAxMzhGOUE2NEUwMTYwRUVGMDYw OTYwNjUzMjMwHhcNMjUwNjE1MDM0NzM0WhcNMjUwNjIyMDM0NzM0WjAYMRYwFAYD VQQDEw02ODRlNDI1Ni05MTRlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAs6zGSAlLFbA8vDzcPvLdmWR6d1qKHFq5iW+LPfdJ0MWByfLo/kKmydhAr8xn rsUOYKHNuLdrro8BndTEf4AFfRIpPvK02Rw2Z7uNn5V+dc5m4OR611PCpdmCeqWc SHmARxXFE8yrMVFBDuxQ1ZDmGUTzESN6WenGgYYmzzTgVT3OT0lyu9D/C41p252k Z/GLiMDhr5pYdkvY2OiBY4XVG4GcUGvcFvQ2GsfXZntdzY1yTpkjthgTzRzYbg9a zF/87gPaFsnk/9Bhqr9oanI/aHrGliLc6w5DS4geVMiTjAt5cp+u/0PGpwU4I3fs myWodeViQeJSF1mjJsJOwSZD3QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFOIW88uP 91O71j8hPjjAQqH/7vfYMB8GA1UdIwQYMBaAFDzXFVKvqgE4+aZOAWDu8GCWBlMj MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5NkNFMS9FODgxRThFQzgy QjYxMUVFOUJGQzA2MURDNEY5QUUwMi9QTmNWVXEtcUFUajVwazRCWU83d1lKWUdV eU0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1BOY1ZVcS1xQVRqNXBrNEJZTzd3WUpZR1V5TS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 NkNFMS9FODgxRThFQzgyQjYxMUVFOUJGQzA2MURDNEY5QUUwMi9QTmNWVXEtcUFU ajVwazRCWU83d1lKWUdVeU0ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCcJPVqIQHkhh63eIaTWvkR2Yp4d5HkLzRinzZD4d/ykwjm0qlR9Qmu A2p/+MAt2GDqUy53exbhg/SBJa/0xB3x23vYyV32Dq38eaEYO9GG29arQRTUPSKd vPTqWauY+owOOXUnbR8pUUGWO4OJC7umvpEesVJPXuAO/KgD4D8d3UKjracXCCyc VoneTxi21uAbZWXwMPjtPagemWWVRCaWLTSdgVwk7dHdd9HG6s+r2IgS7gQbt12q ZGGqgWaum22wU48xhzPA2iKl3zpIVIHdrRqV9CqOQfxh2D8gf/By+EzvIu/AlDHO Om2ngiV7vFq3ZSdbOig79ThPsjmvqmOU -----END CERTIFICATE-----Generated at Sun Jun 15 09:34:45 2025 by rpki-client