$ rpki-client -vvf rpki.apnic.net/member_repository/A919D109/DAC666C05CE011EEB6C1B513C4F9AE02/Pq60tRb3A-pY8W4I2opmdwP7XK4.mft File: Pq60tRb3A-pY8W4I2opmdwP7XK4.mft (raw, json) Hash identifier: 3K+qkv6DHCKz/8MZPZWoh+g4tctp4+ghT9k11bTAWf0= Subject key identifier: CE:52:79:7A:3E:AC:8F:CF:A7:B9:37:EF:BE:98:9D:39:CD:87:43:FA Authority key identifier: 3E:AE:B4:B5:16:F7:03:EA:58:F1:6E:08:DA:8A:66:77:03:FB:5C:AE Certificate issuer: /CN=A919D109/serialNumber=3EAEB4B516F703EA58F16E08DA8A667703FB5CAE Certificate serial: 016E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Pq60tRb3A-pY8W4I2opmdwP7XK4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A919D109/DAC666C05CE011EEB6C1B513C4F9AE02/Pq60tRb3A-pY8W4I2opmdwP7XK4.mft Manifest number: 0166 Signing time: Sat 09 Aug 2025 04:24:08 +0000 Manifest this update: Sat 09 Aug 2025 04:24:07 +0000 Manifest next update: Sat 16 Aug 2025 04:24:07 +0000 Files and hashes: 1: Pq60tRb3A-pY8W4I2opmdwP7XK4.crl (hash: s8oQuKr2sZPaZ0egPF6A22Q3sYOtAqWw/bNjjXbnLDU=) 2: B67DC27A60E311EEB04BEA49C4F9AE02.roa (hash: Uh7NExbaYKDBSUUKd+crKnXeWpl3+22sEhcewGQ9kp8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A919D109/DAC666C05CE011EEB6C1B513C4F9AE02/Pq60tRb3A-pY8W4I2opmdwP7XK4.crl rsync://rpki.apnic.net/member_repository/A919D109/DAC666C05CE011EEB6C1B513C4F9AE02/Pq60tRb3A-pY8W4I2opmdwP7XK4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Pq60tRb3A-pY8W4I2opmdwP7XK4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 Aug 2025 05:57:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 366 (0x16e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A919D109, serialNumber=3EAEB4B516F703EA58F16E08DA8A667703FB5CAE Validity Not Before: Aug 9 04:24:07 2025 GMT Not After : Aug 16 04:24:07 2025 GMT Subject: CN=6896cd67-d692 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:db:55:79:24:b3:e2:2e:98:d3:6f:7c:96:15:59: 92:9e:19:0f:97:f1:66:d0:dc:c1:16:2d:f9:db:e9: 8f:7a:f2:cb:24:a4:d6:42:a6:be:fe:2c:7c:0c:42: 64:99:e3:c7:2a:b3:9d:c5:12:00:e1:2e:1c:82:d9: 45:44:ff:f7:8d:c2:36:04:8e:22:c0:70:18:0a:6b: a2:0b:ea:2c:90:f1:8c:13:b6:d4:47:d6:88:0e:44: f2:80:9b:70:a5:2d:43:1c:b5:5c:26:73:e8:54:0d: ae:95:c6:50:0e:79:6c:e1:9a:ab:66:00:8b:e0:f5: 99:f6:c0:4a:6e:55:d2:88:00:10:85:80:47:87:f1: 1c:aa:7b:b2:f7:c3:ae:f0:f8:94:c1:d4:a4:2e:b4: c2:b8:d5:9b:72:1b:04:61:85:eb:f1:59:87:f0:ae: ab:b1:38:8e:7a:2a:c4:bc:e1:97:53:0a:16:91:1e: 2e:0e:7c:f2:42:75:2b:ab:b3:90:75:18:03:44:17: 12:84:a2:5c:49:9a:ec:b9:12:99:41:bc:fc:ba:dc: 94:d1:e3:ef:4b:21:fd:e7:fb:57:b5:5d:56:20:21: 67:bb:d1:4d:d9:7c:5c:e7:6e:b9:88:35:06:2a:f5: 6e:16:17:2b:bc:dc:29:61:fe:c7:27:51:bf:69:d1: 30:21 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CE:52:79:7A:3E:AC:8F:CF:A7:B9:37:EF:BE:98:9D:39:CD:87:43:FA X509v3 Authority Key Identifier: keyid:3E:AE:B4:B5:16:F7:03:EA:58:F1:6E:08:DA:8A:66:77:03:FB:5C:AE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A919D109/DAC666C05CE011EEB6C1B513C4F9AE02/Pq60tRb3A-pY8W4I2opmdwP7XK4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Pq60tRb3A-pY8W4I2opmdwP7XK4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A919D109/DAC666C05CE011EEB6C1B513C4F9AE02/Pq60tRb3A-pY8W4I2opmdwP7XK4.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 41:5f:73:c8:c8:fb:70:7e:20:02:0b:c7:ee:68:84:97:a7:f9: 52:70:80:ee:35:bf:8f:96:96:80:e8:e9:ae:03:7c:1c:64:12: 87:4d:d1:15:ab:45:f7:4f:10:04:0e:83:e3:49:1d:fb:7d:9d: b4:7f:cc:4c:8d:b0:5c:a7:66:af:78:2c:a6:ca:49:53:59:52: ee:ae:cf:96:43:d4:a8:46:ba:64:a8:bd:7f:d8:c4:aa:78:0b: d8:99:39:b6:00:9a:8b:87:cc:b7:0b:a8:65:c6:c2:e9:4b:fa: 34:35:ab:8b:50:51:0c:be:99:8e:18:8f:1b:e8:01:08:b4:39: 95:ba:f0:b0:61:a3:0d:8e:d6:75:6d:3b:5a:2b:a5:2b:7d:3d: 94:7d:96:e3:5e:71:11:f7:18:18:7f:69:0f:78:00:cc:9b:d7: 95:ff:1a:6d:2e:c4:f3:60:1d:0f:b0:e7:e1:41:ca:40:78:be: ad:e6:fc:af:18:35:59:bd:34:9b:07:f3:41:5d:7e:6a:ab:66: d3:7c:0f:44:e8:e8:9d:3c:15:4a:0e:a6:42:db:c0:d8:49:3d: 42:f7:40:c1:c7:7c:79:5c:cd:75:25:c8:5b:6b:be:17:e2:65: c5:4a:ad:92:25:ec:c7:e2:dc:5b:d0:e5:12:d0:cc:72:6a:25: 25:3d:77:f3 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAW4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OUQxMDkxMTAvBgNVBAUTKDNFQUVCNEI1MTZGNzAzRUE1OEYxNkUwOERBOEE2Njc3 MDNGQjVDQUUwHhcNMjUwODA5MDQyNDA3WhcNMjUwODE2MDQyNDA3WjAYMRYwFAYD VQQDEw02ODk2Y2Q2Ny1kNjkyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA21V5JLPiLpjTb3yWFVmSnhkPl/Fm0NzBFi352+mPevLLJKTWQqa+/ix8DEJk mePHKrOdxRIA4S4cgtlFRP/3jcI2BI4iwHAYCmuiC+oskPGME7bUR9aIDkTygJtw pS1DHLVcJnPoVA2ulcZQDnls4ZqrZgCL4PWZ9sBKblXSiAAQhYBHh/Ecqnuy98Ou 8PiUwdSkLrTCuNWbchsEYYXr8VmH8K6rsTiOeirEvOGXUwoWkR4uDnzyQnUrq7OQ dRgDRBcShKJcSZrsuRKZQbz8utyU0ePvSyH95/tXtV1WICFnu9FN2Xxc5265iDUG KvVuFhcrvNwpYf7HJ1G/adEwIQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFM5SeXo+ rI/Pp7k3776YnTnNh0P6MB8GA1UdIwQYMBaAFD6utLUW9wPqWPFuCNqKZncD+1yu MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5RDEwOS9EQUM2NjZDMDVD RTAxMUVFQjZDMUI1MTNDNEY5QUUwMi9QcTYwdFJiM0EtcFk4VzRJMm9wbWR3UDdY SzQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1BxNjB0UmIzQS1wWThXNEkyb3BtZHdQN1hLNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 RDEwOS9EQUM2NjZDMDVDRTAxMUVFQjZDMUI1MTNDNEY5QUUwMi9QcTYwdFJiM0Et cFk4VzRJMm9wbWR3UDdYSzQubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBBX3PIyPtwfiACC8fuaISXp/lScIDuNb+PlpaA6OmuA3wcZBKHTdEV q0X3TxAEDoPjSR37fZ20f8xMjbBcp2aveCymyklTWVLurs+WQ9SoRrpkqL1/2MSq eAvYmTm2AJqLh8y3C6hlxsLpS/o0NauLUFEMvpmOGI8b6AEItDmVuvCwYaMNjtZ1 bTtaK6UrfT2UfZbjXnER9xgYf2kPeADMm9eV/xptLsTzYB0PsOfhQcpAeL6t5vyv GDVZvTSbB/NBXX5qq2bTfA9E6OidPBVKDqZC28DYST1C90DBx3x5XM11Jchba74X 4mXFSq2SJezH4txb0OUS0MxyaiUlPXfz -----END CERTIFICATE-----Generated at Sat Aug 9 14:25:52 2025 by rpki-client