$ rpki-client -vvf rpki.apnic.net/member_repository/A919D109/DAC666C05CE011EEB6C1B513C4F9AE02/Pq60tRb3A-pY8W4I2opmdwP7XK4.mft File: Pq60tRb3A-pY8W4I2opmdwP7XK4.mft (raw, json) Hash identifier: OwO222/Ky6YT9PSUovz5dp5THiuIJhoF0riKUFE3lX4= Subject key identifier: 41:24:64:A8:9D:64:8E:F8:7B:4A:62:7C:6C:A3:58:CC:9C:30:B0:61 Authority key identifier: 3E:AE:B4:B5:16:F7:03:EA:58:F1:6E:08:DA:8A:66:77:03:FB:5C:AE Certificate issuer: /CN=A919D109/serialNumber=3EAEB4B516F703EA58F16E08DA8A667703FB5CAE Certificate serial: 0152 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Pq60tRb3A-pY8W4I2opmdwP7XK4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A919D109/DAC666C05CE011EEB6C1B513C4F9AE02/Pq60tRb3A-pY8W4I2opmdwP7XK4.mft Manifest number: 014A Signing time: Sun 15 Jun 2025 03:31:47 +0000 Manifest this update: Sun 15 Jun 2025 03:31:46 +0000 Manifest next update: Sun 22 Jun 2025 03:31:46 +0000 Files and hashes: 1: Pq60tRb3A-pY8W4I2opmdwP7XK4.crl (hash: mUFzozJIkq5yoxsBefpTSnManwal0FaH0FGL+k6Ow90=) 2: B67DC27A60E311EEB04BEA49C4F9AE02.roa (hash: Uh7NExbaYKDBSUUKd+crKnXeWpl3+22sEhcewGQ9kp8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A919D109/DAC666C05CE011EEB6C1B513C4F9AE02/Pq60tRb3A-pY8W4I2opmdwP7XK4.crl rsync://rpki.apnic.net/member_repository/A919D109/DAC666C05CE011EEB6C1B513C4F9AE02/Pq60tRb3A-pY8W4I2opmdwP7XK4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Pq60tRb3A-pY8W4I2opmdwP7XK4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 22 Jun 2025 02:50:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 338 (0x152) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A919D109, serialNumber=3EAEB4B516F703EA58F16E08DA8A667703FB5CAE Validity Not Before: Jun 15 03:31:46 2025 GMT Not After : Jun 22 03:31:46 2025 GMT Subject: CN=684e3ea3-645b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:da:05:fb:a1:fc:2d:38:fa:af:af:5f:1c:ff:1d: a5:cb:c8:c6:df:0c:23:08:eb:b9:99:90:e8:d5:66: f9:6f:f1:1c:59:f3:7d:eb:94:66:0f:11:9e:5b:cc: f4:cc:7a:a1:1e:05:49:fb:c7:03:08:30:6d:85:49: 97:ff:60:ef:c8:b5:6a:19:89:d3:76:df:b5:06:91: e4:4b:ed:92:0d:35:9e:38:15:b1:33:d3:f4:be:75: ef:39:95:40:0e:bf:38:d6:45:49:9f:5c:65:d6:d6: 62:45:da:cc:02:2d:f3:9f:a2:cf:bb:91:dc:c5:90: 3d:d4:0e:80:88:74:d6:dd:16:52:e6:98:b2:8b:04: 9d:b7:04:b5:41:34:69:78:87:ea:59:af:3c:b2:7c: 01:8a:b6:02:97:e2:ba:c2:ac:b7:00:94:55:81:e2: 2b:3a:86:46:85:ea:24:57:2e:e0:2e:dd:b9:42:26: de:12:19:10:1a:52:ce:ff:a4:e9:97:3e:b3:52:ea: 97:e1:c9:fc:03:b1:02:aa:f5:fc:0b:79:b4:b6:21: 63:c4:ee:70:f2:90:a9:e4:05:ee:1f:db:6a:20:79: 39:d8:69:70:7d:69:b4:73:83:6a:de:ba:4c:ea:b6: ba:36:5b:d5:b6:92:86:8a:09:c6:1f:99:7d:b4:97: 3d:33 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 41:24:64:A8:9D:64:8E:F8:7B:4A:62:7C:6C:A3:58:CC:9C:30:B0:61 X509v3 Authority Key Identifier: keyid:3E:AE:B4:B5:16:F7:03:EA:58:F1:6E:08:DA:8A:66:77:03:FB:5C:AE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A919D109/DAC666C05CE011EEB6C1B513C4F9AE02/Pq60tRb3A-pY8W4I2opmdwP7XK4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Pq60tRb3A-pY8W4I2opmdwP7XK4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A919D109/DAC666C05CE011EEB6C1B513C4F9AE02/Pq60tRb3A-pY8W4I2opmdwP7XK4.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 5f:e6:16:38:43:98:20:9d:84:f4:6a:21:e5:24:28:2d:14:84: 2f:77:0e:02:57:dc:27:99:3a:af:37:71:ad:bc:5f:8e:80:a6: 33:0b:28:e2:c7:a6:37:e0:1c:a2:74:d0:34:6d:8b:f7:e9:f2: 45:c7:b8:7c:d6:a6:af:f6:29:8d:d6:f7:dd:6f:8b:af:b5:e6: 86:30:2f:18:18:35:f7:84:ec:7c:20:af:05:25:5a:b0:f4:bc: 0d:36:d9:ed:59:b9:d4:bc:50:9f:3b:8b:56:e4:85:62:88:93: da:80:71:42:72:d5:64:7a:04:75:e3:1b:90:6f:3b:60:32:0f: 39:f5:4b:ac:b6:25:b7:14:f9:92:42:42:c2:29:18:68:d3:99: 64:ff:59:94:7e:66:c7:4a:75:21:21:3e:68:c9:cd:23:cb:7c: 05:34:00:8a:a9:93:1b:e2:9e:6e:3b:d1:d3:6c:a2:84:bf:a5: ac:0d:34:f6:0c:da:69:fb:d3:60:b9:2e:66:87:1a:74:a5:bf: cf:0b:96:e8:13:cc:41:ff:21:49:9e:b4:bb:28:fa:39:0e:67: 34:0f:28:e9:ca:d3:43:37:32:51:e5:62:5d:f7:65:ee:36:5c: e6:04:41:66:60:b8:2b:65:c4:60:ac:6a:48:1c:13:47:e9:47: cc:a7:78:e0 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAVIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OUQxMDkxMTAvBgNVBAUTKDNFQUVCNEI1MTZGNzAzRUE1OEYxNkUwOERBOEE2Njc3 MDNGQjVDQUUwHhcNMjUwNjE1MDMzMTQ2WhcNMjUwNjIyMDMzMTQ2WjAYMRYwFAYD VQQDEw02ODRlM2VhMy02NDViMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA2gX7ofwtOPqvr18c/x2ly8jG3wwjCOu5mZDo1Wb5b/EcWfN965RmDxGeW8z0 zHqhHgVJ+8cDCDBthUmX/2DvyLVqGYnTdt+1BpHkS+2SDTWeOBWxM9P0vnXvOZVA Dr841kVJn1xl1tZiRdrMAi3zn6LPu5HcxZA91A6AiHTW3RZS5piyiwSdtwS1QTRp eIfqWa88snwBirYCl+K6wqy3AJRVgeIrOoZGheokVy7gLt25QibeEhkQGlLO/6Tp lz6zUuqX4cn8A7ECqvX8C3m0tiFjxO5w8pCp5AXuH9tqIHk52GlwfWm0c4Nq3rpM 6ra6NlvVtpKGignGH5l9tJc9MwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFEEkZKid ZI74e0pifGyjWMycMLBhMB8GA1UdIwQYMBaAFD6utLUW9wPqWPFuCNqKZncD+1yu MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5RDEwOS9EQUM2NjZDMDVD RTAxMUVFQjZDMUI1MTNDNEY5QUUwMi9QcTYwdFJiM0EtcFk4VzRJMm9wbWR3UDdY SzQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1BxNjB0UmIzQS1wWThXNEkyb3BtZHdQN1hLNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 RDEwOS9EQUM2NjZDMDVDRTAxMUVFQjZDMUI1MTNDNEY5QUUwMi9QcTYwdFJiM0Et cFk4VzRJMm9wbWR3UDdYSzQubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBf5hY4Q5ggnYT0aiHlJCgtFIQvdw4CV9wnmTqvN3GtvF+OgKYzCyji x6Y34ByidNA0bYv36fJFx7h81qav9imN1vfdb4uvteaGMC8YGDX3hOx8IK8FJVqw 9LwNNtntWbnUvFCfO4tW5IViiJPagHFCctVkegR14xuQbztgMg859UustiW3FPmS QkLCKRho05lk/1mUfmbHSnUhIT5oyc0jy3wFNACKqZMb4p5uO9HTbKKEv6WsDTT2 DNpp+9NguS5mhxp0pb/PC5boE8xB/yFJnrS7KPo5Dmc0DyjpytNDNzJR5WJd92Xu NlzmBEFmYLgrZcRgrGpIHBNH6UfMp3jg -----END CERTIFICATE-----Generated at Sun Jun 15 08:29:06 2025 by rpki-client