$ rpki-client -vvf rpki.apnic.net/member_repository/A911CA78/028F58FE16D911EE9F175315C4F9AE02/PnIyBI3L0sabqyJbikIhYEbBiyU.mft File: PnIyBI3L0sabqyJbikIhYEbBiyU.mft (raw, json) Hash identifier: gkg1mTQQTwhzwWi2CaSDfPOiNCOWUEJf5jv9g7mlG0M= Subject key identifier: 4B:A9:8E:EB:1C:3E:E2:90:79:F8:36:87:EB:06:89:E3:DC:03:A2:92 Authority key identifier: 3E:72:32:04:8D:CB:D2:C6:9B:AB:22:5B:8A:42:21:60:46:C1:8B:25 Certificate issuer: /CN=A911CA78/serialNumber=3E7232048DCBD2C69BAB225B8A42216046C18B25 Certificate serial: 018E Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/PnIyBI3L0sabqyJbikIhYEbBiyU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911CA78/028F58FE16D911EE9F175315C4F9AE02/PnIyBI3L0sabqyJbikIhYEbBiyU.mft Manifest number: 018A Signing time: Wed 02 Jul 2025 19:19:10 +0000 Manifest this update: Wed 02 Jul 2025 19:19:09 +0000 Manifest next update: Wed 09 Jul 2025 19:19:09 +0000 Files and hashes: 1: PnIyBI3L0sabqyJbikIhYEbBiyU.crl (hash: q53OFVRSU4rrZSMc/MNMnhHY0Ux/UwYzEsA079b+3oI=) 2: 1ABB6C4E17DB11EE92B1C26FC4F9AE02.roa (hash: jx7hnJAbOWXi06R8EaUqGVH9j+g4HwGKu5sUmUZqpVQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911CA78/028F58FE16D911EE9F175315C4F9AE02/PnIyBI3L0sabqyJbikIhYEbBiyU.crl rsync://rpki.apnic.net/member_repository/A911CA78/028F58FE16D911EE9F175315C4F9AE02/PnIyBI3L0sabqyJbikIhYEbBiyU.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/PnIyBI3L0sabqyJbikIhYEbBiyU.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 09 Jul 2025 19:19:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 398 (0x18e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911CA78, serialNumber=3E7232048DCBD2C69BAB225B8A42216046C18B25 Validity Not Before: Jul 2 19:19:09 2025 GMT Not After : Jul 9 19:19:09 2025 GMT Subject: CN=6865862d-9dae Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a4:7e:64:5b:30:69:2b:32:eb:17:1d:d4:55:b0: a8:87:7a:0d:d0:d3:e2:01:f8:ec:5f:66:99:6d:c0: d5:4f:18:8b:d7:16:45:58:cc:0f:f6:af:30:62:e0: cd:18:e5:21:c8:22:75:92:e8:cd:55:e9:70:aa:1e: d4:e6:68:ae:31:8d:f2:5a:c0:44:c1:86:57:c3:d2: 2a:4a:63:2e:08:b3:4b:21:d9:81:17:0c:35:ef:89: 34:ea:ec:a6:21:2e:fe:73:8a:47:55:ca:15:0a:f6: a0:ba:35:a9:37:d4:9a:b3:35:2c:fc:d5:04:d0:c1: 6f:40:ac:f4:27:1a:85:49:f3:be:d0:4b:6d:a1:3d: 1e:c9:b6:b6:61:05:62:27:23:5b:5d:6b:4b:4b:c3: 63:4a:2d:fd:6a:a8:96:78:f5:9d:21:37:af:6c:aa: 60:44:77:b7:ab:0b:03:55:86:5a:41:55:47:a9:4d: 7b:02:0e:6a:fc:ee:d5:d0:b0:3b:ca:9a:3f:06:c1: df:51:e1:24:38:a5:df:fb:9e:61:21:4b:75:f8:8f: b9:be:13:ff:fc:88:80:0a:ee:6d:71:b4:7d:68:ad: b3:32:9d:7e:18:6e:9c:6e:79:91:98:77:72:85:d7: a0:27:c5:13:4d:ff:0e:72:b6:16:9e:f4:2b:e0:ba: 62:35 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4B:A9:8E:EB:1C:3E:E2:90:79:F8:36:87:EB:06:89:E3:DC:03:A2:92 X509v3 Authority Key Identifier: keyid:3E:72:32:04:8D:CB:D2:C6:9B:AB:22:5B:8A:42:21:60:46:C1:8B:25 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911CA78/028F58FE16D911EE9F175315C4F9AE02/PnIyBI3L0sabqyJbikIhYEbBiyU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/PnIyBI3L0sabqyJbikIhYEbBiyU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911CA78/028F58FE16D911EE9F175315C4F9AE02/PnIyBI3L0sabqyJbikIhYEbBiyU.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 78:b7:04:25:36:84:a7:0d:0d:a6:e5:1e:ba:03:f6:19:fe:f7: 5b:6e:62:9d:13:90:c5:82:f5:8e:c4:84:0c:fb:5f:cf:88:e8: 2b:e7:5d:0e:53:41:5e:b0:55:6f:9e:a8:76:6e:21:e4:cf:a0: a7:5c:ca:5d:aa:c6:4b:66:a6:72:d4:e3:49:b9:96:37:8a:d7: 86:e8:45:91:5f:2c:b7:68:1f:96:95:15:7b:b8:7f:ee:35:bf: a3:c2:f1:5b:88:d6:b4:05:13:69:c1:af:4d:a9:10:22:52:a0: 29:8b:71:30:54:be:7d:9d:00:72:7e:3c:ab:9c:1f:8b:50:46: f2:08:4f:10:e7:3a:89:04:59:d6:62:bf:9c:34:0b:a5:0b:58: 9d:5d:27:5f:89:05:b6:6d:51:3c:f4:d6:c4:72:ba:3b:e2:b8: af:1a:ae:a6:2b:6e:c9:81:66:76:ef:ab:62:1c:45:d9:86:ea: 27:10:84:df:17:04:33:ec:d0:28:af:58:3c:84:13:23:77:7f: c4:f2:b7:5e:1d:c8:b4:6a:86:8d:58:e6:eb:70:84:a1:82:27: 61:5d:d9:32:bd:96:a0:f7:ad:99:fc:8e:9f:23:e9:6c:3e:f3: 0d:b2:6a:2b:b1:df:21:7e:9c:29:e7:2b:53:08:fa:b0:68:43: 64:b6:db:f9 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAY4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MUNBNzgxMTAvBgNVBAUTKDNFNzIzMjA0OERDQkQyQzY5QkFCMjI1QjhBNDIyMTYw NDZDMThCMjUwHhcNMjUwNzAyMTkxOTA5WhcNMjUwNzA5MTkxOTA5WjAYMRYwFAYD VQQDEw02ODY1ODYyZC05ZGFlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEApH5kWzBpKzLrFx3UVbCoh3oN0NPiAfjsX2aZbcDVTxiL1xZFWMwP9q8wYuDN GOUhyCJ1kujNVelwqh7U5miuMY3yWsBEwYZXw9IqSmMuCLNLIdmBFww174k06uym IS7+c4pHVcoVCvagujWpN9SaszUs/NUE0MFvQKz0JxqFSfO+0EttoT0eyba2YQVi JyNbXWtLS8NjSi39aqiWePWdITevbKpgRHe3qwsDVYZaQVVHqU17Ag5q/O7V0LA7 ypo/BsHfUeEkOKXf+55hIUt1+I+5vhP//IiACu5tcbR9aK2zMp1+GG6cbnmRmHdy hdegJ8UTTf8OcrYWnvQr4LpiNQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFEupjusc PuKQefg2h+sGiePcA6KSMB8GA1UdIwQYMBaAFD5yMgSNy9LGm6siW4pCIWBGwYsl MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExQ0E3OC8wMjhGNThGRTE2 RDkxMUVFOUYxNzUzMTVDNEY5QUUwMi9Qbkl5QkkzTDBzYWJxeUpiaWtJaFlFYkJp eVUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL1BuSXlCSTNMMHNhYnF5SmJpa0loWUViQml5VS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx Q0E3OC8wMjhGNThGRTE2RDkxMUVFOUYxNzUzMTVDNEY5QUUwMi9Qbkl5QkkzTDBz YWJxeUpiaWtJaFlFYkJpeVUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB4twQlNoSnDQ2m5R66A/YZ/vdbbmKdE5DFgvWOxIQM+1/PiOgr510O U0FesFVvnqh2biHkz6CnXMpdqsZLZqZy1ONJuZY3iteG6EWRXyy3aB+WlRV7uH/u Nb+jwvFbiNa0BRNpwa9NqRAiUqApi3EwVL59nQByfjyrnB+LUEbyCE8Q5zqJBFnW Yr+cNAulC1idXSdfiQW2bVE89NbEcro74rivGq6mK27JgWZ276tiHEXZhuonEITf FwQz7NAor1g8hBMjd3/E8rdeHci0aoaNWObrcIShgidhXdkyvZag962Z/I6fI+ls PvMNsmorsd8hfpwp5ytTCPqwaENkttv5 -----END CERTIFICATE-----Generated at Fri Jul 4 14:27:03 2025 by rpki-client