$ rpki-client -vvf rpki.apnic.net/member_repository/A913FE3D/81E654BCE53611EBB980326AC4F9AE02/pBhnIpZRYlTNTMrUSSUeGdG26V0.mft File: pBhnIpZRYlTNTMrUSSUeGdG26V0.mft (raw, json) Hash identifier: M03WBNMZEEjFWnbGs9cmoKLXBXr9n/BlS9pF2v36W/I= Subject key identifier: CB:83:29:71:B2:AF:D9:40:7C:2E:37:34:46:BE:55:6F:7F:33:25:43 Authority key identifier: A4:18:67:22:96:51:62:54:CD:4C:CA:D4:49:25:1E:19:D1:B6:E9:5D Certificate issuer: /CN=A913FE3D/serialNumber=A418672296516254CD4CCAD449251E19D1B6E95D Certificate serial: 0578 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pBhnIpZRYlTNTMrUSSUeGdG26V0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A913FE3D/81E654BCE53611EBB980326AC4F9AE02/pBhnIpZRYlTNTMrUSSUeGdG26V0.mft Manifest number: 0574 Signing time: Wed 02 Jul 2025 23:37:37 +0000 Manifest this update: Wed 02 Jul 2025 23:37:37 +0000 Manifest next update: Wed 09 Jul 2025 23:37:37 +0000 Files and hashes: 1: pBhnIpZRYlTNTMrUSSUeGdG26V0.crl (hash: u0sR2DPIhdr/5wNKBpJ9WVbBEXog64Ms5IrBz7XTRUw=) 2: 679A6FA4E53A11EB8197AD70C4F9AE02.roa (hash: mvt83k4r04Uj589p/6oDGv6atTVgppc7yoDpOvB9Gm8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A913FE3D/81E654BCE53611EBB980326AC4F9AE02/pBhnIpZRYlTNTMrUSSUeGdG26V0.crl rsync://rpki.apnic.net/member_repository/A913FE3D/81E654BCE53611EBB980326AC4F9AE02/pBhnIpZRYlTNTMrUSSUeGdG26V0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pBhnIpZRYlTNTMrUSSUeGdG26V0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 09 Jul 2025 23:37:36 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1400 (0x578) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A913FE3D, serialNumber=A418672296516254CD4CCAD449251E19D1B6E95D Validity Not Before: Jul 2 23:37:37 2025 GMT Not After : Jul 9 23:37:37 2025 GMT Subject: CN=6865c2c1-78fe Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c7:e7:9a:e6:cf:93:78:db:70:79:d4:d8:15:8d: 89:05:d0:e0:0d:42:05:6c:de:29:12:82:fd:ab:31: a4:ce:3d:2e:d0:21:f9:b0:e1:20:8b:91:fb:b9:30: fa:2e:31:22:52:10:42:31:d2:76:b3:72:21:10:5f: 58:a6:34:74:b1:e3:54:22:0f:d8:60:a7:a6:89:9f: ee:9d:06:61:8e:43:54:63:6d:cb:cf:95:ba:16:af: b0:9f:3f:86:b7:6d:6c:0e:63:4a:63:54:df:a9:6b: c2:11:76:81:60:e6:58:f1:2c:17:1e:dc:4d:ce:25: b8:5c:f5:98:5e:b9:22:b8:7e:8e:19:b2:6f:94:f9: 74:67:1a:a3:b3:81:8b:3f:64:b0:0b:90:f9:20:45: 10:13:b8:84:86:6f:18:c1:49:02:61:ed:50:2e:9d: dc:5a:bb:b6:e0:f6:5a:3e:ad:9f:f5:9f:bb:b1:53: 94:3a:9c:9c:61:13:3b:a9:62:91:47:ca:70:03:e4: af:69:a0:32:81:34:1d:51:f5:41:1d:f2:e6:27:af: dd:b9:2d:15:ae:60:12:e5:21:c4:3a:e0:d0:3a:48: b4:1f:56:51:da:4d:05:99:8f:ac:07:f1:c8:6f:ea: af:88:2a:61:40:fb:d6:da:11:7e:15:74:b0:2e:76: 81:99 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CB:83:29:71:B2:AF:D9:40:7C:2E:37:34:46:BE:55:6F:7F:33:25:43 X509v3 Authority Key Identifier: keyid:A4:18:67:22:96:51:62:54:CD:4C:CA:D4:49:25:1E:19:D1:B6:E9:5D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A913FE3D/81E654BCE53611EBB980326AC4F9AE02/pBhnIpZRYlTNTMrUSSUeGdG26V0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pBhnIpZRYlTNTMrUSSUeGdG26V0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A913FE3D/81E654BCE53611EBB980326AC4F9AE02/pBhnIpZRYlTNTMrUSSUeGdG26V0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 79:4f:bc:6e:88:7e:ba:f4:b6:34:b8:c1:f9:93:9d:ab:54:1e: f8:22:31:3c:c9:55:8a:8b:c3:df:23:2f:e4:2b:bf:1b:d6:81: 10:b2:be:3e:30:bd:5a:d9:a5:a6:bb:a8:fb:fd:62:6b:8d:42: 35:93:26:22:13:1d:73:ec:8a:54:36:96:c7:20:52:8f:8b:ac: 07:7e:e7:68:fe:d8:f1:c8:2a:f3:e2:bc:89:3c:fa:5a:39:0b: 0a:f6:f0:74:79:96:e9:df:ec:fe:52:dc:37:6a:33:d4:e6:dc: 72:fc:71:50:0c:97:e8:6a:d9:1f:02:d8:04:77:b4:99:3e:9a: 70:bd:1e:fa:09:ad:9f:cd:59:d1:40:c6:74:fa:72:5e:fe:f4: 85:51:6b:90:24:46:f4:d5:f3:b0:51:b6:52:a4:b2:36:4f:c5: 56:ca:ec:ca:43:31:e4:bb:f7:57:51:19:0f:dd:38:2e:7c:72: 2b:80:f9:a3:f0:d7:8d:b3:42:35:f2:b4:1f:a7:0d:a8:a7:f7: dd:64:70:b3:c2:22:87:0d:8f:6b:94:6e:79:d5:83:a5:48:ca: c5:45:dc:30:96:d6:16:26:05:5e:21:b1:3d:70:b7:65:69:a6: 6e:d8:52:b8:4e:7c:d2:67:db:fa:4e:32:58:5e:9a:e8:d3:81: 47:20:f2:4f -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBXgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx M0ZFM0QxMTAvBgNVBAUTKEE0MTg2NzIyOTY1MTYyNTRDRDRDQ0FENDQ5MjUxRTE5 RDFCNkU5NUQwHhcNMjUwNzAyMjMzNzM3WhcNMjUwNzA5MjMzNzM3WjAYMRYwFAYD VQQDEw02ODY1YzJjMS03OGZlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAx+ea5s+TeNtwedTYFY2JBdDgDUIFbN4pEoL9qzGkzj0u0CH5sOEgi5H7uTD6 LjEiUhBCMdJ2s3IhEF9YpjR0seNUIg/YYKemiZ/unQZhjkNUY23Lz5W6Fq+wnz+G t21sDmNKY1TfqWvCEXaBYOZY8SwXHtxNziW4XPWYXrkiuH6OGbJvlPl0Zxqjs4GL P2SwC5D5IEUQE7iEhm8YwUkCYe1QLp3cWru24PZaPq2f9Z+7sVOUOpycYRM7qWKR R8pwA+SvaaAygTQdUfVBHfLmJ6/duS0VrmAS5SHEOuDQOki0H1ZR2k0FmY+sB/HI b+qviCphQPvW2hF+FXSwLnaBmQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFMuDKXGy r9lAfC43NEa+VW9/MyVDMB8GA1UdIwQYMBaAFKQYZyKWUWJUzUzK1EklHhnRtuld MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzRkUzRC84MUU2NTRCQ0U1 MzYxMUVCQjk4MDMyNkFDNEY5QUUwMi9wQmhuSXBaUllsVE5UTXJVU1NVZUdkRzI2 VjAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3BCaG5JcFpSWWxUTlRNclVTU1VlR2RHMjZWMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz RkUzRC84MUU2NTRCQ0U1MzYxMUVCQjk4MDMyNkFDNEY5QUUwMi9wQmhuSXBaUlls VE5UTXJVU1NVZUdkRzI2VjAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB5T7xuiH669LY0uMH5k52rVB74IjE8yVWKi8PfIy/kK78b1oEQsr4+ ML1a2aWmu6j7/WJrjUI1kyYiEx1z7IpUNpbHIFKPi6wHfudo/tjxyCrz4ryJPPpa OQsK9vB0eZbp3+z+Utw3ajPU5txy/HFQDJfoatkfAtgEd7SZPppwvR76Ca2fzVnR QMZ0+nJe/vSFUWuQJEb01fOwUbZSpLI2T8VWyuzKQzHku/dXURkP3TgufHIrgPmj 8NeNs0I18rQfpw2op/fdZHCzwiKHDY9rlG551YOlSMrFRdwwltYWJgVeIbE9cLdl aaZu2FK4TnzSZ9v6TjJYXpro04FHIPJP -----END CERTIFICATE-----Generated at Thu Jul 3 03:09:08 2025 by rpki-client