$ rpki-client -vvf rpki.apnic.net/member_repository/A9166F0E/1A758B0E261F11EAAE2E8F28C4F9AE02/PUXFozv53U06Htp-0mQGWOH4Mf8.mft File: PUXFozv53U06Htp-0mQGWOH4Mf8.mft (raw, json) Hash identifier: j1o+xa/V2KGdhXZRmBeEV0aok9o9v62Mm3p93RLd9k8= Subject key identifier: F5:28:53:DB:A0:BD:A4:79:5C:86:90:47:55:E1:D3:E2:01:0B:B5:92 Authority key identifier: 3D:45:C5:A3:3B:F9:DD:4D:3A:1E:DA:7E:D2:64:06:58:E1:F8:31:FF Certificate issuer: /CN=A9166F0E/serialNumber=3D45C5A33BF9DD4D3A1EDA7ED2640658E1F831FF Certificate serial: 0BCC Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PUXFozv53U06Htp-0mQGWOH4Mf8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9166F0E/1A758B0E261F11EAAE2E8F28C4F9AE02/PUXFozv53U06Htp-0mQGWOH4Mf8.mft Manifest number: 0BC5 Signing time: Fri 22 Aug 2025 19:03:21 +0000 Manifest this update: Fri 22 Aug 2025 19:03:20 +0000 Manifest next update: Fri 29 Aug 2025 19:03:20 +0000 Files and hashes: 1: PUXFozv53U06Htp-0mQGWOH4Mf8.crl (hash: kl8wZZdlYHHDpvh/6m9BIQTprT1eMDJaN/sIDAdGKXM=) 2: A11D7694261F11EAA88CE128C4F9AE02.roa (hash: UABSLYRv5F+q/4e5iQCmZDPY3VJdi+9iaRXz535SqfM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9166F0E/1A758B0E261F11EAAE2E8F28C4F9AE02/PUXFozv53U06Htp-0mQGWOH4Mf8.crl rsync://rpki.apnic.net/member_repository/A9166F0E/1A758B0E261F11EAAE2E8F28C4F9AE02/PUXFozv53U06Htp-0mQGWOH4Mf8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PUXFozv53U06Htp-0mQGWOH4Mf8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Aug 2025 19:03:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3020 (0xbcc) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9166F0E, serialNumber=3D45C5A33BF9DD4D3A1EDA7ED2640658E1F831FF Validity Not Before: Aug 22 19:03:20 2025 GMT Not After : Aug 29 19:03:20 2025 GMT Subject: CN=68a8bef9-0b0e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e5:93:c3:6b:5c:b9:e7:2c:7f:21:2e:95:62:eb: 64:8b:d8:6f:d6:c1:e5:60:27:66:f7:54:c0:f8:31: e0:dc:0e:c8:7a:74:7d:a6:fb:0b:18:81:75:13:73: ec:40:ad:63:0f:47:19:4c:ff:d9:03:7a:46:ab:e9: f1:7f:58:58:2e:36:91:16:9f:e3:ea:cd:8a:5f:17: 44:b5:ae:da:3d:bc:90:85:f7:2e:f9:27:ab:ca:6c: 2d:78:50:73:4c:d3:f7:10:d1:70:dc:d8:7d:90:e6: e8:99:44:a3:ef:eb:2a:e5:e1:1b:7d:e5:45:b7:fd: a3:4c:47:97:d1:a0:60:9f:bd:2e:6d:88:12:93:5b: ef:63:bc:e2:d3:66:b7:21:63:55:3d:40:42:b3:a1: 7a:6f:e8:4d:6b:56:0b:fe:5c:54:93:01:d6:d3:3d: d8:65:e1:7c:cb:de:b1:7a:35:47:e6:be:d0:39:39: 2c:bb:7c:11:6f:d6:b3:6d:82:a3:ed:47:02:c0:bc: d0:0a:27:df:a0:d1:f9:05:34:74:83:62:db:7f:61: 20:05:37:8c:5e:be:a6:de:43:7f:9b:15:2d:df:dd: ae:66:16:03:67:86:79:d5:93:22:b1:47:75:31:cd: 06:eb:9e:ee:e4:d2:3a:98:50:13:dc:81:03:ca:62: 80:39 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F5:28:53:DB:A0:BD:A4:79:5C:86:90:47:55:E1:D3:E2:01:0B:B5:92 X509v3 Authority Key Identifier: keyid:3D:45:C5:A3:3B:F9:DD:4D:3A:1E:DA:7E:D2:64:06:58:E1:F8:31:FF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9166F0E/1A758B0E261F11EAAE2E8F28C4F9AE02/PUXFozv53U06Htp-0mQGWOH4Mf8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PUXFozv53U06Htp-0mQGWOH4Mf8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9166F0E/1A758B0E261F11EAAE2E8F28C4F9AE02/PUXFozv53U06Htp-0mQGWOH4Mf8.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 21:b7:38:f5:b5:ac:55:51:2e:56:34:ca:84:16:82:4f:da:01: 1e:57:54:f3:ec:56:ea:50:69:af:37:1d:bf:1c:eb:e5:aa:15: 32:35:d5:7c:c8:14:23:3a:9e:15:6e:5f:a2:f8:c9:c5:20:63: 0d:1d:47:f5:3f:01:6d:d0:62:38:30:f8:c8:54:28:6e:22:8a: e3:f2:fc:c4:a8:d2:a7:33:fd:fb:8b:b8:65:c4:2c:10:f7:c5: 95:4f:fd:a9:39:c6:63:d7:95:14:2e:f8:1c:ba:d4:f5:aa:64: c6:0d:e6:d1:3e:d1:3a:f4:42:65:eb:a5:6f:d3:4a:ff:62:3d: 36:62:3c:b1:9d:f1:46:6b:ee:6d:b0:2f:c8:03:d4:64:6c:f9: 45:dc:d2:90:58:2c:ff:6e:18:bc:8b:e1:e3:2f:4a:22:d7:02: cb:af:3f:60:fe:b3:59:34:4d:91:5b:c4:7f:30:57:17:e2:51: 91:cc:25:03:31:a1:3f:62:5e:d9:7a:78:40:72:68:bb:2f:66: fa:17:38:0b:f1:12:6a:ff:14:97:ef:1f:df:19:0f:af:92:18: 4e:d2:4d:75:e3:e3:30:87:3f:72:ab:93:6e:a7:5d:fb:fa:f9: 90:32:86:89:2b:af:c1:a3:b4:87:d3:49:fe:ff:c6:36:a9:44: 15:d6:45:f8 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICC8wwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NjZGMEUxMTAvBgNVBAUTKDNENDVDNUEzM0JGOURENEQzQTFFREE3RUQyNjQwNjU4 RTFGODMxRkYwHhcNMjUwODIyMTkwMzIwWhcNMjUwODI5MTkwMzIwWjAYMRYwFAYD VQQDEw02OGE4YmVmOS0wYjBlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA5ZPDa1y55yx/IS6VYutki9hv1sHlYCdm91TA+DHg3A7IenR9pvsLGIF1E3Ps QK1jD0cZTP/ZA3pGq+nxf1hYLjaRFp/j6s2KXxdEta7aPbyQhfcu+SerymwteFBz TNP3ENFw3Nh9kObomUSj7+sq5eEbfeVFt/2jTEeX0aBgn70ubYgSk1vvY7zi02a3 IWNVPUBCs6F6b+hNa1YL/lxUkwHW0z3YZeF8y96xejVH5r7QOTksu3wRb9azbYKj 7UcCwLzQCiffoNH5BTR0g2Lbf2EgBTeMXr6m3kN/mxUt392uZhYDZ4Z51ZMisUd1 Mc0G657u5NI6mFAT3IEDymKAOQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFPUoU9ug vaR5XIaQR1Xh0+IBC7WSMB8GA1UdIwQYMBaAFD1FxaM7+d1NOh7aftJkBljh+DH/ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2NkYwRS8xQTc1OEIwRTI2 MUYxMUVBQUUyRThGMjhDNEY5QUUwMi9QVVhGb3p2NTNVMDZIdHAtMG1RR1dPSDRN ZjguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1BVWEZvenY1M1UwNkh0cC0wbVFHV09INE1mOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 NkYwRS8xQTc1OEIwRTI2MUYxMUVBQUUyRThGMjhDNEY5QUUwMi9QVVhGb3p2NTNV MDZIdHAtMG1RR1dPSDRNZjgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAhtzj1taxVUS5WNMqEFoJP2gEeV1Tz7FbqUGmvNx2/HOvlqhUyNdV8 yBQjOp4Vbl+i+MnFIGMNHUf1PwFt0GI4MPjIVChuIorj8vzEqNKnM/37i7hlxCwQ 98WVT/2pOcZj15UULvgcutT1qmTGDebRPtE69EJl66Vv00r/Yj02YjyxnfFGa+5t sC/IA9RkbPlF3NKQWCz/bhi8i+HjL0oi1wLLrz9g/rNZNE2RW8R/MFcX4lGRzCUD MaE/Yl7ZenhAcmi7L2b6FzgL8RJq/xSX7x/fGQ+vkhhO0k114+Mwhz9yq5Nup137 +vmQMoaJK6/Bo7SH00n+/8Y2qUQV1kX4 -----END CERTIFICATE-----Generated at Sat Aug 23 22:19:59 2025 by rpki-client