$ rpki-client -vvf rpki.apnic.net/member_repository/A9166F0E/1A758B0E261F11EAAE2E8F28C4F9AE02/PUXFozv53U06Htp-0mQGWOH4Mf8.mft File: PUXFozv53U06Htp-0mQGWOH4Mf8.mft (raw, json) Hash identifier: oVunHmKLarZSl3gTUS34Td5QK+Iwp4gTVAuw5yya/QI= Subject key identifier: C9:C8:E7:FB:DB:05:11:E9:DB:D3:5A:EB:EE:14:98:06:0D:B4:7F:42 Authority key identifier: 3D:45:C5:A3:3B:F9:DD:4D:3A:1E:DA:7E:D2:64:06:58:E1:F8:31:FF Certificate issuer: /CN=A9166F0E/serialNumber=3D45C5A33BF9DD4D3A1EDA7ED2640658E1F831FF Certificate serial: 0BB2 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PUXFozv53U06Htp-0mQGWOH4Mf8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9166F0E/1A758B0E261F11EAAE2E8F28C4F9AE02/PUXFozv53U06Htp-0mQGWOH4Mf8.mft Manifest number: 0BAB Signing time: Wed 02 Jul 2025 19:11:50 +0000 Manifest this update: Wed 02 Jul 2025 19:11:50 +0000 Manifest next update: Wed 09 Jul 2025 19:11:50 +0000 Files and hashes: 1: PUXFozv53U06Htp-0mQGWOH4Mf8.crl (hash: 144LCAMwF9x+FnH4PwJWbJb7dtYslzurtiYe3ppE30Q=) 2: A11D7694261F11EAA88CE128C4F9AE02.roa (hash: UABSLYRv5F+q/4e5iQCmZDPY3VJdi+9iaRXz535SqfM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9166F0E/1A758B0E261F11EAAE2E8F28C4F9AE02/PUXFozv53U06Htp-0mQGWOH4Mf8.crl rsync://rpki.apnic.net/member_repository/A9166F0E/1A758B0E261F11EAAE2E8F28C4F9AE02/PUXFozv53U06Htp-0mQGWOH4Mf8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PUXFozv53U06Htp-0mQGWOH4Mf8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 09 Jul 2025 19:11:49 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2994 (0xbb2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9166F0E, serialNumber=3D45C5A33BF9DD4D3A1EDA7ED2640658E1F831FF Validity Not Before: Jul 2 19:11:50 2025 GMT Not After : Jul 9 19:11:50 2025 GMT Subject: CN=68658476-b374 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e4:bf:99:e3:12:2d:80:29:67:42:f5:f5:18:19: 90:dd:06:d5:4a:03:76:fa:fa:15:b7:12:f0:57:9a: 99:93:9a:a4:2b:d1:46:16:05:bc:73:45:59:31:87: 8d:aa:dd:b9:4d:ab:4b:76:94:a4:dd:4f:5e:e2:1d: 79:88:37:cd:1e:98:e8:d8:dc:74:4b:aa:09:b8:26: 6d:34:72:1a:33:4c:60:48:91:8a:74:42:8e:dc:65: f2:5f:94:a1:51:e2:1c:14:8e:10:50:41:81:29:d5: a1:b7:12:e0:06:af:04:47:b7:b5:93:25:63:92:fa: 32:73:06:3d:2b:a8:bf:2b:93:ab:26:28:91:35:cb: b5:50:21:d3:81:18:92:58:dd:b8:d8:f6:ec:ac:14: bb:8e:4e:57:9f:ef:a5:63:aa:1b:90:06:7e:fd:a9: 76:90:83:6b:d9:d7:fd:80:35:b4:45:a8:84:90:ab: 7a:ec:c4:52:59:65:a0:f8:9c:d4:53:2f:65:b0:55: 08:15:44:f0:60:c7:57:c7:3f:ee:f6:83:25:1d:20: c5:c3:a7:13:e6:a5:12:a6:af:3d:76:bf:70:20:3b: 5f:01:bf:38:52:51:d4:d7:b6:5c:a2:14:85:8c:df: 0c:1c:40:7e:19:df:3a:eb:5b:12:2b:6f:d7:0c:4e: ba:81 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C9:C8:E7:FB:DB:05:11:E9:DB:D3:5A:EB:EE:14:98:06:0D:B4:7F:42 X509v3 Authority Key Identifier: keyid:3D:45:C5:A3:3B:F9:DD:4D:3A:1E:DA:7E:D2:64:06:58:E1:F8:31:FF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9166F0E/1A758B0E261F11EAAE2E8F28C4F9AE02/PUXFozv53U06Htp-0mQGWOH4Mf8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PUXFozv53U06Htp-0mQGWOH4Mf8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9166F0E/1A758B0E261F11EAAE2E8F28C4F9AE02/PUXFozv53U06Htp-0mQGWOH4Mf8.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 3f:ef:9e:9c:06:a2:aa:d3:0d:b8:b7:c2:47:bb:5c:09:04:d9: b3:25:e2:93:bc:74:16:4f:cc:c8:85:2d:37:f1:fe:01:31:6f: 23:51:be:22:93:f3:c4:c2:29:1d:27:a7:10:5c:43:e8:12:6f: 91:93:67:ec:79:35:c5:be:8b:09:fd:46:ef:74:ee:b0:6a:b1: 8f:cd:8b:a3:7d:32:1d:7b:da:09:6b:21:92:60:1f:79:cb:ca: 73:e0:05:28:7f:8f:45:11:a0:bb:f0:a2:0e:45:4e:a1:e0:a6: bb:0a:3c:91:2e:7b:a5:45:27:0d:98:f5:ce:52:f2:03:8f:7d: ac:55:69:f6:c5:b4:e2:5f:e0:9c:9b:fa:bf:08:69:8f:0f:b2: 10:b3:47:f8:ea:de:b4:79:09:97:94:04:82:71:42:92:51:ae: d1:89:89:6e:57:2c:d0:d1:69:6e:0a:a2:fc:ca:61:d2:12:49: b0:8f:f3:bb:5e:ca:49:34:83:da:9a:d2:62:e9:dd:9c:b5:91: cc:ea:3b:7b:67:64:b9:d4:e0:27:3a:68:3e:32:ac:6a:7f:e4: a9:fb:73:90:7d:86:89:5b:57:5a:74:bc:c3:0a:e2:2a:fd:3f: fe:de:44:38:b8:e9:b1:c3:61:13:9a:7d:8a:d4:c9:b0:d0:24: 38:54:7d:69 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICC7IwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NjZGMEUxMTAvBgNVBAUTKDNENDVDNUEzM0JGOURENEQzQTFFREE3RUQyNjQwNjU4 RTFGODMxRkYwHhcNMjUwNzAyMTkxMTUwWhcNMjUwNzA5MTkxMTUwWjAYMRYwFAYD VQQDEw02ODY1ODQ3Ni1iMzc0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA5L+Z4xItgClnQvX1GBmQ3QbVSgN2+voVtxLwV5qZk5qkK9FGFgW8c0VZMYeN qt25TatLdpSk3U9e4h15iDfNHpjo2Nx0S6oJuCZtNHIaM0xgSJGKdEKO3GXyX5Sh UeIcFI4QUEGBKdWhtxLgBq8ER7e1kyVjkvoycwY9K6i/K5OrJiiRNcu1UCHTgRiS WN242PbsrBS7jk5Xn++lY6obkAZ+/al2kINr2df9gDW0RaiEkKt67MRSWWWg+JzU Uy9lsFUIFUTwYMdXxz/u9oMlHSDFw6cT5qUSpq89dr9wIDtfAb84UlHU17ZcohSF jN8MHEB+Gd8661sSK2/XDE66gQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFMnI5/vb BRHp29Na6+4UmAYNtH9CMB8GA1UdIwQYMBaAFD1FxaM7+d1NOh7aftJkBljh+DH/ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2NkYwRS8xQTc1OEIwRTI2 MUYxMUVBQUUyRThGMjhDNEY5QUUwMi9QVVhGb3p2NTNVMDZIdHAtMG1RR1dPSDRN ZjguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1BVWEZvenY1M1UwNkh0cC0wbVFHV09INE1mOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 NkYwRS8xQTc1OEIwRTI2MUYxMUVBQUUyRThGMjhDNEY5QUUwMi9QVVhGb3p2NTNV MDZIdHAtMG1RR1dPSDRNZjgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA/756cBqKq0w24t8JHu1wJBNmzJeKTvHQWT8zIhS038f4BMW8jUb4i k/PEwikdJ6cQXEPoEm+Rk2fseTXFvosJ/UbvdO6warGPzYujfTIde9oJayGSYB95 y8pz4AUof49FEaC78KIORU6h4Ka7CjyRLnulRScNmPXOUvIDj32sVWn2xbTiX+Cc m/q/CGmPD7IQs0f46t60eQmXlASCcUKSUa7RiYluVyzQ0WluCqL8ymHSEkmwj/O7 XspJNIPamtJi6d2ctZHM6jt7Z2S51OAnOmg+Mqxqf+Sp+3OQfYaJW1dadLzDCuIq /T/+3kQ4uOmxw2ETmn2K1Mmw0CQ4VH1p -----END CERTIFICATE-----Generated at Thu Jul 3 21:02:16 2025 by rpki-client