$ rpki-client -vvf rpki.apnic.net/member_repository/A916AF8E/D94A75941C1411EBB036DC63C4F9AE02/PcXSlD7UrPqSa3dnapi-yLPJea4.mft File: PcXSlD7UrPqSa3dnapi-yLPJea4.mft (raw, json) Hash identifier: GqavqDuzrzOnoQpfOnX2DyNP9yvYyjKyXT/hWeWn9jA= Subject key identifier: C1:97:88:8D:D8:C9:7E:02:08:62:C3:74:4A:9C:52:BE:D4:23:9E:2B Authority key identifier: 3D:C5:D2:94:3E:D4:AC:FA:92:6B:77:67:6A:98:BE:C8:B3:C9:79:AE Certificate issuer: /CN=A916AF8E/serialNumber=3DC5D2943ED4ACFA926B77676A98BEC8B3C979AE Certificate serial: 0780 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PcXSlD7UrPqSa3dnapi-yLPJea4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A916AF8E/D94A75941C1411EBB036DC63C4F9AE02/PcXSlD7UrPqSa3dnapi-yLPJea4.mft Manifest number: 0778 Signing time: Mon 30 Jun 2025 21:46:29 +0000 Manifest this update: Mon 30 Jun 2025 21:46:28 +0000 Manifest next update: Mon 07 Jul 2025 21:46:28 +0000 Files and hashes: 1: PcXSlD7UrPqSa3dnapi-yLPJea4.crl (hash: Tn8cu48to78VsM5dCEMHoTc1C5KXnRMhBY6ahwjdUyg=) 2: 499DE3FC1C1611EB8BD35065C4F9AE02.roa (hash: QnFh/0YdNLZr/ZfMn+21+lOUTuFHow1/2U5v+xOLivo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A916AF8E/D94A75941C1411EBB036DC63C4F9AE02/PcXSlD7UrPqSa3dnapi-yLPJea4.crl rsync://rpki.apnic.net/member_repository/A916AF8E/D94A75941C1411EBB036DC63C4F9AE02/PcXSlD7UrPqSa3dnapi-yLPJea4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PcXSlD7UrPqSa3dnapi-yLPJea4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 07 Jul 2025 21:46:28 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1920 (0x780) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A916AF8E, serialNumber=3DC5D2943ED4ACFA926B77676A98BEC8B3C979AE Validity Not Before: Jun 30 21:46:28 2025 GMT Not After : Jul 7 21:46:28 2025 GMT Subject: CN=686305b5-942c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b0:6d:6a:19:63:23:76:d2:5d:ff:4e:82:c0:11: 57:a2:c6:d1:00:35:75:68:48:b7:67:53:39:97:a4: fa:23:b7:47:5c:1f:d4:bb:b5:4c:4c:30:af:fa:5c: f9:0e:15:80:44:7c:44:fb:b5:3b:6e:54:03:cd:a3: e9:a5:3f:92:75:8e:31:ff:4a:f5:95:36:cb:16:51: f2:bb:b6:00:6f:7d:d5:b5:c5:e4:f8:07:e0:dc:15: 5d:4f:c0:f9:99:c7:aa:97:3f:6e:4c:76:39:fe:8a: 1d:99:33:fa:67:4e:a4:ee:77:5d:54:16:80:43:88: 12:d4:df:82:c7:34:ab:14:5d:c3:62:43:12:c3:4a: 67:bc:1d:f9:1d:22:c4:27:19:68:23:f9:f3:cf:0d: 52:51:03:0e:a0:f8:a7:3f:fc:dd:1c:6d:f2:fd:d5: 6a:f5:f2:93:e1:bc:e3:2c:8a:7e:d8:47:05:15:8e: 79:f3:ae:5e:23:08:e3:59:32:5c:af:63:d2:25:e5: a2:ea:9f:72:97:ce:db:b6:be:fe:77:9e:19:28:9f: d3:49:88:60:fa:0e:c0:d4:e2:af:2b:7f:ae:6d:61: 4d:57:21:9d:cd:46:eb:e8:27:41:ab:10:38:07:49: 50:f9:f3:36:5b:f0:c1:82:45:b3:88:73:e2:33:6a: a9:e3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C1:97:88:8D:D8:C9:7E:02:08:62:C3:74:4A:9C:52:BE:D4:23:9E:2B X509v3 Authority Key Identifier: keyid:3D:C5:D2:94:3E:D4:AC:FA:92:6B:77:67:6A:98:BE:C8:B3:C9:79:AE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A916AF8E/D94A75941C1411EBB036DC63C4F9AE02/PcXSlD7UrPqSa3dnapi-yLPJea4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PcXSlD7UrPqSa3dnapi-yLPJea4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A916AF8E/D94A75941C1411EBB036DC63C4F9AE02/PcXSlD7UrPqSa3dnapi-yLPJea4.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 4a:3c:d0:9f:50:83:c3:5c:54:f2:1c:80:a4:ee:1e:03:30:1b: c9:6e:9f:11:76:62:c6:60:dd:9f:d6:cb:cc:47:46:1d:df:30: 9c:ac:71:c6:32:9b:a2:80:9f:b2:e4:d9:a2:e5:c5:c6:ed:d8: 3f:70:30:53:be:a4:7a:65:f0:91:c3:6e:16:5e:5d:36:d9:64: c7:00:83:46:0e:6a:2c:0b:96:67:f9:fe:06:8e:67:dd:fa:4a: 51:39:cb:6c:01:8a:1f:66:a2:19:ef:c6:5a:ae:c4:30:cc:7a: a7:5c:4b:73:b8:06:f2:e4:94:86:1e:8a:4d:3e:1f:4d:ce:45: 24:39:31:4e:e6:34:40:45:0b:09:af:e1:5f:18:16:f1:a8:39: 6b:0c:95:02:75:48:2c:f9:0a:b2:69:b1:c7:a9:67:db:02:01: 8e:04:ee:9d:79:a5:87:43:ef:5d:ce:6d:7b:a4:aa:41:79:71: 8f:8f:12:a9:ef:29:f6:cb:20:4b:f9:75:d6:c7:0d:62:29:d5: fd:1e:67:69:cd:04:09:f9:eb:89:48:c1:ef:52:36:11:93:ba: 23:49:a1:84:5b:81:41:07:3c:d4:bb:80:bd:d9:c4:f3:72:6c: 7e:97:5b:0c:8d:ed:6d:5f:40:11:b0:ff:a8:2e:d1:82:7f:27: d6:c2:19:3c -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICB4AwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NkFGOEUxMTAvBgNVBAUTKDNEQzVEMjk0M0VENEFDRkE5MjZCNzc2NzZBOThCRUM4 QjNDOTc5QUUwHhcNMjUwNjMwMjE0NjI4WhcNMjUwNzA3MjE0NjI4WjAYMRYwFAYD VQQDEw02ODYzMDViNS05NDJjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsG1qGWMjdtJd/06CwBFXosbRADV1aEi3Z1M5l6T6I7dHXB/Uu7VMTDCv+lz5 DhWARHxE+7U7blQDzaPppT+SdY4x/0r1lTbLFlHyu7YAb33VtcXk+Afg3BVdT8D5 mceqlz9uTHY5/oodmTP6Z06k7nddVBaAQ4gS1N+CxzSrFF3DYkMSw0pnvB35HSLE JxloI/nzzw1SUQMOoPinP/zdHG3y/dVq9fKT4bzjLIp+2EcFFY55865eIwjjWTJc r2PSJeWi6p9yl87btr7+d54ZKJ/TSYhg+g7A1OKvK3+ubWFNVyGdzUbr6CdBqxA4 B0lQ+fM2W/DBgkWziHPiM2qp4wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFMGXiI3Y yX4CCGLDdEqcUr7UI54rMB8GA1UdIwQYMBaAFD3F0pQ+1Kz6kmt3Z2qYvsizyXmu MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2QUY4RS9EOTRBNzU5NDFD MTQxMUVCQjAzNkRDNjNDNEY5QUUwMi9QY1hTbEQ3VXJQcVNhM2RuYXBpLXlMUEpl YTQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1BjWFNsRDdVclBxU2EzZG5hcGkteUxQSmVhNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 QUY4RS9EOTRBNzU5NDFDMTQxMUVCQjAzNkRDNjNDNEY5QUUwMi9QY1hTbEQ3VXJQ cVNhM2RuYXBpLXlMUEplYTQubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBKPNCfUIPDXFTyHICk7h4DMBvJbp8RdmLGYN2f1svMR0Yd3zCcrHHG MpuigJ+y5Nmi5cXG7dg/cDBTvqR6ZfCRw24WXl022WTHAINGDmosC5Zn+f4Gjmfd +kpROctsAYofZqIZ78ZarsQwzHqnXEtzuAby5JSGHopNPh9NzkUkOTFO5jRARQsJ r+FfGBbxqDlrDJUCdUgs+QqyabHHqWfbAgGOBO6deaWHQ+9dzm17pKpBeXGPjxKp 7yn2yyBL+XXWxw1iKdX9HmdpzQQJ+euJSMHvUjYRk7ojSaGEW4FBBzzUu4C92cTz cmx+l1sMje1tX0ARsP+oLtGCfyfWwhk8 -----END CERTIFICATE-----Generated at Tue Jul 1 21:03:51 2025 by rpki-client