$ rpki-client -vvf rpki.apnic.net/member_repository/A9170E11/D060C9B25BD611ECAD833651C4F9AE02/PWRH1yl0gylOzsuFOl5QCTXRuNc.mft File: PWRH1yl0gylOzsuFOl5QCTXRuNc.mft (raw, json) Hash identifier: JxscYBXWt+ApV5fvS7xWj5X6NIdpEkko5eCmeNRylS8= Subject key identifier: F4:41:C2:0F:F3:7B:0B:E9:C6:E3:4D:C0:B5:60:7E:26:33:03:49:45 Authority key identifier: 3D:64:47:D7:29:74:83:29:4E:CE:CB:85:3A:5E:50:09:35:D1:B8:D7 Certificate issuer: /CN=A9170E11/serialNumber=3D6447D7297483294ECECB853A5E500935D1B8D7 Certificate serial: 0487 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PWRH1yl0gylOzsuFOl5QCTXRuNc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9170E11/D060C9B25BD611ECAD833651C4F9AE02/PWRH1yl0gylOzsuFOl5QCTXRuNc.mft Manifest number: 0461 Signing time: Thu 03 Jul 2025 00:34:05 +0000 Manifest this update: Thu 03 Jul 2025 00:34:04 +0000 Manifest next update: Thu 10 Jul 2025 00:34:04 +0000 Files and hashes: 1: PWRH1yl0gylOzsuFOl5QCTXRuNc.crl (hash: kKfgFCz7LlbeHF9FJhfw1bBA6HEQ7mOQ8D3f7I4aOp4=) 2: 5997A6A624E011EDAEC0E529C4F9AE02.roa (hash: 264WZ0f5FSYRLcE55bzQKj/lfReOWZZQL9W6/+XrL50=) 3: 793803867DEA11EC9FC67D66C4F9AE02.roa (hash: vRD5gvetOl4M72g0Ox/17wn2gRRkZ+MKIO7MmLjvLgg=) 4: 2CE5BE065BDA11ECAA855355C4F9AE02.roa (hash: K/T3wX+b6EJFTbJdX5T/49+xTnSJoc5fKtBw2NmgoBw=) 5: 18611004B42A11EC9BD3DE42C4F9AE02.roa (hash: MrOehOXflQUhc9W+FdP7kViEOIm0zhC3RKvz9jpM7pY=) 6: 27992F96832811EFA1BAAC4FC4F9AE02.roa (hash: 9hr8e6Q+evY4tAAVgrktH6R5E0K57yFV9RXeFdQNtLw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9170E11/D060C9B25BD611ECAD833651C4F9AE02/PWRH1yl0gylOzsuFOl5QCTXRuNc.crl rsync://rpki.apnic.net/member_repository/A9170E11/D060C9B25BD611ECAD833651C4F9AE02/PWRH1yl0gylOzsuFOl5QCTXRuNc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PWRH1yl0gylOzsuFOl5QCTXRuNc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 10 Jul 2025 00:34:02 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1159 (0x487) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9170E11, serialNumber=3D6447D7297483294ECECB853A5E500935D1B8D7 Validity Not Before: Jul 3 00:34:04 2025 GMT Not After : Jul 10 00:34:04 2025 GMT Subject: CN=6865cffc-0d88 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c9:ca:4e:77:81:4f:43:6d:8f:45:ad:f6:e7:ec: 3b:16:1f:30:d7:c4:66:8f:51:e9:f3:a7:4c:74:46: 7a:03:64:89:19:4d:44:53:6b:a9:db:98:50:7e:0a: 50:4b:7e:4e:b5:f5:4a:67:01:5f:98:70:49:4c:da: 73:e2:8b:56:b6:4b:00:43:e3:27:7d:f5:f5:66:e4: c7:93:e3:aa:98:8a:c9:1b:cc:65:cd:b2:1e:ed:81: e9:1e:a8:0b:3e:cb:17:af:b7:23:dc:5c:0c:31:95: 94:07:3c:7d:ee:aa:0c:b9:6e:6e:8b:64:43:ca:1a: 00:85:42:f3:17:e9:ed:42:95:ca:17:9c:ee:54:14: a4:29:f5:c6:b5:04:6d:39:50:cd:7e:0b:2c:01:05: a2:b7:ef:36:c2:d7:a8:42:09:de:5e:d0:52:dc:82: e4:21:0d:49:34:71:a8:67:44:e6:fc:27:4c:00:f5: f3:a3:6c:25:cf:9e:de:2c:3c:f0:35:2f:68:a9:0b: dd:76:a0:bb:2f:6f:21:a9:09:2d:bb:52:02:00:73: 90:26:f4:37:8d:24:09:ca:a0:30:ab:4d:9a:54:c1: 42:32:48:2a:67:07:0a:1e:2c:b8:96:f6:25:8f:19: 57:ae:e9:2c:6d:b7:b9:2f:bd:1c:9e:0d:ed:2e:00: 82:b7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F4:41:C2:0F:F3:7B:0B:E9:C6:E3:4D:C0:B5:60:7E:26:33:03:49:45 X509v3 Authority Key Identifier: keyid:3D:64:47:D7:29:74:83:29:4E:CE:CB:85:3A:5E:50:09:35:D1:B8:D7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9170E11/D060C9B25BD611ECAD833651C4F9AE02/PWRH1yl0gylOzsuFOl5QCTXRuNc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PWRH1yl0gylOzsuFOl5QCTXRuNc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9170E11/D060C9B25BD611ECAD833651C4F9AE02/PWRH1yl0gylOzsuFOl5QCTXRuNc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 77:35:31:06:38:73:d5:52:f2:61:37:28:fd:ee:70:a4:d6:94: ef:fa:a8:13:fb:3c:c7:48:e5:16:af:14:a9:1b:b5:48:78:85: fa:e6:e1:a9:33:b5:9f:ba:e0:d7:6b:85:fa:06:c3:f9:34:11: ab:3f:7d:57:9c:3d:76:08:88:5c:d0:f8:b8:12:d5:3d:d9:d9: 3d:d1:8a:6a:e9:5e:53:7a:79:c6:5b:c0:d8:68:70:76:4b:71: a6:a2:2d:4d:b9:d8:70:7f:2f:96:90:c3:92:58:b0:f4:4d:f6: 23:5f:13:e8:54:a8:75:e5:07:62:f7:6c:9e:df:22:fb:c1:ec: 00:c5:1d:15:1e:90:4a:27:f8:88:19:dd:0e:2c:4b:d3:91:15: a8:3a:e7:27:98:99:c4:ef:c5:67:81:d2:df:e9:87:92:17:90: 82:94:69:81:04:d8:36:eb:21:e9:be:60:84:e2:53:93:56:94: 57:f8:32:6d:5f:04:8f:aa:d2:8b:75:19:bc:f9:eb:09:be:cf: 1d:cc:26:93:be:a9:73:8c:f2:64:c9:56:50:0e:95:d7:22:6b: c1:6a:f1:ee:b9:1c:aa:03:91:9e:f2:e1:c3:5a:54:b7:7d:eb: 94:69:2a:65:2f:fb:70:5b:82:e7:b7:5f:7b:83:81:1e:ad:14: 67:db:8b:aa -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBIcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzBFMTExMTAvBgNVBAUTKDNENjQ0N0Q3Mjk3NDgzMjk0RUNFQ0I4NTNBNUU1MDA5 MzVEMUI4RDcwHhcNMjUwNzAzMDAzNDA0WhcNMjUwNzEwMDAzNDA0WjAYMRYwFAYD VQQDEw02ODY1Y2ZmYy0wZDg4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAycpOd4FPQ22PRa325+w7Fh8w18Rmj1Hp86dMdEZ6A2SJGU1EU2up25hQfgpQ S35OtfVKZwFfmHBJTNpz4otWtksAQ+MnffX1ZuTHk+OqmIrJG8xlzbIe7YHpHqgL PssXr7cj3FwMMZWUBzx97qoMuW5ui2RDyhoAhULzF+ntQpXKF5zuVBSkKfXGtQRt OVDNfgssAQWit+82wteoQgneXtBS3ILkIQ1JNHGoZ0Tm/CdMAPXzo2wlz57eLDzw NS9oqQvddqC7L28hqQktu1ICAHOQJvQ3jSQJyqAwq02aVMFCMkgqZwcKHiy4lvYl jxlXruksbbe5L70cng3tLgCCtwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFPRBwg/z ewvpxuNNwLVgfiYzA0lFMB8GA1UdIwQYMBaAFD1kR9cpdIMpTs7LhTpeUAk10bjX MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3MEUxMS9EMDYwQzlCMjVC RDYxMUVDQUQ4MzM2NTFDNEY5QUUwMi9QV1JIMXlsMGd5bE96c3VGT2w1UUNUWFJ1 TmMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1BXUkgxeWwwZ3lsT3pzdUZPbDVRQ1RYUnVOYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 MEUxMS9EMDYwQzlCMjVCRDYxMUVDQUQ4MzM2NTFDNEY5QUUwMi9QV1JIMXlsMGd5 bE96c3VGT2w1UUNUWFJ1TmMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB3NTEGOHPVUvJhNyj97nCk1pTv+qgT+zzHSOUWrxSpG7VIeIX65uGp M7WfuuDXa4X6BsP5NBGrP31XnD12CIhc0Pi4EtU92dk90Ypq6V5TennGW8DYaHB2 S3Gmoi1Nudhwfy+WkMOSWLD0TfYjXxPoVKh15Qdi92ye3yL7wewAxR0VHpBKJ/iI Gd0OLEvTkRWoOucnmJnE78VngdLf6YeSF5CClGmBBNg26yHpvmCE4lOTVpRX+DJt XwSPqtKLdRm8+esJvs8dzCaTvqlzjPJkyVZQDpXXImvBavHuuRyqA5Ge8uHDWlS3 feuUaSplL/twW4Lnt197g4EerRRn24uq -----END CERTIFICATE-----Generated at Thu Jul 3 09:51:26 2025 by rpki-client