$ rpki-client -vvf rpki.apnic.net/member_repository/A9189B41/69B7698E605911EF9C223760C4F9AE02/punLpSnAWpYkymA1SKPjFJF1jys.mft File: punLpSnAWpYkymA1SKPjFJF1jys.mft (raw, json) Hash identifier: G0UuxyxUde5+81L2A4PqqrxSUiD4L5M4rs0W/wys3hA= Subject key identifier: 28:DD:72:2D:94:38:4C:AE:76:E7:0E:0E:53:EF:BB:B3:FC:4C:49:52 Authority key identifier: A6:E9:CB:A5:29:C0:5A:96:24:CA:60:35:48:A3:E3:14:91:75:8F:2B Certificate issuer: /CN=A9189B41/serialNumber=A6E9CBA529C05A9624CA603548A3E31491758F2B Certificate serial: A3 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/punLpSnAWpYkymA1SKPjFJF1jys.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9189B41/69B7698E605911EF9C223760C4F9AE02/punLpSnAWpYkymA1SKPjFJF1jys.mft Manifest number: A2 Signing time: Thu 03 Jul 2025 06:25:33 +0000 Manifest this update: Thu 03 Jul 2025 06:25:33 +0000 Manifest next update: Thu 10 Jul 2025 06:25:33 +0000 Files and hashes: 1: punLpSnAWpYkymA1SKPjFJF1jys.crl (hash: gBngPhk3xVieofFBLDFq6FVYvIdBuxXDb7IuW180Gb8=) 2: 17AF252C605A11EFB7F45361C4F9AE02.roa (hash: hIohGLAEr9r6SYuLg+aGzwQmujzK2d8ao66pEwxDxz4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9189B41/69B7698E605911EF9C223760C4F9AE02/punLpSnAWpYkymA1SKPjFJF1jys.crl rsync://rpki.apnic.net/member_repository/A9189B41/69B7698E605911EF9C223760C4F9AE02/punLpSnAWpYkymA1SKPjFJF1jys.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/punLpSnAWpYkymA1SKPjFJF1jys.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 10 Jul 2025 03:15:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 163 (0xa3) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9189B41, serialNumber=A6E9CBA529C05A9624CA603548A3E31491758F2B Validity Not Before: Jul 3 06:25:33 2025 GMT Not After : Jul 10 06:25:33 2025 GMT Subject: CN=6866225d-3118 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cb:8e:84:9e:27:32:f4:4e:69:58:85:55:75:ab: a2:7f:e7:72:28:e5:b1:32:b8:b2:9e:18:45:63:b3: 49:bc:40:89:2c:f5:04:3f:ff:6e:a3:74:09:a8:b9: c3:db:a4:3e:78:01:d9:e3:e7:23:1b:6b:cb:0e:f1: 28:ba:d2:83:ba:e2:9d:ba:3a:96:ab:38:17:b2:e2: 4c:06:71:55:a5:10:fb:bb:70:15:11:a3:89:99:cf: 25:f0:a5:fe:42:22:52:59:04:ec:6c:89:b9:c6:54: 5c:8c:81:7f:d6:0f:87:a2:7b:55:68:2c:ba:39:e0: 52:f6:55:a8:cd:35:c4:3b:9e:d3:ef:a9:e4:84:7b: e2:65:77:e0:f8:8c:30:51:df:1f:a6:a7:84:88:41: 08:58:3c:dc:85:90:96:98:ca:b0:51:52:05:08:84: d7:78:ca:2f:37:74:e6:dc:81:74:91:ef:cc:69:48: 27:de:f2:fd:7a:47:bc:63:8c:c6:0a:77:8a:9c:dc: d8:03:ce:dd:16:41:85:aa:ba:df:89:a8:ae:33:30: 80:6c:f8:2e:74:b1:56:97:7e:42:da:87:14:f8:e5: 3f:13:4d:1f:70:7a:29:7f:4f:dc:ad:82:a4:2d:f9: 67:74:1c:2a:a2:61:81:50:16:7a:d4:fe:bd:1e:8c: 0a:ed Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 28:DD:72:2D:94:38:4C:AE:76:E7:0E:0E:53:EF:BB:B3:FC:4C:49:52 X509v3 Authority Key Identifier: keyid:A6:E9:CB:A5:29:C0:5A:96:24:CA:60:35:48:A3:E3:14:91:75:8F:2B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9189B41/69B7698E605911EF9C223760C4F9AE02/punLpSnAWpYkymA1SKPjFJF1jys.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/punLpSnAWpYkymA1SKPjFJF1jys.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9189B41/69B7698E605911EF9C223760C4F9AE02/punLpSnAWpYkymA1SKPjFJF1jys.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption b1:97:24:5d:db:a2:1a:b3:45:dd:ab:7a:58:dd:de:5e:af:63: c0:13:3b:b6:cc:37:9f:6e:ea:6f:1a:64:c4:da:7b:50:1e:55: c9:27:2c:f1:c6:b6:ee:a5:24:a9:14:8d:ab:41:4c:37:46:0d: c3:76:8f:ca:26:28:c0:8f:73:6c:66:2a:c6:37:ec:32:69:50: 35:6f:ac:dc:20:9c:cb:bf:ec:7c:be:4f:77:e4:06:4a:d5:a0: 1b:91:b0:e5:07:4b:1a:36:a8:4c:d1:99:e9:1f:2f:57:5d:39: 8e:9a:bd:09:94:88:85:bb:76:a5:a7:eb:1c:29:39:77:d4:9d: ce:21:06:f7:8a:51:4a:90:21:32:e8:8e:d6:b5:80:38:2e:5a: e7:52:bc:c1:3a:9f:26:08:ea:af:65:83:48:6f:6f:b0:91:ff: 11:ba:5a:52:3e:b1:3e:5f:82:4d:32:90:7f:06:f0:21:e3:65: 05:3e:6c:c3:6a:e7:1c:df:29:4d:55:d7:1d:16:ca:20:71:0d: 69:d7:a8:6a:40:73:3b:bc:eb:08:04:e8:ca:a2:9a:4d:2e:b1: e2:04:6f:cb:2d:b8:31:fb:6a:af:3b:cf:05:c1:b2:e2:19:46: 24:c6:a7:56:59:d6:17:8f:16:f4:0b:0d:95:3d:d4:8f:8e:c2: 83:4d:c3:34 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAKMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx ODlCNDExMTAvBgNVBAUTKEE2RTlDQkE1MjlDMDVBOTYyNENBNjAzNTQ4QTNFMzE0 OTE3NThGMkIwHhcNMjUwNzAzMDYyNTMzWhcNMjUwNzEwMDYyNTMzWjAYMRYwFAYD VQQDEw02ODY2MjI1ZC0zMTE4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAy46Enicy9E5pWIVVdauif+dyKOWxMriynhhFY7NJvECJLPUEP/9uo3QJqLnD 26Q+eAHZ4+cjG2vLDvEoutKDuuKdujqWqzgXsuJMBnFVpRD7u3AVEaOJmc8l8KX+ QiJSWQTsbIm5xlRcjIF/1g+HontVaCy6OeBS9lWozTXEO57T76nkhHviZXfg+Iww Ud8fpqeEiEEIWDzchZCWmMqwUVIFCITXeMovN3Tm3IF0ke/MaUgn3vL9eke8Y4zG CneKnNzYA87dFkGFqrrfiaiuMzCAbPgudLFWl35C2ocU+OU/E00fcHopf0/crYKk LflndBwqomGBUBZ61P69HowK7QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFCjdci2U OEyuducODlPvu7P8TElSMB8GA1UdIwQYMBaAFKbpy6UpwFqWJMpgNUij4xSRdY8r MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4OUI0MS82OUI3Njk4RTYw NTkxMUVGOUMyMjM3NjBDNEY5QUUwMi9wdW5McFNuQVdwWWt5bUExU0tQakZKRjFq eXMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL3B1bkxwU25BV3BZa3ltQTFTS1BqRkpGMWp5cy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 OUI0MS82OUI3Njk4RTYwNTkxMUVGOUMyMjM3NjBDNEY5QUUwMi9wdW5McFNuQVdw WWt5bUExU0tQakZKRjFqeXMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCxlyRd26Ias0Xdq3pY3d5er2PAEzu2zDefbupvGmTE2ntQHlXJJyzx xrbupSSpFI2rQUw3Rg3Ddo/KJijAj3NsZirGN+wyaVA1b6zcIJzLv+x8vk935AZK 1aAbkbDlB0saNqhM0ZnpHy9XXTmOmr0JlIiFu3alp+scKTl31J3OIQb3ilFKkCEy 6I7WtYA4LlrnUrzBOp8mCOqvZYNIb2+wkf8RulpSPrE+X4JNMpB/BvAh42UFPmzD aucc3ylNVdcdFsogcQ1p16hqQHM7vOsIBOjKoppNLrHiBG/LLbgx+2qvO88FwbLi GUYkxqdWWdYXjxb0Cw2VPdSPjsKDTcM0 -----END CERTIFICATE-----Generated at Fri Jul 4 11:14:46 2025 by rpki-client