$ rpki-client -vvf rpki.apnic.net/member_repository/A9189B41/69B7698E605911EF9C223760C4F9AE02/punLpSnAWpYkymA1SKPjFJF1jys.mft File: punLpSnAWpYkymA1SKPjFJF1jys.mft (raw, json) Hash identifier: 7/x4mlKfG585LriUmjBbjNLZ8p01OM8kpC4xlNGyobg= Subject key identifier: 9B:B8:54:02:D4:B6:F2:29:0C:08:B6:68:A4:25:70:85:71:AA:52:7B Authority key identifier: A6:E9:CB:A5:29:C0:5A:96:24:CA:60:35:48:A3:E3:14:91:75:8F:2B Certificate issuer: /CN=A9189B41/serialNumber=A6E9CBA529C05A9624CA603548A3E31491758F2B Certificate serial: BD Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/punLpSnAWpYkymA1SKPjFJF1jys.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9189B41/69B7698E605911EF9C223760C4F9AE02/punLpSnAWpYkymA1SKPjFJF1jys.mft Manifest number: BC Signing time: Sat 23 Aug 2025 06:06:45 +0000 Manifest this update: Sat 23 Aug 2025 06:06:44 +0000 Manifest next update: Sat 30 Aug 2025 06:06:44 +0000 Files and hashes: 1: punLpSnAWpYkymA1SKPjFJF1jys.crl (hash: +4lnAuC2XiXcx9ksaepOA8hmuHuhtle/eVkSwZgfWbQ=) 2: 17AF252C605A11EFB7F45361C4F9AE02.roa (hash: hIohGLAEr9r6SYuLg+aGzwQmujzK2d8ao66pEwxDxz4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9189B41/69B7698E605911EF9C223760C4F9AE02/punLpSnAWpYkymA1SKPjFJF1jys.crl rsync://rpki.apnic.net/member_repository/A9189B41/69B7698E605911EF9C223760C4F9AE02/punLpSnAWpYkymA1SKPjFJF1jys.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/punLpSnAWpYkymA1SKPjFJF1jys.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Aug 2025 06:06:44 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 189 (0xbd) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9189B41, serialNumber=A6E9CBA529C05A9624CA603548A3E31491758F2B Validity Not Before: Aug 23 06:06:44 2025 GMT Not After : Aug 30 06:06:44 2025 GMT Subject: CN=68a95a75-2142 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:c0:e7:9a:a6:36:8d:b4:18:5f:c5:6f:ea:54: 69:87:d0:b9:7f:9e:70:d2:08:11:06:5f:20:51:c9: bc:aa:c7:87:5e:3c:a7:b7:91:6a:e7:92:ac:3d:fa: f8:b9:e3:e7:c7:7e:3e:57:24:34:3d:5d:bd:ac:28: ef:25:65:b7:ef:cf:64:e9:6c:13:04:d9:c4:ba:67: b1:da:98:2a:02:76:ac:23:e5:7e:34:5a:4d:da:8d: 40:01:55:c7:75:fe:b9:03:cd:3b:b8:9b:fe:5c:d6: 54:2d:38:87:78:3d:d6:06:0f:f9:68:ec:48:46:c7: af:5c:22:fc:c9:7c:26:3c:5b:6b:b7:64:1f:c4:2c: 50:62:a9:99:a7:c0:d9:1f:f4:7a:0c:a2:62:01:be: 33:9d:fd:15:e2:14:f2:ee:bb:b6:e0:3c:bd:b8:e5: dd:37:65:97:e8:02:43:86:1e:5f:91:f0:ca:f7:61: e0:9d:1f:9b:9b:21:9c:03:cb:2a:11:f0:49:6d:d9: 1c:66:77:e8:62:b0:17:67:15:be:01:86:75:4b:0c: 05:69:52:f9:0b:0e:8b:1d:54:60:cc:f0:0c:6b:18: 92:5d:a5:7f:10:61:96:12:d9:bf:37:e8:30:8b:db: 7a:6f:de:21:a0:17:77:15:26:be:4a:a0:73:a6:27: 08:6f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9B:B8:54:02:D4:B6:F2:29:0C:08:B6:68:A4:25:70:85:71:AA:52:7B X509v3 Authority Key Identifier: keyid:A6:E9:CB:A5:29:C0:5A:96:24:CA:60:35:48:A3:E3:14:91:75:8F:2B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9189B41/69B7698E605911EF9C223760C4F9AE02/punLpSnAWpYkymA1SKPjFJF1jys.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/punLpSnAWpYkymA1SKPjFJF1jys.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9189B41/69B7698E605911EF9C223760C4F9AE02/punLpSnAWpYkymA1SKPjFJF1jys.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 3c:25:8d:16:6a:53:6a:65:79:e7:0e:23:8d:23:6b:57:05:59: 03:94:d0:ab:14:0f:82:51:3f:a7:12:ef:56:30:2b:84:fe:01: f4:94:3f:07:59:26:e3:19:dc:72:af:31:8c:8b:53:b0:f3:78: 13:bc:17:ba:33:5e:e9:60:a0:50:e6:1e:9d:a6:6f:15:74:65: 9f:84:87:2e:74:a2:89:d3:2c:b0:a9:fa:b0:0b:37:17:1e:30: 61:53:b0:f1:33:a8:6c:eb:4d:77:ef:c0:ee:c7:13:10:72:e3: 5d:85:b8:fd:bf:ae:93:d5:b4:16:b1:f6:14:39:92:7b:7d:47: 53:1b:54:d5:69:06:99:bb:fd:85:e3:cf:cc:29:54:3b:dd:42: b0:3a:02:f8:88:c2:1b:1f:79:67:06:7e:2c:16:c1:fa:fc:21: c2:51:3d:93:32:88:a8:68:3f:c9:13:57:c6:6b:bf:83:0a:3b: c0:fb:f3:c8:fc:5b:1e:48:0d:56:79:aa:c7:4f:e1:86:46:69: 8f:4b:3d:d9:b5:ed:e8:63:64:ed:8d:eb:9b:81:c3:ef:a1:22: f8:93:01:c1:83:b8:6f:1f:b9:a6:04:96:f9:02:0e:23:e9:04: f9:d3:ce:1d:d0:52:eb:3b:e6:c0:4a:c4:2b:b9:5f:d1:83:eb: 15:4b:ec:c9 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAL0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx ODlCNDExMTAvBgNVBAUTKEE2RTlDQkE1MjlDMDVBOTYyNENBNjAzNTQ4QTNFMzE0 OTE3NThGMkIwHhcNMjUwODIzMDYwNjQ0WhcNMjUwODMwMDYwNjQ0WjAYMRYwFAYD VQQDEw02OGE5NWE3NS0yMTQyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuMDnmqY2jbQYX8Vv6lRph9C5f55w0ggRBl8gUcm8qseHXjynt5Fq55KsPfr4 uePnx34+VyQ0PV29rCjvJWW3789k6WwTBNnEumex2pgqAnasI+V+NFpN2o1AAVXH df65A807uJv+XNZULTiHeD3WBg/5aOxIRsevXCL8yXwmPFtrt2QfxCxQYqmZp8DZ H/R6DKJiAb4znf0V4hTy7ru24Dy9uOXdN2WX6AJDhh5fkfDK92HgnR+bmyGcA8sq EfBJbdkcZnfoYrAXZxW+AYZ1SwwFaVL5Cw6LHVRgzPAMaxiSXaV/EGGWEtm/N+gw i9t6b94hoBd3FSa+SqBzpicIbwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJu4VALU tvIpDAi2aKQlcIVxqlJ7MB8GA1UdIwQYMBaAFKbpy6UpwFqWJMpgNUij4xSRdY8r MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4OUI0MS82OUI3Njk4RTYw NTkxMUVGOUMyMjM3NjBDNEY5QUUwMi9wdW5McFNuQVdwWWt5bUExU0tQakZKRjFq eXMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL3B1bkxwU25BV3BZa3ltQTFTS1BqRkpGMWp5cy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 OUI0MS82OUI3Njk4RTYwNTkxMUVGOUMyMjM3NjBDNEY5QUUwMi9wdW5McFNuQVdw WWt5bUExU0tQakZKRjFqeXMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA8JY0WalNqZXnnDiONI2tXBVkDlNCrFA+CUT+nEu9WMCuE/gH0lD8H WSbjGdxyrzGMi1Ow83gTvBe6M17pYKBQ5h6dpm8VdGWfhIcudKKJ0yywqfqwCzcX HjBhU7DxM6hs601378DuxxMQcuNdhbj9v66T1bQWsfYUOZJ7fUdTG1TVaQaZu/2F 48/MKVQ73UKwOgL4iMIbH3lnBn4sFsH6/CHCUT2TMoioaD/JE1fGa7+DCjvA+/PI /FseSA1WearHT+GGRmmPSz3Zte3oY2TtjeubgcPvoSL4kwHBg7hvH7mmBJb5Ag4j 6QT5084d0FLrO+bASsQruV/Rg+sVS+zJ -----END CERTIFICATE-----Generated at Sat Aug 23 20:26:36 2025 by rpki-client