$ rpki-client -vvf rpki.apnic.net/member_repository/A9196D9E/77BB984C7D6111EEB463C85AC4F9AE02/PS2TrIsQhlgX2adMyBoDDX010HQ.mft File: PS2TrIsQhlgX2adMyBoDDX010HQ.mft (raw, json) Hash identifier: vmS83tJ21BELDW+Gqz5qRC/Hz2rBq3FvyhbSEJSbzOk= Subject key identifier: 07:14:64:A7:83:E4:C9:95:54:3F:17:D9:62:C7:85:74:64:7D:24:A3 Authority key identifier: 3D:2D:93:AC:8B:10:86:58:17:D9:A7:4C:C8:1A:03:0D:7D:35:D0:74 Certificate issuer: /CN=A9196D9E/serialNumber=3D2D93AC8B10865817D9A74CC81A030D7D35D074 Certificate serial: 0135 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PS2TrIsQhlgX2adMyBoDDX010HQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9196D9E/77BB984C7D6111EEB463C85AC4F9AE02/PS2TrIsQhlgX2adMyBoDDX010HQ.mft Manifest number: 0134 Signing time: Thu 03 Jul 2025 04:35:06 +0000 Manifest this update: Thu 03 Jul 2025 04:35:05 +0000 Manifest next update: Thu 10 Jul 2025 04:35:05 +0000 Files and hashes: 1: PS2TrIsQhlgX2adMyBoDDX010HQ.crl (hash: j6YLwzFBi3tNmz6+p7SFFwPyZWMHd+wruNQZd2dqcdI=) 2: C8BDA37CF68A11EFB7F91E24C4F9AE02.roa (hash: aRDWwCB81f6X4Sbu5aqqdwftigSG3lRUiRjjd/98tJw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9196D9E/77BB984C7D6111EEB463C85AC4F9AE02/PS2TrIsQhlgX2adMyBoDDX010HQ.crl rsync://rpki.apnic.net/member_repository/A9196D9E/77BB984C7D6111EEB463C85AC4F9AE02/PS2TrIsQhlgX2adMyBoDDX010HQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PS2TrIsQhlgX2adMyBoDDX010HQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 10 Jul 2025 03:15:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 309 (0x135) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9196D9E, serialNumber=3D2D93AC8B10865817D9A74CC81A030D7D35D074 Validity Not Before: Jul 3 04:35:05 2025 GMT Not After : Jul 10 04:35:05 2025 GMT Subject: CN=6866087a-5010 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ac:1e:9b:24:b2:c8:d6:54:dc:13:d4:82:53:2e: c1:0f:99:19:04:ed:d2:a9:e8:c1:71:bf:90:25:56: f9:1e:29:f3:2d:bc:5e:65:df:f1:f0:be:a1:2b:37: 78:49:e2:9d:5e:7e:9c:c1:2a:90:4e:eb:25:42:33: bc:be:18:7e:88:ec:0e:8f:7a:7e:93:df:de:dd:d6: ed:85:24:0f:68:a0:8b:9e:53:f7:17:0b:b2:bc:08: b5:f0:57:1e:06:f3:f6:c0:ca:f0:33:b6:1f:7a:1b: 55:97:f7:fa:0c:19:0b:5c:7a:9e:18:34:3c:7f:05: 9c:77:91:6f:5e:99:f9:74:63:6f:de:be:8c:d4:87: 81:2f:cd:15:7d:fa:66:7c:47:f5:e0:ea:19:83:65: df:51:a1:11:2d:9b:ab:8d:cb:b1:e0:08:37:ba:2a: 45:cb:79:c8:0d:d9:f9:86:bf:59:e5:54:c4:ce:23: 11:c7:ff:d0:0a:77:64:3a:dc:9a:7f:e6:e2:4b:b3: 7c:78:ce:13:4c:88:b2:4f:01:40:62:01:cf:18:62: 3b:eb:85:06:ef:6c:c9:30:f9:c7:bd:bc:5e:a2:41: b6:5a:ec:34:ed:08:60:60:7c:7b:1b:e8:d3:d0:97: aa:fe:7f:10:26:88:6e:e0:ea:d5:3e:8a:1d:34:07: ba:53 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 07:14:64:A7:83:E4:C9:95:54:3F:17:D9:62:C7:85:74:64:7D:24:A3 X509v3 Authority Key Identifier: keyid:3D:2D:93:AC:8B:10:86:58:17:D9:A7:4C:C8:1A:03:0D:7D:35:D0:74 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9196D9E/77BB984C7D6111EEB463C85AC4F9AE02/PS2TrIsQhlgX2adMyBoDDX010HQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PS2TrIsQhlgX2adMyBoDDX010HQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9196D9E/77BB984C7D6111EEB463C85AC4F9AE02/PS2TrIsQhlgX2adMyBoDDX010HQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 31:3f:e7:12:25:dd:83:24:2c:6b:7b:4f:1a:5d:a5:f2:39:f2: d4:ab:ee:f8:5e:8f:b4:c1:99:97:ef:b3:f4:2d:bf:bf:fa:1d: ee:41:c2:fe:aa:8d:00:a1:ac:16:bf:bf:0c:2c:43:10:97:6b: fe:40:01:ca:32:27:3c:6b:56:6d:de:e0:e0:d8:76:6f:88:88: 8f:9e:16:b7:f0:ae:2c:b7:eb:49:37:77:70:4e:a3:90:37:41: 8c:60:65:ad:a8:82:03:b7:da:b6:f2:65:6e:45:ed:cc:eb:2a: f1:66:72:0c:b0:45:dd:5d:02:7d:c7:59:4b:35:cb:96:80:6f: b7:49:e0:0d:d8:62:56:5c:e9:86:aa:48:42:81:b7:80:34:b3: 79:a1:a9:e1:2b:13:08:bf:da:8d:b7:d0:f0:de:b6:3c:b3:c7: 40:99:0a:80:bd:20:ff:00:ec:dd:24:49:39:bc:61:ed:73:42: 58:08:c1:30:2e:eb:bc:51:a8:cf:f1:7b:5d:c1:03:d8:a7:82: 07:b9:07:4e:ea:cc:57:06:1d:81:5d:76:30:4b:0e:c5:82:6c: da:f2:01:fc:41:f9:ed:57:54:26:44:e2:3a:67:4c:0b:df:cd: 2c:a7:db:c2:ba:5d:96:65:bd:8e:15:64:15:4b:cb:ac:e6:56: fc:6c:54:26 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICATUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTZEOUUxMTAvBgNVBAUTKDNEMkQ5M0FDOEIxMDg2NTgxN0Q5QTc0Q0M4MUEwMzBE N0QzNUQwNzQwHhcNMjUwNzAzMDQzNTA1WhcNMjUwNzEwMDQzNTA1WjAYMRYwFAYD VQQDEw02ODY2MDg3YS01MDEwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArB6bJLLI1lTcE9SCUy7BD5kZBO3SqejBcb+QJVb5HinzLbxeZd/x8L6hKzd4 SeKdXn6cwSqQTuslQjO8vhh+iOwOj3p+k9/e3dbthSQPaKCLnlP3FwuyvAi18Fce BvP2wMrwM7YfehtVl/f6DBkLXHqeGDQ8fwWcd5FvXpn5dGNv3r6M1IeBL80Vffpm fEf14OoZg2XfUaERLZurjcux4Ag3uipFy3nIDdn5hr9Z5VTEziMRx//QCndkOtya f+biS7N8eM4TTIiyTwFAYgHPGGI764UG72zJMPnHvbxeokG2Wuw07QhgYHx7G+jT 0Jeq/n8QJohu4OrVPoodNAe6UwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFAcUZKeD 5MmVVD8X2WLHhXRkfSSjMB8GA1UdIwQYMBaAFD0tk6yLEIZYF9mnTMgaAw19NdB0 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5NkQ5RS83N0JCOTg0QzdE NjExMUVFQjQ2M0M4NUFDNEY5QUUwMi9QUzJUcklzUWhsZ1gyYWRNeUJvRERYMDEw SFEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1BTMlRySXNRaGxnWDJhZE15Qm9ERFgwMTBIUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 NkQ5RS83N0JCOTg0QzdENjExMUVFQjQ2M0M4NUFDNEY5QUUwMi9QUzJUcklzUWhs Z1gyYWRNeUJvRERYMDEwSFEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAxP+cSJd2DJCxre08aXaXyOfLUq+74Xo+0wZmX77P0Lb+/+h3uQcL+ qo0AoawWv78MLEMQl2v+QAHKMic8a1Zt3uDg2HZviIiPnha38K4st+tJN3dwTqOQ N0GMYGWtqIIDt9q28mVuRe3M6yrxZnIMsEXdXQJ9x1lLNcuWgG+3SeAN2GJWXOmG qkhCgbeANLN5oanhKxMIv9qNt9Dw3rY8s8dAmQqAvSD/AOzdJEk5vGHtc0JYCMEw Luu8UajP8XtdwQPYp4IHuQdO6sxXBh2BXXYwSw7Fgmza8gH8QfntV1QmROI6Z0wL 380sp9vCul2WZb2OFWQVS8us5lb8bFQm -----END CERTIFICATE-----Generated at Fri Jul 4 02:18:59 2025 by rpki-client