$ rpki-client -vvf rpki.apnic.net/member_repository/A91AA5C6/D55519B44C3411EEAEEDA22CC4F9AE02/PUfmaHu030DFGwOkVZwQyiL2dy8.mft File: PUfmaHu030DFGwOkVZwQyiL2dy8.mft (raw, json) Hash identifier: 2jF1Mu4le4ymB7KymVhOjF8c7Nejm2EYJWoNdaqIa1M= Subject key identifier: C7:C9:07:14:C8:9C:0B:63:05:F6:D5:A4:61:5A:5D:F0:F5:19:EB:BF Authority key identifier: 3D:47:E6:68:7B:B4:DF:40:C5:1B:03:A4:55:9C:10:CA:22:F6:77:2F Certificate issuer: /CN=A91AA5C6/serialNumber=3D47E6687BB4DF40C51B03A4559C10CA22F6772F Certificate serial: 0166 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PUfmaHu030DFGwOkVZwQyiL2dy8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91AA5C6/D55519B44C3411EEAEEDA22CC4F9AE02/PUfmaHu030DFGwOkVZwQyiL2dy8.mft Manifest number: 015C Signing time: Tue 01 Jul 2025 04:34:20 +0000 Manifest this update: Tue 01 Jul 2025 04:34:19 +0000 Manifest next update: Tue 08 Jul 2025 04:34:19 +0000 Files and hashes: 1: PUfmaHu030DFGwOkVZwQyiL2dy8.crl (hash: NbYkhx+IuQrZhKr166wTClfzpIJclI62qYoevMDkJA4=) 2: EA1E8B8A51C711EE9A3CC954C4F9AE02.roa (hash: mRgAmQOm70v82zzEgYDnDn2brEuaNu5y2crpXyX3sdg=) 3: FAA2E3324C3811EEB7116433C4F9AE02.roa (hash: bbT6hxERjo8lnAEspIks/q29jjxdhXSux3U2mM5P3u0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91AA5C6/D55519B44C3411EEAEEDA22CC4F9AE02/PUfmaHu030DFGwOkVZwQyiL2dy8.crl rsync://rpki.apnic.net/member_repository/A91AA5C6/D55519B44C3411EEAEEDA22CC4F9AE02/PUfmaHu030DFGwOkVZwQyiL2dy8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PUfmaHu030DFGwOkVZwQyiL2dy8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 08 Jul 2025 04:34:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 358 (0x166) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91AA5C6, serialNumber=3D47E6687BB4DF40C51B03A4559C10CA22F6772F Validity Not Before: Jul 1 04:34:19 2025 GMT Not After : Jul 8 04:34:19 2025 GMT Subject: CN=6863654c-74a8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ec:c3:f3:91:80:50:26:11:82:63:54:d2:9d:a9: 53:3c:9b:af:8a:41:31:4f:c5:79:5d:f2:72:31:ca: 85:ce:89:98:7c:3d:ff:6e:11:1c:59:f6:64:37:31: e7:ce:e6:7a:67:b0:49:b9:e2:c8:ac:0f:03:ec:91: 48:3a:e6:19:a9:8b:20:e6:06:2b:40:ca:a2:e0:4e: d8:76:e8:91:c5:59:1a:f9:38:e0:7c:f6:0c:46:e8: fd:04:f8:24:f2:74:d7:22:37:4c:a0:43:1c:fb:3a: db:52:d0:71:de:84:bd:5b:02:9e:6c:1b:88:90:ca: 67:a9:fb:09:33:56:5d:40:b8:6b:bb:d0:9d:6c:6f: c5:8f:e0:d2:95:6b:03:f3:7e:86:45:89:69:1a:83: e0:17:1e:8c:20:2b:82:01:f7:e7:87:85:93:7c:25: 61:56:a8:61:59:17:7d:b2:72:b2:e3:d8:e6:76:57: 72:13:93:3a:13:d2:4f:e3:6f:0c:b3:dd:f9:4b:7c: 89:1b:0f:e4:90:13:56:f7:d9:a0:1c:3f:1d:13:99: e7:57:f4:81:59:2a:83:cd:d3:f0:af:1d:69:a2:f8: 41:d9:84:03:00:e7:ae:ea:72:84:bf:25:c0:2d:57: 58:e5:54:e0:6c:5a:bd:41:bd:ac:45:67:43:46:6c: 45:49 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C7:C9:07:14:C8:9C:0B:63:05:F6:D5:A4:61:5A:5D:F0:F5:19:EB:BF X509v3 Authority Key Identifier: keyid:3D:47:E6:68:7B:B4:DF:40:C5:1B:03:A4:55:9C:10:CA:22:F6:77:2F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91AA5C6/D55519B44C3411EEAEEDA22CC4F9AE02/PUfmaHu030DFGwOkVZwQyiL2dy8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PUfmaHu030DFGwOkVZwQyiL2dy8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91AA5C6/D55519B44C3411EEAEEDA22CC4F9AE02/PUfmaHu030DFGwOkVZwQyiL2dy8.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 2f:5e:29:38:85:d6:e6:a6:36:ed:a9:87:42:5e:67:5a:d6:8e: 6e:2e:0e:e4:f6:b1:41:7c:12:2a:12:ef:9a:b7:4b:3d:d0:db: 6a:17:b8:00:8d:26:f9:c5:0a:ec:09:b2:17:5f:44:d8:79:24: 93:8e:e9:67:c1:b9:8d:8d:a6:ea:ff:d4:1b:d6:a1:98:a3:3d: 7f:f1:42:4f:92:03:e8:e1:eb:8c:6e:c4:20:55:e2:f3:20:62: 93:f9:a4:e8:ec:26:5e:02:d2:26:b4:79:6c:47:41:c4:04:11: 00:c1:d4:50:29:2f:dc:85:06:ba:fd:9c:14:c3:72:0a:2d:0b: 68:e7:05:a4:63:96:64:e1:68:0a:ec:40:53:43:75:46:ac:ff: 49:49:7e:1b:da:a7:02:5f:fa:9f:b2:dd:f7:90:22:ed:0a:40: fd:9b:2f:68:6c:f9:4a:c3:50:e9:c6:65:da:47:15:c6:2e:cb: 25:48:f0:bc:0c:1c:c4:0a:97:d3:57:83:88:51:71:19:83:3a: 1f:05:34:d9:9d:82:ef:36:31:92:c7:0f:90:1f:ac:54:45:cd: 44:15:92:c0:a7:25:29:78:d5:a9:34:dd:98:f7:c7:11:b6:15: 46:b4:59:80:46:82:39:3d:eb:03:5b:fe:7a:76:5d:56:bb:bf: 23:c3:e5:b6 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAWYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QUE1QzYxMTAvBgNVBAUTKDNENDdFNjY4N0JCNERGNDBDNTFCMDNBNDU1OUMxMENB MjJGNjc3MkYwHhcNMjUwNzAxMDQzNDE5WhcNMjUwNzA4MDQzNDE5WjAYMRYwFAYD VQQDEw02ODYzNjU0Yy03NGE4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA7MPzkYBQJhGCY1TSnalTPJuvikExT8V5XfJyMcqFzomYfD3/bhEcWfZkNzHn zuZ6Z7BJueLIrA8D7JFIOuYZqYsg5gYrQMqi4E7YduiRxVka+TjgfPYMRuj9BPgk 8nTXIjdMoEMc+zrbUtBx3oS9WwKebBuIkMpnqfsJM1ZdQLhru9CdbG/Fj+DSlWsD 836GRYlpGoPgFx6MICuCAffnh4WTfCVhVqhhWRd9snKy49jmdldyE5M6E9JP428M s935S3yJGw/kkBNW99mgHD8dE5nnV/SBWSqDzdPwrx1povhB2YQDAOeu6nKEvyXA LVdY5VTgbFq9Qb2sRWdDRmxFSQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFMfJBxTI nAtjBfbVpGFaXfD1Geu/MB8GA1UdIwQYMBaAFD1H5mh7tN9AxRsDpFWcEMoi9ncv MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBQTVDNi9ENTU1MTlCNDRD MzQxMUVFQUVFREEyMkNDNEY5QUUwMi9QVWZtYUh1MDMwREZHd09rVlp3UXlpTDJk eTguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1BVZm1hSHUwMzBERkd3T2tWWndReWlMMmR5OC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB QTVDNi9ENTU1MTlCNDRDMzQxMUVFQUVFREEyMkNDNEY5QUUwMi9QVWZtYUh1MDMw REZHd09rVlp3UXlpTDJkeTgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAvXik4hdbmpjbtqYdCXmda1o5uLg7k9rFBfBIqEu+at0s90NtqF7gA jSb5xQrsCbIXX0TYeSSTjulnwbmNjabq/9Qb1qGYoz1/8UJPkgPo4euMbsQgVeLz IGKT+aTo7CZeAtImtHlsR0HEBBEAwdRQKS/chQa6/ZwUw3IKLQto5wWkY5Zk4WgK 7EBTQ3VGrP9JSX4b2qcCX/qfst33kCLtCkD9my9obPlKw1DpxmXaRxXGLsslSPC8 DBzECpfTV4OIUXEZgzofBTTZnYLvNjGSxw+QH6xURc1EFZLApyUpeNWpNN2Y98cR thVGtFmARoI5PesDW/56dl1Wu78jw+W2 -----END CERTIFICATE-----Generated at Thu Jul 3 01:04:23 2025 by rpki-client