$ rpki-client -vvf rpki.apnic.net/member_repository/A91AA5C6/D55519B44C3411EEAEEDA22CC4F9AE02/PUfmaHu030DFGwOkVZwQyiL2dy8.mft File: PUfmaHu030DFGwOkVZwQyiL2dy8.mft (raw, json) Hash identifier: QPz6hsrl7YlTM09QipC74vH3GaFo2P0b206kd7nHPhE= Subject key identifier: C7:A7:B3:88:E5:BE:F4:47:91:AA:CA:9E:4B:42:BA:A7:3E:8E:5F:FF Authority key identifier: 3D:47:E6:68:7B:B4:DF:40:C5:1B:03:A4:55:9C:10:CA:22:F6:77:2F Certificate issuer: /CN=A91AA5C6/serialNumber=3D47E6687BB4DF40C51B03A4559C10CA22F6772F Certificate serial: 0181 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PUfmaHu030DFGwOkVZwQyiL2dy8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91AA5C6/D55519B44C3411EEAEEDA22CC4F9AE02/PUfmaHu030DFGwOkVZwQyiL2dy8.mft Manifest number: 0177 Signing time: Sat 23 Aug 2025 03:55:55 +0000 Manifest this update: Sat 23 Aug 2025 03:55:55 +0000 Manifest next update: Sat 30 Aug 2025 03:55:55 +0000 Files and hashes: 1: PUfmaHu030DFGwOkVZwQyiL2dy8.crl (hash: 5z1ByWIhjZNlUTKca1rotJJrXysVIKWZbIjTEPwQ6mg=) 2: EA1E8B8A51C711EE9A3CC954C4F9AE02.roa (hash: mRgAmQOm70v82zzEgYDnDn2brEuaNu5y2crpXyX3sdg=) 3: FAA2E3324C3811EEB7116433C4F9AE02.roa (hash: bbT6hxERjo8lnAEspIks/q29jjxdhXSux3U2mM5P3u0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91AA5C6/D55519B44C3411EEAEEDA22CC4F9AE02/PUfmaHu030DFGwOkVZwQyiL2dy8.crl rsync://rpki.apnic.net/member_repository/A91AA5C6/D55519B44C3411EEAEEDA22CC4F9AE02/PUfmaHu030DFGwOkVZwQyiL2dy8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PUfmaHu030DFGwOkVZwQyiL2dy8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Aug 2025 03:55:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 385 (0x181) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91AA5C6, serialNumber=3D47E6687BB4DF40C51B03A4559C10CA22F6772F Validity Not Before: Aug 23 03:55:55 2025 GMT Not After : Aug 30 03:55:55 2025 GMT Subject: CN=68a93bcb-111e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c5:43:95:67:6b:cd:d8:8b:3f:d6:9b:07:13:fa: 9e:77:b7:93:72:e7:94:7b:f4:f8:64:d4:c3:ab:03: c4:19:35:ee:aa:b7:3a:99:4b:34:54:50:c8:88:52: b3:e9:93:5e:47:c0:f5:35:e2:06:ff:46:c2:8d:83: c6:f7:67:61:27:29:06:99:e8:d9:2f:bd:57:33:96: 1b:fa:fd:e0:ca:4a:9a:1b:98:d5:fb:9d:1d:de:66: 63:e1:af:84:b0:c0:08:2b:6c:cf:06:66:3f:9c:73: 2e:40:c7:88:2c:21:42:0c:5d:bd:30:ce:7b:c8:fa: f5:c1:96:00:49:0e:a5:e9:d5:22:cb:71:7d:92:8a: 51:33:76:8c:84:98:b8:3a:52:4d:b2:b9:44:f3:88: 69:f9:ef:84:0c:00:df:00:7b:8e:88:52:5e:3c:3e: ed:cc:06:2c:13:c9:93:29:1c:e8:1d:23:17:4e:6c: 47:5d:a9:d4:01:68:a0:da:a2:b9:6f:a1:d9:6e:06: 15:eb:1b:1e:3e:7d:47:c6:f8:06:d9:1b:3d:66:32: c3:16:de:76:16:25:3d:df:4f:bb:2a:d2:28:3a:40: e1:3e:5e:6f:f7:d6:ff:ac:c8:d2:8b:2c:e7:a1:a5: 4d:b9:81:29:f8:ed:dc:0d:f0:5e:70:b5:96:6d:40: 72:45 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C7:A7:B3:88:E5:BE:F4:47:91:AA:CA:9E:4B:42:BA:A7:3E:8E:5F:FF X509v3 Authority Key Identifier: keyid:3D:47:E6:68:7B:B4:DF:40:C5:1B:03:A4:55:9C:10:CA:22:F6:77:2F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91AA5C6/D55519B44C3411EEAEEDA22CC4F9AE02/PUfmaHu030DFGwOkVZwQyiL2dy8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PUfmaHu030DFGwOkVZwQyiL2dy8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91AA5C6/D55519B44C3411EEAEEDA22CC4F9AE02/PUfmaHu030DFGwOkVZwQyiL2dy8.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 9d:80:d7:c6:48:fe:a7:8a:91:7f:c9:c4:a7:dd:4a:9a:2b:66: 45:54:4a:19:ad:6f:93:4d:04:bc:51:33:7b:2c:6f:e1:7c:74: f7:9a:77:f9:01:c3:a7:61:27:1c:c2:64:ed:ba:e5:13:b4:9c: 9c:54:35:65:e5:32:19:3c:98:d5:7b:46:65:3f:43:ca:da:be: d3:63:ba:1d:91:89:54:60:31:82:0c:9a:64:d7:bd:ff:f6:02: bd:42:2e:58:22:0a:3e:b4:ff:d1:57:ed:34:db:54:c3:9a:5d: ed:b5:31:b5:aa:31:00:60:b3:3c:3f:2e:97:17:5e:3a:b6:09: 1e:6f:8e:ad:41:93:a2:21:3a:46:36:a7:36:38:48:ad:e1:9c: 9d:1f:63:06:02:df:16:4c:e7:4f:4d:c2:ba:d6:58:76:9a:7b: bb:a3:cc:4f:61:28:5f:27:44:96:02:39:a3:5f:79:12:a3:49: 5e:bd:ee:2a:e9:e8:cb:38:2e:f2:43:35:13:33:c4:cf:8c:21: 43:eb:e7:c2:75:4a:55:3c:ff:61:99:25:f9:f4:22:7e:6b:de: 3c:57:7a:a0:3f:3e:65:67:e8:a9:a8:b8:dc:24:d1:ef:39:ba: 10:c8:d8:d8:a5:be:2d:42:42:84:2a:b7:e5:de:d1:b4:e5:e6: 42:88:b0:c9 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAYEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QUE1QzYxMTAvBgNVBAUTKDNENDdFNjY4N0JCNERGNDBDNTFCMDNBNDU1OUMxMENB MjJGNjc3MkYwHhcNMjUwODIzMDM1NTU1WhcNMjUwODMwMDM1NTU1WjAYMRYwFAYD VQQDEw02OGE5M2JjYi0xMTFlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxUOVZ2vN2Is/1psHE/qed7eTcueUe/T4ZNTDqwPEGTXuqrc6mUs0VFDIiFKz 6ZNeR8D1NeIG/0bCjYPG92dhJykGmejZL71XM5Yb+v3gykqaG5jV+50d3mZj4a+E sMAIK2zPBmY/nHMuQMeILCFCDF29MM57yPr1wZYASQ6l6dUiy3F9kopRM3aMhJi4 OlJNsrlE84hp+e+EDADfAHuOiFJePD7tzAYsE8mTKRzoHSMXTmxHXanUAWig2qK5 b6HZbgYV6xsePn1HxvgG2Rs9ZjLDFt52FiU930+7KtIoOkDhPl5v99b/rMjSiyzn oaVNuYEp+O3cDfBecLWWbUByRQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFMens4jl vvRHkarKnktCuqc+jl//MB8GA1UdIwQYMBaAFD1H5mh7tN9AxRsDpFWcEMoi9ncv MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBQTVDNi9ENTU1MTlCNDRD MzQxMUVFQUVFREEyMkNDNEY5QUUwMi9QVWZtYUh1MDMwREZHd09rVlp3UXlpTDJk eTguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1BVZm1hSHUwMzBERkd3T2tWWndReWlMMmR5OC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB QTVDNi9ENTU1MTlCNDRDMzQxMUVFQUVFREEyMkNDNEY5QUUwMi9QVWZtYUh1MDMw REZHd09rVlp3UXlpTDJkeTgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCdgNfGSP6nipF/ycSn3UqaK2ZFVEoZrW+TTQS8UTN7LG/hfHT3mnf5 AcOnYSccwmTtuuUTtJycVDVl5TIZPJjVe0ZlP0PK2r7TY7odkYlUYDGCDJpk173/ 9gK9Qi5YIgo+tP/RV+0021TDml3ttTG1qjEAYLM8Py6XF146tgkeb46tQZOiITpG Nqc2OEit4ZydH2MGAt8WTOdPTcK61lh2mnu7o8xPYShfJ0SWAjmjX3kSo0leve4q 6ejLOC7yQzUTM8TPjCFD6+fCdUpVPP9hmSX59CJ+a948V3qgPz5lZ+ipqLjcJNHv OboQyNjYpb4tQkKEKrfl3tG05eZCiLDJ -----END CERTIFICATE-----Generated at Sat Aug 23 17:23:41 2025 by rpki-client