$ rpki-client -vvf rpki.apnic.net/member_repository/A91C71A5/3BFA28340A8311ED8D6D832AC4F9AE02/PykJw_UywAsCV7klbHbroxTc0A8.mft File: PykJw_UywAsCV7klbHbroxTc0A8.mft (raw, json) Hash identifier: 93BU8IyNL9LN/VD297D4JkGg03QVQ5d206XhelK85bU= Subject key identifier: A1:48:C1:67:AF:ED:7F:1B:D7:6D:94:4A:C7:B8:4D:34:41:AE:68:6B Authority key identifier: 3F:29:09:C3:F5:32:C0:0B:02:57:B9:25:6C:76:EB:A3:14:DC:D0:0F Certificate issuer: /CN=A91C71A5/serialNumber=3F2909C3F532C00B0257B9256C76EBA314DCD00F Certificate serial: 029E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PykJw_UywAsCV7klbHbroxTc0A8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C71A5/3BFA28340A8311ED8D6D832AC4F9AE02/PykJw_UywAsCV7klbHbroxTc0A8.mft Manifest number: 0295 Signing time: Tue 01 Jul 2025 02:17:01 +0000 Manifest this update: Tue 01 Jul 2025 02:17:00 +0000 Manifest next update: Tue 08 Jul 2025 02:17:00 +0000 Files and hashes: 1: PykJw_UywAsCV7klbHbroxTc0A8.crl (hash: E/xVmFeU2tzmNbix0oC4ylcjThYkPzbcGvCI/qROt2g=) 2: 99A7637060B311EEBA329E54C4F9AE02.roa (hash: yZy+TqtowAyp3q8j4FvJTBd3TEpqHb7gUX+ZaoqGeKI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C71A5/3BFA28340A8311ED8D6D832AC4F9AE02/PykJw_UywAsCV7klbHbroxTc0A8.crl rsync://rpki.apnic.net/member_repository/A91C71A5/3BFA28340A8311ED8D6D832AC4F9AE02/PykJw_UywAsCV7klbHbroxTc0A8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PykJw_UywAsCV7klbHbroxTc0A8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 08 Jul 2025 02:17:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 670 (0x29e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C71A5, serialNumber=3F2909C3F532C00B0257B9256C76EBA314DCD00F Validity Not Before: Jul 1 02:17:00 2025 GMT Not After : Jul 8 02:17:00 2025 GMT Subject: CN=6863451c-8997 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d2:c4:9b:c4:24:dc:3f:c5:35:eb:32:52:6e:84: 79:e2:8a:02:a3:31:79:b2:c4:d7:f4:14:d2:6d:20: 1f:0c:7c:d9:c6:2b:b7:15:76:42:a9:6b:2f:5f:66: 6b:8e:81:98:4f:5c:8a:45:b5:3a:6d:e5:1f:57:74: 89:22:12:55:3d:e6:90:44:30:9c:14:80:da:68:b2: cd:8c:e6:d9:31:27:55:b1:a1:96:fa:ef:2b:99:12: c0:45:08:7c:7f:91:a9:6b:6a:14:48:e9:fc:a2:93: 90:be:d7:21:ff:d5:41:9d:1f:0a:5e:b3:9b:28:95: 8e:c2:92:cb:c1:f1:27:8c:32:f0:56:9f:c5:a8:b2: 44:29:2a:7f:92:7b:e1:7b:9c:03:8d:97:cd:bb:6a: 41:6c:a3:47:3e:99:06:7d:a8:d0:81:b9:67:40:63: f5:b5:d4:0d:72:fa:cd:b8:45:2c:4a:47:a2:2f:50: 83:5d:fd:72:88:80:17:98:8c:2b:9d:ad:15:f0:18: 1d:28:8f:89:ad:94:47:f4:89:fb:5b:60:01:28:0c: c9:75:60:b6:c4:b5:af:cf:f6:c4:fb:84:30:32:53: 55:82:e5:4a:68:87:09:02:50:03:9c:08:ea:2f:7e: f3:cc:f6:06:54:90:36:9d:3c:6a:f4:7f:da:19:1e: 65:2f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A1:48:C1:67:AF:ED:7F:1B:D7:6D:94:4A:C7:B8:4D:34:41:AE:68:6B X509v3 Authority Key Identifier: keyid:3F:29:09:C3:F5:32:C0:0B:02:57:B9:25:6C:76:EB:A3:14:DC:D0:0F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C71A5/3BFA28340A8311ED8D6D832AC4F9AE02/PykJw_UywAsCV7klbHbroxTc0A8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PykJw_UywAsCV7klbHbroxTc0A8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C71A5/3BFA28340A8311ED8D6D832AC4F9AE02/PykJw_UywAsCV7klbHbroxTc0A8.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 09:80:a9:bd:f5:e7:26:56:fe:c3:64:10:52:81:25:a7:17:e1: 0b:6c:f7:f2:83:78:63:3d:d1:e2:52:7d:2e:a1:29:9a:d7:45: 00:fe:01:fb:4a:93:2c:72:39:6d:e8:08:bc:d8:02:e1:55:d5: 59:b4:28:64:ce:be:03:6e:d7:bb:d9:80:74:aa:60:ca:3a:a7: 14:16:27:65:05:6d:f2:fd:a1:26:24:f8:26:e4:79:6d:f6:7a: 2f:9d:5c:26:7e:83:79:e8:0f:7e:7b:65:20:1d:db:0a:cd:cd: aa:f5:21:bf:3d:ed:f2:4b:50:da:a8:cb:bb:28:7d:c5:e0:f6: 7d:0f:86:49:f3:6f:67:3d:b0:23:3e:eb:76:97:d0:18:96:fd: 39:c6:bf:22:54:7b:9d:dd:51:a1:8c:7a:2c:2b:e0:93:d2:dc: 32:a8:ae:d8:f6:d6:1a:7a:85:f0:55:25:89:a2:0a:3f:63:37: 33:08:e1:d6:56:a0:3e:46:17:2e:79:b4:b2:52:7b:16:96:aa: f0:bb:c1:65:74:79:13:1a:df:25:4b:f9:03:4b:a0:51:2d:4c: fe:d3:50:1d:8b:39:ac:f3:13:d9:a7:31:e6:e4:82:36:e2:5d: 47:db:8c:7e:1b:29:c6:6b:64:3b:f6:19:0f:fb:9a:3d:f1:03: 85:8f:d0:61 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAp4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzcxQTUxMTAvBgNVBAUTKDNGMjkwOUMzRjUzMkMwMEIwMjU3QjkyNTZDNzZFQkEz MTREQ0QwMEYwHhcNMjUwNzAxMDIxNzAwWhcNMjUwNzA4MDIxNzAwWjAYMRYwFAYD VQQDEw02ODYzNDUxYy04OTk3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0sSbxCTcP8U16zJSboR54ooCozF5ssTX9BTSbSAfDHzZxiu3FXZCqWsvX2Zr joGYT1yKRbU6beUfV3SJIhJVPeaQRDCcFIDaaLLNjObZMSdVsaGW+u8rmRLARQh8 f5Gpa2oUSOn8opOQvtch/9VBnR8KXrObKJWOwpLLwfEnjDLwVp/FqLJEKSp/knvh e5wDjZfNu2pBbKNHPpkGfajQgblnQGP1tdQNcvrNuEUsSkeiL1CDXf1yiIAXmIwr na0V8BgdKI+JrZRH9In7W2ABKAzJdWC2xLWvz/bE+4QwMlNVguVKaIcJAlADnAjq L37zzPYGVJA2nTxq9H/aGR5lLwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFKFIwWev 7X8b122USse4TTRBrmhrMB8GA1UdIwQYMBaAFD8pCcP1MsALAle5JWx266MU3NAP MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDNzFBNS8zQkZBMjgzNDBB ODMxMUVEOEQ2RDgzMkFDNEY5QUUwMi9QeWtKd19VeXdBc0NWN2tsYkhicm94VGMw QTguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1B5a0p3X1V5d0FzQ1Y3a2xiSGJyb3hUYzBBOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD NzFBNS8zQkZBMjgzNDBBODMxMUVEOEQ2RDgzMkFDNEY5QUUwMi9QeWtKd19VeXdB c0NWN2tsYkhicm94VGMwQTgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAJgKm99ecmVv7DZBBSgSWnF+ELbPfyg3hjPdHiUn0uoSma10UA/gH7 SpMscjlt6Ai82ALhVdVZtChkzr4Dbte72YB0qmDKOqcUFidlBW3y/aEmJPgm5Hlt 9novnVwmfoN56A9+e2UgHdsKzc2q9SG/Pe3yS1DaqMu7KH3F4PZ9D4ZJ829nPbAj Put2l9AYlv05xr8iVHud3VGhjHosK+CT0twyqK7Y9tYaeoXwVSWJogo/YzczCOHW VqA+RhcuebSyUnsWlqrwu8FldHkTGt8lS/kDS6BRLUz+01Adizms8xPZpzHm5II2 4l1H24x+GynGa2Q79hkP+5o98QOFj9Bh -----END CERTIFICATE-----Generated at Wed Jul 2 19:30:37 2025 by rpki-client