$ rpki-client -vvf rpki.apnic.net/member_repository/A91E5D0C/891B4ECA323611EC89838756C4F9AE02/PnOyvhMDe-dEOR06iZzdICuC920.mft File: PnOyvhMDe-dEOR06iZzdICuC920.mft (raw, json) Hash identifier: lXJsfHu0Ld7zts4wFhSJm+wlPFm9XsDzVUCLHjmnPE4= Subject key identifier: 26:59:0A:01:08:FE:5B:B5:38:A1:26:BC:2B:9B:83:3B:56:6D:07:89 Authority key identifier: 3E:73:B2:BE:13:03:7B:E7:44:39:1D:3A:89:9C:DD:20:2B:82:F7:6D Certificate issuer: /CN=A91E5D0C/serialNumber=3E73B2BE13037BE744391D3A899CDD202B82F76D Certificate serial: 04F6 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PnOyvhMDe-dEOR06iZzdICuC920.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E5D0C/891B4ECA323611EC89838756C4F9AE02/PnOyvhMDe-dEOR06iZzdICuC920.mft Manifest number: 04E1 Signing time: Sat 23 Aug 2025 00:02:00 +0000 Manifest this update: Sat 23 Aug 2025 00:02:00 +0000 Manifest next update: Sat 30 Aug 2025 00:02:00 +0000 Files and hashes: 1: PnOyvhMDe-dEOR06iZzdICuC920.crl (hash: /pgH1qH5sgaAKcJLSYUyC2BkI5EbqlyyiDvf349jB9M=) 2: EFFA034837D111EC9337B812C4F9AE02.roa (hash: GRUpCE+gVb2TzuJuLp6/bFNygGmQWG7Yo+BJcqN3ABA=) 3: 9C581C28B07511EF9D153813C4F9AE02.roa (hash: 2ILq0YdLX+uDk2zpnZWvB9sk0e06nVHIZcSy04DKJII=) 4: FE76F7D8EC4A11EFA7845862C4F9AE02.roa (hash: JmLkpvQJH0Uq9XtysKaBXjhAS8plkz/VizJFG4sBHBE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E5D0C/891B4ECA323611EC89838756C4F9AE02/PnOyvhMDe-dEOR06iZzdICuC920.crl rsync://rpki.apnic.net/member_repository/A91E5D0C/891B4ECA323611EC89838756C4F9AE02/PnOyvhMDe-dEOR06iZzdICuC920.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PnOyvhMDe-dEOR06iZzdICuC920.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Aug 2025 00:01:59 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1270 (0x4f6) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E5D0C, serialNumber=3E73B2BE13037BE744391D3A899CDD202B82F76D Validity Not Before: Aug 23 00:02:00 2025 GMT Not After : Aug 30 00:02:00 2025 GMT Subject: CN=68a904f8-53c6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a2:d3:cd:91:88:70:75:37:1c:33:8a:7c:75:e3: 5c:eb:26:ba:92:ce:fd:8c:25:9e:d6:d5:3f:bc:6d: 90:7b:ec:60:23:83:69:0e:85:5d:72:05:16:20:08: fb:cb:1d:29:7b:36:5e:06:1c:8e:9f:d2:ca:4a:6e: ba:a3:b0:88:38:7c:56:bf:36:cd:ad:07:e7:61:82: d8:d0:d4:8c:c7:14:6f:54:02:47:d2:fc:32:42:5a: ff:f0:04:33:df:7c:20:6d:09:93:7e:e0:d7:dd:69: 0b:7d:91:a8:75:0c:34:a8:07:23:d2:1b:34:cf:7d: 22:a7:06:2e:4b:b1:2b:de:be:3c:4d:d8:7c:1b:75: f1:f0:15:57:20:f1:33:fa:0d:d7:71:ef:07:96:e0: 1e:d8:0f:9f:18:be:57:ca:24:56:b9:a4:38:e4:e0: 20:df:42:75:bd:b0:2e:05:96:32:36:a1:41:c6:5d: 5b:6d:88:64:6b:d7:eb:29:b7:45:1f:19:8a:8f:b2: 14:f5:28:b0:9d:c9:0e:3f:e8:83:6a:cb:8d:df:ca: 94:57:5b:a8:8c:b1:35:bd:60:02:e5:de:a9:78:f1: 6d:b2:14:0f:71:98:01:4f:df:87:77:24:88:99:0a: c7:94:91:dc:6d:a8:81:4b:b8:66:ba:65:ad:94:82: bb:bf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 26:59:0A:01:08:FE:5B:B5:38:A1:26:BC:2B:9B:83:3B:56:6D:07:89 X509v3 Authority Key Identifier: keyid:3E:73:B2:BE:13:03:7B:E7:44:39:1D:3A:89:9C:DD:20:2B:82:F7:6D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E5D0C/891B4ECA323611EC89838756C4F9AE02/PnOyvhMDe-dEOR06iZzdICuC920.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PnOyvhMDe-dEOR06iZzdICuC920.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E5D0C/891B4ECA323611EC89838756C4F9AE02/PnOyvhMDe-dEOR06iZzdICuC920.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 82:c3:81:a9:e0:99:3c:2b:be:05:37:a6:cf:f4:3f:3b:e4:ec: 1b:07:e2:1a:9f:31:18:d4:79:80:fc:c5:2d:af:df:f4:5e:c2: d6:b9:9e:5c:2c:e6:3e:55:64:bc:b7:8c:97:cb:7e:b2:ce:c4: 43:43:63:89:4d:17:c2:07:46:cd:29:0a:82:6b:2c:88:9e:c8: cf:fc:77:d5:8d:5f:76:2f:9b:fa:c3:74:2a:a2:9d:e9:d6:08: d7:39:dd:de:ac:93:97:66:31:0e:70:bf:8f:39:0f:53:e4:c5: 0e:fc:b0:72:af:dd:0a:c1:50:d2:b1:93:84:54:ea:82:10:ee: 5b:24:5a:de:d1:93:b4:4a:f5:12:c5:f6:08:fd:64:04:37:75: ea:c5:13:a4:9e:ff:13:d8:fb:1e:69:75:c5:41:fa:c7:91:ab: d2:96:0e:ac:8b:6b:d0:3f:1a:65:f4:94:a7:ff:04:78:97:87: 28:31:89:cd:bc:60:76:dd:60:d7:16:93:9f:b3:45:9c:1a:b8: af:05:04:5a:b8:14:ea:56:f9:a0:fc:c1:e8:0a:a6:aa:82:3c: 41:cf:35:99:01:3c:66:06:0a:97:f6:65:bf:95:44:f0:6c:41: 10:44:56:1e:26:99:52:3b:52:b5:d6:21:61:9a:62:eb:cd:ca: 89:ca:24:0d -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBPYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTVEMEMxMTAvBgNVBAUTKDNFNzNCMkJFMTMwMzdCRTc0NDM5MUQzQTg5OUNERDIw MkI4MkY3NkQwHhcNMjUwODIzMDAwMjAwWhcNMjUwODMwMDAwMjAwWjAYMRYwFAYD VQQDEw02OGE5MDRmOC01M2M2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAotPNkYhwdTccM4p8deNc6ya6ks79jCWe1tU/vG2Qe+xgI4NpDoVdcgUWIAj7 yx0pezZeBhyOn9LKSm66o7CIOHxWvzbNrQfnYYLY0NSMxxRvVAJH0vwyQlr/8AQz 33wgbQmTfuDX3WkLfZGodQw0qAcj0hs0z30ipwYuS7Er3r48Tdh8G3Xx8BVXIPEz +g3Xce8HluAe2A+fGL5XyiRWuaQ45OAg30J1vbAuBZYyNqFBxl1bbYhka9frKbdF HxmKj7IU9SiwnckOP+iDasuN38qUV1uojLE1vWAC5d6pePFtshQPcZgBT9+HdySI mQrHlJHcbaiBS7hmumWtlIK7vwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFCZZCgEI /lu1OKEmvCubgztWbQeJMB8GA1UdIwQYMBaAFD5zsr4TA3vnRDkdOomc3SArgvdt MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFNUQwQy84OTFCNEVDQTMy MzYxMUVDODk4Mzg3NTZDNEY5QUUwMi9Qbk95dmhNRGUtZEVPUjA2aVp6ZElDdUM5 MjAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1BuT3l2aE1EZS1kRU9SMDZpWnpkSUN1QzkyMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF NUQwQy84OTFCNEVDQTMyMzYxMUVDODk4Mzg3NTZDNEY5QUUwMi9Qbk95dmhNRGUt ZEVPUjA2aVp6ZElDdUM5MjAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCCw4Gp4Jk8K74FN6bP9D875OwbB+IanzEY1HmA/MUtr9/0XsLWuZ5c LOY+VWS8t4yXy36yzsRDQ2OJTRfCB0bNKQqCayyInsjP/HfVjV92L5v6w3Qqop3p 1gjXOd3erJOXZjEOcL+POQ9T5MUO/LByr90KwVDSsZOEVOqCEO5bJFre0ZO0SvUS xfYI/WQEN3XqxROknv8T2PseaXXFQfrHkavSlg6si2vQPxpl9JSn/wR4l4coMYnN vGB23WDXFpOfs0WcGrivBQRauBTqVvmg/MHoCqaqgjxBzzWZATxmBgqX9mW/lUTw bEEQRFYeJplSO1K11iFhmmLrzcqJyiQN -----END CERTIFICATE-----Generated at Sun Aug 24 06:35:56 2025 by rpki-client