$ rpki-client -vvf rpki.apnic.net/member_repository/A91E5D0C/891B4ECA323611EC89838756C4F9AE02/PnOyvhMDe-dEOR06iZzdICuC920.mft File: PnOyvhMDe-dEOR06iZzdICuC920.mft (raw, json) Hash identifier: HQVXFcym8IxF7CACFf45MQrj4g+58nJ4GHzL9HjY6vY= Subject key identifier: FC:69:C5:47:6D:64:BD:D4:B5:44:A5:40:D7:0A:DA:60:D3:DC:B9:73 Authority key identifier: 3E:73:B2:BE:13:03:7B:E7:44:39:1D:3A:89:9C:DD:20:2B:82:F7:6D Certificate issuer: /CN=A91E5D0C/serialNumber=3E73B2BE13037BE744391D3A899CDD202B82F76D Certificate serial: 04DC Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PnOyvhMDe-dEOR06iZzdICuC920.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E5D0C/891B4ECA323611EC89838756C4F9AE02/PnOyvhMDe-dEOR06iZzdICuC920.mft Manifest number: 04C7 Signing time: Thu 03 Jul 2025 00:14:32 +0000 Manifest this update: Thu 03 Jul 2025 00:14:31 +0000 Manifest next update: Thu 10 Jul 2025 00:14:31 +0000 Files and hashes: 1: PnOyvhMDe-dEOR06iZzdICuC920.crl (hash: n6vowgvOsERX15L4nXl0NkmfQ2nxh/hQnura8cgSOTs=) 2: EFFA034837D111EC9337B812C4F9AE02.roa (hash: GRUpCE+gVb2TzuJuLp6/bFNygGmQWG7Yo+BJcqN3ABA=) 3: 9C581C28B07511EF9D153813C4F9AE02.roa (hash: 2ILq0YdLX+uDk2zpnZWvB9sk0e06nVHIZcSy04DKJII=) 4: FE76F7D8EC4A11EFA7845862C4F9AE02.roa (hash: JmLkpvQJH0Uq9XtysKaBXjhAS8plkz/VizJFG4sBHBE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E5D0C/891B4ECA323611EC89838756C4F9AE02/PnOyvhMDe-dEOR06iZzdICuC920.crl rsync://rpki.apnic.net/member_repository/A91E5D0C/891B4ECA323611EC89838756C4F9AE02/PnOyvhMDe-dEOR06iZzdICuC920.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PnOyvhMDe-dEOR06iZzdICuC920.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 10 Jul 2025 00:14:31 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1244 (0x4dc) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E5D0C, serialNumber=3E73B2BE13037BE744391D3A899CDD202B82F76D Validity Not Before: Jul 3 00:14:31 2025 GMT Not After : Jul 10 00:14:31 2025 GMT Subject: CN=6865cb68-8f73 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:6e:ba:c8:d1:e3:1a:31:0c:96:9f:eb:cd:52: c7:3b:9f:e7:2f:90:a9:18:ef:c4:33:71:aa:65:34: 50:38:70:04:2c:b9:4b:bc:5e:62:25:32:f3:15:09: ed:e2:03:47:c3:21:ab:7a:02:f5:ee:5b:b9:16:cd: 0b:a7:26:de:dd:91:f7:f9:f7:f5:d8:ac:60:9b:c3: 05:65:0b:9d:49:14:07:7e:ab:c0:54:53:99:da:87: 8a:73:87:a3:ea:df:ed:72:43:2b:d2:59:c5:fd:ce: 60:e1:43:3e:39:91:c9:b3:ac:fd:59:84:cb:73:8a: 60:3f:64:95:45:41:bf:a9:6d:9e:7f:71:5f:f5:df: 39:3b:16:23:03:d3:ea:d6:7d:a1:42:2b:07:4b:43: e9:e4:71:8a:2e:5e:e3:bf:fb:0c:9e:ee:da:e0:39: 90:cc:0a:0f:05:89:ef:8e:7e:be:06:79:62:f9:34: 8c:32:d1:41:27:f9:60:3a:cc:da:1f:5c:da:cb:32: e3:5b:a6:05:5c:66:0a:bb:bf:40:80:12:b0:d9:c5: 19:95:e1:d1:f4:d8:1a:34:0e:c9:3d:f1:ae:3a:fb: fb:80:b5:b6:f5:5b:fc:c9:73:e3:32:3c:97:fd:00: 4b:c6:93:4c:11:15:5c:02:5e:93:32:b9:5b:78:98: a7:99 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FC:69:C5:47:6D:64:BD:D4:B5:44:A5:40:D7:0A:DA:60:D3:DC:B9:73 X509v3 Authority Key Identifier: keyid:3E:73:B2:BE:13:03:7B:E7:44:39:1D:3A:89:9C:DD:20:2B:82:F7:6D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E5D0C/891B4ECA323611EC89838756C4F9AE02/PnOyvhMDe-dEOR06iZzdICuC920.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PnOyvhMDe-dEOR06iZzdICuC920.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E5D0C/891B4ECA323611EC89838756C4F9AE02/PnOyvhMDe-dEOR06iZzdICuC920.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 3d:f4:f0:75:b1:5f:7f:05:75:09:30:40:dd:2a:87:71:13:00: fd:d4:5a:e3:20:ff:71:ef:69:0f:59:b2:37:50:9e:15:9c:b1: f2:8c:f5:59:b0:9d:58:05:23:ee:90:fd:74:fe:d7:68:e1:ad: 98:94:96:bd:7e:df:34:42:8c:53:ff:a1:3c:1c:df:ab:4e:1d: d8:6e:c0:75:1b:27:e6:9f:79:15:71:e9:c5:fb:7c:68:fa:f2: 51:ea:fb:40:f9:cc:9f:ad:09:b8:32:91:01:62:e4:1c:41:59: eb:e8:6e:cd:97:79:54:4d:d2:58:1d:33:51:e5:8c:ea:44:db: 07:79:b8:02:6d:5b:3b:26:67:16:e4:2e:04:66:df:ee:a6:c4: 41:e3:59:4f:86:50:01:24:b2:5b:f4:12:32:43:9f:f7:93:77: 88:79:11:a7:6e:0c:83:86:33:d6:03:46:b4:de:e4:12:8c:61: 88:56:b3:d2:e5:08:d5:5b:ae:30:bb:0b:70:22:ba:70:70:80: 87:f7:55:72:22:5c:0b:a1:f7:0b:4e:d1:79:e4:e6:f6:f1:06: c4:6c:63:65:ba:09:32:82:6c:7e:2d:f4:08:aa:8b:c3:4f:c7: 82:9a:6c:c9:b5:30:72:3b:cc:f9:ff:6e:ad:71:df:cf:10:e9: 2a:c2:87:95 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBNwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTVEMEMxMTAvBgNVBAUTKDNFNzNCMkJFMTMwMzdCRTc0NDM5MUQzQTg5OUNERDIw MkI4MkY3NkQwHhcNMjUwNzAzMDAxNDMxWhcNMjUwNzEwMDAxNDMxWjAYMRYwFAYD VQQDEw02ODY1Y2I2OC04ZjczMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAw266yNHjGjEMlp/rzVLHO5/nL5CpGO/EM3GqZTRQOHAELLlLvF5iJTLzFQnt 4gNHwyGregL17lu5Fs0Lpybe3ZH3+ff12Kxgm8MFZQudSRQHfqvAVFOZ2oeKc4ej 6t/tckMr0lnF/c5g4UM+OZHJs6z9WYTLc4pgP2SVRUG/qW2ef3Ff9d85OxYjA9Pq 1n2hQisHS0Pp5HGKLl7jv/sMnu7a4DmQzAoPBYnvjn6+Bnli+TSMMtFBJ/lgOsza H1zayzLjW6YFXGYKu79AgBKw2cUZleHR9NgaNA7JPfGuOvv7gLW29Vv8yXPjMjyX /QBLxpNMERVcAl6TMrlbeJinmQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFPxpxUdt ZL3UtUSlQNcK2mDT3LlzMB8GA1UdIwQYMBaAFD5zsr4TA3vnRDkdOomc3SArgvdt MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFNUQwQy84OTFCNEVDQTMy MzYxMUVDODk4Mzg3NTZDNEY5QUUwMi9Qbk95dmhNRGUtZEVPUjA2aVp6ZElDdUM5 MjAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1BuT3l2aE1EZS1kRU9SMDZpWnpkSUN1QzkyMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF NUQwQy84OTFCNEVDQTMyMzYxMUVDODk4Mzg3NTZDNEY5QUUwMi9Qbk95dmhNRGUt ZEVPUjA2aVp6ZElDdUM5MjAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA99PB1sV9/BXUJMEDdKodxEwD91FrjIP9x72kPWbI3UJ4VnLHyjPVZ sJ1YBSPukP10/tdo4a2YlJa9ft80QoxT/6E8HN+rTh3YbsB1Gyfmn3kVcenF+3xo +vJR6vtA+cyfrQm4MpEBYuQcQVnr6G7Nl3lUTdJYHTNR5YzqRNsHebgCbVs7JmcW 5C4EZt/upsRB41lPhlABJLJb9BIyQ5/3k3eIeRGnbgyDhjPWA0a03uQSjGGIVrPS 5QjVW64wuwtwIrpwcICH91VyIlwLofcLTtF55Ob28QbEbGNlugkygmx+LfQIqovD T8eCmmzJtTByO8z5/26tcd/PEOkqwoeV -----END CERTIFICATE-----Generated at Thu Jul 3 06:04:31 2025 by rpki-client