$ rpki-client -vvf rpki.apnic.net/member_repository/A9122D89/C6A4A5E2084411EB9C736514C4F9AE02/PP5vPrHYknFeQTbpuoVrmPZxR7A.mft File: PP5vPrHYknFeQTbpuoVrmPZxR7A.mft (raw, json) Hash identifier: 1NBzyLE1WxY+XuH3pmG33ohtgqRARRK2RLxv3Trt3do= Subject key identifier: 8D:15:AD:23:8E:C2:EB:4E:B2:D9:C8:39:4E:24:F1:04:02:43:74:53 Authority key identifier: 3C:FE:6F:3E:B1:D8:92:71:5E:41:36:E9:BA:85:6B:98:F6:71:47:B0 Certificate issuer: /CN=A9122D89/serialNumber=3CFE6F3EB1D892715E4136E9BA856B98F67147B0 Certificate serial: 07C9 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PP5vPrHYknFeQTbpuoVrmPZxR7A.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9122D89/C6A4A5E2084411EB9C736514C4F9AE02/PP5vPrHYknFeQTbpuoVrmPZxR7A.mft Manifest number: 07C3 Signing time: Fri 22 Aug 2025 21:19:55 +0000 Manifest this update: Fri 22 Aug 2025 21:19:54 +0000 Manifest next update: Fri 29 Aug 2025 21:19:54 +0000 Files and hashes: 1: PP5vPrHYknFeQTbpuoVrmPZxR7A.crl (hash: gSXkLuvaQL4I4IWX5iZETEWSdavk08QUp3Dw4uuqJTI=) 2: 7E8114F414E611EB82C98471C4F9AE02.roa (hash: J9GQPP4a7clIhGgoBAM9KLX43lz+eBaMPakWPFWVHmk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9122D89/C6A4A5E2084411EB9C736514C4F9AE02/PP5vPrHYknFeQTbpuoVrmPZxR7A.crl rsync://rpki.apnic.net/member_repository/A9122D89/C6A4A5E2084411EB9C736514C4F9AE02/PP5vPrHYknFeQTbpuoVrmPZxR7A.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PP5vPrHYknFeQTbpuoVrmPZxR7A.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Aug 2025 21:19:53 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1993 (0x7c9) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9122D89, serialNumber=3CFE6F3EB1D892715E4136E9BA856B98F67147B0 Validity Not Before: Aug 22 21:19:54 2025 GMT Not After : Aug 29 21:19:54 2025 GMT Subject: CN=68a8defa-cf66 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:0d:7b:0e:b6:8d:15:02:57:4d:c6:92:02:19: ff:a3:a3:3b:c5:83:29:e0:d5:ea:5b:15:b3:3c:4f: b8:83:4b:6f:dd:01:3b:e9:de:7b:75:dc:90:90:dc: 77:15:6c:8f:e1:aa:d2:92:8e:dd:3e:5b:72:3f:ef: 02:fc:ab:06:e7:d7:bb:23:a6:b8:4f:5d:86:ea:7a: 9d:26:f9:a4:12:72:46:d1:4e:ae:33:ca:aa:5f:8c: 9c:29:7d:1b:f5:1c:97:0f:4e:8d:60:57:fc:0d:13: db:f2:f2:76:40:74:b3:bd:fb:fc:ff:4a:57:05:2b: 0f:71:5a:26:7a:32:39:b9:8e:50:23:d3:c6:72:78: ac:22:db:30:da:b7:44:94:61:dd:a0:9b:6a:6d:d5: 98:72:2f:50:e1:1b:8d:53:64:55:33:a9:31:65:9e: 82:dc:8c:06:38:cb:80:86:dd:fd:c8:d3:37:15:a4: 28:db:3e:7f:d3:a1:0b:b8:50:03:5c:cc:ab:ce:7e: ed:bc:4d:19:32:1f:42:95:b0:b6:6f:02:93:ad:19: 21:04:86:a8:8c:ce:79:fe:85:be:76:b1:f7:4a:ad: 2c:95:ee:08:f3:0b:b6:13:36:fb:e8:24:3d:fc:a5: e7:05:eb:c4:85:56:19:42:e4:2c:b3:5f:cb:d2:7c: 6f:0f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8D:15:AD:23:8E:C2:EB:4E:B2:D9:C8:39:4E:24:F1:04:02:43:74:53 X509v3 Authority Key Identifier: keyid:3C:FE:6F:3E:B1:D8:92:71:5E:41:36:E9:BA:85:6B:98:F6:71:47:B0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9122D89/C6A4A5E2084411EB9C736514C4F9AE02/PP5vPrHYknFeQTbpuoVrmPZxR7A.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PP5vPrHYknFeQTbpuoVrmPZxR7A.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9122D89/C6A4A5E2084411EB9C736514C4F9AE02/PP5vPrHYknFeQTbpuoVrmPZxR7A.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 7c:c6:72:28:bf:70:3b:d6:a7:0d:8c:3e:33:b1:1e:4c:96:dd: 31:52:55:8c:fb:6d:32:b7:f5:47:3d:b7:46:9a:0c:a0:dd:36: 00:55:9e:49:0e:34:5f:21:b8:ad:7f:ec:93:9c:ab:82:c9:21: 2f:72:58:8e:be:74:43:a0:6a:f2:ef:61:18:39:20:3e:11:04: ff:46:3a:1c:06:bf:aa:f8:b6:c8:e1:f6:12:2a:91:cf:40:1f: 18:f2:fb:eb:e6:8d:a1:2e:02:24:8e:fc:40:2a:fd:e9:b9:0a: 9b:37:66:ec:ee:37:f2:26:38:6a:27:ce:88:36:ce:e7:d8:5a: bd:4b:ea:ca:88:81:8e:31:f3:7f:c6:60:9b:7d:26:d4:8c:99: fb:4a:2f:8f:d4:a6:d3:db:48:d9:00:db:38:fc:6d:c6:66:18: 9b:40:c1:71:f3:e5:79:a0:80:2f:f9:eb:dc:97:cd:4c:d9:bb: bb:b4:0f:2a:c1:5d:d2:69:f8:7a:9f:95:ce:95:25:3f:d9:8d: 0b:64:3c:87:56:2a:1a:48:80:b9:40:03:11:0a:34:21:42:d0: 87:d8:0c:a0:dd:ea:b3:37:6e:1f:20:12:ff:b6:92:28:1b:89: 7c:bf:61:16:4f:3c:88:a9:79:8c:55:42:1b:c6:40:c3:e6:79: dc:c9:7e:56 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICB8kwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MjJEODkxMTAvBgNVBAUTKDNDRkU2RjNFQjFEODkyNzE1RTQxMzZFOUJBODU2Qjk4 RjY3MTQ3QjAwHhcNMjUwODIyMjExOTU0WhcNMjUwODI5MjExOTU0WjAYMRYwFAYD VQQDEw02OGE4ZGVmYS1jZjY2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtA17DraNFQJXTcaSAhn/o6M7xYMp4NXqWxWzPE+4g0tv3QE76d57ddyQkNx3 FWyP4arSko7dPltyP+8C/KsG59e7I6a4T12G6nqdJvmkEnJG0U6uM8qqX4ycKX0b 9RyXD06NYFf8DRPb8vJ2QHSzvfv8/0pXBSsPcVomejI5uY5QI9PGcnisItsw2rdE lGHdoJtqbdWYci9Q4RuNU2RVM6kxZZ6C3IwGOMuAht39yNM3FaQo2z5/06ELuFAD XMyrzn7tvE0ZMh9ClbC2bwKTrRkhBIaojM55/oW+drH3Sq0sle4I8wu2Ezb76CQ9 /KXnBevEhVYZQuQss1/L0nxvDwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFI0VrSOO wutOstnIOU4k8QQCQ3RTMB8GA1UdIwQYMBaAFDz+bz6x2JJxXkE26bqFa5j2cUew MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyMkQ4OS9DNkE0QTVFMjA4 NDQxMUVCOUM3MzY1MTRDNEY5QUUwMi9QUDV2UHJIWWtuRmVRVGJwdW9Wcm1QWnhS N0EuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1BQNXZQckhZa25GZVFUYnB1b1ZybVBaeFI3QS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy MkQ4OS9DNkE0QTVFMjA4NDQxMUVCOUM3MzY1MTRDNEY5QUUwMi9QUDV2UHJIWWtu RmVRVGJwdW9Wcm1QWnhSN0EubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB8xnIov3A71qcNjD4zsR5Mlt0xUlWM+20yt/VHPbdGmgyg3TYAVZ5J DjRfIbitf+yTnKuCySEvcliOvnRDoGry72EYOSA+EQT/RjocBr+q+LbI4fYSKpHP QB8Y8vvr5o2hLgIkjvxAKv3puQqbN2bs7jfyJjhqJ86INs7n2Fq9S+rKiIGOMfN/ xmCbfSbUjJn7Si+P1KbT20jZANs4/G3GZhibQMFx8+V5oIAv+evcl81M2bu7tA8q wV3Safh6n5XOlSU/2Y0LZDyHVioaSIC5QAMRCjQhQtCH2Ayg3eqzN24fIBL/tpIo G4l8v2EWTzyIqXmMVUIbxkDD5nncyX5W -----END CERTIFICATE-----Generated at Sun Aug 24 00:43:14 2025 by rpki-client