$ rpki-client -vvf rpki.apnic.net/member_repository/A9131EDD/210B43047BBF11EBA02A4339C4F9AE02/pGlL5HxPO8lIBdSjZqAHxpBwUS4.mft File: pGlL5HxPO8lIBdSjZqAHxpBwUS4.mft (raw, json) Hash identifier: FRcTFEppYY+PdfSQnbCPm1FMDcgN0b1WnjnKY3deeRo= Subject key identifier: D0:F6:12:07:DE:4F:C2:02:AD:E6:D8:85:9F:9D:EB:CB:E0:15:19:D3 Authority key identifier: A4:69:4B:E4:7C:4F:3B:C9:48:05:D4:A3:66:A0:07:C6:90:70:51:2E Certificate issuer: /CN=A9131EDD/serialNumber=A4694BE47C4F3BC94805D4A366A007C69070512E Certificate serial: 06AC Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pGlL5HxPO8lIBdSjZqAHxpBwUS4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9131EDD/210B43047BBF11EBA02A4339C4F9AE02/pGlL5HxPO8lIBdSjZqAHxpBwUS4.mft Manifest number: 06A2 Signing time: Fri 22 Aug 2025 22:21:48 +0000 Manifest this update: Fri 22 Aug 2025 22:21:47 +0000 Manifest next update: Fri 29 Aug 2025 22:21:47 +0000 Files and hashes: 1: pGlL5HxPO8lIBdSjZqAHxpBwUS4.crl (hash: MfwPVNUV7n0AgpItHNohDss7dMo/+klZj4UsntAl5sQ=) 2: E84DCBC422D211EDAF1F924EC4F9AE02.roa (hash: DSJZavi/LmOaDs/V5ru83cEJvd41YvTKAbFr9jXt5Xk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9131EDD/210B43047BBF11EBA02A4339C4F9AE02/pGlL5HxPO8lIBdSjZqAHxpBwUS4.crl rsync://rpki.apnic.net/member_repository/A9131EDD/210B43047BBF11EBA02A4339C4F9AE02/pGlL5HxPO8lIBdSjZqAHxpBwUS4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pGlL5HxPO8lIBdSjZqAHxpBwUS4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Aug 2025 22:21:47 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1708 (0x6ac) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9131EDD, serialNumber=A4694BE47C4F3BC94805D4A366A007C69070512E Validity Not Before: Aug 22 22:21:47 2025 GMT Not After : Aug 29 22:21:47 2025 GMT Subject: CN=68a8ed7c-5d20 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c9:83:2b:d4:20:a9:8f:81:f3:4c:67:64:39:74: 6a:52:be:06:d3:17:61:8f:78:6f:69:50:d5:2e:a3: 6a:bc:d8:7f:00:be:59:e7:f2:6f:d4:df:19:5c:6e: c4:1e:e3:dc:7b:f8:d6:31:bd:56:b1:64:7e:4d:67: 7a:8d:00:81:92:00:d7:cd:4c:d2:72:d9:9e:71:f9: 88:5b:d0:50:7a:af:8b:40:e2:13:50:d8:80:e3:69: b7:4f:d6:4c:32:70:68:7f:99:3f:99:ae:a0:97:c5: ea:e5:da:77:89:1a:e8:0f:b1:a6:82:29:80:3f:29: 45:d3:93:00:6f:db:2f:e9:51:a1:6c:6b:6c:25:42: 5b:5d:46:39:66:98:2b:09:e0:53:bd:70:76:a6:31: 6a:f3:61:9f:a4:cb:b4:bf:56:5e:b9:23:11:5c:9c: a2:27:21:5c:a8:fd:9b:57:1b:90:36:e6:85:a0:ba: e0:f2:25:64:f9:ec:f9:61:a0:1c:a9:c6:e5:8e:86: db:63:e2:3c:19:c7:87:51:11:2e:48:fd:c1:35:c7: c5:9a:a1:8a:4c:ab:7d:04:06:51:a0:0a:ca:a4:d5: 52:b8:0b:eb:e6:48:a5:09:58:5d:89:b9:c4:26:b8: 60:d5:51:05:17:5c:8d:02:f6:62:4c:57:ce:41:5b: 6f:0b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D0:F6:12:07:DE:4F:C2:02:AD:E6:D8:85:9F:9D:EB:CB:E0:15:19:D3 X509v3 Authority Key Identifier: keyid:A4:69:4B:E4:7C:4F:3B:C9:48:05:D4:A3:66:A0:07:C6:90:70:51:2E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9131EDD/210B43047BBF11EBA02A4339C4F9AE02/pGlL5HxPO8lIBdSjZqAHxpBwUS4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pGlL5HxPO8lIBdSjZqAHxpBwUS4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9131EDD/210B43047BBF11EBA02A4339C4F9AE02/pGlL5HxPO8lIBdSjZqAHxpBwUS4.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 94:72:3d:9a:38:33:b4:5f:3b:c3:fc:fa:6e:56:e0:22:ea:8b: a2:4a:cf:62:b1:c4:ec:84:4c:13:06:17:fa:79:f7:31:b9:30: 3b:b7:24:17:28:0d:4d:7f:03:ea:a3:bc:3d:e7:52:b2:13:f5: e3:ae:fe:43:b1:db:8c:a7:49:17:25:4b:75:e7:96:d9:8b:47: ed:9f:e1:8a:ef:33:08:9b:37:62:94:70:3c:63:86:f5:15:4c: 1f:6f:e9:7d:6d:de:3a:33:24:94:41:d0:d8:50:aa:85:5a:e6: f3:d4:5a:a3:5f:38:b2:83:03:64:5d:60:6d:93:55:4a:e2:4b: 8a:62:35:34:be:32:71:7b:36:bb:16:a2:9a:5d:63:8b:f4:0a: 9d:d9:08:1f:15:10:d4:d6:9c:9b:88:e4:e4:6b:8f:58:22:42: e8:a0:96:7b:99:d5:66:0c:8f:46:ed:55:a7:e5:13:e2:37:dd: ed:4f:93:6e:62:7a:5d:77:b1:4a:7c:75:a9:34:aa:48:52:dc: b7:a2:00:ec:09:1d:12:a8:af:1e:b3:60:a6:22:e6:cf:11:97: 7b:09:32:3d:df:c5:a2:ee:54:8c:0c:1d:f3:92:2a:71:6f:23: 1a:4c:d1:06:b6:05:9c:77:d2:40:54:bb:8b:5f:aa:2e:ab:02: 94:a2:38:08 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBqwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MzFFREQxMTAvBgNVBAUTKEE0Njk0QkU0N0M0RjNCQzk0ODA1RDRBMzY2QTAwN0M2 OTA3MDUxMkUwHhcNMjUwODIyMjIyMTQ3WhcNMjUwODI5MjIyMTQ3WjAYMRYwFAYD VQQDEw02OGE4ZWQ3Yy01ZDIwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyYMr1CCpj4HzTGdkOXRqUr4G0xdhj3hvaVDVLqNqvNh/AL5Z5/Jv1N8ZXG7E HuPce/jWMb1WsWR+TWd6jQCBkgDXzUzSctmecfmIW9BQeq+LQOITUNiA42m3T9ZM MnBof5k/ma6gl8Xq5dp3iRroD7GmgimAPylF05MAb9sv6VGhbGtsJUJbXUY5Zpgr CeBTvXB2pjFq82GfpMu0v1ZeuSMRXJyiJyFcqP2bVxuQNuaFoLrg8iVk+ez5YaAc qcbljobbY+I8GceHUREuSP3BNcfFmqGKTKt9BAZRoArKpNVSuAvr5kilCVhdibnE Jrhg1VEFF1yNAvZiTFfOQVtvCwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFND2Egfe T8ICrebYhZ+d68vgFRnTMB8GA1UdIwQYMBaAFKRpS+R8TzvJSAXUo2agB8aQcFEu MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzMUVERC8yMTBCNDMwNDdC QkYxMUVCQTAyQTQzMzlDNEY5QUUwMi9wR2xMNUh4UE84bElCZFNqWnFBSHhwQndV UzQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3BHbEw1SHhQTzhsSUJkU2pacUFIeHBCd1VTNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz MUVERC8yMTBCNDMwNDdCQkYxMUVCQTAyQTQzMzlDNEY5QUUwMi9wR2xMNUh4UE84 bElCZFNqWnFBSHhwQndVUzQubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCUcj2aODO0XzvD/PpuVuAi6ouiSs9iscTshEwTBhf6efcxuTA7tyQX KA1NfwPqo7w951KyE/Xjrv5DsduMp0kXJUt155bZi0ftn+GK7zMImzdilHA8Y4b1 FUwfb+l9bd46MySUQdDYUKqFWubz1FqjXziygwNkXWBtk1VK4kuKYjU0vjJxeza7 FqKaXWOL9Aqd2QgfFRDU1pybiOTka49YIkLooJZ7mdVmDI9G7VWn5RPiN93tT5Nu Ynpdd7FKfHWpNKpIUty3ogDsCR0SqK8es2CmIubPEZd7CTI938Wi7lSMDB3zkipx byMaTNEGtgWcd9JAVLuLX6ouqwKUojgI -----END CERTIFICATE-----Generated at Sun Aug 24 01:03:06 2025 by rpki-client