$ rpki-client -vvf rpki.apnic.net/member_repository/A91326B3/C55423AAE69111EEBF058932C4F9AE02/C9q2CGF_PDGDxHD05hmyeV91w4k.mft File: C9q2CGF_PDGDxHD05hmyeV91w4k.mft (raw, json) Hash identifier: NxCg1J+i3Cif3B5IwakZUTQBsd3+SK4haUO05c0EpIE= Subject key identifier: 94:A8:FB:2F:1F:9C:50:B3:CE:45:6B:A2:DA:B4:9B:4D:68:A0:71:EF Authority key identifier: 0B:DA:B6:08:61:7F:3C:31:83:C4:70:F4:E6:19:B2:79:5F:75:C3:89 Certificate issuer: /CN=A91326B3/serialNumber=0BDAB608617F3C3183C470F4E619B2795F75C389 Certificate serial: 0112 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/C9q2CGF_PDGDxHD05hmyeV91w4k.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91326B3/C55423AAE69111EEBF058932C4F9AE02/C9q2CGF_PDGDxHD05hmyeV91w4k.mft Manifest number: 010E Signing time: Sat 23 Aug 2025 05:08:08 +0000 Manifest this update: Sat 23 Aug 2025 05:08:07 +0000 Manifest next update: Sat 30 Aug 2025 05:08:07 +0000 Files and hashes: 1: C9q2CGF_PDGDxHD05hmyeV91w4k.crl (hash: LCzS9xba9fuRg2KF1GXrHK08WPjx5q6CI06FME7TYL8=) 2: E3ABAA7AE69211EEB34D4B6AC4F9AE02.roa (hash: EyKD4I3R8YSy4asXY+8xvf07IP4owJwI772hb1AAhAw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91326B3/C55423AAE69111EEBF058932C4F9AE02/C9q2CGF_PDGDxHD05hmyeV91w4k.crl rsync://rpki.apnic.net/member_repository/A91326B3/C55423AAE69111EEBF058932C4F9AE02/C9q2CGF_PDGDxHD05hmyeV91w4k.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/C9q2CGF_PDGDxHD05hmyeV91w4k.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Aug 2025 05:08:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 274 (0x112) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91326B3, serialNumber=0BDAB608617F3C3183C470F4E619B2795F75C389 Validity Not Before: Aug 23 05:08:07 2025 GMT Not After : Aug 30 05:08:07 2025 GMT Subject: CN=68a94cb8-41e4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d0:29:d9:1a:6a:40:28:f9:49:31:90:30:f4:92: 4b:39:b9:0a:65:6f:cd:1d:1b:39:f1:0e:f7:46:ab: 93:31:5e:ce:64:be:0a:f3:94:cd:87:80:c2:e9:cd: 2a:b3:f9:22:3d:99:77:22:ad:2c:53:c9:93:71:68: 31:53:9e:b3:79:73:54:95:31:87:92:95:ed:e3:b5: 12:4a:5b:16:48:e8:d5:02:d3:39:7b:cf:08:80:77: 8e:3a:09:3d:00:da:31:87:84:5a:94:dc:db:a8:ee: aa:db:0d:2f:e8:46:f4:1b:d5:49:8a:d6:43:d0:ed: cd:eb:05:1d:b7:3a:1b:5d:49:07:9a:b4:31:d5:27: e8:3f:ae:f8:17:02:6f:54:30:9b:88:08:c1:65:68: bd:16:73:e6:86:6c:c5:d3:93:04:d1:a8:0f:87:ae: f0:9f:70:b3:46:49:6f:ae:e7:78:2f:8d:c7:34:75: 37:98:46:e9:da:67:be:d8:32:f3:7b:4a:82:68:af: ee:35:ca:9b:ac:b4:83:15:1f:3e:4c:57:b3:80:1c: 56:0b:dc:57:11:90:e5:cc:eb:9b:ff:ff:c2:e2:68: a7:b8:57:5b:b1:e1:71:b7:f1:c2:41:12:99:a9:18: f0:d2:5d:4f:b1:a0:97:f8:e2:ea:85:30:ca:16:77: 5d:2d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 94:A8:FB:2F:1F:9C:50:B3:CE:45:6B:A2:DA:B4:9B:4D:68:A0:71:EF X509v3 Authority Key Identifier: keyid:0B:DA:B6:08:61:7F:3C:31:83:C4:70:F4:E6:19:B2:79:5F:75:C3:89 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91326B3/C55423AAE69111EEBF058932C4F9AE02/C9q2CGF_PDGDxHD05hmyeV91w4k.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/C9q2CGF_PDGDxHD05hmyeV91w4k.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91326B3/C55423AAE69111EEBF058932C4F9AE02/C9q2CGF_PDGDxHD05hmyeV91w4k.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 7b:35:28:66:3e:a7:87:7a:53:ed:40:2d:5c:d8:be:cb:9b:3e: db:5b:24:20:17:35:07:5b:dc:35:10:8b:30:5a:47:dd:9a:32: 2a:02:5b:f9:dc:91:cf:61:5f:ff:03:15:b8:4f:70:c7:6c:3f: 88:81:8b:8a:c3:a2:b8:5f:77:15:ba:1f:02:49:9e:29:d7:0b: 97:86:18:36:2c:61:51:0c:97:86:10:36:c9:87:87:9e:c6:23: dd:d7:9e:e2:56:dd:00:61:27:d3:4d:7d:3e:7a:a0:a5:68:ad: bc:13:ad:60:69:52:19:69:94:f0:ff:d6:79:a8:3c:7e:25:9e: 62:a6:56:35:44:fd:ba:8f:25:4f:3e:a4:5c:ee:cd:76:3e:7e: c0:a4:8d:6e:42:b1:64:bb:b1:e0:5f:11:91:f1:fa:1c:2f:6e: 72:4b:45:4f:79:6f:d1:f7:23:d1:e4:16:50:eb:80:d4:42:a9: 20:e3:7c:b6:cb:d0:23:af:07:1f:4e:d9:8a:6d:67:4f:1f:c6: 60:2e:6d:4c:51:4e:7f:4a:57:84:37:da:1b:27:5f:f6:c0:36: fb:e2:09:c5:6e:7c:a4:49:b9:9c:80:44:c1:d2:82:9c:f8:d7: a2:5f:38:6c:fe:c3:fa:20:b6:69:17:d9:6a:15:24:b6:fc:c0: 52:32:dd:6c -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICARIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MzI2QjMxMTAvBgNVBAUTKDBCREFCNjA4NjE3RjNDMzE4M0M0NzBGNEU2MTlCMjc5 NUY3NUMzODkwHhcNMjUwODIzMDUwODA3WhcNMjUwODMwMDUwODA3WjAYMRYwFAYD VQQDEw02OGE5NGNiOC00MWU0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0CnZGmpAKPlJMZAw9JJLObkKZW/NHRs58Q73RquTMV7OZL4K85TNh4DC6c0q s/kiPZl3Iq0sU8mTcWgxU56zeXNUlTGHkpXt47USSlsWSOjVAtM5e88IgHeOOgk9 ANoxh4RalNzbqO6q2w0v6Eb0G9VJitZD0O3N6wUdtzobXUkHmrQx1SfoP674FwJv VDCbiAjBZWi9FnPmhmzF05ME0agPh67wn3CzRklvrud4L43HNHU3mEbp2me+2DLz e0qCaK/uNcqbrLSDFR8+TFezgBxWC9xXEZDlzOub///C4minuFdbseFxt/HCQRKZ qRjw0l1PsaCX+OLqhTDKFnddLQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJSo+y8f nFCzzkVrotq0m01ooHHvMB8GA1UdIwQYMBaAFAvatghhfzwxg8Rw9OYZsnlfdcOJ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzMjZCMy9DNTU0MjNBQUU2 OTExMUVFQkYwNTg5MzJDNEY5QUUwMi9DOXEyQ0dGX1BER0R4SEQwNWhteWVWOTF3 NGsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL0M5cTJDR0ZfUERHRHhIRDA1aG15ZVY5MXc0ay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz MjZCMy9DNTU0MjNBQUU2OTExMUVFQkYwNTg5MzJDNEY5QUUwMi9DOXEyQ0dGX1BE R0R4SEQwNWhteWVWOTF3NGsubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB7NShmPqeHelPtQC1c2L7Lmz7bWyQgFzUHW9w1EIswWkfdmjIqAlv5 3JHPYV//AxW4T3DHbD+IgYuKw6K4X3cVuh8CSZ4p1wuXhhg2LGFRDJeGEDbJh4ee xiPd157iVt0AYSfTTX0+eqClaK28E61gaVIZaZTw/9Z5qDx+JZ5iplY1RP26jyVP PqRc7s12Pn7ApI1uQrFku7HgXxGR8focL25yS0VPeW/R9yPR5BZQ64DUQqkg43y2 y9AjrwcfTtmKbWdPH8ZgLm1MUU5/SleEN9obJ1/2wDb74gnFbnykSbmcgETB0oKc +NeiXzhs/sP6ILZpF9lqFSS2/MBSMt1s -----END CERTIFICATE-----Generated at Sat Aug 23 12:44:17 2025 by rpki-client