$ rpki-client -vvf rpki.apnic.net/member_repository/A913FE3D/81E654BCE53611EBB980326AC4F9AE02/pBhnIpZRYlTNTMrUSSUeGdG26V0.mft File: pBhnIpZRYlTNTMrUSSUeGdG26V0.mft (raw, json) Hash identifier: LWeCn/pdBU7Q6kCywgFQDLpQad6j4Drvtw9bouOmwb4= Subject key identifier: 09:A4:97:4A:5B:8F:63:6F:2C:8D:03:B3:7E:0E:4D:8A:AD:3B:5C:3D Authority key identifier: A4:18:67:22:96:51:62:54:CD:4C:CA:D4:49:25:1E:19:D1:B6:E9:5D Certificate issuer: /CN=A913FE3D/serialNumber=A418672296516254CD4CCAD449251E19D1B6E95D Certificate serial: 0595 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pBhnIpZRYlTNTMrUSSUeGdG26V0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A913FE3D/81E654BCE53611EBB980326AC4F9AE02/pBhnIpZRYlTNTMrUSSUeGdG26V0.mft Manifest number: 0590 Signing time: Fri 22 Aug 2025 23:25:08 +0000 Manifest this update: Fri 22 Aug 2025 23:25:07 +0000 Manifest next update: Fri 29 Aug 2025 23:25:07 +0000 Files and hashes: 1: pBhnIpZRYlTNTMrUSSUeGdG26V0.crl (hash: Qaorkhp83/K/9A498woSW/EGuT76PcxTgj7O9ueyeEU=) 2: 679A6FA4E53A11EB8197AD70C4F9AE02.roa (hash: cpEsjV03pQHsVjR1FwtppeHQdTtgrIUVyZ08K7ajurs=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A913FE3D/81E654BCE53611EBB980326AC4F9AE02/pBhnIpZRYlTNTMrUSSUeGdG26V0.crl rsync://rpki.apnic.net/member_repository/A913FE3D/81E654BCE53611EBB980326AC4F9AE02/pBhnIpZRYlTNTMrUSSUeGdG26V0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pBhnIpZRYlTNTMrUSSUeGdG26V0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Aug 2025 23:25:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1429 (0x595) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A913FE3D, serialNumber=A418672296516254CD4CCAD449251E19D1B6E95D Validity Not Before: Aug 22 23:25:07 2025 GMT Not After : Aug 29 23:25:07 2025 GMT Subject: CN=68a8fc53-7e35 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9a:ff:f2:f7:c8:3f:5a:08:06:1d:df:03:3d:f6: f4:0c:56:58:b8:3c:7e:d2:51:8d:49:9a:cc:e5:59: bb:e1:8f:d6:f8:cf:42:50:b3:78:96:77:1f:55:78: 3c:5b:89:89:6b:5f:83:7b:52:67:03:dc:e9:9c:d3: fa:2f:d9:a8:93:01:6c:c5:f4:1a:30:ac:14:d7:31: 3e:a4:0e:5f:13:7f:51:c0:11:42:ab:fa:fe:35:82: 59:03:ec:c5:2e:1e:f8:65:d0:fa:32:be:9d:67:75: 7b:ae:e3:8a:50:d9:ff:d7:f1:07:78:51:bb:33:d1: 72:c9:d4:54:bb:d1:33:19:b8:60:d3:55:27:b0:4d: 5d:57:82:0c:db:96:4a:20:01:8d:fb:1a:b5:50:ea: 38:3d:81:e5:b3:c0:04:32:e4:6f:c7:83:f7:c3:cd: 13:da:c9:89:96:5f:b6:ee:7b:55:8a:14:77:1d:a8: 40:e4:e9:26:c2:0b:14:4d:5e:c0:9f:6e:d2:99:75: e0:38:df:22:19:a9:5b:af:d8:87:0e:7c:80:7c:71: 9c:da:ad:39:1d:7c:0a:f4:ee:a0:53:3f:ea:02:d5: 79:12:af:90:86:d7:ec:c4:4a:9d:9c:af:ec:cc:a5: e9:0a:a6:6c:5a:82:6c:25:43:bd:e3:7f:6e:1b:e7: 17:31 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 09:A4:97:4A:5B:8F:63:6F:2C:8D:03:B3:7E:0E:4D:8A:AD:3B:5C:3D X509v3 Authority Key Identifier: keyid:A4:18:67:22:96:51:62:54:CD:4C:CA:D4:49:25:1E:19:D1:B6:E9:5D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A913FE3D/81E654BCE53611EBB980326AC4F9AE02/pBhnIpZRYlTNTMrUSSUeGdG26V0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pBhnIpZRYlTNTMrUSSUeGdG26V0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A913FE3D/81E654BCE53611EBB980326AC4F9AE02/pBhnIpZRYlTNTMrUSSUeGdG26V0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 22:b1:44:78:d1:6b:e6:03:93:b5:b0:f8:63:f6:ba:37:6b:b9: 97:bc:20:e2:70:16:e3:ae:8e:86:d1:28:2f:bc:2d:2b:e4:ef: eb:36:f7:aa:2a:bc:af:36:57:28:6d:98:12:57:a1:8e:a1:29: b3:ba:69:61:2c:4d:8a:e7:a1:50:30:64:54:1f:08:95:6b:43: 26:90:48:08:77:5e:80:77:de:ae:8d:12:1d:af:e3:9e:0a:99: f0:89:60:17:b8:88:ef:5c:ae:23:e7:e3:81:9f:28:84:89:ac: d1:42:c1:8b:52:e6:64:91:2d:7f:7c:ab:22:09:c0:4f:6a:14: 29:4f:3e:87:6a:6e:96:93:09:3f:9a:c9:bc:e1:60:53:dd:30: c9:c7:97:05:ca:59:96:9b:44:4c:fd:fd:92:fb:9d:0b:f2:f2: d1:5d:de:88:3e:2f:79:eb:cb:9f:d8:e6:42:0e:a4:84:c6:5b: cd:46:78:7d:ae:a0:88:38:e3:3d:43:7d:27:30:ec:a3:b0:e6: 91:54:b3:19:a6:d0:4c:fc:64:d7:fc:eb:12:ce:57:07:50:5a: d9:4d:5a:86:09:0b:71:81:4e:2f:83:c2:c3:df:5f:7d:38:80: aa:c8:27:b7:f8:52:3b:67:56:46:90:88:95:16:00:af:ae:17: 76:cd:bf:2e -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBZUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx M0ZFM0QxMTAvBgNVBAUTKEE0MTg2NzIyOTY1MTYyNTRDRDRDQ0FENDQ5MjUxRTE5 RDFCNkU5NUQwHhcNMjUwODIyMjMyNTA3WhcNMjUwODI5MjMyNTA3WjAYMRYwFAYD VQQDEw02OGE4ZmM1My03ZTM1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAmv/y98g/WggGHd8DPfb0DFZYuDx+0lGNSZrM5Vm74Y/W+M9CULN4lncfVXg8 W4mJa1+De1JnA9zpnNP6L9mokwFsxfQaMKwU1zE+pA5fE39RwBFCq/r+NYJZA+zF Lh74ZdD6Mr6dZ3V7ruOKUNn/1/EHeFG7M9FyydRUu9EzGbhg01UnsE1dV4IM25ZK IAGN+xq1UOo4PYHls8AEMuRvx4P3w80T2smJll+27ntVihR3HahA5OkmwgsUTV7A n27SmXXgON8iGalbr9iHDnyAfHGc2q05HXwK9O6gUz/qAtV5Eq+QhtfsxEqdnK/s zKXpCqZsWoJsJUO9439uG+cXMQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFAmkl0pb j2NvLI0Ds34OTYqtO1w9MB8GA1UdIwQYMBaAFKQYZyKWUWJUzUzK1EklHhnRtuld MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzRkUzRC84MUU2NTRCQ0U1 MzYxMUVCQjk4MDMyNkFDNEY5QUUwMi9wQmhuSXBaUllsVE5UTXJVU1NVZUdkRzI2 VjAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3BCaG5JcFpSWWxUTlRNclVTU1VlR2RHMjZWMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz RkUzRC84MUU2NTRCQ0U1MzYxMUVCQjk4MDMyNkFDNEY5QUUwMi9wQmhuSXBaUlls VE5UTXJVU1NVZUdkRzI2VjAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAisUR40WvmA5O1sPhj9ro3a7mXvCDicBbjro6G0SgvvC0r5O/rNveq KryvNlcobZgSV6GOoSmzumlhLE2K56FQMGRUHwiVa0MmkEgId16Ad96ujRIdr+Oe CpnwiWAXuIjvXK4j5+OBnyiEiazRQsGLUuZkkS1/fKsiCcBPahQpTz6Ham6Wkwk/ msm84WBT3TDJx5cFylmWm0RM/f2S+50L8vLRXd6IPi9568uf2OZCDqSExlvNRnh9 rqCIOOM9Q30nMOyjsOaRVLMZptBM/GTX/OsSzlcHUFrZTVqGCQtxgU4vg8LD3199 OICqyCe3+FI7Z1ZGkIiVFgCvrhd2zb8u -----END CERTIFICATE-----Generated at Sat Aug 23 22:19:52 2025 by rpki-client