$ rpki-client -vvf rpki.apnic.net/member_repository/A916AF8E/D94A75941C1411EBB036DC63C4F9AE02/PcXSlD7UrPqSa3dnapi-yLPJea4.mft File: PcXSlD7UrPqSa3dnapi-yLPJea4.mft (raw, json) Hash identifier: IslvGI/bBTc6PHgCyKYwhNkLvXdwu24ANfDU0VvAQlM= Subject key identifier: 7A:F3:08:A5:E0:DF:DD:B7:68:5E:F0:74:9C:B0:33:43:23:D6:92:69 Authority key identifier: 3D:C5:D2:94:3E:D4:AC:FA:92:6B:77:67:6A:98:BE:C8:B3:C9:79:AE Certificate issuer: /CN=A916AF8E/serialNumber=3DC5D2943ED4ACFA926B77676A98BEC8B3C979AE Certificate serial: 079B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PcXSlD7UrPqSa3dnapi-yLPJea4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A916AF8E/D94A75941C1411EBB036DC63C4F9AE02/PcXSlD7UrPqSa3dnapi-yLPJea4.mft Manifest number: 0793 Signing time: Fri 22 Aug 2025 21:34:54 +0000 Manifest this update: Fri 22 Aug 2025 21:34:53 +0000 Manifest next update: Fri 29 Aug 2025 21:34:53 +0000 Files and hashes: 1: PcXSlD7UrPqSa3dnapi-yLPJea4.crl (hash: JtIjIAQv29eMgLV5JyruNGITCgYiPRbgOhjnsUfyf4s=) 2: 499DE3FC1C1611EB8BD35065C4F9AE02.roa (hash: QnFh/0YdNLZr/ZfMn+21+lOUTuFHow1/2U5v+xOLivo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A916AF8E/D94A75941C1411EBB036DC63C4F9AE02/PcXSlD7UrPqSa3dnapi-yLPJea4.crl rsync://rpki.apnic.net/member_repository/A916AF8E/D94A75941C1411EBB036DC63C4F9AE02/PcXSlD7UrPqSa3dnapi-yLPJea4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PcXSlD7UrPqSa3dnapi-yLPJea4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Aug 2025 21:34:53 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1947 (0x79b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A916AF8E, serialNumber=3DC5D2943ED4ACFA926B77676A98BEC8B3C979AE Validity Not Before: Aug 22 21:34:53 2025 GMT Not After : Aug 29 21:34:53 2025 GMT Subject: CN=68a8e27d-896e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ef:ee:3c:da:64:17:80:7a:99:2d:fe:de:1a:e4: 8f:a0:69:5e:3f:02:41:2d:a4:a0:a1:d2:02:99:25: 31:e3:e8:bf:9f:d8:17:89:07:a9:a1:a6:5d:38:62: 80:e2:d6:99:78:d4:a4:8d:16:f2:a4:21:37:6f:ab: 34:82:ad:3e:92:83:57:73:6a:41:d7:cc:ea:bf:6b: 0a:98:e3:4b:24:fe:26:b2:92:e9:21:ef:bd:23:51: 34:c9:ca:e2:a5:bc:e7:09:7a:7a:f9:17:27:7d:d8: af:ff:bf:55:6a:f9:03:d1:47:0a:35:be:e7:1e:c5: f0:3f:d8:47:29:1c:9e:0a:19:d1:8b:24:85:99:fa: 24:61:b0:1c:ec:24:d4:7b:ae:fe:b1:93:2e:95:20: 43:73:d2:c6:bf:a9:66:bb:81:29:c8:df:12:dd:ce: 21:83:3a:e5:f6:64:b8:9e:13:b9:a8:b7:a6:13:95: a5:1b:53:2e:74:fa:f3:73:a6:62:f9:51:13:7b:fa: 4e:d3:08:60:08:c2:e7:ea:fb:38:5b:8b:16:46:b5: f9:76:a6:9c:ae:b3:51:27:8b:b8:f9:9a:0d:f2:18: 95:3f:70:d1:5b:43:c6:7d:15:2a:8e:72:26:86:c4: 1a:1e:87:66:20:a9:60:33:ce:15:de:6d:5c:51:7a: f4:f3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7A:F3:08:A5:E0:DF:DD:B7:68:5E:F0:74:9C:B0:33:43:23:D6:92:69 X509v3 Authority Key Identifier: keyid:3D:C5:D2:94:3E:D4:AC:FA:92:6B:77:67:6A:98:BE:C8:B3:C9:79:AE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A916AF8E/D94A75941C1411EBB036DC63C4F9AE02/PcXSlD7UrPqSa3dnapi-yLPJea4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PcXSlD7UrPqSa3dnapi-yLPJea4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A916AF8E/D94A75941C1411EBB036DC63C4F9AE02/PcXSlD7UrPqSa3dnapi-yLPJea4.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 70:1b:10:1b:ac:22:25:ee:b8:f4:9d:c7:02:f7:88:e6:74:14: b4:fb:3b:25:5f:08:64:32:1e:ed:41:24:88:5e:be:af:e1:b7: bf:34:4a:df:26:6b:bf:b9:c9:91:05:c4:be:dd:d9:83:36:7e: dd:2d:08:fe:68:e7:fe:c0:4b:27:9a:a7:b0:1f:59:b4:91:88: 24:16:46:05:11:49:0f:14:18:08:9b:90:30:16:91:98:14:44: 8c:48:39:9a:9d:4e:37:46:58:2f:c3:10:1e:7d:58:ad:94:a8: 8c:ae:d2:c0:18:42:5a:32:d4:92:9a:3b:e9:f5:09:bb:d0:71: 8a:b2:00:02:db:14:fc:fd:7a:d9:a0:25:c9:91:7a:2b:63:85: 8c:f7:dd:ef:74:37:73:1a:c8:22:ba:8a:d8:37:a7:c0:86:f4: 79:72:61:91:ae:5b:c8:98:8e:0d:32:a4:58:c5:de:75:b7:89: 99:9b:ed:9a:5a:b4:1b:02:23:a2:56:ec:d3:3a:37:f5:a5:03: d8:69:64:0d:5e:c4:c3:7f:e1:3d:ef:d4:c4:71:bf:d7:13:4b: 45:62:ef:f6:4e:99:4d:e0:11:e2:35:79:7e:7a:56:66:74:10: c5:ac:19:bf:c5:b0:89:d2:5d:03:e6:a8:b0:42:39:fd:fd:d6: 0e:e9:cf:cc -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICB5swDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NkFGOEUxMTAvBgNVBAUTKDNEQzVEMjk0M0VENEFDRkE5MjZCNzc2NzZBOThCRUM4 QjNDOTc5QUUwHhcNMjUwODIyMjEzNDUzWhcNMjUwODI5MjEzNDUzWjAYMRYwFAYD VQQDEw02OGE4ZTI3ZC04OTZlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA7+482mQXgHqZLf7eGuSPoGlePwJBLaSgodICmSUx4+i/n9gXiQepoaZdOGKA 4taZeNSkjRbypCE3b6s0gq0+koNXc2pB18zqv2sKmONLJP4mspLpIe+9I1E0ycri pbznCXp6+Rcnfdiv/79VavkD0UcKNb7nHsXwP9hHKRyeChnRiySFmfokYbAc7CTU e67+sZMulSBDc9LGv6lmu4EpyN8S3c4hgzrl9mS4nhO5qLemE5WlG1MudPrzc6Zi +VETe/pO0whgCMLn6vs4W4sWRrX5dqacrrNRJ4u4+ZoN8hiVP3DRW0PGfRUqjnIm hsQaHodmIKlgM84V3m1cUXr08wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFHrzCKXg 3923aF7wdJywM0Mj1pJpMB8GA1UdIwQYMBaAFD3F0pQ+1Kz6kmt3Z2qYvsizyXmu MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2QUY4RS9EOTRBNzU5NDFD MTQxMUVCQjAzNkRDNjNDNEY5QUUwMi9QY1hTbEQ3VXJQcVNhM2RuYXBpLXlMUEpl YTQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1BjWFNsRDdVclBxU2EzZG5hcGkteUxQSmVhNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 QUY4RS9EOTRBNzU5NDFDMTQxMUVCQjAzNkRDNjNDNEY5QUUwMi9QY1hTbEQ3VXJQ cVNhM2RuYXBpLXlMUEplYTQubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBwGxAbrCIl7rj0nccC94jmdBS0+zslXwhkMh7tQSSIXr6v4be/NErf Jmu/ucmRBcS+3dmDNn7dLQj+aOf+wEsnmqewH1m0kYgkFkYFEUkPFBgIm5AwFpGY FESMSDmanU43RlgvwxAefVitlKiMrtLAGEJaMtSSmjvp9Qm70HGKsgAC2xT8/XrZ oCXJkXorY4WM993vdDdzGsgiuorYN6fAhvR5cmGRrlvImI4NMqRYxd51t4mZm+2a WrQbAiOiVuzTOjf1pQPYaWQNXsTDf+E979TEcb/XE0tFYu/2TplN4BHiNXl+elZm dBDFrBm/xbCJ0l0D5qiwQjn9/dYO6c/M -----END CERTIFICATE-----Generated at Sat Aug 23 09:05:18 2025 by rpki-client