$ rpki-client -vvf rpki.apnic.net/member_repository/A9170E11/D060C9B25BD611ECAD833651C4F9AE02/PWRH1yl0gylOzsuFOl5QCTXRuNc.mft File: PWRH1yl0gylOzsuFOl5QCTXRuNc.mft (raw, json) Hash identifier: mn+PtA7jJ7VXih/AdfyjGozzaDnRvVcmiqNcnzAQMZc= Subject key identifier: 6F:D1:D6:68:A1:4A:C8:ED:BF:3F:C2:5C:CE:49:3A:49:C2:6D:AB:7B Authority key identifier: 3D:64:47:D7:29:74:83:29:4E:CE:CB:85:3A:5E:50:09:35:D1:B8:D7 Certificate issuer: /CN=A9170E11/serialNumber=3D6447D7297483294ECECB853A5E500935D1B8D7 Certificate serial: 04A1 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PWRH1yl0gylOzsuFOl5QCTXRuNc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9170E11/D060C9B25BD611ECAD833651C4F9AE02/PWRH1yl0gylOzsuFOl5QCTXRuNc.mft Manifest number: 047B Signing time: Sat 23 Aug 2025 00:22:22 +0000 Manifest this update: Sat 23 Aug 2025 00:22:21 +0000 Manifest next update: Sat 30 Aug 2025 00:22:21 +0000 Files and hashes: 1: PWRH1yl0gylOzsuFOl5QCTXRuNc.crl (hash: Tr1B9C9Su5mH/DxByGV0i12pFLRKRkOKYto/viVjtpk=) 2: 5997A6A624E011EDAEC0E529C4F9AE02.roa (hash: 264WZ0f5FSYRLcE55bzQKj/lfReOWZZQL9W6/+XrL50=) 3: 793803867DEA11EC9FC67D66C4F9AE02.roa (hash: vRD5gvetOl4M72g0Ox/17wn2gRRkZ+MKIO7MmLjvLgg=) 4: 2CE5BE065BDA11ECAA855355C4F9AE02.roa (hash: K/T3wX+b6EJFTbJdX5T/49+xTnSJoc5fKtBw2NmgoBw=) 5: 18611004B42A11EC9BD3DE42C4F9AE02.roa (hash: MrOehOXflQUhc9W+FdP7kViEOIm0zhC3RKvz9jpM7pY=) 6: 27992F96832811EFA1BAAC4FC4F9AE02.roa (hash: 9hr8e6Q+evY4tAAVgrktH6R5E0K57yFV9RXeFdQNtLw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9170E11/D060C9B25BD611ECAD833651C4F9AE02/PWRH1yl0gylOzsuFOl5QCTXRuNc.crl rsync://rpki.apnic.net/member_repository/A9170E11/D060C9B25BD611ECAD833651C4F9AE02/PWRH1yl0gylOzsuFOl5QCTXRuNc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PWRH1yl0gylOzsuFOl5QCTXRuNc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Aug 2025 00:22:21 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1185 (0x4a1) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9170E11, serialNumber=3D6447D7297483294ECECB853A5E500935D1B8D7 Validity Not Before: Aug 23 00:22:21 2025 GMT Not After : Aug 30 00:22:21 2025 GMT Subject: CN=68a909be-6f18 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f1:e4:44:7f:63:a2:59:17:61:af:32:5b:fd:aa: 6a:8b:67:4b:50:77:31:17:bc:79:83:39:dc:88:99: 4d:c2:a8:41:c1:b2:c8:78:51:46:da:6f:f1:1b:4c: 23:f4:69:17:22:b9:28:18:2e:be:0a:44:e7:49:c3: 54:a4:7d:5d:64:ea:10:3c:d2:71:d5:55:ab:65:6e: 0b:69:cf:3a:1d:bb:00:24:bb:18:c7:40:5e:16:d9: 0b:4f:1e:83:f5:a4:45:25:5d:c2:d1:d9:ed:36:23: ea:fe:e4:21:20:a0:88:89:25:8d:cd:04:3e:db:61: d7:24:db:49:5d:76:24:f0:88:cb:86:16:54:ac:97: 75:a6:f6:3a:21:0b:85:e4:7d:c8:08:43:50:33:c7: bb:8c:08:78:f8:40:9a:29:78:97:68:db:d1:09:51: ec:f8:89:29:01:a0:e5:1f:cf:46:a7:e2:9b:31:fa: c9:a5:08:c7:d0:bc:ec:9e:03:66:1e:78:be:37:31: 87:d7:d4:8e:95:9b:fd:c3:12:ac:c8:ca:69:3a:2d: e6:ea:42:95:21:d1:91:61:06:4a:d3:44:c2:2d:4b: 5b:13:30:c6:69:f1:df:bc:cc:a2:c7:f3:d9:1f:95: f1:1b:ab:b2:5b:75:f1:49:fa:ca:ca:f7:ab:4f:2d: cc:df Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6F:D1:D6:68:A1:4A:C8:ED:BF:3F:C2:5C:CE:49:3A:49:C2:6D:AB:7B X509v3 Authority Key Identifier: keyid:3D:64:47:D7:29:74:83:29:4E:CE:CB:85:3A:5E:50:09:35:D1:B8:D7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9170E11/D060C9B25BD611ECAD833651C4F9AE02/PWRH1yl0gylOzsuFOl5QCTXRuNc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PWRH1yl0gylOzsuFOl5QCTXRuNc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9170E11/D060C9B25BD611ECAD833651C4F9AE02/PWRH1yl0gylOzsuFOl5QCTXRuNc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 3a:08:60:62:0a:c4:ae:a6:03:9a:4d:31:7a:98:6b:ca:3b:44: 29:3c:78:0b:26:4c:b1:88:e8:11:86:1d:b3:c3:0d:a8:ec:49: b1:5f:71:74:ad:6d:89:e2:93:d7:0e:66:82:98:c4:1c:ff:ae: de:80:38:27:2f:9c:d6:cf:c3:d3:63:1c:7b:de:48:95:a1:a7: 00:b6:d0:bd:cb:6a:de:dc:af:48:cc:99:38:be:41:f6:40:3e: 7a:d7:7f:e3:ef:31:23:3d:a4:46:ce:e9:e3:0c:74:b1:c9:c2: 7a:0c:8f:26:9a:6b:bc:03:f4:32:6e:eb:67:c5:89:eb:b3:9c: 7d:d6:b6:92:d4:5b:72:41:be:5a:95:7d:80:d0:62:5c:42:0e: 0f:4d:d7:92:fa:25:4e:98:8d:c5:e2:95:f5:c2:f1:ed:c5:91: ea:b9:7b:24:15:b0:ee:24:cb:e7:91:a6:88:4f:d6:42:7c:9d: c1:e0:a2:e7:e4:0e:f9:c8:ef:5b:89:0f:a6:fd:d6:28:74:d1: b7:3a:c9:35:f7:df:da:4d:0e:37:64:79:5c:d2:90:3e:2b:07: 6a:ab:0e:a7:df:6e:e5:02:2a:ff:03:b9:ec:a8:e6:b0:30:31: 0a:ad:80:3d:c8:cc:3f:17:2e:96:6f:a6:7e:58:9c:ab:6a:a5: ac:eb:0c:16 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBKEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzBFMTExMTAvBgNVBAUTKDNENjQ0N0Q3Mjk3NDgzMjk0RUNFQ0I4NTNBNUU1MDA5 MzVEMUI4RDcwHhcNMjUwODIzMDAyMjIxWhcNMjUwODMwMDAyMjIxWjAYMRYwFAYD VQQDEw02OGE5MDliZS02ZjE4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA8eREf2OiWRdhrzJb/apqi2dLUHcxF7x5gznciJlNwqhBwbLIeFFG2m/xG0wj 9GkXIrkoGC6+CkTnScNUpH1dZOoQPNJx1VWrZW4Lac86HbsAJLsYx0BeFtkLTx6D 9aRFJV3C0dntNiPq/uQhIKCIiSWNzQQ+22HXJNtJXXYk8IjLhhZUrJd1pvY6IQuF 5H3ICENQM8e7jAh4+ECaKXiXaNvRCVHs+IkpAaDlH89Gp+KbMfrJpQjH0LzsngNm Hni+NzGH19SOlZv9wxKsyMppOi3m6kKVIdGRYQZK00TCLUtbEzDGafHfvMyix/PZ H5XxG6uyW3XxSfrKyverTy3M3wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFG/R1mih Ssjtvz/CXM5JOknCbat7MB8GA1UdIwQYMBaAFD1kR9cpdIMpTs7LhTpeUAk10bjX MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3MEUxMS9EMDYwQzlCMjVC RDYxMUVDQUQ4MzM2NTFDNEY5QUUwMi9QV1JIMXlsMGd5bE96c3VGT2w1UUNUWFJ1 TmMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1BXUkgxeWwwZ3lsT3pzdUZPbDVRQ1RYUnVOYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 MEUxMS9EMDYwQzlCMjVCRDYxMUVDQUQ4MzM2NTFDNEY5QUUwMi9QV1JIMXlsMGd5 bE96c3VGT2w1UUNUWFJ1TmMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA6CGBiCsSupgOaTTF6mGvKO0QpPHgLJkyxiOgRhh2zww2o7EmxX3F0 rW2J4pPXDmaCmMQc/67egDgnL5zWz8PTYxx73kiVoacAttC9y2re3K9IzJk4vkH2 QD5613/j7zEjPaRGzunjDHSxycJ6DI8mmmu8A/QybutnxYnrs5x91raS1FtyQb5a lX2A0GJcQg4PTdeS+iVOmI3F4pX1wvHtxZHquXskFbDuJMvnkaaIT9ZCfJ3B4KLn 5A75yO9biQ+m/dYodNG3Osk199/aTQ43ZHlc0pA+Kwdqqw6n327lAir/A7nsqOaw MDEKrYA9yMw/Fy6Wb6Z+WJyraqWs6wwW -----END CERTIFICATE-----Generated at Sun Aug 24 01:03:07 2025 by rpki-client