$ rpki-client -vvf rpki.apnic.net/member_repository/A9172BD3/64BFF14EB3F711EE92A47717C4F9AE02/PX_qy2M6a4KTI7HplE1K-Y3do3I.mft File: PX_qy2M6a4KTI7HplE1K-Y3do3I.mft (raw, json) Hash identifier: dDR6Iut/Dydjag9uCH/EyjrC6AuB4WlE+NWHUkXzZ54= Subject key identifier: 87:3C:30:36:1E:1C:F2:91:17:5C:E7:58:94:99:08:7C:0F:DB:17:43 Authority key identifier: 3D:7F:EA:CB:63:3A:6B:82:93:23:B1:E9:94:4D:4A:F9:8D:DD:A3:72 Certificate issuer: /CN=A9172BD3/serialNumber=3D7FEACB633A6B829323B1E9944D4AF98DDDA372 Certificate serial: 013A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PX_qy2M6a4KTI7HplE1K-Y3do3I.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9172BD3/64BFF14EB3F711EE92A47717C4F9AE02/PX_qy2M6a4KTI7HplE1K-Y3do3I.mft Manifest number: 0134 Signing time: Sat 23 Aug 2025 04:43:41 +0000 Manifest this update: Sat 23 Aug 2025 04:43:40 +0000 Manifest next update: Sat 30 Aug 2025 04:43:40 +0000 Files and hashes: 1: PX_qy2M6a4KTI7HplE1K-Y3do3I.crl (hash: 914OjTvFgu4xSBwkjAYrrO2qco9oRnIWmDRUNGST4FE=) 2: 78321A66068D11EF92608943C4F9AE02.roa (hash: t3FRQePlchRMM21FbtXsaZzbDzSWRANgfDaLHDn0f9I=) 3: 97F15FD8068D11EF839A3054C4F9AE02.roa (hash: vjgahSKHgAt0pKH9ZvyBQssVmzZCnj8JvOvCUHQg/Eg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9172BD3/64BFF14EB3F711EE92A47717C4F9AE02/PX_qy2M6a4KTI7HplE1K-Y3do3I.crl rsync://rpki.apnic.net/member_repository/A9172BD3/64BFF14EB3F711EE92A47717C4F9AE02/PX_qy2M6a4KTI7HplE1K-Y3do3I.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PX_qy2M6a4KTI7HplE1K-Y3do3I.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Aug 2025 04:43:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 314 (0x13a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9172BD3, serialNumber=3D7FEACB633A6B829323B1E9944D4AF98DDDA372 Validity Not Before: Aug 23 04:43:40 2025 GMT Not After : Aug 30 04:43:40 2025 GMT Subject: CN=68a946fd-7e8b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d3:61:5b:c4:11:45:50:7c:86:f9:9d:cf:8c:80: 33:f5:f2:6c:55:d0:6b:72:c0:cd:73:d8:55:4d:45: e8:ad:26:76:95:ec:6f:12:17:e7:4f:36:c4:b7:7c: b2:b6:83:43:d8:25:50:1e:b5:6f:62:56:9e:5c:89: e0:03:5a:00:e6:5b:f9:3e:d4:4d:85:7e:be:d5:ba: 73:ba:04:6c:5c:0a:84:06:a2:24:77:9b:55:ee:24: 1f:6b:f1:88:85:fd:e0:80:15:e2:4c:17:e1:d2:fc: 2d:2f:8d:a2:f3:a1:a0:2d:36:58:6b:0b:24:51:03: b7:b3:68:c6:06:83:30:6f:16:d3:a9:c4:11:a0:fd: 7e:0b:3f:d2:18:71:ed:6e:7b:12:ff:54:38:5a:46: 62:01:32:eb:73:80:12:b7:be:55:22:ec:87:8f:bb: 8f:dc:95:3d:91:f6:c3:a6:be:a5:04:16:b8:75:87: 8c:81:18:3f:bb:02:b1:01:c6:11:ce:a0:0b:1b:74: 94:a0:07:84:49:68:ce:a8:63:99:0d:6e:50:ab:47: 27:f5:ba:6e:ad:e0:0d:9d:36:05:6c:b2:7b:57:14: 21:45:8e:c3:ad:a0:23:47:c1:0a:02:bb:a2:45:3b: 97:b2:28:a1:d0:43:b2:e5:ac:83:6a:53:81:77:91: 01:3f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 87:3C:30:36:1E:1C:F2:91:17:5C:E7:58:94:99:08:7C:0F:DB:17:43 X509v3 Authority Key Identifier: keyid:3D:7F:EA:CB:63:3A:6B:82:93:23:B1:E9:94:4D:4A:F9:8D:DD:A3:72 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9172BD3/64BFF14EB3F711EE92A47717C4F9AE02/PX_qy2M6a4KTI7HplE1K-Y3do3I.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PX_qy2M6a4KTI7HplE1K-Y3do3I.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9172BD3/64BFF14EB3F711EE92A47717C4F9AE02/PX_qy2M6a4KTI7HplE1K-Y3do3I.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 9b:69:75:89:94:87:10:bd:fa:f1:fb:8c:19:8d:a3:e0:b9:07: 6f:64:93:ba:fa:70:b1:e5:99:28:26:c0:67:70:67:37:40:80: ba:19:2d:b2:84:39:28:6a:c9:e3:27:2b:8a:76:2a:6f:91:b3: 84:ef:a3:ad:98:d0:cd:11:91:5a:28:e5:07:0a:3c:65:27:ac: 6c:2e:28:1c:08:e4:50:0b:0b:93:32:27:a4:41:d3:fc:0f:4b: 72:6f:7e:47:20:dc:e9:ce:66:66:2f:72:2c:d4:7f:cb:57:ad: ca:8f:fc:ec:59:93:9d:da:ff:fe:7d:33:e2:ea:9f:51:69:57: f6:a6:94:0a:b7:f3:38:50:48:01:1f:b1:c4:16:5f:c4:7b:a4: c3:8e:8e:7a:a5:a5:c3:c5:34:ad:12:38:e8:d9:05:94:fb:57: de:2e:a8:6c:a3:cc:d4:2a:7d:63:e5:40:fc:5d:38:6d:a1:21: 7d:2a:d9:ed:8a:d1:6e:5c:9b:72:f1:79:e1:6d:71:97:3b:ab: df:0b:38:ed:30:dc:34:6d:cf:70:bd:9b:35:96:d1:d4:1e:00: 38:fd:2c:7b:63:88:87:a7:38:c1:a0:7b:47:2e:0d:ae:c6:3f: 02:32:e2:e4:ed:b4:e7:87:72:07:1c:9f:5b:d4:e1:68:72:61: 92:d1:43:e4 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICATowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzJCRDMxMTAvBgNVBAUTKDNEN0ZFQUNCNjMzQTZCODI5MzIzQjFFOTk0NEQ0QUY5 OEREREEzNzIwHhcNMjUwODIzMDQ0MzQwWhcNMjUwODMwMDQ0MzQwWjAYMRYwFAYD VQQDEw02OGE5NDZmZC03ZThiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA02FbxBFFUHyG+Z3PjIAz9fJsVdBrcsDNc9hVTUXorSZ2lexvEhfnTzbEt3yy toND2CVQHrVvYlaeXIngA1oA5lv5PtRNhX6+1bpzugRsXAqEBqIkd5tV7iQfa/GI hf3ggBXiTBfh0vwtL42i86GgLTZYawskUQO3s2jGBoMwbxbTqcQRoP1+Cz/SGHHt bnsS/1Q4WkZiATLrc4ASt75VIuyHj7uP3JU9kfbDpr6lBBa4dYeMgRg/uwKxAcYR zqALG3SUoAeESWjOqGOZDW5Qq0cn9bpureANnTYFbLJ7VxQhRY7DraAjR8EKArui RTuXsiih0EOy5ayDalOBd5EBPwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFIc8MDYe HPKRF1znWJSZCHwP2xdDMB8GA1UdIwQYMBaAFD1/6stjOmuCkyOx6ZRNSvmN3aNy MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3MkJEMy82NEJGRjE0RUIz RjcxMUVFOTJBNDc3MTdDNEY5QUUwMi9QWF9xeTJNNmE0S1RJN0hwbEUxSy1ZM2Rv M0kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1BYX3F5Mk02YTRLVEk3SHBsRTFLLVkzZG8zSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 MkJEMy82NEJGRjE0RUIzRjcxMUVFOTJBNDc3MTdDNEY5QUUwMi9QWF9xeTJNNmE0 S1RJN0hwbEUxSy1ZM2RvM0kubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCbaXWJlIcQvfrx+4wZjaPguQdvZJO6+nCx5ZkoJsBncGc3QIC6GS2y hDkoasnjJyuKdipvkbOE76OtmNDNEZFaKOUHCjxlJ6xsLigcCORQCwuTMiekQdP8 D0tyb35HINzpzmZmL3Is1H/LV63Kj/zsWZOd2v/+fTPi6p9RaVf2ppQKt/M4UEgB H7HEFl/Ee6TDjo56paXDxTStEjjo2QWU+1feLqhso8zUKn1j5UD8XThtoSF9Ktnt itFuXJty8XnhbXGXO6vfCzjtMNw0bc9wvZs1ltHUHgA4/Sx7Y4iHpzjBoHtHLg2u xj8CMuLk7bTnh3IHHJ9b1OFocmGS0UPk -----END CERTIFICATE-----Generated at Sat Aug 23 22:38:38 2025 by rpki-client