$ rpki-client -vvf rpki.apnic.net/member_repository/A919D109/DAC666C05CE011EEB6C1B513C4F9AE02/Pq60tRb3A-pY8W4I2opmdwP7XK4.mft File: Pq60tRb3A-pY8W4I2opmdwP7XK4.mft (raw, json) Hash identifier: tsV7nuOUxcLho08G632Gd5peXMUcGcr+hwYDgaj58Gs= Subject key identifier: CC:A5:77:A1:86:9B:C5:F7:D5:4A:EF:40:B6:18:C4:B8:9C:14:6B:C7 Authority key identifier: 3E:AE:B4:B5:16:F7:03:EA:58:F1:6E:08:DA:8A:66:77:03:FB:5C:AE Certificate issuer: /CN=A919D109/serialNumber=3EAEB4B516F703EA58F16E08DA8A667703FB5CAE Certificate serial: 0175 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Pq60tRb3A-pY8W4I2opmdwP7XK4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A919D109/DAC666C05CE011EEB6C1B513C4F9AE02/Pq60tRb3A-pY8W4I2opmdwP7XK4.mft Manifest number: 016D Signing time: Sat 23 Aug 2025 04:04:42 +0000 Manifest this update: Sat 23 Aug 2025 04:04:41 +0000 Manifest next update: Sat 30 Aug 2025 04:04:41 +0000 Files and hashes: 1: Pq60tRb3A-pY8W4I2opmdwP7XK4.crl (hash: cd5G4g9v5fnX6+LYE9OkRsTrqn81JdbitxBostifojk=) 2: B67DC27A60E311EEB04BEA49C4F9AE02.roa (hash: Uh7NExbaYKDBSUUKd+crKnXeWpl3+22sEhcewGQ9kp8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A919D109/DAC666C05CE011EEB6C1B513C4F9AE02/Pq60tRb3A-pY8W4I2opmdwP7XK4.crl rsync://rpki.apnic.net/member_repository/A919D109/DAC666C05CE011EEB6C1B513C4F9AE02/Pq60tRb3A-pY8W4I2opmdwP7XK4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Pq60tRb3A-pY8W4I2opmdwP7XK4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Aug 2025 04:04:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 373 (0x175) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A919D109, serialNumber=3EAEB4B516F703EA58F16E08DA8A667703FB5CAE Validity Not Before: Aug 23 04:04:41 2025 GMT Not After : Aug 30 04:04:41 2025 GMT Subject: CN=68a93dda-3b8d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e2:41:9a:4a:2c:1a:ba:20:eb:7b:6a:06:96:27: 3b:a6:b1:90:bc:b5:bb:2f:f8:de:00:d7:e9:9a:b6: 9a:62:ed:0c:a7:7e:01:87:f7:f2:42:35:66:12:76: 18:fb:ea:4e:a8:20:a6:91:23:ce:82:2a:67:67:89: 1c:e1:3a:38:f5:b3:d3:d7:6b:34:6e:a3:0e:5a:28: 52:b3:96:90:66:8c:f2:89:f8:dc:ce:f9:1e:35:6e: ca:ad:f5:9c:65:0b:d7:14:d0:d1:39:11:e3:9a:2b: a2:2c:e9:5b:b9:37:c5:2d:35:56:1f:5b:25:c0:cc: 46:c7:c8:70:44:36:ec:b6:53:8d:99:13:a5:de:8f: 74:15:26:d1:cd:a6:ac:9a:2e:cc:6c:7e:67:81:02: 01:55:92:55:58:67:dd:9d:59:bf:67:b6:dd:eb:83: 02:4a:33:a4:60:c6:20:c0:38:85:3d:2a:61:f5:83: 06:35:fb:28:03:f8:92:48:94:f2:99:a2:70:90:07: 74:26:49:98:fe:15:80:f3:7d:62:01:34:05:3b:67: 0b:1f:28:0e:2b:68:d8:b3:ef:f7:87:f2:f4:31:c2: 50:dc:20:7a:20:12:0d:fd:94:8a:5d:d5:72:8d:6a: 39:f7:79:8e:f2:62:e5:d4:56:27:2d:7d:77:b2:0a: b3:df Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CC:A5:77:A1:86:9B:C5:F7:D5:4A:EF:40:B6:18:C4:B8:9C:14:6B:C7 X509v3 Authority Key Identifier: keyid:3E:AE:B4:B5:16:F7:03:EA:58:F1:6E:08:DA:8A:66:77:03:FB:5C:AE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A919D109/DAC666C05CE011EEB6C1B513C4F9AE02/Pq60tRb3A-pY8W4I2opmdwP7XK4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Pq60tRb3A-pY8W4I2opmdwP7XK4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A919D109/DAC666C05CE011EEB6C1B513C4F9AE02/Pq60tRb3A-pY8W4I2opmdwP7XK4.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 3f:19:39:5f:b3:68:24:af:54:19:02:ad:fd:e7:a5:13:7b:7e: 67:ff:16:76:dc:e1:74:9a:77:d3:db:80:37:72:60:f9:35:76: 03:6b:a0:72:bc:34:f9:b4:d1:38:13:b5:2c:20:4b:4d:05:3e: 73:3a:2f:0e:e8:0d:81:33:5b:cc:19:8e:c5:a8:8f:9c:a1:64: f7:9d:67:d1:74:33:99:6a:ef:4e:95:06:0c:9e:0d:23:47:69: 4d:82:ac:bf:7d:70:d2:d1:7e:b5:72:4e:1f:70:c3:b5:25:9a: 10:d2:e5:28:6a:65:be:ac:c8:80:34:e3:ad:28:86:34:05:7f: f9:18:98:7f:21:a6:e0:a0:ef:1b:ce:75:21:1b:c1:5d:46:37: ae:2b:43:83:39:3a:38:36:c0:e2:41:a1:42:9b:86:a4:be:13: cf:e5:da:5a:a0:b8:f1:e2:80:30:26:51:48:d0:f4:58:ea:a8: c1:b6:6c:7c:e1:8f:7e:ac:fc:ef:72:fc:b6:f0:f8:42:b7:aa: 40:d2:f9:87:1d:84:f9:d0:b2:1c:ce:47:c1:0d:d1:75:2b:f3: 19:95:13:26:c2:e3:57:62:13:99:b0:3b:8d:dd:b0:a9:d7:e5: 5f:2a:4c:fa:44:af:56:89:64:9a:9c:69:06:4c:54:d6:88:e4: 91:45:fd:89 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAXUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OUQxMDkxMTAvBgNVBAUTKDNFQUVCNEI1MTZGNzAzRUE1OEYxNkUwOERBOEE2Njc3 MDNGQjVDQUUwHhcNMjUwODIzMDQwNDQxWhcNMjUwODMwMDQwNDQxWjAYMRYwFAYD VQQDEw02OGE5M2RkYS0zYjhkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA4kGaSiwauiDre2oGlic7prGQvLW7L/jeANfpmraaYu0Mp34Bh/fyQjVmEnYY ++pOqCCmkSPOgipnZ4kc4To49bPT12s0bqMOWihSs5aQZozyifjczvkeNW7KrfWc ZQvXFNDRORHjmiuiLOlbuTfFLTVWH1slwMxGx8hwRDbstlONmROl3o90FSbRzaas mi7MbH5ngQIBVZJVWGfdnVm/Z7bd64MCSjOkYMYgwDiFPSph9YMGNfsoA/iSSJTy maJwkAd0JkmY/hWA831iATQFO2cLHygOK2jYs+/3h/L0McJQ3CB6IBIN/ZSKXdVy jWo593mO8mLl1FYnLX13sgqz3wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFMyld6GG m8X31UrvQLYYxLicFGvHMB8GA1UdIwQYMBaAFD6utLUW9wPqWPFuCNqKZncD+1yu MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5RDEwOS9EQUM2NjZDMDVD RTAxMUVFQjZDMUI1MTNDNEY5QUUwMi9QcTYwdFJiM0EtcFk4VzRJMm9wbWR3UDdY SzQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1BxNjB0UmIzQS1wWThXNEkyb3BtZHdQN1hLNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 RDEwOS9EQUM2NjZDMDVDRTAxMUVFQjZDMUI1MTNDNEY5QUUwMi9QcTYwdFJiM0Et cFk4VzRJMm9wbWR3UDdYSzQubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA/GTlfs2gkr1QZAq3956UTe35n/xZ23OF0mnfT24A3cmD5NXYDa6By vDT5tNE4E7UsIEtNBT5zOi8O6A2BM1vMGY7FqI+coWT3nWfRdDOZau9OlQYMng0j R2lNgqy/fXDS0X61ck4fcMO1JZoQ0uUoamW+rMiANOOtKIY0BX/5GJh/IabgoO8b znUhG8FdRjeuK0ODOTo4NsDiQaFCm4akvhPP5dpaoLjx4oAwJlFI0PRY6qjBtmx8 4Y9+rPzvcvy28PhCt6pA0vmHHYT50LIczkfBDdF1K/MZlRMmwuNXYhOZsDuN3bCp 1+VfKkz6RK9WiWSanGkGTFTWiOSRRf2J -----END CERTIFICATE-----Generated at Sat Aug 23 17:19:19 2025 by rpki-client