$ rpki-client -vvf rpki.apnic.net/member_repository/A91C5ED0/153A550A997311E8866F0060C4F9AE02/pGg4Xjj11YpziCOPLtMFVXig7V4.mft File: pGg4Xjj11YpziCOPLtMFVXig7V4.mft (raw, json) Hash identifier: kQv0L1d4WYK7sVvMyvlWkyB32NdCuf6/r5psvPeFM6k= Subject key identifier: 6C:F8:5F:47:CC:99:83:78:0A:1A:C9:E0:E6:49:7D:B4:80:A2:FA:0D Authority key identifier: A4:68:38:5E:38:F5:D5:8A:73:88:23:8F:2E:D3:05:55:78:A0:ED:5E Certificate issuer: /CN=A91C5ED0/serialNumber=A468385E38F5D58A7388238F2ED3055578A0ED5E Certificate serial: 0836 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pGg4Xjj11YpziCOPLtMFVXig7V4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C5ED0/153A550A997311E8866F0060C4F9AE02/pGg4Xjj11YpziCOPLtMFVXig7V4.mft Manifest number: 2A38 Signing time: Fri 22 Aug 2025 17:05:09 +0000 Manifest this update: Fri 22 Aug 2025 17:05:08 +0000 Manifest next update: Fri 29 Aug 2025 17:05:08 +0000 Files and hashes: 1: pGg4Xjj11YpziCOPLtMFVXig7V4.crl (hash: Vm2jE1jQO4kr8DDK2r+XYGCIcIH/qJZxb4YWHyLbmN8=) 2: 54E2A752E17211ECA8128235C4F9AE02.roa (hash: DSrMI7Nowx4RDukf/foMtUodJX/NiInBR6IMaoe7AeM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C5ED0/153A550A997311E8866F0060C4F9AE02/pGg4Xjj11YpziCOPLtMFVXig7V4.crl rsync://rpki.apnic.net/member_repository/A91C5ED0/153A550A997311E8866F0060C4F9AE02/pGg4Xjj11YpziCOPLtMFVXig7V4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pGg4Xjj11YpziCOPLtMFVXig7V4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Aug 2025 17:05:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2102 (0x836) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C5ED0, serialNumber=A468385E38F5D58A7388238F2ED3055578A0ED5E Validity Not Before: Aug 22 17:05:08 2025 GMT Not After : Aug 29 17:05:08 2025 GMT Subject: CN=68a8a345-899d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:54:2a:df:0b:27:73:d3:a8:71:ca:8b:24:92: f8:5a:5a:cb:c2:f9:81:e2:44:1e:97:e6:5b:1a:2f: bb:00:1e:fb:61:ac:a1:6a:c7:93:17:3f:e8:ab:3b: 53:78:04:fb:0e:f2:b7:cb:c3:d3:4c:ec:2f:e2:0d: 3f:85:eb:06:55:3e:2d:35:c0:92:f1:c0:94:74:61: 77:b1:6c:05:de:3c:93:63:21:5d:be:6a:70:db:ff: 00:90:f3:bd:f8:72:64:f3:ae:e9:c1:fe:45:52:f1: 19:63:9f:76:39:33:4d:fe:75:98:97:a2:20:d2:14: ed:35:e4:2d:19:f1:57:c4:07:c2:c8:ad:6b:08:3a: 94:81:39:f7:d7:f7:f6:e2:cc:32:55:16:09:eb:c8: 35:61:ac:24:fa:b4:96:42:cd:c4:e3:89:81:38:df: 61:73:d8:89:f0:27:0c:7d:15:d1:90:b7:dd:5e:5c: 05:d7:ad:06:be:a7:c2:9d:d9:ab:a2:dc:3a:71:00: 00:69:cc:3e:c1:27:fe:cc:f3:a5:b8:97:e6:f4:f9: 6c:3d:de:e8:fd:02:3c:66:f4:f5:42:2e:2d:ca:c3: 97:af:fe:38:3b:0a:b9:b7:b2:ee:98:fa:5a:ed:3b: d3:db:a8:d2:b5:a3:61:69:a1:df:68:d9:f8:3f:f9: 14:ad Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6C:F8:5F:47:CC:99:83:78:0A:1A:C9:E0:E6:49:7D:B4:80:A2:FA:0D X509v3 Authority Key Identifier: keyid:A4:68:38:5E:38:F5:D5:8A:73:88:23:8F:2E:D3:05:55:78:A0:ED:5E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C5ED0/153A550A997311E8866F0060C4F9AE02/pGg4Xjj11YpziCOPLtMFVXig7V4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pGg4Xjj11YpziCOPLtMFVXig7V4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C5ED0/153A550A997311E8866F0060C4F9AE02/pGg4Xjj11YpziCOPLtMFVXig7V4.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a2:74:14:bf:86:ac:cf:0c:02:85:8d:34:d0:82:2d:e2:b4:84: 09:74:a2:88:f6:78:d1:00:2e:fa:6a:5e:79:0c:a9:1c:b3:ee: 94:9b:43:a0:00:11:25:b5:b4:ad:77:6c:3a:c2:c0:31:60:8c: 09:9e:93:0c:ee:ab:42:4c:39:3c:55:bc:f4:b2:79:d9:f1:92: 7a:15:ce:1b:25:93:ef:c4:b2:2f:a2:ec:a1:4b:58:33:6b:ab: 35:09:c7:84:f4:1c:b5:b3:66:a8:a3:90:6d:c2:68:83:a0:96: 30:65:ac:97:77:75:74:da:04:e8:94:cb:18:2a:4a:77:e2:9f: 87:27:3b:9c:b5:cf:2a:6d:b2:a6:3c:0b:5f:5c:66:b7:f1:60: 56:1a:7e:14:63:cd:f7:88:0b:ea:fc:8b:45:50:39:e4:ad:bd: df:0f:bd:fd:23:f0:64:38:f7:ea:3a:b7:6e:ed:2d:28:cd:f1: 33:38:54:99:bc:10:48:fe:c2:54:9b:3a:c8:39:7d:aa:4c:ad: 29:ac:1f:ad:b3:b0:67:4b:39:15:c0:73:a3:79:c3:49:1a:0d: 31:0b:ba:ea:2e:3d:40:d1:41:de:f5:03:d3:02:9c:c5:16:e3: 23:71:9b:00:15:b2:cf:30:e0:3d:b6:4f:8a:e4:7a:d3:69:a9: ad:79:da:ac -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCDYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzVFRDAxMTAvBgNVBAUTKEE0NjgzODVFMzhGNUQ1OEE3Mzg4MjM4RjJFRDMwNTU1 NzhBMEVENUUwHhcNMjUwODIyMTcwNTA4WhcNMjUwODI5MTcwNTA4WjAYMRYwFAYD VQQDEw02OGE4YTM0NS04OTlkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAv1Qq3wsnc9OoccqLJJL4WlrLwvmB4kQel+ZbGi+7AB77YayhaseTFz/oqztT eAT7DvK3y8PTTOwv4g0/hesGVT4tNcCS8cCUdGF3sWwF3jyTYyFdvmpw2/8AkPO9 +HJk867pwf5FUvEZY592OTNN/nWYl6Ig0hTtNeQtGfFXxAfCyK1rCDqUgTn31/f2 4swyVRYJ68g1Yawk+rSWQs3E44mBON9hc9iJ8CcMfRXRkLfdXlwF160GvqfCndmr otw6cQAAacw+wSf+zPOluJfm9PlsPd7o/QI8ZvT1Qi4tysOXr/44Owq5t7LumPpa 7TvT26jStaNhaaHfaNn4P/kUrQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFGz4X0fM mYN4ChrJ4OZJfbSAovoNMB8GA1UdIwQYMBaAFKRoOF449dWKc4gjjy7TBVV4oO1e MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDNUVEMC8xNTNBNTUwQTk5 NzMxMUU4ODY2RjAwNjBDNEY5QUUwMi9wR2c0WGpqMTFZcHppQ09QTHRNRlZYaWc3 VjQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3BHZzRYamoxMVlwemlDT1BMdE1GVlhpZzdWNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD NUVEMC8xNTNBNTUwQTk5NzMxMUU4ODY2RjAwNjBDNEY5QUUwMi9wR2c0WGpqMTFZ cHppQ09QTHRNRlZYaWc3VjQubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCidBS/hqzPDAKFjTTQgi3itIQJdKKI9njRAC76al55DKkcs+6Um0Og ABEltbStd2w6wsAxYIwJnpMM7qtCTDk8Vbz0snnZ8ZJ6Fc4bJZPvxLIvouyhS1gz a6s1CceE9By1s2aoo5BtwmiDoJYwZayXd3V02gTolMsYKkp34p+HJzuctc8qbbKm PAtfXGa38WBWGn4UY833iAvq/ItFUDnkrb3fD739I/BkOPfqOrdu7S0ozfEzOFSZ vBBI/sJUmzrIOX2qTK0prB+ts7BnSzkVwHOjecNJGg0xC7rqLj1A0UHe9QPTApzF FuMjcZsAFbLPMOA9tk+K5HrTaamtedqs -----END CERTIFICATE-----Generated at Sat Aug 23 19:42:35 2025 by rpki-client