$ rpki-client -vvf rpki.apnic.net/member_repository/A91C66B2/C4F15472201611F0A8D74314C4F9AE02/PzH7XY70fa043ZLqGonoiHFAOjE.mft File: PzH7XY70fa043ZLqGonoiHFAOjE.mft (raw, json) Hash identifier: 9NpCsUj++CjLtEFZvyrhym5YpFJl0aF3qlYpdvdJEdk= Subject key identifier: D0:E3:26:E4:A9:D8:87:D1:E9:F9:71:94:F2:42:DD:8F:51:E4:85:82 Authority key identifier: 3F:31:FB:5D:8E:F4:7D:AD:38:DD:92:EA:1A:89:E8:88:71:40:3A:31 Certificate issuer: /CN=A91C66B2/serialNumber=3F31FB5D8EF47DAD38DD92EA1A89E88871403A31 Certificate serial: 3F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PzH7XY70fa043ZLqGonoiHFAOjE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C66B2/C4F15472201611F0A8D74314C4F9AE02/PzH7XY70fa043ZLqGonoiHFAOjE.mft Manifest number: 3E Signing time: Sat 23 Aug 2025 07:43:37 +0000 Manifest this update: Sat 23 Aug 2025 07:43:37 +0000 Manifest next update: Sat 30 Aug 2025 07:43:37 +0000 Files and hashes: 1: PzH7XY70fa043ZLqGonoiHFAOjE.crl (hash: UsSasevtMpjeZk+1bCITYYe4kbT2prN7Y8gv+2fhD6Q=) 2: F8C50B08201711F0A5D51F16C4F9AE02.roa (hash: YsXcAlte05qmGIgWu2vJoEwWF+8nksJR/jWNa1FgQP4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C66B2/C4F15472201611F0A8D74314C4F9AE02/PzH7XY70fa043ZLqGonoiHFAOjE.crl rsync://rpki.apnic.net/member_repository/A91C66B2/C4F15472201611F0A8D74314C4F9AE02/PzH7XY70fa043ZLqGonoiHFAOjE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PzH7XY70fa043ZLqGonoiHFAOjE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Aug 2025 07:43:36 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 63 (0x3f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C66B2, serialNumber=3F31FB5D8EF47DAD38DD92EA1A89E88871403A31 Validity Not Before: Aug 23 07:43:37 2025 GMT Not After : Aug 30 07:43:37 2025 GMT Subject: CN=68a97129-d724 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:0c:f4:67:86:99:c1:38:99:d1:ed:3c:4e:62: 3d:0a:53:01:5d:c7:dd:e4:61:dc:02:09:c7:e8:84: cc:ad:1f:89:55:8f:c6:ac:05:7e:8f:e3:34:23:12: b0:b4:82:ee:e9:ae:0e:c4:3b:81:37:3f:43:f9:a5: 3a:4f:eb:4f:7e:71:1a:6f:0b:30:20:0b:ba:3f:1f: ee:e6:a2:a5:6e:05:aa:9a:79:7d:11:1a:78:89:ef: 1a:f5:e4:8d:77:a0:92:a6:6d:de:91:4f:97:0d:30: 18:fd:a0:11:5f:77:b6:0a:33:e1:7d:6b:b5:0d:a2: cb:c1:04:e4:24:7a:28:62:9f:3b:2d:03:e1:9e:bc: 65:fc:db:85:62:f5:ea:88:bd:52:86:a3:5a:14:d9: ee:1a:25:c8:33:09:d3:f7:92:4a:23:c5:4d:d7:cd: e0:07:01:f0:77:2b:9c:bb:f4:a1:c9:13:4e:65:cf: 65:ac:00:22:48:bb:b7:98:ff:7f:0b:7a:d5:c3:02: c1:8e:fd:07:12:d9:ac:5f:38:5f:1d:23:90:0f:13: d1:72:be:b9:9d:c6:ac:da:64:bc:f3:a3:f8:79:92: 73:ea:bc:a3:98:36:3d:65:97:84:86:b2:66:6b:5e: d1:83:21:b2:01:ef:f5:eb:e4:16:1a:61:22:54:08: c4:ab Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D0:E3:26:E4:A9:D8:87:D1:E9:F9:71:94:F2:42:DD:8F:51:E4:85:82 X509v3 Authority Key Identifier: keyid:3F:31:FB:5D:8E:F4:7D:AD:38:DD:92:EA:1A:89:E8:88:71:40:3A:31 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C66B2/C4F15472201611F0A8D74314C4F9AE02/PzH7XY70fa043ZLqGonoiHFAOjE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PzH7XY70fa043ZLqGonoiHFAOjE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C66B2/C4F15472201611F0A8D74314C4F9AE02/PzH7XY70fa043ZLqGonoiHFAOjE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 22:6f:40:7d:e7:41:1d:5a:82:7d:a5:f6:ce:30:ae:43:db:a0: 8d:5c:ff:d0:19:f5:23:87:38:02:e5:a9:b9:e5:12:7d:2a:31: 80:30:02:3f:f5:63:af:30:fe:55:e3:6f:65:1a:fe:e5:a0:7e: 7d:d7:3f:0b:af:58:9b:43:77:ec:84:0d:8c:3d:0d:c1:63:08: c6:fa:40:ba:df:9c:99:ae:e8:58:14:cd:8b:43:d7:51:5d:eb: ab:9f:f3:44:0d:5d:e0:6f:f4:c2:4a:7c:a8:96:07:95:f9:34: 73:f6:bd:e3:93:60:8d:63:c3:3f:d6:d1:8d:ad:86:52:f6:4d: 60:fc:b7:cd:85:57:39:59:d7:be:a4:23:2b:19:ab:6c:3a:46: 5e:34:49:b5:7c:a3:0e:d5:88:1d:7d:72:4e:ee:f7:c0:ce:44: 15:34:7a:d8:c3:43:a5:74:35:2e:93:11:77:9e:37:e8:80:20: 73:85:41:95:88:f0:a1:23:7d:8a:e3:b6:63:44:d8:37:22:6d: d9:2c:57:32:ab:1c:fc:6e:4e:5e:0b:9e:84:20:c6:a6:d5:2d: 5e:e4:70:ca:9f:6f:31:ed:b2:17:9b:42:c5:c6:f9:9b:9a:a9: b9:74:be:54:3a:12:82:4a:84:a0:f4:82:bf:39:20:00:62:85: d0:36:f9:ee -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBPzANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFD NjZCMjExMC8GA1UEBRMoM0YzMUZCNUQ4RUY0N0RBRDM4REQ5MkVBMUE4OUU4ODg3 MTQwM0EzMTAeFw0yNTA4MjMwNzQzMzdaFw0yNTA4MzAwNzQzMzdaMBgxFjAUBgNV BAMTDTY4YTk3MTI5LWQ3MjQwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQC1DPRnhpnBOJnR7TxOYj0KUwFdx93kYdwCCcfohMytH4lVj8asBX6P4zQjErC0 gu7prg7EO4E3P0P5pTpP609+cRpvCzAgC7o/H+7moqVuBaqaeX0RGniJ7xr15I13 oJKmbd6RT5cNMBj9oBFfd7YKM+F9a7UNosvBBOQkeihinzstA+GevGX824Vi9eqI vVKGo1oU2e4aJcgzCdP3kkojxU3XzeAHAfB3K5y79KHJE05lz2WsACJIu7eY/38L etXDAsGO/QcS2axfOF8dI5APE9FyvrmdxqzaZLzzo/h5knPqvKOYNj1ll4SGsmZr XtGDIbIB7/Xr5BYaYSJUCMSrAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQU0OMm5KnY h9Hp+XGU8kLdj1HkhYIwHwYDVR0jBBgwFoAUPzH7XY70fa043ZLqGonoiHFAOjEw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUM2NkIyL0M0RjE1NDcyMjAx NjExRjBBOEQ3NDMxNEM0RjlBRTAyL1B6SDdYWTcwZmEwNDNaTHFHb25vaUhGQU9q RS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvUHpIN1hZNzBmYTA0M1pMcUdvbm9pSEZBT2pFLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUM2 NkIyL0M0RjE1NDcyMjAxNjExRjBBOEQ3NDMxNEM0RjlBRTAyL1B6SDdYWTcwZmEw NDNaTHFHb25vaUhGQU9qRS5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBACJvQH3nQR1agn2l9s4wrkPboI1c/9AZ9SOHOALlqbnlEn0qMYAwAj/1 Y68w/lXjb2Ua/uWgfn3XPwuvWJtDd+yEDYw9DcFjCMb6QLrfnJmu6FgUzYtD11Fd 66uf80QNXeBv9MJKfKiWB5X5NHP2veOTYI1jwz/W0Y2thlL2TWD8t82FVzlZ176k IysZq2w6Rl40SbV8ow7ViB19ck7u98DORBU0etjDQ6V0NS6TEXeeN+iAIHOFQZWI 8KEjfYrjtmNE2DcibdksVzKrHPxuTl4LnoQgxqbVLV7kcMqfbzHtshebQsXG+Zua qbl0vlQ6EoJKhKD0gr85IABihdA2+e4= -----END CERTIFICATE-----Generated at Sat Aug 23 20:20:49 2025 by rpki-client