$ rpki-client -vvf rpki.apnic.net/member_repository/A91C8307/3432F60CBECD11EF98C74132C4F9AE02/PdCVvno70d2CniomSfx-gafv40w.mft File: PdCVvno70d2CniomSfx-gafv40w.mft (raw, json) Hash identifier: l6yfDVfYe14a+7bgo5hqqYdGjRapVmCIMi/PJA2wweY= Subject key identifier: EA:94:75:C6:EC:30:3B:3D:A0:F6:E1:2F:4B:BD:7D:EB:DA:41:5B:35 Authority key identifier: 3D:D0:95:BE:7A:3B:D1:DD:82:9E:2A:26:49:FC:7E:81:A7:EF:E3:4C Certificate issuer: /CN=A91C8307/serialNumber=3DD095BE7A3BD1DD829E2A2649FC7E81A7EFE34C Certificate serial: 80 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PdCVvno70d2CniomSfx-gafv40w.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C8307/3432F60CBECD11EF98C74132C4F9AE02/PdCVvno70d2CniomSfx-gafv40w.mft Manifest number: 7F Signing time: Sat 23 Aug 2025 06:56:34 +0000 Manifest this update: Sat 23 Aug 2025 06:56:33 +0000 Manifest next update: Sat 30 Aug 2025 06:56:33 +0000 Files and hashes: 1: PdCVvno70d2CniomSfx-gafv40w.crl (hash: nTcGCnJvmwwk6pkPOXZS4wgywIE3ctUAFmca0IaVrbc=) 2: DEDB3932BED411EF835BB47AC4F9AE02.roa (hash: O2sa7pTiQKdOhkw1Yh9cM+13JLJmRbo0IeSALJBybOk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C8307/3432F60CBECD11EF98C74132C4F9AE02/PdCVvno70d2CniomSfx-gafv40w.crl rsync://rpki.apnic.net/member_repository/A91C8307/3432F60CBECD11EF98C74132C4F9AE02/PdCVvno70d2CniomSfx-gafv40w.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PdCVvno70d2CniomSfx-gafv40w.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Aug 2025 06:56:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 128 (0x80) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C8307, serialNumber=3DD095BE7A3BD1DD829E2A2649FC7E81A7EFE34C Validity Not Before: Aug 23 06:56:33 2025 GMT Not After : Aug 30 06:56:33 2025 GMT Subject: CN=68a96621-aa86 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:0c:b2:ae:5c:e3:ee:35:73:81:26:38:69:55: 48:13:0b:7c:ee:72:29:0d:56:67:72:65:73:d8:8b: 9e:dc:42:83:70:01:90:ce:63:90:cf:4f:e5:15:be: 37:80:73:0e:b1:ab:fd:2e:ac:e2:c1:d8:5b:ed:d9: f0:32:da:10:19:c2:8b:18:5f:d0:95:64:16:1f:29: d0:09:c4:13:37:cc:e5:6b:6e:14:e2:41:ce:5a:0e: e3:bb:bf:90:28:8d:51:f1:e4:bd:c1:e6:0f:95:38: 1b:b9:be:59:07:4a:a7:53:28:8d:c2:1a:1f:93:4f: aa:71:b2:58:b3:a3:c3:99:66:8b:3b:16:39:9e:25: 2c:7b:34:b5:f9:f9:a9:06:15:0a:1d:19:bd:b3:16: be:e4:73:2b:e6:5a:21:c8:46:f4:13:ac:35:e8:b9: 0c:67:a2:99:87:67:15:70:e7:22:96:70:e0:dd:52: f0:1e:0f:e4:15:4e:fb:1e:7b:6d:d6:11:d7:45:ad: a7:7e:b8:e4:87:81:31:e1:fd:86:d8:dc:fd:67:8b: 46:31:e1:63:2d:65:73:09:6a:05:34:53:2c:59:07: 08:80:14:74:4b:1d:c5:1a:c3:1c:f6:9e:df:11:e2: 39:e4:d2:1d:cb:5b:8b:5e:9a:a9:ef:8a:c2:4b:e3: a9:79 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EA:94:75:C6:EC:30:3B:3D:A0:F6:E1:2F:4B:BD:7D:EB:DA:41:5B:35 X509v3 Authority Key Identifier: keyid:3D:D0:95:BE:7A:3B:D1:DD:82:9E:2A:26:49:FC:7E:81:A7:EF:E3:4C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C8307/3432F60CBECD11EF98C74132C4F9AE02/PdCVvno70d2CniomSfx-gafv40w.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PdCVvno70d2CniomSfx-gafv40w.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C8307/3432F60CBECD11EF98C74132C4F9AE02/PdCVvno70d2CniomSfx-gafv40w.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 2b:02:0a:5d:22:1f:7e:b4:0d:6f:68:3e:01:9b:e7:f4:10:2e: f1:eb:db:3b:b7:60:cb:c0:fb:30:b5:b0:59:82:8b:22:06:59: 96:4f:7f:c5:68:7c:f4:a7:72:ef:3f:63:04:a4:eb:37:e4:d1: 8b:02:5d:9f:90:e7:21:95:74:08:b8:60:f4:6a:88:2a:f2:9a: 6d:f5:88:7e:69:59:f7:96:3b:e4:07:7c:5b:a2:63:cd:e2:68: 7a:7d:08:44:e0:fc:1d:d4:dd:05:5f:60:45:1a:c7:a5:09:0c: a6:6d:ad:44:b3:4f:7d:64:4c:26:a9:ab:df:ea:a6:5e:2d:77: ba:24:85:f5:2a:42:ca:8d:71:3e:b1:3c:fd:f0:f8:d9:ed:08: 3e:2f:f2:e6:30:a8:cf:01:3f:e0:14:d1:ef:d0:b5:3b:ad:21: b9:5d:47:4e:b2:2f:7d:b9:cf:97:f3:5f:b1:f7:ab:00:af:cf: 1e:5c:92:e9:d9:43:44:60:46:7c:4d:2b:cb:ce:ac:71:e6:8a: 27:9e:b2:08:9b:5b:bc:d8:d3:eb:db:e6:6d:50:8c:38:2c:4a: 89:05:43:eb:f0:35:99:fe:a1:cb:1b:2c:c3:02:a5:78:79:1e: b2:28:c8:b2:a1:34:e5:46:a3:2f:a2:e0:e3:88:8f:30:7d:ec: 90:35:62:8c -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAIAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzgzMDcxMTAvBgNVBAUTKDNERDA5NUJFN0EzQkQxREQ4MjlFMkEyNjQ5RkM3RTgx QTdFRkUzNEMwHhcNMjUwODIzMDY1NjMzWhcNMjUwODMwMDY1NjMzWjAYMRYwFAYD VQQDEw02OGE5NjYyMS1hYTg2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwAyyrlzj7jVzgSY4aVVIEwt87nIpDVZncmVz2Iue3EKDcAGQzmOQz0/lFb43 gHMOsav9Lqziwdhb7dnwMtoQGcKLGF/QlWQWHynQCcQTN8zla24U4kHOWg7ju7+Q KI1R8eS9weYPlTgbub5ZB0qnUyiNwhofk0+qcbJYs6PDmWaLOxY5niUsezS1+fmp BhUKHRm9sxa+5HMr5lohyEb0E6w16LkMZ6KZh2cVcOcilnDg3VLwHg/kFU77Hntt 1hHXRa2nfrjkh4Ex4f2G2Nz9Z4tGMeFjLWVzCWoFNFMsWQcIgBR0Sx3FGsMc9p7f EeI55NIdy1uLXpqp74rCS+OpeQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFOqUdcbs MDs9oPbhL0u9fevaQVs1MB8GA1UdIwQYMBaAFD3Qlb56O9Hdgp4qJkn8foGn7+NM MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDODMwNy8zNDMyRjYwQ0JF Q0QxMUVGOThDNzQxMzJDNEY5QUUwMi9QZENWdm5vNzBkMkNuaW9tU2Z4LWdhZnY0 MHcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1BkQ1Z2bm83MGQyQ25pb21TZngtZ2FmdjQwdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD ODMwNy8zNDMyRjYwQ0JFQ0QxMUVGOThDNzQxMzJDNEY5QUUwMi9QZENWdm5vNzBk MkNuaW9tU2Z4LWdhZnY0MHcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQArAgpdIh9+tA1vaD4Bm+f0EC7x69s7t2DLwPswtbBZgosiBlmWT3/F aHz0p3LvP2MEpOs35NGLAl2fkOchlXQIuGD0aogq8ppt9Yh+aVn3ljvkB3xbomPN 4mh6fQhE4Pwd1N0FX2BFGselCQymba1Es099ZEwmqavf6qZeLXe6JIX1KkLKjXE+ sTz98PjZ7Qg+L/LmMKjPAT/gFNHv0LU7rSG5XUdOsi99uc+X81+x96sAr88eXJLp 2UNEYEZ8TSvLzqxx5oonnrIIm1u82NPr2+ZtUIw4LEqJBUPr8DWZ/qHLGyzDAqV4 eR6yKMiyoTTlRqMvouDjiI8wfeyQNWKM -----END CERTIFICATE-----Generated at Sat Aug 23 21:24:01 2025 by rpki-client