$ rpki-client -vvf rpki.apnic.net/member_repository/A91DD902/570B3F8EC92611EDAF2B9D4DC4F9AE02/pnTGcB4rDOPRB-nyNsVc7-aHaPE.mft File: pnTGcB4rDOPRB-nyNsVc7-aHaPE.mft (raw, json) Hash identifier: nyw+N6bExVbF3xSvGGAl/58VonQoUZTAubiPJ/J/evM= Subject key identifier: 76:62:27:98:E3:F4:78:3C:54:6D:E0:2F:93:87:01:2D:24:6B:48:F0 Authority key identifier: A6:74:C6:70:1E:2B:0C:E3:D1:07:E9:F2:36:C5:5C:EF:E6:87:68:F1 Certificate issuer: /CN=A91DD902/serialNumber=A674C6701E2B0CE3D107E9F236C55CEFE68768F1 Certificate serial: 01CB Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pnTGcB4rDOPRB-nyNsVc7-aHaPE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91DD902/570B3F8EC92611EDAF2B9D4DC4F9AE02/pnTGcB4rDOPRB-nyNsVc7-aHaPE.mft Manifest number: 01C7 Signing time: Sat 23 Aug 2025 03:02:42 +0000 Manifest this update: Sat 23 Aug 2025 03:02:41 +0000 Manifest next update: Sat 30 Aug 2025 03:02:41 +0000 Files and hashes: 1: pnTGcB4rDOPRB-nyNsVc7-aHaPE.crl (hash: he6uKAvJT0wSvmVy305e7gV9HiRtIKPx3aaUXquJTfM=) 2: 33A48584C92911EDAE3AB84EC4F9AE02.roa (hash: FLrBHslp5iyCkfQbrVJ9NSbQz6e94p5SbxYxtxyABAU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91DD902/570B3F8EC92611EDAF2B9D4DC4F9AE02/pnTGcB4rDOPRB-nyNsVc7-aHaPE.crl rsync://rpki.apnic.net/member_repository/A91DD902/570B3F8EC92611EDAF2B9D4DC4F9AE02/pnTGcB4rDOPRB-nyNsVc7-aHaPE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pnTGcB4rDOPRB-nyNsVc7-aHaPE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Aug 2025 03:02:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 459 (0x1cb) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DD902, serialNumber=A674C6701E2B0CE3D107E9F236C55CEFE68768F1 Validity Not Before: Aug 23 03:02:41 2025 GMT Not After : Aug 30 03:02:41 2025 GMT Subject: CN=68a92f52-13e9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c5:21:81:ae:59:16:39:b9:4f:34:88:f2:b4:58: d5:f3:29:ab:dd:ad:ba:b8:98:c7:55:88:4e:eb:88: 54:27:2b:9f:de:82:a3:fc:01:f4:f2:3a:f4:db:3b: a4:8a:60:67:2d:cd:1b:14:81:60:44:35:a6:96:8a: 27:5f:9b:31:11:7b:db:df:f1:39:d9:c4:3e:f4:66: fb:6f:46:b7:a2:51:4e:94:72:6b:b2:00:98:ae:f4: cb:d9:25:30:65:c5:9c:8b:5c:35:8d:1a:67:58:47: 8f:22:3e:f2:0f:39:87:a4:a8:a3:f0:26:94:22:21: 20:77:ae:1d:7b:13:cd:bf:26:c9:07:de:26:7e:17: 59:74:9b:fc:a9:56:ec:80:6e:67:3d:a8:c1:b8:ac: 0b:cf:8f:f0:d4:c9:90:f4:cd:bf:fe:6c:cd:4d:4d: 6c:9a:c7:66:c3:77:46:6d:2d:8c:c7:87:24:7d:9f: 3b:c8:bf:67:91:c6:10:a1:6e:d7:56:30:c7:30:b1: f3:83:53:a7:80:16:2c:df:64:14:69:83:0d:a0:65: ec:a8:64:ff:50:0c:de:07:15:bb:f1:37:1a:bc:61: 11:e5:46:dc:7b:07:44:f3:cc:cd:ca:77:12:15:ce: 8a:39:52:bf:c1:d9:34:82:54:e3:d6:c3:3f:f8:b7: 9a:65 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 76:62:27:98:E3:F4:78:3C:54:6D:E0:2F:93:87:01:2D:24:6B:48:F0 X509v3 Authority Key Identifier: keyid:A6:74:C6:70:1E:2B:0C:E3:D1:07:E9:F2:36:C5:5C:EF:E6:87:68:F1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91DD902/570B3F8EC92611EDAF2B9D4DC4F9AE02/pnTGcB4rDOPRB-nyNsVc7-aHaPE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pnTGcB4rDOPRB-nyNsVc7-aHaPE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DD902/570B3F8EC92611EDAF2B9D4DC4F9AE02/pnTGcB4rDOPRB-nyNsVc7-aHaPE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 25:4d:86:43:8d:62:89:55:de:76:8d:d5:06:6c:96:aa:fc:ee: 2c:d9:d1:af:ef:21:32:92:45:54:cc:1a:15:27:24:e0:a8:24: 45:00:d4:96:a9:8a:e3:13:e3:ec:3b:2e:be:ac:6c:4c:ac:27: 8f:b6:a8:13:31:1d:43:76:1b:28:8e:3b:71:43:6e:55:eb:54: 97:d7:0a:af:ee:0a:a7:e7:a1:11:19:6e:0a:81:55:ae:5e:99: 19:b9:4f:7d:7c:e5:34:d4:af:3b:3d:4c:b1:5f:9a:e3:6d:15: a9:fe:dd:74:e1:f7:f1:65:70:7d:39:e2:91:ce:b6:5d:fe:bf: ba:86:82:90:c9:a3:24:f1:af:7d:c6:22:b9:91:39:74:d4:96: 01:75:ba:1f:2a:f4:bf:c7:39:76:43:55:13:4c:f4:65:42:38: a0:b9:19:ab:ff:ee:2c:bd:68:e9:7b:8d:29:5a:48:93:10:43: 7d:fc:51:90:26:68:80:b1:ac:7e:ac:97:64:b1:ad:4e:2e:c8: 66:db:63:66:03:aa:c6:32:b4:84:a4:49:f0:f4:ee:3f:54:87: 33:d2:ed:6e:dc:0f:26:ad:5e:18:d7:76:dc:86:d1:a8:26:3f: d0:cb:c2:a6:48:07:a0:6c:32:dd:14:24:ad:84:13:09:17:4b: e1:f0:0b:ab -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAcswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx REQ5MDIxMTAvBgNVBAUTKEE2NzRDNjcwMUUyQjBDRTNEMTA3RTlGMjM2QzU1Q0VG RTY4NzY4RjEwHhcNMjUwODIzMDMwMjQxWhcNMjUwODMwMDMwMjQxWjAYMRYwFAYD VQQDEw02OGE5MmY1Mi0xM2U5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxSGBrlkWOblPNIjytFjV8ymr3a26uJjHVYhO64hUJyuf3oKj/AH08jr02zuk imBnLc0bFIFgRDWmloonX5sxEXvb3/E52cQ+9Gb7b0a3olFOlHJrsgCYrvTL2SUw ZcWci1w1jRpnWEePIj7yDzmHpKij8CaUIiEgd64dexPNvybJB94mfhdZdJv8qVbs gG5nPajBuKwLz4/w1MmQ9M2//mzNTU1smsdmw3dGbS2Mx4ckfZ87yL9nkcYQoW7X VjDHMLHzg1OngBYs32QUaYMNoGXsqGT/UAzeBxW78TcavGER5UbcewdE88zNyncS Fc6KOVK/wdk0glTj1sM/+LeaZQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFHZiJ5jj 9Hg8VG3gL5OHAS0ka0jwMB8GA1UdIwQYMBaAFKZ0xnAeKwzj0Qfp8jbFXO/mh2jx MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFERDkwMi81NzBCM0Y4RUM5 MjYxMUVEQUYyQjlENERDNEY5QUUwMi9wblRHY0I0ckRPUFJCLW55TnNWYzctYUhh UEUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3BuVEdjQjRyRE9QUkItbnlOc1ZjNy1hSGFQRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE RDkwMi81NzBCM0Y4RUM5MjYxMUVEQUYyQjlENERDNEY5QUUwMi9wblRHY0I0ckRP UFJCLW55TnNWYzctYUhhUEUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAlTYZDjWKJVd52jdUGbJaq/O4s2dGv7yEykkVUzBoVJyTgqCRFANSW qYrjE+PsOy6+rGxMrCePtqgTMR1DdhsojjtxQ25V61SX1wqv7gqn56ERGW4KgVWu XpkZuU99fOU01K87PUyxX5rjbRWp/t104ffxZXB9OeKRzrZd/r+6hoKQyaMk8a99 xiK5kTl01JYBdbofKvS/xzl2Q1UTTPRlQjiguRmr/+4svWjpe40pWkiTEEN9/FGQ JmiAsax+rJdksa1OLshm22NmA6rGMrSEpEnw9O4/VIcz0u1u3A8mrV4Y13bchtGo Jj/Qy8KmSAegbDLdFCSthBMJF0vh8Aur -----END CERTIFICATE-----Generated at Sat Aug 23 16:28:31 2025 by rpki-client