$ rpki-client -vvf rpki.apnic.net/member_repository/A91E2F2C/FFB761FA967811EA840F0029C4F9AE02/PDml0ZGM9lqyVjMi8PXxQwmme48.mft File: PDml0ZGM9lqyVjMi8PXxQwmme48.mft (raw, json) Hash identifier: QjetlkNbna07KQrhV3Z3fXfZoMNSfYKnjXnb5aZ138M= Subject key identifier: C1:6E:AB:62:69:0C:00:20:9A:C3:64:40:5D:08:3C:96:06:20:F9:39 Authority key identifier: 3C:39:A5:D1:91:8C:F6:5A:B2:56:33:22:F0:F5:F1:43:09:A6:7B:8F Certificate issuer: /CN=A91E2F2C/serialNumber=3C39A5D1918CF65AB2563322F0F5F14309A67B8F Certificate serial: 09B2 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PDml0ZGM9lqyVjMi8PXxQwmme48.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E2F2C/FFB761FA967811EA840F0029C4F9AE02/PDml0ZGM9lqyVjMi8PXxQwmme48.mft Manifest number: 09A0 Signing time: Fri 22 Aug 2025 20:14:38 +0000 Manifest this update: Fri 22 Aug 2025 20:14:38 +0000 Manifest next update: Fri 29 Aug 2025 20:14:38 +0000 Files and hashes: 1: PDml0ZGM9lqyVjMi8PXxQwmme48.crl (hash: A7RWBI5j1VI6MifYnmeSi3KCIu3s8N9tm/0Q34TF8o4=) 2: DE07328A778911ECBD9C7748C4F9AE02.roa (hash: V37MROUsA/Vlywtiw7YJvjwfZWxefXilScjM3KKgLC0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E2F2C/FFB761FA967811EA840F0029C4F9AE02/PDml0ZGM9lqyVjMi8PXxQwmme48.crl rsync://rpki.apnic.net/member_repository/A91E2F2C/FFB761FA967811EA840F0029C4F9AE02/PDml0ZGM9lqyVjMi8PXxQwmme48.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PDml0ZGM9lqyVjMi8PXxQwmme48.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Aug 2025 20:14:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2482 (0x9b2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E2F2C, serialNumber=3C39A5D1918CF65AB2563322F0F5F14309A67B8F Validity Not Before: Aug 22 20:14:38 2025 GMT Not After : Aug 29 20:14:38 2025 GMT Subject: CN=68a8cfae-d486 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dd:a9:e3:91:79:9e:fc:46:e3:7a:77:f8:42:ff: 94:14:68:1b:3f:53:84:e5:ee:a9:d4:82:7d:f6:66: 41:87:ed:33:3f:3f:2b:54:f5:8d:28:68:82:1c:4f: 8b:77:86:ac:03:35:d7:3e:5e:b5:48:cd:e7:8c:8f: 46:c8:16:26:c0:0d:2f:ca:55:b4:63:d9:ad:f8:c1: f8:b9:23:fe:31:77:9f:2b:cb:66:56:99:36:89:9d: 18:27:5c:18:8c:fc:9b:88:11:ee:7e:16:80:38:2e: 1d:5f:7c:a2:5c:7c:47:22:3a:3d:b0:dc:cf:89:d9: ac:3f:e3:9d:c2:59:69:66:4d:3c:3b:36:bf:87:b5: 84:9f:54:d9:9a:8e:de:b0:63:ed:db:2e:40:55:e9: de:4e:f5:48:21:52:97:57:5d:70:47:a7:1e:f6:a6: 0d:a3:a8:3a:7b:d0:96:a1:82:1a:a9:2b:2d:f3:c7: 5b:d9:a0:5f:ed:da:2e:63:93:02:aa:b4:20:b2:cf: 05:d4:52:e9:e5:cf:ca:57:a7:c8:e3:d1:ea:4c:20: cd:39:1d:4f:15:41:31:34:37:c0:fc:33:b6:42:8a: 56:cb:fc:62:67:77:d4:1d:88:d4:7b:fb:c8:3c:47: 26:f2:9f:e4:a0:6a:b0:4c:b6:83:e5:e3:03:7e:47: 94:b1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C1:6E:AB:62:69:0C:00:20:9A:C3:64:40:5D:08:3C:96:06:20:F9:39 X509v3 Authority Key Identifier: keyid:3C:39:A5:D1:91:8C:F6:5A:B2:56:33:22:F0:F5:F1:43:09:A6:7B:8F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E2F2C/FFB761FA967811EA840F0029C4F9AE02/PDml0ZGM9lqyVjMi8PXxQwmme48.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PDml0ZGM9lqyVjMi8PXxQwmme48.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E2F2C/FFB761FA967811EA840F0029C4F9AE02/PDml0ZGM9lqyVjMi8PXxQwmme48.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption ca:87:3a:1b:8c:d1:26:fe:b6:29:88:48:48:d1:76:4e:4f:20: 08:e3:b3:78:d7:5f:a9:0b:93:be:44:5a:5c:1f:28:38:2f:6f: c3:fa:f8:bf:6a:05:39:bd:94:58:be:10:58:c3:60:e4:66:2d: e8:b2:24:99:17:be:3a:fd:77:73:76:3a:c3:ba:57:40:f1:50: 78:a7:07:47:d4:62:bc:a9:92:c5:5d:58:a7:e3:83:b2:4b:b3: 57:bc:d4:c6:cf:ff:55:2f:50:a6:0e:fc:03:9e:1c:98:79:04: 4a:fa:e9:14:ea:67:82:8e:9b:4d:c4:26:e3:13:1c:e6:78:39: ac:09:d0:d6:80:f9:7b:4f:6e:f9:df:1f:30:e5:1c:a8:9d:ca: 37:84:cc:2b:52:e1:cd:33:c1:ae:ff:ef:03:34:df:05:f6:3d: 9d:3c:6c:bd:c9:5a:5c:0e:cf:d2:2c:15:ad:ea:89:9a:39:0c: e5:0b:77:80:c2:21:a1:ba:8d:15:52:53:1a:86:54:a8:c4:a0: 10:f3:d2:26:af:3a:c3:e8:0c:23:6b:58:ca:85:f6:be:4b:81: f0:3d:c9:87:82:b4:ef:72:69:27:50:90:6c:8f:67:8f:47:ca: fc:5a:6c:86:1b:f0:77:b8:dc:5b:89:9b:f4:a0:89:18:83:2a: 27:d5:35:bb -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCbIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTJGMkMxMTAvBgNVBAUTKDNDMzlBNUQxOTE4Q0Y2NUFCMjU2MzMyMkYwRjVGMTQz MDlBNjdCOEYwHhcNMjUwODIyMjAxNDM4WhcNMjUwODI5MjAxNDM4WjAYMRYwFAYD VQQDEw02OGE4Y2ZhZS1kNDg2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA3anjkXme/Ebjenf4Qv+UFGgbP1OE5e6p1IJ99mZBh+0zPz8rVPWNKGiCHE+L d4asAzXXPl61SM3njI9GyBYmwA0vylW0Y9mt+MH4uSP+MXefK8tmVpk2iZ0YJ1wY jPybiBHufhaAOC4dX3yiXHxHIjo9sNzPidmsP+OdwllpZk08Oza/h7WEn1TZmo7e sGPt2y5AVeneTvVIIVKXV11wR6ce9qYNo6g6e9CWoYIaqSst88db2aBf7douY5MC qrQgss8F1FLp5c/KV6fI49HqTCDNOR1PFUExNDfA/DO2QopWy/xiZ3fUHYjUe/vI PEcm8p/koGqwTLaD5eMDfkeUsQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFMFuq2Jp DAAgmsNkQF0IPJYGIPk5MB8GA1UdIwQYMBaAFDw5pdGRjPZaslYzIvD18UMJpnuP MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFMkYyQy9GRkI3NjFGQTk2 NzgxMUVBODQwRjAwMjlDNEY5QUUwMi9QRG1sMFpHTTlscXlWak1pOFBYeFF3bW1l NDguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1BEbWwwWkdNOWxxeVZqTWk4UFh4UXdtbWU0OC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF MkYyQy9GRkI3NjFGQTk2NzgxMUVBODQwRjAwMjlDNEY5QUUwMi9QRG1sMFpHTTls cXlWak1pOFBYeFF3bW1lNDgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQDKhzobjNEm/rYpiEhI0XZOTyAI47N411+pC5O+RFpcHyg4L2/D+vi/ agU5vZRYvhBYw2DkZi3osiSZF746/XdzdjrDuldA8VB4pwdH1GK8qZLFXVin44Oy S7NXvNTGz/9VL1CmDvwDnhyYeQRK+ukU6meCjptNxCbjExzmeDmsCdDWgPl7T275 3x8w5Ryonco3hMwrUuHNM8Gu/+8DNN8F9j2dPGy9yVpcDs/SLBWt6omaOQzlC3eA wiGhuo0VUlMahlSoxKAQ89ImrzrD6Awja1jKhfa+S4HwPcmHgrTvcmknUJBsj2eP R8r8WmyGG/B3uNxbiZv0oIkYgyon1TW7 -----END CERTIFICATE-----Generated at Sun Aug 24 04:48:57 2025 by rpki-client