$ rpki-client -vvf rpki.apnic.net/member_repository/A91E2F2C/FFB761FA967811EA840F0029C4F9AE02/PDml0ZGM9lqyVjMi8PXxQwmme48.mft File: PDml0ZGM9lqyVjMi8PXxQwmme48.mft (raw, json) Hash identifier: 3IFu/9UarszCqyo1KQuYIMconsVClsU6s6um59WrBPQ= Subject key identifier: 69:61:C9:A6:7C:F2:CD:A7:05:B4:47:D2:D5:EB:14:99:C7:8A:C4:72 Authority key identifier: 3C:39:A5:D1:91:8C:F6:5A:B2:56:33:22:F0:F5:F1:43:09:A6:7B:8F Certificate issuer: /CN=A91E2F2C/serialNumber=3C39A5D1918CF65AB2563322F0F5F14309A67B8F Certificate serial: 0998 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PDml0ZGM9lqyVjMi8PXxQwmme48.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E2F2C/FFB761FA967811EA840F0029C4F9AE02/PDml0ZGM9lqyVjMi8PXxQwmme48.mft Manifest number: 0986 Signing time: Wed 02 Jul 2025 20:24:40 +0000 Manifest this update: Wed 02 Jul 2025 20:24:39 +0000 Manifest next update: Wed 09 Jul 2025 20:24:39 +0000 Files and hashes: 1: PDml0ZGM9lqyVjMi8PXxQwmme48.crl (hash: q9dVQrRbtSnFK+uqOEbsogDIxwxXjfxo64TMwKiHSPs=) 2: DE07328A778911ECBD9C7748C4F9AE02.roa (hash: V37MROUsA/Vlywtiw7YJvjwfZWxefXilScjM3KKgLC0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E2F2C/FFB761FA967811EA840F0029C4F9AE02/PDml0ZGM9lqyVjMi8PXxQwmme48.crl rsync://rpki.apnic.net/member_repository/A91E2F2C/FFB761FA967811EA840F0029C4F9AE02/PDml0ZGM9lqyVjMi8PXxQwmme48.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PDml0ZGM9lqyVjMi8PXxQwmme48.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 09 Jul 2025 20:24:39 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2456 (0x998) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E2F2C, serialNumber=3C39A5D1918CF65AB2563322F0F5F14309A67B8F Validity Not Before: Jul 2 20:24:39 2025 GMT Not After : Jul 9 20:24:39 2025 GMT Subject: CN=68659588-fa77 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:30:d1:f0:cc:63:41:ec:20:94:5d:e6:a1:c4: 8d:6c:14:48:7d:22:46:56:87:86:d8:d8:ac:32:2d: 1b:cf:48:f6:5f:f4:90:ca:0a:3f:5a:2c:31:ad:30: f3:26:57:84:fa:a0:3c:b1:a0:fb:9c:6c:a3:a7:32: 04:86:9a:30:55:c4:27:93:08:4c:a0:c1:91:ad:40: 03:3e:54:c3:b3:20:b1:45:ad:8d:7b:82:c0:5f:b6: 05:c3:de:d0:88:c3:af:e5:40:41:da:3c:76:31:55: 6d:91:57:e3:a6:6b:da:46:33:98:70:06:54:44:a6: 6f:83:2b:15:b6:9b:07:f9:1e:00:45:76:17:f0:18: a3:4b:c8:bd:11:4b:38:fd:14:a4:64:f1:1e:66:64: 02:16:70:42:22:dc:b5:e8:b0:b1:db:09:34:e5:5b: c8:ad:84:be:20:92:c1:56:be:82:da:74:12:c3:d7: 6c:6c:41:7f:54:da:e6:3a:a1:39:89:75:65:98:68: b7:2d:94:b9:ff:2c:50:d4:f4:22:8c:68:a2:17:c0: eb:ef:80:6b:f5:cd:42:8a:a7:b0:44:2c:80:29:91: 97:40:e8:28:e7:37:99:5c:ea:bd:01:04:16:ac:c1: 17:d1:52:6a:80:d4:b6:15:9e:85:7e:e6:ab:6e:8a: f2:ef Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 69:61:C9:A6:7C:F2:CD:A7:05:B4:47:D2:D5:EB:14:99:C7:8A:C4:72 X509v3 Authority Key Identifier: keyid:3C:39:A5:D1:91:8C:F6:5A:B2:56:33:22:F0:F5:F1:43:09:A6:7B:8F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E2F2C/FFB761FA967811EA840F0029C4F9AE02/PDml0ZGM9lqyVjMi8PXxQwmme48.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PDml0ZGM9lqyVjMi8PXxQwmme48.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E2F2C/FFB761FA967811EA840F0029C4F9AE02/PDml0ZGM9lqyVjMi8PXxQwmme48.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption ae:ae:6c:7c:12:82:86:a6:1a:e5:f2:c4:6b:de:2c:c2:58:d0: 12:b6:4c:44:3f:ea:1c:76:fc:0d:93:c8:58:b0:24:31:b3:a2: 6c:c0:19:fa:d6:1e:a9:86:9b:90:c9:0d:f3:bf:0b:a5:98:12: 7b:eb:48:54:63:49:2c:c0:19:45:7d:31:7f:33:c2:2a:63:a4: e5:30:bd:60:be:df:56:57:5c:21:60:fd:15:98:50:25:43:9a: 40:57:96:b4:cc:53:24:e5:1a:e8:35:3a:bf:b2:8b:94:16:fa: 16:92:63:eb:2b:fd:eb:05:ad:43:e8:55:8e:93:87:06:c3:17: 70:28:0c:56:c0:34:a8:e9:7d:ff:1f:0e:5a:de:db:95:4d:dc: 0e:89:ae:01:a2:29:fd:00:62:f5:2d:f9:8d:9d:29:87:e3:37: a3:a4:10:3a:9e:18:67:46:71:2b:97:64:8f:f7:d8:50:ad:f3: b7:3a:eb:ff:35:48:e8:62:8c:2f:5c:2b:e2:24:52:86:cc:81: 9d:8f:a5:95:14:5b:dc:13:71:d8:2f:0e:b8:d9:57:11:aa:eb: 2a:e8:47:cd:22:a6:de:72:29:78:43:28:3f:ab:2a:02:78:cb: 07:29:23:67:32:5c:66:70:de:07:60:46:7d:ff:9e:00:7d:e2: c7:ff:db:a6 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCZgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTJGMkMxMTAvBgNVBAUTKDNDMzlBNUQxOTE4Q0Y2NUFCMjU2MzMyMkYwRjVGMTQz MDlBNjdCOEYwHhcNMjUwNzAyMjAyNDM5WhcNMjUwNzA5MjAyNDM5WjAYMRYwFAYD VQQDEw02ODY1OTU4OC1mYTc3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAujDR8MxjQewglF3mocSNbBRIfSJGVoeG2NisMi0bz0j2X/SQygo/WiwxrTDz JleE+qA8saD7nGyjpzIEhpowVcQnkwhMoMGRrUADPlTDsyCxRa2Ne4LAX7YFw97Q iMOv5UBB2jx2MVVtkVfjpmvaRjOYcAZURKZvgysVtpsH+R4ARXYX8BijS8i9EUs4 /RSkZPEeZmQCFnBCIty16LCx2wk05VvIrYS+IJLBVr6C2nQSw9dsbEF/VNrmOqE5 iXVlmGi3LZS5/yxQ1PQijGiiF8Dr74Br9c1CiqewRCyAKZGXQOgo5zeZXOq9AQQW rMEX0VJqgNS2FZ6Ffuarbory7wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFGlhyaZ8 8s2nBbRH0tXrFJnHisRyMB8GA1UdIwQYMBaAFDw5pdGRjPZaslYzIvD18UMJpnuP MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFMkYyQy9GRkI3NjFGQTk2 NzgxMUVBODQwRjAwMjlDNEY5QUUwMi9QRG1sMFpHTTlscXlWak1pOFBYeFF3bW1l NDguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1BEbWwwWkdNOWxxeVZqTWk4UFh4UXdtbWU0OC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF MkYyQy9GRkI3NjFGQTk2NzgxMUVBODQwRjAwMjlDNEY5QUUwMi9QRG1sMFpHTTls cXlWak1pOFBYeFF3bW1lNDgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCurmx8EoKGphrl8sRr3izCWNAStkxEP+ocdvwNk8hYsCQxs6JswBn6 1h6phpuQyQ3zvwulmBJ760hUY0kswBlFfTF/M8IqY6TlML1gvt9WV1whYP0VmFAl Q5pAV5a0zFMk5RroNTq/souUFvoWkmPrK/3rBa1D6FWOk4cGwxdwKAxWwDSo6X3/ Hw5a3tuVTdwOia4Boin9AGL1LfmNnSmH4zejpBA6nhhnRnErl2SP99hQrfO3Ouv/ NUjoYowvXCviJFKGzIGdj6WVFFvcE3HYLw642VcRqusq6EfNIqbecil4Qyg/qyoC eMsHKSNnMlxmcN4HYEZ9/54AfeLH/9um -----END CERTIFICATE-----Generated at Thu Jul 3 15:01:17 2025 by rpki-client