$ rpki-client -vvf rpki.apnic.net/member_repository/A91F02EA/DB15CDE011DB11EA95F2B059C4F9AE02/PShwiOOGgqTkudgoRQszZr3q1d0.mft File: PShwiOOGgqTkudgoRQszZr3q1d0.mft (raw, json) Hash identifier: IsmEGB1uMPiAaTXDGfsfNWtcM2dOdgcMGAw5BHN2QSw= Subject key identifier: 1F:6E:BA:99:2B:3D:8F:92:5C:F6:0F:C2:1B:FE:55:3D:AB:69:C7:09 Authority key identifier: 3D:28:70:88:E3:86:82:A4:E4:B9:D8:28:45:0B:33:66:BD:EA:D5:DD Certificate issuer: /CN=A91F02EA/serialNumber=3D287088E38682A4E4B9D828450B3366BDEAD5DD Certificate serial: 0C46 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PShwiOOGgqTkudgoRQszZr3q1d0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F02EA/DB15CDE011DB11EA95F2B059C4F9AE02/PShwiOOGgqTkudgoRQszZr3q1d0.mft Manifest number: 0C36 Signing time: Fri 22 Aug 2025 18:46:53 +0000 Manifest this update: Fri 22 Aug 2025 18:46:53 +0000 Manifest next update: Fri 29 Aug 2025 18:46:53 +0000 Files and hashes: 1: PShwiOOGgqTkudgoRQszZr3q1d0.crl (hash: sD1bTebOcjttalp5j1LNaHFbFKZFhknRpRxIxCrszE8=) 2: 7716938A416211EB9B0F3C54C4F9AE02.roa (hash: SaoXuslBHecNHa04UZ0EBB+W8ns+FIPHvzYnnMHMCbU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F02EA/DB15CDE011DB11EA95F2B059C4F9AE02/PShwiOOGgqTkudgoRQszZr3q1d0.crl rsync://rpki.apnic.net/member_repository/A91F02EA/DB15CDE011DB11EA95F2B059C4F9AE02/PShwiOOGgqTkudgoRQszZr3q1d0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PShwiOOGgqTkudgoRQszZr3q1d0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Aug 2025 18:46:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3142 (0xc46) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F02EA, serialNumber=3D287088E38682A4E4B9D828450B3366BDEAD5DD Validity Not Before: Aug 22 18:46:53 2025 GMT Not After : Aug 29 18:46:53 2025 GMT Subject: CN=68a8bb1d-79a6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d0:2a:1c:e7:f9:fb:47:d4:f8:5b:65:2c:b0:fa: 5e:50:9b:35:97:88:ef:1f:20:37:8d:fd:a4:1b:ce: c6:eb:19:37:d4:2c:02:f7:4a:3b:62:ab:e2:b2:eb: 0a:bc:24:9a:cf:9f:bc:45:2d:3e:42:d8:0c:2e:26: d8:66:ea:f1:5d:1a:75:3f:78:77:85:9c:cb:e8:31: e1:78:3e:9c:16:08:9d:b3:91:4d:06:92:89:9f:97: 2e:38:b0:1b:74:4c:75:50:3a:67:be:8d:17:aa:f4: f6:47:3b:85:9e:e7:f5:13:61:24:65:ea:39:22:69: c9:58:33:71:ca:29:c9:83:69:18:cf:e1:76:33:34: 35:66:be:a5:08:58:5c:07:5e:be:33:99:d2:8b:27: 91:79:41:79:36:5d:78:8e:f7:b8:34:76:e7:45:fc: c6:25:a9:95:ba:b1:98:32:2b:33:d5:b6:88:55:93: 90:04:79:2e:3d:54:9d:b8:58:7e:1f:ef:59:3d:16: cc:61:d6:34:40:3f:af:8f:2a:a1:ed:04:c5:c4:04: 7b:ca:eb:34:0d:bd:38:10:73:d1:48:5f:34:96:60: 22:89:c7:74:89:fd:12:91:a3:cb:a2:ce:24:fc:d9: 96:7f:7c:61:b5:bd:05:58:e9:3b:1a:5c:fb:9d:ee: 46:b3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1F:6E:BA:99:2B:3D:8F:92:5C:F6:0F:C2:1B:FE:55:3D:AB:69:C7:09 X509v3 Authority Key Identifier: keyid:3D:28:70:88:E3:86:82:A4:E4:B9:D8:28:45:0B:33:66:BD:EA:D5:DD X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F02EA/DB15CDE011DB11EA95F2B059C4F9AE02/PShwiOOGgqTkudgoRQszZr3q1d0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PShwiOOGgqTkudgoRQszZr3q1d0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F02EA/DB15CDE011DB11EA95F2B059C4F9AE02/PShwiOOGgqTkudgoRQszZr3q1d0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 0f:aa:35:91:ed:e1:9a:6b:76:6c:4d:98:45:35:05:f0:2f:15: 0c:56:e1:0e:ab:ea:70:27:64:01:e3:46:4e:ec:ca:8d:a4:71: 77:49:f6:02:07:f3:5b:64:17:26:14:a9:75:2d:cf:30:23:69: 68:f2:51:70:13:9f:c4:fe:9b:e7:d8:03:99:2b:99:ae:7f:27: c6:a5:2c:10:5a:53:41:19:df:a5:71:d0:2c:2e:90:55:1f:91: 9d:a5:ea:bf:34:a0:f0:17:35:ed:b2:8e:72:c2:f7:16:b3:d0: df:ac:b8:de:38:0b:ee:35:f4:7c:a0:86:45:7d:25:7d:2f:f4: 00:08:86:82:bc:26:b3:35:53:4d:9b:20:7f:09:67:c7:dd:e7: b7:be:47:5c:5d:66:75:53:07:5d:13:bc:d6:10:90:0e:a9:30: 05:2e:2f:4a:75:b5:c2:a6:f9:75:f8:26:fc:70:47:d2:01:7e: 9b:5d:8e:8c:f6:66:af:25:f5:c8:7c:62:33:91:32:b4:55:54: 34:44:55:bb:ca:83:77:8d:b5:2c:b6:fc:05:70:f3:25:a8:31: 32:d1:ac:3a:a1:69:48:16:da:5e:09:3a:9d:3f:98:a3:84:be: e2:8a:21:88:ce:f5:25:e8:bb:f0:94:2c:47:d0:65:12:fb:c1: d4:e0:25:38 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDEYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjAyRUExMTAvBgNVBAUTKDNEMjg3MDg4RTM4NjgyQTRFNEI5RDgyODQ1MEIzMzY2 QkRFQUQ1REQwHhcNMjUwODIyMTg0NjUzWhcNMjUwODI5MTg0NjUzWjAYMRYwFAYD VQQDEw02OGE4YmIxZC03OWE2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0Coc5/n7R9T4W2UssPpeUJs1l4jvHyA3jf2kG87G6xk31CwC90o7YqvisusK vCSaz5+8RS0+QtgMLibYZurxXRp1P3h3hZzL6DHheD6cFgids5FNBpKJn5cuOLAb dEx1UDpnvo0XqvT2RzuFnuf1E2EkZeo5ImnJWDNxyinJg2kYz+F2MzQ1Zr6lCFhc B16+M5nSiyeReUF5Nl14jve4NHbnRfzGJamVurGYMisz1baIVZOQBHkuPVSduFh+ H+9ZPRbMYdY0QD+vjyqh7QTFxAR7yus0Db04EHPRSF80lmAiicd0if0SkaPLos4k /NmWf3xhtb0FWOk7Glz7ne5GswIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFB9uupkr PY+SXPYPwhv+VT2raccJMB8GA1UdIwQYMBaAFD0ocIjjhoKk5LnYKEULM2a96tXd MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGMDJFQS9EQjE1Q0RFMDEx REIxMUVBOTVGMkIwNTlDNEY5QUUwMi9QU2h3aU9PR2dxVGt1ZGdvUlFzelpyM3Ex ZDAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1BTaHdpT09HZ3FUa3VkZ29SUXN6WnIzcTFkMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG MDJFQS9EQjE1Q0RFMDExREIxMUVBOTVGMkIwNTlDNEY5QUUwMi9QU2h3aU9PR2dx VGt1ZGdvUlFzelpyM3ExZDAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAPqjWR7eGaa3ZsTZhFNQXwLxUMVuEOq+pwJ2QB40ZO7MqNpHF3SfYC B/NbZBcmFKl1Lc8wI2lo8lFwE5/E/pvn2AOZK5mufyfGpSwQWlNBGd+lcdAsLpBV H5Gdpeq/NKDwFzXtso5ywvcWs9DfrLjeOAvuNfR8oIZFfSV9L/QACIaCvCazNVNN myB/CWfH3ee3vkdcXWZ1UwddE7zWEJAOqTAFLi9KdbXCpvl1+Cb8cEfSAX6bXY6M 9mavJfXIfGIzkTK0VVQ0RFW7yoN3jbUstvwFcPMlqDEy0aw6oWlIFtpeCTqdP5ij hL7iiiGIzvUl6LvwlCxH0GUS+8HU4CU4 -----END CERTIFICATE-----Generated at Sat Aug 23 13:39:16 2025 by rpki-client