$ rpki-client -vvf rpki.apnic.net/member_repository/A91FC9FE/53CB690CFDE211ED9D2D1F68C4F9AE02/pdnGpvlnW5HOVNEV-IyUEPGPkP4.mft File: pdnGpvlnW5HOVNEV-IyUEPGPkP4.mft (raw, json) Hash identifier: bymLB62NoVMFKcqTrifB0ebV6hcUofvZSoK0vS+ZtPQ= Subject key identifier: 28:1A:B9:FE:FD:4D:0E:FB:FF:14:77:43:C7:13:1F:B5:E3:75:90:AE Authority key identifier: A5:D9:C6:A6:F9:67:5B:91:CE:54:D1:15:F8:8C:94:10:F1:8F:90:FE Certificate issuer: /CN=A91FC9FE/serialNumber=A5D9C6A6F9675B91CE54D115F88C9410F18F90FE Certificate serial: 01AA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pdnGpvlnW5HOVNEV-IyUEPGPkP4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91FC9FE/53CB690CFDE211ED9D2D1F68C4F9AE02/pdnGpvlnW5HOVNEV-IyUEPGPkP4.mft Manifest number: 01A3 Signing time: Sat 23 Aug 2025 03:23:06 +0000 Manifest this update: Sat 23 Aug 2025 03:23:06 +0000 Manifest next update: Sat 30 Aug 2025 03:23:06 +0000 Files and hashes: 1: pdnGpvlnW5HOVNEV-IyUEPGPkP4.crl (hash: GYewvd4ki4Sw6U4JyTKEXEN6THd5iWvUuak/kWEtWfs=) 2: C5CD32AAE5DC11EE867C6F21C4F9AE02.roa (hash: a4fQ9/brXb5z2Mtyms5QfXYQ2TroFUoiyPnPZ317i3A=) 3: C6AA9D48E5DC11EE867C6F21C4F9AE02.roa (hash: AbLxDDz7EyW1J/bgbPyfasPFpKdJaru9haT9jeZMl/Y=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91FC9FE/53CB690CFDE211ED9D2D1F68C4F9AE02/pdnGpvlnW5HOVNEV-IyUEPGPkP4.crl rsync://rpki.apnic.net/member_repository/A91FC9FE/53CB690CFDE211ED9D2D1F68C4F9AE02/pdnGpvlnW5HOVNEV-IyUEPGPkP4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pdnGpvlnW5HOVNEV-IyUEPGPkP4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Aug 2025 03:23:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 426 (0x1aa) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91FC9FE, serialNumber=A5D9C6A6F9675B91CE54D115F88C9410F18F90FE Validity Not Before: Aug 23 03:23:06 2025 GMT Not After : Aug 30 03:23:06 2025 GMT Subject: CN=68a9341a-5ce0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a9:d1:12:37:92:ea:bf:d9:47:92:d3:d0:c4:f8: a4:c7:eb:5a:00:9b:be:9b:4e:68:59:02:50:c5:27: 00:19:55:29:f5:c3:45:d6:ab:fb:17:b1:3c:07:12: b4:08:a8:fd:f4:33:44:9b:e9:25:6e:4e:c6:17:68: 0f:d0:92:f2:68:4f:a5:9e:9d:3c:fe:7f:9c:54:8f: ad:2c:87:bf:33:de:b1:f7:50:a6:bc:41:36:db:83: d5:16:68:d9:79:f2:d1:3d:d1:42:90:b2:fe:30:83: 35:03:ee:52:6b:1f:e8:c4:a0:b2:f9:69:7e:96:08: 08:4a:20:6c:e2:9c:70:b6:c7:eb:9e:24:9c:c7:3b: 73:f2:ed:72:12:67:58:50:04:57:aa:66:4d:7d:eb: 92:99:a9:b3:6d:3b:f3:35:8e:75:d4:b7:6f:a1:de: cb:bd:65:47:77:04:63:30:d8:6e:ba:d7:94:25:a3: c9:25:46:3e:0a:31:a6:ca:a4:4b:c1:e9:5b:34:a7: 01:b1:eb:76:5b:ae:d8:57:6c:55:95:f7:73:07:73: 9e:45:46:e4:7e:40:1c:cc:bc:ef:0f:45:c1:c3:50: e1:ec:2e:f6:d8:cc:a7:70:ad:6b:e8:5c:3d:2b:dd: cb:95:96:43:34:72:50:f9:fa:bc:11:00:c2:a3:cc: d6:15 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 28:1A:B9:FE:FD:4D:0E:FB:FF:14:77:43:C7:13:1F:B5:E3:75:90:AE X509v3 Authority Key Identifier: keyid:A5:D9:C6:A6:F9:67:5B:91:CE:54:D1:15:F8:8C:94:10:F1:8F:90:FE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91FC9FE/53CB690CFDE211ED9D2D1F68C4F9AE02/pdnGpvlnW5HOVNEV-IyUEPGPkP4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pdnGpvlnW5HOVNEV-IyUEPGPkP4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91FC9FE/53CB690CFDE211ED9D2D1F68C4F9AE02/pdnGpvlnW5HOVNEV-IyUEPGPkP4.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 9a:20:ec:4f:25:1d:b9:3c:39:21:09:5f:75:4b:ce:d2:2b:35: ef:28:07:42:ee:2b:76:7e:95:a4:3d:14:45:8e:4c:39:86:8c: 12:a7:90:06:f4:c2:64:dc:dc:b9:9c:80:49:52:11:b4:21:4c: 1b:c7:b0:ae:34:7e:b3:b3:2f:ab:3f:24:93:2a:0e:12:ee:c3: 8e:df:a8:e5:1c:18:03:b0:93:f8:7c:6f:3d:c8:dc:68:a8:ab: 5d:2a:2a:84:a4:cf:fa:a3:00:61:3b:25:11:22:24:75:1e:cf: 14:c2:7f:0c:64:58:19:30:18:14:38:ac:8c:a1:63:d9:d7:eb: e4:6c:51:ae:ac:30:8f:9f:77:90:bc:89:c8:73:1f:74:17:e2: c1:34:ac:0b:1d:07:81:73:3f:03:60:8f:a0:a9:1d:08:8b:ed: 81:c1:16:40:4b:45:c3:9b:ad:0f:6b:85:4f:c7:51:b6:5b:ae: c5:eb:5c:55:f3:a5:89:4a:dc:0e:98:9c:d5:45:16:cd:e2:01: ec:73:b3:e9:ae:6d:0e:58:72:54:49:b7:2d:18:61:1c:07:0d: 1e:1a:06:1a:ef:a1:2b:6a:2c:1f:55:ca:76:e0:ed:c3:cf:1d: d2:6e:37:29:b4:d0:54:7c:35:72:67:88:e3:f9:b7:28:3c:6f: 3d:68:81:2c -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAaowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RkM5RkUxMTAvBgNVBAUTKEE1RDlDNkE2Rjk2NzVCOTFDRTU0RDExNUY4OEM5NDEw RjE4RjkwRkUwHhcNMjUwODIzMDMyMzA2WhcNMjUwODMwMDMyMzA2WjAYMRYwFAYD VQQDEw02OGE5MzQxYS01Y2UwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqdESN5Lqv9lHktPQxPikx+taAJu+m05oWQJQxScAGVUp9cNF1qv7F7E8BxK0 CKj99DNEm+klbk7GF2gP0JLyaE+lnp08/n+cVI+tLIe/M96x91CmvEE224PVFmjZ efLRPdFCkLL+MIM1A+5Sax/oxKCy+Wl+lggISiBs4pxwtsfrniScxztz8u1yEmdY UARXqmZNfeuSmamzbTvzNY511Ldvod7LvWVHdwRjMNhuuteUJaPJJUY+CjGmyqRL welbNKcBset2W67YV2xVlfdzB3OeRUbkfkAczLzvD0XBw1Dh7C722MyncK1r6Fw9 K93LlZZDNHJQ+fq8EQDCo8zWFQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFCgauf79 TQ77/xR3Q8cTH7XjdZCuMB8GA1UdIwQYMBaAFKXZxqb5Z1uRzlTRFfiMlBDxj5D+ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGQzlGRS81M0NCNjkwQ0ZE RTIxMUVEOUQyRDFGNjhDNEY5QUUwMi9wZG5HcHZsblc1SE9WTkVWLUl5VUVQR1Br UDQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3BkbkdwdmxuVzVIT1ZORVYtSXlVRVBHUGtQNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG QzlGRS81M0NCNjkwQ0ZERTIxMUVEOUQyRDFGNjhDNEY5QUUwMi9wZG5HcHZsblc1 SE9WTkVWLUl5VUVQR1BrUDQubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCaIOxPJR25PDkhCV91S87SKzXvKAdC7it2fpWkPRRFjkw5howSp5AG 9MJk3Ny5nIBJUhG0IUwbx7CuNH6zsy+rPySTKg4S7sOO36jlHBgDsJP4fG89yNxo qKtdKiqEpM/6owBhOyURIiR1Hs8Uwn8MZFgZMBgUOKyMoWPZ1+vkbFGurDCPn3eQ vInIcx90F+LBNKwLHQeBcz8DYI+gqR0Ii+2BwRZAS0XDm60Pa4VPx1G2W67F61xV 86WJStwOmJzVRRbN4gHsc7Pprm0OWHJUSbctGGEcBw0eGgYa76EraiwfVcp24O3D zx3SbjcptNBUfDVyZ4jj+bcoPG89aIEs -----END CERTIFICATE-----Generated at Sat Aug 23 19:28:09 2025 by rpki-client