$ rpki-client -vvf rpki.apnic.net/member_repository/A9131EDD/210B43047BBF11EBA02A4339C4F9AE02/pGlL5HxPO8lIBdSjZqAHxpBwUS4.mft File: pGlL5HxPO8lIBdSjZqAHxpBwUS4.mft (raw, json) Hash identifier: CHCQe9D7m4zh+HZQh7Gc8CZVxtEbhwse0TjSUfBF3/k= Subject key identifier: 5A:DC:76:01:86:82:8D:ED:D2:9C:06:63:F9:AA:AE:91:92:C6:F5:CF Authority key identifier: A4:69:4B:E4:7C:4F:3B:C9:48:05:D4:A3:66:A0:07:C6:90:70:51:2E Certificate issuer: /CN=A9131EDD/serialNumber=A4694BE47C4F3BC94805D4A366A007C69070512E Certificate serial: 06A5 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pGlL5HxPO8lIBdSjZqAHxpBwUS4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9131EDD/210B43047BBF11EBA02A4339C4F9AE02/pGlL5HxPO8lIBdSjZqAHxpBwUS4.mft Manifest number: 069B Signing time: Fri 08 Aug 2025 22:37:43 +0000 Manifest this update: Fri 08 Aug 2025 22:37:42 +0000 Manifest next update: Fri 15 Aug 2025 22:37:42 +0000 Files and hashes: 1: pGlL5HxPO8lIBdSjZqAHxpBwUS4.crl (hash: gKnq05jTe9rexu42xh0nqemf/bHliw10i6bzYzePYaA=) 2: E84DCBC422D211EDAF1F924EC4F9AE02.roa (hash: DSJZavi/LmOaDs/V5ru83cEJvd41YvTKAbFr9jXt5Xk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9131EDD/210B43047BBF11EBA02A4339C4F9AE02/pGlL5HxPO8lIBdSjZqAHxpBwUS4.crl rsync://rpki.apnic.net/member_repository/A9131EDD/210B43047BBF11EBA02A4339C4F9AE02/pGlL5HxPO8lIBdSjZqAHxpBwUS4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pGlL5HxPO8lIBdSjZqAHxpBwUS4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 Aug 2025 05:57:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1701 (0x6a5) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9131EDD, serialNumber=A4694BE47C4F3BC94805D4A366A007C69070512E Validity Not Before: Aug 8 22:37:42 2025 GMT Not After : Aug 15 22:37:42 2025 GMT Subject: CN=68967c36-6583 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:95:f2:9f:14:eb:50:f3:93:a1:2e:60:f2:14:30: 72:71:52:44:f2:de:3d:c4:3a:e5:6c:de:ff:6f:e7: bb:86:71:e2:04:f4:95:43:8d:a4:56:58:14:1f:ed: a1:17:d9:47:3a:fd:8b:a4:f8:d5:4b:4d:14:aa:f2: 7f:72:d0:34:bb:0c:d2:1b:79:3c:49:37:0f:ed:d0: cb:36:b1:8d:1a:a3:1a:69:ce:77:23:f3:67:e6:18: 19:3f:32:e2:04:e4:bf:49:f5:66:d7:c4:37:6e:48: f9:b7:ca:af:7b:d2:ca:5b:de:3b:50:9e:b5:48:c1: 7f:62:d8:f7:66:65:2b:5f:07:ed:83:2d:97:30:46: c2:0a:aa:56:82:9e:89:4f:f3:03:3e:3e:70:58:86: bb:7a:3d:38:56:3f:68:f6:ca:75:41:74:a3:6a:7a: 55:0d:95:73:d4:5b:a4:1e:6c:87:3c:89:d9:b6:0b: 72:21:29:46:1c:7d:5b:9a:eb:4c:a3:6d:4c:e4:ce: f6:d7:ea:54:cc:f7:d7:98:4c:cb:a3:e2:cb:dc:ff: 0f:0f:79:f3:9b:97:be:b6:65:60:37:6d:1c:e3:39: de:56:4e:84:fe:45:a4:54:1d:5a:60:7b:f1:e9:c4: fe:7f:a4:e1:60:92:0b:fe:77:26:2f:cf:47:fd:0c: 07:99 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5A:DC:76:01:86:82:8D:ED:D2:9C:06:63:F9:AA:AE:91:92:C6:F5:CF X509v3 Authority Key Identifier: keyid:A4:69:4B:E4:7C:4F:3B:C9:48:05:D4:A3:66:A0:07:C6:90:70:51:2E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9131EDD/210B43047BBF11EBA02A4339C4F9AE02/pGlL5HxPO8lIBdSjZqAHxpBwUS4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pGlL5HxPO8lIBdSjZqAHxpBwUS4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9131EDD/210B43047BBF11EBA02A4339C4F9AE02/pGlL5HxPO8lIBdSjZqAHxpBwUS4.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 29:eb:d1:5e:be:7c:aa:eb:d3:9c:0a:77:e6:19:53:9f:88:14: d0:11:e7:18:22:4b:b3:3f:b0:58:36:c1:ed:24:8a:d0:bc:cf: 6b:49:a4:4e:9e:a1:6b:65:8c:5b:cf:09:ee:68:97:51:c6:1f: fc:fa:5b:08:ec:06:ab:9d:89:15:e2:1f:c8:1c:f9:c9:19:82: 55:f1:f5:92:e6:62:ab:e5:12:a2:5c:b1:de:95:13:46:1c:85: 03:aa:06:c8:a2:b0:3e:a2:a9:47:0c:b9:d9:2a:2f:7b:76:e2: 07:05:09:cd:81:ee:5d:63:14:b1:29:93:7c:ed:1a:14:1e:ef: d5:97:95:b9:11:95:2c:6c:17:42:23:c3:66:8e:a8:eb:13:ea: c8:13:38:41:46:4a:6e:82:66:08:6c:c1:14:5c:c8:3d:33:09: c3:da:15:e5:2f:c3:cc:b4:f3:3e:3e:3c:ab:fd:9c:f6:40:76: 66:18:de:7d:18:4e:f9:fe:d8:1a:5a:ea:5e:eb:87:7c:84:11: da:35:bf:6b:0f:0f:12:9d:3b:1f:7c:6c:c8:aa:41:b8:4b:a7: 4c:b8:f0:5b:a4:6e:51:75:aa:14:2a:4a:57:cc:05:54:99:b5: 48:ed:d2:6b:41:c1:21:ec:32:f9:98:3d:fe:4e:c2:4c:c2:61: 48:99:24:57 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBqUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MzFFREQxMTAvBgNVBAUTKEE0Njk0QkU0N0M0RjNCQzk0ODA1RDRBMzY2QTAwN0M2 OTA3MDUxMkUwHhcNMjUwODA4MjIzNzQyWhcNMjUwODE1MjIzNzQyWjAYMRYwFAYD VQQDEw02ODk2N2MzNi02NTgzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAlfKfFOtQ85OhLmDyFDBycVJE8t49xDrlbN7/b+e7hnHiBPSVQ42kVlgUH+2h F9lHOv2LpPjVS00UqvJ/ctA0uwzSG3k8STcP7dDLNrGNGqMaac53I/Nn5hgZPzLi BOS/SfVm18Q3bkj5t8qve9LKW947UJ61SMF/Ytj3ZmUrXwftgy2XMEbCCqpWgp6J T/MDPj5wWIa7ej04Vj9o9sp1QXSjanpVDZVz1FukHmyHPInZtgtyISlGHH1bmutM o21M5M721+pUzPfXmEzLo+LL3P8PD3nzm5e+tmVgN20c4zneVk6E/kWkVB1aYHvx 6cT+f6ThYJIL/ncmL89H/QwHmQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFFrcdgGG go3t0pwGY/mqrpGSxvXPMB8GA1UdIwQYMBaAFKRpS+R8TzvJSAXUo2agB8aQcFEu MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzMUVERC8yMTBCNDMwNDdC QkYxMUVCQTAyQTQzMzlDNEY5QUUwMi9wR2xMNUh4UE84bElCZFNqWnFBSHhwQndV UzQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3BHbEw1SHhQTzhsSUJkU2pacUFIeHBCd1VTNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz MUVERC8yMTBCNDMwNDdCQkYxMUVCQTAyQTQzMzlDNEY5QUUwMi9wR2xMNUh4UE84 bElCZFNqWnFBSHhwQndVUzQubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAp69Fevnyq69OcCnfmGVOfiBTQEecYIkuzP7BYNsHtJIrQvM9rSaRO nqFrZYxbzwnuaJdRxh/8+lsI7AarnYkV4h/IHPnJGYJV8fWS5mKr5RKiXLHelRNG HIUDqgbIorA+oqlHDLnZKi97duIHBQnNge5dYxSxKZN87RoUHu/Vl5W5EZUsbBdC I8NmjqjrE+rIEzhBRkpugmYIbMEUXMg9MwnD2hXlL8PMtPM+Pjyr/Zz2QHZmGN59 GE75/tgaWupe64d8hBHaNb9rDw8SnTsffGzIqkG4S6dMuPBbpG5RdaoUKkpXzAVU mbVI7dJrQcEh7DL5mD3+TsJMwmFImSRX -----END CERTIFICATE-----Generated at Sun Aug 10 18:59:29 2025 by rpki-client