$ rpki-client -vvf rpki.apnic.net/member_repository/A914B14E/87F6848CFF8411EAB2A1C75BC4F9AE02/PM1fKKh57729PlX0wrzyjWzdWu4.mft File: PM1fKKh57729PlX0wrzyjWzdWu4.mft (raw, json) Hash identifier: e26s5I4KZCNLFgT56sO993UKgcR2hS4VwKIIQCtVpsA= Subject key identifier: 88:6A:89:E7:6F:E8:07:62:CC:34:76:B8:F2:11:3C:02:01:F6:F9:93 Authority key identifier: 3C:CD:5F:28:A8:79:EF:BD:BD:3E:55:F4:C2:BC:F2:8D:6C:DD:5A:EE Certificate issuer: /CN=A914B14E/serialNumber=3CCD5F28A879EFBDBD3E55F4C2BCF28D6CDD5AEE Certificate serial: 07DD Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PM1fKKh57729PlX0wrzyjWzdWu4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914B14E/87F6848CFF8411EAB2A1C75BC4F9AE02/PM1fKKh57729PlX0wrzyjWzdWu4.mft Manifest number: 07D5 Signing time: Fri 08 Aug 2025 21:28:07 +0000 Manifest this update: Fri 08 Aug 2025 21:28:07 +0000 Manifest next update: Fri 15 Aug 2025 21:28:07 +0000 Files and hashes: 1: PM1fKKh57729PlX0wrzyjWzdWu4.crl (hash: shuPcp8jeW5+cEbYF7WWaMf1mY39oZaXSWEtw2n908I=) 2: 47F1DE34FF8611EA9DCF8D5DC4F9AE02.roa (hash: AHAcb+gAjCz8wkoAWVtMX/VsvUWaSfqcpHAMq6tIbbk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914B14E/87F6848CFF8411EAB2A1C75BC4F9AE02/PM1fKKh57729PlX0wrzyjWzdWu4.crl rsync://rpki.apnic.net/member_repository/A914B14E/87F6848CFF8411EAB2A1C75BC4F9AE02/PM1fKKh57729PlX0wrzyjWzdWu4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PM1fKKh57729PlX0wrzyjWzdWu4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 Aug 2025 05:57:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2013 (0x7dd) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914B14E, serialNumber=3CCD5F28A879EFBDBD3E55F4C2BCF28D6CDD5AEE Validity Not Before: Aug 8 21:28:07 2025 GMT Not After : Aug 15 21:28:07 2025 GMT Subject: CN=68966be7-a80f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:b4:ed:46:47:da:e9:13:4f:b0:c4:d3:d7:f9: 4b:ff:80:c4:68:4a:4b:cc:c6:d1:35:4c:65:4f:dc: 7c:1d:f0:68:48:fa:b3:2f:14:54:06:60:6d:b3:2d: 0c:1d:48:34:89:45:af:32:0b:73:b2:7a:dd:3c:ca: a6:0a:ef:cf:92:e1:0b:7e:b3:49:c7:05:cb:3c:3f: af:61:66:4e:c4:95:fe:40:65:be:30:58:32:a0:35: 96:7b:7d:23:f6:36:5d:41:d3:b1:09:da:87:a0:54: da:7a:5b:c3:26:82:94:33:29:83:c7:99:1e:4e:95: 42:91:27:40:4b:b0:c1:71:29:96:6f:a6:10:aa:df: 59:1d:38:5b:32:dc:6c:72:d0:7d:29:c8:27:e5:61: ca:e0:b1:5e:99:ad:b0:e2:32:8d:59:7f:28:c8:6e: b0:ac:4c:07:59:a9:65:c8:ac:bc:7c:34:16:3f:2a: 8f:11:98:ff:66:32:3e:62:56:f4:ae:23:78:39:8c: 20:7e:fd:09:a0:89:af:d0:2c:59:ca:3f:69:a1:48: d9:08:6d:bb:08:f6:8d:23:4c:2a:63:26:ed:35:90: 44:6c:df:b7:ae:cc:9b:43:ad:9c:7b:cb:1e:44:d9: ea:1e:99:1c:75:31:14:2a:ed:e2:e5:df:c8:a2:8e: e3:2f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 88:6A:89:E7:6F:E8:07:62:CC:34:76:B8:F2:11:3C:02:01:F6:F9:93 X509v3 Authority Key Identifier: keyid:3C:CD:5F:28:A8:79:EF:BD:BD:3E:55:F4:C2:BC:F2:8D:6C:DD:5A:EE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914B14E/87F6848CFF8411EAB2A1C75BC4F9AE02/PM1fKKh57729PlX0wrzyjWzdWu4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PM1fKKh57729PlX0wrzyjWzdWu4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914B14E/87F6848CFF8411EAB2A1C75BC4F9AE02/PM1fKKh57729PlX0wrzyjWzdWu4.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 25:2e:74:75:ed:a2:f9:a2:a4:d1:b9:a0:89:ac:ff:14:ad:98: eb:6f:67:e9:0d:b3:f8:b1:b7:de:fb:19:8c:a0:77:71:5a:e6: a6:14:68:ff:e2:40:16:5f:a5:f6:c8:2b:c1:d0:c8:6e:0e:cc: 90:d4:88:9e:c2:15:3e:e1:76:13:e4:87:ba:5c:ec:af:31:54: 33:cd:53:15:c9:19:38:6f:35:9b:ff:f4:2b:4f:ba:7b:3a:87: 46:0e:39:92:cc:ef:04:48:5e:df:97:7a:65:09:d3:06:d8:9f: 1d:76:56:2b:db:02:ab:11:14:86:7b:e0:4c:8f:66:9b:7a:19: 12:a7:17:86:c9:10:44:74:f9:af:38:26:a3:72:b8:cd:89:ac: 9c:9c:49:99:15:0b:4c:bc:78:2f:e6:df:9b:41:be:57:f6:9b: 89:91:4c:73:3b:13:34:95:17:ff:1a:b4:e5:28:c1:56:96:12: 8f:65:8b:38:90:46:c1:9e:a8:58:9e:9e:61:e6:c6:99:dc:9c: 1f:c2:53:a8:df:21:2a:be:26:25:3f:f5:1f:37:4e:0e:81:c7: 3d:dd:28:23:77:23:66:ce:3b:54:4f:cf:13:9e:9d:d2:91:ec: 15:66:0e:ac:d7:cd:21:7a:57:49:50:52:91:0b:78:b1:0c:a2: 24:48:79:91 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICB90wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NEIxNEUxMTAvBgNVBAUTKDNDQ0Q1RjI4QTg3OUVGQkRCRDNFNTVGNEMyQkNGMjhE NkNERDVBRUUwHhcNMjUwODA4MjEyODA3WhcNMjUwODE1MjEyODA3WjAYMRYwFAYD VQQDEw02ODk2NmJlNy1hODBmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwbTtRkfa6RNPsMTT1/lL/4DEaEpLzMbRNUxlT9x8HfBoSPqzLxRUBmBtsy0M HUg0iUWvMgtzsnrdPMqmCu/PkuELfrNJxwXLPD+vYWZOxJX+QGW+MFgyoDWWe30j 9jZdQdOxCdqHoFTaelvDJoKUMymDx5keTpVCkSdAS7DBcSmWb6YQqt9ZHThbMtxs ctB9Kcgn5WHK4LFema2w4jKNWX8oyG6wrEwHWallyKy8fDQWPyqPEZj/ZjI+Ylb0 riN4OYwgfv0JoImv0CxZyj9poUjZCG27CPaNI0wqYybtNZBEbN+3rsybQ62ce8se RNnqHpkcdTEUKu3i5d/Ioo7jLwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFIhqiedv 6AdizDR2uPIRPAIB9vmTMB8GA1UdIwQYMBaAFDzNXyioee+9vT5V9MK88o1s3Vru MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0QjE0RS84N0Y2ODQ4Q0ZG ODQxMUVBQjJBMUM3NUJDNEY5QUUwMi9QTTFmS0toNTc3MjlQbFgwd3J6eWpXemRX dTQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1BNMWZLS2g1NzcyOVBsWDB3cnp5ald6ZFd1NC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 QjE0RS84N0Y2ODQ4Q0ZGODQxMUVBQjJBMUM3NUJDNEY5QUUwMi9QTTFmS0toNTc3 MjlQbFgwd3J6eWpXemRXdTQubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAlLnR17aL5oqTRuaCJrP8UrZjrb2fpDbP4sbfe+xmMoHdxWuamFGj/ 4kAWX6X2yCvB0MhuDsyQ1IiewhU+4XYT5Ie6XOyvMVQzzVMVyRk4bzWb//QrT7p7 OodGDjmSzO8ESF7fl3plCdMG2J8ddlYr2wKrERSGe+BMj2abehkSpxeGyRBEdPmv OCajcrjNiaycnEmZFQtMvHgv5t+bQb5X9puJkUxzOxM0lRf/GrTlKMFWlhKPZYs4 kEbBnqhYnp5h5saZ3JwfwlOo3yEqviYlP/UfN04Ogcc93SgjdyNmzjtUT88Tnp3S kewVZg6s180heldJUFKRC3ixDKIkSHmR -----END CERTIFICATE-----Generated at Sun Aug 10 04:16:54 2025 by rpki-client