$ rpki-client -vvf rpki.apnic.net/member_repository/A91607DE/C76814C6BB5A11EC908AC96EC4F9AE02/PQqIwMyj7oZ3zRffPuht5x38ESk.mft File: PQqIwMyj7oZ3zRffPuht5x38ESk.mft (raw, json) Hash identifier: IbnKQDW32S949BQW6oUe39iMBnOxnxSa/1tjjR6v78Y= Subject key identifier: 07:AD:E9:EE:95:E9:C4:AF:58:16:AD:CD:8C:54:EE:C4:94:F1:AC:A6 Authority key identifier: 3D:0A:88:C0:CC:A3:EE:86:77:CD:17:DF:3E:E8:6D:E7:1D:FC:11:29 Certificate issuer: /CN=A91607DE/serialNumber=3D0A88C0CCA3EE8677CD17DF3EE86DE71DFC1129 Certificate serial: 0373 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PQqIwMyj7oZ3zRffPuht5x38ESk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91607DE/C76814C6BB5A11EC908AC96EC4F9AE02/PQqIwMyj7oZ3zRffPuht5x38ESk.mft Manifest number: 036E Signing time: Sat 09 Aug 2025 01:26:44 +0000 Manifest this update: Sat 09 Aug 2025 01:26:43 +0000 Manifest next update: Sat 16 Aug 2025 01:26:43 +0000 Files and hashes: 1: PQqIwMyj7oZ3zRffPuht5x38ESk.crl (hash: xEvXLM1bpHJQeOqZDcXJM/YPh6SLaLlQmAb6vlMLS+8=) 2: FD398FA0BB5D11ECA62F8674C4F9AE02.roa (hash: OZN4xQkAGlo2J7xAsq7WK/TKxkfRBmTruJ0GM4QH81c=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91607DE/C76814C6BB5A11EC908AC96EC4F9AE02/PQqIwMyj7oZ3zRffPuht5x38ESk.crl rsync://rpki.apnic.net/member_repository/A91607DE/C76814C6BB5A11EC908AC96EC4F9AE02/PQqIwMyj7oZ3zRffPuht5x38ESk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PQqIwMyj7oZ3zRffPuht5x38ESk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 Aug 2025 05:57:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 883 (0x373) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91607DE, serialNumber=3D0A88C0CCA3EE8677CD17DF3EE86DE71DFC1129 Validity Not Before: Aug 9 01:26:43 2025 GMT Not After : Aug 16 01:26:43 2025 GMT Subject: CN=6896a3d3-a9d7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:6a:9d:4a:2f:bf:cc:b8:ee:a2:b7:56:47:47: b8:fb:c3:cf:8a:70:bd:4b:96:85:fc:02:8e:2f:18: aa:66:9d:a3:92:cb:41:e1:d4:82:85:a9:7a:04:9f: 08:e5:c0:16:e7:f7:30:8c:57:0b:c8:42:07:6f:2b: a9:24:fa:62:f6:0f:5f:b3:fd:65:6d:4a:6e:62:78: 9d:23:4b:52:69:7f:d2:7d:a3:a0:67:95:e1:7a:14: 26:18:9e:69:68:98:a4:05:ba:b1:ff:15:f3:d3:b2: 29:1c:10:dc:21:ac:f1:46:a4:3f:f5:95:f8:db:ec: df:9b:77:1f:f1:b4:40:44:2d:1b:d8:b9:bb:2e:a2: 94:61:4a:a7:a4:54:df:91:6b:eb:ba:79:1d:64:f7: 63:bc:d3:6d:f4:6a:32:1f:5d:6e:29:d2:08:ef:94: c7:0d:5f:6b:3c:9e:37:bf:ca:f8:fc:b2:46:91:0f: 6e:2b:0f:69:0b:92:5b:98:83:c9:1f:f2:c9:1b:ca: 44:ba:a9:61:a0:00:58:43:78:dc:ed:72:0b:6e:ed: 15:91:89:21:52:2b:f5:d4:5e:27:dd:8b:f3:57:e7: 53:a4:e6:e5:61:1a:7c:b6:71:c0:f9:c8:f0:a1:c9: 0c:80:8f:38:60:7c:41:d2:68:9f:6c:0b:f8:cc:94: ff:73 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 07:AD:E9:EE:95:E9:C4:AF:58:16:AD:CD:8C:54:EE:C4:94:F1:AC:A6 X509v3 Authority Key Identifier: keyid:3D:0A:88:C0:CC:A3:EE:86:77:CD:17:DF:3E:E8:6D:E7:1D:FC:11:29 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91607DE/C76814C6BB5A11EC908AC96EC4F9AE02/PQqIwMyj7oZ3zRffPuht5x38ESk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PQqIwMyj7oZ3zRffPuht5x38ESk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91607DE/C76814C6BB5A11EC908AC96EC4F9AE02/PQqIwMyj7oZ3zRffPuht5x38ESk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption ad:2e:20:e4:8a:1c:b7:3c:d0:6b:47:14:78:ba:22:59:3e:a6: 22:55:fe:32:79:15:93:0a:46:03:fb:d6:93:14:7b:5c:ab:72: 7b:7d:d2:36:09:8f:e1:7f:16:88:5a:08:41:57:c2:89:02:ac: a4:a5:6c:1d:40:8f:ef:8c:95:bc:a5:23:ec:e5:b8:8e:f7:96: 7e:40:e6:a1:19:7a:f9:ce:75:29:7e:dc:08:c1:61:76:03:67: 57:29:b1:60:76:48:d7:ed:32:0f:5c:a0:09:56:fa:a3:5d:b9: 38:2e:22:23:61:07:2a:a3:75:65:18:74:7f:f8:ac:71:0e:8b: 94:9c:87:7b:fb:fc:b1:39:a1:9a:6a:e2:70:a5:45:c5:41:b1: f8:f4:7a:8b:a6:a3:a2:c4:ed:49:8e:4a:25:34:3d:fc:09:75: 7a:03:51:21:45:cf:56:55:0d:41:5a:f0:0b:27:a6:20:e2:3f: 01:93:31:3c:36:08:fb:76:b5:6c:d3:10:fd:d8:c4:a6:99:4b: 4b:e7:df:08:dd:08:d7:28:4e:75:0e:01:3b:62:5f:3f:11:89: e8:65:a9:85:1c:17:45:42:c5:65:ab:05:68:76:7c:8c:f9:c8: 87:ca:f4:08:05:a7:d8:5d:d1:ac:ce:45:ed:ac:11:48:e4:c3: b1:8f:9d:9e -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICA3MwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NjA3REUxMTAvBgNVBAUTKDNEMEE4OEMwQ0NBM0VFODY3N0NEMTdERjNFRTg2REU3 MURGQzExMjkwHhcNMjUwODA5MDEyNjQzWhcNMjUwODE2MDEyNjQzWjAYMRYwFAYD VQQDEw02ODk2YTNkMy1hOWQ3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtWqdSi+/zLjuordWR0e4+8PPinC9S5aF/AKOLxiqZp2jkstB4dSChal6BJ8I 5cAW5/cwjFcLyEIHbyupJPpi9g9fs/1lbUpuYnidI0tSaX/SfaOgZ5XhehQmGJ5p aJikBbqx/xXz07IpHBDcIazxRqQ/9ZX42+zfm3cf8bRARC0b2Lm7LqKUYUqnpFTf kWvrunkdZPdjvNNt9GoyH11uKdII75THDV9rPJ43v8r4/LJGkQ9uKw9pC5JbmIPJ H/LJG8pEuqlhoABYQ3jc7XILbu0VkYkhUiv11F4n3YvzV+dTpOblYRp8tnHA+cjw ockMgI84YHxB0mifbAv4zJT/cwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFAet6e6V 6cSvWBatzYxU7sSU8aymMB8GA1UdIwQYMBaAFD0KiMDMo+6Gd80X3z7obecd/BEp MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2MDdERS9DNzY4MTRDNkJC NUExMUVDOTA4QUM5NkVDNEY5QUUwMi9QUXFJd015ajdvWjN6UmZmUHVodDV4MzhF U2suY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1BRcUl3TXlqN29aM3pSZmZQdWh0NXgzOEVTay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 MDdERS9DNzY4MTRDNkJCNUExMUVDOTA4QUM5NkVDNEY5QUUwMi9QUXFJd015ajdv WjN6UmZmUHVodDV4MzhFU2subWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCtLiDkihy3PNBrRxR4uiJZPqYiVf4yeRWTCkYD+9aTFHtcq3J7fdI2 CY/hfxaIWghBV8KJAqykpWwdQI/vjJW8pSPs5biO95Z+QOahGXr5znUpftwIwWF2 A2dXKbFgdkjX7TIPXKAJVvqjXbk4LiIjYQcqo3VlGHR/+KxxDouUnId7+/yxOaGa auJwpUXFQbH49HqLpqOixO1JjkolND38CXV6A1EhRc9WVQ1BWvALJ6Yg4j8BkzE8 Ngj7drVs0xD92MSmmUtL598I3QjXKE51DgE7Yl8/EYnoZamFHBdFQsVlqwVodnyM +ciHyvQIBafYXdGszkXtrBFI5MOxj52e -----END CERTIFICATE-----Generated at Sat Aug 9 05:38:25 2025 by rpki-client