$ rpki-client -vvf rpki.apnic.net/member_repository/A916AF8E/D94A75941C1411EBB036DC63C4F9AE02/PcXSlD7UrPqSa3dnapi-yLPJea4.mft File: PcXSlD7UrPqSa3dnapi-yLPJea4.mft (raw, json) Hash identifier: WxXQAoih9aqDK4OXFBuzMJQcrX2bAm+/Ywppjjm2IxE= Subject key identifier: 75:8D:C9:1C:7B:49:DD:F4:37:83:50:4C:B0:9C:B8:75:3B:99:0E:4F Authority key identifier: 3D:C5:D2:94:3E:D4:AC:FA:92:6B:77:67:6A:98:BE:C8:B3:C9:79:AE Certificate issuer: /CN=A916AF8E/serialNumber=3DC5D2943ED4ACFA926B77676A98BEC8B3C979AE Certificate serial: 0793 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PcXSlD7UrPqSa3dnapi-yLPJea4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A916AF8E/D94A75941C1411EBB036DC63C4F9AE02/PcXSlD7UrPqSa3dnapi-yLPJea4.mft Manifest number: 078B Signing time: Wed 06 Aug 2025 21:48:29 +0000 Manifest this update: Wed 06 Aug 2025 21:48:28 +0000 Manifest next update: Wed 13 Aug 2025 21:48:28 +0000 Files and hashes: 1: PcXSlD7UrPqSa3dnapi-yLPJea4.crl (hash: e/jgr5OqoF54iVOdMONLwDh+ofIoIq62kzcxFtWbL+4=) 2: 499DE3FC1C1611EB8BD35065C4F9AE02.roa (hash: QnFh/0YdNLZr/ZfMn+21+lOUTuFHow1/2U5v+xOLivo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A916AF8E/D94A75941C1411EBB036DC63C4F9AE02/PcXSlD7UrPqSa3dnapi-yLPJea4.crl rsync://rpki.apnic.net/member_repository/A916AF8E/D94A75941C1411EBB036DC63C4F9AE02/PcXSlD7UrPqSa3dnapi-yLPJea4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PcXSlD7UrPqSa3dnapi-yLPJea4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 Aug 2025 21:48:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1939 (0x793) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A916AF8E, serialNumber=3DC5D2943ED4ACFA926B77676A98BEC8B3C979AE Validity Not Before: Aug 6 21:48:28 2025 GMT Not After : Aug 13 21:48:28 2025 GMT Subject: CN=6893cdac-a9c2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ad:ee:1f:14:77:37:59:cf:82:05:b1:bc:0d:fc: c0:d2:4c:cc:ee:62:a2:02:41:05:c1:f2:b8:1c:3d: 1f:d8:3f:98:75:f3:be:25:11:e3:13:0c:6a:7d:c8: 4c:4f:be:f9:ac:98:af:28:82:27:56:25:fc:2f:06: 9c:2a:a2:f8:cd:45:e2:32:2a:4a:ab:aa:96:81:ab: 61:7b:52:2f:4c:c6:cf:11:5f:49:37:51:de:fa:34: 23:1a:64:fa:63:4a:49:fc:d0:5e:a0:7a:e1:5e:74: f3:ef:ae:68:e1:b4:7b:a3:2b:41:b3:77:b2:a2:95: 50:26:c2:f7:91:7b:3a:86:7a:50:4c:5b:a1:84:fd: aa:bf:0a:e6:12:7a:6b:e8:dd:96:a4:93:35:c2:fb: be:03:f0:b7:af:32:ea:28:94:c9:f7:5f:d8:3c:8b: e1:bd:02:a4:47:75:29:d1:40:a7:fc:0a:32:6d:fb: 32:66:c0:bc:20:11:e7:e7:16:cc:0e:87:67:35:cd: 7e:1c:37:97:0e:b4:a7:4c:2e:1b:33:77:7a:f8:a7: 62:e9:04:81:78:4c:ca:f3:cc:9c:94:c8:5a:0f:e5: 0d:14:05:96:9e:c5:0e:de:11:70:0c:9e:41:38:b7: 9d:eb:9e:92:41:d3:42:aa:6b:d2:d1:cb:9f:73:a2: 29:c9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 75:8D:C9:1C:7B:49:DD:F4:37:83:50:4C:B0:9C:B8:75:3B:99:0E:4F X509v3 Authority Key Identifier: keyid:3D:C5:D2:94:3E:D4:AC:FA:92:6B:77:67:6A:98:BE:C8:B3:C9:79:AE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A916AF8E/D94A75941C1411EBB036DC63C4F9AE02/PcXSlD7UrPqSa3dnapi-yLPJea4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PcXSlD7UrPqSa3dnapi-yLPJea4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A916AF8E/D94A75941C1411EBB036DC63C4F9AE02/PcXSlD7UrPqSa3dnapi-yLPJea4.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 59:bb:1b:06:33:e7:f6:18:e0:86:d5:31:6f:2a:e4:37:da:63: be:3d:90:c1:4d:97:46:e9:4e:e8:4d:70:7f:b4:ce:b2:f9:7b: 06:92:ab:cb:01:af:d0:01:b3:4f:e4:0a:26:12:7c:35:bb:b5: 79:62:56:8f:b5:4e:d0:61:4b:f2:f2:3e:d1:9f:2a:4c:bc:5a: 48:ae:f6:f4:7c:eb:23:3f:9b:8d:b4:e7:6f:3c:d3:7d:0e:55: d2:96:f6:70:f2:24:0c:e3:e5:8b:c8:d0:9b:90:b2:28:fa:87: 94:3d:d1:d7:ad:2e:fa:fc:68:d5:dd:d6:17:5b:9d:25:31:9f: c3:d3:e2:71:66:98:9e:bf:9d:4c:1e:2b:60:a7:29:ed:74:0c: 81:31:a0:79:35:b1:30:da:30:24:1d:35:07:1a:1e:37:7b:42: ad:6a:68:dd:8c:3c:0a:92:2d:c8:c2:36:a0:a3:e2:65:31:ca: 92:97:51:a1:40:4a:be:f1:0a:3d:89:9e:95:2e:82:fc:42:de: 8c:86:3a:43:51:64:7a:56:65:0f:b1:aa:4f:0e:2f:77:75:ca: 1a:8a:fa:00:49:9a:8e:3d:0f:68:35:1d:00:fe:59:ae:1e:e6: 0d:c5:72:a2:fe:22:f5:cc:fc:08:0a:e3:fc:d9:02:a0:cf:ab: 68:3c:ee:14 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICB5MwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NkFGOEUxMTAvBgNVBAUTKDNEQzVEMjk0M0VENEFDRkE5MjZCNzc2NzZBOThCRUM4 QjNDOTc5QUUwHhcNMjUwODA2MjE0ODI4WhcNMjUwODEzMjE0ODI4WjAYMRYwFAYD VQQDEw02ODkzY2RhYy1hOWMyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAre4fFHc3Wc+CBbG8DfzA0kzM7mKiAkEFwfK4HD0f2D+YdfO+JRHjEwxqfchM T775rJivKIInViX8LwacKqL4zUXiMipKq6qWgathe1IvTMbPEV9JN1He+jQjGmT6 Y0pJ/NBeoHrhXnTz765o4bR7oytBs3eyopVQJsL3kXs6hnpQTFuhhP2qvwrmEnpr 6N2WpJM1wvu+A/C3rzLqKJTJ91/YPIvhvQKkR3Up0UCn/AoybfsyZsC8IBHn5xbM DodnNc1+HDeXDrSnTC4bM3d6+Kdi6QSBeEzK88yclMhaD+UNFAWWnsUO3hFwDJ5B OLed656SQdNCqmvS0cufc6IpyQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFHWNyRx7 Sd30N4NQTLCcuHU7mQ5PMB8GA1UdIwQYMBaAFD3F0pQ+1Kz6kmt3Z2qYvsizyXmu MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2QUY4RS9EOTRBNzU5NDFD MTQxMUVCQjAzNkRDNjNDNEY5QUUwMi9QY1hTbEQ3VXJQcVNhM2RuYXBpLXlMUEpl YTQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1BjWFNsRDdVclBxU2EzZG5hcGkteUxQSmVhNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 QUY4RS9EOTRBNzU5NDFDMTQxMUVCQjAzNkRDNjNDNEY5QUUwMi9QY1hTbEQ3VXJQ cVNhM2RuYXBpLXlMUEplYTQubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBZuxsGM+f2GOCG1TFvKuQ32mO+PZDBTZdG6U7oTXB/tM6y+XsGkqvL Aa/QAbNP5AomEnw1u7V5YlaPtU7QYUvy8j7RnypMvFpIrvb0fOsjP5uNtOdvPNN9 DlXSlvZw8iQM4+WLyNCbkLIo+oeUPdHXrS76/GjV3dYXW50lMZ/D0+JxZpiev51M HitgpyntdAyBMaB5NbEw2jAkHTUHGh43e0KtamjdjDwKki3Iwjago+JlMcqSl1Gh QEq+8Qo9iZ6VLoL8Qt6MhjpDUWR6VmUPsapPDi93dcoaivoASZqOPQ9oNR0A/lmu HuYNxXKi/iL1zPwICuP82QKgz6toPO4U -----END CERTIFICATE-----Generated at Fri Aug 8 12:54:18 2025 by rpki-client