$ rpki-client -vvf rpki.apnic.net/member_repository/A917BB51/25ACF5C0C4B811EEBD71C446C4F9AE02/PqQ0fS2f1utqAbROVXH4iwiswls.mft File: PqQ0fS2f1utqAbROVXH4iwiswls.mft (raw, json) Hash identifier: eH4h4QPbzD0prbcoLciO245rpEYi1QwOyDHLTbtkTGk= Subject key identifier: D8:AA:08:5A:41:11:F9:1E:C7:CA:D6:4C:CB:81:E8:69:6F:0A:3D:3D Authority key identifier: 3E:A4:34:7D:2D:9F:D6:EB:6A:01:B4:4E:55:71:F8:8B:08:AC:C2:5B Certificate issuer: /CN=A917BB51/serialNumber=3EA4347D2D9FD6EB6A01B44E5571F88B08ACC25B Certificate serial: 012C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PqQ0fS2f1utqAbROVXH4iwiswls.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917BB51/25ACF5C0C4B811EEBD71C446C4F9AE02/PqQ0fS2f1utqAbROVXH4iwiswls.mft Manifest number: 0123 Signing time: Sat 09 Aug 2025 05:12:40 +0000 Manifest this update: Sat 09 Aug 2025 05:12:40 +0000 Manifest next update: Sat 16 Aug 2025 05:12:40 +0000 Files and hashes: 1: PqQ0fS2f1utqAbROVXH4iwiswls.crl (hash: 2uYDbJRAZWgq7xzZRqJT+t+V0mLCWw4CNxR9a+IR2Ns=) 2: A9C5C1CAC4B811EE8A03D547C4F9AE02.roa (hash: idAFhUmAkJaKGqP8j1ITDESnMkqFyJap6af21HGHAgQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917BB51/25ACF5C0C4B811EEBD71C446C4F9AE02/PqQ0fS2f1utqAbROVXH4iwiswls.crl rsync://rpki.apnic.net/member_repository/A917BB51/25ACF5C0C4B811EEBD71C446C4F9AE02/PqQ0fS2f1utqAbROVXH4iwiswls.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PqQ0fS2f1utqAbROVXH4iwiswls.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 Aug 2025 05:57:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 300 (0x12c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917BB51, serialNumber=3EA4347D2D9FD6EB6A01B44E5571F88B08ACC25B Validity Not Before: Aug 9 05:12:40 2025 GMT Not After : Aug 16 05:12:40 2025 GMT Subject: CN=6896d8c8-d7dc Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:99:8b:ea:ee:7e:c9:1c:db:38:45:03:1b:40: b9:e1:15:75:7b:f0:28:30:27:09:dc:72:11:70:4b: 4c:2b:c0:df:d2:8c:af:cd:be:1b:05:96:ea:f8:df: 15:54:1a:e3:e0:6c:a9:1a:54:69:72:2c:4d:78:be: f9:e7:c8:9e:b8:03:81:7d:d8:0c:26:7f:b3:55:d0: 7d:7f:b0:be:f7:47:b0:cb:70:2e:b4:28:2e:11:9d: 56:77:79:fe:55:e6:78:e8:9c:a5:21:a6:3b:31:cb: bd:15:60:ee:25:db:a3:d0:71:3e:dd:b8:2e:e3:27: c7:9f:2c:69:74:73:d3:d4:9b:a2:a4:4d:6b:b6:7f: a0:19:a5:b1:b9:8c:20:f4:0c:75:25:ac:87:ea:cb: fa:19:d4:91:01:4e:fb:5a:a5:e2:59:41:19:09:0c: 44:bc:2a:77:c9:68:f0:a5:7c:65:0e:54:1d:6d:36: 7b:f3:65:72:43:1e:d7:55:9c:02:3f:cf:86:54:da: 43:57:f2:eb:92:49:a2:cd:7b:ec:68:30:c9:22:dc: 9e:72:e5:56:02:6b:6a:c9:59:4f:d5:ea:3d:89:30: 7a:c9:48:41:01:8b:50:1b:56:ec:bc:15:4b:ac:da: 3f:87:e7:af:ec:ea:13:20:e2:ec:d8:7f:ea:87:cc: ac:5b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D8:AA:08:5A:41:11:F9:1E:C7:CA:D6:4C:CB:81:E8:69:6F:0A:3D:3D X509v3 Authority Key Identifier: keyid:3E:A4:34:7D:2D:9F:D6:EB:6A:01:B4:4E:55:71:F8:8B:08:AC:C2:5B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917BB51/25ACF5C0C4B811EEBD71C446C4F9AE02/PqQ0fS2f1utqAbROVXH4iwiswls.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PqQ0fS2f1utqAbROVXH4iwiswls.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917BB51/25ACF5C0C4B811EEBD71C446C4F9AE02/PqQ0fS2f1utqAbROVXH4iwiswls.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 35:53:b4:14:cd:e2:43:bd:e0:37:ea:8f:f0:60:08:f8:73:15: 53:ac:c7:0c:d1:44:ce:09:b7:14:a5:ad:cd:6e:cb:b4:2a:62: bc:1c:25:f8:52:1d:46:3f:fe:57:5f:e5:2c:ff:53:39:b8:e7: 3c:60:d3:f0:cd:f3:5f:1c:cc:bc:d2:32:28:16:a2:cb:05:75: cc:d8:00:a1:96:60:79:eb:5f:45:12:26:7f:aa:64:88:c6:5b: b9:f1:30:93:7f:fd:f4:a5:e7:97:33:b3:3b:6d:3f:4a:10:31: 66:08:10:20:e8:03:11:3e:69:13:c7:b1:a6:b8:c4:f6:50:e9: df:f2:ae:c9:bc:4d:d0:ca:f1:24:dc:ba:8d:78:27:d3:64:99: b6:bd:de:00:23:7b:cc:f6:47:92:c2:49:6f:68:6a:52:47:96: 55:bf:14:26:b8:cc:21:d4:2b:85:50:6e:19:bb:55:2d:77:85: 66:50:aa:b5:5a:2a:58:aa:23:2c:be:4f:85:68:9f:61:22:bb: 8b:5d:a0:df:d3:df:d0:80:03:78:13:74:23:e3:c1:98:8f:c3: 56:09:78:75:00:75:80:aa:01:b3:e8:d4:93:58:a6:16:38:72: e6:46:cc:5a:f0:19:54:54:2c:3d:43:38:f0:04:ad:9c:1b:b9: d5:28:0b:e3 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICASwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0JCNTExMTAvBgNVBAUTKDNFQTQzNDdEMkQ5RkQ2RUI2QTAxQjQ0RTU1NzFGODhC MDhBQ0MyNUIwHhcNMjUwODA5MDUxMjQwWhcNMjUwODE2MDUxMjQwWjAYMRYwFAYD VQQDEw02ODk2ZDhjOC1kN2RjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuZmL6u5+yRzbOEUDG0C54RV1e/AoMCcJ3HIRcEtMK8Df0oyvzb4bBZbq+N8V VBrj4GypGlRpcixNeL7558ieuAOBfdgMJn+zVdB9f7C+90ewy3AutCguEZ1Wd3n+ VeZ46JylIaY7Mcu9FWDuJduj0HE+3bgu4yfHnyxpdHPT1JuipE1rtn+gGaWxuYwg 9Ax1JayH6sv6GdSRAU77WqXiWUEZCQxEvCp3yWjwpXxlDlQdbTZ782VyQx7XVZwC P8+GVNpDV/LrkkmizXvsaDDJItyecuVWAmtqyVlP1eo9iTB6yUhBAYtQG1bsvBVL rNo/h+ev7OoTIOLs2H/qh8ysWwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFNiqCFpB Efkex8rWTMuB6GlvCj09MB8GA1UdIwQYMBaAFD6kNH0tn9bragG0TlVx+IsIrMJb MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3QkI1MS8yNUFDRjVDMEM0 QjgxMUVFQkQ3MUM0NDZDNEY5QUUwMi9QcVEwZlMyZjF1dHFBYlJPVlhINGl3aXN3 bHMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1BxUTBmUzJmMXV0cUFiUk9WWEg0aXdpc3dscy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 QkI1MS8yNUFDRjVDMEM0QjgxMUVFQkQ3MUM0NDZDNEY5QUUwMi9QcVEwZlMyZjF1 dHFBYlJPVlhINGl3aXN3bHMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA1U7QUzeJDveA36o/wYAj4cxVTrMcM0UTOCbcUpa3Nbsu0KmK8HCX4 Uh1GP/5XX+Us/1M5uOc8YNPwzfNfHMy80jIoFqLLBXXM2AChlmB5619FEiZ/qmSI xlu58TCTf/30peeXM7M7bT9KEDFmCBAg6AMRPmkTx7GmuMT2UOnf8q7JvE3QyvEk 3LqNeCfTZJm2vd4AI3vM9keSwklvaGpSR5ZVvxQmuMwh1CuFUG4Zu1Utd4VmUKq1 WipYqiMsvk+FaJ9hIruLXaDf09/QgAN4E3Qj48GYj8NWCXh1AHWAqgGz6NSTWKYW OHLmRsxa8BlUVCw9QzjwBK2cG7nVKAvj -----END CERTIFICATE-----Generated at Sun Aug 10 18:47:51 2025 by rpki-client