$ rpki-client -vvf rpki.apnic.net/member_repository/A91A08FD/9F42EAD8C8AB11E9829D282FC4F9AE02/PB_di6MB3OPbPwvMJchpTOG83H0.mft File: PB_di6MB3OPbPwvMJchpTOG83H0.mft (raw, json) Hash identifier: hGLxtlt7RRYe6/ZMBeSISeRksTQF0mHA9uAd0NyXdrc= Subject key identifier: A7:AC:84:56:21:7B:32:23:F7:B9:ED:93:8A:4F:17:C1:98:C7:AA:2A Authority key identifier: 3C:1F:DD:8B:A3:01:DC:E3:DB:3F:0B:CC:25:C8:69:4C:E1:BC:DC:7D Certificate issuer: /CN=A91A08FD/serialNumber=3C1FDD8BA301DCE3DB3F0BCC25C8694CE1BCDC7D Certificate serial: 0DA0 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PB_di6MB3OPbPwvMJchpTOG83H0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A08FD/9F42EAD8C8AB11E9829D282FC4F9AE02/PB_di6MB3OPbPwvMJchpTOG83H0.mft Manifest number: 0D97 Signing time: Sat 02 Aug 2025 18:06:07 +0000 Manifest this update: Sat 02 Aug 2025 18:06:07 +0000 Manifest next update: Sat 09 Aug 2025 18:06:07 +0000 Files and hashes: 1: PB_di6MB3OPbPwvMJchpTOG83H0.crl (hash: 7oDmhZrEZinFtJDKAcAprGqJNyf7odfEe7SjmNSRyLk=) 2: 3802A98EC8AC11E9877DCE2FC4F9AE02.roa (hash: pTMoVBZCsEARFbs1aGExyarMu+r7tLUk6ACYjZUvCyg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A08FD/9F42EAD8C8AB11E9829D282FC4F9AE02/PB_di6MB3OPbPwvMJchpTOG83H0.crl rsync://rpki.apnic.net/member_repository/A91A08FD/9F42EAD8C8AB11E9829D282FC4F9AE02/PB_di6MB3OPbPwvMJchpTOG83H0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PB_di6MB3OPbPwvMJchpTOG83H0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 09 Aug 2025 18:06:06 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3488 (0xda0) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A08FD, serialNumber=3C1FDD8BA301DCE3DB3F0BCC25C8694CE1BCDC7D Validity Not Before: Aug 2 18:06:07 2025 GMT Not After : Aug 9 18:06:07 2025 GMT Subject: CN=688e538f-adb3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:db:da:a3:33:4e:72:0c:02:3c:a7:59:9c:f5:a6: a8:0d:1f:10:3a:b1:c2:e4:1a:5e:6f:7e:4b:83:76: 6d:85:d1:89:5b:bf:65:7e:b5:0b:b5:b7:53:2b:b6: 81:0f:4e:7b:ce:7b:7c:9b:78:b8:98:e5:58:67:63: 47:83:3f:3a:db:f0:36:f1:06:b2:18:26:dd:b6:09: c8:d5:44:6d:ae:2a:25:8d:b5:ab:73:c0:96:a9:70: 40:a5:72:c9:81:56:c0:f2:bb:58:40:b4:fa:c1:65: f6:e1:7d:0e:22:ac:22:fc:c0:1a:51:a1:2c:bd:d5: 19:1c:61:c4:da:14:fa:66:c6:84:49:5e:68:db:b8: 34:47:1a:7a:82:97:84:3c:70:0b:b6:3c:e1:59:b1: 27:2f:a2:6b:da:44:61:1d:eb:bf:51:6e:ff:52:45: bc:93:2f:71:45:81:f8:8c:da:f9:d9:4d:51:36:45: f5:7c:fd:21:4f:d1:f7:53:86:d6:1e:51:2d:55:a5: 9e:d6:fc:7b:da:04:57:3c:c1:e6:e6:75:8f:99:67: 4d:91:3e:f8:33:ee:27:90:31:60:2f:04:73:90:b5: 99:f5:a6:01:50:0e:f9:e0:20:9f:b7:5e:a3:8f:d0: de:58:36:cd:26:78:54:97:f7:d1:7e:11:a2:e6:23: 2b:ad Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A7:AC:84:56:21:7B:32:23:F7:B9:ED:93:8A:4F:17:C1:98:C7:AA:2A X509v3 Authority Key Identifier: keyid:3C:1F:DD:8B:A3:01:DC:E3:DB:3F:0B:CC:25:C8:69:4C:E1:BC:DC:7D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A08FD/9F42EAD8C8AB11E9829D282FC4F9AE02/PB_di6MB3OPbPwvMJchpTOG83H0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PB_di6MB3OPbPwvMJchpTOG83H0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A08FD/9F42EAD8C8AB11E9829D282FC4F9AE02/PB_di6MB3OPbPwvMJchpTOG83H0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 60:35:9f:9b:87:c8:08:44:d5:31:f8:af:db:c8:e7:a1:a6:2d: e5:03:d9:e5:08:9b:74:c3:d5:17:13:7d:46:3d:9e:06:ad:e9: 3d:f3:93:94:1f:5c:8f:2c:03:5f:e2:43:49:3a:be:74:61:9a: 08:da:c9:27:aa:ee:a9:e8:2e:52:b6:61:5e:3e:b9:dc:d3:8b: 70:3f:68:35:7e:63:be:20:cc:88:7a:0d:fd:b8:fa:72:b3:7a: 2b:0d:08:da:a4:5a:11:52:42:15:4c:88:5b:84:4b:d1:3d:23: f7:12:b6:05:d4:41:88:26:02:68:56:30:70:4d:ae:aa:e6:11: ce:48:dd:e0:84:13:7f:af:bc:0c:c9:fe:3c:e5:a7:bc:b6:34: b7:0d:a1:67:f0:70:ef:29:08:ab:1e:43:41:59:09:08:eb:ee: 09:31:80:06:3d:e7:71:e3:c9:82:a6:db:05:3a:49:e3:57:e7: 8b:75:50:a5:ee:91:a8:cc:f4:90:7b:df:4c:a9:60:0a:58:d1: 4f:af:08:78:6d:ca:61:5f:f3:61:77:88:8b:60:b4:76:3c:35: a5:e3:2f:d3:b3:97:83:27:bf:25:b2:ec:54:b0:92:c9:8c:c5: d7:77:ad:06:99:76:3c:b0:84:48:93:76:31:53:4b:b8:25:68: ea:62:83:cd -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDaAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTA4RkQxMTAvBgNVBAUTKDNDMUZERDhCQTMwMURDRTNEQjNGMEJDQzI1Qzg2OTRD RTFCQ0RDN0QwHhcNMjUwODAyMTgwNjA3WhcNMjUwODA5MTgwNjA3WjAYMRYwFAYD VQQDEw02ODhlNTM4Zi1hZGIzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA29qjM05yDAI8p1mc9aaoDR8QOrHC5Bpeb35Lg3ZthdGJW79lfrULtbdTK7aB D057znt8m3i4mOVYZ2NHgz862/A28QayGCbdtgnI1URtrioljbWrc8CWqXBApXLJ gVbA8rtYQLT6wWX24X0OIqwi/MAaUaEsvdUZHGHE2hT6ZsaESV5o27g0Rxp6gpeE PHALtjzhWbEnL6Jr2kRhHeu/UW7/UkW8ky9xRYH4jNr52U1RNkX1fP0hT9H3U4bW HlEtVaWe1vx72gRXPMHm5nWPmWdNkT74M+4nkDFgLwRzkLWZ9aYBUA754CCft16j j9DeWDbNJnhUl/fRfhGi5iMrrQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFKeshFYh ezIj97ntk4pPF8GYx6oqMB8GA1UdIwQYMBaAFDwf3YujAdzj2z8LzCXIaUzhvNx9 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBMDhGRC85RjQyRUFEOEM4 QUIxMUU5ODI5RDI4MkZDNEY5QUUwMi9QQl9kaTZNQjNPUGJQd3ZNSmNocFRPRzgz SDAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1BCX2RpNk1CM09QYlB3dk1KY2hwVE9HODNIMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB MDhGRC85RjQyRUFEOEM4QUIxMUU5ODI5RDI4MkZDNEY5QUUwMi9QQl9kaTZNQjNP UGJQd3ZNSmNocFRPRzgzSDAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBgNZ+bh8gIRNUx+K/byOehpi3lA9nlCJt0w9UXE31GPZ4Grek985OU H1yPLANf4kNJOr50YZoI2sknqu6p6C5StmFePrnc04twP2g1fmO+IMyIeg39uPpy s3orDQjapFoRUkIVTIhbhEvRPSP3ErYF1EGIJgJoVjBwTa6q5hHOSN3ghBN/r7wM yf485ae8tjS3DaFn8HDvKQirHkNBWQkI6+4JMYAGPedx48mCptsFOknjV+eLdVCl 7pGozPSQe99MqWAKWNFPrwh4bcphX/Nhd4iLYLR2PDWl4y/Ts5eDJ78lsuxUsJLJ jMXXd60GmXY8sIRIk3YxU0u4JWjqYoPN -----END CERTIFICATE-----Generated at Mon Aug 4 11:19:54 2025 by rpki-client