$ rpki-client -vvf rpki.apnic.net/member_repository/A91B10B9/D13BEAAAA0FB11ECA5D1DF5BC4F9AE02/PXe1hqP2gsVjtkJlJiiR1NpGp6g.mft File: PXe1hqP2gsVjtkJlJiiR1NpGp6g.mft (raw, json) Hash identifier: ijiFM41G3e/tqYeNDVu4bOpPmWZ9NjoU7ihTtTcyl2A= Subject key identifier: F2:62:A5:7D:A7:CF:58:8B:BA:3B:84:57:28:DA:11:07:3B:E8:23:62 Authority key identifier: 3D:77:B5:86:A3:F6:82:C5:63:B6:42:65:26:28:91:D4:DA:46:A7:A8 Certificate issuer: /CN=A91B10B9/serialNumber=3D77B586A3F682C563B64265262891D4DA46A7A8 Certificate serial: 03B5 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PXe1hqP2gsVjtkJlJiiR1NpGp6g.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B10B9/D13BEAAAA0FB11ECA5D1DF5BC4F9AE02/PXe1hqP2gsVjtkJlJiiR1NpGp6g.mft Manifest number: 03B0 Signing time: Thu 07 Aug 2025 01:19:37 +0000 Manifest this update: Thu 07 Aug 2025 01:19:36 +0000 Manifest next update: Thu 14 Aug 2025 01:19:36 +0000 Files and hashes: 1: PXe1hqP2gsVjtkJlJiiR1NpGp6g.crl (hash: IEQ8ofp+xnGSRBFA380peoOsXubjfkb2J5A3v78INWU=) 2: BCD0F6B0A0FF11EC924D4461C4F9AE02.roa (hash: eYkm574zXfPZBssf+KqgdlPvB8riPVJCVgCP7O8B6S0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B10B9/D13BEAAAA0FB11ECA5D1DF5BC4F9AE02/PXe1hqP2gsVjtkJlJiiR1NpGp6g.crl rsync://rpki.apnic.net/member_repository/A91B10B9/D13BEAAAA0FB11ECA5D1DF5BC4F9AE02/PXe1hqP2gsVjtkJlJiiR1NpGp6g.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PXe1hqP2gsVjtkJlJiiR1NpGp6g.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 Aug 2025 01:19:36 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 949 (0x3b5) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B10B9, serialNumber=3D77B586A3F682C563B64265262891D4DA46A7A8 Validity Not Before: Aug 7 01:19:36 2025 GMT Not After : Aug 14 01:19:36 2025 GMT Subject: CN=6893ff28-395e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a0:38:91:c0:af:ca:73:c6:69:5b:85:31:0f:af: 3f:cc:f2:ff:8f:14:34:2a:a8:48:f3:4a:5e:4e:3f: 06:bf:7d:32:2f:1c:0a:a5:db:b9:ff:39:46:d8:d6: c9:aa:2a:a0:e6:dd:a5:92:08:73:8f:42:9a:f9:25: 6b:68:6e:72:54:53:4e:75:5d:42:e3:5a:3f:d9:0a: 01:5a:d7:07:b5:48:88:2a:ac:1a:a8:87:e4:98:0d: cc:bf:0a:18:82:60:a8:b1:72:f9:f7:8f:ae:b3:20: 71:88:74:37:0c:59:74:5f:f4:cf:58:b4:34:ff:3c: fa:ec:a1:7d:9b:77:84:67:0f:90:24:ea:b3:fa:47: 72:35:fe:33:b5:f5:e9:fc:19:f6:8f:56:26:93:6f: ea:d1:a5:ba:72:ca:f2:c4:cb:05:be:cd:bb:de:b6: e2:d8:2b:8e:97:da:bf:eb:4d:0d:74:cc:ef:40:59: 57:8c:df:6a:d8:9b:f3:11:19:51:7f:40:e4:d3:f0: 34:43:89:10:21:2d:13:80:71:d5:05:c2:e9:fc:cd: 0a:b1:1d:4c:60:d0:94:e6:9e:57:47:38:14:fb:6d: 3c:6b:a9:c4:91:57:cc:48:0a:2b:fe:84:8d:c2:5e: bc:ae:f5:f7:c4:b2:8c:0f:73:cc:ed:b9:96:0a:a8: a8:ed Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F2:62:A5:7D:A7:CF:58:8B:BA:3B:84:57:28:DA:11:07:3B:E8:23:62 X509v3 Authority Key Identifier: keyid:3D:77:B5:86:A3:F6:82:C5:63:B6:42:65:26:28:91:D4:DA:46:A7:A8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B10B9/D13BEAAAA0FB11ECA5D1DF5BC4F9AE02/PXe1hqP2gsVjtkJlJiiR1NpGp6g.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PXe1hqP2gsVjtkJlJiiR1NpGp6g.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B10B9/D13BEAAAA0FB11ECA5D1DF5BC4F9AE02/PXe1hqP2gsVjtkJlJiiR1NpGp6g.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption be:fe:60:e2:14:45:78:47:c4:29:84:05:57:9d:e1:e0:ed:aa: 1f:f2:fb:09:81:a9:3a:c8:ac:70:62:6c:39:b8:09:3b:c9:35: 92:ca:86:e6:75:92:f4:0b:a7:8d:e8:9f:f1:ec:ac:4c:4d:25: 73:70:9e:9c:d4:0f:45:29:38:13:1f:d9:db:67:15:54:12:1d: f1:c5:f5:f9:6c:a8:8a:05:03:8c:ad:73:61:3e:61:cd:f3:33: aa:4c:6a:8f:63:e6:1e:ad:fa:95:d4:74:cd:7a:f4:88:8c:99: d1:be:54:87:08:1f:9e:84:8b:e0:e2:15:55:40:31:89:df:75: 58:19:00:ac:ff:23:65:01:e6:96:c8:9a:7a:48:aa:47:81:cc: c2:78:9b:44:34:96:cf:dc:28:1c:37:21:f6:cd:7b:be:80:2c: 9c:29:24:3e:23:52:96:ed:ee:f8:01:69:58:9c:7a:1e:5a:b8: c8:1c:a3:a8:0c:89:a6:21:e6:e6:38:97:b4:c1:f1:ad:81:bd: 94:ef:ae:36:02:54:e8:38:f4:cf:24:e0:69:54:5b:07:24:8a: 72:97:e0:b3:a6:14:a1:5b:f5:18:25:74:1a:21:6d:b5:d3:55: 90:0c:5a:41:26:f2:5b:65:96:0d:01:99:9a:5c:a4:c5:b7:68: b3:43:41:05 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICA7UwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjEwQjkxMTAvBgNVBAUTKDNENzdCNTg2QTNGNjgyQzU2M0I2NDI2NTI2Mjg5MUQ0 REE0NkE3QTgwHhcNMjUwODA3MDExOTM2WhcNMjUwODE0MDExOTM2WjAYMRYwFAYD VQQDEw02ODkzZmYyOC0zOTVlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAoDiRwK/Kc8ZpW4UxD68/zPL/jxQ0KqhI80peTj8Gv30yLxwKpdu5/zlG2NbJ qiqg5t2lkghzj0Ka+SVraG5yVFNOdV1C41o/2QoBWtcHtUiIKqwaqIfkmA3MvwoY gmCosXL594+usyBxiHQ3DFl0X/TPWLQ0/zz67KF9m3eEZw+QJOqz+kdyNf4ztfXp /Bn2j1Ymk2/q0aW6csryxMsFvs273rbi2CuOl9q/600NdMzvQFlXjN9q2JvzERlR f0Dk0/A0Q4kQIS0TgHHVBcLp/M0KsR1MYNCU5p5XRzgU+208a6nEkVfMSAor/oSN wl68rvX3xLKMD3PM7bmWCqio7QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFPJipX2n z1iLujuEVyjaEQc76CNiMB8GA1UdIwQYMBaAFD13tYaj9oLFY7ZCZSYokdTaRqeo MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCMTBCOS9EMTNCRUFBQUEw RkIxMUVDQTVEMURGNUJDNEY5QUUwMi9QWGUxaHFQMmdzVmp0a0psSmlpUjFOcEdw NmcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1BYZTFocVAyZ3NWanRrSmxKaWlSMU5wR3A2Zy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC MTBCOS9EMTNCRUFBQUEwRkIxMUVDQTVEMURGNUJDNEY5QUUwMi9QWGUxaHFQMmdz Vmp0a0psSmlpUjFOcEdwNmcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQC+/mDiFEV4R8QphAVXneHg7aof8vsJgak6yKxwYmw5uAk7yTWSyobm dZL0C6eN6J/x7KxMTSVzcJ6c1A9FKTgTH9nbZxVUEh3xxfX5bKiKBQOMrXNhPmHN 8zOqTGqPY+YerfqV1HTNevSIjJnRvlSHCB+ehIvg4hVVQDGJ33VYGQCs/yNlAeaW yJp6SKpHgczCeJtENJbP3CgcNyH2zXu+gCycKSQ+I1KW7e74AWlYnHoeWrjIHKOo DImmIebmOJe0wfGtgb2U7642AlToOPTPJOBpVFsHJIpyl+CzphShW/UYJXQaIW21 01WQDFpBJvJbZZYNAZmaXKTFt2izQ0EF -----END CERTIFICATE-----Generated at Thu Aug 7 04:03:39 2025 by rpki-client