$ rpki-client -vvf rpki.apnic.net/member_repository/A91C8307/3432F60CBECD11EF98C74132C4F9AE02/PdCVvno70d2CniomSfx-gafv40w.mft File: PdCVvno70d2CniomSfx-gafv40w.mft (raw, json) Hash identifier: Lv0uSSpwmMvQzx1TIneBVhgO65SGMCDZJsPc3ReidEY= Subject key identifier: 11:29:33:A4:FD:9B:CA:E8:A6:15:63:78:08:96:DE:B5:A5:B9:EE:B3 Authority key identifier: 3D:D0:95:BE:7A:3B:D1:DD:82:9E:2A:26:49:FC:7E:81:A7:EF:E3:4C Certificate issuer: /CN=A91C8307/serialNumber=3DD095BE7A3BD1DD829E2A2649FC7E81A7EFE34C Certificate serial: 79 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PdCVvno70d2CniomSfx-gafv40w.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C8307/3432F60CBECD11EF98C74132C4F9AE02/PdCVvno70d2CniomSfx-gafv40w.mft Manifest number: 78 Signing time: Sat 09 Aug 2025 07:16:01 +0000 Manifest this update: Sat 09 Aug 2025 07:16:00 +0000 Manifest next update: Sat 16 Aug 2025 07:16:00 +0000 Files and hashes: 1: PdCVvno70d2CniomSfx-gafv40w.crl (hash: 5jv2C6Kbv2TJ28ifiTz315b4qpujsLAoWXf6xDDFU88=) 2: DEDB3932BED411EF835BB47AC4F9AE02.roa (hash: O2sa7pTiQKdOhkw1Yh9cM+13JLJmRbo0IeSALJBybOk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C8307/3432F60CBECD11EF98C74132C4F9AE02/PdCVvno70d2CniomSfx-gafv40w.crl rsync://rpki.apnic.net/member_repository/A91C8307/3432F60CBECD11EF98C74132C4F9AE02/PdCVvno70d2CniomSfx-gafv40w.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PdCVvno70d2CniomSfx-gafv40w.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 Aug 2025 05:57:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 121 (0x79) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C8307, serialNumber=3DD095BE7A3BD1DD829E2A2649FC7E81A7EFE34C Validity Not Before: Aug 9 07:16:00 2025 GMT Not After : Aug 16 07:16:00 2025 GMT Subject: CN=6896f5b1-a354 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9a:13:de:fe:fb:16:e5:bf:29:64:44:11:22:10: db:1b:63:f1:a3:b8:50:db:76:c7:b7:d9:81:a1:c7: f6:d8:75:38:36:40:8d:35:b4:4b:65:95:4a:d7:2d: be:5d:a4:89:93:71:95:f3:39:bb:c4:98:6a:3e:84: b6:97:c7:91:67:a3:d2:67:3d:07:65:fd:a3:9d:e9: 39:69:da:6d:cc:75:9b:ce:1d:49:11:28:e2:0e:8c: 5e:73:61:dc:6e:6b:df:6c:49:79:b0:61:85:cf:89: 7e:2c:2d:96:83:36:b0:17:b5:6f:98:ab:8e:c6:7f: 94:e1:4c:de:10:dc:54:4f:dc:16:a1:a3:7b:54:6c: 56:3b:fa:57:3b:4a:88:d1:92:f0:99:cd:94:f2:d6: f1:11:85:a6:d5:31:03:bd:a9:fa:6b:51:dc:28:b4: 43:e0:ec:22:53:a4:88:e9:df:f6:ca:ca:99:50:6a: 0a:d7:62:26:31:27:2b:96:5a:2b:12:9b:98:43:a5: b5:5b:e7:67:fa:34:ce:03:e7:87:ef:5d:70:a9:3c: f3:67:34:33:44:82:99:0c:da:da:cf:67:96:40:8f: 1b:6a:73:34:6f:c1:bc:88:0e:e2:d8:6d:68:6d:fc: b2:51:ba:62:02:d2:ff:14:d0:3f:14:2e:ef:19:65: e1:21 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 11:29:33:A4:FD:9B:CA:E8:A6:15:63:78:08:96:DE:B5:A5:B9:EE:B3 X509v3 Authority Key Identifier: keyid:3D:D0:95:BE:7A:3B:D1:DD:82:9E:2A:26:49:FC:7E:81:A7:EF:E3:4C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C8307/3432F60CBECD11EF98C74132C4F9AE02/PdCVvno70d2CniomSfx-gafv40w.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PdCVvno70d2CniomSfx-gafv40w.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C8307/3432F60CBECD11EF98C74132C4F9AE02/PdCVvno70d2CniomSfx-gafv40w.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 74:0a:19:51:79:63:71:b1:5c:8a:a3:15:b8:7b:76:c1:bc:da: 6c:f5:b8:a5:97:9e:96:8b:1e:fe:5c:6d:5d:26:ff:c2:b1:b4: 75:63:17:db:6b:2e:64:37:70:f0:57:0f:59:bf:0f:44:f9:af: d5:76:83:5d:91:b7:b4:a7:89:5d:c0:ed:c8:76:2d:de:03:2e: 7a:f6:22:dd:bd:a5:3f:d8:6d:29:a4:4f:86:56:e0:e1:05:e7: 06:ce:10:35:a6:77:c3:ef:b3:0f:29:f0:8a:77:c5:61:ab:5d: b6:aa:df:81:f7:68:4f:c5:3e:bc:f5:f2:e4:ca:f7:ab:e4:f6: 91:b6:c1:a5:8e:82:6c:8f:16:c3:73:62:4b:7b:46:07:aa:ae: f8:28:9b:2c:0c:1c:c3:66:c3:3c:0a:f7:9b:3b:53:a9:b7:cc: 29:07:00:9c:a3:c6:46:63:dc:e8:f0:5b:fa:81:e0:64:fa:c8: a8:ea:20:28:35:27:66:41:e6:3f:0e:92:9e:27:1f:11:4e:53: 78:64:7f:fe:b4:ef:17:5b:d3:9a:2e:e7:cf:cc:f2:53:24:9f: bb:99:60:21:e6:35:d5:4e:77:2e:b0:54:56:54:20:54:63:02: 35:ff:93:25:6e:bf:0b:a9:89:7a:2d:2a:c8:cf:5e:c7:73:30: 09:d4:4c:98 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBeTANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFD ODMwNzExMC8GA1UEBRMoM0REMDk1QkU3QTNCRDFERDgyOUUyQTI2NDlGQzdFODFB N0VGRTM0QzAeFw0yNTA4MDkwNzE2MDBaFw0yNTA4MTYwNzE2MDBaMBgxFjAUBgNV BAMTDTY4OTZmNWIxLWEzNTQwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCaE97++xblvylkRBEiENsbY/GjuFDbdse32YGhx/bYdTg2QI01tEtllUrXLb5d pImTcZXzObvEmGo+hLaXx5Fno9JnPQdl/aOd6Tlp2m3MdZvOHUkRKOIOjF5zYdxu a99sSXmwYYXPiX4sLZaDNrAXtW+Yq47Gf5ThTN4Q3FRP3Baho3tUbFY7+lc7SojR kvCZzZTy1vERhabVMQO9qfprUdwotEPg7CJTpIjp3/bKyplQagrXYiYxJyuWWisS m5hDpbVb52f6NM4D54fvXXCpPPNnNDNEgpkM2trPZ5ZAjxtqczRvwbyIDuLYbWht /LJRumIC0v8U0D8ULu8ZZeEhAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUESkzpP2b yuimFWN4CJbetaW57rMwHwYDVR0jBBgwFoAUPdCVvno70d2CniomSfx+gafv40ww DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUM4MzA3LzM0MzJGNjBDQkVD RDExRUY5OEM3NDEzMkM0RjlBRTAyL1BkQ1Z2bm83MGQyQ25pb21TZngtZ2FmdjQw dy5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvUGRDVnZubzcwZDJDbmlvbVNmeC1nYWZ2NDB3LmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUM4 MzA3LzM0MzJGNjBDQkVDRDExRUY5OEM3NDEzMkM0RjlBRTAyL1BkQ1Z2bm83MGQy Q25pb21TZngtZ2FmdjQwdy5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAHQKGVF5Y3GxXIqjFbh7dsG82mz1uKWXnpaLHv5cbV0m/8KxtHVjF9tr LmQ3cPBXD1m/D0T5r9V2g12Rt7SniV3A7ch2Ld4DLnr2It29pT/YbSmkT4ZW4OEF 5wbOEDWmd8Pvsw8p8Ip3xWGrXbaq34H3aE/FPrz18uTK96vk9pG2waWOgmyPFsNz Ykt7RgeqrvgomywMHMNmwzwK95s7U6m3zCkHAJyjxkZj3OjwW/qB4GT6yKjqICg1 J2ZB5j8Okp4nHxFOU3hkf/607xdb05ou58/M8lMkn7uZYCHmNdVOdy6wVFZUIFRj AjX/kyVuvwupiXotKsjPXsdzMAnUTJg= -----END CERTIFICATE-----Generated at Sat Aug 9 10:40:56 2025 by rpki-client