$ rpki-client -vvf rpki.apnic.net/member_repository/A91CED30/BE80C6A6AE1E11EEA7EA0A77C4F9AE02/PgzfiCrujHIh1YijxSYBjh1kyWg.mft File: PgzfiCrujHIh1YijxSYBjh1kyWg.mft (raw, json) Hash identifier: Ru3gTzP9EKjcBdohYYuiNLu6nb7Oojmyg/L0Zf/rwGM= Subject key identifier: 30:9F:A4:86:20:43:DD:9F:BA:99:17:AD:18:DF:22:EA:CB:2C:17:B4 Authority key identifier: 3E:0C:DF:88:2A:EE:8C:72:21:D5:88:A3:C5:26:01:8E:1D:64:C9:68 Certificate issuer: /CN=A91CED30/serialNumber=3E0CDF882AEE8C7221D588A3C526018E1D64C968 Certificate serial: 012F Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/PgzfiCrujHIh1YijxSYBjh1kyWg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CED30/BE80C6A6AE1E11EEA7EA0A77C4F9AE02/PgzfiCrujHIh1YijxSYBjh1kyWg.mft Manifest number: 012C Signing time: Mon 11 Aug 2025 04:45:00 +0000 Manifest this update: Mon 11 Aug 2025 04:44:59 +0000 Manifest next update: Mon 18 Aug 2025 04:44:59 +0000 Files and hashes: 1: PgzfiCrujHIh1YijxSYBjh1kyWg.crl (hash: dkp3kYjc6vxIjOO5yqv25k70b+jEaAfrWpVz/8oM1x8=) 2: 41E0B402AE1F11EE96A5C977C4F9AE02.roa (hash: 92n4boJHjJIj9KtZ2gabfQc0rIkNAgV+GGdiupr7NM8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CED30/BE80C6A6AE1E11EEA7EA0A77C4F9AE02/PgzfiCrujHIh1YijxSYBjh1kyWg.crl rsync://rpki.apnic.net/member_repository/A91CED30/BE80C6A6AE1E11EEA7EA0A77C4F9AE02/PgzfiCrujHIh1YijxSYBjh1kyWg.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/PgzfiCrujHIh1YijxSYBjh1kyWg.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 Aug 2025 05:57:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 303 (0x12f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CED30, serialNumber=3E0CDF882AEE8C7221D588A3C526018E1D64C968 Validity Not Before: Aug 11 04:44:59 2025 GMT Not After : Aug 18 04:44:59 2025 GMT Subject: CN=6899754b-6efc Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d6:a4:6b:56:ca:ab:98:4a:26:ad:b9:5c:d1:4b: ae:9a:e1:d3:63:b5:3b:61:09:63:5d:dd:d6:16:cb: 8f:0a:f4:35:0f:35:d2:91:6d:07:f7:00:cd:d2:c0: d9:16:9d:10:27:52:38:0f:05:65:64:06:31:92:80: 42:30:a3:60:8e:05:10:ba:ef:a1:63:e4:fd:3e:64: 07:a0:63:0c:fa:c8:c8:2c:fc:9e:30:3e:da:48:0e: 80:d0:5d:3a:0c:ca:a6:fc:0e:74:1f:6a:e8:5e:15: 6b:f1:fa:70:9f:4a:9e:04:77:69:eb:ec:b0:ed:fc: e3:2d:7d:e7:cc:65:d3:0a:09:ef:de:f9:32:23:76: dd:5a:12:19:23:15:9c:7b:a1:b1:ed:23:14:a1:ca: b9:ee:47:e6:7c:2d:2f:87:91:69:52:d2:b7:05:c5: db:2e:b4:99:c4:0c:d6:75:62:22:d5:08:b4:a9:17: 1c:91:5f:06:6f:20:18:3b:43:33:c3:60:3f:b1:ae: b2:05:6a:aa:ab:9c:43:85:9d:b8:aa:37:bb:be:7c: 90:c8:4e:15:ce:91:40:3c:d4:c2:46:10:66:86:50: b2:04:be:18:a5:f9:07:7f:0c:9c:e4:ac:bf:9a:f0: 63:3c:73:9e:3f:2d:eb:84:96:97:92:f5:54:24:07: 2d:03 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 30:9F:A4:86:20:43:DD:9F:BA:99:17:AD:18:DF:22:EA:CB:2C:17:B4 X509v3 Authority Key Identifier: keyid:3E:0C:DF:88:2A:EE:8C:72:21:D5:88:A3:C5:26:01:8E:1D:64:C9:68 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CED30/BE80C6A6AE1E11EEA7EA0A77C4F9AE02/PgzfiCrujHIh1YijxSYBjh1kyWg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/PgzfiCrujHIh1YijxSYBjh1kyWg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CED30/BE80C6A6AE1E11EEA7EA0A77C4F9AE02/PgzfiCrujHIh1YijxSYBjh1kyWg.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 8c:1c:ff:a8:1f:6b:df:ac:d7:dd:2c:e5:79:7c:5b:31:bc:53: 76:dc:63:5b:4b:79:68:26:ea:5b:1c:dd:80:0f:1d:ad:0f:3c: 11:3b:cc:fe:4c:5b:ff:88:3f:50:dc:0c:6b:4b:f9:46:50:25: 41:a6:e3:cc:28:63:e9:7d:97:19:f7:5b:88:56:5d:7f:d0:d7: ce:08:80:6c:17:70:6e:0d:80:75:78:81:21:13:b6:35:af:1c: d5:19:fa:4b:41:7d:c0:29:76:e2:5c:90:71:68:aa:a2:4f:cf: cf:81:9c:48:02:0f:24:32:23:a3:87:a0:da:92:c7:f3:ec:dd: fc:bc:0c:ba:e9:c0:13:fe:b3:6f:6f:4d:dd:16:ae:9e:5e:74: ef:92:4e:3d:15:85:e0:83:a5:47:9f:fe:7a:fb:7a:80:ea:5e: 37:3f:b4:16:5d:1d:82:d8:75:52:59:b9:45:57:2b:51:cc:d7: 02:10:24:50:33:7f:42:d7:97:4c:2e:9f:76:d8:be:71:c9:48: 28:93:be:8c:0e:fb:e1:9a:a1:c0:aa:35:2d:f0:e1:ca:7e:b8: 7a:f1:b1:40:32:e1:7c:7a:78:82:48:9a:28:7e:2e:89:52:06: d2:bf:c5:e7:15:12:12:84:09:23:b5:ea:72:2f:e2:a8:0e:72: 41:a1:61:f3 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAS8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Q0VEMzAxMTAvBgNVBAUTKDNFMENERjg4MkFFRThDNzIyMUQ1ODhBM0M1MjYwMThF MUQ2NEM5NjgwHhcNMjUwODExMDQ0NDU5WhcNMjUwODE4MDQ0NDU5WjAYMRYwFAYD VQQDEw02ODk5NzU0Yi02ZWZjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1qRrVsqrmEomrblc0UuumuHTY7U7YQljXd3WFsuPCvQ1DzXSkW0H9wDN0sDZ Fp0QJ1I4DwVlZAYxkoBCMKNgjgUQuu+hY+T9PmQHoGMM+sjILPyeMD7aSA6A0F06 DMqm/A50H2roXhVr8fpwn0qeBHdp6+yw7fzjLX3nzGXTCgnv3vkyI3bdWhIZIxWc e6Gx7SMUocq57kfmfC0vh5FpUtK3BcXbLrSZxAzWdWIi1Qi0qRcckV8GbyAYO0Mz w2A/sa6yBWqqq5xDhZ24qje7vnyQyE4VzpFAPNTCRhBmhlCyBL4YpfkHfwyc5Ky/ mvBjPHOePy3rhJaXkvVUJActAwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFDCfpIYg Q92fupkXrRjfIurLLBe0MB8GA1UdIwQYMBaAFD4M34gq7oxyIdWIo8UmAY4dZMlo MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDRUQzMC9CRTgwQzZBNkFF MUUxMUVFQTdFQTBBNzdDNEY5QUUwMi9QZ3pmaUNydWpISWgxWWlqeFNZQmpoMWt5 V2cuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL1BnemZpQ3J1akhJaDFZaWp4U1lCamgxa3lXZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD RUQzMC9CRTgwQzZBNkFFMUUxMUVFQTdFQTBBNzdDNEY5QUUwMi9QZ3pmaUNydWpI SWgxWWlqeFNZQmpoMWt5V2cubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCMHP+oH2vfrNfdLOV5fFsxvFN23GNbS3loJupbHN2ADx2tDzwRO8z+ TFv/iD9Q3AxrS/lGUCVBpuPMKGPpfZcZ91uIVl1/0NfOCIBsF3BuDYB1eIEhE7Y1 rxzVGfpLQX3AKXbiXJBxaKqiT8/PgZxIAg8kMiOjh6Daksfz7N38vAy66cAT/rNv b03dFq6eXnTvkk49FYXgg6VHn/56+3qA6l43P7QWXR2C2HVSWblFVytRzNcCECRQ M39C15dMLp922L5xyUgok76MDvvhmqHAqjUt8OHKfrh68bFAMuF8eniCSJoofi6J UgbSv8XnFRIShAkjtepyL+KoDnJBoWHz -----END CERTIFICATE-----Generated at Mon Aug 11 07:45:50 2025 by rpki-client