$ rpki-client -vvf rpki.apnic.net/member_repository/A91E0EF2/AB6B27F65EE211ECAFA64B44C4F9AE02/PV2GR6upu0BiXDxkPNg2fxUHgBo.mft File: PV2GR6upu0BiXDxkPNg2fxUHgBo.mft (raw, json) Hash identifier: H5oTFPZZGxTt9b3M1vRPfrs+VSrtTuR9IKqvGQ64xoY= Subject key identifier: 8F:6B:41:25:52:4F:9F:2D:A4:FF:9B:64:26:97:1F:68:09:48:D5:96 Authority key identifier: 3D:5D:86:47:AB:A9:BB:40:62:5C:3C:64:3C:D8:36:7F:15:07:80:1A Certificate issuer: /CN=A91E0EF2/serialNumber=3D5D8647ABA9BB40625C3C643CD8367F1507801A Certificate serial: 0463 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/PV2GR6upu0BiXDxkPNg2fxUHgBo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E0EF2/AB6B27F65EE211ECAFA64B44C4F9AE02/PV2GR6upu0BiXDxkPNg2fxUHgBo.mft Manifest number: 045D Signing time: Sat 09 Aug 2025 00:43:05 +0000 Manifest this update: Sat 09 Aug 2025 00:43:05 +0000 Manifest next update: Sat 16 Aug 2025 00:43:05 +0000 Files and hashes: 1: PV2GR6upu0BiXDxkPNg2fxUHgBo.crl (hash: ag+cKyZlyRB47kIC273DvqjXAEw9s3/7mvl1odp4Vxg=) 2: CA7DCCFE5EE511ECA6B8CA48C4F9AE02.roa (hash: mDuBvAb87vc0xqlLuEIwzuSg0BaaCa9nDXGB49E/55o=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E0EF2/AB6B27F65EE211ECAFA64B44C4F9AE02/PV2GR6upu0BiXDxkPNg2fxUHgBo.crl rsync://rpki.apnic.net/member_repository/A91E0EF2/AB6B27F65EE211ECAFA64B44C4F9AE02/PV2GR6upu0BiXDxkPNg2fxUHgBo.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/PV2GR6upu0BiXDxkPNg2fxUHgBo.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 Aug 2025 05:57:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1123 (0x463) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E0EF2, serialNumber=3D5D8647ABA9BB40625C3C643CD8367F1507801A Validity Not Before: Aug 9 00:43:05 2025 GMT Not After : Aug 16 00:43:05 2025 GMT Subject: CN=68969999-8174 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c9:c3:79:4c:ea:e1:23:14:07:b9:25:9e:1f:4e: fd:93:05:99:3a:98:2d:8f:7e:3b:d7:da:17:dc:f6: de:d4:28:d3:64:82:cf:3c:ab:b1:d9:62:ba:f1:4c: 92:cd:cd:da:89:ec:04:3e:dd:72:8f:42:ca:3a:c7: 74:29:8c:f2:90:99:2e:07:3c:e8:67:cb:e3:42:63: 26:3a:77:23:e3:1b:6e:18:1a:6e:2d:e5:85:ac:8c: ff:16:e5:40:74:f1:72:6d:af:03:ca:bd:20:90:16: 8a:8b:80:70:92:1e:86:d1:8a:40:85:3e:8d:e8:21: fe:57:00:a1:d3:b5:7d:de:5b:90:24:ba:cd:0b:47: 52:47:ac:a1:08:89:1e:2e:88:32:d7:31:93:f6:a5: 83:ab:79:a1:0a:34:d3:c6:25:a0:20:fe:7a:16:d9: 09:4a:c6:b8:6b:d3:36:3a:51:e9:58:36:38:5c:5e: 0c:e0:a5:aa:15:4e:10:c5:cc:cb:f0:65:c4:3a:83: fa:52:d7:39:13:cc:d3:33:f3:11:b2:24:b0:91:ed: b9:03:1d:35:c5:2b:a3:94:b0:86:7a:61:57:c8:fb: 1c:0c:7e:bf:c4:58:04:23:b1:77:0c:e2:c7:7e:93: 18:7f:95:85:10:39:9a:bf:6a:e0:46:74:4f:81:36: bf:23 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8F:6B:41:25:52:4F:9F:2D:A4:FF:9B:64:26:97:1F:68:09:48:D5:96 X509v3 Authority Key Identifier: keyid:3D:5D:86:47:AB:A9:BB:40:62:5C:3C:64:3C:D8:36:7F:15:07:80:1A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E0EF2/AB6B27F65EE211ECAFA64B44C4F9AE02/PV2GR6upu0BiXDxkPNg2fxUHgBo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/PV2GR6upu0BiXDxkPNg2fxUHgBo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E0EF2/AB6B27F65EE211ECAFA64B44C4F9AE02/PV2GR6upu0BiXDxkPNg2fxUHgBo.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 12:aa:fc:48:28:74:bd:3e:12:5e:16:57:c1:26:f2:53:3f:e5: 5c:13:6a:ce:04:5b:52:ed:fd:7d:95:73:3b:fb:1d:8f:7e:f0: c9:3c:58:2d:cb:85:ca:fc:0d:56:b7:a3:fb:96:52:81:0f:b6: 9d:1a:3e:e7:5b:99:9c:3d:eb:dc:87:d6:99:3f:9d:84:06:a8: 7c:19:4b:92:97:f4:02:8c:57:6e:47:1f:ea:d3:94:e7:51:b2: cf:be:b4:41:a8:01:97:0a:34:f9:14:41:3a:a9:61:f0:62:7f: 51:f1:94:1d:e5:cc:ec:ed:21:f6:59:34:56:2c:96:36:70:2f: fc:1d:8e:0a:13:dc:ae:31:66:49:74:55:62:c7:f6:22:42:e2: 16:5b:49:02:0f:f7:38:b5:f4:4a:7d:65:50:16:b7:35:7d:70: f7:23:34:6e:35:54:6b:e7:16:be:18:a0:de:04:5b:51:0c:71: 9e:57:83:a5:f1:cb:29:ec:89:5a:bb:28:64:c5:e5:5f:53:34: af:0b:ac:e9:eb:73:5d:40:1a:92:5a:4f:13:06:42:88:e4:3e: aa:e7:30:8d:7e:6e:4f:30:e9:bc:30:96:28:c2:a9:a7:bc:c5: 30:80:30:30:9b:f9:4b:63:70:08:76:c1:19:fa:d7:1f:5d:21: 8d:83:57:6b -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBGMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTBFRjIxMTAvBgNVBAUTKDNENUQ4NjQ3QUJBOUJCNDA2MjVDM0M2NDNDRDgzNjdG MTUwNzgwMUEwHhcNMjUwODA5MDA0MzA1WhcNMjUwODE2MDA0MzA1WjAYMRYwFAYD VQQDEw02ODk2OTk5OS04MTc0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAycN5TOrhIxQHuSWeH079kwWZOpgtj34719oX3Pbe1CjTZILPPKux2WK68UyS zc3aiewEPt1yj0LKOsd0KYzykJkuBzzoZ8vjQmMmOncj4xtuGBpuLeWFrIz/FuVA dPFyba8Dyr0gkBaKi4Bwkh6G0YpAhT6N6CH+VwCh07V93luQJLrNC0dSR6yhCIke Logy1zGT9qWDq3mhCjTTxiWgIP56FtkJSsa4a9M2OlHpWDY4XF4M4KWqFU4QxczL 8GXEOoP6Utc5E8zTM/MRsiSwke25Ax01xSujlLCGemFXyPscDH6/xFgEI7F3DOLH fpMYf5WFEDmav2rgRnRPgTa/IwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFI9rQSVS T58tpP+bZCaXH2gJSNWWMB8GA1UdIwQYMBaAFD1dhkerqbtAYlw8ZDzYNn8VB4Aa MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFMEVGMi9BQjZCMjdGNjVF RTIxMUVDQUZBNjRCNDRDNEY5QUUwMi9QVjJHUjZ1cHUwQmlYRHhrUE5nMmZ4VUhn Qm8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL1BWMkdSNnVwdTBCaVhEeGtQTmcyZnhVSGdCby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF MEVGMi9BQjZCMjdGNjVFRTIxMUVDQUZBNjRCNDRDNEY5QUUwMi9QVjJHUjZ1cHUw QmlYRHhrUE5nMmZ4VUhnQm8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQASqvxIKHS9PhJeFlfBJvJTP+VcE2rOBFtS7f19lXM7+x2PfvDJPFgt y4XK/A1Wt6P7llKBD7adGj7nW5mcPevch9aZP52EBqh8GUuSl/QCjFduRx/q05Tn UbLPvrRBqAGXCjT5FEE6qWHwYn9R8ZQd5czs7SH2WTRWLJY2cC/8HY4KE9yuMWZJ dFVix/YiQuIWW0kCD/c4tfRKfWVQFrc1fXD3IzRuNVRr5xa+GKDeBFtRDHGeV4Ol 8csp7IlauyhkxeVfUzSvC6zp63NdQBqSWk8TBkKI5D6q5zCNfm5PMOm8MJYowqmn vMUwgDAwm/lLY3AIdsEZ+tcfXSGNg1dr -----END CERTIFICATE-----Generated at Sun Aug 10 13:54:42 2025 by rpki-client