$ rpki-client -vvf rpki.apnic.net/member_repository/A91E2F2C/FFB761FA967811EA840F0029C4F9AE02/PDml0ZGM9lqyVjMi8PXxQwmme48.mft File: PDml0ZGM9lqyVjMi8PXxQwmme48.mft (raw, json) Hash identifier: BnKGBMcQai2oasL2mDdjHOYO7ACwmRYd91Q9RhDCBGg= Subject key identifier: CE:0F:44:9A:31:30:8E:33:E3:9D:59:01:75:AF:BD:29:B5:61:EB:F8 Authority key identifier: 3C:39:A5:D1:91:8C:F6:5A:B2:56:33:22:F0:F5:F1:43:09:A6:7B:8F Certificate issuer: /CN=A91E2F2C/serialNumber=3C39A5D1918CF65AB2563322F0F5F14309A67B8F Certificate serial: 09AB Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PDml0ZGM9lqyVjMi8PXxQwmme48.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E2F2C/FFB761FA967811EA840F0029C4F9AE02/PDml0ZGM9lqyVjMi8PXxQwmme48.mft Manifest number: 0999 Signing time: Fri 08 Aug 2025 20:26:59 +0000 Manifest this update: Fri 08 Aug 2025 20:26:58 +0000 Manifest next update: Fri 15 Aug 2025 20:26:58 +0000 Files and hashes: 1: PDml0ZGM9lqyVjMi8PXxQwmme48.crl (hash: lNK/1p2YOQDTIC5YOTz1CTOSdau11IIjuxpoZo5U7Yk=) 2: DE07328A778911ECBD9C7748C4F9AE02.roa (hash: V37MROUsA/Vlywtiw7YJvjwfZWxefXilScjM3KKgLC0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E2F2C/FFB761FA967811EA840F0029C4F9AE02/PDml0ZGM9lqyVjMi8PXxQwmme48.crl rsync://rpki.apnic.net/member_repository/A91E2F2C/FFB761FA967811EA840F0029C4F9AE02/PDml0ZGM9lqyVjMi8PXxQwmme48.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PDml0ZGM9lqyVjMi8PXxQwmme48.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 Aug 2025 05:57:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2475 (0x9ab) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E2F2C, serialNumber=3C39A5D1918CF65AB2563322F0F5F14309A67B8F Validity Not Before: Aug 8 20:26:58 2025 GMT Not After : Aug 15 20:26:58 2025 GMT Subject: CN=68965d92-01a5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:83:95:48:2e:50:61:d8:60:5d:01:e3:4b:f9: 20:0f:40:f1:fe:32:76:d8:e2:1d:e0:ec:6b:6c:2b: bb:bb:bc:a3:66:1a:3d:ee:b9:1e:92:ab:85:d0:e5: 7b:eb:fc:49:7b:35:25:df:61:cc:00:75:ef:bc:88: ed:25:b2:c0:c8:b7:eb:ff:dc:54:26:f2:16:6d:bf: 12:9e:d7:76:75:ff:c2:f1:50:cf:0b:1b:4d:93:63: 02:4c:ee:95:07:fb:fd:92:d0:dc:88:d1:fc:05:dd: 21:77:b7:70:c3:63:4a:74:c0:55:b4:85:31:3b:b8: 0e:15:40:26:e2:d7:9d:ab:24:99:a3:75:e2:ad:54: 1a:58:e6:91:94:f7:b0:5b:2a:ee:7e:b3:5f:0b:1e: 34:80:9f:54:69:ac:ca:36:b5:90:62:b6:0e:43:b6: 3c:d6:f7:cc:0c:09:1f:9b:06:d6:1f:66:bb:86:ac: 41:4d:96:2b:c9:d9:cb:8a:f1:fe:0d:1f:4c:7d:a5: 1a:3d:27:b8:05:23:c4:4c:55:5c:08:8a:41:43:42: a2:54:2f:8c:fc:ce:89:1c:f1:5d:34:d3:f3:42:d7: e5:87:94:3a:cd:b9:0c:48:cb:4e:7d:03:82:54:5e: ff:7e:b0:36:8b:80:f7:4d:42:8a:89:ac:7e:f4:c8: 62:45 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CE:0F:44:9A:31:30:8E:33:E3:9D:59:01:75:AF:BD:29:B5:61:EB:F8 X509v3 Authority Key Identifier: keyid:3C:39:A5:D1:91:8C:F6:5A:B2:56:33:22:F0:F5:F1:43:09:A6:7B:8F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E2F2C/FFB761FA967811EA840F0029C4F9AE02/PDml0ZGM9lqyVjMi8PXxQwmme48.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PDml0ZGM9lqyVjMi8PXxQwmme48.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E2F2C/FFB761FA967811EA840F0029C4F9AE02/PDml0ZGM9lqyVjMi8PXxQwmme48.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 65:ac:b8:d2:ac:f5:6e:02:83:2d:f1:5b:b1:56:7b:93:3f:96: 4a:06:76:dd:ff:58:97:c8:27:37:c8:2b:c0:58:ed:4e:ff:67: 68:4a:ad:83:bc:46:e7:f4:d8:f8:13:dd:fc:4d:f8:0c:86:1e: b9:0a:6e:2c:6b:0a:65:9f:3c:23:04:e7:4a:3e:fe:98:37:aa: 3f:c8:1d:2a:54:7a:b7:c7:81:11:1c:d0:69:53:a5:aa:74:94: c3:be:32:ba:81:f9:92:4f:48:14:71:09:1b:bb:6d:4a:db:37: cc:d9:a3:e2:9a:b7:e1:63:f2:e2:c5:b8:8a:86:0a:1e:39:0f: 8a:26:dc:2c:6f:b1:97:1f:24:51:ce:9d:e3:bb:34:b8:4d:74: 8e:6a:33:52:33:ff:b3:f9:50:c7:9a:f7:42:f0:fd:fd:43:ec: 9e:79:31:69:a9:0d:e7:80:79:3a:bf:34:2c:1e:b1:3e:ed:3a: d2:8a:4a:f5:e4:b0:c4:58:92:2c:f0:4d:92:72:b7:6e:ca:fd: 54:a4:68:2a:ca:a0:42:67:85:ba:a5:75:a0:ea:4e:53:3e:d8: 43:83:47:54:0e:e2:80:ba:05:93:30:21:4f:b8:36:03:4a:f2: 69:16:0f:28:48:44:c9:66:86:b1:16:38:ef:9f:fa:63:22:ba: 91:2e:ce:be -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCaswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTJGMkMxMTAvBgNVBAUTKDNDMzlBNUQxOTE4Q0Y2NUFCMjU2MzMyMkYwRjVGMTQz MDlBNjdCOEYwHhcNMjUwODA4MjAyNjU4WhcNMjUwODE1MjAyNjU4WjAYMRYwFAYD VQQDEw02ODk2NWQ5Mi0wMWE1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtIOVSC5QYdhgXQHjS/kgD0Dx/jJ22OId4OxrbCu7u7yjZho97rkekquF0OV7 6/xJezUl32HMAHXvvIjtJbLAyLfr/9xUJvIWbb8Sntd2df/C8VDPCxtNk2MCTO6V B/v9ktDciNH8Bd0hd7dww2NKdMBVtIUxO7gOFUAm4tedqySZo3XirVQaWOaRlPew WyrufrNfCx40gJ9UaazKNrWQYrYOQ7Y81vfMDAkfmwbWH2a7hqxBTZYrydnLivH+ DR9MfaUaPSe4BSPETFVcCIpBQ0KiVC+M/M6JHPFdNNPzQtflh5Q6zbkMSMtOfQOC VF7/frA2i4D3TUKKiax+9MhiRQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFM4PRJox MI4z451ZAXWvvSm1Yev4MB8GA1UdIwQYMBaAFDw5pdGRjPZaslYzIvD18UMJpnuP MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFMkYyQy9GRkI3NjFGQTk2 NzgxMUVBODQwRjAwMjlDNEY5QUUwMi9QRG1sMFpHTTlscXlWak1pOFBYeFF3bW1l NDguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1BEbWwwWkdNOWxxeVZqTWk4UFh4UXdtbWU0OC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF MkYyQy9GRkI3NjFGQTk2NzgxMUVBODQwRjAwMjlDNEY5QUUwMi9QRG1sMFpHTTls cXlWak1pOFBYeFF3bW1lNDgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBlrLjSrPVuAoMt8VuxVnuTP5ZKBnbd/1iXyCc3yCvAWO1O/2doSq2D vEbn9Nj4E938TfgMhh65Cm4sawplnzwjBOdKPv6YN6o/yB0qVHq3x4ERHNBpU6Wq dJTDvjK6gfmST0gUcQkbu21K2zfM2aPimrfhY/LixbiKhgoeOQ+KJtwsb7GXHyRR zp3juzS4TXSOajNSM/+z+VDHmvdC8P39Q+yeeTFpqQ3ngHk6vzQsHrE+7TrSikr1 5LDEWJIs8E2Scrduyv1UpGgqyqBCZ4W6pXWg6k5TPthDg0dUDuKAugWTMCFPuDYD SvJpFg8oSETJZoaxFjjvn/pjIrqRLs6+ -----END CERTIFICATE-----Generated at Sun Aug 10 21:13:41 2025 by rpki-client