$ rpki-client -vvf rpki.apnic.net/member_repository/A91F02EA/DB15CDE011DB11EA95F2B059C4F9AE02/PShwiOOGgqTkudgoRQszZr3q1d0.mft File: PShwiOOGgqTkudgoRQszZr3q1d0.mft (raw, json) Hash identifier: 3eUVVji+bZXmYiBGgOqRmjsu0BLXnrjILF8ZZrL2ImY= Subject key identifier: 0E:18:07:91:54:33:06:2E:4E:59:5F:1F:C6:AD:FF:EA:6F:12:94:66 Authority key identifier: 3D:28:70:88:E3:86:82:A4:E4:B9:D8:28:45:0B:33:66:BD:EA:D5:DD Certificate issuer: /CN=A91F02EA/serialNumber=3D287088E38682A4E4B9D828450B3366BDEAD5DD Certificate serial: 0C3D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PShwiOOGgqTkudgoRQszZr3q1d0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F02EA/DB15CDE011DB11EA95F2B059C4F9AE02/PShwiOOGgqTkudgoRQszZr3q1d0.mft Manifest number: 0C2D Signing time: Mon 04 Aug 2025 18:53:37 +0000 Manifest this update: Mon 04 Aug 2025 18:53:37 +0000 Manifest next update: Mon 11 Aug 2025 18:53:37 +0000 Files and hashes: 1: PShwiOOGgqTkudgoRQszZr3q1d0.crl (hash: fB4if9rbggJwMdUf/WUnmnFNqdUxzFNV/7VRN1N42Z8=) 2: 7716938A416211EB9B0F3C54C4F9AE02.roa (hash: SaoXuslBHecNHa04UZ0EBB+W8ns+FIPHvzYnnMHMCbU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F02EA/DB15CDE011DB11EA95F2B059C4F9AE02/PShwiOOGgqTkudgoRQszZr3q1d0.crl rsync://rpki.apnic.net/member_repository/A91F02EA/DB15CDE011DB11EA95F2B059C4F9AE02/PShwiOOGgqTkudgoRQszZr3q1d0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PShwiOOGgqTkudgoRQszZr3q1d0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 11 Aug 2025 18:53:36 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3133 (0xc3d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F02EA, serialNumber=3D287088E38682A4E4B9D828450B3366BDEAD5DD Validity Not Before: Aug 4 18:53:37 2025 GMT Not After : Aug 11 18:53:37 2025 GMT Subject: CN=689101b1-65aa Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e2:0a:ff:ff:e7:b3:54:87:ed:3b:5a:a0:d0:c9: 06:c6:1b:99:d3:c3:ce:2f:7f:66:f8:e4:fb:8e:61: 0c:68:f7:86:07:4c:b4:bd:d7:25:eb:44:0f:62:2d: 10:8f:5e:e8:0d:ed:0f:ae:2e:2c:e0:b1:d4:8e:94: 29:ef:1d:cb:a3:d7:a6:a4:4b:46:17:e1:fd:39:d8: 7b:9b:ae:e7:e9:1d:95:ef:6c:b7:7e:39:dc:2b:eb: 06:a6:c2:cf:8e:d6:cb:ec:40:9d:ad:58:11:4d:32: 0c:69:cf:05:5f:21:44:6b:ce:79:f4:b9:7c:4d:d0: 21:0c:25:b1:43:6c:db:62:1a:a6:55:aa:a4:24:5f: c3:bf:93:49:07:3e:ab:9a:38:10:cc:de:1c:c4:c5: 53:3f:94:32:6c:9b:fc:34:d9:d4:46:09:be:05:f8: a0:ac:ee:ff:8c:54:2f:35:40:0a:76:13:9a:66:12: 20:8a:d8:f4:1e:76:d7:b1:5c:ac:11:30:4f:1a:d5: 16:46:e9:15:f5:8e:aa:70:db:78:76:08:89:6b:f3: ab:57:0a:69:b2:86:0c:d2:c0:0d:c2:0b:64:7a:c2: d8:cf:26:c0:2e:63:37:1a:7a:7a:51:73:bb:91:7c: 77:f5:da:ce:c8:07:e5:b6:b7:60:8a:44:db:69:09: d7:bb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0E:18:07:91:54:33:06:2E:4E:59:5F:1F:C6:AD:FF:EA:6F:12:94:66 X509v3 Authority Key Identifier: keyid:3D:28:70:88:E3:86:82:A4:E4:B9:D8:28:45:0B:33:66:BD:EA:D5:DD X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F02EA/DB15CDE011DB11EA95F2B059C4F9AE02/PShwiOOGgqTkudgoRQszZr3q1d0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PShwiOOGgqTkudgoRQszZr3q1d0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F02EA/DB15CDE011DB11EA95F2B059C4F9AE02/PShwiOOGgqTkudgoRQszZr3q1d0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 34:56:df:35:55:25:44:43:f6:b4:82:8a:dd:0f:f1:85:5d:07: b4:e1:84:fb:55:4e:88:ef:12:db:49:84:09:36:be:32:3a:3b: c8:87:a1:f6:b1:cb:20:cb:35:19:98:3d:8a:e3:a1:a1:01:97: e0:94:fc:b8:00:21:8b:28:7b:23:a7:30:38:4b:26:22:5a:a6: 88:41:43:c9:67:06:48:49:ff:9e:12:8f:cb:92:15:20:49:30: 89:f9:39:86:07:63:bf:11:fb:e1:b5:5b:71:a8:0a:18:c0:15: 0d:62:ce:cf:c3:51:28:4f:3e:3a:8e:d4:f4:47:7a:57:11:78: 6e:44:03:85:a4:d6:d8:22:59:8a:1b:88:58:b7:8a:fb:f5:17: ff:85:e4:a7:e0:43:fc:83:68:19:29:05:86:98:96:19:ff:6f: 9c:c5:ce:d9:d3:02:3b:ea:32:5a:31:92:66:c2:9c:63:75:63: 64:a0:bb:bc:60:3d:28:7f:f4:e2:4e:66:36:ef:c3:2d:6f:69: b9:c6:98:25:6c:e7:dd:d3:a8:2d:29:c8:89:15:50:7f:25:60: fb:41:55:25:60:b8:b0:fe:d9:34:4b:00:81:51:94:11:4a:e5: e5:12:b7:65:36:94:a6:c6:b3:59:b4:99:f2:9e:92:ce:c7:ea: 6d:36:b9:31 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDD0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjAyRUExMTAvBgNVBAUTKDNEMjg3MDg4RTM4NjgyQTRFNEI5RDgyODQ1MEIzMzY2 QkRFQUQ1REQwHhcNMjUwODA0MTg1MzM3WhcNMjUwODExMTg1MzM3WjAYMRYwFAYD VQQDEw02ODkxMDFiMS02NWFhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA4gr//+ezVIftO1qg0MkGxhuZ08POL39m+OT7jmEMaPeGB0y0vdcl60QPYi0Q j17oDe0Pri4s4LHUjpQp7x3Lo9empEtGF+H9Odh7m67n6R2V72y3fjncK+sGpsLP jtbL7ECdrVgRTTIMac8FXyFEa8559Ll8TdAhDCWxQ2zbYhqmVaqkJF/Dv5NJBz6r mjgQzN4cxMVTP5QybJv8NNnURgm+BfigrO7/jFQvNUAKdhOaZhIgitj0HnbXsVys ETBPGtUWRukV9Y6qcNt4dgiJa/OrVwppsoYM0sANwgtkesLYzybALmM3Gnp6UXO7 kXx39drOyAfltrdgikTbaQnXuwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFA4YB5FU MwYuTllfH8at/+pvEpRmMB8GA1UdIwQYMBaAFD0ocIjjhoKk5LnYKEULM2a96tXd MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGMDJFQS9EQjE1Q0RFMDEx REIxMUVBOTVGMkIwNTlDNEY5QUUwMi9QU2h3aU9PR2dxVGt1ZGdvUlFzelpyM3Ex ZDAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1BTaHdpT09HZ3FUa3VkZ29SUXN6WnIzcTFkMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG MDJFQS9EQjE1Q0RFMDExREIxMUVBOTVGMkIwNTlDNEY5QUUwMi9QU2h3aU9PR2dx VGt1ZGdvUlFzelpyM3ExZDAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA0Vt81VSVEQ/a0gordD/GFXQe04YT7VU6I7xLbSYQJNr4yOjvIh6H2 scsgyzUZmD2K46GhAZfglPy4ACGLKHsjpzA4SyYiWqaIQUPJZwZISf+eEo/LkhUg STCJ+TmGB2O/EfvhtVtxqAoYwBUNYs7Pw1EoTz46jtT0R3pXEXhuRAOFpNbYIlmK G4hYt4r79Rf/heSn4EP8g2gZKQWGmJYZ/2+cxc7Z0wI76jJaMZJmwpxjdWNkoLu8 YD0of/TiTmY278Mtb2m5xpglbOfd06gtKciJFVB/JWD7QVUlYLiw/tk0SwCBUZQR SuXlErdlNpSmxrNZtJnynpLOx+ptNrkx -----END CERTIFICATE-----Generated at Wed Aug 6 18:44:16 2025 by rpki-client