$ rpki-client -vvf rpki.apnic.net/member_repository/A91F9E0A/0BD985E83E6911EFA2CE676AC4F9AE02/PVlGAD7uVIrZXXlssYi3UcV82sg.mft File: PVlGAD7uVIrZXXlssYi3UcV82sg.mft (raw, json) Hash identifier: 7x0UblFXQS7H+S2Dw1/Jhx59sHK1T2cTT2QnYCw+/rM= Subject key identifier: 5D:E8:24:6E:92:BB:5C:C2:4B:76:03:1D:AB:4E:2A:7E:39:61:2D:DC Authority key identifier: 3D:59:46:00:3E:EE:54:8A:D9:5D:79:6C:B1:88:B7:51:C5:7C:DA:C8 Certificate issuer: /CN=A91F9E0A/serialNumber=3D5946003EEE548AD95D796CB188B751C57CDAC8 Certificate serial: D6 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PVlGAD7uVIrZXXlssYi3UcV82sg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F9E0A/0BD985E83E6911EFA2CE676AC4F9AE02/PVlGAD7uVIrZXXlssYi3UcV82sg.mft Manifest number: D2 Signing time: Mon 11 Aug 2025 05:53:09 +0000 Manifest this update: Mon 11 Aug 2025 05:53:09 +0000 Manifest next update: Mon 18 Aug 2025 05:53:09 +0000 Files and hashes: 1: PVlGAD7uVIrZXXlssYi3UcV82sg.crl (hash: kOautF21qS8Epn++hjXhABwr/aB8jPeTKkmOKd7fY/s=) 2: D0CDFEEA406E11EFA085272AC4F9AE02.roa (hash: w/ol36A2Z1ijZJcK0F3MTKZZDizigtECN0FCYmTu3ig=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F9E0A/0BD985E83E6911EFA2CE676AC4F9AE02/PVlGAD7uVIrZXXlssYi3UcV82sg.crl rsync://rpki.apnic.net/member_repository/A91F9E0A/0BD985E83E6911EFA2CE676AC4F9AE02/PVlGAD7uVIrZXXlssYi3UcV82sg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PVlGAD7uVIrZXXlssYi3UcV82sg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 18 Aug 2025 05:53:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 214 (0xd6) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F9E0A, serialNumber=3D5946003EEE548AD95D796CB188B751C57CDAC8 Validity Not Before: Aug 11 05:53:09 2025 GMT Not After : Aug 18 05:53:09 2025 GMT Subject: CN=68998545-c2cf Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:af:b8:54:fd:ea:c6:01:d0:62:0c:84:94:c9:fd: 0f:47:23:18:67:99:74:77:6d:e0:7c:06:69:60:9d: 0f:29:b9:62:21:ae:a9:fc:9a:38:73:36:80:e7:64: f0:18:cf:32:37:e5:98:50:de:5c:47:f0:6e:0f:26: 08:9f:a6:ef:1b:fe:1e:d9:d6:e5:24:33:aa:7a:f3: 49:cb:44:e0:6c:7f:de:09:76:7c:9f:95:b3:4d:f9: 9d:89:87:a0:21:5e:d8:d9:82:53:f3:f5:dc:d9:0b: b6:0e:48:37:b6:1a:84:ea:72:6f:cf:c0:f0:0f:61: bf:84:f1:d5:fe:5e:c7:92:69:4c:80:df:6c:44:96: 98:92:d1:bb:7c:e7:b9:91:3a:84:70:72:23:5b:57: e7:3e:6d:18:2d:02:8e:ce:65:45:dd:c7:bf:fa:07: 3e:91:e9:83:11:74:d0:95:ee:f7:5d:60:85:4e:94: a2:b4:9a:07:84:14:f7:c5:b1:44:cd:5f:5c:f5:b5: 0e:ca:69:a8:4c:e8:a1:8f:e8:0e:35:c0:31:10:4d: 6a:55:b1:ae:b0:0d:9f:11:e9:82:40:5e:79:72:74: 62:57:c0:9f:73:38:f6:dd:8b:64:4f:90:d1:26:e2: b7:b3:c3:31:5d:af:7a:39:8a:d7:8d:85:51:56:c8: 6b:bf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5D:E8:24:6E:92:BB:5C:C2:4B:76:03:1D:AB:4E:2A:7E:39:61:2D:DC X509v3 Authority Key Identifier: keyid:3D:59:46:00:3E:EE:54:8A:D9:5D:79:6C:B1:88:B7:51:C5:7C:DA:C8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F9E0A/0BD985E83E6911EFA2CE676AC4F9AE02/PVlGAD7uVIrZXXlssYi3UcV82sg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PVlGAD7uVIrZXXlssYi3UcV82sg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F9E0A/0BD985E83E6911EFA2CE676AC4F9AE02/PVlGAD7uVIrZXXlssYi3UcV82sg.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 5b:49:4f:73:96:69:21:1f:48:a9:14:90:bb:7e:8d:85:f7:35: 25:e9:23:ff:2a:e2:c9:38:47:f4:27:81:95:5b:26:2e:f4:94: b4:43:8c:c0:b7:8c:ce:ef:ea:17:7c:4c:19:05:fc:5d:5b:c2: e1:b3:9c:2f:ae:ce:7c:b9:c4:d7:1d:ba:de:04:6a:fb:d4:b5: 48:d9:3e:0c:2f:95:b6:be:d7:10:e2:ad:87:41:2d:c2:0d:ba: 2e:c3:96:4b:03:43:89:84:6e:ae:70:c4:e0:78:7d:27:25:30: 80:b2:a4:ff:98:40:75:c1:c8:84:8f:84:4f:a6:09:c7:5f:24: bf:d6:e2:30:9e:2c:48:34:a3:64:49:cf:66:4f:75:78:65:3f: fa:23:c1:c6:8c:90:42:0e:c9:40:6e:dc:cc:2e:6c:f1:e0:91: a9:19:43:94:ed:48:b2:f7:21:c4:b4:2a:4e:ca:92:93:d1:82: 39:f3:3b:fc:01:d2:4d:41:0a:71:fe:8c:da:26:9a:cb:f7:df: a3:45:95:68:ec:7f:2e:91:63:1d:5f:fa:68:ad:61:64:6f:4c: 13:65:79:2b:59:87:ae:77:57:28:2a:a0:65:fa:73:4d:71:db: 9e:55:f6:44:53:19:da:72:91:3d:a0:95:a1:73:91:58:5a:61: 9c:9f:a0:64 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICANYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjlFMEExMTAvBgNVBAUTKDNENTk0NjAwM0VFRTU0OEFEOTVENzk2Q0IxODhCNzUx QzU3Q0RBQzgwHhcNMjUwODExMDU1MzA5WhcNMjUwODE4MDU1MzA5WjAYMRYwFAYD VQQDEw02ODk5ODU0NS1jMmNmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAr7hU/erGAdBiDISUyf0PRyMYZ5l0d23gfAZpYJ0PKbliIa6p/Jo4czaA52Tw GM8yN+WYUN5cR/BuDyYIn6bvG/4e2dblJDOqevNJy0TgbH/eCXZ8n5WzTfmdiYeg IV7Y2YJT8/Xc2Qu2Dkg3thqE6nJvz8DwD2G/hPHV/l7HkmlMgN9sRJaYktG7fOe5 kTqEcHIjW1fnPm0YLQKOzmVF3ce/+gc+kemDEXTQle73XWCFTpSitJoHhBT3xbFE zV9c9bUOymmoTOihj+gONcAxEE1qVbGusA2fEemCQF55cnRiV8Cfczj23YtkT5DR JuK3s8MxXa96OYrXjYVRVshrvwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFF3oJG6S u1zCS3YDHatOKn45YS3cMB8GA1UdIwQYMBaAFD1ZRgA+7lSK2V15bLGIt1HFfNrI MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGOUUwQS8wQkQ5ODVFODNF NjkxMUVGQTJDRTY3NkFDNEY5QUUwMi9QVmxHQUQ3dVZJclpYWGxzc1lpM1VjVjgy c2cuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1BWbEdBRDd1VklyWlhYbHNzWWkzVWNWODJzZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG OUUwQS8wQkQ5ODVFODNFNjkxMUVGQTJDRTY3NkFDNEY5QUUwMi9QVmxHQUQ3dVZJ clpYWGxzc1lpM1VjVjgyc2cubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBbSU9zlmkhH0ipFJC7fo2F9zUl6SP/KuLJOEf0J4GVWyYu9JS0Q4zA t4zO7+oXfEwZBfxdW8Lhs5wvrs58ucTXHbreBGr71LVI2T4ML5W2vtcQ4q2HQS3C Dbouw5ZLA0OJhG6ucMTgeH0nJTCAsqT/mEB1wciEj4RPpgnHXyS/1uIwnixINKNk Sc9mT3V4ZT/6I8HGjJBCDslAbtzMLmzx4JGpGUOU7Uiy9yHEtCpOypKT0YI58zv8 AdJNQQpx/ozaJprL99+jRZVo7H8ukWMdX/porWFkb0wTZXkrWYeud1coKqBl+nNN cdueVfZEUxnacpE9oJWhc5FYWmGcn6Bk -----END CERTIFICATE-----Generated at Tue Aug 12 14:02:08 2025 by rpki-client