$ rpki-client -vvf rpki.apnic.net/member_repository/A91FC9FE/53CB690CFDE211ED9D2D1F68C4F9AE02/pdnGpvlnW5HOVNEV-IyUEPGPkP4.mft File: pdnGpvlnW5HOVNEV-IyUEPGPkP4.mft (raw, json) Hash identifier: V2y9+0o1gXpyDvAhjWKcgT88tvver+AfBQZ1+dyeys0= Subject key identifier: 43:CD:64:38:82:40:C4:BA:C9:36:B3:7C:E5:F1:43:81:C4:3B:11:CE Authority key identifier: A5:D9:C6:A6:F9:67:5B:91:CE:54:D1:15:F8:8C:94:10:F1:8F:90:FE Certificate issuer: /CN=A91FC9FE/serialNumber=A5D9C6A6F9675B91CE54D115F88C9410F18F90FE Certificate serial: 01A2 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pdnGpvlnW5HOVNEV-IyUEPGPkP4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91FC9FE/53CB690CFDE211ED9D2D1F68C4F9AE02/pdnGpvlnW5HOVNEV-IyUEPGPkP4.mft Manifest number: 019B Signing time: Thu 07 Aug 2025 03:49:41 +0000 Manifest this update: Thu 07 Aug 2025 03:49:40 +0000 Manifest next update: Thu 14 Aug 2025 03:49:40 +0000 Files and hashes: 1: pdnGpvlnW5HOVNEV-IyUEPGPkP4.crl (hash: 4TXVF2D+fnLNa4hejot12xAaR2YBSEJ/Lk2agjEIgHE=) 2: C5CD32AAE5DC11EE867C6F21C4F9AE02.roa (hash: a4fQ9/brXb5z2Mtyms5QfXYQ2TroFUoiyPnPZ317i3A=) 3: C6AA9D48E5DC11EE867C6F21C4F9AE02.roa (hash: AbLxDDz7EyW1J/bgbPyfasPFpKdJaru9haT9jeZMl/Y=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91FC9FE/53CB690CFDE211ED9D2D1F68C4F9AE02/pdnGpvlnW5HOVNEV-IyUEPGPkP4.crl rsync://rpki.apnic.net/member_repository/A91FC9FE/53CB690CFDE211ED9D2D1F68C4F9AE02/pdnGpvlnW5HOVNEV-IyUEPGPkP4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pdnGpvlnW5HOVNEV-IyUEPGPkP4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 Aug 2025 03:49:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 418 (0x1a2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91FC9FE, serialNumber=A5D9C6A6F9675B91CE54D115F88C9410F18F90FE Validity Not Before: Aug 7 03:49:40 2025 GMT Not After : Aug 14 03:49:40 2025 GMT Subject: CN=68942255-e80f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:de:a7:19:86:10:eb:95:c2:32:07:5e:ad:29:83: eb:ce:54:c8:07:ad:8f:a6:9e:55:77:fb:e6:b1:06: 88:7b:41:c9:93:c2:cb:db:ff:00:9e:75:c5:1a:18: 88:ec:e0:bd:2c:95:67:90:4e:19:80:1a:f8:83:fe: 0f:1e:f8:97:3b:41:47:78:0f:4d:4e:0d:2a:7e:12: 50:ff:43:fa:a5:86:d2:ab:ce:d3:8c:e3:fe:35:ca: e1:60:f1:61:05:b0:3d:4e:53:1b:7e:69:a0:be:43: 5d:70:8a:bc:31:f3:db:57:b2:e5:a1:a9:ef:3c:ba: a8:cb:94:e9:b3:cc:0e:43:a8:e2:0b:4c:07:5f:c1: 22:e0:bb:9c:82:aa:08:87:b3:58:f9:5c:e8:13:65: 98:f5:4c:62:71:0d:77:85:94:72:a9:90:b4:97:dd: 2c:57:81:22:2a:56:4d:dc:cf:2c:0a:4b:be:61:1c: fb:4f:5c:b9:2d:de:97:d5:1f:e7:ba:b9:b3:8e:7f: 6d:f8:d5:67:8f:74:6f:16:ce:5d:40:3c:fa:7e:26: ea:e6:64:76:96:78:24:3f:29:45:70:a1:d0:44:76: 58:8a:c4:63:3c:4c:23:2e:a2:f9:06:45:c1:3f:3d: 4a:73:6e:f7:b9:f5:4b:23:26:c3:74:60:10:18:56: 9e:21 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 43:CD:64:38:82:40:C4:BA:C9:36:B3:7C:E5:F1:43:81:C4:3B:11:CE X509v3 Authority Key Identifier: keyid:A5:D9:C6:A6:F9:67:5B:91:CE:54:D1:15:F8:8C:94:10:F1:8F:90:FE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91FC9FE/53CB690CFDE211ED9D2D1F68C4F9AE02/pdnGpvlnW5HOVNEV-IyUEPGPkP4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pdnGpvlnW5HOVNEV-IyUEPGPkP4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91FC9FE/53CB690CFDE211ED9D2D1F68C4F9AE02/pdnGpvlnW5HOVNEV-IyUEPGPkP4.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 2b:e7:44:13:14:c4:ef:7c:3f:f5:60:f5:ca:22:92:55:2a:2b: 8b:3c:74:79:cd:44:b3:4c:af:70:8a:98:5f:41:fc:e8:57:3e: 6c:5a:31:4e:c9:a1:01:68:e4:e8:d3:79:f5:d3:aa:0c:12:6c: 1e:36:02:02:9a:34:11:57:81:6e:06:ce:82:fa:68:8d:3c:08: 94:0b:5a:38:32:41:29:af:e2:d7:df:81:31:5d:ba:9f:6d:d8: 63:3b:a2:06:51:e9:e2:e8:19:5f:1f:1a:a2:e8:2f:c7:2a:41: be:83:6e:4e:57:23:87:9e:4e:48:96:a1:f0:a4:21:0b:91:39: 00:73:7e:4b:b1:50:33:0f:3b:bc:a4:15:b2:e1:1c:fd:8c:d0: 60:69:96:27:52:dd:c7:b2:ad:20:67:55:f1:b1:c1:4b:b3:1c: dc:9f:11:12:38:05:78:6f:e9:fd:5f:36:1b:a7:f6:75:4d:2d: d5:bd:13:f7:6f:9e:41:c5:a5:a3:bd:d7:8d:96:24:81:80:d0: 01:fc:d8:e8:73:d5:60:72:b2:4f:bb:c3:a8:08:fe:5f:82:59: 65:cd:db:ed:b8:30:8a:78:35:a1:1d:14:ab:01:1a:e4:f0:93: 28:d5:44:0b:06:4e:7f:1b:58:d6:70:3c:e0:f2:82:09:2b:69: 07:35:94:96 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAaIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RkM5RkUxMTAvBgNVBAUTKEE1RDlDNkE2Rjk2NzVCOTFDRTU0RDExNUY4OEM5NDEw RjE4RjkwRkUwHhcNMjUwODA3MDM0OTQwWhcNMjUwODE0MDM0OTQwWjAYMRYwFAYD VQQDEw02ODk0MjI1NS1lODBmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA3qcZhhDrlcIyB16tKYPrzlTIB62Ppp5Vd/vmsQaIe0HJk8LL2/8AnnXFGhiI 7OC9LJVnkE4ZgBr4g/4PHviXO0FHeA9NTg0qfhJQ/0P6pYbSq87TjOP+NcrhYPFh BbA9TlMbfmmgvkNdcIq8MfPbV7LloanvPLqoy5Tps8wOQ6jiC0wHX8Ei4LucgqoI h7NY+VzoE2WY9UxicQ13hZRyqZC0l90sV4EiKlZN3M8sCku+YRz7T1y5Ld6X1R/n urmzjn9t+NVnj3RvFs5dQDz6fibq5mR2lngkPylFcKHQRHZYisRjPEwjLqL5BkXB Pz1Kc273ufVLIybDdGAQGFaeIQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFEPNZDiC QMS6yTazfOXxQ4HEOxHOMB8GA1UdIwQYMBaAFKXZxqb5Z1uRzlTRFfiMlBDxj5D+ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGQzlGRS81M0NCNjkwQ0ZE RTIxMUVEOUQyRDFGNjhDNEY5QUUwMi9wZG5HcHZsblc1SE9WTkVWLUl5VUVQR1Br UDQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3BkbkdwdmxuVzVIT1ZORVYtSXlVRVBHUGtQNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG QzlGRS81M0NCNjkwQ0ZERTIxMUVEOUQyRDFGNjhDNEY5QUUwMi9wZG5HcHZsblc1 SE9WTkVWLUl5VUVQR1BrUDQubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAr50QTFMTvfD/1YPXKIpJVKiuLPHR5zUSzTK9wiphfQfzoVz5sWjFO yaEBaOTo03n106oMEmweNgICmjQRV4FuBs6C+miNPAiUC1o4MkEpr+LX34ExXbqf bdhjO6IGUeni6BlfHxqi6C/HKkG+g25OVyOHnk5IlqHwpCELkTkAc35LsVAzDzu8 pBWy4Rz9jNBgaZYnUt3Hsq0gZ1XxscFLsxzcnxESOAV4b+n9XzYbp/Z1TS3VvRP3 b55BxaWjvdeNliSBgNAB/Njoc9VgcrJPu8OoCP5fglllzdvtuDCKeDWhHRSrARrk 8JMo1UQLBk5/G1jWcDzg8oIJK2kHNZSW -----END CERTIFICATE-----Generated at Sat Aug 9 02:45:55 2025 by rpki-client