$ rpki-client -vvf rpki.apnic.net/member_repository/A9170E11/D060C9B25BD611ECAD833651C4F9AE02/PWRH1yl0gylOzsuFOl5QCTXRuNc.mft File: PWRH1yl0gylOzsuFOl5QCTXRuNc.mft (raw, json) Hash identifier: ZcGdcElmHpfMpuvSYoXzd1uoQl9SceOS8Gz1x5xZYuk= Subject key identifier: 9A:79:F0:19:10:52:27:C1:53:53:7B:7F:8A:FD:3B:A1:D7:44:C7:7D Authority key identifier: 3D:64:47:D7:29:74:83:29:4E:CE:CB:85:3A:5E:50:09:35:D1:B8:D7 Certificate issuer: /CN=A9170E11/serialNumber=3D6447D7297483294ECECB853A5E500935D1B8D7 Certificate serial: 04B9 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PWRH1yl0gylOzsuFOl5QCTXRuNc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9170E11/D060C9B25BD611ECAD833651C4F9AE02/PWRH1yl0gylOzsuFOl5QCTXRuNc.mft Manifest number: 0493 Signing time: Wed 08 Oct 2025 23:55:28 +0000 Manifest this update: Wed 08 Oct 2025 23:55:28 +0000 Manifest next update: Wed 15 Oct 2025 23:55:28 +0000 Files and hashes: 1: PWRH1yl0gylOzsuFOl5QCTXRuNc.crl (hash: foqEw1/IVdRUgM1UU3zppYQqSx8mWQ8CTcGO+kQVPhQ=) 2: 5997A6A624E011EDAEC0E529C4F9AE02.roa (hash: 264WZ0f5FSYRLcE55bzQKj/lfReOWZZQL9W6/+XrL50=) 3: 793803867DEA11EC9FC67D66C4F9AE02.roa (hash: vRD5gvetOl4M72g0Ox/17wn2gRRkZ+MKIO7MmLjvLgg=) 4: 2CE5BE065BDA11ECAA855355C4F9AE02.roa (hash: K/T3wX+b6EJFTbJdX5T/49+xTnSJoc5fKtBw2NmgoBw=) 5: 18611004B42A11EC9BD3DE42C4F9AE02.roa (hash: MrOehOXflQUhc9W+FdP7kViEOIm0zhC3RKvz9jpM7pY=) 6: 27992F96832811EFA1BAAC4FC4F9AE02.roa (hash: 9hr8e6Q+evY4tAAVgrktH6R5E0K57yFV9RXeFdQNtLw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9170E11/D060C9B25BD611ECAD833651C4F9AE02/PWRH1yl0gylOzsuFOl5QCTXRuNc.crl rsync://rpki.apnic.net/member_repository/A9170E11/D060C9B25BD611ECAD833651C4F9AE02/PWRH1yl0gylOzsuFOl5QCTXRuNc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PWRH1yl0gylOzsuFOl5QCTXRuNc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 15 Oct 2025 23:55:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1209 (0x4b9) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9170E11, serialNumber=3D6447D7297483294ECECB853A5E500935D1B8D7 Validity Not Before: Oct 8 23:55:28 2025 GMT Not After : Oct 15 23:55:28 2025 GMT Subject: CN=68e6f9f0-13de Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b0:40:16:53:a1:d7:70:49:80:b6:9b:1b:a8:83: d2:fd:01:1c:11:45:cd:e3:e4:16:25:22:75:1c:12: 68:55:5e:c5:7f:37:d0:a9:dd:0f:c4:67:c2:7f:8f: c0:f7:bc:d9:c0:77:6b:5a:aa:87:5d:ee:14:15:bf: cd:84:9d:52:74:cd:d8:ea:ff:4f:87:92:d0:9b:66: 42:9b:72:98:de:a3:1e:f7:b5:6e:cf:9e:3d:ee:80: 43:39:77:fa:26:90:10:f8:d1:dc:c7:57:48:30:c6: 14:99:a1:a3:29:ab:3e:0b:7f:97:1b:92:37:27:55: 88:3a:59:70:e4:de:c5:e0:ae:e3:14:92:c8:87:c6: de:aa:8f:60:c5:5a:58:d5:f2:4f:6d:77:9d:f1:86: dd:d1:22:25:6e:4c:50:18:e4:df:10:85:2a:7e:3e: 6d:04:20:9b:20:be:7e:9e:09:20:8f:62:4e:a8:b0: 1e:82:cc:19:41:8c:b0:d1:6d:54:c5:8e:66:e4:1f: 82:45:2a:c0:28:c9:96:cb:d1:f4:2f:97:8f:46:d4: 83:f9:89:bb:da:0a:c0:dc:e8:ce:c3:3c:e9:62:ed: 46:7f:df:04:c5:72:23:ad:f9:b1:af:92:6e:88:fc: 2f:5d:cf:3e:6b:1c:11:87:1a:4a:ce:38:21:24:82: 5c:c9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9A:79:F0:19:10:52:27:C1:53:53:7B:7F:8A:FD:3B:A1:D7:44:C7:7D X509v3 Authority Key Identifier: keyid:3D:64:47:D7:29:74:83:29:4E:CE:CB:85:3A:5E:50:09:35:D1:B8:D7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9170E11/D060C9B25BD611ECAD833651C4F9AE02/PWRH1yl0gylOzsuFOl5QCTXRuNc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PWRH1yl0gylOzsuFOl5QCTXRuNc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9170E11/D060C9B25BD611ECAD833651C4F9AE02/PWRH1yl0gylOzsuFOl5QCTXRuNc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption ab:1a:d8:18:f2:78:49:a2:03:58:45:d3:38:2e:d8:de:6b:16: 15:d9:7a:3a:38:3b:77:61:5b:02:e0:86:70:b1:80:d0:ca:7c: 91:13:df:f3:28:d9:71:f9:05:89:74:0b:d2:78:7f:96:a2:1c: a9:8c:0f:36:b1:87:fc:f8:13:e3:a4:7a:b5:eb:29:67:73:c9: c2:d3:ab:ca:16:f5:fd:f3:64:2d:76:7f:3e:51:99:2b:94:98: 31:3b:e3:79:06:b2:c6:c5:95:a4:f6:21:02:94:b2:25:22:c1: 5f:b4:b3:6e:58:c3:66:22:d4:ea:96:f0:bb:e9:c8:4c:5a:74: c6:71:dd:30:87:d6:7d:be:74:0c:9a:2e:0a:51:ac:0e:bb:33: 86:8e:54:37:bb:5c:a0:66:2c:1e:b5:67:30:c4:a2:c5:92:b3: cf:55:3d:f0:be:10:3b:f8:7c:c3:57:6f:bf:09:a8:75:39:49: bc:2f:71:9e:4e:0c:a1:f2:67:a6:9d:24:2a:57:9b:de:25:0f: 0b:31:ea:54:8e:0d:ed:68:94:ad:ef:1b:f9:4b:90:af:1c:63: ce:11:e7:26:63:76:f1:4e:23:75:fb:10:46:24:b2:3d:11:df: b2:35:97:a1:99:c8:42:9f:d0:80:d3:c9:73:8a:29:da:58:38: 98:35:94:14 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBLkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzBFMTExMTAvBgNVBAUTKDNENjQ0N0Q3Mjk3NDgzMjk0RUNFQ0I4NTNBNUU1MDA5 MzVEMUI4RDcwHhcNMjUxMDA4MjM1NTI4WhcNMjUxMDE1MjM1NTI4WjAYMRYwFAYD VQQDEw02OGU2ZjlmMC0xM2RlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsEAWU6HXcEmAtpsbqIPS/QEcEUXN4+QWJSJ1HBJoVV7FfzfQqd0PxGfCf4/A 97zZwHdrWqqHXe4UFb/NhJ1SdM3Y6v9Ph5LQm2ZCm3KY3qMe97Vuz5497oBDOXf6 JpAQ+NHcx1dIMMYUmaGjKas+C3+XG5I3J1WIOllw5N7F4K7jFJLIh8beqo9gxVpY 1fJPbXed8Ybd0SIlbkxQGOTfEIUqfj5tBCCbIL5+ngkgj2JOqLAegswZQYyw0W1U xY5m5B+CRSrAKMmWy9H0L5ePRtSD+Ym72grA3OjOwzzpYu1Gf98ExXIjrfmxr5Ju iPwvXc8+axwRhxpKzjghJIJcyQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJp58BkQ UifBU1N7f4r9O6HXRMd9MB8GA1UdIwQYMBaAFD1kR9cpdIMpTs7LhTpeUAk10bjX MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3MEUxMS9EMDYwQzlCMjVC RDYxMUVDQUQ4MzM2NTFDNEY5QUUwMi9QV1JIMXlsMGd5bE96c3VGT2w1UUNUWFJ1 TmMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1BXUkgxeWwwZ3lsT3pzdUZPbDVRQ1RYUnVOYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 MEUxMS9EMDYwQzlCMjVCRDYxMUVDQUQ4MzM2NTFDNEY5QUUwMi9QV1JIMXlsMGd5 bE96c3VGT2w1UUNUWFJ1TmMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCrGtgY8nhJogNYRdM4LtjeaxYV2Xo6ODt3YVsC4IZwsYDQynyRE9/z KNlx+QWJdAvSeH+WohypjA82sYf8+BPjpHq16ylnc8nC06vKFvX982Qtdn8+UZkr lJgxO+N5BrLGxZWk9iEClLIlIsFftLNuWMNmItTqlvC76chMWnTGcd0wh9Z9vnQM mi4KUawOuzOGjlQ3u1ygZiwetWcwxKLFkrPPVT3wvhA7+HzDV2+/Cah1OUm8L3Ge Tgyh8memnSQqV5veJQ8LMepUjg3taJSt7xv5S5CvHGPOEecmY3bxTiN1+xBGJLI9 Ed+yNZehmchCn9CA08lziinaWDiYNZQU -----END CERTIFICATE-----Generated at Fri Oct 10 17:55:27 2025 by rpki-client