$ rpki-client -vvf rpki.apnic.net/member_repository/A91EDADE/7098F4DCD29511EDA2418439C4F9AE02/pg-NpHi9dy9PKz5MedXBgd3laJM.mft File: pg-NpHi9dy9PKz5MedXBgd3laJM.mft (raw, json) Hash identifier: 6mQpypivLfSJ0GT91cQTcnllr8PlmHm46JyM/SFUn2g= Subject key identifier: D4:D1:63:D0:EF:AA:28:BC:61:E2:68:B9:3F:88:A5:E2:16:E8:49:3E Authority key identifier: A6:0F:8D:A4:78:BD:77:2F:4F:2B:3E:4C:79:D5:C1:81:DD:E5:68:93 Certificate issuer: /CN=A91EDADE/serialNumber=A60F8DA478BD772F4F2B3E4C79D5C181DDE56893 Certificate serial: 01B1 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pg-NpHi9dy9PKz5MedXBgd3laJM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91EDADE/7098F4DCD29511EDA2418439C4F9AE02/pg-NpHi9dy9PKz5MedXBgd3laJM.mft Manifest number: 01AD Signing time: Mon 21 Jul 2025 03:15:03 +0000 Manifest this update: Mon 21 Jul 2025 03:15:03 +0000 Manifest next update: Mon 28 Jul 2025 03:15:03 +0000 Files and hashes: 1: pg-NpHi9dy9PKz5MedXBgd3laJM.crl (hash: QOzWD1bCfp9IxnRKeisijJBLNBUb1y5pJscoSp09VDk=) 2: 763018B4D29811ED8CDDB83AC4F9AE02.roa (hash: kB/0ibOjCq9dbW0BRMR/SkO1yELJz7RuZWoFT7e9L1o=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91EDADE/7098F4DCD29511EDA2418439C4F9AE02/pg-NpHi9dy9PKz5MedXBgd3laJM.crl rsync://rpki.apnic.net/member_repository/A91EDADE/7098F4DCD29511EDA2418439C4F9AE02/pg-NpHi9dy9PKz5MedXBgd3laJM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pg-NpHi9dy9PKz5MedXBgd3laJM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 28 Jul 2025 03:15:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 433 (0x1b1) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91EDADE, serialNumber=A60F8DA478BD772F4F2B3E4C79D5C181DDE56893 Validity Not Before: Jul 21 03:15:03 2025 GMT Not After : Jul 28 03:15:03 2025 GMT Subject: CN=687db0b7-c94c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e7:a0:25:51:13:28:35:bf:17:2b:7e:46:d6:34: 57:4e:4a:d3:c0:8a:ce:c8:37:4e:da:a5:a8:48:ba: 6f:c7:b8:f6:56:eb:69:43:21:c2:d3:71:0d:9c:98: 11:a0:d5:fc:e6:dd:d1:54:25:57:df:65:d8:a1:96: b2:b2:c9:c2:65:6f:e8:85:7f:e5:4e:42:28:1f:e1: 09:c2:96:c5:98:b1:b5:a4:bc:64:00:3c:fd:87:cf: c6:08:93:67:22:b8:c2:87:00:cf:4a:1f:b3:82:44: 38:93:22:f6:d3:cb:52:6e:c7:df:c5:98:6b:ec:a8: 50:5e:8a:c0:b3:d7:77:26:5d:a3:ca:d1:4c:e0:a2: 4b:98:74:60:60:5e:89:5a:bb:92:89:eb:fa:ac:5a: ea:1f:be:a6:71:81:ed:48:c2:c4:40:3d:dc:f1:25: e8:3b:b6:7e:d4:d6:7d:fd:d9:a5:55:fd:01:ad:a1: ef:dd:9b:1a:8d:3b:de:a4:0e:85:8d:fc:9c:10:5e: b1:11:e9:15:ee:d1:4a:fe:44:ee:99:af:96:bc:d1: 35:3f:8b:37:79:5b:03:b9:a3:2d:44:d6:1d:d2:09: 74:66:fb:4f:0a:5f:b1:5f:40:e9:7f:1a:1b:c0:ba: 5b:cd:0d:6c:3e:66:1d:b7:15:77:86:25:38:98:d9: bb:9d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D4:D1:63:D0:EF:AA:28:BC:61:E2:68:B9:3F:88:A5:E2:16:E8:49:3E X509v3 Authority Key Identifier: keyid:A6:0F:8D:A4:78:BD:77:2F:4F:2B:3E:4C:79:D5:C1:81:DD:E5:68:93 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91EDADE/7098F4DCD29511EDA2418439C4F9AE02/pg-NpHi9dy9PKz5MedXBgd3laJM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pg-NpHi9dy9PKz5MedXBgd3laJM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91EDADE/7098F4DCD29511EDA2418439C4F9AE02/pg-NpHi9dy9PKz5MedXBgd3laJM.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 78:a7:a0:bf:13:29:58:18:ee:8b:3a:c5:b5:b2:7c:31:87:f7: b5:80:a1:e9:06:0b:55:0f:95:53:1d:4f:09:e4:5d:5c:02:45: 46:22:29:eb:b4:ce:c1:10:22:82:d7:58:4e:ee:da:4a:37:b6: 65:40:22:a4:b2:82:86:55:76:2b:62:21:5c:b1:e5:85:5a:e4: c2:a7:68:7e:9f:c5:ab:0c:80:65:2f:67:ae:60:b0:af:d6:13: a9:a2:b6:fd:03:d9:db:1f:e9:24:79:8a:38:58:c3:5e:de:69: 1f:54:db:61:a6:0f:6c:b8:f3:b4:ba:10:2b:80:25:4f:00:fc: 65:ae:50:e0:7e:d8:fb:6d:c3:82:2a:bf:1a:06:13:3c:74:2e: 40:4c:ba:3d:f5:68:90:73:b0:d8:2f:a0:b0:29:b1:73:cf:20: fe:e8:af:f4:fc:1a:18:91:21:b6:37:78:21:c7:3e:bf:b8:91: 8e:74:15:43:9b:9d:d8:8d:c0:fd:83:2f:14:ac:f4:1c:80:4f: 00:ec:66:4a:37:ea:50:bd:df:b9:5e:1f:ec:88:4c:67:67:e1: ee:76:8c:da:38:26:58:be:3b:56:d2:c8:b2:af:3e:64:40:05: d6:8e:ae:fb:2a:21:99:31:5e:4a:f9:0c:f7:08:eb:f2:d3:25: 81:b3:71:17 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAbEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RURBREUxMTAvBgNVBAUTKEE2MEY4REE0NzhCRDc3MkY0RjJCM0U0Qzc5RDVDMTgx RERFNTY4OTMwHhcNMjUwNzIxMDMxNTAzWhcNMjUwNzI4MDMxNTAzWjAYMRYwFAYD VQQDEw02ODdkYjBiNy1jOTRjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA56AlURMoNb8XK35G1jRXTkrTwIrOyDdO2qWoSLpvx7j2VutpQyHC03ENnJgR oNX85t3RVCVX32XYoZayssnCZW/ohX/lTkIoH+EJwpbFmLG1pLxkADz9h8/GCJNn IrjChwDPSh+zgkQ4kyL208tSbsffxZhr7KhQXorAs9d3Jl2jytFM4KJLmHRgYF6J WruSiev6rFrqH76mcYHtSMLEQD3c8SXoO7Z+1NZ9/dmlVf0BraHv3ZsajTvepA6F jfycEF6xEekV7tFK/kTuma+WvNE1P4s3eVsDuaMtRNYd0gl0ZvtPCl+xX0Dpfxob wLpbzQ1sPmYdtxV3hiU4mNm7nQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFNTRY9Dv qii8YeJouT+IpeIW6Ek+MB8GA1UdIwQYMBaAFKYPjaR4vXcvTys+THnVwYHd5WiT MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFREFERS83MDk4RjREQ0Qy OTUxMUVEQTI0MTg0MzlDNEY5QUUwMi9wZy1OcEhpOWR5OVBLejVNZWRYQmdkM2xh Sk0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3BnLU5wSGk5ZHk5UEt6NU1lZFhCZ2QzbGFKTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF REFERS83MDk4RjREQ0QyOTUxMUVEQTI0MTg0MzlDNEY5QUUwMi9wZy1OcEhpOWR5 OVBLejVNZWRYQmdkM2xhSk0ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB4p6C/EylYGO6LOsW1snwxh/e1gKHpBgtVD5VTHU8J5F1cAkVGIinr tM7BECKC11hO7tpKN7ZlQCKksoKGVXYrYiFcseWFWuTCp2h+n8WrDIBlL2euYLCv 1hOporb9A9nbH+kkeYo4WMNe3mkfVNthpg9suPO0uhArgCVPAPxlrlDgftj7bcOC Kr8aBhM8dC5ATLo99WiQc7DYL6CwKbFzzyD+6K/0/BoYkSG2N3ghxz6/uJGOdBVD m53YjcD9gy8UrPQcgE8A7GZKN+pQvd+5Xh/siExnZ+HudozaOCZYvjtW0siyrz5k QAXWjq77KiGZMV5K+Qz3COvy0yWBs3EX -----END CERTIFICATE-----Generated at Mon Jul 21 06:00:05 2025 by rpki-client