$ rpki-client -vvf rpki.apnic.net/member_repository/A91F02EA/DB15CDE011DB11EA95F2B059C4F9AE02/PShwiOOGgqTkudgoRQszZr3q1d0.mft File: PShwiOOGgqTkudgoRQszZr3q1d0.mft (raw, json) Hash identifier: mIQZ2Hm50Ohjku5/yCjex9iJG4qd/5xzzLaqdWFGwaI= Subject key identifier: B6:38:1B:49:18:2F:61:D9:C7:CA:9B:FC:7D:77:51:58:17:0A:6F:BD Authority key identifier: 3D:28:70:88:E3:86:82:A4:E4:B9:D8:28:45:0B:33:66:BD:EA:D5:DD Certificate issuer: /CN=A91F02EA/serialNumber=3D287088E38682A4E4B9D828450B3366BDEAD5DD Certificate serial: 0C35 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PShwiOOGgqTkudgoRQszZr3q1d0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F02EA/DB15CDE011DB11EA95F2B059C4F9AE02/PShwiOOGgqTkudgoRQszZr3q1d0.mft Manifest number: 0C25 Signing time: Sun 20 Jul 2025 18:46:07 +0000 Manifest this update: Sun 20 Jul 2025 18:46:06 +0000 Manifest next update: Sun 27 Jul 2025 18:46:06 +0000 Files and hashes: 1: PShwiOOGgqTkudgoRQszZr3q1d0.crl (hash: KJ9Z4t6EeoVLGaEqpiVAxZMCDAmsebYsmGe3DTSlpAI=) 2: 7716938A416211EB9B0F3C54C4F9AE02.roa (hash: SaoXuslBHecNHa04UZ0EBB+W8ns+FIPHvzYnnMHMCbU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F02EA/DB15CDE011DB11EA95F2B059C4F9AE02/PShwiOOGgqTkudgoRQszZr3q1d0.crl rsync://rpki.apnic.net/member_repository/A91F02EA/DB15CDE011DB11EA95F2B059C4F9AE02/PShwiOOGgqTkudgoRQszZr3q1d0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PShwiOOGgqTkudgoRQszZr3q1d0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 27 Jul 2025 18:46:06 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3125 (0xc35) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F02EA, serialNumber=3D287088E38682A4E4B9D828450B3366BDEAD5DD Validity Not Before: Jul 20 18:46:06 2025 GMT Not After : Jul 27 18:46:06 2025 GMT Subject: CN=687d396f-f3ae Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f3:7c:38:fc:d3:1f:b0:38:8a:5d:bc:09:7a:d3: b4:67:f4:14:5b:56:ab:86:3e:e1:d2:46:76:80:bf: 96:de:43:e7:fb:7d:31:60:04:9f:27:fa:c0:4f:76: 1e:67:18:89:76:96:80:e5:f5:fb:27:4f:70:3c:97: 51:16:a9:a5:0b:c2:e9:72:7c:9a:11:3a:eb:2c:42: de:7c:87:8e:ca:8b:fa:a9:66:e1:2f:9d:fb:a3:ef: 3d:3f:26:51:27:4b:65:b3:0c:17:82:a5:91:73:d4: ae:fa:61:16:66:f1:92:a5:02:75:a3:20:e2:07:bb: 8d:a5:bc:c0:51:87:40:62:1d:49:7a:a8:7e:4e:46: c3:39:cd:98:36:33:e6:0f:2c:de:89:c0:98:38:42: c0:79:99:24:80:ca:14:f2:0b:e2:79:18:89:e3:17: 4c:b3:fa:91:82:50:10:6d:b5:27:64:27:5f:df:0c: 0f:d5:d1:af:6a:66:e9:eb:2b:a0:3f:ab:36:9d:32: 61:af:1b:25:2e:fd:f1:70:e0:a3:7c:3e:47:04:6b: 2b:60:f5:8b:a3:be:2c:28:45:b5:b3:6b:15:7e:13: b8:b6:12:11:08:2b:a0:8c:37:06:31:5a:3b:5a:4b: 74:90:03:c9:a8:27:04:a2:51:52:bd:1a:97:9e:a8: 2a:9b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B6:38:1B:49:18:2F:61:D9:C7:CA:9B:FC:7D:77:51:58:17:0A:6F:BD X509v3 Authority Key Identifier: keyid:3D:28:70:88:E3:86:82:A4:E4:B9:D8:28:45:0B:33:66:BD:EA:D5:DD X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F02EA/DB15CDE011DB11EA95F2B059C4F9AE02/PShwiOOGgqTkudgoRQszZr3q1d0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PShwiOOGgqTkudgoRQszZr3q1d0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F02EA/DB15CDE011DB11EA95F2B059C4F9AE02/PShwiOOGgqTkudgoRQszZr3q1d0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a8:51:d1:bb:1d:b5:6e:00:96:ae:62:00:b0:52:91:0b:fa:9b: 91:bb:14:87:bd:e2:33:d8:b3:3f:a4:e7:8f:0f:33:9a:09:36: ba:82:c6:43:82:78:bd:c2:71:c6:06:48:f2:eb:88:03:3c:90: 9d:49:cf:81:1f:0e:09:02:54:56:75:ad:85:54:2e:f5:3f:85: 40:11:db:97:c5:75:99:47:72:91:e5:92:6e:8a:cd:c9:62:c8: 81:d5:6e:e7:b5:9e:53:55:d5:df:a3:b0:b2:5c:a7:b9:89:16: 0e:49:6e:15:40:aa:3b:97:63:bd:82:19:c7:db:d9:70:51:8e: d3:b0:db:9a:fe:fd:e1:71:40:23:f7:20:34:00:e3:34:9f:d0: 5e:14:2a:eb:3a:f8:a4:8c:bd:fc:e1:92:89:89:b9:47:ec:0e: 0a:1f:5d:78:40:bd:72:ce:21:58:26:66:be:26:24:60:b2:c1: 03:08:a6:07:5f:4f:1f:aa:a1:d7:7c:7b:20:5d:81:58:4c:29: aa:96:7b:aa:87:8f:c9:9e:9f:63:ae:05:20:b1:6b:15:6e:99: 14:f9:bc:06:cc:8a:9b:13:55:2c:fc:83:5b:4c:f5:33:b7:2f: 11:d1:b1:42:3f:a4:57:1c:a9:af:c7:b9:83:b0:51:52:ba:4c: 77:fc:98:d2 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDDUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjAyRUExMTAvBgNVBAUTKDNEMjg3MDg4RTM4NjgyQTRFNEI5RDgyODQ1MEIzMzY2 QkRFQUQ1REQwHhcNMjUwNzIwMTg0NjA2WhcNMjUwNzI3MTg0NjA2WjAYMRYwFAYD VQQDEw02ODdkMzk2Zi1mM2FlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA83w4/NMfsDiKXbwJetO0Z/QUW1arhj7h0kZ2gL+W3kPn+30xYASfJ/rAT3Ye ZxiJdpaA5fX7J09wPJdRFqmlC8LpcnyaETrrLELefIeOyov6qWbhL537o+89PyZR J0tlswwXgqWRc9Su+mEWZvGSpQJ1oyDiB7uNpbzAUYdAYh1Jeqh+TkbDOc2YNjPm DyzeicCYOELAeZkkgMoU8gvieRiJ4xdMs/qRglAQbbUnZCdf3wwP1dGvambp6yug P6s2nTJhrxslLv3xcOCjfD5HBGsrYPWLo74sKEW1s2sVfhO4thIRCCugjDcGMVo7 Wkt0kAPJqCcEolFSvRqXnqgqmwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFLY4G0kY L2HZx8qb/H13UVgXCm+9MB8GA1UdIwQYMBaAFD0ocIjjhoKk5LnYKEULM2a96tXd MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGMDJFQS9EQjE1Q0RFMDEx REIxMUVBOTVGMkIwNTlDNEY5QUUwMi9QU2h3aU9PR2dxVGt1ZGdvUlFzelpyM3Ex ZDAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1BTaHdpT09HZ3FUa3VkZ29SUXN6WnIzcTFkMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG MDJFQS9EQjE1Q0RFMDExREIxMUVBOTVGMkIwNTlDNEY5QUUwMi9QU2h3aU9PR2dx VGt1ZGdvUlFzelpyM3ExZDAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCoUdG7HbVuAJauYgCwUpEL+puRuxSHveIz2LM/pOePDzOaCTa6gsZD gni9wnHGBkjy64gDPJCdSc+BHw4JAlRWda2FVC71P4VAEduXxXWZR3KR5ZJuis3J YsiB1W7ntZ5TVdXfo7CyXKe5iRYOSW4VQKo7l2O9ghnH29lwUY7TsNua/v3hcUAj 9yA0AOM0n9BeFCrrOvikjL384ZKJiblH7A4KH114QL1yziFYJma+JiRgssEDCKYH X08fqqHXfHsgXYFYTCmqlnuqh4/Jnp9jrgUgsWsVbpkU+bwGzIqbE1Us/INbTPUz ty8R0bFCP6RXHKmvx7mDsFFSukx3/JjS -----END CERTIFICATE-----Generated at Mon Jul 21 07:28:09 2025 by rpki-client