$ rpki-client -vvf rpki.apnic.net/member_repository/A911C53D/84B58F668CFB11EB9DC62C3BC4F9AE02/pcdj6Klfa5qyQRNgHagVOhWRJu4.mft File: pcdj6Klfa5qyQRNgHagVOhWRJu4.mft (raw, json) Hash identifier: cHnS4rIX1F2csl9bgibU+hFI9LjJuIAjhQKXP1dLxpI= Subject key identifier: 65:84:9A:89:19:91:98:47:9D:B3:4E:26:13:DA:4F:72:FD:7C:DC:EC Authority key identifier: A5:C7:63:E8:A9:5F:6B:9A:B2:41:13:60:1D:A8:15:3A:15:91:26:EE Certificate issuer: /CN=A911C53D/serialNumber=A5C763E8A95F6B9AB24113601DA8153A159126EE Certificate serial: 06A4 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pcdj6Klfa5qyQRNgHagVOhWRJu4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911C53D/84B58F668CFB11EB9DC62C3BC4F9AE02/pcdj6Klfa5qyQRNgHagVOhWRJu4.mft Manifest number: 0692 Signing time: Thu 18 Sep 2025 22:42:14 +0000 Manifest this update: Thu 18 Sep 2025 22:42:14 +0000 Manifest next update: Thu 25 Sep 2025 22:42:14 +0000 Files and hashes: 1: pcdj6Klfa5qyQRNgHagVOhWRJu4.crl (hash: g21jjUpHTwOFZE013GtS/BgZ6KRbRKKol4/1vCfeSwI=) 2: 45FE96F6A5F611EFA16E4B2FC4F9AE02.roa (hash: ILkhxI5MS0Y08MvVskMnHwF1yNepea938q8G0D4OrHI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911C53D/84B58F668CFB11EB9DC62C3BC4F9AE02/pcdj6Klfa5qyQRNgHagVOhWRJu4.crl rsync://rpki.apnic.net/member_repository/A911C53D/84B58F668CFB11EB9DC62C3BC4F9AE02/pcdj6Klfa5qyQRNgHagVOhWRJu4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pcdj6Klfa5qyQRNgHagVOhWRJu4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 25 Sep 2025 22:33:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1700 (0x6a4) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911C53D, serialNumber=A5C763E8A95F6B9AB24113601DA8153A159126EE Validity Not Before: Sep 18 22:42:14 2025 GMT Not After : Sep 25 22:42:14 2025 GMT Subject: CN=68cc8ac6-c606 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d0:f9:66:c3:e1:b7:80:fe:35:12:9c:4b:a0:90: 0c:4d:9d:82:8d:93:73:8e:9b:4a:6d:a9:0f:8f:91: 3c:03:89:6a:a7:29:d1:ab:73:1d:6f:d8:b7:be:2e: 10:f4:5f:bd:89:2a:de:9e:ae:42:bc:e2:5f:86:f6: 84:97:26:29:88:b2:74:61:e1:6e:5a:20:89:0f:44: 87:77:c2:fe:ed:4a:3b:e3:34:77:5f:05:ca:b3:df: 5b:79:43:96:9f:c5:98:df:a5:b5:b3:d5:25:8f:68: a3:9c:7f:bd:60:20:53:1b:0a:88:32:00:ec:09:de: f0:06:d7:d8:37:b8:b7:40:ff:ee:df:00:01:04:64: 05:5b:92:7b:0e:fa:ad:b4:85:4d:c4:a4:69:d1:aa: 29:68:3b:fe:04:36:4a:51:b7:a9:11:c6:98:de:0e: 09:9e:f2:e7:6b:3d:b2:26:de:d4:92:c1:ac:7b:ac: 82:bb:fb:e8:6a:60:b7:47:39:2e:1e:f0:82:3e:03: 95:d7:76:b0:37:52:03:dd:67:98:f4:fa:12:af:4e: 67:fc:70:65:0a:63:01:47:9c:c1:de:0e:c6:37:17: b4:d6:d1:a8:94:c6:e0:33:b7:b2:bd:06:8c:57:8f: e7:67:df:3d:b8:79:e3:c1:ca:68:3b:c7:d3:1d:3f: 9a:fd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 65:84:9A:89:19:91:98:47:9D:B3:4E:26:13:DA:4F:72:FD:7C:DC:EC X509v3 Authority Key Identifier: keyid:A5:C7:63:E8:A9:5F:6B:9A:B2:41:13:60:1D:A8:15:3A:15:91:26:EE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911C53D/84B58F668CFB11EB9DC62C3BC4F9AE02/pcdj6Klfa5qyQRNgHagVOhWRJu4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pcdj6Klfa5qyQRNgHagVOhWRJu4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911C53D/84B58F668CFB11EB9DC62C3BC4F9AE02/pcdj6Klfa5qyQRNgHagVOhWRJu4.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 3b:a7:cb:e2:d5:f1:7c:19:64:06:20:12:7d:15:fc:2c:2e:66: bc:65:4c:6e:3c:b6:aa:9e:74:7d:f4:d5:9b:7a:48:4b:e8:f6: 85:b9:72:19:26:0e:d1:5b:8c:9b:9e:a3:da:fd:4d:57:91:5d: b3:fa:52:bc:f9:8b:c6:44:77:82:b8:e3:dc:ce:4e:55:b2:ae: 17:4c:e6:ca:7c:de:49:49:3b:80:1c:e5:e6:70:18:2e:c7:ae: 89:ae:9d:0e:70:1c:f5:5f:c7:f5:fa:52:be:8f:ad:f1:3f:bb: 14:4f:b1:58:da:9e:04:e4:e9:0c:3e:cb:63:d5:03:3d:9c:67: 94:f1:ba:ee:d0:a9:1a:9a:53:87:21:2e:cc:11:d1:f3:e7:71: 73:d2:ac:21:cb:85:ec:be:7c:d2:61:37:a5:c6:49:7e:26:03: b5:24:11:db:73:30:81:31:5e:9c:ed:11:09:0c:a4:97:2b:2f: 46:97:cc:76:84:41:83:4e:d6:8c:ba:ca:40:27:a2:26:3f:c7: 8d:dd:d6:28:f1:c5:ab:c5:d1:c1:35:8b:81:17:11:6e:40:3e: ea:c2:98:17:c2:3a:47:69:17:e1:19:9e:5f:11:b2:d6:88:ec: df:9e:17:b5:f4:1e:1d:35:d0:50:5e:42:6d:63:c0:f9:34:56: 82:d1:6a:51 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBqQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MUM1M0QxMTAvBgNVBAUTKEE1Qzc2M0U4QTk1RjZCOUFCMjQxMTM2MDFEQTgxNTNB MTU5MTI2RUUwHhcNMjUwOTE4MjI0MjE0WhcNMjUwOTI1MjI0MjE0WjAYMRYwFAYD VQQDEw02OGNjOGFjNi1jNjA2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0Plmw+G3gP41EpxLoJAMTZ2CjZNzjptKbakPj5E8A4lqpynRq3Mdb9i3vi4Q 9F+9iSrenq5CvOJfhvaElyYpiLJ0YeFuWiCJD0SHd8L+7Uo74zR3XwXKs99beUOW n8WY36W1s9Ulj2ijnH+9YCBTGwqIMgDsCd7wBtfYN7i3QP/u3wABBGQFW5J7Dvqt tIVNxKRp0aopaDv+BDZKUbepEcaY3g4JnvLnaz2yJt7UksGse6yCu/voamC3Rzku HvCCPgOV13awN1ID3WeY9PoSr05n/HBlCmMBR5zB3g7GNxe01tGolMbgM7eyvQaM V4/nZ989uHnjwcpoO8fTHT+a/QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFGWEmokZ kZhHnbNOJhPaT3L9fNzsMB8GA1UdIwQYMBaAFKXHY+ipX2uaskETYB2oFToVkSbu MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExQzUzRC84NEI1OEY2NjhD RkIxMUVCOURDNjJDM0JDNEY5QUUwMi9wY2RqNktsZmE1cXlRUk5nSGFnVk9oV1JK dTQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3BjZGo2S2xmYTVxeVFSTmdIYWdWT2hXUkp1NC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx QzUzRC84NEI1OEY2NjhDRkIxMUVCOURDNjJDM0JDNEY5QUUwMi9wY2RqNktsZmE1 cXlRUk5nSGFnVk9oV1JKdTQubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA7p8vi1fF8GWQGIBJ9FfwsLma8ZUxuPLaqnnR99NWbekhL6PaFuXIZ Jg7RW4ybnqPa/U1XkV2z+lK8+YvGRHeCuOPczk5Vsq4XTObKfN5JSTuAHOXmcBgu x66Jrp0OcBz1X8f1+lK+j63xP7sUT7FY2p4E5OkMPstj1QM9nGeU8bru0KkamlOH IS7MEdHz53Fz0qwhy4XsvnzSYTelxkl+JgO1JBHbczCBMV6c7REJDKSXKy9Gl8x2 hEGDTtaMuspAJ6ImP8eN3dYo8cWrxdHBNYuBFxFuQD7qwpgXwjpHaRfhGZ5fEbLW iOzfnhe19B4dNdBQXkJtY8D5NFaC0WpR -----END CERTIFICATE-----Generated at Fri Sep 19 00:41:00 2025 by rpki-client