$ rpki-client -vvf rpki.apnic.net/member_repository/A9122010/EA021A94D53F11EEA8D6240FC4F9AE02/pgmpTmohAbr5XIwvVc7EF5Jb788.mft File: pgmpTmohAbr5XIwvVc7EF5Jb788.mft (raw, json) Hash identifier: cYmK9zf0P5SeBJqv4z8TMTMxuNDx5ZalRVBRx6LLTiY= Subject key identifier: EB:B2:94:45:D6:0B:F7:05:4E:F3:82:02:B0:EC:D3:CD:C1:C4:25:89 Authority key identifier: A6:09:A9:4E:6A:21:01:BA:F9:5C:8C:2F:55:CE:C4:17:92:5B:EF:CF Certificate issuer: /CN=A9122010/serialNumber=A609A94E6A2101BAF95C8C2F55CEC417925BEFCF Certificate serial: 0123 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pgmpTmohAbr5XIwvVc7EF5Jb788.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9122010/EA021A94D53F11EEA8D6240FC4F9AE02/pgmpTmohAbr5XIwvVc7EF5Jb788.mft Manifest number: 011F Signing time: Tue 09 Sep 2025 04:50:52 +0000 Manifest this update: Tue 09 Sep 2025 04:50:51 +0000 Manifest next update: Tue 16 Sep 2025 04:50:51 +0000 Files and hashes: 1: pgmpTmohAbr5XIwvVc7EF5Jb788.crl (hash: AL+67KTJtCmrGU0Qp9yjFSnTBPFXh38i01TZIaTMGJE=) 2: EF260118D54211EEA18A7234C4F9AE02.roa (hash: xjhn9qUtE7xRbdf4fFZHDUa2ZArgvxrc59opJoY9If0=) 3: 2FA91770D61A11EE9BDDD627C4F9AE02.roa (hash: Y2k2zpzO5L2UX1/syfcTHwfwkADI2HQTu1qn6JdDuuE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9122010/EA021A94D53F11EEA8D6240FC4F9AE02/pgmpTmohAbr5XIwvVc7EF5Jb788.crl rsync://rpki.apnic.net/member_repository/A9122010/EA021A94D53F11EEA8D6240FC4F9AE02/pgmpTmohAbr5XIwvVc7EF5Jb788.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pgmpTmohAbr5XIwvVc7EF5Jb788.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 16 Sep 2025 04:50:51 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 291 (0x123) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9122010, serialNumber=A609A94E6A2101BAF95C8C2F55CEC417925BEFCF Validity Not Before: Sep 9 04:50:51 2025 GMT Not After : Sep 16 04:50:51 2025 GMT Subject: CN=68bfb22c-35e0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:af:1f:e3:be:0a:5c:64:1f:a6:d9:5d:34:9c:b5: 7c:92:ed:9c:a8:e3:9a:6a:8a:73:68:a1:6c:76:b8: 08:44:af:94:4c:17:24:a4:0d:18:84:a7:6d:76:a0: d9:2a:3f:b4:ca:f1:69:fd:90:64:79:da:07:66:99: e1:32:5f:37:83:50:ac:99:18:e9:1a:11:7a:7c:05: 27:d2:57:81:29:14:49:2d:82:ab:ca:bd:85:f4:81: 01:c2:b9:8e:47:de:da:f5:ca:c2:01:1f:56:a8:14: f0:77:05:76:5a:3b:e4:b7:14:f1:f0:10:89:e2:aa: a5:b8:c1:62:6c:50:31:83:19:b7:25:db:92:f4:1f: 78:48:0a:52:2d:c4:d0:00:10:21:54:e9:dc:57:62: b6:17:c0:e8:2e:ba:1c:99:06:7d:12:c3:e7:51:b9: ae:5f:ea:36:4d:e4:8d:13:3f:98:e6:99:be:bc:bb: 62:26:a4:f6:00:d6:e4:17:79:3d:9b:54:c7:b4:f5: 17:0a:6d:ae:cb:d1:33:f1:08:45:33:f3:f5:13:8c: 56:55:e6:6a:41:93:cd:55:ad:72:8e:a8:df:e7:46: ea:84:9c:ba:e1:ff:3c:31:cf:cc:c1:7d:44:9f:2f: f8:69:6c:0d:50:b3:c9:1c:20:df:14:48:53:b2:e3: cd:15 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EB:B2:94:45:D6:0B:F7:05:4E:F3:82:02:B0:EC:D3:CD:C1:C4:25:89 X509v3 Authority Key Identifier: keyid:A6:09:A9:4E:6A:21:01:BA:F9:5C:8C:2F:55:CE:C4:17:92:5B:EF:CF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9122010/EA021A94D53F11EEA8D6240FC4F9AE02/pgmpTmohAbr5XIwvVc7EF5Jb788.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pgmpTmohAbr5XIwvVc7EF5Jb788.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9122010/EA021A94D53F11EEA8D6240FC4F9AE02/pgmpTmohAbr5XIwvVc7EF5Jb788.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 2b:48:ec:72:50:27:27:a5:fa:34:22:a7:4f:e4:67:d2:1c:8d: 80:2f:c8:24:c2:df:30:20:b0:44:f3:60:9c:d7:ad:73:d4:e9: 3f:00:ad:3b:ec:29:ff:64:49:cb:32:8f:36:68:c4:37:4d:3b: b1:8f:af:1e:a1:fd:9a:91:6a:23:cf:5c:6b:be:e9:bd:03:5a: 0c:c4:d3:36:0b:49:82:d6:6c:bf:05:90:cb:4b:e5:55:37:c3: 3a:56:70:bb:9b:54:1b:a0:67:8f:e8:70:91:2a:b5:d4:74:ee: 78:cf:ab:b2:25:39:17:16:8e:b5:1d:6d:4d:82:6a:86:8e:40: 9e:01:f7:7c:3b:d3:36:73:ad:d8:d4:df:b4:5f:c8:5d:61:26: 92:95:46:e4:ef:a8:81:9e:e8:dd:8c:bb:6d:bb:2f:a9:6b:21: d3:07:05:97:34:be:9f:83:1b:5a:59:0b:6a:ce:d8:da:56:bc: 1e:b0:77:ed:86:93:9e:e5:e4:45:12:bb:f2:bd:b5:e2:6a:fc: 16:b6:a8:3a:92:ab:85:6a:cf:33:d7:9c:90:28:6e:2f:cc:f4: 99:ff:53:83:64:37:03:04:b2:ad:2f:ac:89:3d:54:a0:a2:22: e8:be:21:13:a3:26:e9:94:4b:06:cc:fc:46:27:f1:a3:3a:a8: 65:f5:bd:49 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICASMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MjIwMTAxMTAvBgNVBAUTKEE2MDlBOTRFNkEyMTAxQkFGOTVDOEMyRjU1Q0VDNDE3 OTI1QkVGQ0YwHhcNMjUwOTA5MDQ1MDUxWhcNMjUwOTE2MDQ1MDUxWjAYMRYwFAYD VQQDEw02OGJmYjIyYy0zNWUwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArx/jvgpcZB+m2V00nLV8ku2cqOOaaopzaKFsdrgIRK+UTBckpA0YhKdtdqDZ Kj+0yvFp/ZBkedoHZpnhMl83g1CsmRjpGhF6fAUn0leBKRRJLYKryr2F9IEBwrmO R97a9crCAR9WqBTwdwV2WjvktxTx8BCJ4qqluMFibFAxgxm3JduS9B94SApSLcTQ ABAhVOncV2K2F8DoLrocmQZ9EsPnUbmuX+o2TeSNEz+Y5pm+vLtiJqT2ANbkF3k9 m1THtPUXCm2uy9Ez8QhFM/P1E4xWVeZqQZPNVa1yjqjf50bqhJy64f88Mc/MwX1E ny/4aWwNULPJHCDfFEhTsuPNFQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFOuylEXW C/cFTvOCArDs083BxCWJMB8GA1UdIwQYMBaAFKYJqU5qIQG6+VyML1XOxBeSW+/P MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyMjAxMC9FQTAyMUE5NEQ1 M0YxMUVFQThENjI0MEZDNEY5QUUwMi9wZ21wVG1vaEFicjVYSXd2VmM3RUY1SmI3 ODguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3BnbXBUbW9oQWJyNVhJd3ZWYzdFRjVKYjc4OC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy MjAxMC9FQTAyMUE5NEQ1M0YxMUVFQThENjI0MEZDNEY5QUUwMi9wZ21wVG1vaEFi cjVYSXd2VmM3RUY1SmI3ODgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQArSOxyUCcnpfo0IqdP5GfSHI2AL8gkwt8wILBE82Cc161z1Ok/AK07 7Cn/ZEnLMo82aMQ3TTuxj68eof2akWojz1xrvum9A1oMxNM2C0mC1my/BZDLS+VV N8M6VnC7m1QboGeP6HCRKrXUdO54z6uyJTkXFo61HW1NgmqGjkCeAfd8O9M2c63Y 1N+0X8hdYSaSlUbk76iBnujdjLttuy+payHTBwWXNL6fgxtaWQtqztjaVrwesHft hpOe5eRFErvyvbXiavwWtqg6kquFas8z15yQKG4vzPSZ/1ODZDcDBLKtL6yJPVSg oiLoviEToybplEsGzPxGJ/GjOqhl9b1J -----END CERTIFICATE-----Generated at Wed Sep 10 01:26:28 2025 by rpki-client