$ rpki-client -vvf rpki.apnic.net/member_repository/A9134B4A/E26499A22F8911EFA3D04A6BC4F9AE02/PDWH3Dry6Tfs22WoOJJ1mkHIhQs.mft File: PDWH3Dry6Tfs22WoOJJ1mkHIhQs.mft (raw, json) Hash identifier: H6Ht5xJNf3/vTpOt/wtyj+dQqHeFug/nZweXAZhB0PA= Subject key identifier: 16:DE:A5:8F:43:D6:E1:F6:37:79:FE:83:D0:DA:77:DB:FA:33:A7:7F Authority key identifier: 3C:35:87:DC:3A:F2:E9:37:EC:DB:65:A8:38:92:75:9A:41:C8:85:0B Certificate issuer: /CN=A9134B4A/serialNumber=3C3587DC3AF2E937ECDB65A83892759A41C8850B Certificate serial: F7 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/PDWH3Dry6Tfs22WoOJJ1mkHIhQs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9134B4A/E26499A22F8911EFA3D04A6BC4F9AE02/PDWH3Dry6Tfs22WoOJJ1mkHIhQs.mft Manifest number: EE Signing time: Fri 05 Sep 2025 05:48:46 +0000 Manifest this update: Fri 05 Sep 2025 05:48:46 +0000 Manifest next update: Fri 12 Sep 2025 05:48:46 +0000 Files and hashes: 1: PDWH3Dry6Tfs22WoOJJ1mkHIhQs.crl (hash: lOaCzBlXQ/qakS5qU4nmwL5+JlEoslJzqOjjFcYu41I=) 2: A63B6120238711F08D2B4460C4F9AE02.roa (hash: OMBfI+nHRaL8yyAWZKMqye5oo33aQnkkup2yUiK7Glg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9134B4A/E26499A22F8911EFA3D04A6BC4F9AE02/PDWH3Dry6Tfs22WoOJJ1mkHIhQs.crl rsync://rpki.apnic.net/member_repository/A9134B4A/E26499A22F8911EFA3D04A6BC4F9AE02/PDWH3Dry6Tfs22WoOJJ1mkHIhQs.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/PDWH3Dry6Tfs22WoOJJ1mkHIhQs.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 12 Sep 2025 05:48:45 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 247 (0xf7) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9134B4A, serialNumber=3C3587DC3AF2E937ECDB65A83892759A41C8850B Validity Not Before: Sep 5 05:48:46 2025 GMT Not After : Sep 12 05:48:46 2025 GMT Subject: CN=68ba79be-8e0d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ca:b8:bf:cc:5b:b8:3f:82:44:98:b0:58:7f:d4: 7d:83:2b:93:9f:5f:8a:3f:d0:c2:47:7f:37:78:42: cf:ca:e2:2d:54:7c:69:1b:32:0a:55:81:67:84:43: f6:5d:75:eb:a5:5a:f8:ba:d5:0f:b8:d4:11:ef:c1: 09:85:80:ce:3e:df:41:7f:1e:66:64:6d:17:fe:75: a2:32:11:34:b6:a5:c1:54:4e:ff:e8:c0:ca:99:bc: 64:84:a0:30:ec:b9:8d:86:08:72:8d:34:ab:5f:5b: 85:ad:26:42:12:98:9a:f3:b4:f9:93:6b:89:82:40: 68:99:2f:01:58:a3:9e:c3:29:26:37:5b:c0:fc:bb: fe:ee:c7:f6:f1:c3:dc:37:a2:7f:cb:63:d0:47:02: 4a:1e:5d:ad:29:1e:46:a2:d9:fe:40:0e:ea:0c:43: f2:a2:c7:48:f9:8f:20:13:7c:e3:58:fa:1f:02:cb: b7:f8:87:05:79:69:ab:ce:99:e6:bb:e4:8e:19:c8: 50:40:7b:7c:a5:db:1d:78:90:f9:ff:c1:7e:68:cc: 23:ec:df:f3:96:46:a0:df:b5:3e:3d:bd:30:12:ff: 7b:0d:35:ed:4b:2d:1c:3c:e7:88:25:63:27:6f:22: e0:de:de:6b:1b:12:e2:f1:11:8d:04:c1:6d:7f:ff: 1b:7f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 16:DE:A5:8F:43:D6:E1:F6:37:79:FE:83:D0:DA:77:DB:FA:33:A7:7F X509v3 Authority Key Identifier: keyid:3C:35:87:DC:3A:F2:E9:37:EC:DB:65:A8:38:92:75:9A:41:C8:85:0B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9134B4A/E26499A22F8911EFA3D04A6BC4F9AE02/PDWH3Dry6Tfs22WoOJJ1mkHIhQs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/PDWH3Dry6Tfs22WoOJJ1mkHIhQs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9134B4A/E26499A22F8911EFA3D04A6BC4F9AE02/PDWH3Dry6Tfs22WoOJJ1mkHIhQs.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 3d:a9:5b:8a:ab:db:f5:41:57:2f:74:20:4b:d4:f4:2a:3c:ba: a8:61:db:2a:f2:32:51:d7:3d:08:a7:12:1f:c0:b5:5f:cd:dc: 0a:d3:e6:af:9b:13:9d:a0:42:e9:e7:2a:c7:49:a7:5c:39:fd: 13:86:dc:2c:f3:e5:38:8b:34:70:19:a4:df:c0:ab:ac:87:ed: 42:e4:80:e4:87:7d:2d:c0:d1:ff:34:67:76:39:6a:87:2d:50: 4a:b7:4c:94:e8:a6:ba:5f:ce:02:88:e0:5c:94:40:cc:67:59: 59:fe:b9:e7:58:a3:fa:da:bd:03:8e:07:88:2b:aa:f5:3c:e2: 0d:cd:23:c9:0a:5c:cd:3c:9b:22:83:70:3d:71:d8:24:50:aa: 97:48:1f:9f:f3:aa:1f:ec:d2:76:ca:1c:69:a2:31:e3:e6:89: 7b:80:8d:47:7e:2d:7f:1c:23:7a:c6:2e:aa:3b:b5:f9:bf:3b: c3:8b:5e:7c:d2:7d:6a:e9:5e:22:1c:5e:a7:ee:0c:c6:76:f1: 83:46:4e:76:11:9a:18:7b:69:8c:36:ab:82:75:b3:06:d9:ab: bc:c8:9e:4b:5e:67:83:19:c7:ab:8a:28:df:bf:5d:cc:be:1e: e9:70:46:eb:07:88:9c:df:a3:a6:c7:40:d0:27:42:13:08:b1: b6:67:5e:bb -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAPcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MzRCNEExMTAvBgNVBAUTKDNDMzU4N0RDM0FGMkU5MzdFQ0RCNjVBODM4OTI3NTlB NDFDODg1MEIwHhcNMjUwOTA1MDU0ODQ2WhcNMjUwOTEyMDU0ODQ2WjAYMRYwFAYD VQQDEw02OGJhNzliZS04ZTBkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyri/zFu4P4JEmLBYf9R9gyuTn1+KP9DCR383eELPyuItVHxpGzIKVYFnhEP2 XXXrpVr4utUPuNQR78EJhYDOPt9Bfx5mZG0X/nWiMhE0tqXBVE7/6MDKmbxkhKAw 7LmNhghyjTSrX1uFrSZCEpia87T5k2uJgkBomS8BWKOewykmN1vA/Lv+7sf28cPc N6J/y2PQRwJKHl2tKR5Gotn+QA7qDEPyosdI+Y8gE3zjWPofAsu3+IcFeWmrzpnm u+SOGchQQHt8pdsdeJD5/8F+aMwj7N/zlkag37U+Pb0wEv97DTXtSy0cPOeIJWMn byLg3t5rGxLi8RGNBMFtf/8bfwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFBbepY9D 1uH2N3n+g9Dad9v6M6d/MB8GA1UdIwQYMBaAFDw1h9w68uk37NtlqDiSdZpByIUL MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzNEI0QS9FMjY0OTlBMjJG ODkxMUVGQTNEMDRBNkJDNEY5QUUwMi9QRFdIM0RyeTZUZnMyMldvT0pKMW1rSElo UXMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL1BEV0gzRHJ5NlRmczIyV29PSkoxbWtISWhRcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz NEI0QS9FMjY0OTlBMjJGODkxMUVGQTNEMDRBNkJDNEY5QUUwMi9QRFdIM0RyeTZU ZnMyMldvT0pKMW1rSEloUXMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA9qVuKq9v1QVcvdCBL1PQqPLqoYdsq8jJR1z0IpxIfwLVfzdwK0+av mxOdoELp5yrHSadcOf0Thtws8+U4izRwGaTfwKush+1C5IDkh30twNH/NGd2OWqH LVBKt0yU6Ka6X84CiOBclEDMZ1lZ/rnnWKP62r0DjgeIK6r1POINzSPJClzNPJsi g3A9cdgkUKqXSB+f86of7NJ2yhxpojHj5ol7gI1Hfi1/HCN6xi6qO7X5vzvDi158 0n1q6V4iHF6n7gzGdvGDRk52EZoYe2mMNquCdbMG2au8yJ5LXmeDGceriijfv13M vh7pcEbrB4ic36Omx0DQJ0ITCLG2Z167 -----END CERTIFICATE-----Generated at Sat Sep 6 21:05:10 2025 by rpki-client