$ rpki-client -vvf rpki.apnic.net/member_repository/A915DE6C/74FBB3D643D411F090B47668C4F9AE02/pbtkBP5TtawGtBCz1s2gNKITHpA.mft File: pbtkBP5TtawGtBCz1s2gNKITHpA.mft (raw, json) Hash identifier: uD1eGyvn4CCFTw5nYTcKyp6cmXPVxq58V0OmXQ/Gz5A= Subject key identifier: BD:AF:B3:E8:58:7F:22:91:2B:35:AB:84:22:78:CE:48:3E:47:F7:75 Authority key identifier: A5:BB:64:04:FE:53:B5:AC:06:B4:10:B3:D6:CD:A0:34:A2:13:1E:90 Certificate issuer: /CN=A915DE6C/serialNumber=A5BB6404FE53B5AC06B410B3D6CDA034A2131E90 Certificate serial: 28 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pbtkBP5TtawGtBCz1s2gNKITHpA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A915DE6C/74FBB3D643D411F090B47668C4F9AE02/pbtkBP5TtawGtBCz1s2gNKITHpA.mft Manifest number: 28 Signing time: Thu 21 Aug 2025 07:59:15 +0000 Manifest this update: Thu 21 Aug 2025 07:59:15 +0000 Manifest next update: Thu 28 Aug 2025 07:59:15 +0000 Files and hashes: 1: pbtkBP5TtawGtBCz1s2gNKITHpA.crl (hash: 60evGtiWXepJDEap+fuKBSzbpCp9gBUie7SRZTUiYnI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A915DE6C/74FBB3D643D411F090B47668C4F9AE02/pbtkBP5TtawGtBCz1s2gNKITHpA.crl rsync://rpki.apnic.net/member_repository/A915DE6C/74FBB3D643D411F090B47668C4F9AE02/pbtkBP5TtawGtBCz1s2gNKITHpA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pbtkBP5TtawGtBCz1s2gNKITHpA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 28 Aug 2025 07:59:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 40 (0x28) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A915DE6C, serialNumber=A5BB6404FE53B5AC06B410B3D6CDA034A2131E90 Validity Not Before: Aug 21 07:59:15 2025 GMT Not After : Aug 28 07:59:15 2025 GMT Subject: CN=68a6d1d3-7da7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a0:62:fd:f4:2b:58:09:b8:e0:5c:2a:ba:eb:3f: e9:ec:04:51:b6:7d:78:b9:fe:67:9a:a8:de:50:15: d9:83:b1:63:2b:1a:d2:bb:b6:d1:b2:cd:0d:6c:55: 96:d9:50:af:ba:f3:72:3c:f3:b3:e8:a2:b9:c3:72: bf:21:e3:4e:33:aa:37:94:88:9d:e5:28:0f:d4:4e: b1:89:a7:3a:76:b0:33:24:3d:af:57:33:5f:cc:f4: 79:d3:35:79:e9:0b:71:52:83:75:35:7a:fb:31:20: a9:b1:9e:77:24:69:17:01:6f:55:a3:7f:69:f5:8b: a1:bb:e2:cb:4c:af:66:7a:5a:52:41:ba:be:f0:3f: 5d:37:2e:4e:a3:6b:1b:73:1b:03:fa:79:b5:63:a4: 0c:93:74:8d:d6:e4:c5:c6:05:42:81:90:55:4f:e5: d3:93:59:f2:8d:18:05:5a:95:11:a9:b9:30:a1:a6: e5:73:87:c1:f8:3f:6a:86:ab:8a:57:2a:15:dc:c7: 1a:34:99:8c:1e:81:72:cb:b2:40:d4:62:0f:5a:6a: be:38:0d:60:d2:f1:69:55:3f:d4:c3:1e:ca:bd:91: fa:81:32:6e:00:1f:7c:7a:c9:75:5e:aa:62:c0:34: f1:16:72:fa:ee:78:bb:cf:42:f3:0b:38:0e:de:f2: 4b:69 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BD:AF:B3:E8:58:7F:22:91:2B:35:AB:84:22:78:CE:48:3E:47:F7:75 X509v3 Authority Key Identifier: keyid:A5:BB:64:04:FE:53:B5:AC:06:B4:10:B3:D6:CD:A0:34:A2:13:1E:90 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A915DE6C/74FBB3D643D411F090B47668C4F9AE02/pbtkBP5TtawGtBCz1s2gNKITHpA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pbtkBP5TtawGtBCz1s2gNKITHpA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A915DE6C/74FBB3D643D411F090B47668C4F9AE02/pbtkBP5TtawGtBCz1s2gNKITHpA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 4f:d4:ee:17:8a:84:52:82:9b:aa:a5:51:9e:e0:44:3e:68:47: c9:49:a1:fd:35:91:19:05:8c:8a:f5:d8:bc:83:af:b1:89:13: 7e:b0:c1:8f:01:2d:0d:41:00:42:da:69:d0:43:68:67:77:50: 30:b1:3b:80:b4:38:cc:0e:b1:c4:9d:eb:af:35:1c:a5:f8:d9: 70:14:2a:53:bf:ee:91:02:9f:06:76:9d:93:d7:e5:8b:0f:32: ab:5f:2d:3e:5d:3b:31:df:0e:6b:b7:60:e5:f4:71:bd:7c:3d: aa:a5:bf:0c:97:c8:29:b8:1d:d2:74:cd:fa:47:96:98:a0:24: 2d:ab:d1:27:0c:ce:68:c8:9c:5f:c8:a6:93:c9:f0:d3:a5:29: 73:02:79:89:b8:66:6c:36:51:a7:f0:9a:e7:c6:61:56:38:5d: 17:fd:2e:83:98:e1:79:85:84:5d:fb:81:3e:14:31:34:5b:1a: f2:71:bf:99:eb:af:8f:3d:29:a5:06:40:73:a3:6b:13:b4:0f: a8:71:b6:03:ea:c5:4d:3d:89:db:b2:49:4c:32:c5:36:fb:8d: f9:08:87:8f:58:7f:26:81:56:53:ed:3c:1a:38:bf:13:e7:3f: 91:a1:12:68:44:82:64:a2:39:6c:b2:70:c4:04:db:c4:48:d5: 15:d6:83:43 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBKDANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE1 REU2QzExMC8GA1UEBRMoQTVCQjY0MDRGRTUzQjVBQzA2QjQxMEIzRDZDREEwMzRB MjEzMUU5MDAeFw0yNTA4MjEwNzU5MTVaFw0yNTA4MjgwNzU5MTVaMBgxFjAUBgNV BAMTDTY4YTZkMWQzLTdkYTcwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCgYv30K1gJuOBcKrrrP+nsBFG2fXi5/meaqN5QFdmDsWMrGtK7ttGyzQ1sVZbZ UK+683I887PoornDcr8h404zqjeUiJ3lKA/UTrGJpzp2sDMkPa9XM1/M9HnTNXnp C3FSg3U1evsxIKmxnnckaRcBb1Wjf2n1i6G74stMr2Z6WlJBur7wP103Lk6jaxtz GwP6ebVjpAyTdI3W5MXGBUKBkFVP5dOTWfKNGAValRGpuTChpuVzh8H4P2qGq4pX KhXcxxo0mYwegXLLskDUYg9aar44DWDS8WlVP9TDHsq9kfqBMm4AH3x6yXVeqmLA NPEWcvrueLvPQvMLOA7e8ktpAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUva+z6Fh/ IpErNauEInjOSD5H93UwHwYDVR0jBBgwFoAUpbtkBP5TtawGtBCz1s2gNKITHpAw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTVERTZDLzc0RkJCM0Q2NDNE NDExRjA5MEI0NzY2OEM0RjlBRTAyL3BidGtCUDVUdGF3R3RCQ3oxczJnTktJVEhw QS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvcGJ0a0JQNVR0YXdHdEJDejFzMmdOS0lUSHBBLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTVE RTZDLzc0RkJCM0Q2NDNENDExRjA5MEI0NzY2OEM0RjlBRTAyL3BidGtCUDVUdGF3 R3RCQ3oxczJnTktJVEhwQS5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAE/U7heKhFKCm6qlUZ7gRD5oR8lJof01kRkFjIr12LyDr7GJE36wwY8B LQ1BAELaadBDaGd3UDCxO4C0OMwOscSd6681HKX42XAUKlO/7pECnwZ2nZPX5YsP MqtfLT5dOzHfDmu3YOX0cb18PaqlvwyXyCm4HdJ0zfpHlpigJC2r0ScMzmjInF/I ppPJ8NOlKXMCeYm4Zmw2UafwmufGYVY4XRf9LoOY4XmFhF37gT4UMTRbGvJxv5nr r489KaUGQHOjaxO0D6hxtgPqxU09iduySUwyxTb7jfkIh49YfyaBVlPtPBo4vxPn P5GhEmhEgmSiOWyycMQE28RI1RXWg0M= -----END CERTIFICATE-----Generated at Fri Aug 22 16:36:08 2025 by rpki-client