$ rpki-client -vvf rpki.apnic.net/member_repository/A916AF8E/D94A75941C1411EBB036DC63C4F9AE02/PcXSlD7UrPqSa3dnapi-yLPJea4.mft File: PcXSlD7UrPqSa3dnapi-yLPJea4.mft (raw, json) Hash identifier: FJKrr4Ub4mjE0/sqXFlW6WsZu0nrxFVfk4eqLy4O0Mo= Subject key identifier: EE:B8:F6:5A:7A:46:37:BB:A0:BA:7C:05:20:C3:43:D2:96:19:46:14 Authority key identifier: 3D:C5:D2:94:3E:D4:AC:FA:92:6B:77:67:6A:98:BE:C8:B3:C9:79:AE Certificate issuer: /CN=A916AF8E/serialNumber=3DC5D2943ED4ACFA926B77676A98BEC8B3C979AE Certificate serial: 07A9 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PcXSlD7UrPqSa3dnapi-yLPJea4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A916AF8E/D94A75941C1411EBB036DC63C4F9AE02/PcXSlD7UrPqSa3dnapi-yLPJea4.mft Manifest number: 07A1 Signing time: Thu 18 Sep 2025 21:40:05 +0000 Manifest this update: Thu 18 Sep 2025 21:40:04 +0000 Manifest next update: Thu 25 Sep 2025 21:40:04 +0000 Files and hashes: 1: PcXSlD7UrPqSa3dnapi-yLPJea4.crl (hash: qDyfQpMeVn58hoeS1zLMsrwDOVpxLVOtV3BXMNho4uY=) 2: 499DE3FC1C1611EB8BD35065C4F9AE02.roa (hash: QnFh/0YdNLZr/ZfMn+21+lOUTuFHow1/2U5v+xOLivo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A916AF8E/D94A75941C1411EBB036DC63C4F9AE02/PcXSlD7UrPqSa3dnapi-yLPJea4.crl rsync://rpki.apnic.net/member_repository/A916AF8E/D94A75941C1411EBB036DC63C4F9AE02/PcXSlD7UrPqSa3dnapi-yLPJea4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PcXSlD7UrPqSa3dnapi-yLPJea4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 25 Sep 2025 21:40:03 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1961 (0x7a9) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A916AF8E, serialNumber=3DC5D2943ED4ACFA926B77676A98BEC8B3C979AE Validity Not Before: Sep 18 21:40:04 2025 GMT Not After : Sep 25 21:40:04 2025 GMT Subject: CN=68cc7c35-ad3c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c8:19:56:b7:21:69:10:3c:64:b0:3b:0d:50:69: 6a:57:45:82:8b:6d:55:7e:cd:ed:07:4e:fb:1a:66: 6a:b9:68:f0:f0:41:b3:a9:10:8c:4a:9e:b4:4e:11: f1:06:58:52:d3:fc:06:3f:47:e5:06:8a:b9:8e:23: f8:c6:f4:ca:fa:b0:b4:91:0b:74:18:25:91:5b:29: 4b:b4:77:f4:de:60:5e:ac:ab:a7:59:09:ec:3f:e6: 53:6b:71:8e:27:fa:6f:6a:7c:d7:b9:a7:79:20:ec: 7b:06:7d:59:35:41:20:83:f0:53:11:e3:63:b4:da: 12:fc:62:db:b9:a3:e2:a4:38:77:35:5e:c6:2b:d1: d7:e9:43:88:f1:fd:b8:26:bf:5e:f8:07:3d:09:56: e3:f3:3a:0d:4b:e1:ea:3c:e5:b9:49:8c:a1:dd:b8: d7:e1:cb:3b:c8:d7:8a:d5:33:b1:fe:8e:ba:52:06: a7:95:59:74:97:37:ee:b9:21:5b:0a:99:54:ec:75: 64:79:8c:68:2c:71:7c:62:ee:57:44:53:58:91:29: 3d:bc:f9:2f:23:ba:73:5c:40:43:a7:6e:84:64:65: 0f:c9:fd:c7:9f:18:c3:a5:03:96:9e:14:8f:dd:77: 7f:b0:cd:d5:96:e0:af:9d:77:95:f6:d9:d8:e2:8a: d6:85 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EE:B8:F6:5A:7A:46:37:BB:A0:BA:7C:05:20:C3:43:D2:96:19:46:14 X509v3 Authority Key Identifier: keyid:3D:C5:D2:94:3E:D4:AC:FA:92:6B:77:67:6A:98:BE:C8:B3:C9:79:AE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A916AF8E/D94A75941C1411EBB036DC63C4F9AE02/PcXSlD7UrPqSa3dnapi-yLPJea4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PcXSlD7UrPqSa3dnapi-yLPJea4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A916AF8E/D94A75941C1411EBB036DC63C4F9AE02/PcXSlD7UrPqSa3dnapi-yLPJea4.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 8e:4e:47:6d:5f:76:b6:0d:43:1c:39:9a:63:1d:fd:e2:5d:aa: ae:ea:2b:a1:3a:31:34:17:5c:01:af:c8:d4:d4:f8:8b:51:72: 76:c8:10:f6:2b:e4:12:a2:9c:05:62:ce:38:b1:38:7b:f4:3b: 2c:79:14:51:db:6b:5e:a4:0a:dc:bd:46:02:a1:92:15:b6:2e: 5f:1c:e6:7e:44:56:21:54:0b:a3:64:dc:22:2f:2c:31:5d:92: 2b:77:37:8a:c3:26:03:64:08:d1:a0:c2:a4:49:c4:cf:3a:1c: 84:0e:ef:db:64:a0:a2:80:e1:90:6a:64:1d:95:29:16:dd:33: 10:c8:43:9c:45:35:26:8f:28:73:88:99:4f:37:34:76:7d:62: 37:c1:45:a2:0e:31:c7:2d:62:72:55:ea:af:d9:66:31:4a:22: fb:57:3c:d1:a5:9a:27:bc:0e:27:7c:db:ed:e3:93:93:b8:19: bb:18:26:f5:ea:77:ce:31:f5:a7:03:9a:53:5b:b6:48:06:c8: cf:ee:47:0f:3e:ca:4b:c8:24:a1:b7:e6:d3:51:8b:3e:98:73: e5:3a:1c:ba:ff:22:ff:3b:b3:1f:a8:6f:04:36:f5:e0:6b:0b: 48:69:dc:b5:5c:11:83:63:eb:cf:6c:f8:aa:fa:0b:4e:d5:0d: 3b:07:70:67 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICB6kwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NkFGOEUxMTAvBgNVBAUTKDNEQzVEMjk0M0VENEFDRkE5MjZCNzc2NzZBOThCRUM4 QjNDOTc5QUUwHhcNMjUwOTE4MjE0MDA0WhcNMjUwOTI1MjE0MDA0WjAYMRYwFAYD VQQDEw02OGNjN2MzNS1hZDNjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyBlWtyFpEDxksDsNUGlqV0WCi21Vfs3tB077GmZquWjw8EGzqRCMSp60ThHx BlhS0/wGP0flBoq5jiP4xvTK+rC0kQt0GCWRWylLtHf03mBerKunWQnsP+ZTa3GO J/pvanzXuad5IOx7Bn1ZNUEgg/BTEeNjtNoS/GLbuaPipDh3NV7GK9HX6UOI8f24 Jr9e+Ac9CVbj8zoNS+HqPOW5SYyh3bjX4cs7yNeK1TOx/o66UganlVl0lzfuuSFb CplU7HVkeYxoLHF8Yu5XRFNYkSk9vPkvI7pzXEBDp26EZGUPyf3HnxjDpQOWnhSP 3Xd/sM3VluCvnXeV9tnY4orWhQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFO649lp6 Rje7oLp8BSDDQ9KWGUYUMB8GA1UdIwQYMBaAFD3F0pQ+1Kz6kmt3Z2qYvsizyXmu MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2QUY4RS9EOTRBNzU5NDFD MTQxMUVCQjAzNkRDNjNDNEY5QUUwMi9QY1hTbEQ3VXJQcVNhM2RuYXBpLXlMUEpl YTQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1BjWFNsRDdVclBxU2EzZG5hcGkteUxQSmVhNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 QUY4RS9EOTRBNzU5NDFDMTQxMUVCQjAzNkRDNjNDNEY5QUUwMi9QY1hTbEQ3VXJQ cVNhM2RuYXBpLXlMUEplYTQubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCOTkdtX3a2DUMcOZpjHf3iXaqu6iuhOjE0F1wBr8jU1PiLUXJ2yBD2 K+QSopwFYs44sTh79DsseRRR22tepArcvUYCoZIVti5fHOZ+RFYhVAujZNwiLywx XZIrdzeKwyYDZAjRoMKkScTPOhyEDu/bZKCigOGQamQdlSkW3TMQyEOcRTUmjyhz iJlPNzR2fWI3wUWiDjHHLWJyVeqv2WYxSiL7VzzRpZonvA4nfNvt45OTuBm7GCb1 6nfOMfWnA5pTW7ZIBsjP7kcPPspLyCSht+bTUYs+mHPlOhy6/yL/O7MfqG8ENvXg awtIady1XBGDY+vPbPiq+gtO1Q07B3Bn -----END CERTIFICATE-----Generated at Fri Sep 19 03:39:18 2025 by rpki-client