$ rpki-client -vvf rpki.apnic.net/member_repository/A9174685/2D159182A97311EA9AABE923C4F9AE02/pfBl_MntoR3KTQ38bXyZB1KY1_8.mft File: pfBl_MntoR3KTQ38bXyZB1KY1_8.mft (raw, json) Hash identifier: r0OFlhBARnsCgDTZ6bAcnMaQQbaE6pgm1XAuAK2VTPw= Subject key identifier: 80:D3:8C:9F:BF:AC:B1:C2:91:D3:37:97:D2:33:12:94:99:4B:9B:B6 Authority key identifier: A5:F0:65:FC:C9:ED:A1:1D:CA:4D:0D:FC:6D:7C:99:07:52:98:D7:FF Certificate issuer: /CN=A9174685/serialNumber=A5F065FCC9EDA11DCA4D0DFC6D7C99075298D7FF Certificate serial: 0944 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pfBl_MntoR3KTQ38bXyZB1KY1_8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9174685/2D159182A97311EA9AABE923C4F9AE02/pfBl_MntoR3KTQ38bXyZB1KY1_8.mft Manifest number: 0930 Signing time: Wed 20 Aug 2025 20:18:54 +0000 Manifest this update: Wed 20 Aug 2025 20:18:53 +0000 Manifest next update: Wed 27 Aug 2025 20:18:53 +0000 Files and hashes: 1: pfBl_MntoR3KTQ38bXyZB1KY1_8.crl (hash: fMx50p5WFb0t0DlULmfn7/Q17JT+6NzlV3cFpJv1mtE=) 2: 8BBD25F4EAE311EF95C23D4DC4F9AE02.roa (hash: g6ZF73udqOvaMk79CC0xL6laKl1ilnMa4mhmtzges9Y=) 3: 31B2B528217811EEBACF3324C4F9AE02.roa (hash: GgE2GgTXjnlE63xFP6LVosemjRTE0pIIUFRg3E+lupM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9174685/2D159182A97311EA9AABE923C4F9AE02/pfBl_MntoR3KTQ38bXyZB1KY1_8.crl rsync://rpki.apnic.net/member_repository/A9174685/2D159182A97311EA9AABE923C4F9AE02/pfBl_MntoR3KTQ38bXyZB1KY1_8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pfBl_MntoR3KTQ38bXyZB1KY1_8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 27 Aug 2025 20:18:53 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2372 (0x944) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9174685, serialNumber=A5F065FCC9EDA11DCA4D0DFC6D7C99075298D7FF Validity Not Before: Aug 20 20:18:53 2025 GMT Not After : Aug 27 20:18:53 2025 GMT Subject: CN=68a62dad-f9f3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:79:c5:27:ca:dd:cf:58:9b:2d:4e:cc:c7:45: 6a:28:2f:dd:4c:40:fb:7e:6b:86:77:66:cf:20:c6: c6:9b:e9:5d:e2:60:a6:34:1c:2b:30:ac:7e:59:6a: e4:67:33:e7:64:70:43:97:8c:cc:a8:3f:4a:a4:a9: 8b:a6:ab:fb:59:7b:3e:6b:b6:6a:cf:cd:f1:61:35: 69:52:40:71:d2:16:20:c0:99:04:1d:f4:29:68:6c: fd:01:63:36:6a:1b:fb:33:82:e0:2e:d1:88:e4:a7: 4a:a3:91:7d:f0:88:59:73:c1:99:15:06:8d:fa:71: 6b:c1:83:fd:ce:93:38:29:65:9d:be:12:6a:41:6a: d6:ae:67:aa:bc:11:9d:28:20:e0:01:50:5d:7c:3e: b8:5d:1e:31:28:61:63:68:b2:4a:d1:69:f1:85:e1: 61:a6:a6:70:ac:2c:55:49:87:97:12:44:84:98:1e: a6:0d:3a:d3:31:15:e2:47:f6:64:73:16:95:76:c7: 55:a3:16:6c:2f:4c:74:be:6e:80:61:56:f1:75:51: 6d:86:73:12:0b:4f:cf:da:84:4b:50:44:9b:cc:96: 0e:6b:5f:5a:9e:1d:bc:7b:2f:9e:c1:14:37:34:77: fb:7b:7d:d7:d8:9c:42:45:3d:e0:0c:69:88:09:b3: fb:9f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 80:D3:8C:9F:BF:AC:B1:C2:91:D3:37:97:D2:33:12:94:99:4B:9B:B6 X509v3 Authority Key Identifier: keyid:A5:F0:65:FC:C9:ED:A1:1D:CA:4D:0D:FC:6D:7C:99:07:52:98:D7:FF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9174685/2D159182A97311EA9AABE923C4F9AE02/pfBl_MntoR3KTQ38bXyZB1KY1_8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pfBl_MntoR3KTQ38bXyZB1KY1_8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9174685/2D159182A97311EA9AABE923C4F9AE02/pfBl_MntoR3KTQ38bXyZB1KY1_8.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 8d:36:55:81:e0:66:6d:5f:b7:e2:34:3a:0d:93:54:ad:a4:94: d8:4d:ea:9a:85:6e:ef:b2:1d:69:c8:7d:19:ba:2e:aa:a4:c8: b4:4a:81:ff:d8:79:9d:27:0f:d9:3d:6a:63:c1:88:c2:a2:83: 8a:41:b7:be:3b:52:40:6a:26:d8:a7:29:72:98:23:74:55:f1: 5d:cb:e3:09:f7:c5:a1:1a:74:70:76:fc:cd:4f:4e:0b:af:56: 79:68:4f:b3:ae:d2:a7:5f:2f:17:3c:f2:b6:1c:2a:66:71:f2: a8:87:f9:41:f9:a3:17:99:0e:50:d5:de:95:36:58:44:70:a7: 37:2e:a6:f8:3c:7b:90:3f:06:ad:d5:29:10:69:c1:e8:a3:a2: d7:21:18:ed:50:17:df:33:a0:35:f2:c1:c0:72:91:e4:f9:78: a9:3a:b0:b8:f9:60:53:18:66:40:48:55:a8:96:2b:1c:a0:04: 1d:b4:53:d6:ea:54:e4:15:e8:ea:74:63:cc:5b:b0:a4:8d:eb: b3:1d:09:54:81:da:80:17:a0:27:15:bd:47:87:2d:61:00:a9: ff:f9:35:55:7b:04:26:52:4c:21:8e:80:1d:6e:37:97:63:8b: 3f:43:86:e5:db:ba:c7:3e:ba:45:fb:da:ce:91:4f:07:5e:12: 7d:d8:67:79 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCUQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzQ2ODUxMTAvBgNVBAUTKEE1RjA2NUZDQzlFREExMURDQTREMERGQzZEN0M5OTA3 NTI5OEQ3RkYwHhcNMjUwODIwMjAxODUzWhcNMjUwODI3MjAxODUzWjAYMRYwFAYD VQQDEw02OGE2MmRhZC1mOWYzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAt3nFJ8rdz1ibLU7Mx0VqKC/dTED7fmuGd2bPIMbGm+ld4mCmNBwrMKx+WWrk ZzPnZHBDl4zMqD9KpKmLpqv7WXs+a7Zqz83xYTVpUkBx0hYgwJkEHfQpaGz9AWM2 ahv7M4LgLtGI5KdKo5F98IhZc8GZFQaN+nFrwYP9zpM4KWWdvhJqQWrWrmeqvBGd KCDgAVBdfD64XR4xKGFjaLJK0WnxheFhpqZwrCxVSYeXEkSEmB6mDTrTMRXiR/Zk cxaVdsdVoxZsL0x0vm6AYVbxdVFthnMSC0/P2oRLUESbzJYOa19anh28ey+ewRQ3 NHf7e33X2JxCRT3gDGmICbP7nwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFIDTjJ+/ rLHCkdM3l9IzEpSZS5u2MB8GA1UdIwQYMBaAFKXwZfzJ7aEdyk0N/G18mQdSmNf/ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3NDY4NS8yRDE1OTE4MkE5 NzMxMUVBOUFBQkU5MjNDNEY5QUUwMi9wZkJsX01udG9SM0tUUTM4Ylh5WkIxS1kx XzguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3BmQmxfTW50b1IzS1RRMzhiWHlaQjFLWTFfOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 NDY4NS8yRDE1OTE4MkE5NzMxMUVBOUFBQkU5MjNDNEY5QUUwMi9wZkJsX01udG9S M0tUUTM4Ylh5WkIxS1kxXzgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCNNlWB4GZtX7fiNDoNk1StpJTYTeqahW7vsh1pyH0Zui6qpMi0SoH/ 2HmdJw/ZPWpjwYjCooOKQbe+O1JAaibYpylymCN0VfFdy+MJ98WhGnRwdvzNT04L r1Z5aE+zrtKnXy8XPPK2HCpmcfKoh/lB+aMXmQ5Q1d6VNlhEcKc3Lqb4PHuQPwat 1SkQacHoo6LXIRjtUBffM6A18sHAcpHk+XipOrC4+WBTGGZASFWoliscoAQdtFPW 6lTkFejqdGPMW7CkjeuzHQlUgdqAF6AnFb1Hhy1hAKn/+TVVewQmUkwhjoAdbjeX Y4s/Q4bl27rHPrpF+9rOkU8HXhJ92Gd5 -----END CERTIFICATE-----Generated at Fri Aug 22 16:22:28 2025 by rpki-client