$ rpki-client -vvf rpki.apnic.net/member_repository/A917BB51/25ACF5C0C4B811EEBD71C446C4F9AE02/PqQ0fS2f1utqAbROVXH4iwiswls.mft File: PqQ0fS2f1utqAbROVXH4iwiswls.mft (raw, json) Hash identifier: ucc47T0/KmXzOzRLIqnUCGW826cYEqBfnwLbUyEy1zM= Subject key identifier: 0A:44:92:1E:D2:DC:EA:59:25:E5:76:F2:A7:84:11:AC:55:90:2F:75 Authority key identifier: 3E:A4:34:7D:2D:9F:D6:EB:6A:01:B4:4E:55:71:F8:8B:08:AC:C2:5B Certificate issuer: /CN=A917BB51/serialNumber=3EA4347D2D9FD6EB6A01B44E5571F88B08ACC25B Certificate serial: 013A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PqQ0fS2f1utqAbROVXH4iwiswls.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917BB51/25ACF5C0C4B811EEBD71C446C4F9AE02/PqQ0fS2f1utqAbROVXH4iwiswls.mft Manifest number: 0131 Signing time: Fri 05 Sep 2025 05:01:41 +0000 Manifest this update: Fri 05 Sep 2025 05:01:40 +0000 Manifest next update: Fri 12 Sep 2025 05:01:40 +0000 Files and hashes: 1: PqQ0fS2f1utqAbROVXH4iwiswls.crl (hash: 76/K3eyVobpCZsYfTThQBzeEWl2E4HYLQtBGJcoNMaQ=) 2: A9C5C1CAC4B811EE8A03D547C4F9AE02.roa (hash: idAFhUmAkJaKGqP8j1ITDESnMkqFyJap6af21HGHAgQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917BB51/25ACF5C0C4B811EEBD71C446C4F9AE02/PqQ0fS2f1utqAbROVXH4iwiswls.crl rsync://rpki.apnic.net/member_repository/A917BB51/25ACF5C0C4B811EEBD71C446C4F9AE02/PqQ0fS2f1utqAbROVXH4iwiswls.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PqQ0fS2f1utqAbROVXH4iwiswls.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 12 Sep 2025 05:01:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 314 (0x13a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917BB51, serialNumber=3EA4347D2D9FD6EB6A01B44E5571F88B08ACC25B Validity Not Before: Sep 5 05:01:40 2025 GMT Not After : Sep 12 05:01:40 2025 GMT Subject: CN=68ba6eb4-e26c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:7c:ca:c3:fd:c7:1e:3d:7e:89:e2:23:23:08: 00:9c:00:fb:28:af:12:72:84:90:06:63:79:0f:08: 1b:d6:64:65:cc:15:fa:62:26:17:21:4d:98:f9:f6: 44:a7:22:ab:f0:5a:2d:76:24:09:e4:d8:b3:56:42: cb:98:d0:b4:00:e4:a5:4f:bc:74:93:3d:19:67:98: ab:05:5d:68:d1:e4:dc:20:ee:ba:9a:19:8e:96:94: 8b:88:35:93:fe:58:ab:d3:05:4a:40:76:b5:b2:3a: f8:4a:25:03:98:e3:ac:fa:23:4f:53:12:13:d2:0f: 49:8b:92:0b:7a:d9:71:3d:8c:96:b0:0d:99:c9:f6: b0:04:0c:ea:b3:e4:e9:ff:dd:c1:f1:bb:6b:a7:65: 73:46:26:67:d0:6b:cb:96:c4:d9:59:8c:ad:21:4f: 03:2b:d1:9c:f3:60:b2:50:7b:2e:a0:89:4e:61:ce: 2a:90:e9:06:0a:ad:19:09:69:d4:09:af:f0:39:12: c3:cf:e2:cd:06:3c:8e:54:e6:bf:88:55:d4:64:68: b1:eb:00:2f:7b:8e:19:c5:01:c2:43:a7:e7:bd:a4: b2:06:b1:4c:8e:11:1b:5d:34:2c:ac:80:04:55:1d: aa:a6:3e:b6:88:42:89:4f:14:29:5c:7e:24:1f:82: fa:69 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0A:44:92:1E:D2:DC:EA:59:25:E5:76:F2:A7:84:11:AC:55:90:2F:75 X509v3 Authority Key Identifier: keyid:3E:A4:34:7D:2D:9F:D6:EB:6A:01:B4:4E:55:71:F8:8B:08:AC:C2:5B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917BB51/25ACF5C0C4B811EEBD71C446C4F9AE02/PqQ0fS2f1utqAbROVXH4iwiswls.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PqQ0fS2f1utqAbROVXH4iwiswls.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917BB51/25ACF5C0C4B811EEBD71C446C4F9AE02/PqQ0fS2f1utqAbROVXH4iwiswls.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 35:40:d6:86:a5:89:f5:41:94:4d:92:f0:fe:82:1c:b0:62:00: 2e:52:5c:b1:f3:95:52:dc:b4:9a:1e:49:40:61:ec:0d:8d:91: cc:e8:d7:22:bc:0e:cd:bc:56:70:36:a6:4d:8d:81:38:37:81: ef:cf:24:75:32:ec:82:fc:34:a0:5f:aa:dd:7f:be:35:d1:6c: 63:52:4b:74:9b:13:4e:91:9e:dd:b9:73:a5:ed:76:3f:34:98: 69:64:6e:ff:f9:4b:10:f9:88:b7:fd:b5:55:09:06:0b:32:40: 11:9a:70:01:50:56:cd:b4:27:b1:e9:9e:02:db:0c:3e:b1:5f: c5:db:6b:33:d4:5d:18:7f:68:46:79:20:ef:2b:34:c1:33:91: 26:43:01:8e:a5:fd:a0:db:6b:4e:ef:a8:19:b1:9e:af:6c:ad: 75:89:24:be:b6:27:4f:db:c0:e1:35:41:4b:bf:41:b4:8f:be: 93:a5:af:7d:dd:55:0a:f5:c4:70:76:40:92:10:84:75:b9:a3: 3b:5e:d4:ff:37:4c:44:e5:84:35:08:b7:63:fe:3b:74:c4:35: ec:62:e4:15:38:0c:db:db:1a:d2:78:10:01:ea:c8:74:1e:41: a7:86:58:90:d7:64:92:04:dc:1d:c2:c6:8f:34:2f:ca:16:0c: bf:eb:5a:ec -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICATowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0JCNTExMTAvBgNVBAUTKDNFQTQzNDdEMkQ5RkQ2RUI2QTAxQjQ0RTU1NzFGODhC MDhBQ0MyNUIwHhcNMjUwOTA1MDUwMTQwWhcNMjUwOTEyMDUwMTQwWjAYMRYwFAYD VQQDEw02OGJhNmViNC1lMjZjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvnzKw/3HHj1+ieIjIwgAnAD7KK8ScoSQBmN5Dwgb1mRlzBX6YiYXIU2Y+fZE pyKr8FotdiQJ5NizVkLLmNC0AOSlT7x0kz0ZZ5irBV1o0eTcIO66mhmOlpSLiDWT /lir0wVKQHa1sjr4SiUDmOOs+iNPUxIT0g9Ji5ILetlxPYyWsA2ZyfawBAzqs+Tp /93B8btrp2VzRiZn0GvLlsTZWYytIU8DK9Gc82CyUHsuoIlOYc4qkOkGCq0ZCWnU Ca/wORLDz+LNBjyOVOa/iFXUZGix6wAve44ZxQHCQ6fnvaSyBrFMjhEbXTQsrIAE VR2qpj62iEKJTxQpXH4kH4L6aQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFApEkh7S 3OpZJeV28qeEEaxVkC91MB8GA1UdIwQYMBaAFD6kNH0tn9bragG0TlVx+IsIrMJb MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3QkI1MS8yNUFDRjVDMEM0 QjgxMUVFQkQ3MUM0NDZDNEY5QUUwMi9QcVEwZlMyZjF1dHFBYlJPVlhINGl3aXN3 bHMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1BxUTBmUzJmMXV0cUFiUk9WWEg0aXdpc3dscy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 QkI1MS8yNUFDRjVDMEM0QjgxMUVFQkQ3MUM0NDZDNEY5QUUwMi9QcVEwZlMyZjF1 dHFBYlJPVlhINGl3aXN3bHMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA1QNaGpYn1QZRNkvD+ghywYgAuUlyx85VS3LSaHklAYewNjZHM6Nci vA7NvFZwNqZNjYE4N4HvzyR1MuyC/DSgX6rdf7410WxjUkt0mxNOkZ7duXOl7XY/ NJhpZG7/+UsQ+Yi3/bVVCQYLMkARmnABUFbNtCex6Z4C2ww+sV/F22sz1F0Yf2hG eSDvKzTBM5EmQwGOpf2g22tO76gZsZ6vbK11iSS+tidP28DhNUFLv0G0j76Tpa99 3VUK9cRwdkCSEIR1uaM7XtT/N0xE5YQ1CLdj/jt0xDXsYuQVOAzb2xrSeBAB6sh0 HkGnhliQ12SSBNwdwsaPNC/KFgy/61rs -----END CERTIFICATE-----Generated at Sat Sep 6 16:06:13 2025 by rpki-client