$ rpki-client -vvf rpki.apnic.net/member_repository/A917C3A7/E41FF0A6532811EC8352D245C4F9AE02/pGM3j5KTiRbgseQTrw8MinPCH08.mft File: pGM3j5KTiRbgseQTrw8MinPCH08.mft (raw, json) Hash identifier: eXw4h2+ebQZ0u4l4XXfV+ssLVICU+SPzhNlsF0bTKcU= Subject key identifier: 66:16:82:8B:6F:6A:B6:D1:07:49:AE:1D:1C:D7:32:9B:CA:9E:0F:56 Authority key identifier: A4:63:37:8F:92:93:89:16:E0:B1:E4:13:AF:0F:0C:8A:73:C2:1F:4F Certificate issuer: /CN=A917C3A7/serialNumber=A463378F92938916E0B1E413AF0F0C8A73C21F4F Certificate serial: 048D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pGM3j5KTiRbgseQTrw8MinPCH08.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917C3A7/E41FF0A6532811EC8352D245C4F9AE02/pGM3j5KTiRbgseQTrw8MinPCH08.mft Manifest number: 048D Signing time: Wed 17 Sep 2025 00:26:38 +0000 Manifest this update: Wed 17 Sep 2025 00:26:37 +0000 Manifest next update: Wed 24 Sep 2025 00:26:37 +0000 Files and hashes: 1: pGM3j5KTiRbgseQTrw8MinPCH08.crl (hash: 7jgFIHFLOydjp9fRr4DxzqvWFE4uJJDe1XDaga8lHow=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917C3A7/E41FF0A6532811EC8352D245C4F9AE02/pGM3j5KTiRbgseQTrw8MinPCH08.crl rsync://rpki.apnic.net/member_repository/A917C3A7/E41FF0A6532811EC8352D245C4F9AE02/pGM3j5KTiRbgseQTrw8MinPCH08.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pGM3j5KTiRbgseQTrw8MinPCH08.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 24 Sep 2025 00:26:37 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1165 (0x48d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917C3A7, serialNumber=A463378F92938916E0B1E413AF0F0C8A73C21F4F Validity Not Before: Sep 17 00:26:37 2025 GMT Not After : Sep 24 00:26:37 2025 GMT Subject: CN=68ca003d-6e2d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e6:78:37:17:d9:88:b7:09:53:fd:14:38:c2:ec: 05:0a:83:6d:d8:a1:11:b5:81:74:13:d3:e6:d2:d0: 64:a5:95:99:c1:95:6b:2a:80:1e:e9:f3:4a:93:9b: e7:cd:c4:9f:b3:3d:9d:a2:38:09:bb:20:a3:11:53: 18:18:9b:e4:ca:f0:b5:06:0a:f7:f3:33:a9:a8:40: b8:38:ab:6d:3a:a3:0a:67:53:6b:e2:c7:24:9b:ea: 07:78:30:45:89:8a:55:89:f5:7c:98:e6:d7:08:a9: 9a:ad:be:20:7d:52:b4:03:46:15:a4:ab:b9:5a:3b: 89:76:b4:3b:d9:8d:a3:1b:9b:d5:99:0f:81:b5:07: dd:4c:c3:c3:27:20:10:2c:82:d1:4b:4e:d0:08:79: d0:73:13:9e:69:0d:e5:a4:d4:b1:e2:58:a6:f0:a7: 47:16:d0:28:a7:57:3e:2a:1d:05:41:b9:e3:65:6d: f0:f3:5f:13:b1:69:fe:3e:53:a0:3b:17:b1:74:8c: 5e:fb:da:34:64:ce:d8:a8:70:7e:98:c8:f3:fa:01: 38:81:87:62:df:bc:f3:31:43:e6:f9:73:01:ce:d2: ac:ad:16:78:5b:29:50:95:6b:fd:83:39:c1:b5:33: e6:90:f5:58:35:71:cf:a1:12:10:ce:cd:b8:5c:00: 3b:ed Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 66:16:82:8B:6F:6A:B6:D1:07:49:AE:1D:1C:D7:32:9B:CA:9E:0F:56 X509v3 Authority Key Identifier: keyid:A4:63:37:8F:92:93:89:16:E0:B1:E4:13:AF:0F:0C:8A:73:C2:1F:4F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917C3A7/E41FF0A6532811EC8352D245C4F9AE02/pGM3j5KTiRbgseQTrw8MinPCH08.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pGM3j5KTiRbgseQTrw8MinPCH08.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917C3A7/E41FF0A6532811EC8352D245C4F9AE02/pGM3j5KTiRbgseQTrw8MinPCH08.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 85:bb:50:72:18:69:c1:fb:e2:a9:3a:19:51:48:b5:56:b7:8b: b9:04:49:87:76:88:c8:cf:a4:31:50:c3:0a:10:f4:68:56:58: 21:a0:73:5d:2c:1b:f4:b6:a6:b1:ce:a1:45:5c:5e:f9:94:98: ef:45:7a:02:52:ec:90:7d:91:95:e8:bf:b7:33:e9:3f:e6:ae: 44:e9:31:a7:e2:8a:da:29:4a:81:e5:9b:b7:77:bf:48:84:76: bf:34:6f:94:d1:61:0e:7f:43:e7:79:68:2f:48:eb:22:99:ac: 1e:28:e9:c1:08:46:50:33:d5:5c:e4:0d:8f:f6:0a:b8:7b:8b: b7:1a:e8:7e:f7:e4:f7:b4:83:3f:fa:dd:ff:09:b2:b3:b8:b2: c9:38:bf:80:e8:b3:d1:02:71:15:71:c9:f7:2e:1f:20:89:56: ec:b3:41:3e:24:0b:33:43:5c:af:98:e0:c7:d8:42:6a:9b:78: 29:e2:24:d0:dd:75:c1:e1:38:28:5b:e0:b9:d1:6f:5d:c6:cb: 5c:7f:64:52:d5:89:7d:63:9f:7e:d0:1f:1a:1a:2f:5e:06:5c: ca:4b:11:03:93:dc:b8:53:be:de:c8:66:3a:b5:69:f6:48:d8: fc:23:ba:c6:49:c8:ec:45:e6:48:05:c6:fd:7d:4e:0a:f5:7f: 34:50:3a:64 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBI0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0MzQTcxMTAvBgNVBAUTKEE0NjMzNzhGOTI5Mzg5MTZFMEIxRTQxM0FGMEYwQzhB NzNDMjFGNEYwHhcNMjUwOTE3MDAyNjM3WhcNMjUwOTI0MDAyNjM3WjAYMRYwFAYD VQQDEw02OGNhMDAzZC02ZTJkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA5ng3F9mItwlT/RQ4wuwFCoNt2KERtYF0E9Pm0tBkpZWZwZVrKoAe6fNKk5vn zcSfsz2dojgJuyCjEVMYGJvkyvC1Bgr38zOpqEC4OKttOqMKZ1Nr4sckm+oHeDBF iYpVifV8mObXCKmarb4gfVK0A0YVpKu5WjuJdrQ72Y2jG5vVmQ+BtQfdTMPDJyAQ LILRS07QCHnQcxOeaQ3lpNSx4lim8KdHFtAop1c+Kh0FQbnjZW3w818TsWn+PlOg OxexdIxe+9o0ZM7YqHB+mMjz+gE4gYdi37zzMUPm+XMBztKsrRZ4WylQlWv9gznB tTPmkPVYNXHPoRIQzs24XAA77QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFGYWgotv arbRB0muHRzXMpvKng9WMB8GA1UdIwQYMBaAFKRjN4+Sk4kW4LHkE68PDIpzwh9P MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3QzNBNy9FNDFGRjBBNjUz MjgxMUVDODM1MkQyNDVDNEY5QUUwMi9wR00zajVLVGlSYmdzZVFUcnc4TWluUENI MDguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3BHTTNqNUtUaVJiZ3NlUVRydzhNaW5QQ0gwOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 QzNBNy9FNDFGRjBBNjUzMjgxMUVDODM1MkQyNDVDNEY5QUUwMi9wR00zajVLVGlS YmdzZVFUcnc4TWluUENIMDgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCFu1ByGGnB++KpOhlRSLVWt4u5BEmHdojIz6QxUMMKEPRoVlghoHNd LBv0tqaxzqFFXF75lJjvRXoCUuyQfZGV6L+3M+k/5q5E6TGn4oraKUqB5Zu3d79I hHa/NG+U0WEOf0PneWgvSOsimaweKOnBCEZQM9Vc5A2P9gq4e4u3Guh+9+T3tIM/ +t3/CbKzuLLJOL+A6LPRAnEVccn3Lh8giVbss0E+JAszQ1yvmODH2EJqm3gp4iTQ 3XXB4TgoW+C50W9dxstcf2RS1Yl9Y59+0B8aGi9eBlzKSxEDk9y4U77eyGY6tWn2 SNj8I7rGScjsReZIBcb9fU4K9X80UDpk -----END CERTIFICATE-----Generated at Thu Sep 18 23:11:01 2025 by rpki-client