$ rpki-client -vvf rpki.apnic.net/member_repository/A917E4BA/C952AC9E52DC11EA82601B0FC4F9AE02/PG7AmwlfpfUTYVEIpUR8rLcasaE.mft File: PG7AmwlfpfUTYVEIpUR8rLcasaE.mft (raw, json) Hash identifier: bXr8m0F9G61meMmscgOBIX8N2qH0YPPMPVyatQdVeek= Subject key identifier: DA:24:A7:25:BB:4A:2A:42:1C:5A:7F:C0:DC:87:14:C6:20:B9:CF:DF Authority key identifier: 3C:6E:C0:9B:09:5F:A5:F5:13:61:51:08:A5:44:7C:AC:B7:1A:B1:A1 Certificate issuer: /CN=A917E4BA/serialNumber=3C6EC09B095FA5F513615108A5447CACB71AB1A1 Certificate serial: 0AEF Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/PG7AmwlfpfUTYVEIpUR8rLcasaE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917E4BA/C952AC9E52DC11EA82601B0FC4F9AE02/PG7AmwlfpfUTYVEIpUR8rLcasaE.mft Manifest number: 0AE9 Signing time: Sat 06 Sep 2025 19:35:22 +0000 Manifest this update: Sat 06 Sep 2025 19:35:21 +0000 Manifest next update: Sat 13 Sep 2025 19:35:21 +0000 Files and hashes: 1: PG7AmwlfpfUTYVEIpUR8rLcasaE.crl (hash: OBO7Di4dUvTocjDCSI0ExH2rkbqFiwTxHATPgBdcHeY=) 2: 66F91334ED4911ED9A90391BC4F9AE02.roa (hash: DjUQP/nHkYcgIi1MW0o7fyHbM5U6rKdni2IBdc+KG/Q=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917E4BA/C952AC9E52DC11EA82601B0FC4F9AE02/PG7AmwlfpfUTYVEIpUR8rLcasaE.crl rsync://rpki.apnic.net/member_repository/A917E4BA/C952AC9E52DC11EA82601B0FC4F9AE02/PG7AmwlfpfUTYVEIpUR8rLcasaE.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/PG7AmwlfpfUTYVEIpUR8rLcasaE.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 13 Sep 2025 18:15:25 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2799 (0xaef) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917E4BA, serialNumber=3C6EC09B095FA5F513615108A5447CACB71AB1A1 Validity Not Before: Sep 6 19:35:21 2025 GMT Not After : Sep 13 19:35:21 2025 GMT Subject: CN=68bc8cf9-a4ee Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ef:6b:e9:3d:46:1e:91:90:e9:a6:75:d7:51:12: 1e:7c:5f:35:2c:b6:e9:b2:67:57:6b:01:5a:98:62: 2f:45:b2:7a:a6:c8:c8:a0:38:74:e5:a1:b4:7e:b8: a5:7b:77:0b:8b:ff:0b:b5:73:88:c3:1a:e2:bc:60: ca:fe:23:30:be:b2:6d:25:14:fb:e4:80:f1:7d:2c: ed:d7:a9:b3:79:a7:d4:3d:79:6f:ed:24:62:8a:90: f7:f6:fa:bc:0b:4d:ad:08:c2:89:6d:43:77:78:55: 00:48:b5:fc:d8:85:be:80:cf:64:45:12:27:f3:96: db:62:4c:35:5f:73:0b:4a:83:4d:2e:da:38:89:be: dd:fb:8b:5b:7d:ed:cb:0f:c8:04:c8:73:e0:9d:b4: ed:ff:96:ea:54:96:b6:0b:a7:03:c8:c6:52:5c:1a: 25:bf:cc:86:63:53:fa:02:24:6a:d1:9a:05:46:99: fc:a6:a0:ae:a2:7c:13:51:e7:75:5d:02:79:79:1e: 67:0a:20:16:a9:31:c7:cf:86:0e:0a:42:9d:3d:62: e9:6d:db:15:d9:85:46:55:a2:a1:ef:8b:ab:41:39: 48:3e:41:36:9c:99:79:01:b8:8f:8b:94:ce:c3:53: 90:ec:67:bd:55:36:91:53:98:b9:71:7f:f2:c9:0e: a1:85 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DA:24:A7:25:BB:4A:2A:42:1C:5A:7F:C0:DC:87:14:C6:20:B9:CF:DF X509v3 Authority Key Identifier: keyid:3C:6E:C0:9B:09:5F:A5:F5:13:61:51:08:A5:44:7C:AC:B7:1A:B1:A1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917E4BA/C952AC9E52DC11EA82601B0FC4F9AE02/PG7AmwlfpfUTYVEIpUR8rLcasaE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/PG7AmwlfpfUTYVEIpUR8rLcasaE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917E4BA/C952AC9E52DC11EA82601B0FC4F9AE02/PG7AmwlfpfUTYVEIpUR8rLcasaE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 84:5d:a9:94:f0:94:09:e0:af:2f:93:f9:71:52:0f:50:77:63: 70:83:ee:71:0c:4f:0e:df:23:c9:05:f1:ed:aa:ee:05:4e:79: 3c:50:ea:4d:70:01:69:d7:06:4f:e8:3c:e0:7d:8e:26:02:89: 0f:3d:b3:e7:1e:c1:0c:ca:0f:9b:3f:18:70:31:a0:f9:bf:f4: 67:80:e4:ca:40:08:6f:a6:40:56:0d:2f:dc:f7:97:4b:de:71: bd:6c:81:26:6b:18:12:22:6d:03:93:e6:44:95:bd:df:fe:93: 84:f5:a2:fa:c5:f0:08:27:5c:37:f2:4d:86:f4:18:3f:4e:d7: a1:6f:fc:85:4d:77:81:ab:23:37:01:ff:ee:11:d8:df:03:bd: 5e:82:d8:bc:1a:45:6d:c9:8a:b3:6e:a5:55:f4:36:ce:a7:b5: c7:65:5d:f5:ec:46:5c:31:1e:54:77:57:71:ae:81:e5:31:45: a8:ff:fd:da:25:c3:bc:8b:00:57:3e:6b:89:3f:a7:1c:f2:fe: f4:f4:83:f5:bb:ba:4d:c5:ff:05:9d:ff:20:a8:ef:a1:64:1b: 1d:ec:a7:79:d7:29:b0:db:a3:7a:79:06:0c:53:e8:91:f6:d2: 3e:b2:78:a7:6b:e4:01:9a:a8:01:00:5e:95:18:38:2b:fb:48: 41:aa:52:db -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCu8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0U0QkExMTAvBgNVBAUTKDNDNkVDMDlCMDk1RkE1RjUxMzYxNTEwOEE1NDQ3Q0FD QjcxQUIxQTEwHhcNMjUwOTA2MTkzNTIxWhcNMjUwOTEzMTkzNTIxWjAYMRYwFAYD VQQDEw02OGJjOGNmOS1hNGVlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA72vpPUYekZDppnXXURIefF81LLbpsmdXawFamGIvRbJ6psjIoDh05aG0fril e3cLi/8LtXOIwxrivGDK/iMwvrJtJRT75IDxfSzt16mzeafUPXlv7SRiipD39vq8 C02tCMKJbUN3eFUASLX82IW+gM9kRRIn85bbYkw1X3MLSoNNLto4ib7d+4tbfe3L D8gEyHPgnbTt/5bqVJa2C6cDyMZSXBolv8yGY1P6AiRq0ZoFRpn8pqCuonwTUed1 XQJ5eR5nCiAWqTHHz4YOCkKdPWLpbdsV2YVGVaKh74urQTlIPkE2nJl5AbiPi5TO w1OQ7Ge9VTaRU5i5cX/yyQ6hhQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFNokpyW7 SipCHFp/wNyHFMYguc/fMB8GA1UdIwQYMBaAFDxuwJsJX6X1E2FRCKVEfKy3GrGh MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3RTRCQS9DOTUyQUM5RTUy REMxMUVBODI2MDFCMEZDNEY5QUUwMi9QRzdBbXdsZnBmVVRZVkVJcFVSOHJMY2Fz YUUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL1BHN0Ftd2xmcGZVVFlWRUlwVVI4ckxjYXNhRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 RTRCQS9DOTUyQUM5RTUyREMxMUVBODI2MDFCMEZDNEY5QUUwMi9QRzdBbXdsZnBm VVRZVkVJcFVSOHJMY2FzYUUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCEXamU8JQJ4K8vk/lxUg9Qd2Nwg+5xDE8O3yPJBfHtqu4FTnk8UOpN cAFp1wZP6DzgfY4mAokPPbPnHsEMyg+bPxhwMaD5v/RngOTKQAhvpkBWDS/c95dL 3nG9bIEmaxgSIm0Dk+ZElb3f/pOE9aL6xfAIJ1w38k2G9Bg/Ttehb/yFTXeBqyM3 Af/uEdjfA71egti8GkVtyYqzbqVV9DbOp7XHZV317EZcMR5Ud1dxroHlMUWo//3a JcO8iwBXPmuJP6cc8v709IP1u7pNxf8Fnf8gqO+hZBsd7Kd51ymw26N6eQYMU+iR 9tI+snina+QBmqgBAF6VGDgr+0hBqlLb -----END CERTIFICATE-----Generated at Sat Sep 6 21:07:30 2025 by rpki-client