$ rpki-client -vvf rpki.apnic.net/member_repository/A919D109/DAC666C05CE011EEB6C1B513C4F9AE02/Pq60tRb3A-pY8W4I2opmdwP7XK4.mft File: Pq60tRb3A-pY8W4I2opmdwP7XK4.mft (raw, json) Hash identifier: Wx8gZWCvMQ+GBPCX8wACWxFzG8OE79x7JCxysSIJvA4= Subject key identifier: 65:31:1C:7A:62:93:C5:30:6B:4B:B0:AB:F8:5A:8C:C1:04:1D:08:BE Authority key identifier: 3E:AE:B4:B5:16:F7:03:EA:58:F1:6E:08:DA:8A:66:77:03:FB:5C:AE Certificate issuer: /CN=A919D109/serialNumber=3EAEB4B516F703EA58F16E08DA8A667703FB5CAE Certificate serial: 0183 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Pq60tRb3A-pY8W4I2opmdwP7XK4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A919D109/DAC666C05CE011EEB6C1B513C4F9AE02/Pq60tRb3A-pY8W4I2opmdwP7XK4.mft Manifest number: 017B Signing time: Fri 19 Sep 2025 04:18:19 +0000 Manifest this update: Fri 19 Sep 2025 04:18:18 +0000 Manifest next update: Fri 26 Sep 2025 04:18:18 +0000 Files and hashes: 1: Pq60tRb3A-pY8W4I2opmdwP7XK4.crl (hash: OTYcZ3w1yHyo+H2S2/SqCLmyjQa1MFXTZBf+ER5EKp0=) 2: B67DC27A60E311EEB04BEA49C4F9AE02.roa (hash: Uh7NExbaYKDBSUUKd+crKnXeWpl3+22sEhcewGQ9kp8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A919D109/DAC666C05CE011EEB6C1B513C4F9AE02/Pq60tRb3A-pY8W4I2opmdwP7XK4.crl rsync://rpki.apnic.net/member_repository/A919D109/DAC666C05CE011EEB6C1B513C4F9AE02/Pq60tRb3A-pY8W4I2opmdwP7XK4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Pq60tRb3A-pY8W4I2opmdwP7XK4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 26 Sep 2025 04:18:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 387 (0x183) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A919D109, serialNumber=3EAEB4B516F703EA58F16E08DA8A667703FB5CAE Validity Not Before: Sep 19 04:18:18 2025 GMT Not After : Sep 26 04:18:18 2025 GMT Subject: CN=68ccd98a-4884 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:69:0f:85:b2:72:b8:b1:83:62:59:14:32:30: 17:9e:eb:ba:54:b9:2d:16:e8:67:c6:d5:ea:73:cf: 36:da:ca:3c:f3:12:51:63:82:fb:8f:08:4a:30:84: 7b:b7:9c:b6:3f:a8:57:7f:e0:4e:e3:69:cd:33:46: 0b:37:a8:d0:40:11:b8:f8:e4:de:3e:8e:47:7b:13: ef:ab:0b:50:5f:3a:0c:2d:b8:35:b6:fa:0e:6f:09: 47:9d:67:b0:0e:1d:94:0e:30:33:ee:1f:81:b8:3b: 3f:59:ba:88:d1:be:9c:7f:d8:87:cd:1f:87:07:bc: 6f:de:c3:39:c9:7b:8e:55:58:32:42:45:48:73:1f: 15:86:60:4b:37:6c:89:68:81:7e:23:5e:36:c1:35: ec:a9:64:13:59:22:7e:b9:15:b3:11:e9:c6:fd:b7: 98:d6:aa:7f:9b:46:eb:b1:30:54:2c:e8:b4:66:83: 2b:8d:53:d2:15:33:c1:b8:9d:b1:8a:3e:8e:7f:0c: ce:4e:5e:ef:6e:a1:a6:5f:35:3c:96:9d:64:aa:e7: 71:20:95:97:36:d3:f4:43:3d:d8:06:ae:d3:85:85: b3:52:87:7b:cb:20:61:23:26:a7:91:c4:f6:6b:b2: f5:99:8d:58:92:9a:b7:31:1a:95:f2:65:cf:e8:fc: 49:fd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 65:31:1C:7A:62:93:C5:30:6B:4B:B0:AB:F8:5A:8C:C1:04:1D:08:BE X509v3 Authority Key Identifier: keyid:3E:AE:B4:B5:16:F7:03:EA:58:F1:6E:08:DA:8A:66:77:03:FB:5C:AE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A919D109/DAC666C05CE011EEB6C1B513C4F9AE02/Pq60tRb3A-pY8W4I2opmdwP7XK4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Pq60tRb3A-pY8W4I2opmdwP7XK4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A919D109/DAC666C05CE011EEB6C1B513C4F9AE02/Pq60tRb3A-pY8W4I2opmdwP7XK4.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a5:e0:44:f8:f2:d7:c6:89:33:33:9a:02:29:9e:4e:2c:81:6b: 94:b5:0f:99:75:2e:b2:f0:b6:98:ea:27:a4:72:4b:f5:8d:28: 3f:b2:ee:ed:9d:d3:62:cf:73:e5:cc:5f:f3:3b:6d:8a:12:22: b4:12:35:23:03:0b:5b:bf:c0:88:2f:04:bd:da:3f:66:b5:00: ac:eb:be:04:1a:44:b1:70:42:bd:03:8d:f4:46:b5:2c:a9:cf: ed:a2:63:11:8c:d8:46:eb:81:f5:4e:3e:58:2c:2b:d1:80:cb: 8e:ab:3f:63:cf:0d:00:31:b1:96:cc:d4:39:2d:c1:b2:aa:fc: 56:76:9d:76:72:64:7a:e4:bd:69:45:3e:ac:9d:73:af:35:1b: 48:a4:08:89:ec:2b:af:eb:30:e4:85:ab:80:ea:ec:55:04:3c: cd:03:b2:5e:7c:3c:8f:27:f5:75:10:e9:98:95:5e:27:fa:89: 47:86:77:0b:fe:1a:c2:5a:95:03:69:b0:87:af:83:39:69:2c: be:8b:d8:54:c3:61:79:f7:9f:39:fb:7f:7e:eb:67:da:83:43: b9:df:10:03:8f:3a:45:43:4f:04:da:8a:96:f6:d6:d7:7c:13: 5f:f6:de:a8:91:fa:f5:a5:f0:98:83:1a:e0:1d:ee:4f:10:cc: 8d:d8:bd:04 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAYMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OUQxMDkxMTAvBgNVBAUTKDNFQUVCNEI1MTZGNzAzRUE1OEYxNkUwOERBOEE2Njc3 MDNGQjVDQUUwHhcNMjUwOTE5MDQxODE4WhcNMjUwOTI2MDQxODE4WjAYMRYwFAYD VQQDEw02OGNjZDk4YS00ODg0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAv2kPhbJyuLGDYlkUMjAXnuu6VLktFuhnxtXqc8822so88xJRY4L7jwhKMIR7 t5y2P6hXf+BO42nNM0YLN6jQQBG4+OTePo5HexPvqwtQXzoMLbg1tvoObwlHnWew Dh2UDjAz7h+BuDs/WbqI0b6cf9iHzR+HB7xv3sM5yXuOVVgyQkVIcx8VhmBLN2yJ aIF+I142wTXsqWQTWSJ+uRWzEenG/beY1qp/m0brsTBULOi0ZoMrjVPSFTPBuJ2x ij6OfwzOTl7vbqGmXzU8lp1kqudxIJWXNtP0Qz3YBq7ThYWzUod7yyBhIyankcT2 a7L1mY1Ykpq3MRqV8mXP6PxJ/QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFGUxHHpi k8Uwa0uwq/hajMEEHQi+MB8GA1UdIwQYMBaAFD6utLUW9wPqWPFuCNqKZncD+1yu MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5RDEwOS9EQUM2NjZDMDVD RTAxMUVFQjZDMUI1MTNDNEY5QUUwMi9QcTYwdFJiM0EtcFk4VzRJMm9wbWR3UDdY SzQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1BxNjB0UmIzQS1wWThXNEkyb3BtZHdQN1hLNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 RDEwOS9EQUM2NjZDMDVDRTAxMUVFQjZDMUI1MTNDNEY5QUUwMi9QcTYwdFJiM0Et cFk4VzRJMm9wbWR3UDdYSzQubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCl4ET48tfGiTMzmgIpnk4sgWuUtQ+ZdS6y8LaY6iekckv1jSg/su7t ndNiz3PlzF/zO22KEiK0EjUjAwtbv8CILwS92j9mtQCs674EGkSxcEK9A430RrUs qc/tomMRjNhG64H1Tj5YLCvRgMuOqz9jzw0AMbGWzNQ5LcGyqvxWdp12cmR65L1p RT6snXOvNRtIpAiJ7Cuv6zDkhauA6uxVBDzNA7JefDyPJ/V1EOmYlV4n+olHhncL /hrCWpUDabCHr4M5aSy+i9hUw2F59585+39+62fag0O53xADjzpFQ08E2oqW9tbX fBNf9t6okfr1pfCYgxrgHe5PEMyN2L0E -----END CERTIFICATE-----Generated at Fri Sep 19 09:23:40 2025 by rpki-client