$ rpki-client -vvf rpki.apnic.net/member_repository/A91C5ED0/153A550A997311E8866F0060C4F9AE02/pGg4Xjj11YpziCOPLtMFVXig7V4.mft File: pGg4Xjj11YpziCOPLtMFVXig7V4.mft (raw, json) Hash identifier: uhq2/vVfSH0i3GxtC8bM91vEqXgzsdiNcyVKhf8CF+c= Subject key identifier: 4A:01:BD:71:32:AD:2A:2B:6E:7A:9D:7F:5F:23:DC:8A:D4:66:A9:7D Authority key identifier: A4:68:38:5E:38:F5:D5:8A:73:88:23:8F:2E:D3:05:55:78:A0:ED:5E Certificate issuer: /CN=A91C5ED0/serialNumber=A468385E38F5D58A7388238F2ED3055578A0ED5E Certificate serial: 0837 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pGg4Xjj11YpziCOPLtMFVXig7V4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C5ED0/153A550A997311E8866F0060C4F9AE02/pGg4Xjj11YpziCOPLtMFVXig7V4.mft Manifest number: 2A3B Signing time: Sun 24 Aug 2025 16:55:47 +0000 Manifest this update: Sun 24 Aug 2025 16:55:46 +0000 Manifest next update: Sun 31 Aug 2025 16:55:46 +0000 Files and hashes: 1: pGg4Xjj11YpziCOPLtMFVXig7V4.crl (hash: 6BzaB5DLTS/4FYTZankOeUzFgmmNZ15ZJVXlfP2y2Wg=) 2: 54E2A752E17211ECA8128235C4F9AE02.roa (hash: DSrMI7Nowx4RDukf/foMtUodJX/NiInBR6IMaoe7AeM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C5ED0/153A550A997311E8866F0060C4F9AE02/pGg4Xjj11YpziCOPLtMFVXig7V4.crl rsync://rpki.apnic.net/member_repository/A91C5ED0/153A550A997311E8866F0060C4F9AE02/pGg4Xjj11YpziCOPLtMFVXig7V4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pGg4Xjj11YpziCOPLtMFVXig7V4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 31 Aug 2025 16:55:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2103 (0x837) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C5ED0, serialNumber=A468385E38F5D58A7388238F2ED3055578A0ED5E Validity Not Before: Aug 24 16:55:46 2025 GMT Not After : Aug 31 16:55:46 2025 GMT Subject: CN=68ab4412-c338 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a4:04:ef:f0:2f:de:99:9a:ac:bb:4e:9f:a3:d2: 41:43:32:2b:d8:84:20:95:b3:32:60:7d:b3:83:ff: ae:6a:f6:c7:ed:87:65:66:14:ac:e2:96:71:b6:8e: de:e7:4e:01:23:cc:9d:d7:bd:b8:0b:e3:02:51:9f: 1d:6b:ef:a9:e3:f2:f3:5f:b4:4d:5c:48:97:85:89: ae:da:8f:b7:dd:3b:bb:a2:22:fc:71:fd:15:61:31: 83:96:84:b6:0d:5f:cf:42:16:25:3a:d7:45:8b:fd: 68:51:4a:37:27:af:3b:5f:bf:5f:83:bc:43:4c:d5: 26:a2:05:7f:34:5c:b8:c0:02:74:87:24:7b:9f:32: 62:12:45:d4:65:ca:1e:a4:59:ac:5a:3d:f4:47:30: 2f:ce:b3:ce:6c:f5:da:6f:56:d7:c1:10:4b:cb:42: b4:af:fa:a5:ef:45:30:c0:61:45:5d:5b:c6:0d:73: ef:b4:f0:e1:50:a0:a1:d6:b1:33:70:db:a0:da:3c: a5:83:5c:2f:69:97:0c:92:7a:f4:fa:88:ef:f2:cc: 09:36:e1:43:66:90:c5:ff:f2:e1:1d:a3:c2:a9:ae: d0:2b:bf:ec:c3:79:13:8b:f3:26:da:64:0e:61:85: 81:2c:de:4b:cd:3e:fe:d3:a9:5b:dc:83:b5:08:94: fa:05 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4A:01:BD:71:32:AD:2A:2B:6E:7A:9D:7F:5F:23:DC:8A:D4:66:A9:7D X509v3 Authority Key Identifier: keyid:A4:68:38:5E:38:F5:D5:8A:73:88:23:8F:2E:D3:05:55:78:A0:ED:5E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C5ED0/153A550A997311E8866F0060C4F9AE02/pGg4Xjj11YpziCOPLtMFVXig7V4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pGg4Xjj11YpziCOPLtMFVXig7V4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C5ED0/153A550A997311E8866F0060C4F9AE02/pGg4Xjj11YpziCOPLtMFVXig7V4.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 5f:b7:3d:67:e0:05:2b:00:b0:72:ed:e8:bd:ae:e5:07:03:8d: b1:a4:d4:3f:c8:d6:5a:90:9b:12:63:6f:26:4a:08:ea:04:b5: f9:65:f0:a1:0d:e2:48:8c:2e:4d:5b:01:99:18:38:b6:d5:36: 75:bb:78:e4:6c:20:07:15:bd:5b:a4:54:40:3f:17:e3:4e:1c: 19:0f:80:00:6c:72:7c:d4:c9:15:80:54:1c:f7:7e:3f:0e:e3: 3a:eb:5d:ce:a7:8d:a0:a9:46:15:58:3b:5a:6a:bb:03:d7:e9: 3e:32:fb:20:6f:c5:05:b1:4a:cd:92:6c:f6:6b:a4:ca:0b:bd: 0d:1a:3c:d4:44:c9:dc:c2:2c:66:bf:04:aa:19:4d:86:31:f7: e0:92:55:99:3b:92:ee:d1:6f:a9:36:d3:c4:7c:4a:1a:5f:32: 24:92:8f:5f:d9:12:6c:8a:de:6d:b0:a8:db:48:49:94:64:fe: 08:39:dd:cb:5a:d6:b3:27:74:bb:6d:c5:61:af:d9:e5:d3:c4: 07:7f:52:ac:49:19:fa:fa:d4:c1:2b:6b:3a:f4:86:be:aa:a6: 9b:42:41:29:1c:a3:02:25:c3:a0:b6:b7:e4:27:18:12:d4:30: 6d:66:59:fe:d3:26:81:cc:84:f7:c3:b0:4d:1f:5b:2e:e6:05: cc:4b:1b:4b -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCDcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzVFRDAxMTAvBgNVBAUTKEE0NjgzODVFMzhGNUQ1OEE3Mzg4MjM4RjJFRDMwNTU1 NzhBMEVENUUwHhcNMjUwODI0MTY1NTQ2WhcNMjUwODMxMTY1NTQ2WjAYMRYwFAYD VQQDEw02OGFiNDQxMi1jMzM4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEApATv8C/emZqsu06fo9JBQzIr2IQglbMyYH2zg/+uavbH7YdlZhSs4pZxto7e 504BI8yd1724C+MCUZ8da++p4/LzX7RNXEiXhYmu2o+33Tu7oiL8cf0VYTGDloS2 DV/PQhYlOtdFi/1oUUo3J687X79fg7xDTNUmogV/NFy4wAJ0hyR7nzJiEkXUZcoe pFmsWj30RzAvzrPObPXab1bXwRBLy0K0r/ql70UwwGFFXVvGDXPvtPDhUKCh1rEz cNug2jylg1wvaZcMknr0+ojv8swJNuFDZpDF//LhHaPCqa7QK7/sw3kTi/Mm2mQO YYWBLN5LzT7+06lb3IO1CJT6BQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFEoBvXEy rSorbnqdf18j3IrUZql9MB8GA1UdIwQYMBaAFKRoOF449dWKc4gjjy7TBVV4oO1e MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDNUVEMC8xNTNBNTUwQTk5 NzMxMUU4ODY2RjAwNjBDNEY5QUUwMi9wR2c0WGpqMTFZcHppQ09QTHRNRlZYaWc3 VjQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3BHZzRYamoxMVlwemlDT1BMdE1GVlhpZzdWNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD NUVEMC8xNTNBNTUwQTk5NzMxMUU4ODY2RjAwNjBDNEY5QUUwMi9wR2c0WGpqMTFZ cHppQ09QTHRNRlZYaWc3VjQubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBftz1n4AUrALBy7ei9ruUHA42xpNQ/yNZakJsSY28mSgjqBLX5ZfCh DeJIjC5NWwGZGDi21TZ1u3jkbCAHFb1bpFRAPxfjThwZD4AAbHJ81MkVgFQc934/ DuM6613Op42gqUYVWDtaarsD1+k+Mvsgb8UFsUrNkmz2a6TKC70NGjzURMncwixm vwSqGU2GMffgklWZO5Lu0W+pNtPEfEoaXzIkko9f2RJsit5tsKjbSEmUZP4IOd3L WtazJ3S7bcVhr9nl08QHf1KsSRn6+tTBK2s69Ia+qqabQkEpHKMCJcOgtrfkJxgS 1DBtZln+0yaBzIT3w7BNH1su5gXMSxtL -----END CERTIFICATE-----Generated at Sun Aug 24 22:18:38 2025 by rpki-client