$ rpki-client -vvf rpki.apnic.net/member_repository/A91C8307/3432F60CBECD11EF98C74132C4F9AE02/PdCVvno70d2CniomSfx-gafv40w.mft File: PdCVvno70d2CniomSfx-gafv40w.mft (raw, json) Hash identifier: dYnB1FYCYmukOJNVM/X3ssZdWxOboX+idSrsupf2QOo= Subject key identifier: 8B:8E:B4:30:AF:39:33:92:CA:E7:D0:24:57:3E:58:C0:74:67:B0:04 Authority key identifier: 3D:D0:95:BE:7A:3B:D1:DD:82:9E:2A:26:49:FC:7E:81:A7:EF:E3:4C Certificate issuer: /CN=A91C8307/serialNumber=3DD095BE7A3BD1DD829E2A2649FC7E81A7EFE34C Certificate serial: 88 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PdCVvno70d2CniomSfx-gafv40w.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C8307/3432F60CBECD11EF98C74132C4F9AE02/PdCVvno70d2CniomSfx-gafv40w.mft Manifest number: 87 Signing time: Sun 07 Sep 2025 07:06:09 +0000 Manifest this update: Sun 07 Sep 2025 07:06:09 +0000 Manifest next update: Sun 14 Sep 2025 07:06:09 +0000 Files and hashes: 1: PdCVvno70d2CniomSfx-gafv40w.crl (hash: kFSuKz8I0MkZIzw47isNpMdWpX2Aegeni3+wvUZ1AZI=) 2: DEDB3932BED411EF835BB47AC4F9AE02.roa (hash: O2sa7pTiQKdOhkw1Yh9cM+13JLJmRbo0IeSALJBybOk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C8307/3432F60CBECD11EF98C74132C4F9AE02/PdCVvno70d2CniomSfx-gafv40w.crl rsync://rpki.apnic.net/member_repository/A91C8307/3432F60CBECD11EF98C74132C4F9AE02/PdCVvno70d2CniomSfx-gafv40w.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PdCVvno70d2CniomSfx-gafv40w.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 14 Sep 2025 07:06:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 136 (0x88) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C8307, serialNumber=3DD095BE7A3BD1DD829E2A2649FC7E81A7EFE34C Validity Not Before: Sep 7 07:06:09 2025 GMT Not After : Sep 14 07:06:09 2025 GMT Subject: CN=68bd2ee1-6296 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:7a:d2:fb:3d:66:c7:35:f9:da:cb:5c:9c:59: 99:8b:27:63:56:5d:96:d8:a7:be:51:8d:e9:0b:da: db:f5:01:b0:a8:52:42:ad:d8:cd:ce:41:fa:dd:da: 28:70:76:09:6e:b9:b5:12:dd:11:48:ec:56:f7:81: f2:7f:9a:ba:ff:c4:a1:20:4a:dc:9c:99:3a:87:5f: 62:eb:84:83:19:86:da:46:fb:4f:73:18:04:0d:1b: b2:d7:61:7b:2d:b2:80:ec:4a:3c:64:47:b3:68:f8: ed:d7:7c:7a:4a:1b:ab:30:17:13:7a:c4:49:76:30: df:ab:ac:9f:6e:a7:67:3b:d0:49:6e:72:83:5d:26: 38:58:df:c4:3c:8e:29:07:6a:6f:e2:a5:5a:79:5a: 27:56:4e:ec:2a:8f:49:22:24:dc:d4:c7:d6:40:16: 9e:53:c2:4a:f2:a1:33:72:71:49:e3:5e:de:6a:d0: b1:30:b4:98:93:47:81:58:ec:38:cb:ef:8d:16:cb: f2:ee:13:0c:c9:e4:17:01:72:07:78:cd:a6:e4:d4: 05:61:8e:76:68:29:04:ec:60:73:49:b6:e2:fd:5d: a9:37:9f:21:73:8c:2a:d9:c6:f7:c0:82:e9:25:d0: 01:be:c1:5d:cb:b5:44:60:7b:33:07:d1:d3:ae:8d: 12:a3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8B:8E:B4:30:AF:39:33:92:CA:E7:D0:24:57:3E:58:C0:74:67:B0:04 X509v3 Authority Key Identifier: keyid:3D:D0:95:BE:7A:3B:D1:DD:82:9E:2A:26:49:FC:7E:81:A7:EF:E3:4C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C8307/3432F60CBECD11EF98C74132C4F9AE02/PdCVvno70d2CniomSfx-gafv40w.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PdCVvno70d2CniomSfx-gafv40w.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C8307/3432F60CBECD11EF98C74132C4F9AE02/PdCVvno70d2CniomSfx-gafv40w.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 2f:0d:c5:d3:99:bc:eb:51:2d:b9:dd:fe:93:30:fc:bc:79:b9: 35:fc:97:58:90:4f:d4:d1:42:74:92:16:aa:7d:78:8c:b6:10: 2d:de:7b:77:f8:ce:8e:a0:7a:6a:40:5d:eb:5c:70:6b:0c:c0: fe:33:d0:ff:0e:44:46:e3:ba:37:7d:ba:ce:33:d0:98:0b:2c: 94:05:d6:8c:e4:e1:20:cd:a5:5e:a9:d8:e8:85:d5:1e:12:17: 2d:f4:3b:03:c6:aa:6f:65:0d:fc:9b:63:6d:f1:dd:a7:5c:b6: ba:86:cd:e9:d6:c0:b8:12:33:31:24:6c:a6:0b:72:48:fb:f4: f2:2e:0d:73:56:a2:94:0c:84:38:5b:22:60:d1:40:fe:f2:09: be:8c:93:cd:fc:7f:41:54:2e:09:ac:80:14:7b:52:2b:83:c0: eb:53:fc:f5:17:13:7c:42:5c:45:c0:23:20:a6:e8:bf:75:66: 48:7d:c8:98:81:b8:48:c6:45:3e:aa:f1:7c:11:81:e8:c8:aa: c0:ec:b2:d0:cb:1b:c5:f1:e1:ec:40:f8:46:ae:5f:7b:51:23: c4:b5:fc:e0:3e:72:44:80:24:c9:64:9d:4c:a3:e2:64:a9:b8: da:ff:b6:e1:ef:de:4d:ed:07:16:6c:d9:46:78:ed:30:6a:58: f9:3d:a3:17 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAIgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzgzMDcxMTAvBgNVBAUTKDNERDA5NUJFN0EzQkQxREQ4MjlFMkEyNjQ5RkM3RTgx QTdFRkUzNEMwHhcNMjUwOTA3MDcwNjA5WhcNMjUwOTE0MDcwNjA5WjAYMRYwFAYD VQQDEw02OGJkMmVlMS02Mjk2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvXrS+z1mxzX52stcnFmZiydjVl2W2Ke+UY3pC9rb9QGwqFJCrdjNzkH63doo cHYJbrm1Et0RSOxW94Hyf5q6/8ShIErcnJk6h19i64SDGYbaRvtPcxgEDRuy12F7 LbKA7Eo8ZEezaPjt13x6ShurMBcTesRJdjDfq6yfbqdnO9BJbnKDXSY4WN/EPI4p B2pv4qVaeVonVk7sKo9JIiTc1MfWQBaeU8JK8qEzcnFJ417eatCxMLSYk0eBWOw4 y++NFsvy7hMMyeQXAXIHeM2m5NQFYY52aCkE7GBzSbbi/V2pN58hc4wq2cb3wILp JdABvsFdy7VEYHszB9HTro0SowIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFIuOtDCv OTOSyufQJFc+WMB0Z7AEMB8GA1UdIwQYMBaAFD3Qlb56O9Hdgp4qJkn8foGn7+NM MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDODMwNy8zNDMyRjYwQ0JF Q0QxMUVGOThDNzQxMzJDNEY5QUUwMi9QZENWdm5vNzBkMkNuaW9tU2Z4LWdhZnY0 MHcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1BkQ1Z2bm83MGQyQ25pb21TZngtZ2FmdjQwdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD ODMwNy8zNDMyRjYwQ0JFQ0QxMUVGOThDNzQxMzJDNEY5QUUwMi9QZENWdm5vNzBk MkNuaW9tU2Z4LWdhZnY0MHcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAvDcXTmbzrUS253f6TMPy8ebk1/JdYkE/U0UJ0khaqfXiMthAt3nt3 +M6OoHpqQF3rXHBrDMD+M9D/DkRG47o3fbrOM9CYCyyUBdaM5OEgzaVeqdjohdUe Ehct9DsDxqpvZQ38m2Nt8d2nXLa6hs3p1sC4EjMxJGymC3JI+/TyLg1zVqKUDIQ4 WyJg0UD+8gm+jJPN/H9BVC4JrIAUe1Irg8DrU/z1FxN8QlxFwCMgpui/dWZIfciY gbhIxkU+qvF8EYHoyKrA7LLQyxvF8eHsQPhGrl97USPEtfzgPnJEgCTJZJ1Mo+Jk qbja/7bh795N7QcWbNlGeO0walj5PaMX -----END CERTIFICATE-----Generated at Mon Sep 8 18:51:10 2025 by rpki-client