$ rpki-client -vvf rpki.apnic.net/member_repository/A91DD902/570B3F8EC92611EDAF2B9D4DC4F9AE02/pnTGcB4rDOPRB-nyNsVc7-aHaPE.mft File: pnTGcB4rDOPRB-nyNsVc7-aHaPE.mft (raw, json) Hash identifier: qaxyiwS4xslRzQc0M6P4v3zTcTGG/Tj2Pjg/GPC6IwE= Subject key identifier: 19:8C:E7:0A:02:B7:B6:82:41:68:49:75:CE:FD:8B:04:87:D7:BE:6B Authority key identifier: A6:74:C6:70:1E:2B:0C:E3:D1:07:E9:F2:36:C5:5C:EF:E6:87:68:F1 Certificate issuer: /CN=A91DD902/serialNumber=A674C6701E2B0CE3D107E9F236C55CEFE68768F1 Certificate serial: 01D2 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pnTGcB4rDOPRB-nyNsVc7-aHaPE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91DD902/570B3F8EC92611EDAF2B9D4DC4F9AE02/pnTGcB4rDOPRB-nyNsVc7-aHaPE.mft Manifest number: 01CE Signing time: Fri 05 Sep 2025 03:10:43 +0000 Manifest this update: Fri 05 Sep 2025 03:10:43 +0000 Manifest next update: Fri 12 Sep 2025 03:10:43 +0000 Files and hashes: 1: pnTGcB4rDOPRB-nyNsVc7-aHaPE.crl (hash: NucNwWv9cyltPv9kY8VAwmuK1gKGnpqyFSjb6RcE9hY=) 2: 33A48584C92911EDAE3AB84EC4F9AE02.roa (hash: FLrBHslp5iyCkfQbrVJ9NSbQz6e94p5SbxYxtxyABAU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91DD902/570B3F8EC92611EDAF2B9D4DC4F9AE02/pnTGcB4rDOPRB-nyNsVc7-aHaPE.crl rsync://rpki.apnic.net/member_repository/A91DD902/570B3F8EC92611EDAF2B9D4DC4F9AE02/pnTGcB4rDOPRB-nyNsVc7-aHaPE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pnTGcB4rDOPRB-nyNsVc7-aHaPE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 12 Sep 2025 03:10:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 466 (0x1d2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DD902, serialNumber=A674C6701E2B0CE3D107E9F236C55CEFE68768F1 Validity Not Before: Sep 5 03:10:43 2025 GMT Not After : Sep 12 03:10:43 2025 GMT Subject: CN=68ba54b3-af88 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a7:a2:95:51:10:eb:1b:bd:23:31:e3:a4:0b:bd: 4b:c1:1d:46:1f:60:35:4c:2e:0e:ce:9a:48:c4:c2: ef:3a:e2:37:1d:15:c4:68:7d:1a:cb:54:bf:e7:23: 46:d0:ee:76:fb:5d:06:59:30:00:ba:9a:4b:96:e9: cd:b2:c1:a1:80:c6:64:a0:6e:91:52:ff:d8:3a:43: 7a:87:eb:bb:5e:73:b7:1c:5c:b8:5d:82:c0:b2:08: c6:7a:9d:f5:3b:a0:e8:49:19:94:fc:c9:a6:95:2c: 64:ca:7c:df:77:3e:aa:24:17:ca:8f:4a:7d:3f:79: 79:db:15:2d:51:c7:03:89:e1:79:23:95:ad:7a:29: ba:85:6a:63:4d:73:db:68:01:f4:78:58:88:17:ef: c4:44:16:25:d9:d7:f9:14:a4:4b:c1:5a:83:ba:53: db:ed:d7:bd:6f:c2:a0:03:2f:57:55:fd:11:67:38: 2b:64:63:66:fc:72:01:71:96:f9:30:34:76:73:ee: 42:a4:14:88:74:17:8a:41:dc:50:c1:f3:ee:e3:c4: ec:ff:2f:9b:31:39:0f:cb:1f:3c:09:08:0f:98:44: 0b:8e:41:94:23:0d:b2:a2:e9:8b:f1:7e:3c:b5:cd: ab:96:30:eb:16:71:05:a7:53:af:ca:58:82:ab:08: 2a:2f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 19:8C:E7:0A:02:B7:B6:82:41:68:49:75:CE:FD:8B:04:87:D7:BE:6B X509v3 Authority Key Identifier: keyid:A6:74:C6:70:1E:2B:0C:E3:D1:07:E9:F2:36:C5:5C:EF:E6:87:68:F1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91DD902/570B3F8EC92611EDAF2B9D4DC4F9AE02/pnTGcB4rDOPRB-nyNsVc7-aHaPE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pnTGcB4rDOPRB-nyNsVc7-aHaPE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DD902/570B3F8EC92611EDAF2B9D4DC4F9AE02/pnTGcB4rDOPRB-nyNsVc7-aHaPE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 25:b0:5a:00:39:39:39:6e:cf:10:1c:f6:a7:75:80:23:db:bc: aa:36:95:63:3d:72:02:95:39:0e:1d:d1:fc:97:c6:80:f7:bb: 3e:ce:4d:3b:75:9c:29:0c:5f:9a:63:c9:bf:e0:5e:b9:2b:a1: 70:c3:f8:4d:53:46:91:e8:53:5e:b1:bb:99:a6:0a:f7:ff:43: 22:50:2b:c3:8b:da:7c:e5:a1:f8:3a:41:e7:ff:d2:4a:4a:a2: e8:a5:c1:d6:0c:14:24:15:82:2a:1a:ff:b3:94:6f:f7:6d:8c: cf:15:e8:c2:b8:16:b7:8a:58:8a:75:96:23:d8:12:ec:08:76: b7:28:ab:70:16:f6:bd:11:6d:07:47:fe:10:13:b2:29:ee:81: 46:90:04:dd:54:1a:77:c3:1c:70:23:a3:32:d0:08:a1:b5:b9: f7:0a:1a:6f:78:20:06:10:f3:ac:85:fb:9b:0b:7c:ce:df:41: f0:77:00:1d:a5:70:4b:ae:30:73:15:ac:90:e6:b9:5d:7d:a2: f2:15:b5:03:f6:62:03:b5:c6:f1:b1:da:0b:9b:c9:2c:1c:47: 5f:54:82:90:e2:de:a6:37:a4:02:7d:b8:2f:19:a4:52:52:69: ca:9f:bf:93:69:af:f3:e2:35:64:bb:2e:09:7e:b4:39:f8:ce: 4b:db:3d:3f -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAdIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx REQ5MDIxMTAvBgNVBAUTKEE2NzRDNjcwMUUyQjBDRTNEMTA3RTlGMjM2QzU1Q0VG RTY4NzY4RjEwHhcNMjUwOTA1MDMxMDQzWhcNMjUwOTEyMDMxMDQzWjAYMRYwFAYD VQQDEw02OGJhNTRiMy1hZjg4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAp6KVURDrG70jMeOkC71LwR1GH2A1TC4OzppIxMLvOuI3HRXEaH0ay1S/5yNG 0O52+10GWTAAuppLlunNssGhgMZkoG6RUv/YOkN6h+u7XnO3HFy4XYLAsgjGep31 O6DoSRmU/MmmlSxkynzfdz6qJBfKj0p9P3l52xUtUccDieF5I5Wteim6hWpjTXPb aAH0eFiIF+/ERBYl2df5FKRLwVqDulPb7de9b8KgAy9XVf0RZzgrZGNm/HIBcZb5 MDR2c+5CpBSIdBeKQdxQwfPu48Ts/y+bMTkPyx88CQgPmEQLjkGUIw2youmL8X48 tc2rljDrFnEFp1OvyliCqwgqLwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFBmM5woC t7aCQWhJdc79iwSH175rMB8GA1UdIwQYMBaAFKZ0xnAeKwzj0Qfp8jbFXO/mh2jx MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFERDkwMi81NzBCM0Y4RUM5 MjYxMUVEQUYyQjlENERDNEY5QUUwMi9wblRHY0I0ckRPUFJCLW55TnNWYzctYUhh UEUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3BuVEdjQjRyRE9QUkItbnlOc1ZjNy1hSGFQRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE RDkwMi81NzBCM0Y4RUM5MjYxMUVEQUYyQjlENERDNEY5QUUwMi9wblRHY0I0ckRP UFJCLW55TnNWYzctYUhhUEUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAlsFoAOTk5bs8QHPandYAj27yqNpVjPXIClTkOHdH8l8aA97s+zk07 dZwpDF+aY8m/4F65K6Fww/hNU0aR6FNesbuZpgr3/0MiUCvDi9p85aH4OkHn/9JK SqLopcHWDBQkFYIqGv+zlG/3bYzPFejCuBa3iliKdZYj2BLsCHa3KKtwFva9EW0H R/4QE7Ip7oFGkATdVBp3wxxwI6My0Aihtbn3ChpveCAGEPOshfubC3zO30HwdwAd pXBLrjBzFayQ5rldfaLyFbUD9mIDtcbxsdoLm8ksHEdfVIKQ4t6mN6QCfbgvGaRS UmnKn7+Taa/z4jVkuy4JfrQ5+M5L2z0/ -----END CERTIFICATE-----Generated at Fri Sep 5 11:27:42 2025 by rpki-client