$ rpki-client -vvf rpki.apnic.net/member_repository/A91E0EF2/AB6B27F65EE211ECAFA64B44C4F9AE02/PV2GR6upu0BiXDxkPNg2fxUHgBo.mft File: PV2GR6upu0BiXDxkPNg2fxUHgBo.mft (raw, json) Hash identifier: ctxZs14SreVHEKJbgTL0rN8rvD+k0CRIB9Kygs/1Vac= Subject key identifier: 44:EA:FB:8F:0D:77:8B:93:BF:60:B2:9C:78:18:5B:4B:E7:D2:8D:28 Authority key identifier: 3D:5D:86:47:AB:A9:BB:40:62:5C:3C:64:3C:D8:36:7F:15:07:80:1A Certificate issuer: /CN=A91E0EF2/serialNumber=3D5D8647ABA9BB40625C3C643CD8367F1507801A Certificate serial: 0471 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/PV2GR6upu0BiXDxkPNg2fxUHgBo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E0EF2/AB6B27F65EE211ECAFA64B44C4F9AE02/PV2GR6upu0BiXDxkPNg2fxUHgBo.mft Manifest number: 046B Signing time: Fri 05 Sep 2025 00:28:13 +0000 Manifest this update: Fri 05 Sep 2025 00:28:12 +0000 Manifest next update: Fri 12 Sep 2025 00:28:12 +0000 Files and hashes: 1: PV2GR6upu0BiXDxkPNg2fxUHgBo.crl (hash: 9ZPeAyj1fX+v1Pjk5GKOP5gqaMkcQsiAl8CUBEGQ4+Y=) 2: CA7DCCFE5EE511ECA6B8CA48C4F9AE02.roa (hash: mDuBvAb87vc0xqlLuEIwzuSg0BaaCa9nDXGB49E/55o=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E0EF2/AB6B27F65EE211ECAFA64B44C4F9AE02/PV2GR6upu0BiXDxkPNg2fxUHgBo.crl rsync://rpki.apnic.net/member_repository/A91E0EF2/AB6B27F65EE211ECAFA64B44C4F9AE02/PV2GR6upu0BiXDxkPNg2fxUHgBo.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/PV2GR6upu0BiXDxkPNg2fxUHgBo.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 12 Sep 2025 00:28:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1137 (0x471) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E0EF2, serialNumber=3D5D8647ABA9BB40625C3C643CD8367F1507801A Validity Not Before: Sep 5 00:28:12 2025 GMT Not After : Sep 12 00:28:12 2025 GMT Subject: CN=68ba2e9c-b804 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b3:ba:e4:ce:c5:d1:6a:24:d5:ae:60:9d:aa:cb: ed:09:d9:c0:02:cf:fe:55:d4:e7:49:12:55:85:12: 49:46:aa:89:f5:eb:05:71:c1:c8:fe:b9:17:03:be: 83:78:87:d3:cc:3f:1f:c0:9c:8f:90:88:e5:89:0e: c7:8b:22:74:00:04:18:ca:b0:4f:8c:c4:e0:e2:58: 7a:ac:14:f8:fa:bd:81:63:2c:e3:fc:43:b4:f7:d9: fe:f2:c9:dc:14:cb:c3:0c:29:07:db:17:6b:94:9b: 6d:b8:4f:b5:6a:20:aa:d4:95:7e:bb:92:14:66:24: 17:62:8d:99:b6:eb:ab:db:47:66:8a:d3:63:83:43: be:79:ed:ab:be:7c:6a:24:1b:9f:cf:1e:58:01:23: c3:e7:6a:03:6e:8f:da:69:02:86:8d:f5:bc:cc:60: 46:60:f8:a1:39:d5:32:9d:8f:24:1d:75:35:21:31: 25:d6:43:c2:1c:17:1b:74:82:a0:95:65:31:d1:2c: 8d:a6:b1:87:53:a0:79:34:ee:5c:a8:70:d6:0f:05: c3:67:1e:d9:29:11:4c:0f:52:52:31:54:6a:65:9f: d5:b8:1b:4e:f4:56:bf:14:8a:6e:b8:23:78:7b:2f: e3:67:70:8e:50:36:13:27:93:ce:c1:b4:37:70:47: 68:6b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 44:EA:FB:8F:0D:77:8B:93:BF:60:B2:9C:78:18:5B:4B:E7:D2:8D:28 X509v3 Authority Key Identifier: keyid:3D:5D:86:47:AB:A9:BB:40:62:5C:3C:64:3C:D8:36:7F:15:07:80:1A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E0EF2/AB6B27F65EE211ECAFA64B44C4F9AE02/PV2GR6upu0BiXDxkPNg2fxUHgBo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/PV2GR6upu0BiXDxkPNg2fxUHgBo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E0EF2/AB6B27F65EE211ECAFA64B44C4F9AE02/PV2GR6upu0BiXDxkPNg2fxUHgBo.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 4c:53:ba:7e:b3:c8:db:52:67:83:cc:0c:1d:b8:8f:d1:64:2a: df:1a:cc:06:1c:71:fe:5f:fc:b1:d2:5d:5a:ee:fd:8a:70:68: 7a:7c:ed:0f:b6:4f:c7:f2:de:88:48:6f:63:86:a9:31:d1:98: 58:ce:74:e3:0d:b3:63:9b:eb:68:fa:f9:cb:d2:17:ed:2c:97: 0a:20:3a:4b:4a:c3:cf:92:9c:60:98:8f:28:7a:97:13:6e:7f: 68:61:dd:11:24:b5:e0:e1:c9:70:44:7e:c9:79:80:10:94:0b: 06:61:03:d7:ed:89:db:71:cb:71:59:af:df:7f:eb:c4:0b:10: d9:90:7d:47:9c:d0:a4:7e:c7:aa:48:89:1d:3c:2d:a3:86:b4: 04:ca:ef:c6:cb:c4:ba:dd:48:b0:5e:52:89:b2:94:2b:27:69: 5f:59:03:5e:58:51:96:df:87:ed:64:12:8a:be:6a:e0:3b:0d: 52:87:d1:3d:fe:60:46:42:b4:a4:0c:df:4b:8c:4a:c5:ae:6d: 59:b8:67:94:44:17:b3:a1:b9:b1:18:84:4c:da:4c:2f:45:3b: fd:6c:1a:b5:ee:9d:9f:a4:1d:58:25:8f:7c:94:dd:17:a7:cd: 43:62:7d:d3:9e:0d:0c:fa:5b:11:03:fc:64:02:d8:32:fe:73: 16:27:bb:19 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBHEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTBFRjIxMTAvBgNVBAUTKDNENUQ4NjQ3QUJBOUJCNDA2MjVDM0M2NDNDRDgzNjdG MTUwNzgwMUEwHhcNMjUwOTA1MDAyODEyWhcNMjUwOTEyMDAyODEyWjAYMRYwFAYD VQQDEw02OGJhMmU5Yy1iODA0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAs7rkzsXRaiTVrmCdqsvtCdnAAs/+VdTnSRJVhRJJRqqJ9esFccHI/rkXA76D eIfTzD8fwJyPkIjliQ7HiyJ0AAQYyrBPjMTg4lh6rBT4+r2BYyzj/EO099n+8snc FMvDDCkH2xdrlJttuE+1aiCq1JV+u5IUZiQXYo2Ztuur20dmitNjg0O+ee2rvnxq JBufzx5YASPD52oDbo/aaQKGjfW8zGBGYPihOdUynY8kHXU1ITEl1kPCHBcbdIKg lWUx0SyNprGHU6B5NO5cqHDWDwXDZx7ZKRFMD1JSMVRqZZ/VuBtO9Fa/FIpuuCN4 ey/jZ3COUDYTJ5POwbQ3cEdoawIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFETq+48N d4uTv2CynHgYW0vn0o0oMB8GA1UdIwQYMBaAFD1dhkerqbtAYlw8ZDzYNn8VB4Aa MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFMEVGMi9BQjZCMjdGNjVF RTIxMUVDQUZBNjRCNDRDNEY5QUUwMi9QVjJHUjZ1cHUwQmlYRHhrUE5nMmZ4VUhn Qm8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL1BWMkdSNnVwdTBCaVhEeGtQTmcyZnhVSGdCby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF MEVGMi9BQjZCMjdGNjVFRTIxMUVDQUZBNjRCNDRDNEY5QUUwMi9QVjJHUjZ1cHUw QmlYRHhrUE5nMmZ4VUhnQm8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBMU7p+s8jbUmeDzAwduI/RZCrfGswGHHH+X/yx0l1a7v2KcGh6fO0P tk/H8t6ISG9jhqkx0ZhYznTjDbNjm+to+vnL0hftLJcKIDpLSsPPkpxgmI8oepcT bn9oYd0RJLXg4clwRH7JeYAQlAsGYQPX7YnbcctxWa/ff+vECxDZkH1HnNCkfseq SIkdPC2jhrQEyu/Gy8S63UiwXlKJspQrJ2lfWQNeWFGW34ftZBKKvmrgOw1Sh9E9 /mBGQrSkDN9LjErFrm1ZuGeURBezobmxGIRM2kwvRTv9bBq17p2fpB1YJY98lN0X p81DYn3Tng0M+lsRA/xkAtgy/nMWJ7sZ -----END CERTIFICATE-----Generated at Sat Sep 6 21:05:08 2025 by rpki-client