$ rpki-client -vvf rpki.apnic.net/member_repository/A91E2F2C/FFB761FA967811EA840F0029C4F9AE02/PDml0ZGM9lqyVjMi8PXxQwmme48.mft File: PDml0ZGM9lqyVjMi8PXxQwmme48.mft (raw, json) Hash identifier: rhDLpLoLxp0KChDctV+7553V4Bvp5dtCkmLpG5uy1IE= Subject key identifier: E1:CA:8C:93:0E:4A:76:CC:31:1D:9E:29:A0:A6:3F:01:83:D5:A9:2C Authority key identifier: 3C:39:A5:D1:91:8C:F6:5A:B2:56:33:22:F0:F5:F1:43:09:A6:7B:8F Certificate issuer: /CN=A91E2F2C/serialNumber=3C39A5D1918CF65AB2563322F0F5F14309A67B8F Certificate serial: 09B3 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PDml0ZGM9lqyVjMi8PXxQwmme48.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E2F2C/FFB761FA967811EA840F0029C4F9AE02/PDml0ZGM9lqyVjMi8PXxQwmme48.mft Manifest number: 09A1 Signing time: Sun 24 Aug 2025 20:07:25 +0000 Manifest this update: Sun 24 Aug 2025 20:07:24 +0000 Manifest next update: Sun 31 Aug 2025 20:07:24 +0000 Files and hashes: 1: PDml0ZGM9lqyVjMi8PXxQwmme48.crl (hash: qjdpUqtdhPOK5LT/FjQg6+YygbdNVwdkmgT2wG2b9lw=) 2: DE07328A778911ECBD9C7748C4F9AE02.roa (hash: V37MROUsA/Vlywtiw7YJvjwfZWxefXilScjM3KKgLC0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E2F2C/FFB761FA967811EA840F0029C4F9AE02/PDml0ZGM9lqyVjMi8PXxQwmme48.crl rsync://rpki.apnic.net/member_repository/A91E2F2C/FFB761FA967811EA840F0029C4F9AE02/PDml0ZGM9lqyVjMi8PXxQwmme48.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PDml0ZGM9lqyVjMi8PXxQwmme48.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 31 Aug 2025 19:03:43 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2483 (0x9b3) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E2F2C, serialNumber=3C39A5D1918CF65AB2563322F0F5F14309A67B8F Validity Not Before: Aug 24 20:07:24 2025 GMT Not After : Aug 31 20:07:24 2025 GMT Subject: CN=68ab70fd-4915 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:cb:c8:24:32:7c:7e:16:f4:20:ca:3f:e7:6e: a4:25:04:8c:aa:51:7f:eb:c9:ae:51:30:10:3c:da: 4f:ff:6d:55:95:19:5f:5e:e5:d3:d4:b2:0f:c8:c1: 30:ed:f4:6e:0b:2f:a3:64:b3:f0:bf:cb:48:d3:42: ab:f0:4e:52:92:7e:b0:3e:99:64:e7:dd:ad:51:b9: e7:8f:d3:14:42:49:6f:89:87:75:a2:0a:18:12:cb: 6b:98:78:89:d4:c3:dc:9a:1a:67:09:62:b2:98:ac: d1:13:97:4f:90:5d:5d:79:f8:71:93:41:e4:d4:72: fe:00:b2:06:77:b2:8b:7e:77:c8:7c:70:4f:b6:fe: 49:33:8b:5b:43:15:e6:91:0a:e7:0b:6d:f2:d7:bc: 06:3d:23:00:2d:94:44:71:fe:22:94:fa:a5:fb:3c: bd:20:4d:09:c2:25:67:b6:ba:88:54:70:0d:ad:d5: 68:78:fa:7d:1e:e7:41:0f:03:f8:4c:6d:cd:24:8c: cd:2c:d5:f7:2c:68:d1:ad:9c:81:f4:fc:14:e7:40: 22:0f:09:37:db:15:86:54:92:76:e5:5a:fa:23:37: 9b:ee:3e:80:85:20:de:5c:d2:ec:5e:30:b1:f4:a1: d8:ae:f6:dd:62:ff:15:6f:57:57:f7:4a:60:79:b7: 39:a7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E1:CA:8C:93:0E:4A:76:CC:31:1D:9E:29:A0:A6:3F:01:83:D5:A9:2C X509v3 Authority Key Identifier: keyid:3C:39:A5:D1:91:8C:F6:5A:B2:56:33:22:F0:F5:F1:43:09:A6:7B:8F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E2F2C/FFB761FA967811EA840F0029C4F9AE02/PDml0ZGM9lqyVjMi8PXxQwmme48.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PDml0ZGM9lqyVjMi8PXxQwmme48.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E2F2C/FFB761FA967811EA840F0029C4F9AE02/PDml0ZGM9lqyVjMi8PXxQwmme48.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 45:dc:5d:ae:be:a4:f3:f8:6c:42:5d:23:b5:8d:a1:db:d7:f6: a6:00:5a:16:da:51:eb:cf:c4:e2:f7:87:bb:44:a8:fc:ee:7a: af:97:46:a0:21:84:b7:19:9c:f8:a7:c9:23:1c:a7:29:13:58: 3b:fd:01:96:a3:a5:ec:67:7e:04:5b:19:e2:e3:f9:12:22:c4: 03:a1:fe:8b:5d:6b:31:2d:95:98:e1:87:39:c5:4c:4e:fe:44: 46:12:0e:a5:e4:01:49:86:62:10:16:10:6c:87:f8:c7:a4:43: f3:d0:64:a8:17:dd:9f:90:47:06:a5:9d:0f:15:ab:f6:1b:5f: a8:82:fd:66:df:d0:3d:27:40:7b:2c:64:bd:3f:93:29:cd:32: 8c:15:37:c4:d6:5f:13:f7:5f:96:82:65:de:3f:15:55:0e:dc: 11:55:c1:af:d8:4c:11:99:32:89:90:ab:c2:15:62:8f:0a:8c: 9f:d7:63:87:a2:14:29:5c:7e:94:53:39:fc:bb:8b:65:74:1a: 89:c1:d5:67:16:6b:42:62:ec:0d:b4:25:18:ed:7a:42:25:24: 46:ee:95:de:44:4c:f7:25:da:52:d8:8b:1c:60:29:2f:0b:24: 99:b9:98:31:d8:55:d6:5b:8c:de:50:8d:ac:07:0d:49:8d:43: aa:ed:54:0f -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCbMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTJGMkMxMTAvBgNVBAUTKDNDMzlBNUQxOTE4Q0Y2NUFCMjU2MzMyMkYwRjVGMTQz MDlBNjdCOEYwHhcNMjUwODI0MjAwNzI0WhcNMjUwODMxMjAwNzI0WjAYMRYwFAYD VQQDEw02OGFiNzBmZC00OTE1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvcvIJDJ8fhb0IMo/526kJQSMqlF/68muUTAQPNpP/21VlRlfXuXT1LIPyMEw 7fRuCy+jZLPwv8tI00Kr8E5Skn6wPplk592tUbnnj9MUQklviYd1ogoYEstrmHiJ 1MPcmhpnCWKymKzRE5dPkF1defhxk0Hk1HL+ALIGd7KLfnfIfHBPtv5JM4tbQxXm kQrnC23y17wGPSMALZREcf4ilPql+zy9IE0JwiVntrqIVHANrdVoePp9HudBDwP4 TG3NJIzNLNX3LGjRrZyB9PwU50AiDwk32xWGVJJ25Vr6Izeb7j6AhSDeXNLsXjCx 9KHYrvbdYv8Vb1dX90pgebc5pwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFOHKjJMO SnbMMR2eKaCmPwGD1aksMB8GA1UdIwQYMBaAFDw5pdGRjPZaslYzIvD18UMJpnuP MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFMkYyQy9GRkI3NjFGQTk2 NzgxMUVBODQwRjAwMjlDNEY5QUUwMi9QRG1sMFpHTTlscXlWak1pOFBYeFF3bW1l NDguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1BEbWwwWkdNOWxxeVZqTWk4UFh4UXdtbWU0OC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF MkYyQy9GRkI3NjFGQTk2NzgxMUVBODQwRjAwMjlDNEY5QUUwMi9QRG1sMFpHTTls cXlWak1pOFBYeFF3bW1lNDgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBF3F2uvqTz+GxCXSO1jaHb1/amAFoW2lHrz8Ti94e7RKj87nqvl0ag IYS3GZz4p8kjHKcpE1g7/QGWo6XsZ34EWxni4/kSIsQDof6LXWsxLZWY4Yc5xUxO /kRGEg6l5AFJhmIQFhBsh/jHpEPz0GSoF92fkEcGpZ0PFav2G1+ogv1m39A9J0B7 LGS9P5MpzTKMFTfE1l8T91+WgmXePxVVDtwRVcGv2EwRmTKJkKvCFWKPCoyf12OH ohQpXH6UUzn8u4tldBqJwdVnFmtCYuwNtCUY7XpCJSRG7pXeREz3JdpS2IscYCkv CySZuZgx2FXWW4zeUI2sBw1JjUOq7VQP -----END CERTIFICATE-----Generated at Sun Aug 24 22:20:58 2025 by rpki-client