$ rpki-client -vvf rpki.apnic.net/member_repository/A911FA74/6101B5B61D8F11E2847C5FEE08B02CD2/PqTXApDMqv5dzJxdpfW-J_7d5F4.mft File: PqTXApDMqv5dzJxdpfW-J_7d5F4.mft (raw, json) Hash identifier: 9eNl6/ZdAtephk/Kx5Uw4oRFhc1MiUrCCaFznxj8/nM= Subject key identifier: 40:45:C7:0C:54:91:1E:82:8A:1C:00:76:62:6E:E4:F0:95:E8:98:2C Authority key identifier: 3E:A4:D7:02:90:CC:AA:FE:5D:CC:9C:5D:A5:F5:BE:27:FE:DD:E4:5E Certificate issuer: /CN=A911FA74/serialNumber=3EA4D70290CCAAFE5DCC9C5DA5F5BE27FEDDE45E Certificate serial: 349C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PqTXApDMqv5dzJxdpfW-J_7d5F4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911FA74/6101B5B61D8F11E2847C5FEE08B02CD2/PqTXApDMqv5dzJxdpfW-J_7d5F4.mft Manifest number: 349C Signing time: Fri 18 Jul 2025 14:42:04 +0000 Manifest this update: Fri 18 Jul 2025 14:42:04 +0000 Manifest next update: Fri 25 Jul 2025 14:42:04 +0000 Files and hashes: 1: PqTXApDMqv5dzJxdpfW-J_7d5F4.crl (hash: g3i3GWT7RPT0G4TgoiFhCRgISXrcyKOTEX7TsIZ5Bbs=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911FA74/6101B5B61D8F11E2847C5FEE08B02CD2/PqTXApDMqv5dzJxdpfW-J_7d5F4.crl rsync://rpki.apnic.net/member_repository/A911FA74/6101B5B61D8F11E2847C5FEE08B02CD2/PqTXApDMqv5dzJxdpfW-J_7d5F4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PqTXApDMqv5dzJxdpfW-J_7d5F4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 25 Jul 2025 14:42:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13468 (0x349c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911FA74, serialNumber=3EA4D70290CCAAFE5DCC9C5DA5F5BE27FEDDE45E Validity Not Before: Jul 18 14:42:04 2025 GMT Not After : Jul 25 14:42:04 2025 GMT Subject: CN=687a5d3c-490e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c8:c5:f1:0b:1d:aa:7b:83:31:f6:03:71:84:75: a0:7f:f9:45:b8:1c:ba:43:93:2c:fb:be:75:99:03: 57:26:97:e4:08:1b:c0:cd:99:0f:d2:a7:9c:c9:8d: b4:dd:37:ea:a7:4e:fb:bf:7e:df:c4:1d:7e:12:e7: d5:f9:58:9f:85:cd:4b:10:cc:1f:e2:82:58:f3:21: 5e:47:17:be:aa:98:03:c6:1a:5d:d9:ac:2a:1a:a9: 79:26:ed:81:18:b4:4d:b4:df:85:a8:c6:a4:b2:d0: d6:90:42:82:12:6e:8c:f3:b4:84:af:61:0f:c9:29: d8:29:4c:69:03:e1:08:f3:83:11:cb:0e:8f:44:8a: 68:fb:18:00:36:80:63:8f:9b:21:81:e3:7d:f3:e5: 9b:bd:a1:72:e0:9d:3c:36:8c:32:ec:90:15:f1:bb: 97:be:7f:46:22:b8:b1:f9:a8:e5:3a:22:f2:e2:0a: 00:ab:46:02:00:e8:a2:55:88:8e:a0:ee:69:f9:37: 40:ce:c4:ee:7e:e1:2e:26:11:e8:91:1e:95:54:4e: a4:13:29:51:18:4f:ec:ff:aa:c4:12:e8:b5:83:c1: 96:6b:53:e4:dc:d6:f9:a1:6e:ea:ae:9b:fc:67:c0: f8:67:bb:b9:a7:f0:5b:f7:fa:e9:c8:ba:a3:9d:01: 3d:25 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 40:45:C7:0C:54:91:1E:82:8A:1C:00:76:62:6E:E4:F0:95:E8:98:2C X509v3 Authority Key Identifier: keyid:3E:A4:D7:02:90:CC:AA:FE:5D:CC:9C:5D:A5:F5:BE:27:FE:DD:E4:5E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911FA74/6101B5B61D8F11E2847C5FEE08B02CD2/PqTXApDMqv5dzJxdpfW-J_7d5F4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PqTXApDMqv5dzJxdpfW-J_7d5F4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911FA74/6101B5B61D8F11E2847C5FEE08B02CD2/PqTXApDMqv5dzJxdpfW-J_7d5F4.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 3c:db:e8:96:b8:f7:79:5c:62:17:0e:59:0d:68:d2:c8:1e:09: 43:80:07:97:f5:b5:97:e2:9c:14:18:45:8c:de:6f:bf:45:3f: 8f:f7:47:72:67:47:d9:b5:c3:9c:13:ef:e7:7f:73:47:aa:bd: 42:af:f0:0a:8e:02:a1:03:16:ab:3a:ab:56:ef:8f:d7:54:10: 05:ec:57:62:92:67:94:2c:8f:ea:6f:11:90:ed:c9:3c:dd:52: db:9b:da:d7:c8:3f:f9:dc:a9:34:5e:3f:63:9a:ad:be:2f:fc: 83:28:b5:5f:89:cc:f4:7f:1f:44:d7:b0:8e:75:30:3b:0f:be: c2:a7:aa:07:16:ad:c2:b3:72:7f:10:8d:d0:8f:bd:be:59:d8: 43:3d:79:27:76:d1:08:77:3d:7c:ea:b9:08:d6:62:01:55:95: 09:9e:0e:ae:36:73:cc:d1:7a:86:09:ff:b0:4f:3f:70:5a:9f: 5c:0e:c3:c6:d5:1f:7d:51:90:68:52:97:9a:a4:39:2c:d3:2c: c3:05:02:14:ce:08:7e:51:52:40:a7:c7:ec:84:e8:58:6a:82: ff:1a:72:da:1d:75:6f:ce:94:b4:55:f1:b7:c1:23:22:d2:81: 6b:14:73:08:29:4b:72:68:03:bd:f3:5c:98:5d:60:2e:25:4f: b2:bc:53:f6 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICNJwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MUZBNzQxMTAvBgNVBAUTKDNFQTRENzAyOTBDQ0FBRkU1RENDOUM1REE1RjVCRTI3 RkVEREU0NUUwHhcNMjUwNzE4MTQ0MjA0WhcNMjUwNzI1MTQ0MjA0WjAYMRYwFAYD VQQDEw02ODdhNWQzYy00OTBlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyMXxCx2qe4Mx9gNxhHWgf/lFuBy6Q5Ms+751mQNXJpfkCBvAzZkP0qecyY20 3Tfqp077v37fxB1+EufV+Vifhc1LEMwf4oJY8yFeRxe+qpgDxhpd2awqGql5Ju2B GLRNtN+FqMakstDWkEKCEm6M87SEr2EPySnYKUxpA+EI84MRyw6PRIpo+xgANoBj j5shgeN98+WbvaFy4J08Nowy7JAV8buXvn9GIrix+ajlOiLy4goAq0YCAOiiVYiO oO5p+TdAzsTufuEuJhHokR6VVE6kEylRGE/s/6rEEui1g8GWa1Pk3Nb5oW7qrpv8 Z8D4Z7u5p/Bb9/rpyLqjnQE9JQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFEBFxwxU kR6CihwAdmJu5PCV6JgsMB8GA1UdIwQYMBaAFD6k1wKQzKr+XcycXaX1vif+3eRe MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExRkE3NC82MTAxQjVCNjFE OEYxMUUyODQ3QzVGRUUwOEIwMkNEMi9QcVRYQXBETXF2NWR6SnhkcGZXLUpfN2Q1 RjQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1BxVFhBcERNcXY1ZHpKeGRwZlctSl83ZDVGNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx RkE3NC82MTAxQjVCNjFEOEYxMUUyODQ3QzVGRUUwOEIwMkNEMi9QcVRYQXBETXF2 NWR6SnhkcGZXLUpfN2Q1RjQubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA82+iWuPd5XGIXDlkNaNLIHglDgAeX9bWX4pwUGEWM3m+/RT+P90dy Z0fZtcOcE+/nf3NHqr1Cr/AKjgKhAxarOqtW74/XVBAF7FdikmeULI/qbxGQ7ck8 3VLbm9rXyD/53Kk0Xj9jmq2+L/yDKLVficz0fx9E17COdTA7D77Cp6oHFq3Cs3J/ EI3Qj72+WdhDPXkndtEIdz186rkI1mIBVZUJng6uNnPM0XqGCf+wTz9wWp9cDsPG 1R99UZBoUpeapDks0yzDBQIUzgh+UVJAp8fshOhYaoL/GnLaHXVvzpS0VfG3wSMi 0oFrFHMIKUtyaAO981yYXWAuJU+yvFP2 -----END CERTIFICATE-----Generated at Sun Jul 20 07:15:50 2025 by rpki-client