$ rpki-client -vvf rpki.apnic.net/member_repository/A9150B47/DA1755781DA311E2BED7789908B02CD2/PkPgI8CFNZTq13soKJo_HxDDCR0.mft File: PkPgI8CFNZTq13soKJo_HxDDCR0.mft (raw, json) Hash identifier: vGA9PJvGg+UePscepJ6zLGQe0kza63JQp+WNi0A2x7o= Subject key identifier: 64:11:57:66:5F:68:C0:F4:2F:FB:1E:A2:AF:D9:78:46:D2:44:64:09 Authority key identifier: 3E:43:E0:23:C0:85:35:94:EA:D7:7B:28:28:9A:3F:1F:10:C3:09:1D Certificate issuer: /CN=A9150B47/serialNumber=3E43E023C0853594EAD77B28289A3F1F10C3091D Certificate serial: 349B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PkPgI8CFNZTq13soKJo_HxDDCR0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9150B47/DA1755781DA311E2BED7789908B02CD2/PkPgI8CFNZTq13soKJo_HxDDCR0.mft Manifest number: 3498 Signing time: Fri 18 Jul 2025 15:11:14 +0000 Manifest this update: Fri 18 Jul 2025 15:11:13 +0000 Manifest next update: Fri 25 Jul 2025 15:11:13 +0000 Files and hashes: 1: PkPgI8CFNZTq13soKJo_HxDDCR0.crl (hash: Mg9szXATmfOGgdqOBotZ3ctjrK4XFxzyJJoEyxjiDtk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9150B47/DA1755781DA311E2BED7789908B02CD2/PkPgI8CFNZTq13soKJo_HxDDCR0.crl rsync://rpki.apnic.net/member_repository/A9150B47/DA1755781DA311E2BED7789908B02CD2/PkPgI8CFNZTq13soKJo_HxDDCR0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PkPgI8CFNZTq13soKJo_HxDDCR0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 25 Jul 2025 15:11:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13467 (0x349b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9150B47, serialNumber=3E43E023C0853594EAD77B28289A3F1F10C3091D Validity Not Before: Jul 18 15:11:13 2025 GMT Not After : Jul 25 15:11:13 2025 GMT Subject: CN=687a6412-b896 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b1:fa:35:78:48:45:75:0f:87:c0:8a:b4:57:2b: 63:ab:b7:17:48:d7:25:4b:7b:21:d9:09:49:f4:01: a3:68:71:fa:85:64:ae:66:5e:6b:f5:2d:ff:2b:41: 1c:06:e0:83:0c:38:28:1a:ec:c4:7f:5a:fb:6e:15: 97:ee:85:ef:41:26:d7:95:01:4f:d5:e3:cf:95:ac: 8e:e3:83:3f:44:c9:31:92:2c:bf:7a:96:dd:d1:89: b0:35:c9:ca:a8:80:52:36:2e:cd:89:0e:1d:c5:1e: c2:f8:ef:c5:de:59:c4:7b:13:65:70:d4:45:c9:29: ad:da:5d:de:de:3f:97:e6:fc:e8:72:34:c3:93:8d: 21:21:6e:1a:7c:6b:61:66:63:88:ff:38:b2:a9:d4: 88:37:31:d6:5f:34:28:f9:df:ab:96:52:b5:01:00: bd:b6:49:11:3d:77:c5:73:be:20:3c:25:a3:49:c9: e7:7c:7d:76:54:16:07:40:64:c0:00:c0:78:39:6a: 1f:4c:be:e1:a6:e1:3b:c1:af:a7:38:63:0b:c6:3a: 3e:e1:da:fc:8b:d6:70:fb:b3:bf:f4:44:16:3b:b3: 63:50:e4:10:e6:0b:fa:d3:fc:ce:f9:16:66:4b:be: ce:e8:96:6f:e0:57:f5:a6:34:0f:fc:60:5f:7e:1a: fd:41 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 64:11:57:66:5F:68:C0:F4:2F:FB:1E:A2:AF:D9:78:46:D2:44:64:09 X509v3 Authority Key Identifier: keyid:3E:43:E0:23:C0:85:35:94:EA:D7:7B:28:28:9A:3F:1F:10:C3:09:1D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9150B47/DA1755781DA311E2BED7789908B02CD2/PkPgI8CFNZTq13soKJo_HxDDCR0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PkPgI8CFNZTq13soKJo_HxDDCR0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9150B47/DA1755781DA311E2BED7789908B02CD2/PkPgI8CFNZTq13soKJo_HxDDCR0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 06:52:c3:37:f8:d1:6d:78:7a:86:5a:ff:72:a2:52:05:12:72: 0e:32:ab:63:ad:df:f2:2c:d1:52:a8:31:d3:6e:14:4b:fc:05: e7:bc:0a:58:38:49:77:65:cf:17:18:11:ee:d0:20:87:6a:cb: 05:f2:8a:d0:7d:97:bc:a5:e5:8a:02:08:03:72:65:91:fd:be: f3:d7:d3:fc:53:0a:3c:f1:4c:6a:17:bb:18:bc:80:32:95:99: 8b:3c:52:dc:b1:38:f2:e6:0f:3e:03:a7:78:02:1e:9c:46:2a: 58:24:4a:22:4b:c7:fa:df:af:bd:94:9a:66:77:51:88:9b:65: a6:6b:1c:5d:c3:79:f9:97:a9:c9:8f:02:10:64:56:08:88:68: 5b:b6:7c:13:7b:b0:f0:e0:ad:0a:15:8f:b1:54:d3:70:39:3e: 1b:2f:f5:16:46:2a:cf:33:f5:94:cf:69:07:71:cf:95:85:1a: c1:a1:62:60:1e:53:d0:57:7c:1b:bf:12:47:eb:b7:cf:e5:fd: bd:5f:cf:64:5c:9c:23:b7:82:27:25:03:40:f1:8b:52:71:21: bc:42:19:bc:af:76:61:e2:db:c3:4c:ab:fc:9a:27:c2:c0:f8: 19:01:fa:e3:62:35:c6:79:bb:c1:6c:a4:95:76:3e:3d:15:22: 22:8b:cf:38 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICNJswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTBCNDcxMTAvBgNVBAUTKDNFNDNFMDIzQzA4NTM1OTRFQUQ3N0IyODI4OUEzRjFG MTBDMzA5MUQwHhcNMjUwNzE4MTUxMTEzWhcNMjUwNzI1MTUxMTEzWjAYMRYwFAYD VQQDEw02ODdhNjQxMi1iODk2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsfo1eEhFdQ+HwIq0Vytjq7cXSNclS3sh2QlJ9AGjaHH6hWSuZl5r9S3/K0Ec BuCDDDgoGuzEf1r7bhWX7oXvQSbXlQFP1ePPlayO44M/RMkxkiy/epbd0YmwNcnK qIBSNi7NiQ4dxR7C+O/F3lnEexNlcNRFySmt2l3e3j+X5vzocjTDk40hIW4afGth ZmOI/ziyqdSINzHWXzQo+d+rllK1AQC9tkkRPXfFc74gPCWjScnnfH12VBYHQGTA AMB4OWofTL7hpuE7wa+nOGMLxjo+4dr8i9Zw+7O/9EQWO7NjUOQQ5gv60/zO+RZm S77O6JZv4Ff1pjQP/GBffhr9QQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFGQRV2Zf aMD0L/seoq/ZeEbSRGQJMB8GA1UdIwQYMBaAFD5D4CPAhTWU6td7KCiaPx8Qwwkd MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1MEI0Ny9EQTE3NTU3ODFE QTMxMUUyQkVENzc4OTkwOEIwMkNEMi9Qa1BnSThDRk5aVHExM3NvS0pvX0h4RERD UjAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1BrUGdJOENGTlpUcTEzc29LSm9fSHhERENSMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 MEI0Ny9EQTE3NTU3ODFEQTMxMUUyQkVENzc4OTkwOEIwMkNEMi9Qa1BnSThDRk5a VHExM3NvS0pvX0h4RERDUjAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAGUsM3+NFteHqGWv9yolIFEnIOMqtjrd/yLNFSqDHTbhRL/AXnvApY OEl3Zc8XGBHu0CCHassF8orQfZe8peWKAggDcmWR/b7z19P8Uwo88UxqF7sYvIAy lZmLPFLcsTjy5g8+A6d4Ah6cRipYJEoiS8f636+9lJpmd1GIm2Wmaxxdw3n5l6nJ jwIQZFYIiGhbtnwTe7Dw4K0KFY+xVNNwOT4bL/UWRirPM/WUz2kHcc+VhRrBoWJg HlPQV3wbvxJH67fP5f29X89kXJwjt4InJQNA8YtScSG8Qhm8r3Zh4tvDTKv8mifC wPgZAfrjYjXGebvBbKSVdj49FSIii884 -----END CERTIFICATE-----Generated at Sun Jul 20 06:35:10 2025 by rpki-client