$ rpki-client -vvf rpki.apnic.net/member_repository/A9173FAC/B8F5C76A101811F080BCC348C4F9AE02/PxqOo9KtxuyyNg4MN2zlWbn_cfI.mft File: PxqOo9KtxuyyNg4MN2zlWbn_cfI.mft (raw, json) Hash identifier: H2kOOFngfOhlzlGtoWtk+JSPIq2fhBvj2X2BkaFa6Mk= Subject key identifier: 1D:E1:0E:D1:59:DB:9A:03:D2:D6:36:C1:C6:33:5A:C9:55:6B:C5:91 Authority key identifier: 3F:1A:8E:A3:D2:AD:C6:EC:B2:36:0E:0C:37:6C:E5:59:B9:FF:71:F2 Certificate issuer: /CN=A9173FAC/serialNumber=3F1A8EA3D2ADC6ECB2360E0C376CE559B9FF71F2 Certificate serial: 36 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PxqOo9KtxuyyNg4MN2zlWbn_cfI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9173FAC/B8F5C76A101811F080BCC348C4F9AE02/PxqOo9KtxuyyNg4MN2zlWbn_cfI.mft Manifest number: 36 Signing time: Sat 19 Jul 2025 07:51:10 +0000 Manifest this update: Sat 19 Jul 2025 07:51:10 +0000 Manifest next update: Sat 26 Jul 2025 07:51:10 +0000 Files and hashes: 1: PxqOo9KtxuyyNg4MN2zlWbn_cfI.crl (hash: 8GOvF1ijsgkzQOvIvKL+lZNh8wI2kYfUItpL3lXmeoI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9173FAC/B8F5C76A101811F080BCC348C4F9AE02/PxqOo9KtxuyyNg4MN2zlWbn_cfI.crl rsync://rpki.apnic.net/member_repository/A9173FAC/B8F5C76A101811F080BCC348C4F9AE02/PxqOo9KtxuyyNg4MN2zlWbn_cfI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PxqOo9KtxuyyNg4MN2zlWbn_cfI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 26 Jul 2025 07:51:09 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 54 (0x36) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9173FAC, serialNumber=3F1A8EA3D2ADC6ECB2360E0C376CE559B9FF71F2 Validity Not Before: Jul 19 07:51:10 2025 GMT Not After : Jul 26 07:51:10 2025 GMT Subject: CN=687b4e6e-4bc6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:a4:58:b1:73:50:70:51:85:03:e3:fa:a1:70: d0:0f:54:55:5b:aa:75:cd:38:65:f2:c5:b7:04:1b: 3b:77:a4:47:05:ce:5a:3e:8a:9e:f1:f2:f1:c2:21: 98:3c:2f:a5:18:f7:60:08:b3:22:f2:1a:a2:8c:b9: 03:76:e8:6d:59:2a:0d:53:5d:20:32:8e:f2:1d:aa: 81:85:8a:86:c2:0c:5a:f5:2f:3a:e1:4c:e4:cb:58: 03:19:d4:48:ab:19:27:60:41:68:78:59:5b:5b:46: 1f:cc:e7:b4:cc:f4:5e:03:7f:8b:13:90:02:b1:ef: 18:ed:4f:42:0c:d4:e1:f7:b3:bd:43:29:42:db:bc: 40:1f:b4:41:9a:3a:ad:02:b5:0c:92:d7:16:f7:33: 70:c6:24:6d:21:61:56:44:54:b9:07:44:46:93:d5: 18:2a:9b:67:7d:26:4e:ff:0e:9f:b0:d1:88:5d:27: 53:6c:20:76:7f:ed:b2:bf:56:33:bd:5a:b2:39:15: 18:14:a1:f0:dc:70:c2:fc:8c:77:bc:17:8d:6e:8e: 50:3f:54:5a:2c:c2:52:99:df:6d:54:de:6f:d4:ce: a6:62:05:57:f4:ba:cb:63:21:f6:29:f6:15:52:84: 63:11:13:6d:96:de:ea:6d:17:08:60:23:2d:46:c4: 2d:41 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1D:E1:0E:D1:59:DB:9A:03:D2:D6:36:C1:C6:33:5A:C9:55:6B:C5:91 X509v3 Authority Key Identifier: keyid:3F:1A:8E:A3:D2:AD:C6:EC:B2:36:0E:0C:37:6C:E5:59:B9:FF:71:F2 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9173FAC/B8F5C76A101811F080BCC348C4F9AE02/PxqOo9KtxuyyNg4MN2zlWbn_cfI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PxqOo9KtxuyyNg4MN2zlWbn_cfI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9173FAC/B8F5C76A101811F080BCC348C4F9AE02/PxqOo9KtxuyyNg4MN2zlWbn_cfI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a0:42:e1:89:27:0b:a1:2c:35:ae:87:bc:dd:c1:33:c8:1e:6b: 24:a5:c2:ca:43:da:7b:ef:b3:4b:ac:3f:2b:f2:53:9e:0f:de: c0:53:05:26:b8:4f:47:62:76:a6:11:2f:51:a0:ad:8c:36:a8: 1d:80:18:20:f0:dc:12:67:b9:f5:57:09:18:6c:09:37:60:58: 1f:67:c7:e9:43:f7:be:9c:95:0f:0d:4e:ea:34:4e:ea:f8:2b: d2:e4:52:fd:d8:55:2e:f1:41:b8:32:30:bc:62:b0:4a:bb:ee: b2:f9:86:33:11:fd:f7:3e:b1:b9:d0:ab:60:46:1c:ff:0a:fb: d9:d8:0e:ed:b2:3f:12:1e:44:10:3f:b4:44:57:c9:04:ed:09: b6:c9:46:9e:d1:06:ac:cc:ff:29:d6:34:6e:a2:05:53:58:f3: 61:70:b7:32:38:bf:db:e7:1d:95:20:a0:17:4b:b6:5c:40:84: 45:7d:21:fa:f6:4b:bd:28:ea:6a:1a:6c:29:05:d1:2e:61:0e: 8b:a2:5f:df:eb:e5:c8:7e:a1:a6:e6:e5:4b:dc:14:c5:2d:4f: 24:07:77:91:33:05:eb:7a:23:58:e7:0b:9d:16:9f:11:68:75: e5:76:33:4b:87:6e:ac:6d:df:57:43:a3:de:ef:c7:a5:b7:3e: 2b:17:a0:87 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBNjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE3 M0ZBQzExMC8GA1UEBRMoM0YxQThFQTNEMkFEQzZFQ0IyMzYwRTBDMzc2Q0U1NTlC OUZGNzFGMjAeFw0yNTA3MTkwNzUxMTBaFw0yNTA3MjYwNzUxMTBaMBgxFjAUBgNV BAMTDTY4N2I0ZTZlLTRiYzYwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQC9pFixc1BwUYUD4/qhcNAPVFVbqnXNOGXyxbcEGzt3pEcFzlo+ip7x8vHCIZg8 L6UY92AIsyLyGqKMuQN26G1ZKg1TXSAyjvIdqoGFiobCDFr1LzrhTOTLWAMZ1Eir GSdgQWh4WVtbRh/M57TM9F4Df4sTkAKx7xjtT0IM1OH3s71DKULbvEAftEGaOq0C tQyS1xb3M3DGJG0hYVZEVLkHREaT1Rgqm2d9Jk7/Dp+w0YhdJ1NsIHZ/7bK/VjO9 WrI5FRgUofDccML8jHe8F41ujlA/VFoswlKZ321U3m/UzqZiBVf0ustjIfYp9hVS hGMRE22W3uptFwhgIy1GxC1BAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUHeEO0Vnb mgPS1jbBxjNayVVrxZEwHwYDVR0jBBgwFoAUPxqOo9KtxuyyNg4MN2zlWbn/cfIw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTczRkFDL0I4RjVDNzZBMTAx ODExRjA4MEJDQzM0OEM0RjlBRTAyL1B4cU9vOUt0eHV5eU5nNE1OMnpsV2JuX2Nm SS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvUHhxT285S3R4dXl5Tmc0TU4yemxXYm5fY2ZJLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTcz RkFDL0I4RjVDNzZBMTAxODExRjA4MEJDQzM0OEM0RjlBRTAyL1B4cU9vOUt0eHV5 eU5nNE1OMnpsV2JuX2NmSS5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAKBC4YknC6EsNa6HvN3BM8geaySlwspD2nvvs0usPyvyU54P3sBTBSa4 T0didqYRL1GgrYw2qB2AGCDw3BJnufVXCRhsCTdgWB9nx+lD976clQ8NTuo0Tur4 K9LkUv3YVS7xQbgyMLxisEq77rL5hjMR/fc+sbnQq2BGHP8K+9nYDu2yPxIeRBA/ tERXyQTtCbbJRp7RBqzM/ynWNG6iBVNY82FwtzI4v9vnHZUgoBdLtlxAhEV9Ifr2 S70o6moabCkF0S5hDouiX9/r5ch+oabm5UvcFMUtTyQHd5EzBet6I1jnC50WnxFo deV2M0uHbqxt31dDo97vx6W3PisXoIc= -----END CERTIFICATE-----Generated at Sun Jul 20 10:16:19 2025 by rpki-client