$ rpki-client -vvf rpki.apnic.net/member_repository/A9117E4D/A64FBCE0C05811E39D8A06645911EA32/pOlXbOhgyP9flyr1k7QFTngj5kI.mft File: pOlXbOhgyP9flyr1k7QFTngj5kI.mft (raw, json) Hash identifier: L8h/JgYj26dXI1avcivpLAZ2KHNgtJpBSaEExOdqYGE= Subject key identifier: F1:C1:73:7A:D7:63:88:61:8A:99:F0:72:97:F2:91:E1:8F:D7:3A:15 Authority key identifier: A4:E9:57:6C:E8:60:C8:FF:5F:97:2A:F5:93:B4:05:4E:78:23:E6:42 Certificate issuer: /CN=A9117E4D/serialNumber=A4E9576CE860C8FF5F972AF593B4054E7823E642 Certificate serial: 2C3D Authority info access: rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/pOlXbOhgyP9flyr1k7QFTngj5kI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9117E4D/A64FBCE0C05811E39D8A06645911EA32/pOlXbOhgyP9flyr1k7QFTngj5kI.mft Manifest number: 2C3A Signing time: Wed 04 Jun 2025 14:25:56 +0000 Manifest this update: Wed 04 Jun 2025 14:25:55 +0000 Manifest next update: Wed 11 Jun 2025 14:25:55 +0000 Files and hashes: 1: pOlXbOhgyP9flyr1k7QFTngj5kI.crl (hash: GtDTny43h1WB6WGYawBLg3GO264gWz964JqGV2WubvQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9117E4D/A64FBCE0C05811E39D8A06645911EA32/pOlXbOhgyP9flyr1k7QFTngj5kI.crl rsync://rpki.apnic.net/member_repository/A9117E4D/A64FBCE0C05811E39D8A06645911EA32/pOlXbOhgyP9flyr1k7QFTngj5kI.mft rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/pOlXbOhgyP9flyr1k7QFTngj5kI.cer rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.crl rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DPzneFf88B852ZpitKpi5hWedvg.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 11 Jun 2025 14:25:55 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 11325 (0x2c3d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9117E4D, serialNumber=A4E9576CE860C8FF5F972AF593B4054E7823E642 Validity Not Before: Jun 4 14:25:55 2025 GMT Not After : Jun 11 14:25:55 2025 GMT Subject: CN=68405774-fa70 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:7f:aa:0c:8a:ba:59:5b:c3:32:fd:b2:95:29: 94:0f:4a:24:a0:ab:7e:c0:82:32:7f:83:de:62:f1: 17:14:df:db:31:76:0d:a5:06:06:fd:14:19:f8:8e: 5b:c6:a4:a2:53:d0:ac:01:ab:30:ec:28:36:66:34: 19:a1:4c:4e:c5:8a:f7:10:a0:a8:43:ae:5b:3c:cf: 5f:e8:aa:e3:74:52:f3:08:99:8d:bd:b9:6c:85:f2: a0:e8:ea:54:6f:de:e3:1b:3f:fb:ed:29:99:cd:69: d0:0d:07:a7:9f:e4:c9:16:11:ab:98:d6:8e:33:e1: 84:91:84:38:a9:ef:da:d1:00:c8:56:f7:13:8a:ea: 07:89:b2:0a:20:a7:d1:d7:9a:fc:e0:b8:f9:cf:68: b3:04:8b:14:02:2e:80:aa:c2:1b:72:59:48:43:98: c4:6c:5f:a0:03:f4:a3:d8:a9:02:e9:f0:0e:6f:2e: e7:1f:8e:28:12:87:34:e2:ba:bd:2c:b8:50:85:7b: b2:da:a2:b0:f6:2e:06:d6:f4:f4:09:77:69:31:df: 2b:67:97:26:43:45:b2:63:82:eb:75:14:09:ed:b2: 0c:74:3c:86:0e:73:85:7d:9b:7f:0d:74:c5:ee:2e: 6c:f1:29:e3:fa:9e:1e:9a:92:95:5a:d7:c7:94:ad: 15:5f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F1:C1:73:7A:D7:63:88:61:8A:99:F0:72:97:F2:91:E1:8F:D7:3A:15 X509v3 Authority Key Identifier: keyid:A4:E9:57:6C:E8:60:C8:FF:5F:97:2A:F5:93:B4:05:4E:78:23:E6:42 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9117E4D/A64FBCE0C05811E39D8A06645911EA32/pOlXbOhgyP9flyr1k7QFTngj5kI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/pOlXbOhgyP9flyr1k7QFTngj5kI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9117E4D/A64FBCE0C05811E39D8A06645911EA32/pOlXbOhgyP9flyr1k7QFTngj5kI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 2f:ca:d1:b0:26:37:ca:78:67:09:3a:9e:f8:6f:9f:5c:be:0e: c1:7f:4d:b5:77:fe:cd:8e:f0:77:58:0c:d7:6c:0d:6f:52:ab: 33:55:8e:8c:d4:ce:fd:f5:ce:c2:0e:3b:87:b7:36:5f:35:18: f9:a2:d4:08:53:d2:2e:7d:66:17:94:a1:b2:da:a4:37:45:b8: f7:f7:27:ea:80:80:19:23:8e:7f:31:4f:e8:34:98:e1:9a:68: 64:c4:4e:2a:f8:9d:aa:fc:9e:f8:dd:c4:75:ed:3c:77:34:c1: 6b:56:e9:57:a0:f9:10:8c:79:00:34:4b:91:b0:55:ab:73:93: fc:5d:a1:84:1b:89:c1:bc:96:0d:75:ae:be:68:f1:82:61:57: e3:a6:6d:2b:c9:ef:bb:cd:7b:fb:44:65:b3:a3:94:84:e1:1a: c6:fd:76:62:c9:de:ca:40:c1:13:f6:f8:6d:88:4b:13:fd:4f: 3e:e9:1f:f9:fd:ae:6d:f5:aa:12:98:b5:92:9b:93:42:2c:6d: 62:b4:e0:dc:4b:d4:6d:6e:e7:f1:52:b7:3b:3d:eb:d8:9c:c0: 39:e4:26:fa:8e:86:87:a4:c5:a8:42:2f:15:35:7d:0b:f0:36: 45:ea:fa:dd:86:82:22:88:a0:77:a5:8b:38:b5:01:92:ac:1a: 0f:72:8f:49 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICLD0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MTdFNEQxMTAvBgNVBAUTKEE0RTk1NzZDRTg2MEM4RkY1Rjk3MkFGNTkzQjQwNTRF NzgyM0U2NDIwHhcNMjUwNjA0MTQyNTU1WhcNMjUwNjExMTQyNTU1WjAYMRYwFAYD VQQDEw02ODQwNTc3NC1mYTcwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwX+qDIq6WVvDMv2ylSmUD0okoKt+wIIyf4PeYvEXFN/bMXYNpQYG/RQZ+I5b xqSiU9CsAasw7Cg2ZjQZoUxOxYr3EKCoQ65bPM9f6KrjdFLzCJmNvblshfKg6OpU b97jGz/77SmZzWnQDQenn+TJFhGrmNaOM+GEkYQ4qe/a0QDIVvcTiuoHibIKIKfR 15r84Lj5z2izBIsUAi6AqsIbcllIQ5jEbF+gA/Sj2KkC6fAOby7nH44oEoc04rq9 LLhQhXuy2qKw9i4G1vT0CXdpMd8rZ5cmQ0WyY4LrdRQJ7bIMdDyGDnOFfZt/DXTF 7i5s8Snj+p4empKVWtfHlK0VXwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFPHBc3rX Y4hhipnwcpfykeGP1zoVMB8GA1UdIwQYMBaAFKTpV2zoYMj/X5cq9ZO0BU54I+ZC MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExN0U0RC9BNjRGQkNFMEMw NTgxMUUzOUQ4QTA2NjQ1OTExRUEzMi9wT2xYYk9oZ3lQOWZseXIxazdRRlRuZ2o1 a0kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzMjJBNUY0MUQ2NjExRTJBM0YyN0Y3Qzcy RkQxRkYyL3BPbFhiT2hneVA5Zmx5cjFrN1FGVG5najVrSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx N0U0RC9BNjRGQkNFMEMwNTgxMUUzOUQ4QTA2NjQ1OTExRUEzMi9wT2xYYk9oZ3lQ OWZseXIxazdRRlRuZ2o1a0kubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAvytGwJjfKeGcJOp74b59cvg7Bf021d/7NjvB3WAzXbA1vUqszVY6M 1M799c7CDjuHtzZfNRj5otQIU9IufWYXlKGy2qQ3Rbj39yfqgIAZI45/MU/oNJjh mmhkxE4q+J2q/J743cR17Tx3NMFrVulXoPkQjHkANEuRsFWrc5P8XaGEG4nBvJYN da6+aPGCYVfjpm0rye+7zXv7RGWzo5SE4RrG/XZiyd7KQMET9vhtiEsT/U8+6R/5 /a5t9aoSmLWSm5NCLG1itODcS9RtbufxUrc7PevYnMA55Cb6joaHpMWoQi8VNX0L 8DZF6vrdhoIiiKB3pYs4tQGSrBoPco9J -----END CERTIFICATE-----Generated at Thu Jun 5 19:23:59 2025 by rpki-client