$ rpki-client -vvf rpki.apnic.net/member_repository/A9126D40/3C6333C6F3F311EBA292E580C4F9AE02/pxA_0z9simRI_GOUCql9k_gfgQU.mft File: pxA_0z9simRI_GOUCql9k_gfgQU.mft (raw, json) Hash identifier: 9/wXngW7Xg7sQeBO8oGi9mIaEv6OdgDHsBrJ/63KxjM= Subject key identifier: 45:9C:A4:1E:C0:1B:59:B0:D3:72:91:C0:31:D7:0B:1A:49:67:07:9A Authority key identifier: A7:10:3F:D3:3F:6C:8A:64:48:FC:63:94:0A:A9:7D:93:F8:1F:81:05 Certificate issuer: /CN=A9126D40/serialNumber=A7103FD33F6C8A6448FC63940AA97D93F81F8105 Certificate serial: 0542 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pxA_0z9simRI_GOUCql9k_gfgQU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9126D40/3C6333C6F3F311EBA292E580C4F9AE02/pxA_0z9simRI_GOUCql9k_gfgQU.mft Manifest number: 053E Signing time: Fri 30 May 2025 23:38:49 +0000 Manifest this update: Fri 30 May 2025 23:38:49 +0000 Manifest next update: Fri 06 Jun 2025 23:38:48 +0000 Files and hashes: 1: pxA_0z9simRI_GOUCql9k_gfgQU.crl (hash: wQ5qg7zF+JYfHjKowI/zBkEwsEUEHWpdRA+R1kiVh+Y=) 2: 5B0A7AFCF3F611EB8DD81585C4F9AE02.roa (hash: mmb+6qMWLAl/o5ujhFGq4lHoA5XfllDMtxdPhnJR8HM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9126D40/3C6333C6F3F311EBA292E580C4F9AE02/pxA_0z9simRI_GOUCql9k_gfgQU.crl rsync://rpki.apnic.net/member_repository/A9126D40/3C6333C6F3F311EBA292E580C4F9AE02/pxA_0z9simRI_GOUCql9k_gfgQU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pxA_0z9simRI_GOUCql9k_gfgQU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 06 Jun 2025 23:38:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1346 (0x542) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9126D40, serialNumber=A7103FD33F6C8A6448FC63940AA97D93F81F8105 Validity Not Before: May 30 23:38:49 2025 GMT Not After : Jun 6 23:38:48 2025 GMT Subject: CN=683a4189-95fd Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dc:3e:7d:05:3b:be:37:4a:8d:5e:bd:8e:84:29: f3:85:16:18:fc:6f:f8:06:46:23:af:5a:e6:9e:a4: 7e:97:bf:47:da:16:75:df:38:ae:d2:34:11:06:ff: 0d:f7:a2:c2:b7:37:62:92:eb:a0:a5:f6:b4:c9:a7: a4:aa:fa:03:ac:c3:5a:47:e9:63:1e:6d:d6:ed:ac: 3a:5d:e6:85:ca:a1:3a:9a:f7:ff:43:b6:50:48:06: ef:de:9f:9d:8f:7b:c2:b8:d7:90:6f:3c:5a:67:e0: e8:dd:32:d3:ec:be:a1:d6:b0:2d:ae:00:e3:b7:40: cf:39:09:fe:b6:68:10:17:03:d4:a3:24:d4:85:ba: 65:0b:80:a1:eb:d1:55:6d:a7:d5:93:e7:5c:b1:7e: 15:14:a7:19:09:fc:7a:5b:73:9a:36:5c:31:36:5f: 65:aa:0a:1d:a6:b1:2b:d8:0f:05:06:fc:ed:99:1d: 03:2b:60:9d:45:29:ab:31:dc:41:5e:5b:28:6b:f3: a9:b0:a0:ac:e7:2b:58:03:0f:75:36:6e:61:ab:84: 53:33:45:77:21:c1:43:5d:89:05:ab:ae:ff:c2:1b: 55:28:28:51:e1:6f:a6:92:7e:0c:69:d2:a4:5c:10: d5:5b:4c:46:ae:10:7e:3f:61:3a:fe:0c:40:68:64: 47:e9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 45:9C:A4:1E:C0:1B:59:B0:D3:72:91:C0:31:D7:0B:1A:49:67:07:9A X509v3 Authority Key Identifier: keyid:A7:10:3F:D3:3F:6C:8A:64:48:FC:63:94:0A:A9:7D:93:F8:1F:81:05 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9126D40/3C6333C6F3F311EBA292E580C4F9AE02/pxA_0z9simRI_GOUCql9k_gfgQU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pxA_0z9simRI_GOUCql9k_gfgQU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9126D40/3C6333C6F3F311EBA292E580C4F9AE02/pxA_0z9simRI_GOUCql9k_gfgQU.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 20:57:11:e1:24:19:67:79:f0:f3:49:24:93:ce:b1:99:1c:72: 63:bd:9b:9a:ba:5c:a4:e2:89:59:25:a1:3c:b8:e3:a3:6b:d0: 61:6e:f7:08:d8:d9:be:06:e6:d1:ca:0f:7a:c6:7c:73:5e:21: 61:ef:0f:a9:19:8d:02:99:db:e6:97:6d:8a:cb:72:38:e3:d6: 7f:41:15:23:76:89:cd:d6:a0:26:f6:81:be:2c:19:04:c0:d5: 4b:ce:f4:e8:44:f2:b3:39:67:74:79:3a:7b:34:57:50:a9:1f: dd:8a:36:32:59:ee:8d:7e:71:5b:18:48:51:98:a2:06:db:83: 85:22:ed:79:ab:20:55:3e:d2:d8:47:b3:3a:fe:98:ca:86:bd: c4:42:fb:21:e1:11:b5:16:6d:e2:6f:94:88:04:45:bd:06:f8: e2:a4:b0:47:9b:98:33:36:f5:22:20:67:c0:61:87:37:f3:c3: 6f:f5:7b:91:30:f2:cc:38:c3:b9:b3:9f:33:e8:20:b5:91:5e: b4:f8:6b:c5:15:d0:d4:b5:bc:d6:a7:33:7b:7f:43:60:61:1c: 13:87:c7:e9:8e:e5:1a:08:c1:d2:c7:bc:3b:44:df:da:d8:e3: d9:96:65:25:1e:8d:af:39:1d:99:33:24:ac:60:07:99:fa:0c: bc:b5:69:8b -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBUIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MjZENDAxMTAvBgNVBAUTKEE3MTAzRkQzM0Y2QzhBNjQ0OEZDNjM5NDBBQTk3RDkz RjgxRjgxMDUwHhcNMjUwNTMwMjMzODQ5WhcNMjUwNjA2MjMzODQ4WjAYMRYwFAYD VQQDEw02ODNhNDE4OS05NWZkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA3D59BTu+N0qNXr2OhCnzhRYY/G/4BkYjr1rmnqR+l79H2hZ13ziu0jQRBv8N 96LCtzdikuugpfa0yaekqvoDrMNaR+ljHm3W7aw6XeaFyqE6mvf/Q7ZQSAbv3p+d j3vCuNeQbzxaZ+Do3TLT7L6h1rAtrgDjt0DPOQn+tmgQFwPUoyTUhbplC4Ch69FV bafVk+dcsX4VFKcZCfx6W3OaNlwxNl9lqgodprEr2A8FBvztmR0DK2CdRSmrMdxB Xlsoa/OpsKCs5ytYAw91Nm5hq4RTM0V3IcFDXYkFq67/whtVKChR4W+mkn4MadKk XBDVW0xGrhB+P2E6/gxAaGRH6QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFEWcpB7A G1mw03KRwDHXCxpJZweaMB8GA1UdIwQYMBaAFKcQP9M/bIpkSPxjlAqpfZP4H4EF MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyNkQ0MC8zQzYzMzNDNkYz RjMxMUVCQTI5MkU1ODBDNEY5QUUwMi9weEFfMHo5c2ltUklfR09VQ3FsOWtfZ2Zn UVUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3B4QV8wejlzaW1SSV9HT1VDcWw5a19nZmdRVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy NkQ0MC8zQzYzMzNDNkYzRjMxMUVCQTI5MkU1ODBDNEY5QUUwMi9weEFfMHo5c2lt UklfR09VQ3FsOWtfZ2ZnUVUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAgVxHhJBlnefDzSSSTzrGZHHJjvZuaulyk4olZJaE8uOOja9BhbvcI 2Nm+BubRyg96xnxzXiFh7w+pGY0Cmdvml22Ky3I449Z/QRUjdonN1qAm9oG+LBkE wNVLzvToRPKzOWd0eTp7NFdQqR/dijYyWe6NfnFbGEhRmKIG24OFIu15qyBVPtLY R7M6/pjKhr3EQvsh4RG1Fm3ib5SIBEW9BvjipLBHm5gzNvUiIGfAYYc388Nv9XuR MPLMOMO5s58z6CC1kV60+GvFFdDUtbzWpzN7f0NgYRwTh8fpjuUaCMHSx7w7RN/a 2OPZlmUlHo2vOR2ZMySsYAeZ+gy8tWmL -----END CERTIFICATE-----Generated at Sat May 31 17:32:52 2025 by rpki-client