$ rpki-client -vvf rpki.apnic.net/member_repository/A913D0CA/B78873A245B811F084F36C5FC4F9AE02/pHTwjH8_SI1bkOEpmjSf8lHd4R8.mft File: pHTwjH8_SI1bkOEpmjSf8lHd4R8.mft (raw, json) Hash identifier: 1MH4D9XTOxGW27qSTVXvfmjC1fk+CWBrvhlbuy7RMUE= Subject key identifier: 02:2E:6C:D1:20:20:DD:E4:68:66:C7:85:C1:7C:37:6B:8B:D7:AD:E8 Authority key identifier: A4:74:F0:8C:7F:3F:48:8D:5B:90:E1:29:9A:34:9F:F2:51:DD:E1:1F Certificate issuer: /CN=A913D0CA/serialNumber=A474F08C7F3F488D5B90E1299A349FF251DDE11F Certificate serial: 0D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pHTwjH8_SI1bkOEpmjSf8lHd4R8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A913D0CA/B78873A245B811F084F36C5FC4F9AE02/pHTwjH8_SI1bkOEpmjSf8lHd4R8.mft Manifest number: 0D Signing time: Tue 01 Jul 2025 08:54:12 +0000 Manifest this update: Tue 01 Jul 2025 08:54:12 +0000 Manifest next update: Tue 08 Jul 2025 08:54:12 +0000 Files and hashes: 1: pHTwjH8_SI1bkOEpmjSf8lHd4R8.crl (hash: MRjnfdcs0wLUOrL4P9zP2tsRjzG5fjRGDtTD3Vw6Im4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A913D0CA/B78873A245B811F084F36C5FC4F9AE02/pHTwjH8_SI1bkOEpmjSf8lHd4R8.crl rsync://rpki.apnic.net/member_repository/A913D0CA/B78873A245B811F084F36C5FC4F9AE02/pHTwjH8_SI1bkOEpmjSf8lHd4R8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pHTwjH8_SI1bkOEpmjSf8lHd4R8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 08 Jul 2025 08:54:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13 (0xd) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A913D0CA, serialNumber=A474F08C7F3F488D5B90E1299A349FF251DDE11F Validity Not Before: Jul 1 08:54:12 2025 GMT Not After : Jul 8 08:54:12 2025 GMT Subject: CN=6863a234-f98c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a8:5d:34:6b:3a:bf:61:2f:a9:a5:73:60:7d:01: f9:d5:c4:46:1c:e9:c4:b1:0f:75:9d:fb:39:21:2d: 61:2c:37:95:88:33:05:7a:f6:36:b7:fa:63:09:1b: bb:55:8f:dd:60:4c:b4:ee:7f:c7:7f:15:fc:62:7e: ab:69:f2:8f:58:cc:3a:b8:1b:10:a0:46:59:9f:50: bf:fb:f5:99:2b:87:5e:49:3e:7d:af:f5:ab:ef:3b: e1:94:96:ad:a7:83:e8:5f:d1:61:a5:e2:db:46:07: 77:62:13:85:61:83:2a:c6:f1:03:1a:c1:49:d8:31: 2c:1e:e3:a9:11:1f:c6:5b:9a:2b:b4:76:e3:8f:4c: 2a:f4:b7:fa:6f:15:c4:ed:aa:87:9b:e8:05:d2:51: 94:ba:6b:78:62:15:bc:a1:d3:58:bf:fe:c8:83:1c: 15:0e:af:43:b8:87:59:40:0d:f2:09:d9:3a:39:3c: db:6f:ad:72:00:c4:9d:18:15:6b:08:98:84:64:67: 81:cf:16:02:ff:32:33:2c:65:5b:e0:3a:6b:d8:73: 49:dd:22:ac:90:d7:c2:4f:78:63:67:c7:bf:7a:3f: af:f8:13:f8:91:f1:44:29:bc:9c:05:d5:0f:88:2f: 23:f4:09:76:ce:97:bb:44:75:e6:c3:2d:19:e8:dc: 46:8b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 02:2E:6C:D1:20:20:DD:E4:68:66:C7:85:C1:7C:37:6B:8B:D7:AD:E8 X509v3 Authority Key Identifier: keyid:A4:74:F0:8C:7F:3F:48:8D:5B:90:E1:29:9A:34:9F:F2:51:DD:E1:1F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A913D0CA/B78873A245B811F084F36C5FC4F9AE02/pHTwjH8_SI1bkOEpmjSf8lHd4R8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pHTwjH8_SI1bkOEpmjSf8lHd4R8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A913D0CA/B78873A245B811F084F36C5FC4F9AE02/pHTwjH8_SI1bkOEpmjSf8lHd4R8.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a7:e4:4e:ed:21:66:ba:00:d3:c5:da:db:d5:f8:3f:5c:c5:86: db:05:ae:34:3d:77:0b:3a:84:e6:93:58:8e:56:7f:91:a5:ee: 66:d7:9a:d3:45:55:97:97:b0:6f:bb:8f:fa:93:1a:ad:aa:57: d8:df:f7:3e:61:76:3e:ea:64:9b:e9:b8:58:33:04:44:d2:6a: 15:9b:ba:97:40:f2:da:40:94:49:fa:58:01:31:cf:2f:2b:0b: 7f:e1:92:ea:c9:d9:88:ae:d6:63:48:85:d9:18:99:fe:9a:a3: 86:68:e4:c5:28:28:57:cc:5e:a2:4b:1f:8a:20:db:a2:f3:4e: 0a:e1:9e:81:e4:64:73:45:e6:3a:a5:5d:ce:6e:bd:b0:2d:b7: bf:da:e1:d0:82:08:ae:2c:55:d7:2e:8c:03:55:b7:a5:ba:16: f5:d1:4a:75:97:d3:52:a7:e1:b3:e9:bb:a7:eb:48:6f:03:85: 84:e5:7e:5d:5a:42:dd:1e:c2:66:cd:d7:71:b4:aa:43:56:ff: b1:07:41:22:85:dd:c7:e0:2f:12:97:e6:21:c1:c7:30:d3:c8: 69:6b:17:e7:d4:83:c3:c1:18:a8:0f:28:d2:b7:ed:f7:40:34: 92:07:b9:28:90:ee:88:a6:8b:4a:88:87:c8:d9:95:e1:fa:65: 8d:7b:a8:71 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBDTANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTEz RDBDQTExMC8GA1UEBRMoQTQ3NEYwOEM3RjNGNDg4RDVCOTBFMTI5OUEzNDlGRjI1 MURERTExRjAeFw0yNTA3MDEwODU0MTJaFw0yNTA3MDgwODU0MTJaMBgxFjAUBgNV BAMTDTY4NjNhMjM0LWY5OGMwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCoXTRrOr9hL6mlc2B9AfnVxEYc6cSxD3Wd+zkhLWEsN5WIMwV69ja3+mMJG7tV j91gTLTuf8d/Ffxifqtp8o9YzDq4GxCgRlmfUL/79Zkrh15JPn2v9avvO+GUlq2n g+hf0WGl4ttGB3diE4VhgyrG8QMawUnYMSwe46kRH8Zbmiu0duOPTCr0t/pvFcTt qoeb6AXSUZS6a3hiFbyh01i//siDHBUOr0O4h1lADfIJ2To5PNtvrXIAxJ0YFWsI mIRkZ4HPFgL/MjMsZVvgOmvYc0ndIqyQ18JPeGNnx796P6/4E/iR8UQpvJwF1Q+I LyP0CXbOl7tEdebDLRno3EaLAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUAi5s0SAg 3eRoZseFwXw3a4vXregwHwYDVR0jBBgwFoAUpHTwjH8/SI1bkOEpmjSf8lHd4R8w DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTNEMENBL0I3ODg3M0EyNDVC ODExRjA4NEYzNkM1RkM0RjlBRTAyL3BIVHdqSDhfU0kxYmtPRXBtalNmOGxIZDRS OC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvcEhUd2pIOF9TSTFia09FcG1qU2Y4bEhkNFI4LmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTNE MENBL0I3ODg3M0EyNDVCODExRjA4NEYzNkM1RkM0RjlBRTAyL3BIVHdqSDhfU0kx YmtPRXBtalNmOGxIZDRSOC5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAKfkTu0hZroA08Xa29X4P1zFhtsFrjQ9dws6hOaTWI5Wf5Gl7mbXmtNF VZeXsG+7j/qTGq2qV9jf9z5hdj7qZJvpuFgzBETSahWbupdA8tpAlEn6WAExzy8r C3/hkurJ2Yiu1mNIhdkYmf6ao4Zo5MUoKFfMXqJLH4og26LzTgrhnoHkZHNF5jql Xc5uvbAtt7/a4dCCCK4sVdcujANVt6W6FvXRSnWX01Kn4bPpu6frSG8DhYTlfl1a Qt0ewmbN13G0qkNW/7EHQSKF3cfgLxKX5iHBxzDTyGlrF+fUg8PBGKgPKNK37fdA NJIHuSiQ7oimi0qIh8jZleH6ZY17qHE= -----END CERTIFICATE-----Generated at Tue Jul 1 19:02:38 2025 by rpki-client