$ rpki-client -vvf rpki.apnic.net/member_repository/A9143CB3/1516679E259D11E785D3250AC4F9AE02/PFRw6B-koZCHAh0K130zbOvipo0.mft File: PFRw6B-koZCHAh0K130zbOvipo0.mft (raw, json) Hash identifier: Vri7aQf4VPsfOIjAMSXwgreQRynVNvLO4Tynrj9QCQc= Subject key identifier: 33:27:D8:8A:86:C4:20:BC:56:E7:A3:1F:53:57:F0:81:30:CA:06:4F Authority key identifier: 3C:54:70:E8:1F:A4:A1:90:87:02:1D:0A:D7:7D:33:6C:EB:E2:A6:8D Certificate issuer: /CN=A9143CB3/serialNumber=3C5470E81FA4A19087021D0AD77D336CEBE2A68D Certificate serial: 1B16 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/PFRw6B-koZCHAh0K130zbOvipo0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9143CB3/1516679E259D11E785D3250AC4F9AE02/PFRw6B-koZCHAh0K130zbOvipo0.mft Manifest number: 1B13 Signing time: Sat 06 Sep 2025 16:22:08 +0000 Manifest this update: Sat 06 Sep 2025 16:22:08 +0000 Manifest next update: Sat 13 Sep 2025 16:22:08 +0000 Files and hashes: 1: PFRw6B-koZCHAh0K130zbOvipo0.crl (hash: UCusG52Ag9Ko2WrgjnNcv+7gZBL0h8xzgj6hMksLwV0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9143CB3/1516679E259D11E785D3250AC4F9AE02/PFRw6B-koZCHAh0K130zbOvipo0.crl rsync://rpki.apnic.net/member_repository/A9143CB3/1516679E259D11E785D3250AC4F9AE02/PFRw6B-koZCHAh0K130zbOvipo0.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/PFRw6B-koZCHAh0K130zbOvipo0.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 13 Sep 2025 16:22:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6934 (0x1b16) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9143CB3, serialNumber=3C5470E81FA4A19087021D0AD77D336CEBE2A68D Validity Not Before: Sep 6 16:22:08 2025 GMT Not After : Sep 13 16:22:08 2025 GMT Subject: CN=68bc5fb0-16db Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:df:ee:ae:fb:14:bf:f8:c2:bc:fb:d9:58:af:d8: bd:ad:7c:c9:28:bb:f3:fe:65:89:26:ec:0c:45:54: f8:57:a9:6d:97:3b:38:3e:c8:cb:c5:27:89:34:6f: b3:db:bc:5b:8a:26:59:c1:ee:b7:bb:63:85:95:22: 3c:e1:26:09:ca:23:c4:e8:99:2d:52:f9:20:96:c8: ee:d0:07:f0:fd:0e:94:53:6d:11:c9:4d:42:78:13: 67:12:8a:1e:cd:0a:fe:5f:a0:3f:0e:32:76:76:68: dd:f6:88:81:64:4c:1b:8c:07:25:da:cf:ef:9a:d9: ce:c0:fa:03:94:d3:b4:82:12:65:c3:88:42:35:02: 50:b3:04:3c:8e:a0:29:74:16:f0:90:e1:3a:a9:34: e4:7a:d8:09:6e:d4:4f:1e:1b:63:97:9f:82:7b:a3: 06:e3:a9:6c:be:d7:79:f2:dc:a3:30:53:f9:c0:84: 2a:bb:94:2c:3d:34:ae:6c:4c:9f:92:a2:19:0d:be: 90:fb:c1:2c:73:19:97:b6:c2:4a:86:f6:39:a3:08: 61:0f:11:68:cf:d2:77:a4:47:c0:54:1c:ae:3a:73: e7:1a:46:84:6d:53:51:64:8a:5c:94:fd:9f:be:b8: 56:36:b9:ed:b8:e4:97:c8:6f:cf:39:ec:e6:63:02: 22:d3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 33:27:D8:8A:86:C4:20:BC:56:E7:A3:1F:53:57:F0:81:30:CA:06:4F X509v3 Authority Key Identifier: keyid:3C:54:70:E8:1F:A4:A1:90:87:02:1D:0A:D7:7D:33:6C:EB:E2:A6:8D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9143CB3/1516679E259D11E785D3250AC4F9AE02/PFRw6B-koZCHAh0K130zbOvipo0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/PFRw6B-koZCHAh0K130zbOvipo0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9143CB3/1516679E259D11E785D3250AC4F9AE02/PFRw6B-koZCHAh0K130zbOvipo0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a9:55:42:fa:e2:7e:05:d6:9a:74:da:dd:e9:5f:3e:66:a7:a3: 7c:aa:07:90:70:f6:3a:fe:05:2e:e4:57:81:e9:29:ce:d0:0e: d3:0d:8b:0b:eb:39:01:6c:43:bf:c1:02:0a:37:3b:10:26:b1: cd:0d:ad:4a:11:12:7c:5a:5e:87:55:64:25:18:b5:77:92:d7: f0:b9:4d:56:bb:d1:23:be:a1:53:fd:96:c6:62:5f:e9:59:2f: 7b:18:89:ad:cc:0c:a3:21:a1:01:14:e7:b0:e2:f3:77:05:e6: 77:7a:58:1f:d7:ea:49:b8:b1:24:ab:2c:fe:e9:f6:6c:5c:de: 49:25:3e:8c:15:0e:a2:d9:89:48:7a:39:64:8f:96:6f:a1:8d: 61:ab:72:a4:d0:2e:9f:9b:40:75:2e:6f:10:1b:22:78:82:0e: 6d:27:95:23:fd:da:8c:3a:4a:6f:65:79:3a:25:b7:80:88:4d: 2f:5a:e7:1b:d3:65:ea:d4:fc:84:b6:d0:60:2d:f9:5a:4c:38: eb:88:e7:44:83:21:f0:4d:ff:6e:a8:ba:d8:ed:57:3b:65:b8: 0d:d4:9f:b8:f3:15:ab:35:a2:09:8e:3e:28:0d:23:96:d6:83: bc:c2:21:d9:90:a0:46:f0:da:2d:a7:a8:0e:f4:63:f0:76:34: 94:81:c3:82 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICGxYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDNDQjMxMTAvBgNVBAUTKDNDNTQ3MEU4MUZBNEExOTA4NzAyMUQwQUQ3N0QzMzZD RUJFMkE2OEQwHhcNMjUwOTA2MTYyMjA4WhcNMjUwOTEzMTYyMjA4WjAYMRYwFAYD VQQDEw02OGJjNWZiMC0xNmRiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA3+6u+xS/+MK8+9lYr9i9rXzJKLvz/mWJJuwMRVT4V6ltlzs4PsjLxSeJNG+z 27xbiiZZwe63u2OFlSI84SYJyiPE6JktUvkglsju0Afw/Q6UU20RyU1CeBNnEooe zQr+X6A/DjJ2dmjd9oiBZEwbjAcl2s/vmtnOwPoDlNO0ghJlw4hCNQJQswQ8jqAp dBbwkOE6qTTketgJbtRPHhtjl5+Ce6MG46lsvtd58tyjMFP5wIQqu5QsPTSubEyf kqIZDb6Q+8EscxmXtsJKhvY5owhhDxFoz9J3pEfAVByuOnPnGkaEbVNRZIpclP2f vrhWNrntuOSXyG/POezmYwIi0wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFDMn2IqG xCC8VuejH1NX8IEwygZPMB8GA1UdIwQYMBaAFDxUcOgfpKGQhwIdCtd9M2zr4qaN MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0M0NCMy8xNTE2Njc5RTI1 OUQxMUU3ODVEMzI1MEFDNEY5QUUwMi9QRlJ3NkIta29aQ0hBaDBLMTMwemJPdmlw bzAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL1BGUnc2Qi1rb1pDSEFoMEsxMzB6Yk92aXBvMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 M0NCMy8xNTE2Njc5RTI1OUQxMUU3ODVEMzI1MEFDNEY5QUUwMi9QRlJ3NkIta29a Q0hBaDBLMTMwemJPdmlwbzAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCpVUL64n4F1pp02t3pXz5mp6N8qgeQcPY6/gUu5FeB6SnO0A7TDYsL 6zkBbEO/wQIKNzsQJrHNDa1KERJ8Wl6HVWQlGLV3ktfwuU1Wu9EjvqFT/ZbGYl/p WS97GImtzAyjIaEBFOew4vN3BeZ3elgf1+pJuLEkqyz+6fZsXN5JJT6MFQ6i2YlI ejlkj5ZvoY1hq3Kk0C6fm0B1Lm8QGyJ4gg5tJ5Uj/dqMOkpvZXk6JbeAiE0vWucb 02Xq1PyEttBgLflaTDjriOdEgyHwTf9uqLrY7Vc7ZbgN1J+48xWrNaIJjj4oDSOW 1oO8wiHZkKBG8Notp6gO9GPwdjSUgcOC -----END CERTIFICATE-----Generated at Sat Sep 6 21:10:11 2025 by rpki-client