$ rpki-client -vvf rpki.apnic.net/member_repository/A9150B47/DA1755781DA311E2BED7789908B02CD2/PkPgI8CFNZTq13soKJo_HxDDCR0.mft File: PkPgI8CFNZTq13soKJo_HxDDCR0.mft (raw, json) Hash identifier: WRB5PMjbKPt41WR/Zx9uTcTResM6aZpHlUSo5vgDFlA= Subject key identifier: 0A:CA:C0:C5:7C:3C:58:65:4E:CE:4D:C0:EA:46:A2:2C:2A:53:3C:D8 Authority key identifier: 3E:43:E0:23:C0:85:35:94:EA:D7:7B:28:28:9A:3F:1F:10:C3:09:1D Certificate issuer: /CN=A9150B47/serialNumber=3E43E023C0853594EAD77B28289A3F1F10C3091D Certificate serial: 34BB Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PkPgI8CFNZTq13soKJo_HxDDCR0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9150B47/DA1755781DA311E2BED7789908B02CD2/PkPgI8CFNZTq13soKJo_HxDDCR0.mft Manifest number: 34B8 Signing time: Thu 18 Sep 2025 15:11:58 +0000 Manifest this update: Thu 18 Sep 2025 15:11:58 +0000 Manifest next update: Thu 25 Sep 2025 15:11:58 +0000 Files and hashes: 1: PkPgI8CFNZTq13soKJo_HxDDCR0.crl (hash: QJnQM2Af/atGa3afMXNlLvzTMVjc7NKiLaLYcEAFgUg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9150B47/DA1755781DA311E2BED7789908B02CD2/PkPgI8CFNZTq13soKJo_HxDDCR0.crl rsync://rpki.apnic.net/member_repository/A9150B47/DA1755781DA311E2BED7789908B02CD2/PkPgI8CFNZTq13soKJo_HxDDCR0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PkPgI8CFNZTq13soKJo_HxDDCR0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 25 Sep 2025 15:11:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13499 (0x34bb) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9150B47, serialNumber=3E43E023C0853594EAD77B28289A3F1F10C3091D Validity Not Before: Sep 18 15:11:58 2025 GMT Not After : Sep 25 15:11:58 2025 GMT Subject: CN=68cc213e-e584 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:39:2a:46:a2:a8:23:e0:a3:0a:86:b1:ef:98: 01:c2:d6:3a:d9:65:4f:07:93:3f:b3:27:86:4d:d9: 1f:42:a1:16:0b:7a:de:24:b0:21:6f:20:ed:63:d1: 45:71:52:60:fb:87:cb:ce:76:bf:5e:55:d5:b7:c4: 9e:9f:21:01:69:2f:64:26:93:df:55:e4:34:59:55: 07:72:22:f7:64:31:08:95:f8:94:b9:a7:21:5c:ff: 19:0c:20:80:af:ff:92:71:27:68:e0:7d:b7:64:1b: a1:48:cb:20:67:93:78:45:fc:b6:fe:37:8e:40:ba: a4:ca:62:42:39:1f:9a:43:86:48:25:5c:a6:2d:61: f4:ea:65:e4:1e:1e:6a:80:6d:ce:6c:4c:88:83:a1: a4:a4:27:e9:bb:00:7f:9f:b6:8f:82:5b:8e:08:af: 73:98:72:a1:d0:ea:09:77:b4:0d:4f:63:96:a2:ff: 6e:7a:dd:03:a5:5b:93:c5:e1:b7:ba:be:51:bd:5e: e1:02:5f:49:cb:ab:a9:b4:06:de:fd:ae:66:41:aa: ff:d3:72:a6:5c:be:84:99:e7:57:7f:43:a0:c2:46: 74:4f:fa:1a:ff:4d:4f:6d:a8:21:d9:30:07:88:6d: 07:ce:6e:cd:25:7a:1e:71:f7:4f:9e:6f:62:46:28: 0a:e5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0A:CA:C0:C5:7C:3C:58:65:4E:CE:4D:C0:EA:46:A2:2C:2A:53:3C:D8 X509v3 Authority Key Identifier: keyid:3E:43:E0:23:C0:85:35:94:EA:D7:7B:28:28:9A:3F:1F:10:C3:09:1D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9150B47/DA1755781DA311E2BED7789908B02CD2/PkPgI8CFNZTq13soKJo_HxDDCR0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PkPgI8CFNZTq13soKJo_HxDDCR0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9150B47/DA1755781DA311E2BED7789908B02CD2/PkPgI8CFNZTq13soKJo_HxDDCR0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 5e:89:9b:b9:93:06:ab:04:6e:80:0a:7a:f8:53:88:2a:5a:47: 89:5e:94:7b:bc:07:4a:eb:5e:d1:94:8b:56:99:c8:bd:83:0a: 96:67:d8:c1:8c:60:98:ad:8b:2e:d2:31:95:60:5c:90:c2:df: 38:2c:57:50:4d:62:67:ba:8d:59:d6:c8:0d:46:00:8f:54:ec: e6:73:32:e9:63:0f:b8:e1:69:f4:ec:e1:74:85:f9:c0:07:d4: 2a:d2:c5:3e:61:0e:6d:01:ac:58:18:9b:af:ae:4c:78:b1:d5: d0:26:8f:2a:45:b0:f7:42:41:eb:03:4d:73:6f:90:31:2d:46: 8e:f8:db:2e:d5:3e:21:4c:f3:f6:37:4f:15:98:21:ff:8a:2f: 4f:dc:ba:bd:9a:f6:f9:ea:e9:75:93:02:ab:4d:2a:fb:21:c8: 94:e7:8e:ec:d5:94:4b:95:e4:bd:24:cb:19:e7:a8:1e:8c:cd: e5:aa:c2:c3:cd:0b:03:be:f4:65:d0:35:59:2c:36:a4:25:9c: 75:e8:ed:d2:7d:94:33:10:76:23:9f:77:84:fb:00:08:16:cd: 51:3c:7b:2e:45:ec:74:c0:52:3b:a1:60:51:0a:21:56:2e:18: 0a:8f:7a:77:e2:72:48:f6:c8:31:48:80:4d:cb:3b:10:c8:1f: 26:77:61:88 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICNLswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTBCNDcxMTAvBgNVBAUTKDNFNDNFMDIzQzA4NTM1OTRFQUQ3N0IyODI4OUEzRjFG MTBDMzA5MUQwHhcNMjUwOTE4MTUxMTU4WhcNMjUwOTI1MTUxMTU4WjAYMRYwFAYD VQQDEw02OGNjMjEzZS1lNTg0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtDkqRqKoI+CjCoax75gBwtY62WVPB5M/syeGTdkfQqEWC3reJLAhbyDtY9FF cVJg+4fLzna/XlXVt8SenyEBaS9kJpPfVeQ0WVUHciL3ZDEIlfiUuachXP8ZDCCA r/+ScSdo4H23ZBuhSMsgZ5N4Rfy2/jeOQLqkymJCOR+aQ4ZIJVymLWH06mXkHh5q gG3ObEyIg6GkpCfpuwB/n7aPgluOCK9zmHKh0OoJd7QNT2OWov9uet0DpVuTxeG3 ur5RvV7hAl9Jy6uptAbe/a5mQar/03KmXL6EmedXf0OgwkZ0T/oa/01Pbagh2TAH iG0Hzm7NJXoecfdPnm9iRigK5QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFArKwMV8 PFhlTs5NwOpGoiwqUzzYMB8GA1UdIwQYMBaAFD5D4CPAhTWU6td7KCiaPx8Qwwkd MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1MEI0Ny9EQTE3NTU3ODFE QTMxMUUyQkVENzc4OTkwOEIwMkNEMi9Qa1BnSThDRk5aVHExM3NvS0pvX0h4RERD UjAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1BrUGdJOENGTlpUcTEzc29LSm9fSHhERENSMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 MEI0Ny9EQTE3NTU3ODFEQTMxMUUyQkVENzc4OTkwOEIwMkNEMi9Qa1BnSThDRk5a VHExM3NvS0pvX0h4RERDUjAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBeiZu5kwarBG6ACnr4U4gqWkeJXpR7vAdK617RlItWmci9gwqWZ9jB jGCYrYsu0jGVYFyQwt84LFdQTWJnuo1Z1sgNRgCPVOzmczLpYw+44Wn07OF0hfnA B9Qq0sU+YQ5tAaxYGJuvrkx4sdXQJo8qRbD3QkHrA01zb5AxLUaO+Nsu1T4hTPP2 N08VmCH/ii9P3Lq9mvb56ul1kwKrTSr7IciU547s1ZRLleS9JMsZ56gejM3lqsLD zQsDvvRl0DVZLDakJZx16O3SfZQzEHYjn3eE+wAIFs1RPHsuRex0wFI7oWBRCiFW LhgKj3p34nJI9sgxSIBNyzsQyB8md2GI -----END CERTIFICATE-----Generated at Thu Sep 18 20:22:48 2025 by rpki-client