$ rpki-client -vvf rpki.apnic.net/member_repository/A9150B47/DA1755781DA311E2BED7789908B02CD2/PkPgI8CFNZTq13soKJo_HxDDCR0.mft File: PkPgI8CFNZTq13soKJo_HxDDCR0.mft (raw, json) Hash identifier: FsLh+zI3Pk2tFHNaEKghWsTit9vcJ2Uk7bt56reprfM= Subject key identifier: 1E:E3:38:35:36:D4:59:22:8F:2D:C4:A4:FB:26:6C:21:6F:71:A2:54 Authority key identifier: 3E:43:E0:23:C0:85:35:94:EA:D7:7B:28:28:9A:3F:1F:10:C3:09:1D Certificate issuer: /CN=A9150B47/serialNumber=3E43E023C0853594EAD77B28289A3F1F10C3091D Certificate serial: 3482 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PkPgI8CFNZTq13soKJo_HxDDCR0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9150B47/DA1755781DA311E2BED7789908B02CD2/PkPgI8CFNZTq13soKJo_HxDDCR0.mft Manifest number: 347F Signing time: Fri 30 May 2025 15:13:15 +0000 Manifest this update: Fri 30 May 2025 15:13:15 +0000 Manifest next update: Fri 06 Jun 2025 15:13:15 +0000 Files and hashes: 1: PkPgI8CFNZTq13soKJo_HxDDCR0.crl (hash: raQ1J/MDBCb3oldXawC4JrTgZiZy9ZCd2jr6YHDhbXY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9150B47/DA1755781DA311E2BED7789908B02CD2/PkPgI8CFNZTq13soKJo_HxDDCR0.crl rsync://rpki.apnic.net/member_repository/A9150B47/DA1755781DA311E2BED7789908B02CD2/PkPgI8CFNZTq13soKJo_HxDDCR0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PkPgI8CFNZTq13soKJo_HxDDCR0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 06 Jun 2025 15:13:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13442 (0x3482) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9150B47, serialNumber=3E43E023C0853594EAD77B28289A3F1F10C3091D Validity Not Before: May 30 15:13:15 2025 GMT Not After : Jun 6 15:13:15 2025 GMT Subject: CN=6839cb0b-3c1e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:af:d7:9b:50:c7:78:c3:15:a3:0e:f9:66:3b:2d: 63:1e:d8:48:bd:77:ad:09:c7:32:51:22:d4:a5:a9: 3c:d5:3d:ea:99:bd:06:f8:59:4c:52:24:fd:92:f0: e9:14:88:3a:42:41:b1:09:68:7a:2a:6c:df:07:9a: f8:bf:dc:04:76:2b:2a:84:03:4a:19:3a:09:ad:cd: a6:02:33:c9:2f:18:32:1f:62:2d:c8:59:12:31:b7: 3c:65:74:04:ab:7d:2d:00:f1:70:c4:e6:a7:8d:33: 93:ac:19:cb:d9:aa:86:09:62:1f:fe:aa:f7:1c:ae: 10:bf:65:c4:7d:de:70:b6:0a:ae:ad:10:97:72:be: 12:d9:9f:a2:19:9c:75:10:a8:9f:f2:34:41:c4:50: af:7f:7c:ff:41:78:16:cf:e8:a2:b6:46:e2:d5:b5: fd:db:9a:31:fa:3b:5c:43:7d:97:ec:73:6b:7e:07: 77:5a:83:63:3b:16:dd:75:9c:69:d2:c4:14:5c:ca: 9e:a9:97:44:8a:fd:2c:c7:e0:65:ff:3d:7c:93:59: 6c:d0:70:46:1b:46:46:44:a2:ad:73:32:73:62:4d: 2a:ac:3b:7d:48:c4:1c:de:f3:f3:fa:0e:aa:ae:40: ee:3e:1f:ee:36:fb:5b:ea:6c:03:bf:63:27:7d:c1: 14:27 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1E:E3:38:35:36:D4:59:22:8F:2D:C4:A4:FB:26:6C:21:6F:71:A2:54 X509v3 Authority Key Identifier: keyid:3E:43:E0:23:C0:85:35:94:EA:D7:7B:28:28:9A:3F:1F:10:C3:09:1D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9150B47/DA1755781DA311E2BED7789908B02CD2/PkPgI8CFNZTq13soKJo_HxDDCR0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PkPgI8CFNZTq13soKJo_HxDDCR0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9150B47/DA1755781DA311E2BED7789908B02CD2/PkPgI8CFNZTq13soKJo_HxDDCR0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 6e:e0:f3:57:05:6f:9f:08:c8:9c:1e:ba:64:91:6e:ca:a0:4c: 78:d4:d8:e8:8e:67:28:1a:c1:e9:fb:62:60:c2:99:85:ba:59: ed:f7:6b:ba:1b:f0:7c:06:0d:5a:ea:7e:ce:9a:d2:5e:b0:f1: b1:17:88:e7:50:64:73:fa:81:fe:26:2f:a4:fc:4c:b8:f1:5c: d3:95:03:9c:36:bf:22:88:9a:43:15:aa:c7:76:65:1f:34:1c: dc:92:20:dc:5d:d7:8e:f1:43:f1:36:2d:9d:7c:d9:ca:14:de: 0c:1c:76:c9:03:b2:32:7a:9a:13:a8:42:e3:f5:e8:f9:73:df: da:31:28:6e:d4:16:a0:d0:de:41:8a:9e:d9:96:b4:be:ee:d1: 3c:9e:1c:b4:60:9b:e5:22:48:9a:c7:71:f1:5b:ca:c4:68:78: fa:a9:e5:22:98:7b:39:5d:45:22:d2:54:6f:e2:1d:53:11:bc: a0:47:8c:fd:4c:93:db:df:35:72:98:f0:39:97:b5:cd:ed:0d: 61:e1:90:fb:b3:14:7f:99:70:d7:75:ac:4d:88:ca:4e:0c:d2: 80:88:4b:43:70:0f:04:d0:37:63:1a:5e:60:94:ee:b6:05:3a: b5:e1:51:21:38:d9:18:6f:47:f0:1e:00:e9:d1:73:49:9b:b9: b2:d0:ab:6a -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICNIIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTBCNDcxMTAvBgNVBAUTKDNFNDNFMDIzQzA4NTM1OTRFQUQ3N0IyODI4OUEzRjFG MTBDMzA5MUQwHhcNMjUwNTMwMTUxMzE1WhcNMjUwNjA2MTUxMzE1WjAYMRYwFAYD VQQDEw02ODM5Y2IwYi0zYzFlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAr9ebUMd4wxWjDvlmOy1jHthIvXetCccyUSLUpak81T3qmb0G+FlMUiT9kvDp FIg6QkGxCWh6KmzfB5r4v9wEdisqhANKGToJrc2mAjPJLxgyH2ItyFkSMbc8ZXQE q30tAPFwxOanjTOTrBnL2aqGCWIf/qr3HK4Qv2XEfd5wtgqurRCXcr4S2Z+iGZx1 EKif8jRBxFCvf3z/QXgWz+iitkbi1bX925ox+jtcQ32X7HNrfgd3WoNjOxbddZxp 0sQUXMqeqZdEiv0sx+Bl/z18k1ls0HBGG0ZGRKKtczJzYk0qrDt9SMQc3vPz+g6q rkDuPh/uNvtb6mwDv2MnfcEUJwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFB7jODU2 1Fkijy3EpPsmbCFvcaJUMB8GA1UdIwQYMBaAFD5D4CPAhTWU6td7KCiaPx8Qwwkd MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1MEI0Ny9EQTE3NTU3ODFE QTMxMUUyQkVENzc4OTkwOEIwMkNEMi9Qa1BnSThDRk5aVHExM3NvS0pvX0h4RERD UjAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1BrUGdJOENGTlpUcTEzc29LSm9fSHhERENSMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 MEI0Ny9EQTE3NTU3ODFEQTMxMUUyQkVENzc4OTkwOEIwMkNEMi9Qa1BnSThDRk5a VHExM3NvS0pvX0h4RERDUjAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBu4PNXBW+fCMicHrpkkW7KoEx41NjojmcoGsHp+2JgwpmFulnt92u6 G/B8Bg1a6n7OmtJesPGxF4jnUGRz+oH+Ji+k/Ey48VzTlQOcNr8iiJpDFarHdmUf NBzckiDcXdeO8UPxNi2dfNnKFN4MHHbJA7IyepoTqELj9ej5c9/aMShu1Bag0N5B ip7ZlrS+7tE8nhy0YJvlIkiax3HxW8rEaHj6qeUimHs5XUUi0lRv4h1TEbygR4z9 TJPb3zVymPA5l7XN7Q1h4ZD7sxR/mXDXdaxNiMpODNKAiEtDcA8E0DdjGl5glO62 BTq14VEhONkYb0fwHgDp0XNJm7my0Ktq -----END CERTIFICATE-----Generated at Sat May 31 17:11:25 2025 by rpki-client