$ rpki-client -vvf rpki.apnic.net/member_repository/A9174685/2D159182A97311EA9AABE923C4F9AE02/pfBl_MntoR3KTQ38bXyZB1KY1_8.mft File: pfBl_MntoR3KTQ38bXyZB1KY1_8.mft (raw, json) Hash identifier: kxBu9M+ueyu0RjeRha20xEVaVdJC1rMidRb3X2O9SUQ= Subject key identifier: BD:AA:89:A3:23:35:AC:24:D0:4C:80:A8:7C:AD:02:D5:BF:D9:44:96 Authority key identifier: A5:F0:65:FC:C9:ED:A1:1D:CA:4D:0D:FC:6D:7C:99:07:52:98:D7:FF Certificate issuer: /CN=A9174685/serialNumber=A5F065FCC9EDA11DCA4D0DFC6D7C99075298D7FF Certificate serial: 091E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pfBl_MntoR3KTQ38bXyZB1KY1_8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9174685/2D159182A97311EA9AABE923C4F9AE02/pfBl_MntoR3KTQ38bXyZB1KY1_8.mft Manifest number: 090A Signing time: Fri 06 Jun 2025 20:24:30 +0000 Manifest this update: Fri 06 Jun 2025 20:24:30 +0000 Manifest next update: Fri 13 Jun 2025 20:24:30 +0000 Files and hashes: 1: pfBl_MntoR3KTQ38bXyZB1KY1_8.crl (hash: w3mVW2VQMG09U9ZGt9FjS3CKuwANz7lpOi0wYoktDFc=) 2: 8BBD25F4EAE311EF95C23D4DC4F9AE02.roa (hash: g6ZF73udqOvaMk79CC0xL6laKl1ilnMa4mhmtzges9Y=) 3: 31B2B528217811EEBACF3324C4F9AE02.roa (hash: GgE2GgTXjnlE63xFP6LVosemjRTE0pIIUFRg3E+lupM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9174685/2D159182A97311EA9AABE923C4F9AE02/pfBl_MntoR3KTQ38bXyZB1KY1_8.crl rsync://rpki.apnic.net/member_repository/A9174685/2D159182A97311EA9AABE923C4F9AE02/pfBl_MntoR3KTQ38bXyZB1KY1_8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pfBl_MntoR3KTQ38bXyZB1KY1_8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 13 Jun 2025 20:24:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2334 (0x91e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9174685, serialNumber=A5F065FCC9EDA11DCA4D0DFC6D7C99075298D7FF Validity Not Before: Jun 6 20:24:30 2025 GMT Not After : Jun 13 20:24:30 2025 GMT Subject: CN=68434e7e-c24c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d1:9a:3f:b1:a7:f1:4b:5d:61:9d:62:24:cb:d9: 03:52:5c:c6:f4:85:bd:db:7e:66:9e:aa:4b:c9:44: f4:20:2a:99:b7:71:34:4a:9e:16:ff:39:30:c4:09: 83:ff:ec:8c:51:ea:ab:e2:47:09:46:cb:95:47:de: 83:34:90:e5:c1:6b:64:76:12:fe:05:27:d8:ad:45: 64:a7:93:89:b9:71:15:8e:f2:d2:25:cc:49:e9:25: 66:11:f8:97:b6:c8:2e:2b:17:a9:da:89:c6:d9:06: d1:00:3e:1e:ea:b7:cf:12:6c:1e:fa:53:e8:0e:59: 2c:e4:34:0f:32:3e:5b:29:f2:6b:f0:84:e1:65:3b: 35:00:ca:5e:b4:f5:d0:f8:4b:0f:a0:7f:91:83:7d: b2:67:46:30:ed:98:65:98:ff:50:95:44:8a:1a:68: 2d:fc:0f:1d:b1:c2:c1:31:24:77:bb:c6:d2:2c:1c: 93:f2:ae:df:2e:0e:e8:5a:fc:00:89:d7:73:1e:d4: 8f:dd:8e:4d:d1:59:f8:fc:a2:3b:db:e5:36:48:ba: 47:1a:8e:f4:01:a2:3b:dd:06:0e:c6:4e:ca:7c:89: 1e:97:e1:c2:65:1f:50:37:58:37:d2:ec:0d:a8:c0: f5:0b:3f:8f:1f:8d:fe:92:96:53:b9:c9:1f:0b:c9: 5e:bf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BD:AA:89:A3:23:35:AC:24:D0:4C:80:A8:7C:AD:02:D5:BF:D9:44:96 X509v3 Authority Key Identifier: keyid:A5:F0:65:FC:C9:ED:A1:1D:CA:4D:0D:FC:6D:7C:99:07:52:98:D7:FF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9174685/2D159182A97311EA9AABE923C4F9AE02/pfBl_MntoR3KTQ38bXyZB1KY1_8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pfBl_MntoR3KTQ38bXyZB1KY1_8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9174685/2D159182A97311EA9AABE923C4F9AE02/pfBl_MntoR3KTQ38bXyZB1KY1_8.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 9a:d2:fe:76:a4:5e:8b:fc:25:6a:51:24:6c:f9:63:4c:40:77: a5:de:bd:cd:25:54:70:bc:5d:73:7f:b5:f8:79:8b:0f:ba:2c: 22:cb:45:75:c2:3d:3b:f7:a2:a0:4b:6d:6a:f7:61:7b:38:95: 7d:70:17:0b:bd:c3:1f:9a:e5:ed:1c:28:92:e3:4e:be:33:d9: 48:eb:cd:da:de:6d:37:ba:c2:1e:e9:e5:c0:12:82:88:05:45: a8:48:ea:61:10:9e:f4:67:7d:d5:e3:a0:3f:8a:ea:3b:ef:58: 3b:40:8f:0e:14:2a:7c:d3:8c:44:a7:12:5c:27:8b:e8:fa:ea: f4:be:21:59:e1:00:dd:48:24:9a:d2:f7:23:2b:34:d7:66:64: e3:1a:11:a1:0a:8b:4b:67:6b:08:c7:a5:7a:4c:e5:92:9f:59: eb:71:7b:34:f8:95:2d:32:0c:36:d8:18:c7:ae:e7:67:df:3a: 42:3b:0e:6a:8d:4f:af:a5:3f:2b:45:df:09:21:e9:19:c1:09: bd:82:52:a0:1c:f4:87:b0:ee:f0:98:c3:ca:fc:b9:27:23:b3: 18:b8:bd:5f:6a:eb:59:09:04:06:62:7c:6d:b6:2f:ae:9c:06: 08:1f:32:71:9f:5e:d0:9c:42:20:db:c2:d5:ca:a2:23:59:8a: b2:52:15:f2 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCR4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzQ2ODUxMTAvBgNVBAUTKEE1RjA2NUZDQzlFREExMURDQTREMERGQzZEN0M5OTA3 NTI5OEQ3RkYwHhcNMjUwNjA2MjAyNDMwWhcNMjUwNjEzMjAyNDMwWjAYMRYwFAYD VQQDEw02ODQzNGU3ZS1jMjRjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0Zo/safxS11hnWIky9kDUlzG9IW9235mnqpLyUT0ICqZt3E0Sp4W/zkwxAmD /+yMUeqr4kcJRsuVR96DNJDlwWtkdhL+BSfYrUVkp5OJuXEVjvLSJcxJ6SVmEfiX tsguKxep2onG2QbRAD4e6rfPEmwe+lPoDlks5DQPMj5bKfJr8IThZTs1AMpetPXQ +EsPoH+Rg32yZ0Yw7ZhlmP9QlUSKGmgt/A8dscLBMSR3u8bSLByT8q7fLg7oWvwA iddzHtSP3Y5N0Vn4/KI72+U2SLpHGo70AaI73QYOxk7KfIkel+HCZR9QN1g30uwN qMD1Cz+PH43+kpZTuckfC8levwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFL2qiaMj Nawk0EyAqHytAtW/2USWMB8GA1UdIwQYMBaAFKXwZfzJ7aEdyk0N/G18mQdSmNf/ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3NDY4NS8yRDE1OTE4MkE5 NzMxMUVBOUFBQkU5MjNDNEY5QUUwMi9wZkJsX01udG9SM0tUUTM4Ylh5WkIxS1kx XzguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3BmQmxfTW50b1IzS1RRMzhiWHlaQjFLWTFfOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 NDY4NS8yRDE1OTE4MkE5NzMxMUVBOUFBQkU5MjNDNEY5QUUwMi9wZkJsX01udG9S M0tUUTM4Ylh5WkIxS1kxXzgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCa0v52pF6L/CVqUSRs+WNMQHel3r3NJVRwvF1zf7X4eYsPuiwiy0V1 wj0796KgS21q92F7OJV9cBcLvcMfmuXtHCiS406+M9lI683a3m03usIe6eXAEoKI BUWoSOphEJ70Z33V46A/iuo771g7QI8OFCp804xEpxJcJ4vo+ur0viFZ4QDdSCSa 0vcjKzTXZmTjGhGhCotLZ2sIx6V6TOWSn1nrcXs0+JUtMgw22BjHrudn3zpCOw5q jU+vpT8rRd8JIekZwQm9glKgHPSHsO7wmMPK/LknI7MYuL1fautZCQQGYnxtti+u nAYIHzJxn17QnEIg28LVyqIjWYqyUhXy -----END CERTIFICATE-----Generated at Sat Jun 7 13:07:24 2025 by rpki-client