$ rpki-client -vvf rpki.apnic.net/member_repository/A9117E4D/A64FBCE0C05811E39D8A06645911EA32/pOlXbOhgyP9flyr1k7QFTngj5kI.mft File: pOlXbOhgyP9flyr1k7QFTngj5kI.mft (raw, json) Hash identifier: zLOfV0NxT6Xu3EYjk858wQzjnCwncc+d87x/YIhmQcw= Subject key identifier: C7:CA:A8:E7:10:F9:53:BB:40:F8:B1:7E:B7:A6:10:25:6C:BE:30:D5 Authority key identifier: A4:E9:57:6C:E8:60:C8:FF:5F:97:2A:F5:93:B4:05:4E:78:23:E6:42 Certificate issuer: /CN=A9117E4D/serialNumber=A4E9576CE860C8FF5F972AF593B4054E7823E642 Certificate serial: 2C5F Authority info access: rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/pOlXbOhgyP9flyr1k7QFTngj5kI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9117E4D/A64FBCE0C05811E39D8A06645911EA32/pOlXbOhgyP9flyr1k7QFTngj5kI.mft Manifest number: 2C5C Signing time: Sun 10 Aug 2025 14:26:09 +0000 Manifest this update: Sun 10 Aug 2025 14:26:08 +0000 Manifest next update: Sun 17 Aug 2025 14:26:08 +0000 Files and hashes: 1: pOlXbOhgyP9flyr1k7QFTngj5kI.crl (hash: Ej84sYJcQ4Ip25V50gQnaH7gb+FVaqy8yVogIr7Lin0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9117E4D/A64FBCE0C05811E39D8A06645911EA32/pOlXbOhgyP9flyr1k7QFTngj5kI.crl rsync://rpki.apnic.net/member_repository/A9117E4D/A64FBCE0C05811E39D8A06645911EA32/pOlXbOhgyP9flyr1k7QFTngj5kI.mft rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/pOlXbOhgyP9flyr1k7QFTngj5kI.cer rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.crl rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DPzneFf88B852ZpitKpi5hWedvg.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 Aug 2025 05:57:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 11359 (0x2c5f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9117E4D, serialNumber=A4E9576CE860C8FF5F972AF593B4054E7823E642 Validity Not Before: Aug 10 14:26:08 2025 GMT Not After : Aug 17 14:26:08 2025 GMT Subject: CN=6898ac00-d4a0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f2:0c:08:c1:4f:f9:27:d4:de:b8:78:6a:22:7a: ce:59:b0:5c:e2:d0:25:35:c9:e8:17:52:9f:10:21: c5:9e:be:95:6f:b3:bc:5f:a9:c5:93:53:49:12:ed: 6a:1f:e5:c1:71:87:45:44:16:05:10:a3:df:1e:b4: 7e:24:02:52:42:7f:19:34:64:1c:8b:b1:86:34:39: db:f0:b6:6c:33:54:df:f7:a4:a6:70:02:82:91:eb: ec:c9:8f:78:f9:28:a9:1a:91:0d:be:9c:2d:da:b6: e6:85:d5:bb:64:27:c1:5c:71:98:ca:0f:be:8b:aa: 24:e6:8d:8e:d9:b2:c8:a8:3b:c9:1d:cf:be:77:9a: 21:44:99:46:72:36:c8:9c:1c:69:b1:38:9a:83:d0: 03:79:0c:14:60:d2:e9:aa:9a:25:fc:6c:1a:ba:8c: 99:06:f3:c1:2b:71:ab:8f:9b:4e:81:2b:d1:00:99: 6c:54:22:f5:4b:77:f7:1b:d2:8b:96:23:a8:51:5d: 44:21:32:ed:f3:25:aa:13:f0:79:ef:f4:24:cf:82: e0:9c:f6:cf:2b:b6:ad:02:cb:40:70:dc:11:12:4d: a6:36:b7:fe:55:32:fd:97:79:37:66:f8:52:ea:56: 26:58:f3:1a:fd:71:61:6d:c0:51:f2:3a:14:4b:20: da:55 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C7:CA:A8:E7:10:F9:53:BB:40:F8:B1:7E:B7:A6:10:25:6C:BE:30:D5 X509v3 Authority Key Identifier: keyid:A4:E9:57:6C:E8:60:C8:FF:5F:97:2A:F5:93:B4:05:4E:78:23:E6:42 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9117E4D/A64FBCE0C05811E39D8A06645911EA32/pOlXbOhgyP9flyr1k7QFTngj5kI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/pOlXbOhgyP9flyr1k7QFTngj5kI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9117E4D/A64FBCE0C05811E39D8A06645911EA32/pOlXbOhgyP9flyr1k7QFTngj5kI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 90:23:32:ef:af:7e:eb:19:9c:7e:88:72:b6:15:08:a9:4e:b7: 1a:d6:5f:12:32:45:a0:ae:bd:5f:9f:68:76:e2:aa:d2:85:da: 4d:ef:85:25:f9:93:9e:33:cd:d4:cc:0c:3a:21:8f:a6:16:90: 95:26:7c:da:de:aa:03:9f:54:ff:4b:47:4c:79:c7:e2:4a:b5: a1:0d:c6:cf:a4:32:ca:7a:b5:0d:d7:10:12:f7:42:4b:00:ff: 80:34:a7:76:b9:06:39:c0:1c:97:c0:53:9f:14:c4:9c:1c:85: c7:bb:05:3c:06:85:7f:ea:5f:75:6a:72:03:ca:9e:52:70:fa: 4a:06:78:ef:34:44:64:d6:49:d7:69:0b:33:ce:e2:e6:7e:5d: f4:6c:c0:e1:11:53:53:6e:fa:13:9a:89:dd:4f:38:da:66:3f: 89:13:99:da:83:8f:97:e4:a0:f4:bf:29:09:13:2e:cb:9c:7a: 00:dc:f5:87:05:9b:17:fe:bf:8e:42:82:0d:52:ec:b8:89:1b: 5b:c3:db:23:7e:dc:a6:23:33:f2:ad:8e:97:58:c1:b0:d2:8e: 1b:8d:7b:2c:d1:2b:e1:94:51:ca:5c:b7:94:da:bf:bb:49:b7: ca:49:41:11:9d:c9:82:02:7c:42:ac:5a:ff:7c:fa:ab:fd:e5: 3a:01:5a:49 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICLF8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MTdFNEQxMTAvBgNVBAUTKEE0RTk1NzZDRTg2MEM4RkY1Rjk3MkFGNTkzQjQwNTRF NzgyM0U2NDIwHhcNMjUwODEwMTQyNjA4WhcNMjUwODE3MTQyNjA4WjAYMRYwFAYD VQQDEw02ODk4YWMwMC1kNGEwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA8gwIwU/5J9TeuHhqInrOWbBc4tAlNcnoF1KfECHFnr6Vb7O8X6nFk1NJEu1q H+XBcYdFRBYFEKPfHrR+JAJSQn8ZNGQci7GGNDnb8LZsM1Tf96SmcAKCkevsyY94 +SipGpENvpwt2rbmhdW7ZCfBXHGYyg++i6ok5o2O2bLIqDvJHc++d5ohRJlGcjbI nBxpsTiag9ADeQwUYNLpqpol/GwauoyZBvPBK3Grj5tOgSvRAJlsVCL1S3f3G9KL liOoUV1EITLt8yWqE/B57/Qkz4LgnPbPK7atAstAcNwREk2mNrf+VTL9l3k3ZvhS 6lYmWPMa/XFhbcBR8joUSyDaVQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFMfKqOcQ +VO7QPixfremECVsvjDVMB8GA1UdIwQYMBaAFKTpV2zoYMj/X5cq9ZO0BU54I+ZC MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExN0U0RC9BNjRGQkNFMEMw NTgxMUUzOUQ4QTA2NjQ1OTExRUEzMi9wT2xYYk9oZ3lQOWZseXIxazdRRlRuZ2o1 a0kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzMjJBNUY0MUQ2NjExRTJBM0YyN0Y3Qzcy RkQxRkYyL3BPbFhiT2hneVA5Zmx5cjFrN1FGVG5najVrSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx N0U0RC9BNjRGQkNFMEMwNTgxMUUzOUQ4QTA2NjQ1OTExRUEzMi9wT2xYYk9oZ3lQ OWZseXIxazdRRlRuZ2o1a0kubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCQIzLvr37rGZx+iHK2FQipTrca1l8SMkWgrr1fn2h24qrShdpN74Ul +ZOeM83UzAw6IY+mFpCVJnza3qoDn1T/S0dMecfiSrWhDcbPpDLKerUN1xAS90JL AP+ANKd2uQY5wByXwFOfFMScHIXHuwU8BoV/6l91anIDyp5ScPpKBnjvNERk1knX aQszzuLmfl30bMDhEVNTbvoTmondTzjaZj+JE5nag4+X5KD0vykJEy7LnHoA3PWH BZsX/r+OQoINUuy4iRtbw9sjftymIzPyrY6XWMGw0o4bjXss0SvhlFHKXLeU2r+7 SbfKSUERncmCAnxCrFr/fPqr/eU6AVpJ -----END CERTIFICATE-----Generated at Mon Aug 11 10:43:41 2025 by rpki-client