$ rpki-client -vvf rpki.apnic.net/member_repository/A9117E4D/A64FBCE0C05811E39D8A06645911EA32/pOlXbOhgyP9flyr1k7QFTngj5kI.mft File: pOlXbOhgyP9flyr1k7QFTngj5kI.mft (raw, json) Hash identifier: 9jQlZ7OZDY0NmOOOhzvrx6oyBUfTGnciDlEDvpeYLe0= Subject key identifier: 49:09:A2:AD:CB:35:F1:B8:5E:1E:80:ED:5D:D5:46:67:27:7A:90:F1 Authority key identifier: A4:E9:57:6C:E8:60:C8:FF:5F:97:2A:F5:93:B4:05:4E:78:23:E6:42 Certificate issuer: /CN=A9117E4D/serialNumber=A4E9576CE860C8FF5F972AF593B4054E7823E642 Certificate serial: 2C45 Authority info access: rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/pOlXbOhgyP9flyr1k7QFTngj5kI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9117E4D/A64FBCE0C05811E39D8A06645911EA32/pOlXbOhgyP9flyr1k7QFTngj5kI.mft Manifest number: 2C42 Signing time: Fri 20 Jun 2025 14:25:48 +0000 Manifest this update: Fri 20 Jun 2025 14:25:47 +0000 Manifest next update: Fri 27 Jun 2025 14:25:47 +0000 Files and hashes: 1: pOlXbOhgyP9flyr1k7QFTngj5kI.crl (hash: oWQr2wTS5gjiRi+Fh7vFSCw1Ur3n9selwh8dr5qbZCM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9117E4D/A64FBCE0C05811E39D8A06645911EA32/pOlXbOhgyP9flyr1k7QFTngj5kI.crl rsync://rpki.apnic.net/member_repository/A9117E4D/A64FBCE0C05811E39D8A06645911EA32/pOlXbOhgyP9flyr1k7QFTngj5kI.mft rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/pOlXbOhgyP9flyr1k7QFTngj5kI.cer rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.crl rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DPzneFf88B852ZpitKpi5hWedvg.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 27 Jun 2025 14:25:47 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 11333 (0x2c45) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9117E4D, serialNumber=A4E9576CE860C8FF5F972AF593B4054E7823E642 Validity Not Before: Jun 20 14:25:47 2025 GMT Not After : Jun 27 14:25:47 2025 GMT Subject: CN=68556f6b-6ada Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d7:08:aa:c2:f8:32:1f:69:b1:14:2a:2e:0a:fb: 8c:cf:dc:8a:93:57:97:10:f0:ad:29:cc:f2:ce:22: 3c:98:70:a9:c5:42:d5:ed:06:5b:16:a8:b3:cd:4e: a7:17:14:e4:56:57:50:58:03:8a:50:ac:ef:e5:3a: 4a:6e:38:de:54:4a:aa:93:b5:92:46:b8:79:0b:b7: a9:68:ac:a8:d7:82:ac:fa:86:28:02:18:bc:33:66: 7f:93:54:bf:12:b8:b3:fd:3a:fc:60:c4:fa:f8:f8: 6a:12:77:0e:3d:90:bb:07:3d:eb:41:43:52:85:73: c6:38:44:2d:b4:27:02:a5:a9:4f:d9:3a:97:2c:e5: 49:ea:b6:44:c6:0d:1d:9b:e0:db:53:06:be:3d:06: 5a:03:96:be:83:e3:d5:38:6c:da:a2:7f:b5:f1:16: cc:11:40:14:66:2f:97:76:cb:d4:19:9b:be:59:f8: fb:f5:d0:c6:8b:06:42:8d:8b:44:f5:df:00:dc:c9: 56:4b:63:d0:48:1c:9f:30:19:f8:64:33:a1:89:e2: ff:29:1b:08:24:93:5c:e4:37:59:f6:0b:eb:27:69: 9c:58:ab:fa:61:9c:50:04:74:84:ff:67:95:d7:9e: 25:48:7b:05:b8:f5:bc:fe:8d:b9:80:1b:b6:16:c9: 93:17 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 49:09:A2:AD:CB:35:F1:B8:5E:1E:80:ED:5D:D5:46:67:27:7A:90:F1 X509v3 Authority Key Identifier: keyid:A4:E9:57:6C:E8:60:C8:FF:5F:97:2A:F5:93:B4:05:4E:78:23:E6:42 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9117E4D/A64FBCE0C05811E39D8A06645911EA32/pOlXbOhgyP9flyr1k7QFTngj5kI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/pOlXbOhgyP9flyr1k7QFTngj5kI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9117E4D/A64FBCE0C05811E39D8A06645911EA32/pOlXbOhgyP9flyr1k7QFTngj5kI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 8c:00:34:1e:cb:a1:51:8d:20:19:fb:c1:19:d6:fa:50:27:eb: ae:cc:58:7e:14:1c:1f:19:51:ca:f2:0a:60:1b:a9:2e:7d:c8: f1:58:a9:e9:36:b0:ad:5a:93:79:89:25:c5:25:bf:ab:8f:84: 6b:e9:28:cc:04:2f:09:42:19:15:09:1e:92:b5:83:27:33:39: 81:a7:30:f0:3c:9c:f6:d8:20:cc:d6:12:ec:3f:8a:c0:3c:1d: 5b:0e:c2:a1:6b:6a:ba:2a:82:f3:16:08:01:ce:76:af:a5:d7: b7:df:88:10:84:be:2a:0b:17:62:94:03:16:f2:76:e4:22:77: 2d:e6:98:0c:a9:c4:cf:0a:cf:cd:72:31:8d:0b:d2:86:fc:1c: 3f:2b:09:67:f1:44:aa:bb:88:73:8e:f5:67:2e:08:d7:af:65: 4d:39:8c:76:3d:31:06:82:a3:f7:53:d8:aa:c2:6b:3b:3e:a3: c9:24:54:84:09:ab:b5:b0:8b:95:a4:84:ba:ba:c4:27:45:e6: 74:9b:26:61:f0:37:ab:47:e3:ac:24:71:6b:70:79:2d:19:37: 7e:03:54:3d:6a:60:03:10:8e:cf:0d:ec:59:39:84:d7:2e:74: 5e:64:ea:f2:89:9e:67:f6:42:4c:1d:25:a2:d0:99:62:4b:ca: 4f:98:5d:bb -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICLEUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MTdFNEQxMTAvBgNVBAUTKEE0RTk1NzZDRTg2MEM4RkY1Rjk3MkFGNTkzQjQwNTRF NzgyM0U2NDIwHhcNMjUwNjIwMTQyNTQ3WhcNMjUwNjI3MTQyNTQ3WjAYMRYwFAYD VQQDEw02ODU1NmY2Yi02YWRhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1wiqwvgyH2mxFCouCvuMz9yKk1eXEPCtKczyziI8mHCpxULV7QZbFqizzU6n FxTkVldQWAOKUKzv5TpKbjjeVEqqk7WSRrh5C7epaKyo14Ks+oYoAhi8M2Z/k1S/ Eriz/Tr8YMT6+PhqEncOPZC7Bz3rQUNShXPGOEQttCcCpalP2TqXLOVJ6rZExg0d m+DbUwa+PQZaA5a+g+PVOGzaon+18RbMEUAUZi+XdsvUGZu+Wfj79dDGiwZCjYtE 9d8A3MlWS2PQSByfMBn4ZDOhieL/KRsIJJNc5DdZ9gvrJ2mcWKv6YZxQBHSE/2eV 154lSHsFuPW8/o25gBu2FsmTFwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFEkJoq3L NfG4Xh6A7V3VRmcnepDxMB8GA1UdIwQYMBaAFKTpV2zoYMj/X5cq9ZO0BU54I+ZC MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExN0U0RC9BNjRGQkNFMEMw NTgxMUUzOUQ4QTA2NjQ1OTExRUEzMi9wT2xYYk9oZ3lQOWZseXIxazdRRlRuZ2o1 a0kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzMjJBNUY0MUQ2NjExRTJBM0YyN0Y3Qzcy RkQxRkYyL3BPbFhiT2hneVA5Zmx5cjFrN1FGVG5najVrSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx N0U0RC9BNjRGQkNFMEMwNTgxMUUzOUQ4QTA2NjQ1OTExRUEzMi9wT2xYYk9oZ3lQ OWZseXIxazdRRlRuZ2o1a0kubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCMADQey6FRjSAZ+8EZ1vpQJ+uuzFh+FBwfGVHK8gpgG6kufcjxWKnp NrCtWpN5iSXFJb+rj4Rr6SjMBC8JQhkVCR6StYMnMzmBpzDwPJz22CDM1hLsP4rA PB1bDsKha2q6KoLzFggBznavpde334gQhL4qCxdilAMW8nbkInct5pgMqcTPCs/N cjGNC9KG/Bw/Kwln8USqu4hzjvVnLgjXr2VNOYx2PTEGgqP3U9iqwms7PqPJJFSE Cau1sIuVpIS6usQnReZ0myZh8DerR+OsJHFrcHktGTd+A1Q9amADEI7PDexZOYTX LnReZOryiZ5n9kJMHSWi0JliS8pPmF27 -----END CERTIFICATE-----Generated at Sun Jun 22 08:57:58 2025 by rpki-client