$ rpki-client -vvf rpki.apnic.net/member_repository/A9143CB3/1516679E259D11E785D3250AC4F9AE02/PFRw6B-koZCHAh0K130zbOvipo0.mft File: PFRw6B-koZCHAh0K130zbOvipo0.mft (raw, json) Hash identifier: wUdvKBBaDTRHfCv/6H/wzxOt9IEMNdynL/mlCJI9j1U= Subject key identifier: 63:D0:19:C7:17:5A:05:CB:D9:7E:78:5A:21:BA:FF:91:06:EE:E6:91 Authority key identifier: 3C:54:70:E8:1F:A4:A1:90:87:02:1D:0A:D7:7D:33:6C:EB:E2:A6:8D Certificate issuer: /CN=A9143CB3/serialNumber=3C5470E81FA4A19087021D0AD77D336CEBE2A68D Certificate serial: 1B08 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/PFRw6B-koZCHAh0K130zbOvipo0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9143CB3/1516679E259D11E785D3250AC4F9AE02/PFRw6B-koZCHAh0K130zbOvipo0.mft Manifest number: 1B05 Signing time: Sun 10 Aug 2025 16:16:37 +0000 Manifest this update: Sun 10 Aug 2025 16:16:37 +0000 Manifest next update: Sun 17 Aug 2025 16:16:37 +0000 Files and hashes: 1: PFRw6B-koZCHAh0K130zbOvipo0.crl (hash: SBmV2QJQS8ZMcbV9aL+m7Mn8nCnW3pd+GPrL/jhuh1g=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9143CB3/1516679E259D11E785D3250AC4F9AE02/PFRw6B-koZCHAh0K130zbOvipo0.crl rsync://rpki.apnic.net/member_repository/A9143CB3/1516679E259D11E785D3250AC4F9AE02/PFRw6B-koZCHAh0K130zbOvipo0.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/PFRw6B-koZCHAh0K130zbOvipo0.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 Aug 2025 05:57:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6920 (0x1b08) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9143CB3, serialNumber=3C5470E81FA4A19087021D0AD77D336CEBE2A68D Validity Not Before: Aug 10 16:16:37 2025 GMT Not After : Aug 17 16:16:37 2025 GMT Subject: CN=6898c5e5-67c6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:21:10:97:28:7a:14:6e:3b:79:de:26:39:ad: 7f:81:ba:d1:18:9d:44:ba:e3:11:bb:83:e2:fd:a5: f5:31:a8:0f:e5:19:88:8c:a2:76:ac:d0:13:75:88: 75:92:90:38:ca:cf:40:03:b8:93:3c:e2:a2:8d:9e: f5:00:db:88:47:86:30:fa:1b:ac:88:1f:99:18:fd: 91:1f:ab:98:89:05:f7:51:21:e1:f1:48:46:10:b8: 87:16:14:9a:6e:25:73:83:a1:39:35:44:e8:bf:a3: fd:84:3f:e9:6b:09:d5:76:4e:c0:51:9d:b4:a9:0a: a6:e5:82:98:7a:f3:ee:33:01:7a:aa:4c:b6:b6:c2: c4:51:c7:49:26:7f:5a:38:f6:bf:54:77:b8:47:98: 2a:f7:65:84:17:dc:19:34:50:ae:5f:7c:be:c0:5e: e8:df:b6:a8:89:e8:fb:0c:c2:96:cf:b6:99:45:cb: 4c:11:c8:7c:f5:62:4e:a7:68:f6:51:09:e6:98:37: 5d:b1:08:67:32:5a:0a:62:78:f4:05:51:8e:89:ac: 36:28:e0:a6:42:27:52:de:56:b1:5a:12:bf:43:2a: 85:18:2e:75:d8:3d:f6:24:55:33:dc:88:9c:bb:ac: 08:04:5a:0b:12:1c:2b:22:30:46:9b:1b:7a:b3:d8: 1a:13 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 63:D0:19:C7:17:5A:05:CB:D9:7E:78:5A:21:BA:FF:91:06:EE:E6:91 X509v3 Authority Key Identifier: keyid:3C:54:70:E8:1F:A4:A1:90:87:02:1D:0A:D7:7D:33:6C:EB:E2:A6:8D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9143CB3/1516679E259D11E785D3250AC4F9AE02/PFRw6B-koZCHAh0K130zbOvipo0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/PFRw6B-koZCHAh0K130zbOvipo0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9143CB3/1516679E259D11E785D3250AC4F9AE02/PFRw6B-koZCHAh0K130zbOvipo0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 55:bf:15:d9:6e:9c:71:a9:10:2b:0c:17:23:fe:75:ec:c6:b0: 79:4b:a9:b8:68:55:77:26:4f:d5:ff:7b:d7:b0:8e:7e:1b:b1: 8a:a2:5c:57:56:17:b7:ef:d5:77:68:f2:6c:45:c8:6b:ed:29: 62:26:1b:a3:7d:90:b4:9e:f7:94:92:f1:36:e0:65:be:6b:50: 8a:71:39:c0:71:d1:45:54:a4:c4:45:ac:32:13:e3:4f:19:4c: d6:63:53:46:36:05:bc:18:5f:00:7a:7f:89:3d:87:00:22:72: 50:44:c1:7c:1b:7c:ab:97:88:5c:a6:6d:b8:34:ed:ef:7b:c7: 0d:cb:58:e9:17:2f:a5:3f:c3:98:7f:e2:88:e5:fb:8a:55:6a: f7:1f:69:16:c8:82:a4:91:d9:31:b7:e0:b3:56:5a:ee:ae:3f: 6f:78:a6:b1:db:95:cf:ea:ce:69:e9:6b:79:5d:23:12:b0:6e: 22:33:34:d2:84:c9:25:e2:89:3b:32:f5:f7:62:ae:4b:e1:1d: 69:9f:3d:5d:57:30:fb:e1:12:4d:5a:da:85:f0:c2:10:d6:93: 41:2b:c8:bf:bb:45:1b:50:e3:0f:e5:20:53:01:33:06:df:ab: 3a:86:28:a5:ba:c6:91:fd:e0:72:13:73:c1:f8:56:31:4d:4b: 59:db:12:d9 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICGwgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDNDQjMxMTAvBgNVBAUTKDNDNTQ3MEU4MUZBNEExOTA4NzAyMUQwQUQ3N0QzMzZD RUJFMkE2OEQwHhcNMjUwODEwMTYxNjM3WhcNMjUwODE3MTYxNjM3WjAYMRYwFAYD VQQDEw02ODk4YzVlNS02N2M2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwiEQlyh6FG47ed4mOa1/gbrRGJ1EuuMRu4Pi/aX1MagP5RmIjKJ2rNATdYh1 kpA4ys9AA7iTPOKijZ71ANuIR4Yw+husiB+ZGP2RH6uYiQX3USHh8UhGELiHFhSa biVzg6E5NUTov6P9hD/pawnVdk7AUZ20qQqm5YKYevPuMwF6qky2tsLEUcdJJn9a OPa/VHe4R5gq92WEF9wZNFCuX3y+wF7o37aoiej7DMKWz7aZRctMEch89WJOp2j2 UQnmmDddsQhnMloKYnj0BVGOiaw2KOCmQidS3laxWhK/QyqFGC512D32JFUz3Iic u6wIBFoLEhwrIjBGmxt6s9gaEwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFGPQGccX WgXL2X54WiG6/5EG7uaRMB8GA1UdIwQYMBaAFDxUcOgfpKGQhwIdCtd9M2zr4qaN MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0M0NCMy8xNTE2Njc5RTI1 OUQxMUU3ODVEMzI1MEFDNEY5QUUwMi9QRlJ3NkIta29aQ0hBaDBLMTMwemJPdmlw bzAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL1BGUnc2Qi1rb1pDSEFoMEsxMzB6Yk92aXBvMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 M0NCMy8xNTE2Njc5RTI1OUQxMUU3ODVEMzI1MEFDNEY5QUUwMi9QRlJ3NkIta29a Q0hBaDBLMTMwemJPdmlwbzAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBVvxXZbpxxqRArDBcj/nXsxrB5S6m4aFV3Jk/V/3vXsI5+G7GKolxX Vhe379V3aPJsRchr7SliJhujfZC0nveUkvE24GW+a1CKcTnAcdFFVKTERawyE+NP GUzWY1NGNgW8GF8Aen+JPYcAInJQRMF8G3yrl4hcpm24NO3ve8cNy1jpFy+lP8OY f+KI5fuKVWr3H2kWyIKkkdkxt+CzVlrurj9veKax25XP6s5p6Wt5XSMSsG4iMzTS hMkl4ok7MvX3Yq5L4R1pnz1dVzD74RJNWtqF8MIQ1pNBK8i/u0UbUOMP5SBTATMG 36s6hiilusaR/eByE3PB+FYxTUtZ2xLZ -----END CERTIFICATE-----Generated at Sun Aug 10 19:01:38 2025 by rpki-client