$ rpki-client -vvf rpki.apnic.net/member_repository/A9143CB3/1516679E259D11E785D3250AC4F9AE02/PFRw6B-koZCHAh0K130zbOvipo0.mft File: PFRw6B-koZCHAh0K130zbOvipo0.mft (raw, json) Hash identifier: jvMMfQZEMVJo0NOeI5tjgaZWnVo6HYOw/cG/a4BDsEg= Subject key identifier: 1D:63:D4:A3:24:0E:E9:31:9D:8F:40:00:5F:A1:D8:52:57:67:E0:AE Authority key identifier: 3C:54:70:E8:1F:A4:A1:90:87:02:1D:0A:D7:7D:33:6C:EB:E2:A6:8D Certificate issuer: /CN=A9143CB3/serialNumber=3C5470E81FA4A19087021D0AD77D336CEBE2A68D Certificate serial: 1AEC Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/PFRw6B-koZCHAh0K130zbOvipo0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9143CB3/1516679E259D11E785D3250AC4F9AE02/PFRw6B-koZCHAh0K130zbOvipo0.mft Manifest number: 1AE9 Signing time: Fri 20 Jun 2025 16:20:49 +0000 Manifest this update: Fri 20 Jun 2025 16:20:48 +0000 Manifest next update: Fri 27 Jun 2025 16:20:48 +0000 Files and hashes: 1: PFRw6B-koZCHAh0K130zbOvipo0.crl (hash: C375D1/odDBXCxB3z4SCCJAgw9q6Ppnhwh1rRirlZPQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9143CB3/1516679E259D11E785D3250AC4F9AE02/PFRw6B-koZCHAh0K130zbOvipo0.crl rsync://rpki.apnic.net/member_repository/A9143CB3/1516679E259D11E785D3250AC4F9AE02/PFRw6B-koZCHAh0K130zbOvipo0.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/PFRw6B-koZCHAh0K130zbOvipo0.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 27 Jun 2025 16:20:47 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6892 (0x1aec) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9143CB3, serialNumber=3C5470E81FA4A19087021D0AD77D336CEBE2A68D Validity Not Before: Jun 20 16:20:48 2025 GMT Not After : Jun 27 16:20:48 2025 GMT Subject: CN=68558a60-4cbb Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:11:d5:f9:d4:bf:b7:c2:61:16:7e:3f:cb:75: c7:d6:04:33:04:58:ca:a2:99:46:24:7d:c4:18:69: e7:50:72:c6:d8:eb:a7:a8:2a:28:d2:bb:b0:7d:26: 53:de:28:0e:ed:62:5f:67:36:e6:4b:41:2a:91:ce: 35:7f:0a:fc:64:d3:6f:56:50:cb:92:de:1b:15:fc: 62:c2:f5:ed:98:5a:ef:64:e7:4f:2c:41:59:37:6f: fa:71:42:be:40:bb:49:dd:f6:09:43:b4:ac:e1:20: 1c:74:4d:ea:bc:cb:d6:34:c3:07:97:2d:24:cd:c2: c1:12:28:53:f9:f9:dc:ed:f0:ef:02:1c:ae:81:57: e0:00:d4:15:53:35:8d:ab:f9:e4:53:aa:ab:9f:a9: 9b:fb:f1:85:89:2a:31:ca:4a:54:15:94:ad:f4:79: cf:b1:e9:86:38:f8:56:34:2f:4b:0f:92:ce:16:8e: 97:ed:00:9d:39:3f:9e:11:63:6c:8a:d6:34:b2:54: 39:3b:87:43:e1:63:39:d3:be:eb:60:bb:ba:d8:e6: f7:d2:8d:70:85:61:0e:8d:ec:e9:24:ab:d8:cd:e0: d0:b3:bd:21:3d:86:f5:91:fb:45:88:79:97:92:24: 4e:b4:67:54:db:ef:0b:29:70:3b:be:94:c1:41:6d: 72:59 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1D:63:D4:A3:24:0E:E9:31:9D:8F:40:00:5F:A1:D8:52:57:67:E0:AE X509v3 Authority Key Identifier: keyid:3C:54:70:E8:1F:A4:A1:90:87:02:1D:0A:D7:7D:33:6C:EB:E2:A6:8D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9143CB3/1516679E259D11E785D3250AC4F9AE02/PFRw6B-koZCHAh0K130zbOvipo0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/PFRw6B-koZCHAh0K130zbOvipo0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9143CB3/1516679E259D11E785D3250AC4F9AE02/PFRw6B-koZCHAh0K130zbOvipo0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 5c:9a:32:70:e5:9b:b6:bd:80:9f:27:da:2c:f9:d6:37:58:1e: d4:f5:af:76:3e:9f:36:ec:e0:99:f6:19:48:bb:ec:72:9b:52: ea:ef:c4:0a:9c:a7:cf:9b:db:24:96:cb:06:5a:69:3f:fb:f5: 8c:ed:ae:78:ad:69:61:7f:57:bd:1f:2f:39:ce:d3:76:0c:85: 48:1d:c8:1d:ea:e1:cb:2c:52:f8:3d:53:5d:df:a3:55:6a:cf: d0:df:ca:3c:e9:fa:b0:89:b3:df:6e:38:4d:5c:a5:64:00:e5: 51:0f:05:e2:95:16:de:87:ca:21:47:3d:a1:d3:74:c1:36:e0: 4f:91:45:b7:a0:69:d5:c7:18:09:48:1d:84:3c:63:ac:32:85: da:1e:57:e7:b6:ca:0f:76:0d:27:a5:7d:23:40:34:f0:dc:5a: 8a:c0:d0:99:4e:4d:e2:7a:4e:07:f4:a2:ff:04:60:6d:36:7e: 1b:e8:82:ca:a4:25:de:ca:47:7f:0b:a3:2b:70:a8:bd:50:cf: a6:f4:41:fb:93:33:66:4f:de:e5:d4:9f:49:f4:43:76:40:45: 64:ea:4b:c1:ba:b0:86:87:5d:29:36:50:9a:fe:5b:27:b8:cb: 22:18:85:38:ef:49:75:ba:b0:ea:33:1b:d1:25:be:e7:26:27: de:6f:f0:0d -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICGuwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDNDQjMxMTAvBgNVBAUTKDNDNTQ3MEU4MUZBNEExOTA4NzAyMUQwQUQ3N0QzMzZD RUJFMkE2OEQwHhcNMjUwNjIwMTYyMDQ4WhcNMjUwNjI3MTYyMDQ4WjAYMRYwFAYD VQQDEw02ODU1OGE2MC00Y2JiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtBHV+dS/t8JhFn4/y3XH1gQzBFjKoplGJH3EGGnnUHLG2OunqCoo0ruwfSZT 3igO7WJfZzbmS0Eqkc41fwr8ZNNvVlDLkt4bFfxiwvXtmFrvZOdPLEFZN2/6cUK+ QLtJ3fYJQ7Ss4SAcdE3qvMvWNMMHly0kzcLBEihT+fnc7fDvAhyugVfgANQVUzWN q/nkU6qrn6mb+/GFiSoxykpUFZSt9HnPsemGOPhWNC9LD5LOFo6X7QCdOT+eEWNs itY0slQ5O4dD4WM5077rYLu62Ob30o1whWEOjezpJKvYzeDQs70hPYb1kftFiHmX kiROtGdU2+8LKXA7vpTBQW1yWQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFB1j1KMk DukxnY9AAF+h2FJXZ+CuMB8GA1UdIwQYMBaAFDxUcOgfpKGQhwIdCtd9M2zr4qaN MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0M0NCMy8xNTE2Njc5RTI1 OUQxMUU3ODVEMzI1MEFDNEY5QUUwMi9QRlJ3NkIta29aQ0hBaDBLMTMwemJPdmlw bzAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL1BGUnc2Qi1rb1pDSEFoMEsxMzB6Yk92aXBvMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 M0NCMy8xNTE2Njc5RTI1OUQxMUU3ODVEMzI1MEFDNEY5QUUwMi9QRlJ3NkIta29a Q0hBaDBLMTMwemJPdmlwbzAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBcmjJw5Zu2vYCfJ9os+dY3WB7U9a92Pp827OCZ9hlIu+xym1Lq78QK nKfPm9sklssGWmk/+/WM7a54rWlhf1e9Hy85ztN2DIVIHcgd6uHLLFL4PVNd36NV as/Q38o86fqwibPfbjhNXKVkAOVRDwXilRbeh8ohRz2h03TBNuBPkUW3oGnVxxgJ SB2EPGOsMoXaHlfntsoPdg0npX0jQDTw3FqKwNCZTk3iek4H9KL/BGBtNn4b6ILK pCXeykd/C6MrcKi9UM+m9EH7kzNmT97l1J9J9EN2QEVk6kvBurCGh10pNlCa/lsn uMsiGIU470l1urDqMxvRJb7nJifeb/AN -----END CERTIFICATE-----Generated at Fri Jun 20 22:39:14 2025 by rpki-client