$ rpki-client -vvf rpki.apnic.net/member_repository/A914976C/8350D2BC595C11EF91596350C4F9AE02/9-pxtubNBKVdrrDRWOBE3poSIWo.mft File: 9-pxtubNBKVdrrDRWOBE3poSIWo.mft (raw, json) Hash identifier: XhArphpifiOU4K8bZe/Q3wgnrZ1kAFIhEh7Q5BkSweA= Subject key identifier: 2A:57:A3:A3:86:54:D3:18:54:E4:8A:99:BA:8E:BE:CC:52:92:77:8A Authority key identifier: F7:EA:71:B6:E6:CD:04:A5:5D:AE:B0:D1:58:E0:44:DE:9A:12:21:6A Certificate issuer: /CN=A914976C/serialNumber=F7EA71B6E6CD04A55DAEB0D158E044DE9A12216A Certificate serial: A6 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/9-pxtubNBKVdrrDRWOBE3poSIWo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914976C/8350D2BC595C11EF91596350C4F9AE02/9-pxtubNBKVdrrDRWOBE3poSIWo.mft Manifest number: A2 Signing time: Sun 15 Jun 2025 05:19:47 +0000 Manifest this update: Sun 15 Jun 2025 05:19:46 +0000 Manifest next update: Sun 22 Jun 2025 05:19:46 +0000 Files and hashes: 1: 9-pxtubNBKVdrrDRWOBE3poSIWo.crl (hash: ityiffkWAQk8M4NoidDrMOyRjdzULUykte8aL6gjuBk=) 2: D65DAE8A595C11EF8FABE750C4F9AE02.roa (hash: nYA6qJYLssodvPidYdiPlhElm9th4J64wlRbRyUbQK0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914976C/8350D2BC595C11EF91596350C4F9AE02/9-pxtubNBKVdrrDRWOBE3poSIWo.crl rsync://rpki.apnic.net/member_repository/A914976C/8350D2BC595C11EF91596350C4F9AE02/9-pxtubNBKVdrrDRWOBE3poSIWo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/9-pxtubNBKVdrrDRWOBE3poSIWo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 22 Jun 2025 02:50:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 166 (0xa6) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914976C, serialNumber=F7EA71B6E6CD04A55DAEB0D158E044DE9A12216A Validity Not Before: Jun 15 05:19:46 2025 GMT Not After : Jun 22 05:19:46 2025 GMT Subject: CN=684e57f3-784c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:df:4b:a3:e7:89:8b:90:3d:6b:af:01:2e:76:96: a1:dc:b5:4a:67:52:9a:a1:22:63:09:1f:43:2a:27: 18:26:47:17:4d:18:49:06:3b:33:f2:3f:0a:86:08: 4a:5e:a8:d8:f8:e7:a7:00:18:45:0c:ab:62:16:1e: b6:9d:45:c1:ab:25:03:c8:ae:33:a2:48:b3:78:a5: 64:29:a9:5e:c0:d8:08:cf:c1:3a:93:f4:ad:f2:c6: da:01:95:01:c8:15:18:52:b7:1c:11:f7:d8:72:82: 43:25:18:94:a6:4c:b0:6f:79:50:0c:d4:e3:8c:23: 7c:63:a6:21:b0:0d:fc:dc:ad:ad:c3:3f:22:88:2b: 4b:c2:75:69:d2:ee:94:bf:19:4b:9d:cf:3b:8c:90: fb:d1:c4:1d:2c:e4:8e:3b:9c:fc:c6:c1:30:25:c5: 97:95:49:2d:71:95:f9:96:8e:24:3d:bf:b9:5e:38: a9:c3:04:3b:31:1a:69:9f:3b:e8:71:3b:78:0d:f9: 42:51:49:4f:84:c6:39:73:79:11:7f:cf:e0:b3:cd: 14:7e:6e:4f:0b:08:11:a3:c4:45:20:18:7a:d2:64: 34:b3:a9:c0:5b:db:2a:a7:18:3f:6b:c2:01:11:09: b1:8a:f3:c7:eb:d6:23:d7:cf:a9:46:8c:38:89:f2: 11:05 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2A:57:A3:A3:86:54:D3:18:54:E4:8A:99:BA:8E:BE:CC:52:92:77:8A X509v3 Authority Key Identifier: keyid:F7:EA:71:B6:E6:CD:04:A5:5D:AE:B0:D1:58:E0:44:DE:9A:12:21:6A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914976C/8350D2BC595C11EF91596350C4F9AE02/9-pxtubNBKVdrrDRWOBE3poSIWo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/9-pxtubNBKVdrrDRWOBE3poSIWo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914976C/8350D2BC595C11EF91596350C4F9AE02/9-pxtubNBKVdrrDRWOBE3poSIWo.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption ca:ea:d4:0d:85:92:2a:a9:8f:65:cc:8e:90:fd:ec:51:23:00: 6d:5f:2f:32:fa:6a:4b:ff:ac:43:8d:35:9d:72:73:8c:83:02: 02:bf:b4:b7:fb:88:26:35:0a:b2:4a:9b:53:f4:52:94:31:97: 37:3f:a9:cd:34:01:32:65:5a:2f:d2:5f:14:e6:de:a6:b2:6f: 4c:48:1e:24:a0:6d:1f:fc:ea:21:c4:16:46:3d:b9:9f:84:1d: 3b:37:4c:2e:1a:c0:ad:09:b9:fd:c1:40:f8:a9:25:30:00:cc: 7d:b7:4d:a8:17:23:57:f9:01:fb:82:b5:b5:99:2d:a0:ae:78: fa:cc:bb:1b:47:7a:77:ba:c8:f1:b2:0d:49:7f:19:26:6b:12: 80:3b:a8:75:ed:85:d5:e8:63:d0:bc:ba:17:27:b4:03:5b:7b: b9:b4:ae:f7:a0:1b:05:5b:2d:7b:17:4e:72:80:e5:54:a7:e7: 65:97:01:8b:0b:dc:fb:50:41:61:9b:89:42:65:98:9b:08:0c: 70:64:ba:5d:ae:d1:00:98:dd:c0:27:91:3d:85:6a:af:77:50: 24:72:e9:62:5d:d6:30:bb:51:24:4d:b3:9f:58:f9:17:78:b3: dd:0f:97:46:1c:65:41:00:84:8f:0a:9d:ae:c4:13:a8:b0:dd: 47:c9:95:11 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAKYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDk3NkMxMTAvBgNVBAUTKEY3RUE3MUI2RTZDRDA0QTU1REFFQjBEMTU4RTA0NERF OUExMjIxNkEwHhcNMjUwNjE1MDUxOTQ2WhcNMjUwNjIyMDUxOTQ2WjAYMRYwFAYD VQQDEw02ODRlNTdmMy03ODRjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA30uj54mLkD1rrwEudpah3LVKZ1KaoSJjCR9DKicYJkcXTRhJBjsz8j8KhghK XqjY+OenABhFDKtiFh62nUXBqyUDyK4zokizeKVkKalewNgIz8E6k/St8sbaAZUB yBUYUrccEffYcoJDJRiUpkywb3lQDNTjjCN8Y6YhsA383K2twz8iiCtLwnVp0u6U vxlLnc87jJD70cQdLOSOO5z8xsEwJcWXlUktcZX5lo4kPb+5XjipwwQ7MRppnzvo cTt4DflCUUlPhMY5c3kRf8/gs80Ufm5PCwgRo8RFIBh60mQ0s6nAW9sqpxg/a8IB EQmxivPH69Yj18+pRow4ifIRBQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFCpXo6OG VNMYVOSKmbqOvsxSkneKMB8GA1UdIwQYMBaAFPfqcbbmzQSlXa6w0VjgRN6aEiFq MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0OTc2Qy84MzUwRDJCQzU5 NUMxMUVGOTE1OTYzNTBDNEY5QUUwMi85LXB4dHViTkJLVmRyckRSV09CRTNwb1NJ V28uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzktcHh0dWJOQktWZHJyRFJXT0JFM3BvU0lXby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 OTc2Qy84MzUwRDJCQzU5NUMxMUVGOTE1OTYzNTBDNEY5QUUwMi85LXB4dHViTkJL VmRyckRSV09CRTNwb1NJV28ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQDK6tQNhZIqqY9lzI6Q/exRIwBtXy8y+mpL/6xDjTWdcnOMgwICv7S3 +4gmNQqySptT9FKUMZc3P6nNNAEyZVov0l8U5t6msm9MSB4koG0f/OohxBZGPbmf hB07N0wuGsCtCbn9wUD4qSUwAMx9t02oFyNX+QH7grW1mS2grnj6zLsbR3p3usjx sg1JfxkmaxKAO6h17YXV6GPQvLoXJ7QDW3u5tK73oBsFWy17F05ygOVUp+dllwGL C9z7UEFhm4lCZZibCAxwZLpdrtEAmN3AJ5E9hWqvd1AkculiXdYwu1EkTbOfWPkX eLPdD5dGHGVBAISPCp2uxBOosN1HyZUR -----END CERTIFICATE-----Generated at Sun Jun 15 10:01:44 2025 by rpki-client