$ rpki-client -vvf rpki.apnic.net/member_repository/A9150B47/DA1755781DA311E2BED7789908B02CD2/PkPgI8CFNZTq13soKJo_HxDDCR0.mft File: PkPgI8CFNZTq13soKJo_HxDDCR0.mft (raw, json) Hash identifier: bJ7+YCxEkQvlmljEy5zKoQv2nRh/6dwtlh4sh63mC8U= Subject key identifier: EB:97:8B:8C:4A:EC:3E:D9:3C:37:1A:B7:EE:D1:A8:37:4C:1B:3F:8C Authority key identifier: 3E:43:E0:23:C0:85:35:94:EA:D7:7B:28:28:9A:3F:1F:10:C3:09:1D Certificate issuer: /CN=A9150B47/serialNumber=3E43E023C0853594EAD77B28289A3F1F10C3091D Certificate serial: 348A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PkPgI8CFNZTq13soKJo_HxDDCR0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9150B47/DA1755781DA311E2BED7789908B02CD2/PkPgI8CFNZTq13soKJo_HxDDCR0.mft Manifest number: 3487 Signing time: Sat 14 Jun 2025 15:07:29 +0000 Manifest this update: Sat 14 Jun 2025 15:07:29 +0000 Manifest next update: Sat 21 Jun 2025 15:07:28 +0000 Files and hashes: 1: PkPgI8CFNZTq13soKJo_HxDDCR0.crl (hash: MSALCtG7ozPoCCfQ1+yYjvOBBLFC00Z9peRdRuIHECw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9150B47/DA1755781DA311E2BED7789908B02CD2/PkPgI8CFNZTq13soKJo_HxDDCR0.crl rsync://rpki.apnic.net/member_repository/A9150B47/DA1755781DA311E2BED7789908B02CD2/PkPgI8CFNZTq13soKJo_HxDDCR0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PkPgI8CFNZTq13soKJo_HxDDCR0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 21 Jun 2025 15:07:28 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13450 (0x348a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9150B47, serialNumber=3E43E023C0853594EAD77B28289A3F1F10C3091D Validity Not Before: Jun 14 15:07:29 2025 GMT Not After : Jun 21 15:07:28 2025 GMT Subject: CN=684d9031-b601 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dc:a2:4b:61:61:fc:d8:58:05:de:8a:06:4d:15: 41:f3:40:cd:a2:64:ff:f0:55:a4:b4:c2:d7:0e:f8: ba:ab:f8:28:2c:32:89:52:fa:9c:2b:5d:b1:27:5f: a9:f1:8a:f8:3c:89:a1:a8:99:6c:67:3f:c6:ff:ba: a3:24:61:19:2e:4b:01:4d:bc:ac:30:e9:df:81:95: c0:5d:45:0c:63:c7:5a:dc:f0:52:51:ce:f9:08:25: 1f:c1:df:59:0b:b6:c0:90:42:17:fe:94:08:63:01: 96:67:a5:7c:0a:6e:1d:b7:f5:1a:cd:60:de:ca:ad: 93:8a:74:fc:9d:48:13:1b:e4:a3:19:a4:34:09:01: 45:e4:b0:7d:ab:45:37:29:11:16:d8:54:72:bd:b8: 22:76:38:0d:8c:ec:bb:ed:ef:02:6c:40:74:6b:9f: 62:3a:3e:24:84:4b:12:12:bc:c4:af:2b:e0:89:01: e8:5f:7b:f7:96:8f:d2:c6:56:d4:24:f7:e9:65:33: 6c:d5:28:30:8e:c5:f8:ca:49:ac:e5:d4:76:29:2d: c1:c7:b6:61:c0:a5:be:ff:d9:29:6e:94:3f:9a:d8: f1:48:be:1f:c3:2d:89:8f:fe:23:32:a9:58:14:b7: b0:0e:30:54:80:c9:f7:71:a2:5f:be:e3:b2:cd:25: 5e:f3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EB:97:8B:8C:4A:EC:3E:D9:3C:37:1A:B7:EE:D1:A8:37:4C:1B:3F:8C X509v3 Authority Key Identifier: keyid:3E:43:E0:23:C0:85:35:94:EA:D7:7B:28:28:9A:3F:1F:10:C3:09:1D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9150B47/DA1755781DA311E2BED7789908B02CD2/PkPgI8CFNZTq13soKJo_HxDDCR0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PkPgI8CFNZTq13soKJo_HxDDCR0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9150B47/DA1755781DA311E2BED7789908B02CD2/PkPgI8CFNZTq13soKJo_HxDDCR0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 57:f2:95:52:69:86:d6:37:38:d8:e4:a4:be:4b:bd:2a:86:bf: 8a:a5:db:47:f9:f8:fb:27:56:c6:d3:2c:42:4b:d3:d7:74:f9: 42:3d:f0:01:aa:48:9e:0c:b5:26:b0:d8:b8:a3:54:3a:2c:a3: 52:b6:66:e4:f2:44:f3:fa:35:3a:e8:b3:a2:c1:00:c1:37:82: bd:fc:43:a9:12:08:fb:9d:90:77:c7:bc:18:e6:b1:bb:7d:8d: 96:c3:37:01:04:0a:fd:ec:28:06:38:95:6a:b8:04:6c:42:ea: c0:92:36:e6:06:7e:fd:88:ed:cc:16:5f:0e:20:57:f8:cc:4e: 65:35:de:b8:be:30:2c:09:e1:40:b5:82:c3:c0:1e:8e:bd:39: 89:ae:c1:ab:d4:be:4e:61:fb:9a:9e:6a:54:d9:28:49:ea:49: d0:88:dc:e9:ab:45:8e:6e:df:8d:be:e0:d5:69:e1:dd:5d:72: 13:2a:c9:8b:db:f5:9c:25:39:77:c6:84:9d:5d:3a:0d:37:86: 52:95:9d:1b:e9:87:a9:33:af:58:a0:1d:f7:c7:ee:d4:59:60: 69:c0:80:24:ba:cf:83:1e:e1:4f:a2:38:4f:2d:27:e1:47:42: c8:34:80:5d:45:74:e2:92:b6:75:be:05:41:3e:73:79:30:70: fb:fd:6f:69 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICNIowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTBCNDcxMTAvBgNVBAUTKDNFNDNFMDIzQzA4NTM1OTRFQUQ3N0IyODI4OUEzRjFG MTBDMzA5MUQwHhcNMjUwNjE0MTUwNzI5WhcNMjUwNjIxMTUwNzI4WjAYMRYwFAYD VQQDEw02ODRkOTAzMS1iNjAxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA3KJLYWH82FgF3ooGTRVB80DNomT/8FWktMLXDvi6q/goLDKJUvqcK12xJ1+p 8Yr4PImhqJlsZz/G/7qjJGEZLksBTbysMOnfgZXAXUUMY8da3PBSUc75CCUfwd9Z C7bAkEIX/pQIYwGWZ6V8Cm4dt/UazWDeyq2TinT8nUgTG+SjGaQ0CQFF5LB9q0U3 KREW2FRyvbgidjgNjOy77e8CbEB0a59iOj4khEsSErzEryvgiQHoX3v3lo/SxlbU JPfpZTNs1SgwjsX4ykms5dR2KS3Bx7ZhwKW+/9kpbpQ/mtjxSL4fwy2Jj/4jMqlY FLewDjBUgMn3caJfvuOyzSVe8wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFOuXi4xK 7D7ZPDcat+7RqDdMGz+MMB8GA1UdIwQYMBaAFD5D4CPAhTWU6td7KCiaPx8Qwwkd MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1MEI0Ny9EQTE3NTU3ODFE QTMxMUUyQkVENzc4OTkwOEIwMkNEMi9Qa1BnSThDRk5aVHExM3NvS0pvX0h4RERD UjAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1BrUGdJOENGTlpUcTEzc29LSm9fSHhERENSMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 MEI0Ny9EQTE3NTU3ODFEQTMxMUUyQkVENzc4OTkwOEIwMkNEMi9Qa1BnSThDRk5a VHExM3NvS0pvX0h4RERDUjAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBX8pVSaYbWNzjY5KS+S70qhr+KpdtH+fj7J1bG0yxCS9PXdPlCPfAB qkieDLUmsNi4o1Q6LKNStmbk8kTz+jU66LOiwQDBN4K9/EOpEgj7nZB3x7wY5rG7 fY2WwzcBBAr97CgGOJVquARsQurAkjbmBn79iO3MFl8OIFf4zE5lNd64vjAsCeFA tYLDwB6OvTmJrsGr1L5OYfuanmpU2ShJ6knQiNzpq0WObt+NvuDVaeHdXXITKsmL 2/WcJTl3xoSdXToNN4ZSlZ0b6YepM69YoB33x+7UWWBpwIAkus+DHuFPojhPLSfh R0LINIBdRXTikrZ1vgVBPnN5MHD7/W9p -----END CERTIFICATE-----Generated at Sun Jun 15 08:49:15 2025 by rpki-client