$ rpki-client -vvf rpki.apnic.net/member_repository/A9150B47/DA1755781DA311E2BED7789908B02CD2/PkPgI8CFNZTq13soKJo_HxDDCR0.mft File: PkPgI8CFNZTq13soKJo_HxDDCR0.mft (raw, json) Hash identifier: FPTBE4puYlFWs9XHk4bPRR15R1s4quwlAZv+kawFJ6Y= Subject key identifier: 6D:6A:C4:E3:84:E1:7C:83:9F:97:B5:60:B9:84:9E:4A:16:E0:2C:60 Authority key identifier: 3E:43:E0:23:C0:85:35:94:EA:D7:7B:28:28:9A:3F:1F:10:C3:09:1D Certificate issuer: /CN=A9150B47/serialNumber=3E43E023C0853594EAD77B28289A3F1F10C3091D Certificate serial: 34A8 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PkPgI8CFNZTq13soKJo_HxDDCR0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9150B47/DA1755781DA311E2BED7789908B02CD2/PkPgI8CFNZTq13soKJo_HxDDCR0.mft Manifest number: 34A5 Signing time: Tue 12 Aug 2025 15:10:40 +0000 Manifest this update: Tue 12 Aug 2025 15:10:40 +0000 Manifest next update: Tue 19 Aug 2025 15:10:40 +0000 Files and hashes: 1: PkPgI8CFNZTq13soKJo_HxDDCR0.crl (hash: fmPfpkE9Y61zdahv6vWlzx8hJ4i4ufFpF5a7ZKaI/1g=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9150B47/DA1755781DA311E2BED7789908B02CD2/PkPgI8CFNZTq13soKJo_HxDDCR0.crl rsync://rpki.apnic.net/member_repository/A9150B47/DA1755781DA311E2BED7789908B02CD2/PkPgI8CFNZTq13soKJo_HxDDCR0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PkPgI8CFNZTq13soKJo_HxDDCR0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 19 Aug 2025 15:10:39 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13480 (0x34a8) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9150B47, serialNumber=3E43E023C0853594EAD77B28289A3F1F10C3091D Validity Not Before: Aug 12 15:10:40 2025 GMT Not After : Aug 19 15:10:40 2025 GMT Subject: CN=689b5970-13d6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e5:42:07:af:4b:cb:cf:af:4e:52:38:88:a1:ab: 7e:ba:6d:4c:c7:73:a6:e3:2f:fe:df:45:96:b8:42: 97:e0:b7:55:e3:e1:0b:68:a2:0a:d1:08:c9:a1:0b: 96:43:dc:02:95:17:c6:27:1d:c2:91:a6:14:29:cd: 36:01:13:7a:fc:66:37:de:c5:71:49:b6:98:3c:f7: 5c:1e:df:e3:e9:dc:67:0d:b1:df:5a:e5:b5:b5:42: fd:ca:d1:55:42:92:16:57:02:3b:45:a2:da:ca:98: cb:93:6c:80:e9:2f:f6:d9:8b:78:cd:74:1f:d9:4f: 59:27:f9:cd:3f:9e:57:54:3c:a7:cc:96:3f:60:10: b7:45:7f:79:27:8d:bb:f2:b3:77:d0:8b:e2:82:dc: 2d:16:67:70:e3:1d:46:5f:58:d8:5b:65:6d:1b:fb: fb:de:12:94:99:9b:88:6f:1d:8d:e4:42:63:56:71: d7:1c:47:b0:67:e6:f1:93:3a:da:e5:2c:98:bb:be: 5f:8c:4d:4c:c7:02:f3:03:98:6a:ba:39:b9:c9:bf: 2a:10:f1:53:53:7a:82:06:c9:24:5b:55:01:3d:e1: 8d:3d:d3:ba:09:3a:01:88:4c:cb:e6:10:7e:47:84: ac:bf:30:1d:5e:11:13:28:8c:dc:ad:1d:fa:cb:2c: b1:cf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6D:6A:C4:E3:84:E1:7C:83:9F:97:B5:60:B9:84:9E:4A:16:E0:2C:60 X509v3 Authority Key Identifier: keyid:3E:43:E0:23:C0:85:35:94:EA:D7:7B:28:28:9A:3F:1F:10:C3:09:1D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9150B47/DA1755781DA311E2BED7789908B02CD2/PkPgI8CFNZTq13soKJo_HxDDCR0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PkPgI8CFNZTq13soKJo_HxDDCR0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9150B47/DA1755781DA311E2BED7789908B02CD2/PkPgI8CFNZTq13soKJo_HxDDCR0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 70:a8:10:96:32:4f:65:7e:0a:c6:1d:0e:26:c9:77:1d:b0:fd: e9:80:e0:69:10:c3:1a:b4:40:89:ea:a9:2a:79:64:4f:21:1d: c2:f4:43:8e:dc:b9:28:54:39:f5:45:25:c2:79:82:65:51:88: b1:14:5b:8e:b5:70:12:f3:13:33:c4:a6:2e:48:8e:10:53:04: 88:6d:66:f5:7f:91:ad:bc:2d:33:c8:6c:8a:cb:59:29:aa:ae: ee:19:8a:bd:18:3e:23:b2:f0:97:3e:d0:77:2b:0f:36:c5:19: cc:da:d0:46:8a:34:f7:25:2b:da:b6:b6:16:bf:03:27:1e:c0: db:9d:de:14:7f:f3:f6:36:97:43:80:c4:be:e1:e4:46:cc:a4: 23:7d:f8:3b:60:05:a5:8b:7d:d5:7e:27:6d:8a:62:e2:25:99: 1b:88:08:74:d3:8e:f9:b3:91:74:b7:d5:a1:b3:54:ee:f7:23: 16:83:a1:93:0e:3a:c2:1f:0b:08:13:e5:09:ec:4c:53:08:52: 20:67:a0:f7:3b:5a:e2:38:9c:4a:22:36:67:09:60:65:24:da: 22:1c:41:b8:1b:5e:94:b9:90:e7:38:f1:35:07:04:71:56:44: 1e:de:3e:8f:56:d7:e6:a4:c9:40:ca:e9:79:7c:d2:43:a4:d7: 42:b6:12:5c -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICNKgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTBCNDcxMTAvBgNVBAUTKDNFNDNFMDIzQzA4NTM1OTRFQUQ3N0IyODI4OUEzRjFG MTBDMzA5MUQwHhcNMjUwODEyMTUxMDQwWhcNMjUwODE5MTUxMDQwWjAYMRYwFAYD VQQDEw02ODliNTk3MC0xM2Q2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA5UIHr0vLz69OUjiIoat+um1Mx3Om4y/+30WWuEKX4LdV4+ELaKIK0QjJoQuW Q9wClRfGJx3CkaYUKc02ARN6/GY33sVxSbaYPPdcHt/j6dxnDbHfWuW1tUL9ytFV QpIWVwI7RaLaypjLk2yA6S/22Yt4zXQf2U9ZJ/nNP55XVDynzJY/YBC3RX95J427 8rN30IvigtwtFmdw4x1GX1jYW2VtG/v73hKUmZuIbx2N5EJjVnHXHEewZ+bxkzra 5SyYu75fjE1MxwLzA5hqujm5yb8qEPFTU3qCBskkW1UBPeGNPdO6CToBiEzL5hB+ R4SsvzAdXhETKIzcrR36yyyxzwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFG1qxOOE 4XyDn5e1YLmEnkoW4CxgMB8GA1UdIwQYMBaAFD5D4CPAhTWU6td7KCiaPx8Qwwkd MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1MEI0Ny9EQTE3NTU3ODFE QTMxMUUyQkVENzc4OTkwOEIwMkNEMi9Qa1BnSThDRk5aVHExM3NvS0pvX0h4RERD UjAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1BrUGdJOENGTlpUcTEzc29LSm9fSHhERENSMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 MEI0Ny9EQTE3NTU3ODFEQTMxMUUyQkVENzc4OTkwOEIwMkNEMi9Qa1BnSThDRk5a VHExM3NvS0pvX0h4RERDUjAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBwqBCWMk9lfgrGHQ4myXcdsP3pgOBpEMMatECJ6qkqeWRPIR3C9EOO 3LkoVDn1RSXCeYJlUYixFFuOtXAS8xMzxKYuSI4QUwSIbWb1f5GtvC0zyGyKy1kp qq7uGYq9GD4jsvCXPtB3Kw82xRnM2tBGijT3JSvatrYWvwMnHsDbnd4Uf/P2NpdD gMS+4eRGzKQjffg7YAWli33VfidtimLiJZkbiAh00475s5F0t9Whs1Tu9yMWg6GT DjrCHwsIE+UJ7ExTCFIgZ6D3O1riOJxKIjZnCWBlJNoiHEG4G16UuZDnOPE1BwRx VkQe3j6PVtfmpMlAyul5fNJDpNdCthJc -----END CERTIFICATE-----Generated at Wed Aug 13 07:37:58 2025 by rpki-client