$ rpki-client -vvf rpki.apnic.net/member_repository/A915B880/1F5118A4A2EF11E99D4E0A5BC4F9AE02/PXpOCpmvFe8LN5DQ55YeiHUoGYM.mft File: PXpOCpmvFe8LN5DQ55YeiHUoGYM.mft (raw, json) Hash identifier: ArvntgDNEvBJqmfLC4ZusAMjPsrhkvFm6nUo+xtWdBs= Subject key identifier: 86:5A:1D:C9:BA:6D:0D:B4:A5:A2:B6:65:09:3E:69:BB:C1:85:2D:3C Authority key identifier: 3D:7A:4E:0A:99:AF:15:EF:0B:37:90:D0:E7:96:1E:88:75:28:19:83 Certificate issuer: /CN=A915B880/serialNumber=3D7A4E0A99AF15EF0B3790D0E7961E8875281983 Certificate serial: 0E43 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PXpOCpmvFe8LN5DQ55YeiHUoGYM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A915B880/1F5118A4A2EF11E99D4E0A5BC4F9AE02/PXpOCpmvFe8LN5DQ55YeiHUoGYM.mft Manifest number: 0E3B Signing time: Sat 14 Jun 2025 17:41:22 +0000 Manifest this update: Sat 14 Jun 2025 17:41:21 +0000 Manifest next update: Sat 21 Jun 2025 17:41:21 +0000 Files and hashes: 1: PXpOCpmvFe8LN5DQ55YeiHUoGYM.crl (hash: Lpn/Cr5dqGq+XV6AkuQsY8Hx5vhBfwip33euqu7PTjg=) 2: 0853C13CA2F011E9B721795CC4F9AE02.roa (hash: PT85jOUkAj1X0WXEwRPCdUqy+wM3om5TOq/+D9IWTpU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A915B880/1F5118A4A2EF11E99D4E0A5BC4F9AE02/PXpOCpmvFe8LN5DQ55YeiHUoGYM.crl rsync://rpki.apnic.net/member_repository/A915B880/1F5118A4A2EF11E99D4E0A5BC4F9AE02/PXpOCpmvFe8LN5DQ55YeiHUoGYM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PXpOCpmvFe8LN5DQ55YeiHUoGYM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 21 Jun 2025 17:13:28 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3651 (0xe43) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A915B880, serialNumber=3D7A4E0A99AF15EF0B3790D0E7961E8875281983 Validity Not Before: Jun 14 17:41:21 2025 GMT Not After : Jun 21 17:41:21 2025 GMT Subject: CN=684db442-3aac Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ce:60:2c:76:bc:41:0f:21:83:d0:cd:c0:d9:30: 9e:17:e7:9c:f5:27:0c:40:c3:6a:70:05:96:08:bc: be:b6:1e:40:c1:e4:06:73:7f:7e:dc:0f:15:d9:2b: 1d:31:58:9c:c4:7f:c4:a9:e0:35:a6:65:1a:7d:e2: 92:96:d8:ef:99:6a:fa:cb:49:08:84:15:ca:de:e7: b8:12:7c:30:d9:21:a3:b2:bc:5b:f6:ee:7f:26:12: 52:f1:49:be:66:ba:28:48:ae:df:c9:55:58:7c:e5: 2c:98:b9:13:c6:ef:92:1a:f4:94:19:dd:cb:c7:cb: 6a:a4:2d:9a:87:f2:34:27:31:c5:59:2d:07:48:50: ae:7b:6f:6b:84:bf:45:7c:2f:d0:2e:d3:97:67:1a: 8a:7a:df:50:77:93:44:67:3d:a6:d3:0e:f8:86:98: 66:dc:1e:b1:ab:fa:01:7d:83:54:50:f4:dc:ec:1f: 38:57:fb:3f:dd:15:21:09:fe:e8:1a:ba:d3:20:a3: e4:be:55:55:19:32:f4:1d:49:c8:a1:41:46:cd:6f: e2:ef:04:33:c6:63:ca:22:5c:ec:75:04:9e:bb:cd: 59:01:d5:7a:85:6a:fe:48:28:0f:53:fe:02:04:62: 15:8a:1c:b7:98:1d:0c:09:f6:c3:4e:3a:5c:ba:1f: fd:17 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 86:5A:1D:C9:BA:6D:0D:B4:A5:A2:B6:65:09:3E:69:BB:C1:85:2D:3C X509v3 Authority Key Identifier: keyid:3D:7A:4E:0A:99:AF:15:EF:0B:37:90:D0:E7:96:1E:88:75:28:19:83 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A915B880/1F5118A4A2EF11E99D4E0A5BC4F9AE02/PXpOCpmvFe8LN5DQ55YeiHUoGYM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PXpOCpmvFe8LN5DQ55YeiHUoGYM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A915B880/1F5118A4A2EF11E99D4E0A5BC4F9AE02/PXpOCpmvFe8LN5DQ55YeiHUoGYM.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 84:af:6f:96:33:ed:8e:65:57:7c:47:4d:70:5a:48:9a:55:ed: 04:84:be:bc:fd:4c:72:aa:3c:28:14:41:e6:f1:07:c7:fa:d3: f1:ac:df:2c:99:d4:18:91:43:b2:f4:19:1f:c5:a0:59:93:c1: 03:1a:db:cd:41:2f:7a:c2:23:0e:37:f9:4d:16:93:38:d0:a1: cd:fe:9c:8a:a1:db:28:a0:bc:bb:cd:cf:a2:99:ed:6e:81:64: c4:32:02:2d:de:d3:15:41:a5:4e:1c:b5:49:d7:7d:56:52:29: ea:06:e4:66:28:0e:6e:51:dd:df:aa:97:d3:9d:d8:0a:ef:be: 85:5d:15:79:2c:a2:3e:48:4e:84:50:c7:53:3c:96:c8:18:e9: df:97:25:f6:86:8f:d6:aa:09:39:8d:06:ed:83:4d:d5:1c:aa: d4:ab:09:8c:90:49:8f:99:ff:c4:3b:ed:82:43:f3:5e:62:73: 36:e8:9e:d3:de:99:95:87:db:bf:00:ba:08:0d:b5:33:db:76: 6e:8c:d1:78:a9:1b:1c:f5:a6:4e:1f:24:40:2c:ba:11:9d:60: 27:c6:c5:78:76:ac:ae:ec:96:e9:29:52:a9:e0:ed:3f:c9:60: 7d:d1:b2:c6:51:1b:af:cd:28:51:93:0e:a3:ca:5d:1b:f2:30: 8c:ba:67:15 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDkMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NUI4ODAxMTAvBgNVBAUTKDNEN0E0RTBBOTlBRjE1RUYwQjM3OTBEMEU3OTYxRTg4 NzUyODE5ODMwHhcNMjUwNjE0MTc0MTIxWhcNMjUwNjIxMTc0MTIxWjAYMRYwFAYD VQQDEw02ODRkYjQ0Mi0zYWFjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzmAsdrxBDyGD0M3A2TCeF+ec9ScMQMNqcAWWCLy+th5AweQGc39+3A8V2Ssd MVicxH/EqeA1pmUafeKSltjvmWr6y0kIhBXK3ue4Enww2SGjsrxb9u5/JhJS8Um+ ZrooSK7fyVVYfOUsmLkTxu+SGvSUGd3Lx8tqpC2ah/I0JzHFWS0HSFCue29rhL9F fC/QLtOXZxqKet9Qd5NEZz2m0w74hphm3B6xq/oBfYNUUPTc7B84V/s/3RUhCf7o GrrTIKPkvlVVGTL0HUnIoUFGzW/i7wQzxmPKIlzsdQSeu81ZAdV6hWr+SCgPU/4C BGIVihy3mB0MCfbDTjpcuh/9FwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFIZaHcm6 bQ20paK2ZQk+abvBhS08MB8GA1UdIwQYMBaAFD16TgqZrxXvCzeQ0OeWHoh1KBmD MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1Qjg4MC8xRjUxMThBNEEy RUYxMUU5OUQ0RTBBNUJDNEY5QUUwMi9QWHBPQ3BtdkZlOExONURRNTVZZWlIVW9H WU0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1BYcE9DcG12RmU4TE41RFE1NVllaUhVb0dZTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 Qjg4MC8xRjUxMThBNEEyRUYxMUU5OUQ0RTBBNUJDNEY5QUUwMi9QWHBPQ3BtdkZl OExONURRNTVZZWlIVW9HWU0ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCEr2+WM+2OZVd8R01wWkiaVe0EhL68/UxyqjwoFEHm8QfH+tPxrN8s mdQYkUOy9BkfxaBZk8EDGtvNQS96wiMON/lNFpM40KHN/pyKodsooLy7zc+ime1u gWTEMgIt3tMVQaVOHLVJ131WUinqBuRmKA5uUd3fqpfTndgK776FXRV5LKI+SE6E UMdTPJbIGOnflyX2ho/Wqgk5jQbtg03VHKrUqwmMkEmPmf/EO+2CQ/NeYnM26J7T 3pmVh9u/ALoIDbUz23ZujNF4qRsc9aZOHyRALLoRnWAnxsV4dqyu7JbpKVKp4O0/ yWB90bLGURuvzShRkw6jyl0b8jCMumcV -----END CERTIFICATE-----Generated at Sat Jun 14 19:34:36 2025 by rpki-client