$ rpki-client -vvf rpki.apnic.net/member_repository/A9173FAC/B8F5C76A101811F080BCC348C4F9AE02/PxqOo9KtxuyyNg4MN2zlWbn_cfI.mft File: PxqOo9KtxuyyNg4MN2zlWbn_cfI.mft (raw, json) Hash identifier: 7rZ9VqiOhUYX3hRAA2IsmxVKX91EjZ8sLKvs5k0K+IY= Subject key identifier: D5:96:B5:0D:9B:35:2A:E7:A0:C7:60:F4:39:8E:6C:92:12:1C:3A:D0 Authority key identifier: 3F:1A:8E:A3:D2:AD:C6:EC:B2:36:0E:0C:37:6C:E5:59:B9:FF:71:F2 Certificate issuer: /CN=A9173FAC/serialNumber=3F1A8EA3D2ADC6ECB2360E0C376CE559B9FF71F2 Certificate serial: 43 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PxqOo9KtxuyyNg4MN2zlWbn_cfI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9173FAC/B8F5C76A101811F080BCC348C4F9AE02/PxqOo9KtxuyyNg4MN2zlWbn_cfI.mft Manifest number: 43 Signing time: Mon 11 Aug 2025 07:43:50 +0000 Manifest this update: Mon 11 Aug 2025 07:43:50 +0000 Manifest next update: Mon 18 Aug 2025 07:43:50 +0000 Files and hashes: 1: PxqOo9KtxuyyNg4MN2zlWbn_cfI.crl (hash: IwrbqJ8qwRNelGG0wAX5S5/T38JmnWo/5F/SKf3D/0Y=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9173FAC/B8F5C76A101811F080BCC348C4F9AE02/PxqOo9KtxuyyNg4MN2zlWbn_cfI.crl rsync://rpki.apnic.net/member_repository/A9173FAC/B8F5C76A101811F080BCC348C4F9AE02/PxqOo9KtxuyyNg4MN2zlWbn_cfI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PxqOo9KtxuyyNg4MN2zlWbn_cfI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 18 Aug 2025 07:43:49 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 67 (0x43) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9173FAC, serialNumber=3F1A8EA3D2ADC6ECB2360E0C376CE559B9FF71F2 Validity Not Before: Aug 11 07:43:50 2025 GMT Not After : Aug 18 07:43:50 2025 GMT Subject: CN=68999f36-f783 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b2:2e:55:7d:7c:81:03:74:13:16:a5:08:cd:59: 5a:1e:92:ad:f6:57:1c:af:47:8e:03:10:25:75:71: 2e:a3:56:cb:b7:eb:f3:8c:a6:a2:61:d9:c4:c0:50: e6:2d:d0:78:1c:49:77:93:1f:c6:a1:96:c3:8d:7d: a4:fb:89:aa:40:28:f6:63:f2:28:9e:e3:ea:0c:76: 5b:ae:bf:32:da:3b:0c:4a:9c:8e:a0:2c:c1:d5:d5: 1c:a1:b8:a4:e3:85:50:47:a0:6b:d8:d1:16:3d:b3: 2e:45:d7:56:80:f2:8a:6b:24:a6:93:42:c3:45:f6: e5:19:20:ef:26:c7:23:17:21:a8:3b:3c:0e:69:8b: e2:37:8b:fb:5f:e2:67:88:5b:77:aa:5b:47:fc:bc: 32:68:64:a6:6a:62:76:94:a5:9c:58:dc:54:9c:f6: 34:7b:83:f5:0b:b8:3e:60:1f:7f:e4:5f:a9:c3:b7: 96:72:aa:f7:34:04:23:ae:63:ad:4b:06:03:02:43: 62:80:4f:b7:35:d0:dc:4d:63:cc:0f:17:9a:11:d8: 91:b2:48:90:8c:e3:35:ce:ec:c6:d3:3a:7f:f3:09: d3:1f:e1:00:47:08:0b:e7:1c:4e:a0:4b:e8:fa:bb: 53:a1:8a:1d:a6:47:15:32:c3:60:f1:2f:9d:a4:fd: 8f:87 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D5:96:B5:0D:9B:35:2A:E7:A0:C7:60:F4:39:8E:6C:92:12:1C:3A:D0 X509v3 Authority Key Identifier: keyid:3F:1A:8E:A3:D2:AD:C6:EC:B2:36:0E:0C:37:6C:E5:59:B9:FF:71:F2 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9173FAC/B8F5C76A101811F080BCC348C4F9AE02/PxqOo9KtxuyyNg4MN2zlWbn_cfI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PxqOo9KtxuyyNg4MN2zlWbn_cfI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9173FAC/B8F5C76A101811F080BCC348C4F9AE02/PxqOo9KtxuyyNg4MN2zlWbn_cfI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption bb:e1:89:1d:1b:29:61:ea:4b:5f:98:6e:53:a8:dd:ac:32:73: 74:05:8e:d8:b3:3f:7f:33:0b:de:55:3b:37:2a:df:55:0b:a3: 88:65:04:86:39:11:d0:34:00:58:6d:b5:d3:33:88:15:0f:ae: 93:a6:dc:42:30:db:e6:f4:f6:52:78:c7:da:b2:74:6a:8c:c2: 51:68:dc:aa:de:b8:d7:50:68:34:6f:f1:f9:3c:d6:16:33:9b: 91:a7:f4:35:4d:79:47:cb:cd:e7:b4:21:b0:04:b0:da:bc:49: a2:69:ca:f7:34:a8:de:3d:e9:1e:16:fc:d1:cf:a5:65:82:10: 78:d8:99:fc:7f:fc:e4:d4:35:49:c5:21:75:46:c6:ab:bf:14: 90:d1:36:00:3e:aa:54:3d:3e:e0:ff:a2:61:e3:68:1e:2d:d9: 2b:d4:06:08:64:46:1b:a3:1a:b7:36:a7:28:13:86:13:0e:be: d2:49:0d:99:cf:8d:fe:b9:8d:76:4b:f2:89:95:80:63:76:c2: 7b:5f:5d:cf:dc:58:74:5c:37:83:bb:97:6c:9d:cd:16:74:11: 6f:10:a9:67:9a:e4:ab:60:98:fe:60:b7:e0:1f:8c:20:25:a7: 5e:26:14:13:9e:10:aa:53:79:cf:a2:20:c9:f9:06:63:56:0a: e0:99:ad:23 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBQzANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE3 M0ZBQzExMC8GA1UEBRMoM0YxQThFQTNEMkFEQzZFQ0IyMzYwRTBDMzc2Q0U1NTlC OUZGNzFGMjAeFw0yNTA4MTEwNzQzNTBaFw0yNTA4MTgwNzQzNTBaMBgxFjAUBgNV BAMTDTY4OTk5ZjM2LWY3ODMwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCyLlV9fIEDdBMWpQjNWVoekq32VxyvR44DECV1cS6jVsu36/OMpqJh2cTAUOYt 0HgcSXeTH8ahlsONfaT7iapAKPZj8iie4+oMdluuvzLaOwxKnI6gLMHV1RyhuKTj hVBHoGvY0RY9sy5F11aA8oprJKaTQsNF9uUZIO8mxyMXIag7PA5pi+I3i/tf4meI W3eqW0f8vDJoZKZqYnaUpZxY3FSc9jR7g/ULuD5gH3/kX6nDt5Zyqvc0BCOuY61L BgMCQ2KAT7c10NxNY8wPF5oR2JGySJCM4zXO7MbTOn/zCdMf4QBHCAvnHE6gS+j6 u1Ohih2mRxUyw2DxL52k/Y+HAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQU1Za1DZs1 Kuegx2D0OY5skhIcOtAwHwYDVR0jBBgwFoAUPxqOo9KtxuyyNg4MN2zlWbn/cfIw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTczRkFDL0I4RjVDNzZBMTAx ODExRjA4MEJDQzM0OEM0RjlBRTAyL1B4cU9vOUt0eHV5eU5nNE1OMnpsV2JuX2Nm SS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvUHhxT285S3R4dXl5Tmc0TU4yemxXYm5fY2ZJLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTcz RkFDL0I4RjVDNzZBMTAxODExRjA4MEJDQzM0OEM0RjlBRTAyL1B4cU9vOUt0eHV5 eU5nNE1OMnpsV2JuX2NmSS5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBALvhiR0bKWHqS1+YblOo3awyc3QFjtizP38zC95VOzcq31ULo4hlBIY5 EdA0AFhttdMziBUPrpOm3EIw2+b09lJ4x9qydGqMwlFo3KreuNdQaDRv8fk81hYz m5Gn9DVNeUfLzee0IbAEsNq8SaJpyvc0qN496R4W/NHPpWWCEHjYmfx//OTUNUnF IXVGxqu/FJDRNgA+qlQ9PuD/omHjaB4t2SvUBghkRhujGrc2pygThhMOvtJJDZnP jf65jXZL8omVgGN2wntfXc/cWHRcN4O7l2ydzRZ0EW8QqWea5KtgmP5gt+AfjCAl p14mFBOeEKpTec+iIMn5BmNWCuCZrSM= -----END CERTIFICATE-----Generated at Wed Aug 13 05:29:50 2025 by rpki-client