$ rpki-client -vvf rpki.apnic.net/member_repository/A919F0DA/150D3EF41D6811E28C1828A408B02CD2/P0HgSNIrKhrqTOC4RJUqSjnWyzc.mft File: P0HgSNIrKhrqTOC4RJUqSjnWyzc.mft (raw, json) Hash identifier: eRhUHckotod43j1r/hhblpjejb6v6zBsq4hu6OpiSiI= Subject key identifier: 94:A8:03:9D:C4:68:88:DF:8A:89:2C:59:5A:0D:0C:CA:08:3A:8E:23 Authority key identifier: 3F:41:E0:48:D2:2B:2A:1A:EA:4C:E0:B8:44:95:2A:4A:39:D6:CB:37 Certificate issuer: /CN=A919F0DA/serialNumber=3F41E048D22B2A1AEA4CE0B844952A4A39D6CB37 Certificate serial: 3493 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/P0HgSNIrKhrqTOC4RJUqSjnWyzc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A919F0DA/150D3EF41D6811E28C1828A408B02CD2/P0HgSNIrKhrqTOC4RJUqSjnWyzc.mft Manifest number: 6047 Signing time: Sat 14 Jun 2025 14:15:24 +0000 Manifest this update: Sat 14 Jun 2025 14:15:24 +0000 Manifest next update: Sat 21 Jun 2025 14:15:24 +0000 Files and hashes: 1: P0HgSNIrKhrqTOC4RJUqSjnWyzc.crl (hash: +mbdULFLU4asVAe/bEBS8NTBHPnQBzmd9MFUJIrHQxI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A919F0DA/150D3EF41D6811E28C1828A408B02CD2/P0HgSNIrKhrqTOC4RJUqSjnWyzc.crl rsync://rpki.apnic.net/member_repository/A919F0DA/150D3EF41D6811E28C1828A408B02CD2/P0HgSNIrKhrqTOC4RJUqSjnWyzc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/P0HgSNIrKhrqTOC4RJUqSjnWyzc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 21 Jun 2025 14:15:23 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13459 (0x3493) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A919F0DA, serialNumber=3F41E048D22B2A1AEA4CE0B844952A4A39D6CB37 Validity Not Before: Jun 14 14:15:24 2025 GMT Not After : Jun 21 14:15:24 2025 GMT Subject: CN=684d83fc-cabd Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:6f:df:3a:b2:e8:bc:57:ec:71:98:1d:cd:83: ed:2b:d3:2e:60:ae:46:e6:64:69:ac:6a:2e:ed:7e: 78:8d:d5:61:63:2b:dd:04:01:76:c8:35:47:2d:86: 44:00:05:95:6b:51:fa:dc:ff:9c:26:1a:a9:35:c5: 01:3c:cf:c2:0c:6a:90:7c:c1:18:42:1d:9d:3c:e6: 88:a0:cf:1b:e9:86:3a:4d:3d:96:9b:c4:c6:43:18: 0a:46:f7:b5:03:6d:c0:84:0f:6c:21:1e:43:7f:bc: b1:e1:a1:20:84:f3:41:1c:d5:4c:1d:f5:32:54:98: 30:94:0f:a4:a2:2a:26:3c:d7:fd:b8:5c:d8:02:a3: 0d:70:61:42:a5:79:b4:d6:eb:11:40:09:36:73:9d: aa:33:f2:ef:53:22:94:08:cd:7d:61:fe:2b:df:e6: d7:26:0d:2e:7f:62:73:ed:50:7a:34:5b:eb:94:4d: fd:22:2b:1b:fb:b1:50:42:9c:6a:7d:c7:43:ec:c1: 3a:0a:01:a7:50:6e:60:34:39:0b:91:c1:07:6c:2a: a9:bb:86:0a:47:19:64:e3:30:50:12:bf:ee:f9:ae: 51:da:7e:e2:01:c6:ad:80:94:9a:12:7a:fc:b7:23: 5c:56:a3:d3:d2:01:d7:19:13:e0:fc:b9:21:5e:40: 48:81 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 94:A8:03:9D:C4:68:88:DF:8A:89:2C:59:5A:0D:0C:CA:08:3A:8E:23 X509v3 Authority Key Identifier: keyid:3F:41:E0:48:D2:2B:2A:1A:EA:4C:E0:B8:44:95:2A:4A:39:D6:CB:37 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A919F0DA/150D3EF41D6811E28C1828A408B02CD2/P0HgSNIrKhrqTOC4RJUqSjnWyzc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/P0HgSNIrKhrqTOC4RJUqSjnWyzc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A919F0DA/150D3EF41D6811E28C1828A408B02CD2/P0HgSNIrKhrqTOC4RJUqSjnWyzc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 41:a4:54:33:5b:75:35:56:7b:b3:56:6b:09:7e:68:0f:97:51: 1f:c7:19:25:aa:2e:0b:e8:67:bd:54:64:bc:27:53:c9:5e:d9: f2:0a:e4:61:37:c6:df:44:2c:78:d0:f8:6f:b7:82:d6:5e:4d: 33:be:9e:56:84:a5:8b:22:26:be:a3:52:65:29:dc:39:05:d4: ca:ba:fc:1a:9a:5c:82:0d:81:4e:a8:f6:62:59:4f:71:6e:82: 5e:e3:c0:09:b2:d7:2c:76:97:fb:c6:ba:09:8f:7d:ca:63:69: 8f:30:50:c5:66:9d:1e:9f:0e:7e:54:89:aa:77:ac:03:cd:e3: 67:6e:07:f5:bc:f2:f7:a2:e2:6c:8e:69:f7:27:9f:d3:91:76: 34:80:cd:09:c5:fd:f7:bb:00:a0:6d:3e:57:4b:6b:66:d9:08: 85:9e:6a:8a:3d:5c:73:94:76:5d:79:41:05:99:69:8c:bc:26: c2:87:5a:bb:ef:55:f4:df:54:35:c4:11:96:7e:23:48:40:24: fd:26:02:16:89:bf:17:1c:0d:1e:91:84:e6:fa:f8:58:7b:86: 52:00:37:ac:3e:73:50:da:64:6c:8a:87:3b:47:af:9c:95:e4: 6d:a6:64:11:a6:fe:8b:5a:2a:9e:f1:3e:17:28:96:ee:ba:6b: c5:d3:e6:69 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICNJMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OUYwREExMTAvBgNVBAUTKDNGNDFFMDQ4RDIyQjJBMUFFQTRDRTBCODQ0OTUyQTRB MzlENkNCMzcwHhcNMjUwNjE0MTQxNTI0WhcNMjUwNjIxMTQxNTI0WjAYMRYwFAYD VQQDEw02ODRkODNmYy1jYWJkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwW/fOrLovFfscZgdzYPtK9MuYK5G5mRprGou7X54jdVhYyvdBAF2yDVHLYZE AAWVa1H63P+cJhqpNcUBPM/CDGqQfMEYQh2dPOaIoM8b6YY6TT2Wm8TGQxgKRve1 A23AhA9sIR5Df7yx4aEghPNBHNVMHfUyVJgwlA+koiomPNf9uFzYAqMNcGFCpXm0 1usRQAk2c52qM/LvUyKUCM19Yf4r3+bXJg0uf2Jz7VB6NFvrlE39Iisb+7FQQpxq fcdD7ME6CgGnUG5gNDkLkcEHbCqpu4YKRxlk4zBQEr/u+a5R2n7iAcatgJSaEnr8 tyNcVqPT0gHXGRPg/LkhXkBIgQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJSoA53E aIjfioksWVoNDMoIOo4jMB8GA1UdIwQYMBaAFD9B4EjSKyoa6kzguESVKko51ss3 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5RjBEQS8xNTBEM0VGNDFE NjgxMUUyOEMxODI4QTQwOEIwMkNEMi9QMEhnU05JcktocnFUT0M0UkpVcVNqbld5 emMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1AwSGdTTklyS2hycVRPQzRSSlVxU2puV3l6Yy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 RjBEQS8xNTBEM0VGNDFENjgxMUUyOEMxODI4QTQwOEIwMkNEMi9QMEhnU05Jckto cnFUT0M0UkpVcVNqbld5emMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBBpFQzW3U1VnuzVmsJfmgPl1Efxxklqi4L6Ge9VGS8J1PJXtnyCuRh N8bfRCx40Phvt4LWXk0zvp5WhKWLIia+o1JlKdw5BdTKuvwamlyCDYFOqPZiWU9x boJe48AJstcsdpf7xroJj33KY2mPMFDFZp0enw5+VImqd6wDzeNnbgf1vPL3ouJs jmn3J5/TkXY0gM0Jxf33uwCgbT5XS2tm2QiFnmqKPVxzlHZdeUEFmWmMvCbCh1q7 71X031Q1xBGWfiNIQCT9JgIWib8XHA0ekYTm+vhYe4ZSADesPnNQ2mRsioc7R6+c leRtpmQRpv6LWiqe8T4XKJbuumvF0+Zp -----END CERTIFICATE-----Generated at Sat Jun 14 18:46:20 2025 by rpki-client