$ rpki-client -vvf rpki.apnic.net/member_repository/A919F0DA/150D3EF41D6811E28C1828A408B02CD2/P0HgSNIrKhrqTOC4RJUqSjnWyzc.mft File: P0HgSNIrKhrqTOC4RJUqSjnWyzc.mft (raw, json) Hash identifier: EX/HhbDtIZM7QWiOPw9S5tl1a2gFGEj6nXWgjn9VjtE= Subject key identifier: 21:BF:0C:13:90:48:E9:2B:D0:BE:94:9E:5B:83:37:63:81:8E:3B:A9 Authority key identifier: 3F:41:E0:48:D2:2B:2A:1A:EA:4C:E0:B8:44:95:2A:4A:39:D6:CB:37 Certificate issuer: /CN=A919F0DA/serialNumber=3F41E048D22B2A1AEA4CE0B844952A4A39D6CB37 Certificate serial: 34AF Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/P0HgSNIrKhrqTOC4RJUqSjnWyzc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A919F0DA/150D3EF41D6811E28C1828A408B02CD2/P0HgSNIrKhrqTOC4RJUqSjnWyzc.mft Manifest number: 609C Signing time: Wed 06 Aug 2025 14:15:23 +0000 Manifest this update: Wed 06 Aug 2025 14:15:22 +0000 Manifest next update: Wed 13 Aug 2025 14:15:22 +0000 Files and hashes: 1: P0HgSNIrKhrqTOC4RJUqSjnWyzc.crl (hash: oLfb04rx9fftQf5g9YLIgcE5XsPYKJhMqbVeU4ZOzdc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A919F0DA/150D3EF41D6811E28C1828A408B02CD2/P0HgSNIrKhrqTOC4RJUqSjnWyzc.crl rsync://rpki.apnic.net/member_repository/A919F0DA/150D3EF41D6811E28C1828A408B02CD2/P0HgSNIrKhrqTOC4RJUqSjnWyzc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/P0HgSNIrKhrqTOC4RJUqSjnWyzc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 Aug 2025 14:15:22 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13487 (0x34af) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A919F0DA, serialNumber=3F41E048D22B2A1AEA4CE0B844952A4A39D6CB37 Validity Not Before: Aug 6 14:15:22 2025 GMT Not After : Aug 13 14:15:22 2025 GMT Subject: CN=6893637b-a4af Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cb:c2:25:5a:68:62:fb:99:e1:56:1b:52:67:e3: 57:61:a8:fd:ef:44:96:00:22:7a:26:45:70:e4:a8: b4:f9:1f:45:23:0d:9a:4a:40:06:9a:29:a5:b3:2b: a7:bb:28:f7:b6:52:33:76:9a:93:6a:64:a8:6c:63: ad:3e:ac:ec:d2:95:17:48:e1:35:03:d0:8c:84:4f: b1:b1:6a:ab:27:45:9a:01:e7:f5:6d:01:21:8f:83: e0:72:37:62:3c:c5:59:c4:fe:20:7a:20:f4:5e:68: 89:bb:5f:e5:6d:4c:fe:b8:c2:86:1a:3b:ef:7a:72: a8:d6:ab:29:57:76:cf:fd:c5:a1:1f:fd:89:60:a1: c2:a7:c2:21:cf:87:8b:bd:d7:d9:42:ee:96:1b:3c: f5:43:f0:55:e8:b7:25:64:56:2f:72:18:5a:bd:b6: ce:3d:52:aa:83:06:1e:d2:02:75:6c:e6:e6:b8:26: 91:91:d8:1f:11:2c:6f:55:1f:ab:82:ba:b3:c2:16: 9c:47:62:6d:77:5f:ae:85:4f:b1:75:a2:72:40:04: 5b:ce:52:2b:0a:f3:b5:42:a6:67:f6:6c:5b:31:fb: 71:08:1a:9c:13:c8:aa:5f:0e:b2:4e:53:1f:54:9e: cd:27:1d:bb:8b:a5:8b:a8:5d:f9:94:b8:82:01:2e: 2c:81 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 21:BF:0C:13:90:48:E9:2B:D0:BE:94:9E:5B:83:37:63:81:8E:3B:A9 X509v3 Authority Key Identifier: keyid:3F:41:E0:48:D2:2B:2A:1A:EA:4C:E0:B8:44:95:2A:4A:39:D6:CB:37 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A919F0DA/150D3EF41D6811E28C1828A408B02CD2/P0HgSNIrKhrqTOC4RJUqSjnWyzc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/P0HgSNIrKhrqTOC4RJUqSjnWyzc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A919F0DA/150D3EF41D6811E28C1828A408B02CD2/P0HgSNIrKhrqTOC4RJUqSjnWyzc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 37:a5:12:38:f8:c0:6a:70:2c:d3:04:fb:4b:8e:c1:88:f1:38: 5b:99:8e:25:98:7a:dc:67:a9:25:6e:09:42:a3:80:43:5a:bf: 9d:90:aa:f8:70:36:75:7b:c8:60:ce:67:7f:c7:4a:61:97:77: 1b:fa:06:96:4e:bd:21:2f:98:34:ef:32:bc:90:78:60:3d:cf: 2a:67:44:23:bd:ea:17:16:a8:b2:34:83:8d:e1:88:dc:e3:b8: 42:d7:de:3f:ef:9a:5d:3d:25:d1:45:00:e3:cd:ac:71:8f:40: 5e:95:38:59:81:b9:69:b9:bb:63:b4:ba:34:0a:3d:4f:52:24: b1:40:ab:a0:86:71:de:dd:54:77:0a:05:0e:f3:26:c0:e3:8d: e1:6a:1f:f5:9c:75:dd:51:9f:ed:e4:3f:7a:2d:af:2b:7d:83: 8b:74:9e:ad:cf:67:86:d3:ee:e1:f5:d4:0e:a9:21:1d:23:4a: cd:7c:19:ad:e8:0b:5e:f7:ee:7b:b0:e1:09:f9:09:a4:2e:93: 5a:a8:15:9e:d6:4a:c1:37:61:56:bb:db:a0:22:f3:ac:50:67: 3e:9f:17:b3:e4:f8:fd:82:f5:a3:2d:0e:9f:51:91:6d:13:61: 48:e3:4c:a2:8a:5d:de:7c:ee:9e:ba:71:4e:66:ef:c2:64:a8: f5:4e:1c:31 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICNK8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OUYwREExMTAvBgNVBAUTKDNGNDFFMDQ4RDIyQjJBMUFFQTRDRTBCODQ0OTUyQTRB MzlENkNCMzcwHhcNMjUwODA2MTQxNTIyWhcNMjUwODEzMTQxNTIyWjAYMRYwFAYD VQQDEw02ODkzNjM3Yi1hNGFmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAy8IlWmhi+5nhVhtSZ+NXYaj970SWACJ6JkVw5Ki0+R9FIw2aSkAGmimlsyun uyj3tlIzdpqTamSobGOtPqzs0pUXSOE1A9CMhE+xsWqrJ0WaAef1bQEhj4Pgcjdi PMVZxP4geiD0XmiJu1/lbUz+uMKGGjvvenKo1qspV3bP/cWhH/2JYKHCp8Ihz4eL vdfZQu6WGzz1Q/BV6LclZFYvchhavbbOPVKqgwYe0gJ1bObmuCaRkdgfESxvVR+r grqzwhacR2Jtd1+uhU+xdaJyQARbzlIrCvO1QqZn9mxbMftxCBqcE8iqXw6yTlMf VJ7NJx27i6WLqF35lLiCAS4sgQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFCG/DBOQ SOkr0L6UnluDN2OBjjupMB8GA1UdIwQYMBaAFD9B4EjSKyoa6kzguESVKko51ss3 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5RjBEQS8xNTBEM0VGNDFE NjgxMUUyOEMxODI4QTQwOEIwMkNEMi9QMEhnU05JcktocnFUT0M0UkpVcVNqbld5 emMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1AwSGdTTklyS2hycVRPQzRSSlVxU2puV3l6Yy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 RjBEQS8xNTBEM0VGNDFENjgxMUUyOEMxODI4QTQwOEIwMkNEMi9QMEhnU05Jckto cnFUT0M0UkpVcVNqbld5emMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA3pRI4+MBqcCzTBPtLjsGI8ThbmY4lmHrcZ6klbglCo4BDWr+dkKr4 cDZ1e8hgzmd/x0phl3cb+gaWTr0hL5g07zK8kHhgPc8qZ0QjveoXFqiyNION4Yjc 47hC194/75pdPSXRRQDjzaxxj0BelThZgblpubtjtLo0Cj1PUiSxQKughnHe3VR3 CgUO8ybA443hah/1nHXdUZ/t5D96La8rfYOLdJ6tz2eG0+7h9dQOqSEdI0rNfBmt 6Ate9+57sOEJ+QmkLpNaqBWe1krBN2FWu9ugIvOsUGc+nxez5Pj9gvWjLQ6fUZFt E2FI40yiil3efO6eunFOZu/CZKj1Thwx -----END CERTIFICATE-----Generated at Thu Aug 7 00:41:07 2025 by rpki-client