$ rpki-client -vvf rpki.apnic.net/member_repository/A9117E4D/A64FBCE0C05811E39D8A06645911EA32/pOlXbOhgyP9flyr1k7QFTngj5kI.mft File: pOlXbOhgyP9flyr1k7QFTngj5kI.mft (raw, json) Hash identifier: LZU/6Af36cPm5QtQy4RFdYu8TZSYdM0B4eqSPWrHtAg= Subject key identifier: 77:E7:CB:88:8A:9A:A0:D6:B7:E5:C0:D2:6A:6B:41:A7:0E:0D:73:CA Authority key identifier: A4:E9:57:6C:E8:60:C8:FF:5F:97:2A:F5:93:B4:05:4E:78:23:E6:42 Certificate issuer: /CN=A9117E4D/serialNumber=A4E9576CE860C8FF5F972AF593B4054E7823E642 Certificate serial: 2C4B Authority info access: rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/pOlXbOhgyP9flyr1k7QFTngj5kI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9117E4D/A64FBCE0C05811E39D8A06645911EA32/pOlXbOhgyP9flyr1k7QFTngj5kI.mft Manifest number: 2C48 Signing time: Wed 02 Jul 2025 14:26:33 +0000 Manifest this update: Wed 02 Jul 2025 14:26:32 +0000 Manifest next update: Wed 09 Jul 2025 14:26:32 +0000 Files and hashes: 1: pOlXbOhgyP9flyr1k7QFTngj5kI.crl (hash: /ORkKFIMxwVkYV7LznTzVQzsJWhmTlTw1OI7/ne+BFg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9117E4D/A64FBCE0C05811E39D8A06645911EA32/pOlXbOhgyP9flyr1k7QFTngj5kI.crl rsync://rpki.apnic.net/member_repository/A9117E4D/A64FBCE0C05811E39D8A06645911EA32/pOlXbOhgyP9flyr1k7QFTngj5kI.mft rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/pOlXbOhgyP9flyr1k7QFTngj5kI.cer rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.crl rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DPzneFf88B852ZpitKpi5hWedvg.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 09 Jul 2025 14:26:32 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 11339 (0x2c4b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9117E4D, serialNumber=A4E9576CE860C8FF5F972AF593B4054E7823E642 Validity Not Before: Jul 2 14:26:32 2025 GMT Not After : Jul 9 14:26:32 2025 GMT Subject: CN=68654199-27fd Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:6d:4e:db:22:4e:8e:77:fd:53:77:eb:a8:37: a2:a5:f5:c9:85:35:9a:6a:df:d1:98:00:5c:a0:22: 79:12:d3:79:31:3d:b0:05:73:47:9a:0e:3d:31:85: 9b:c0:f9:3f:cc:6c:fa:0f:b3:33:09:cd:b7:67:50: 79:d6:01:1c:a4:71:77:85:9f:6a:ec:11:fa:44:52: 9e:d8:68:1f:d7:e1:aa:f5:e0:53:2a:d4:2e:d8:c7: 05:26:2a:a4:07:b3:90:a2:ab:bf:df:fd:61:d5:f6: b3:84:4a:d4:47:5f:a4:29:48:f8:57:31:a4:a1:5b: 7e:4d:ac:87:fe:22:7a:30:5a:a7:a2:58:16:64:fd: cb:d0:ee:21:13:22:3a:24:ce:1d:4d:08:93:ca:b9: 97:f0:cd:e3:6f:0e:a5:20:8a:d6:b2:21:4a:dd:22: 0f:8a:7c:52:fb:d0:13:22:02:6f:bb:47:db:f9:4c: 3f:22:26:a7:c8:72:8f:74:28:ee:83:8a:28:5b:4c: 39:b8:6a:0b:5f:8a:f0:e0:7e:d6:5d:0e:f2:05:f6: a6:ea:73:49:b7:bf:48:b6:41:55:a1:cd:c2:27:cb: 2d:f7:53:01:8e:08:3f:53:e9:40:bd:d7:38:4e:35: bf:6a:43:fa:cb:a1:9e:2f:f9:67:8e:2c:d9:a7:5a: d5:23 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 77:E7:CB:88:8A:9A:A0:D6:B7:E5:C0:D2:6A:6B:41:A7:0E:0D:73:CA X509v3 Authority Key Identifier: keyid:A4:E9:57:6C:E8:60:C8:FF:5F:97:2A:F5:93:B4:05:4E:78:23:E6:42 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9117E4D/A64FBCE0C05811E39D8A06645911EA32/pOlXbOhgyP9flyr1k7QFTngj5kI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/pOlXbOhgyP9flyr1k7QFTngj5kI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9117E4D/A64FBCE0C05811E39D8A06645911EA32/pOlXbOhgyP9flyr1k7QFTngj5kI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 67:fa:d1:6a:7b:7d:e4:a7:a7:f6:bf:5f:8c:af:fc:3b:4d:2e: c0:35:db:2a:64:37:8e:e4:0a:8a:5c:70:c7:46:62:92:0e:12: ac:f7:70:84:97:a3:5f:91:d5:c0:3d:01:1d:c7:2e:e3:55:84: 17:3c:e2:65:f4:6a:1c:dd:06:b8:39:0f:bd:ba:30:d3:e7:61: de:78:c2:9e:0f:4b:05:cc:56:94:0f:4a:2c:14:6a:4f:35:25: 05:ad:02:c0:e5:e4:3e:30:f3:32:61:79:d1:98:d7:ae:a2:ec: 41:b4:c8:36:0d:43:08:2b:24:f4:cb:21:52:89:a4:da:0d:d2: da:73:05:fa:b9:39:d2:b2:fc:09:06:fe:84:1a:10:ed:68:c5: 4f:bd:33:ed:8c:c8:2b:cd:f8:41:54:b3:42:c9:41:fe:85:bf: 73:fb:87:1c:d5:b7:4b:5f:2f:8d:55:27:11:ac:9e:25:5f:d6: 6e:b5:17:71:2b:f3:fc:31:2c:75:26:00:49:6d:ff:d6:4d:70: fa:e2:cf:19:ec:bf:f1:3e:90:f2:65:1e:a8:3b:aa:ac:1f:6b: ee:c2:eb:69:3d:f5:f0:ee:9d:f1:a2:91:0d:47:59:7e:2a:d6: 99:c3:4b:f3:f6:77:ec:bf:64:97:ed:79:60:8e:c1:52:e9:02: b6:99:81:94 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICLEswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MTdFNEQxMTAvBgNVBAUTKEE0RTk1NzZDRTg2MEM4RkY1Rjk3MkFGNTkzQjQwNTRF NzgyM0U2NDIwHhcNMjUwNzAyMTQyNjMyWhcNMjUwNzA5MTQyNjMyWjAYMRYwFAYD VQQDEw02ODY1NDE5OS0yN2ZkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAw21O2yJOjnf9U3frqDeipfXJhTWaat/RmABcoCJ5EtN5MT2wBXNHmg49MYWb wPk/zGz6D7MzCc23Z1B51gEcpHF3hZ9q7BH6RFKe2Ggf1+Gq9eBTKtQu2McFJiqk B7OQoqu/3/1h1fazhErUR1+kKUj4VzGkoVt+TayH/iJ6MFqnolgWZP3L0O4hEyI6 JM4dTQiTyrmX8M3jbw6lIIrWsiFK3SIPinxS+9ATIgJvu0fb+Uw/IianyHKPdCju g4ooW0w5uGoLX4rw4H7WXQ7yBfam6nNJt79ItkFVoc3CJ8st91MBjgg/U+lAvdc4 TjW/akP6y6GeL/lnjizZp1rVIwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFHfny4iK mqDWt+XA0mprQacODXPKMB8GA1UdIwQYMBaAFKTpV2zoYMj/X5cq9ZO0BU54I+ZC MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExN0U0RC9BNjRGQkNFMEMw NTgxMUUzOUQ4QTA2NjQ1OTExRUEzMi9wT2xYYk9oZ3lQOWZseXIxazdRRlRuZ2o1 a0kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzMjJBNUY0MUQ2NjExRTJBM0YyN0Y3Qzcy RkQxRkYyL3BPbFhiT2hneVA5Zmx5cjFrN1FGVG5najVrSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx N0U0RC9BNjRGQkNFMEMwNTgxMUUzOUQ4QTA2NjQ1OTExRUEzMi9wT2xYYk9oZ3lQ OWZseXIxazdRRlRuZ2o1a0kubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBn+tFqe33kp6f2v1+Mr/w7TS7ANdsqZDeO5AqKXHDHRmKSDhKs93CE l6NfkdXAPQEdxy7jVYQXPOJl9Goc3Qa4OQ+9ujDT52HeeMKeD0sFzFaUD0osFGpP NSUFrQLA5eQ+MPMyYXnRmNeuouxBtMg2DUMIKyT0yyFSiaTaDdLacwX6uTnSsvwJ Bv6EGhDtaMVPvTPtjMgrzfhBVLNCyUH+hb9z+4cc1bdLXy+NVScRrJ4lX9ZutRdx K/P8MSx1JgBJbf/WTXD64s8Z7L/xPpDyZR6oO6qsH2vuwutpPfXw7p3xopENR1l+ KtaZw0vz9nfsv2SX7XlgjsFS6QK2mYGU -----END CERTIFICATE-----Generated at Fri Jul 4 08:24:35 2025 by rpki-client