$ rpki-client -vvf rpki.apnic.net/member_repository/A9117E4D/A64FBCE0C05811E39D8A06645911EA32/pOlXbOhgyP9flyr1k7QFTngj5kI.mft File: pOlXbOhgyP9flyr1k7QFTngj5kI.mft (raw, json) Hash identifier: yqZUJyzLSKaa2T5PAOcPd7GDHIOi2qWGOfuUqOB6j58= Subject key identifier: C9:D4:89:16:EB:60:DD:53:85:6C:59:F5:DE:CA:8A:E2:54:8F:42:6F Authority key identifier: A4:E9:57:6C:E8:60:C8:FF:5F:97:2A:F5:93:B4:05:4E:78:23:E6:42 Certificate issuer: /CN=A9117E4D/serialNumber=A4E9576CE860C8FF5F972AF593B4054E7823E642 Certificate serial: 2C65 Authority info access: rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/pOlXbOhgyP9flyr1k7QFTngj5kI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9117E4D/A64FBCE0C05811E39D8A06645911EA32/pOlXbOhgyP9flyr1k7QFTngj5kI.mft Manifest number: 2C62 Signing time: Fri 22 Aug 2025 14:26:30 +0000 Manifest this update: Fri 22 Aug 2025 14:26:30 +0000 Manifest next update: Fri 29 Aug 2025 14:26:30 +0000 Files and hashes: 1: pOlXbOhgyP9flyr1k7QFTngj5kI.crl (hash: bMNHanVeasBZv0aqZ0PE5Y4MsdMxzFOJ6l3jlq1me7M=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9117E4D/A64FBCE0C05811E39D8A06645911EA32/pOlXbOhgyP9flyr1k7QFTngj5kI.crl rsync://rpki.apnic.net/member_repository/A9117E4D/A64FBCE0C05811E39D8A06645911EA32/pOlXbOhgyP9flyr1k7QFTngj5kI.mft rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/pOlXbOhgyP9flyr1k7QFTngj5kI.cer rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.crl rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DPzneFf88B852ZpitKpi5hWedvg.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Aug 2025 14:26:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 11365 (0x2c65) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9117E4D, serialNumber=A4E9576CE860C8FF5F972AF593B4054E7823E642 Validity Not Before: Aug 22 14:26:30 2025 GMT Not After : Aug 29 14:26:30 2025 GMT Subject: CN=68a87e16-713e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d0:f8:30:51:d3:3d:7e:bf:74:3c:46:ee:15:14: 45:e0:51:45:95:fe:35:71:56:5a:4a:33:27:f7:16: 23:8e:6a:6f:d1:18:09:11:59:c1:a0:20:56:c6:7d: 9a:32:91:1c:79:2b:c2:20:dd:63:8a:43:94:54:5a: c4:74:59:f3:61:4c:f1:95:32:14:f2:90:b9:6b:49: 61:26:2b:f6:66:6e:1d:6d:6f:23:06:eb:41:84:89: 8c:54:de:b4:b5:2d:78:dc:be:85:fb:07:c7:33:74: 70:0d:a3:fb:0b:2a:90:2c:d9:12:8a:04:40:41:ba: 80:b6:66:93:29:e8:80:67:b2:c5:0c:1f:83:59:29: 6c:39:be:34:2f:80:68:4b:0a:bd:a4:2b:91:6f:8d: 3c:87:ef:fe:2a:11:b5:19:ee:84:43:0b:69:c6:6c: 26:07:03:a9:0f:7f:c3:22:cd:1d:d8:9b:6f:a3:a0: 36:4d:57:5b:67:84:be:06:69:ee:b7:1e:e2:fe:fb: 09:f5:6f:9a:5c:25:c8:16:60:c7:be:da:aa:2f:9c: 14:63:a6:11:1b:82:ed:31:f4:69:ea:5c:82:01:44: 93:37:0e:6a:f6:a0:62:65:5c:74:eb:51:c0:f0:e7: f0:42:8d:7f:64:05:92:5e:36:80:be:b7:2d:83:c0: c3:3b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C9:D4:89:16:EB:60:DD:53:85:6C:59:F5:DE:CA:8A:E2:54:8F:42:6F X509v3 Authority Key Identifier: keyid:A4:E9:57:6C:E8:60:C8:FF:5F:97:2A:F5:93:B4:05:4E:78:23:E6:42 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9117E4D/A64FBCE0C05811E39D8A06645911EA32/pOlXbOhgyP9flyr1k7QFTngj5kI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/pOlXbOhgyP9flyr1k7QFTngj5kI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9117E4D/A64FBCE0C05811E39D8A06645911EA32/pOlXbOhgyP9flyr1k7QFTngj5kI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 4a:d2:b8:8c:72:8a:7c:05:e3:5b:40:b9:68:21:67:c6:32:c2: e8:ca:cc:74:bb:40:3a:59:e2:ce:34:10:e3:18:62:ba:f5:83: d7:a8:03:4e:0f:f4:bb:74:22:59:52:f3:d9:71:68:86:47:c3: c9:0f:b2:78:91:e5:bb:b0:7c:e8:18:f7:d6:a1:33:f6:2a:37: ee:0c:43:16:f9:f2:59:e1:bb:35:ae:b6:f2:51:57:ed:27:87: 9e:d2:75:f3:8a:cd:bb:94:4d:1f:a5:00:5e:b1:d2:7d:06:d6: f5:ec:de:28:72:9d:b8:e0:30:30:12:44:83:89:c2:fc:e7:62: c1:ad:33:3e:8a:cb:33:e2:13:67:e8:64:fd:66:e3:1d:cf:b1: 9c:bf:db:09:18:18:00:e2:7d:b3:86:1c:ac:2a:4b:08:c0:e7: de:67:1d:70:68:48:d1:9d:a5:a6:8a:2d:fe:71:a0:10:0e:b3: 25:1b:9f:9a:96:a5:c0:e3:58:21:bc:df:17:51:6a:4c:47:f6: 03:aa:1b:46:75:b3:ef:e6:af:66:3b:11:38:0b:4d:07:5b:b3: c4:bb:b7:20:ca:c6:32:62:d0:eb:42:1a:be:b1:b6:5e:5d:1a: 6d:31:c7:15:6a:df:bb:30:73:c9:0e:a1:bb:94:5e:8a:0f:21: 7c:36:4d:15 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICLGUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MTdFNEQxMTAvBgNVBAUTKEE0RTk1NzZDRTg2MEM4RkY1Rjk3MkFGNTkzQjQwNTRF NzgyM0U2NDIwHhcNMjUwODIyMTQyNjMwWhcNMjUwODI5MTQyNjMwWjAYMRYwFAYD VQQDEw02OGE4N2UxNi03MTNlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0PgwUdM9fr90PEbuFRRF4FFFlf41cVZaSjMn9xYjjmpv0RgJEVnBoCBWxn2a MpEceSvCIN1jikOUVFrEdFnzYUzxlTIU8pC5a0lhJiv2Zm4dbW8jButBhImMVN60 tS143L6F+wfHM3RwDaP7CyqQLNkSigRAQbqAtmaTKeiAZ7LFDB+DWSlsOb40L4Bo Swq9pCuRb408h+/+KhG1Ge6EQwtpxmwmBwOpD3/DIs0d2Jtvo6A2TVdbZ4S+Bmnu tx7i/vsJ9W+aXCXIFmDHvtqqL5wUY6YRG4LtMfRp6lyCAUSTNw5q9qBiZVx061HA 8OfwQo1/ZAWSXjaAvrctg8DDOwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFMnUiRbr YN1ThWxZ9d7KiuJUj0JvMB8GA1UdIwQYMBaAFKTpV2zoYMj/X5cq9ZO0BU54I+ZC MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExN0U0RC9BNjRGQkNFMEMw NTgxMUUzOUQ4QTA2NjQ1OTExRUEzMi9wT2xYYk9oZ3lQOWZseXIxazdRRlRuZ2o1 a0kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzMjJBNUY0MUQ2NjExRTJBM0YyN0Y3Qzcy RkQxRkYyL3BPbFhiT2hneVA5Zmx5cjFrN1FGVG5najVrSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx N0U0RC9BNjRGQkNFMEMwNTgxMUUzOUQ4QTA2NjQ1OTExRUEzMi9wT2xYYk9oZ3lQ OWZseXIxazdRRlRuZ2o1a0kubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBK0riMcop8BeNbQLloIWfGMsLoysx0u0A6WeLONBDjGGK69YPXqANO D/S7dCJZUvPZcWiGR8PJD7J4keW7sHzoGPfWoTP2KjfuDEMW+fJZ4bs1rrbyUVft J4ee0nXzis27lE0fpQBesdJ9Btb17N4ocp244DAwEkSDicL852LBrTM+issz4hNn 6GT9ZuMdz7Gcv9sJGBgA4n2zhhysKksIwOfeZx1waEjRnaWmii3+caAQDrMlG5+a lqXA41ghvN8XUWpMR/YDqhtGdbPv5q9mOxE4C00HW7PEu7cgysYyYtDrQhq+sbZe XRptMccVat+7MHPJDqG7lF6KDyF8Nk0V -----END CERTIFICATE-----Generated at Sat Aug 23 20:29:50 2025 by rpki-client