$ rpki-client -vvf rpki.apnic.net/member_repository/A9131EDD/210B43047BBF11EBA02A4339C4F9AE02/pGlL5HxPO8lIBdSjZqAHxpBwUS4.mft File: pGlL5HxPO8lIBdSjZqAHxpBwUS4.mft (raw, json) Hash identifier: sarnm7IxwMG8fGiOtEUKeV+M9p08sVcFS3YqbfPGuGc= Subject key identifier: 55:BF:29:A8:F1:6D:29:88:09:A8:44:64:BD:12:FC:41:1E:A4:EF:31 Authority key identifier: A4:69:4B:E4:7C:4F:3B:C9:48:05:D4:A3:66:A0:07:C6:90:70:51:2E Certificate issuer: /CN=A9131EDD/serialNumber=A4694BE47C4F3BC94805D4A366A007C69070512E Certificate serial: 0692 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pGlL5HxPO8lIBdSjZqAHxpBwUS4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9131EDD/210B43047BBF11EBA02A4339C4F9AE02/pGlL5HxPO8lIBdSjZqAHxpBwUS4.mft Manifest number: 0688 Signing time: Wed 02 Jul 2025 22:34:29 +0000 Manifest this update: Wed 02 Jul 2025 22:34:28 +0000 Manifest next update: Wed 09 Jul 2025 22:34:28 +0000 Files and hashes: 1: pGlL5HxPO8lIBdSjZqAHxpBwUS4.crl (hash: EUYhFGcr9emqDj8JdNdylzthIgrZMi5FCiYGVTJkdac=) 2: E84DCBC422D211EDAF1F924EC4F9AE02.roa (hash: DSJZavi/LmOaDs/V5ru83cEJvd41YvTKAbFr9jXt5Xk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9131EDD/210B43047BBF11EBA02A4339C4F9AE02/pGlL5HxPO8lIBdSjZqAHxpBwUS4.crl rsync://rpki.apnic.net/member_repository/A9131EDD/210B43047BBF11EBA02A4339C4F9AE02/pGlL5HxPO8lIBdSjZqAHxpBwUS4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pGlL5HxPO8lIBdSjZqAHxpBwUS4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 09 Jul 2025 22:34:28 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1682 (0x692) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9131EDD, serialNumber=A4694BE47C4F3BC94805D4A366A007C69070512E Validity Not Before: Jul 2 22:34:28 2025 GMT Not After : Jul 9 22:34:28 2025 GMT Subject: CN=6865b3f5-d805 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:1a:88:92:58:8a:b5:20:17:44:f6:7e:1f:b0: ae:48:9b:66:5f:e0:56:aa:77:c9:df:fe:9f:d9:20: a8:e0:db:10:6c:49:1d:80:65:07:e2:df:9b:c4:42: 09:c9:45:a1:60:58:17:06:56:01:f3:2d:fb:b1:5e: 21:2b:c6:16:14:61:e0:03:63:5d:fb:24:2d:9b:47: 46:d9:26:02:6d:f2:ac:75:3b:96:54:35:1d:56:23: 88:28:03:eb:43:d5:dc:38:e7:f9:53:85:aa:8b:46: 9a:38:7f:48:8b:ac:d4:04:56:0b:39:81:85:af:93: 98:7d:c4:1b:79:0d:15:e6:46:69:3d:20:59:1b:a1: df:7d:18:8e:36:93:40:63:7b:26:f6:43:3b:da:bc: dd:ab:c7:1e:9b:55:0a:8a:5a:a2:b7:be:48:ef:dd: 38:e0:e2:d1:d0:36:87:7a:02:58:08:5c:99:70:31: c0:49:47:62:a7:4d:be:5f:66:ee:88:5b:47:3f:b5: 95:ee:fe:f0:42:21:ab:78:e7:a4:aa:46:da:bd:90: 5f:41:15:bb:bd:a6:d7:58:38:2a:5d:ba:a0:78:2d: 09:3a:af:52:3d:59:23:e7:14:11:0a:80:70:64:0f: 14:24:da:d2:ff:7e:1f:58:73:7c:97:e4:b6:a0:be: 60:17 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 55:BF:29:A8:F1:6D:29:88:09:A8:44:64:BD:12:FC:41:1E:A4:EF:31 X509v3 Authority Key Identifier: keyid:A4:69:4B:E4:7C:4F:3B:C9:48:05:D4:A3:66:A0:07:C6:90:70:51:2E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9131EDD/210B43047BBF11EBA02A4339C4F9AE02/pGlL5HxPO8lIBdSjZqAHxpBwUS4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pGlL5HxPO8lIBdSjZqAHxpBwUS4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9131EDD/210B43047BBF11EBA02A4339C4F9AE02/pGlL5HxPO8lIBdSjZqAHxpBwUS4.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 0c:90:9e:50:c8:d1:52:6c:f6:b0:1f:35:77:bd:58:3a:e7:59: a5:d2:6b:5c:26:e5:a2:cd:5c:2a:fa:6b:be:7f:fb:53:43:4b: 57:cf:c2:1e:e7:6a:00:83:7b:97:3c:90:6a:86:9a:74:03:88: e8:c2:26:ea:df:d6:9c:6a:8b:8c:09:d9:39:8e:c9:f9:ef:59: e0:cf:c8:db:ad:2c:17:81:41:94:39:6e:e9:80:2c:d0:b8:9d: 29:94:0d:5e:91:40:37:7a:fb:27:c8:bd:3b:89:a4:8b:15:5f: d2:fb:98:5a:c3:9d:f3:ff:b8:0e:97:75:4a:ea:f9:e3:0a:c0: f2:f4:86:d0:87:b1:e2:ce:62:60:28:86:0d:26:43:1a:4a:2d: 46:69:22:33:33:d2:3a:02:1d:60:17:14:de:20:f7:bf:e6:59: a3:1d:0a:80:63:7a:29:ff:20:82:98:ae:8d:ff:1f:d2:0d:cf: 27:09:4c:8f:0b:ad:7e:80:45:cb:b5:c2:cc:1b:dd:71:2e:0c: 4f:ce:01:66:b5:10:80:ea:fe:5d:cf:56:9f:1b:1c:0a:91:6f: da:11:9e:e1:5a:ed:6e:33:e7:af:cf:c1:ba:4e:1c:22:57:fb: 64:b5:47:a6:d4:bc:9d:b4:40:b8:6c:ef:1f:15:dd:ef:00:b3: 30:98:bb:39 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBpIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MzFFREQxMTAvBgNVBAUTKEE0Njk0QkU0N0M0RjNCQzk0ODA1RDRBMzY2QTAwN0M2 OTA3MDUxMkUwHhcNMjUwNzAyMjIzNDI4WhcNMjUwNzA5MjIzNDI4WjAYMRYwFAYD VQQDEw02ODY1YjNmNS1kODA1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtBqIkliKtSAXRPZ+H7CuSJtmX+BWqnfJ3/6f2SCo4NsQbEkdgGUH4t+bxEIJ yUWhYFgXBlYB8y37sV4hK8YWFGHgA2Nd+yQtm0dG2SYCbfKsdTuWVDUdViOIKAPr Q9XcOOf5U4Wqi0aaOH9Ii6zUBFYLOYGFr5OYfcQbeQ0V5kZpPSBZG6HffRiONpNA Y3sm9kM72rzdq8cem1UKilqit75I79044OLR0DaHegJYCFyZcDHASUdip02+X2bu iFtHP7WV7v7wQiGreOekqkbavZBfQRW7vabXWDgqXbqgeC0JOq9SPVkj5xQRCoBw ZA8UJNrS/34fWHN8l+S2oL5gFwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFFW/Kajx bSmICahEZL0S/EEepO8xMB8GA1UdIwQYMBaAFKRpS+R8TzvJSAXUo2agB8aQcFEu MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzMUVERC8yMTBCNDMwNDdC QkYxMUVCQTAyQTQzMzlDNEY5QUUwMi9wR2xMNUh4UE84bElCZFNqWnFBSHhwQndV UzQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3BHbEw1SHhQTzhsSUJkU2pacUFIeHBCd1VTNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz MUVERC8yMTBCNDMwNDdCQkYxMUVCQTAyQTQzMzlDNEY5QUUwMi9wR2xMNUh4UE84 bElCZFNqWnFBSHhwQndVUzQubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAMkJ5QyNFSbPawHzV3vVg651ml0mtcJuWizVwq+mu+f/tTQ0tXz8Ie 52oAg3uXPJBqhpp0A4jowibq39acaouMCdk5jsn571ngz8jbrSwXgUGUOW7pgCzQ uJ0plA1ekUA3evsnyL07iaSLFV/S+5haw53z/7gOl3VK6vnjCsDy9IbQh7HizmJg KIYNJkMaSi1GaSIzM9I6Ah1gFxTeIPe/5lmjHQqAY3op/yCCmK6N/x/SDc8nCUyP C61+gEXLtcLMG91xLgxPzgFmtRCA6v5dz1afGxwKkW/aEZ7hWu1uM+evz8G6Thwi V/tktUem1LydtEC4bO8fFd3vALMwmLs5 -----END CERTIFICATE-----Generated at Thu Jul 3 09:52:29 2025 by rpki-client