$ rpki-client -vvf rpki.apnic.net/member_repository/A9143CB3/1516679E259D11E785D3250AC4F9AE02/PFRw6B-koZCHAh0K130zbOvipo0.mft File: PFRw6B-koZCHAh0K130zbOvipo0.mft (raw, json) Hash identifier: ixysvgl1ocqRcy5AWhHvx8+cPYFvPvmFM3FgnEL8m2I= Subject key identifier: 5C:C3:76:D7:67:90:89:DB:AF:62:94:5D:B2:12:67:91:FB:2C:9A:B0 Authority key identifier: 3C:54:70:E8:1F:A4:A1:90:87:02:1D:0A:D7:7D:33:6C:EB:E2:A6:8D Certificate issuer: /CN=A9143CB3/serialNumber=3C5470E81FA4A19087021D0AD77D336CEBE2A68D Certificate serial: 1AF2 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/PFRw6B-koZCHAh0K130zbOvipo0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9143CB3/1516679E259D11E785D3250AC4F9AE02/PFRw6B-koZCHAh0K130zbOvipo0.mft Manifest number: 1AEF Signing time: Wed 02 Jul 2025 16:25:57 +0000 Manifest this update: Wed 02 Jul 2025 16:25:57 +0000 Manifest next update: Wed 09 Jul 2025 16:25:57 +0000 Files and hashes: 1: PFRw6B-koZCHAh0K130zbOvipo0.crl (hash: 6wQqDX/u+bTJLspgjC813VMrPKIBuSfFvbFTDpNw0J0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9143CB3/1516679E259D11E785D3250AC4F9AE02/PFRw6B-koZCHAh0K130zbOvipo0.crl rsync://rpki.apnic.net/member_repository/A9143CB3/1516679E259D11E785D3250AC4F9AE02/PFRw6B-koZCHAh0K130zbOvipo0.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/PFRw6B-koZCHAh0K130zbOvipo0.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 09 Jul 2025 16:25:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6898 (0x1af2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9143CB3, serialNumber=3C5470E81FA4A19087021D0AD77D336CEBE2A68D Validity Not Before: Jul 2 16:25:57 2025 GMT Not After : Jul 9 16:25:57 2025 GMT Subject: CN=68655d95-6430 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cf:04:19:6c:97:7f:7a:53:81:0b:79:3f:ba:70: 55:54:a3:ba:15:66:68:e6:cb:1a:af:e9:26:7e:5f: cb:ae:02:db:6c:bb:12:d3:ba:b4:85:ae:42:9d:d1: 0b:1c:27:df:de:d3:89:fe:6a:7c:39:2b:f5:1b:20: 4e:6a:6e:cf:34:03:f9:56:14:72:03:34:19:b7:be: 51:ee:73:20:19:6f:3b:cb:63:41:83:c7:05:43:c4: 67:9a:df:4a:7f:65:ce:ec:e3:ee:a9:41:ad:86:19: c5:0b:e8:84:0c:0d:91:c0:23:20:1c:9f:a8:d5:32: ba:39:83:2e:44:38:05:ee:50:9b:72:9e:4b:82:56: f5:d2:f9:e8:b1:44:a7:94:9f:e7:f8:9c:a1:ea:75: 95:18:f0:20:a9:d3:e6:c8:d3:4e:3c:67:ca:7b:09: b1:6d:f1:f4:3f:79:72:3d:22:49:5f:35:73:e9:e8: 15:ea:35:9f:42:62:e8:90:2b:dd:62:73:bd:e4:eb: 5f:2b:8e:ab:de:fc:bc:eb:0b:55:03:67:0d:fc:5f: 37:69:b7:9d:38:89:76:e4:eb:7f:31:5c:49:10:d0: 3f:f6:e6:d5:cd:0f:00:62:ae:2a:a3:34:03:09:1c: 8a:eb:ad:ff:26:92:af:d0:32:62:c9:e5:ee:79:4e: 81:e3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5C:C3:76:D7:67:90:89:DB:AF:62:94:5D:B2:12:67:91:FB:2C:9A:B0 X509v3 Authority Key Identifier: keyid:3C:54:70:E8:1F:A4:A1:90:87:02:1D:0A:D7:7D:33:6C:EB:E2:A6:8D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9143CB3/1516679E259D11E785D3250AC4F9AE02/PFRw6B-koZCHAh0K130zbOvipo0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/PFRw6B-koZCHAh0K130zbOvipo0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9143CB3/1516679E259D11E785D3250AC4F9AE02/PFRw6B-koZCHAh0K130zbOvipo0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 60:43:54:4f:aa:48:07:ba:e3:fa:1e:df:2d:37:55:35:c9:40: 97:3f:c7:88:c7:58:19:29:be:f5:02:fa:d4:ca:18:2e:01:ed: 09:4b:1b:2b:80:12:4e:10:d7:4f:d4:42:54:e7:63:c0:ff:4c: 9c:3d:2d:33:ab:6f:94:84:b2:0c:bf:17:8f:b7:83:bc:03:cb: f9:56:ec:6f:4c:9c:de:a7:10:08:61:2c:a0:5a:63:bb:ac:b1: fb:b0:6e:88:85:aa:78:bf:28:55:54:a2:82:d8:92:2b:c7:5b: 47:79:87:8d:4a:29:b2:b4:8d:a6:1c:8e:7f:47:3e:ba:97:21: 12:d9:04:cf:6e:e1:c3:7e:4b:62:fe:1e:a3:f2:28:c1:88:71: d7:69:aa:f6:eb:04:7f:60:bc:69:be:68:a0:46:b2:29:13:cf: ac:98:37:87:d0:9e:47:80:b9:85:db:5e:ca:94:f6:4a:07:d5: 2c:f8:24:25:e6:27:ea:ae:11:2c:6e:cd:81:c3:06:6c:bd:7b: 9a:38:6c:70:bb:4f:30:2e:f8:af:dc:cb:c8:48:bd:44:5c:ff: 7e:82:ea:19:62:99:3c:0f:b2:00:88:31:73:f5:d7:8d:1c:4e: 60:8a:a0:54:a7:cf:31:f4:18:5a:64:14:8a:9d:cd:a0:16:d0: c3:2b:26:20 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICGvIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDNDQjMxMTAvBgNVBAUTKDNDNTQ3MEU4MUZBNEExOTA4NzAyMUQwQUQ3N0QzMzZD RUJFMkE2OEQwHhcNMjUwNzAyMTYyNTU3WhcNMjUwNzA5MTYyNTU3WjAYMRYwFAYD VQQDEw02ODY1NWQ5NS02NDMwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzwQZbJd/elOBC3k/unBVVKO6FWZo5ssar+kmfl/LrgLbbLsS07q0ha5CndEL HCff3tOJ/mp8OSv1GyBOam7PNAP5VhRyAzQZt75R7nMgGW87y2NBg8cFQ8Rnmt9K f2XO7OPuqUGthhnFC+iEDA2RwCMgHJ+o1TK6OYMuRDgF7lCbcp5Lglb10vnosUSn lJ/n+Jyh6nWVGPAgqdPmyNNOPGfKewmxbfH0P3lyPSJJXzVz6egV6jWfQmLokCvd YnO95OtfK46r3vy86wtVA2cN/F83abedOIl25Ot/MVxJENA/9ubVzQ8AYq4qozQD CRyK663/JpKv0DJiyeXueU6B4wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFFzDdtdn kInbr2KUXbISZ5H7LJqwMB8GA1UdIwQYMBaAFDxUcOgfpKGQhwIdCtd9M2zr4qaN MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0M0NCMy8xNTE2Njc5RTI1 OUQxMUU3ODVEMzI1MEFDNEY5QUUwMi9QRlJ3NkIta29aQ0hBaDBLMTMwemJPdmlw bzAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL1BGUnc2Qi1rb1pDSEFoMEsxMzB6Yk92aXBvMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 M0NCMy8xNTE2Njc5RTI1OUQxMUU3ODVEMzI1MEFDNEY5QUUwMi9QRlJ3NkIta29a Q0hBaDBLMTMwemJPdmlwbzAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBgQ1RPqkgHuuP6Ht8tN1U1yUCXP8eIx1gZKb71AvrUyhguAe0JSxsr gBJOENdP1EJU52PA/0ycPS0zq2+UhLIMvxePt4O8A8v5VuxvTJzepxAIYSygWmO7 rLH7sG6Ihap4vyhVVKKC2JIrx1tHeYeNSimytI2mHI5/Rz66lyES2QTPbuHDfkti /h6j8ijBiHHXaar26wR/YLxpvmigRrIpE8+smDeH0J5HgLmF217KlPZKB9Us+CQl 5ifqrhEsbs2BwwZsvXuaOGxwu08wLviv3MvISL1EXP9+guoZYpk8D7IAiDFz9deN HE5giqBUp88x9BhaZBSKnc2gFtDDKyYg -----END CERTIFICATE-----Generated at Fri Jul 4 03:43:39 2025 by rpki-client