$ rpki-client -vvf rpki.apnic.net/member_repository/A9143CB3/1516679E259D11E785D3250AC4F9AE02/PFRw6B-koZCHAh0K130zbOvipo0.mft File: PFRw6B-koZCHAh0K130zbOvipo0.mft (raw, json) Hash identifier: cDZZ3Y+NIt6L3DLvxpyEBkmrJvS8Btf2b3r2vKp+shc= Subject key identifier: C8:45:99:BD:AB:B6:91:61:00:80:95:30:FE:16:8B:81:F9:F7:2E:C9 Authority key identifier: 3C:54:70:E8:1F:A4:A1:90:87:02:1D:0A:D7:7D:33:6C:EB:E2:A6:8D Certificate issuer: /CN=A9143CB3/serialNumber=3C5470E81FA4A19087021D0AD77D336CEBE2A68D Certificate serial: 1B0E Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/PFRw6B-koZCHAh0K130zbOvipo0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9143CB3/1516679E259D11E785D3250AC4F9AE02/PFRw6B-koZCHAh0K130zbOvipo0.mft Manifest number: 1B0B Signing time: Fri 22 Aug 2025 16:23:25 +0000 Manifest this update: Fri 22 Aug 2025 16:23:24 +0000 Manifest next update: Fri 29 Aug 2025 16:23:24 +0000 Files and hashes: 1: PFRw6B-koZCHAh0K130zbOvipo0.crl (hash: f1dst9AnF8MgoBJEmT8jejc1MPF6F3dU6v/ew4XZyA8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9143CB3/1516679E259D11E785D3250AC4F9AE02/PFRw6B-koZCHAh0K130zbOvipo0.crl rsync://rpki.apnic.net/member_repository/A9143CB3/1516679E259D11E785D3250AC4F9AE02/PFRw6B-koZCHAh0K130zbOvipo0.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/PFRw6B-koZCHAh0K130zbOvipo0.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Aug 2025 16:23:24 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6926 (0x1b0e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9143CB3, serialNumber=3C5470E81FA4A19087021D0AD77D336CEBE2A68D Validity Not Before: Aug 22 16:23:24 2025 GMT Not After : Aug 29 16:23:24 2025 GMT Subject: CN=68a8997d-5436 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:b1:b4:ea:46:0e:d8:a6:a6:af:57:5c:82:5a: c7:36:1f:3f:fc:37:2f:52:d3:08:56:da:32:31:22: 26:f3:f5:40:0c:65:26:3e:06:f1:80:1f:48:98:76: 23:6b:cd:a6:ae:9c:40:04:33:13:b0:7b:cc:bf:92: df:19:90:78:ca:60:91:c8:88:d2:38:46:f7:5c:61: b3:24:38:f5:1e:ed:9d:64:22:9a:27:61:d8:4a:73: 72:63:a0:10:dc:5a:55:ca:42:43:54:0a:56:14:ca: 44:71:74:35:dd:42:19:6a:fc:89:59:e1:53:2d:48: 11:58:f2:3f:83:21:6b:cf:81:2b:01:4e:3c:57:39: d4:b1:4d:f3:9d:80:af:e0:11:b0:69:84:6d:b4:95: 5e:d2:a4:ed:37:a3:c5:f2:ff:66:2f:76:11:c2:7e: 88:be:29:42:21:38:c9:f7:5d:0e:ba:e2:ab:64:cb: 34:a3:50:6e:5b:23:47:00:2f:99:ac:c9:fd:8e:0a: a5:e5:f8:49:b8:d5:13:10:38:82:2d:04:de:fa:83: f3:1f:a9:06:a6:63:2f:f0:cf:24:25:3c:48:5a:a1: 07:b4:62:5d:38:e8:f7:82:72:39:5f:3c:bd:f1:9f: 9e:7d:4f:e5:67:d9:fb:cb:d8:03:8b:0a:c9:0a:85: 4b:21 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C8:45:99:BD:AB:B6:91:61:00:80:95:30:FE:16:8B:81:F9:F7:2E:C9 X509v3 Authority Key Identifier: keyid:3C:54:70:E8:1F:A4:A1:90:87:02:1D:0A:D7:7D:33:6C:EB:E2:A6:8D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9143CB3/1516679E259D11E785D3250AC4F9AE02/PFRw6B-koZCHAh0K130zbOvipo0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/PFRw6B-koZCHAh0K130zbOvipo0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9143CB3/1516679E259D11E785D3250AC4F9AE02/PFRw6B-koZCHAh0K130zbOvipo0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 94:61:ed:51:b5:f8:6d:38:aa:c5:ab:94:44:75:f0:01:f5:a2: e8:10:8b:25:6b:42:5f:80:87:b0:bb:39:99:23:bf:f4:c7:5d: c9:b4:34:43:9f:c2:3b:4b:93:67:67:a8:fa:03:53:31:48:f8: dc:4a:c4:07:5b:ef:45:56:17:6a:91:51:55:d4:e3:6e:73:e0: 0c:c0:b5:e1:78:ef:c2:03:09:e0:2d:b9:2c:24:ef:26:c0:cd: b1:4e:3b:91:93:b0:0d:f8:86:a2:37:42:2b:50:5d:26:e7:cd: ac:66:d4:af:31:e6:56:74:ac:c9:2b:e2:ec:23:dd:fb:1e:6e: aa:4b:e1:93:85:eb:fe:8b:46:75:33:06:d4:56:49:df:49:4d: 34:51:5e:23:d4:b6:3a:fa:47:92:1e:4b:b2:65:43:aa:f2:ec: 7c:cf:fa:93:e0:71:52:b9:37:1d:50:0f:08:c3:01:a0:23:7b: 76:57:f7:98:93:3c:87:5a:1d:93:05:c1:29:02:eb:53:ea:cc: f5:a0:73:46:ea:80:65:08:a0:41:06:82:f8:67:ad:82:cd:11: 13:5f:7e:6f:20:fa:1d:b9:60:9c:3b:aa:ea:ab:27:bf:0f:c0: 92:87:d0:d7:c2:8f:a0:43:09:42:93:55:1b:44:8a:ff:d2:6a: b4:00:d4:b6 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICGw4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDNDQjMxMTAvBgNVBAUTKDNDNTQ3MEU4MUZBNEExOTA4NzAyMUQwQUQ3N0QzMzZD RUJFMkE2OEQwHhcNMjUwODIyMTYyMzI0WhcNMjUwODI5MTYyMzI0WjAYMRYwFAYD VQQDEw02OGE4OTk3ZC01NDM2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtbG06kYO2Kamr1dcglrHNh8//DcvUtMIVtoyMSIm8/VADGUmPgbxgB9ImHYj a82mrpxABDMTsHvMv5LfGZB4ymCRyIjSOEb3XGGzJDj1Hu2dZCKaJ2HYSnNyY6AQ 3FpVykJDVApWFMpEcXQ13UIZavyJWeFTLUgRWPI/gyFrz4ErAU48VznUsU3znYCv 4BGwaYRttJVe0qTtN6PF8v9mL3YRwn6IvilCITjJ910OuuKrZMs0o1BuWyNHAC+Z rMn9jgql5fhJuNUTEDiCLQTe+oPzH6kGpmMv8M8kJTxIWqEHtGJdOOj3gnI5Xzy9 8Z+efU/lZ9n7y9gDiwrJCoVLIQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFMhFmb2r tpFhAICVMP4Wi4H59y7JMB8GA1UdIwQYMBaAFDxUcOgfpKGQhwIdCtd9M2zr4qaN MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0M0NCMy8xNTE2Njc5RTI1 OUQxMUU3ODVEMzI1MEFDNEY5QUUwMi9QRlJ3NkIta29aQ0hBaDBLMTMwemJPdmlw bzAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL1BGUnc2Qi1rb1pDSEFoMEsxMzB6Yk92aXBvMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 M0NCMy8xNTE2Njc5RTI1OUQxMUU3ODVEMzI1MEFDNEY5QUUwMi9QRlJ3NkIta29a Q0hBaDBLMTMwemJPdmlwbzAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCUYe1RtfhtOKrFq5REdfAB9aLoEIsla0JfgIewuzmZI7/0x13JtDRD n8I7S5NnZ6j6A1MxSPjcSsQHW+9FVhdqkVFV1ONuc+AMwLXheO/CAwngLbksJO8m wM2xTjuRk7AN+IaiN0IrUF0m582sZtSvMeZWdKzJK+LsI937Hm6qS+GThev+i0Z1 MwbUVknfSU00UV4j1LY6+keSHkuyZUOq8ux8z/qT4HFSuTcdUA8IwwGgI3t2V/eY kzyHWh2TBcEpAutT6sz1oHNG6oBlCKBBBoL4Z62CzRETX35vIPoduWCcO6rqqye/ D8CSh9DXwo+gQwlCk1UbRIr/0mq0ANS2 -----END CERTIFICATE-----Generated at Sat Aug 23 12:50:02 2025 by rpki-client