$ rpki-client -vvf rpki.apnic.net/member_repository/A9143CB3/1516679E259D11E785D3250AC4F9AE02/PFRw6B-koZCHAh0K130zbOvipo0.mft File: PFRw6B-koZCHAh0K130zbOvipo0.mft (raw, json) Hash identifier: iLd7TYIvKnC+KmCKuYv2JQvZtrSOzlEvBQtZtfrH5N4= Subject key identifier: 5C:89:6C:E5:86:D6:A9:B4:F4:9D:CD:15:11:65:81:47:AF:DE:C5:FF Authority key identifier: 3C:54:70:E8:1F:A4:A1:90:87:02:1D:0A:D7:7D:33:6C:EB:E2:A6:8D Certificate issuer: /CN=A9143CB3/serialNumber=3C5470E81FA4A19087021D0AD77D336CEBE2A68D Certificate serial: 1ADA Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/PFRw6B-koZCHAh0K130zbOvipo0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9143CB3/1516679E259D11E785D3250AC4F9AE02/PFRw6B-koZCHAh0K130zbOvipo0.mft Manifest number: 1AD7 Signing time: Fri 16 May 2025 16:32:06 +0000 Manifest this update: Fri 16 May 2025 16:32:06 +0000 Manifest next update: Fri 23 May 2025 16:32:06 +0000 Files and hashes: 1: PFRw6B-koZCHAh0K130zbOvipo0.crl (hash: pAssLwm4sQATlUq8Dks5S5bgtzizboPme/2QwZU7tFY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9143CB3/1516679E259D11E785D3250AC4F9AE02/PFRw6B-koZCHAh0K130zbOvipo0.crl rsync://rpki.apnic.net/member_repository/A9143CB3/1516679E259D11E785D3250AC4F9AE02/PFRw6B-koZCHAh0K130zbOvipo0.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/PFRw6B-koZCHAh0K130zbOvipo0.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 23 May 2025 15:46:44 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6874 (0x1ada) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9143CB3, serialNumber=3C5470E81FA4A19087021D0AD77D336CEBE2A68D Validity Not Before: May 16 16:32:06 2025 GMT Not After : May 23 16:32:06 2025 GMT Subject: CN=68276886-dd20 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:65:39:3b:2a:98:64:7e:93:ca:48:3c:01:7a: 34:18:11:5a:21:8e:4a:13:f0:a6:27:18:7c:35:9a: 34:ca:8d:db:10:d1:5e:b1:f9:2c:d5:80:c6:b3:da: 4d:c7:0f:64:68:d8:a7:73:b3:a0:fe:09:c8:b5:08: e1:82:bc:9b:e9:4d:2a:7d:f3:c7:f8:6a:4a:13:4b: 46:f7:45:78:03:4b:55:01:d9:55:26:51:69:1d:d2: e8:fb:42:4e:1a:ee:32:a3:7b:dd:0e:35:b7:7f:30: 08:1c:08:eb:32:20:e2:4e:2f:d5:6c:23:ef:c7:f4: 61:2b:52:81:fd:2e:6d:77:7e:ed:5e:8f:5d:93:07: 76:25:54:7a:33:35:ea:f0:a0:f6:29:38:d6:ab:70: 0b:aa:ba:5f:7e:3a:c0:1e:65:79:0c:b5:d3:ef:69: d5:4e:8a:70:a8:52:c9:e4:15:05:a3:cc:b5:9a:e7: 56:01:aa:17:79:04:7b:99:c1:fe:af:a5:98:50:e3: cf:04:f8:31:6d:6b:12:47:14:44:c9:da:78:b7:1f: 0a:21:78:27:ec:a7:67:b1:1f:d0:2d:12:85:00:c8: 5b:f4:94:99:b7:67:68:d8:f6:65:d0:57:28:b2:83: f3:ba:86:85:89:cc:36:f6:82:fc:9e:5f:fe:b9:d3: 1a:8f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5C:89:6C:E5:86:D6:A9:B4:F4:9D:CD:15:11:65:81:47:AF:DE:C5:FF X509v3 Authority Key Identifier: keyid:3C:54:70:E8:1F:A4:A1:90:87:02:1D:0A:D7:7D:33:6C:EB:E2:A6:8D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9143CB3/1516679E259D11E785D3250AC4F9AE02/PFRw6B-koZCHAh0K130zbOvipo0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/PFRw6B-koZCHAh0K130zbOvipo0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9143CB3/1516679E259D11E785D3250AC4F9AE02/PFRw6B-koZCHAh0K130zbOvipo0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 24:20:2c:50:c5:65:5e:9c:d3:3d:4b:dd:e2:a5:f5:c2:60:12: 9d:23:0d:8f:d7:d7:1f:1e:a6:68:10:0a:18:0c:55:1a:69:ac: 59:41:f9:d5:31:ea:c4:fa:1e:bc:8f:aa:71:ec:91:71:a0:a9: cc:cc:04:7c:0d:70:02:00:82:3e:34:6e:6c:c3:b1:7e:19:fd: 25:38:cb:cf:e3:f9:1b:3a:4f:2d:91:50:62:a8:fc:1a:56:b7: 62:d9:5e:67:9d:e5:f3:7b:a8:10:15:b2:f7:e9:9e:08:0e:8c: 61:7b:49:6b:d8:75:93:c5:9d:85:7b:80:11:f9:fb:e1:72:94: 79:5c:52:b2:da:bf:10:28:91:02:99:30:dc:2e:70:fd:43:b9: a3:69:ea:fc:ab:db:be:3d:fc:cb:2b:18:75:d3:5e:7a:bf:5d: 58:4f:7e:47:c3:96:42:1e:73:b1:c2:aa:39:10:8e:9e:4a:88: 79:6f:6e:ef:fc:23:d4:a1:96:a9:6d:9a:9a:72:1b:1a:39:6e: df:a0:7a:3b:be:49:68:85:4e:a6:14:1e:e6:4c:3f:7e:48:63: 2e:b3:27:78:ce:a8:97:cd:7b:80:99:63:27:ad:40:06:68:d6: 70:76:1c:c7:22:20:59:34:40:d2:bf:2f:bd:f7:c2:df:f4:7d: b4:67:e5:83 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICGtowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDNDQjMxMTAvBgNVBAUTKDNDNTQ3MEU4MUZBNEExOTA4NzAyMUQwQUQ3N0QzMzZD RUJFMkE2OEQwHhcNMjUwNTE2MTYzMjA2WhcNMjUwNTIzMTYzMjA2WjAYMRYwFAYD VQQDEw02ODI3Njg4Ni1kZDIwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuGU5OyqYZH6Tykg8AXo0GBFaIY5KE/CmJxh8NZo0yo3bENFesfks1YDGs9pN xw9kaNinc7Og/gnItQjhgryb6U0qffPH+GpKE0tG90V4A0tVAdlVJlFpHdLo+0JO Gu4yo3vdDjW3fzAIHAjrMiDiTi/VbCPvx/RhK1KB/S5td37tXo9dkwd2JVR6MzXq 8KD2KTjWq3ALqrpffjrAHmV5DLXT72nVTopwqFLJ5BUFo8y1mudWAaoXeQR7mcH+ r6WYUOPPBPgxbWsSRxREydp4tx8KIXgn7KdnsR/QLRKFAMhb9JSZt2do2PZl0Fco soPzuoaFicw29oL8nl/+udMajwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFFyJbOWG 1qm09J3NFRFlgUev3sX/MB8GA1UdIwQYMBaAFDxUcOgfpKGQhwIdCtd9M2zr4qaN MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0M0NCMy8xNTE2Njc5RTI1 OUQxMUU3ODVEMzI1MEFDNEY5QUUwMi9QRlJ3NkIta29aQ0hBaDBLMTMwemJPdmlw bzAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL1BGUnc2Qi1rb1pDSEFoMEsxMzB6Yk92aXBvMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 M0NCMy8xNTE2Njc5RTI1OUQxMUU3ODVEMzI1MEFDNEY5QUUwMi9QRlJ3NkIta29a Q0hBaDBLMTMwemJPdmlwbzAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAkICxQxWVenNM9S93ipfXCYBKdIw2P19cfHqZoEAoYDFUaaaxZQfnV MerE+h68j6px7JFxoKnMzAR8DXACAII+NG5sw7F+Gf0lOMvP4/kbOk8tkVBiqPwa Vrdi2V5nneXze6gQFbL36Z4IDoxhe0lr2HWTxZ2Fe4AR+fvhcpR5XFKy2r8QKJEC mTDcLnD9Q7mjaer8q9u+PfzLKxh10156v11YT35Hw5ZCHnOxwqo5EI6eSoh5b27v /CPUoZapbZqachsaOW7foHo7vklohU6mFB7mTD9+SGMusyd4zqiXzXuAmWMnrUAG aNZwdhzHIiBZNEDSvy+998Lf9H20Z+WD -----END CERTIFICATE-----Generated at Fri May 16 21:43:34 2025 by rpki-client