$ rpki-client -vvf rpki.apnic.net/member_repository/A9150B47/DA1755781DA311E2BED7789908B02CD2/PkPgI8CFNZTq13soKJo_HxDDCR0.mft File: PkPgI8CFNZTq13soKJo_HxDDCR0.mft (raw, json) Hash identifier: TnFiY/9Wx2KErph0ftnpfIR3qWyuC4Mn6Y/khgvD3o8= Subject key identifier: DF:E1:49:7E:EC:DD:A9:40:0A:BD:5B:A1:D2:E5:82:5E:28:98:7C:B7 Authority key identifier: 3E:43:E0:23:C0:85:35:94:EA:D7:7B:28:28:9A:3F:1F:10:C3:09:1D Certificate issuer: /CN=A9150B47/serialNumber=3E43E023C0853594EAD77B28289A3F1F10C3091D Certificate serial: 34AD Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PkPgI8CFNZTq13soKJo_HxDDCR0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9150B47/DA1755781DA311E2BED7789908B02CD2/PkPgI8CFNZTq13soKJo_HxDDCR0.mft Manifest number: 34AA Signing time: Fri 22 Aug 2025 15:10:18 +0000 Manifest this update: Fri 22 Aug 2025 15:10:17 +0000 Manifest next update: Fri 29 Aug 2025 15:10:17 +0000 Files and hashes: 1: PkPgI8CFNZTq13soKJo_HxDDCR0.crl (hash: WRTRBKNoHJoe6+Fifyf2L0WoWLuUSsFIqkxgyf8MpWs=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9150B47/DA1755781DA311E2BED7789908B02CD2/PkPgI8CFNZTq13soKJo_HxDDCR0.crl rsync://rpki.apnic.net/member_repository/A9150B47/DA1755781DA311E2BED7789908B02CD2/PkPgI8CFNZTq13soKJo_HxDDCR0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PkPgI8CFNZTq13soKJo_HxDDCR0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Aug 2025 15:10:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13485 (0x34ad) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9150B47, serialNumber=3E43E023C0853594EAD77B28289A3F1F10C3091D Validity Not Before: Aug 22 15:10:17 2025 GMT Not After : Aug 29 15:10:17 2025 GMT Subject: CN=68a8885a-4f6a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f3:d3:1d:3f:67:2f:2f:1f:fb:57:38:37:97:6e: 2d:f8:9c:69:5f:28:59:4d:8a:32:ed:80:74:36:fc: d8:1c:ea:95:6a:b7:5d:d3:48:0c:6b:e8:9e:1a:b3: 49:83:05:18:34:ff:b9:d2:9e:17:5d:07:8e:e4:ab: ca:98:57:05:71:aa:9e:da:e9:f4:1d:ed:ca:54:31: b4:2e:45:ad:4e:98:6b:cd:59:22:ec:cf:0f:37:92: f0:f4:d1:0c:76:2e:9d:fe:2e:8b:a5:3a:06:ba:d0: e3:52:af:e3:f1:76:e6:f2:69:41:71:c0:32:39:c2: b9:a7:05:26:42:c5:74:02:48:49:7c:00:62:94:e2: 38:ea:57:e1:12:dc:3a:d9:63:7c:a0:6b:7c:ce:52: f2:05:82:5e:28:49:f2:03:29:4b:e5:b0:ca:cb:44: 67:08:b7:2e:30:1f:c2:ee:96:bd:b5:7c:62:37:eb: 76:07:7f:52:8f:49:a2:3c:13:fd:80:d2:15:97:9e: 26:8e:81:db:ff:67:ff:08:aa:7e:63:9b:16:b1:09: 41:68:05:ff:d3:9c:1b:00:49:9d:27:b3:b6:f1:49: fe:c0:21:29:c6:b2:f3:80:d5:01:64:a2:11:f1:50: b1:a0:34:e8:11:61:72:80:cc:6d:fd:27:38:93:32: 3f:5f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DF:E1:49:7E:EC:DD:A9:40:0A:BD:5B:A1:D2:E5:82:5E:28:98:7C:B7 X509v3 Authority Key Identifier: keyid:3E:43:E0:23:C0:85:35:94:EA:D7:7B:28:28:9A:3F:1F:10:C3:09:1D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9150B47/DA1755781DA311E2BED7789908B02CD2/PkPgI8CFNZTq13soKJo_HxDDCR0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PkPgI8CFNZTq13soKJo_HxDDCR0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9150B47/DA1755781DA311E2BED7789908B02CD2/PkPgI8CFNZTq13soKJo_HxDDCR0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 85:e5:f2:27:20:dc:ca:05:8e:34:42:f1:48:5d:0e:9c:6e:5f: 3e:7b:50:c1:e8:2d:ed:79:69:e5:25:f4:b4:73:de:57:8b:fd: cf:f7:16:91:78:99:47:f4:d6:a4:e8:e1:5a:22:4d:67:05:93: fc:a5:f7:7b:3e:42:66:a1:0e:91:ef:75:51:11:1e:a9:2a:f9: 08:4d:c8:31:47:41:85:2f:b1:ae:11:11:a9:f0:cb:2e:db:4b: 2c:7b:cc:ac:61:c5:26:79:00:d9:9f:be:ba:bf:5c:93:45:f6: ca:76:9e:ea:97:62:bf:79:23:d1:46:93:de:f4:8c:eb:16:b5: fa:04:cf:5b:67:d3:e5:d2:76:87:3b:b0:5a:38:3a:54:d0:f7: 88:aa:ec:bd:33:6e:bc:8e:cc:1a:a8:ee:7f:98:07:0d:b8:91: a9:61:49:f7:5e:4a:f4:f0:3d:43:c4:d6:95:da:07:01:d8:2f: 31:d8:35:3d:47:e7:6f:07:ae:91:32:53:a3:dd:4d:ce:e4:f9: 7c:ff:d2:30:1d:1b:38:ae:1d:e1:99:f4:13:a4:8c:37:42:53: 8a:14:33:ed:83:d5:6a:f7:53:ce:f6:c3:6e:bd:be:3f:66:11: 65:06:32:8a:34:6d:f6:f5:bd:5f:a6:9a:70:da:37:22:c1:ad: 70:13:02:d6 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICNK0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTBCNDcxMTAvBgNVBAUTKDNFNDNFMDIzQzA4NTM1OTRFQUQ3N0IyODI4OUEzRjFG MTBDMzA5MUQwHhcNMjUwODIyMTUxMDE3WhcNMjUwODI5MTUxMDE3WjAYMRYwFAYD VQQDEw02OGE4ODg1YS00ZjZhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA89MdP2cvLx/7Vzg3l24t+JxpXyhZTYoy7YB0NvzYHOqVardd00gMa+ieGrNJ gwUYNP+50p4XXQeO5KvKmFcFcaqe2un0He3KVDG0LkWtTphrzVki7M8PN5Lw9NEM di6d/i6LpToGutDjUq/j8Xbm8mlBccAyOcK5pwUmQsV0AkhJfABilOI46lfhEtw6 2WN8oGt8zlLyBYJeKEnyAylL5bDKy0RnCLcuMB/C7pa9tXxiN+t2B39Sj0miPBP9 gNIVl54mjoHb/2f/CKp+Y5sWsQlBaAX/05wbAEmdJ7O28Un+wCEpxrLzgNUBZKIR 8VCxoDToEWFygMxt/Sc4kzI/XwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFN/hSX7s 3alACr1bodLlgl4omHy3MB8GA1UdIwQYMBaAFD5D4CPAhTWU6td7KCiaPx8Qwwkd MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1MEI0Ny9EQTE3NTU3ODFE QTMxMUUyQkVENzc4OTkwOEIwMkNEMi9Qa1BnSThDRk5aVHExM3NvS0pvX0h4RERD UjAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1BrUGdJOENGTlpUcTEzc29LSm9fSHhERENSMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 MEI0Ny9EQTE3NTU3ODFEQTMxMUUyQkVENzc4OTkwOEIwMkNEMi9Qa1BnSThDRk5a VHExM3NvS0pvX0h4RERDUjAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCF5fInINzKBY40QvFIXQ6cbl8+e1DB6C3teWnlJfS0c95Xi/3P9xaR eJlH9Nak6OFaIk1nBZP8pfd7PkJmoQ6R73VRER6pKvkITcgxR0GFL7GuERGp8Msu 20sse8ysYcUmeQDZn766v1yTRfbKdp7ql2K/eSPRRpPe9IzrFrX6BM9bZ9Pl0naH O7BaODpU0PeIquy9M268jswaqO5/mAcNuJGpYUn3Xkr08D1DxNaV2gcB2C8x2DU9 R+dvB66RMlOj3U3O5Pl8/9IwHRs4rh3hmfQTpIw3QlOKFDPtg9Vq91PO9sNuvb4/ ZhFlBjKKNG329b1fpppw2jciwa1wEwLW -----END CERTIFICATE-----Generated at Sun Aug 24 03:13:20 2025 by rpki-client