$ rpki-client -vvf rpki.apnic.net/member_repository/A9150B47/DA1755781DA311E2BED7789908B02CD2/PkPgI8CFNZTq13soKJo_HxDDCR0.mft File: PkPgI8CFNZTq13soKJo_HxDDCR0.mft (raw, json) Hash identifier: sh51MD0p445sICrYYKyQk3UWA4MhwTgkzfv7oB+3kjY= Subject key identifier: 99:CA:8F:A5:AE:95:5D:2B:B4:EF:03:17:42:04:A3:7A:AD:D8:E7:50 Authority key identifier: 3E:43:E0:23:C0:85:35:94:EA:D7:7B:28:28:9A:3F:1F:10:C3:09:1D Certificate issuer: /CN=A9150B47/serialNumber=3E43E023C0853594EAD77B28289A3F1F10C3091D Certificate serial: 3493 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PkPgI8CFNZTq13soKJo_HxDDCR0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9150B47/DA1755781DA311E2BED7789908B02CD2/PkPgI8CFNZTq13soKJo_HxDDCR0.mft Manifest number: 3490 Signing time: Wed 02 Jul 2025 15:13:07 +0000 Manifest this update: Wed 02 Jul 2025 15:13:06 +0000 Manifest next update: Wed 09 Jul 2025 15:13:06 +0000 Files and hashes: 1: PkPgI8CFNZTq13soKJo_HxDDCR0.crl (hash: JeCqwwZBpCuECBWJnpg4BRbPbebFPAIrMo7uMw3OpA0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9150B47/DA1755781DA311E2BED7789908B02CD2/PkPgI8CFNZTq13soKJo_HxDDCR0.crl rsync://rpki.apnic.net/member_repository/A9150B47/DA1755781DA311E2BED7789908B02CD2/PkPgI8CFNZTq13soKJo_HxDDCR0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PkPgI8CFNZTq13soKJo_HxDDCR0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 09 Jul 2025 15:13:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13459 (0x3493) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9150B47, serialNumber=3E43E023C0853594EAD77B28289A3F1F10C3091D Validity Not Before: Jul 2 15:13:06 2025 GMT Not After : Jul 9 15:13:06 2025 GMT Subject: CN=68654c82-b48c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b1:b9:be:de:61:d6:88:01:b8:fb:07:94:7d:c6: d9:d6:8b:e4:36:46:35:db:ea:de:c3:75:89:48:ea: 44:e8:aa:bb:d7:37:8a:9e:91:29:9e:bd:4c:bf:16: 25:51:25:d5:d5:18:17:e3:03:60:41:b4:8f:52:fc: 9a:5d:1f:db:ef:c0:36:9a:8e:52:84:5d:85:b1:52: 4f:5d:d8:f6:9d:48:e7:e9:e3:12:46:aa:86:e3:b9: f2:e6:22:58:98:7d:e5:4b:28:f7:b3:71:00:3e:50: fa:14:03:7b:1d:6b:16:26:90:03:94:16:71:5d:2f: fd:cd:9a:18:f4:c4:50:83:d0:da:86:2e:15:31:94: 54:d0:48:4d:7d:9e:ea:7f:17:02:5e:16:c6:5f:db: c0:18:c2:0d:36:4a:8d:e7:73:b1:09:86:df:e6:bc: 32:95:fb:4d:bd:23:41:5f:5e:1b:e4:e6:85:33:89: ac:a5:1b:8b:f7:6c:49:4e:65:18:c7:80:e2:7c:8d: 8a:2d:6d:0f:b8:21:6b:f5:5f:77:e2:bd:e6:61:6a: c5:d8:27:cd:89:1e:6e:7b:6e:a3:93:e2:86:b1:94: c6:e6:e9:8d:99:25:41:ec:b1:e1:c1:4b:9c:5f:e6: a0:af:68:74:95:ff:f4:b1:6f:39:98:90:65:9f:91: d7:bd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 99:CA:8F:A5:AE:95:5D:2B:B4:EF:03:17:42:04:A3:7A:AD:D8:E7:50 X509v3 Authority Key Identifier: keyid:3E:43:E0:23:C0:85:35:94:EA:D7:7B:28:28:9A:3F:1F:10:C3:09:1D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9150B47/DA1755781DA311E2BED7789908B02CD2/PkPgI8CFNZTq13soKJo_HxDDCR0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PkPgI8CFNZTq13soKJo_HxDDCR0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9150B47/DA1755781DA311E2BED7789908B02CD2/PkPgI8CFNZTq13soKJo_HxDDCR0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption bc:89:d4:84:eb:3d:aa:b9:15:ad:9d:27:8c:3e:04:1c:b8:44: 15:b5:a7:d6:46:a7:c5:26:a6:36:5b:28:c4:30:36:31:96:7f: 79:c5:b7:cb:c6:3c:c9:a3:58:d5:cd:b5:c8:b1:93:f2:b9:88: 97:78:06:16:cd:9d:d9:a6:10:59:3a:a2:2c:8b:37:27:2c:2b: f4:51:5e:8e:a4:a2:3d:3c:af:65:50:d5:a7:1a:95:10:2c:e0: 8e:03:ec:77:a9:83:aa:9a:80:87:0c:aa:86:57:79:6b:3e:00: ea:40:13:41:df:65:73:27:0a:95:a3:cc:33:60:71:47:a6:15: 11:62:89:4d:89:55:05:a1:06:a8:eb:64:f7:d5:0c:a1:f0:ed: d7:af:e7:c7:27:f2:dd:a0:08:c5:0f:ce:ba:a0:50:f8:55:60: dc:e4:ec:34:a6:47:6e:3a:e4:fd:99:00:fe:5b:bc:75:d8:0c: ec:8a:b6:28:e3:ab:8f:8a:b2:2a:b8:ae:af:08:d3:dd:39:4c: 60:fd:cc:c9:91:d3:75:89:d0:8d:81:de:f5:81:65:20:64:7a: a4:e6:9d:94:3d:8c:ca:b5:81:f8:8a:9f:11:db:28:ba:52:df: 35:a3:28:b8:47:d1:d4:dc:d2:52:5d:13:56:cf:82:bb:f9:b8: 80:95:bd:d2 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICNJMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTBCNDcxMTAvBgNVBAUTKDNFNDNFMDIzQzA4NTM1OTRFQUQ3N0IyODI4OUEzRjFG MTBDMzA5MUQwHhcNMjUwNzAyMTUxMzA2WhcNMjUwNzA5MTUxMzA2WjAYMRYwFAYD VQQDEw02ODY1NGM4Mi1iNDhjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsbm+3mHWiAG4+weUfcbZ1ovkNkY12+rew3WJSOpE6Kq71zeKnpEpnr1MvxYl USXV1RgX4wNgQbSPUvyaXR/b78A2mo5ShF2FsVJPXdj2nUjn6eMSRqqG47ny5iJY mH3lSyj3s3EAPlD6FAN7HWsWJpADlBZxXS/9zZoY9MRQg9Dahi4VMZRU0EhNfZ7q fxcCXhbGX9vAGMINNkqN53OxCYbf5rwylftNvSNBX14b5OaFM4mspRuL92xJTmUY x4DifI2KLW0PuCFr9V934r3mYWrF2CfNiR5ue26jk+KGsZTG5umNmSVB7LHhwUuc X+agr2h0lf/0sW85mJBln5HXvQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJnKj6Wu lV0rtO8DF0IEo3qt2OdQMB8GA1UdIwQYMBaAFD5D4CPAhTWU6td7KCiaPx8Qwwkd MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1MEI0Ny9EQTE3NTU3ODFE QTMxMUUyQkVENzc4OTkwOEIwMkNEMi9Qa1BnSThDRk5aVHExM3NvS0pvX0h4RERD UjAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1BrUGdJOENGTlpUcTEzc29LSm9fSHhERENSMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 MEI0Ny9EQTE3NTU3ODFEQTMxMUUyQkVENzc4OTkwOEIwMkNEMi9Qa1BnSThDRk5a VHExM3NvS0pvX0h4RERDUjAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQC8idSE6z2quRWtnSeMPgQcuEQVtafWRqfFJqY2WyjEMDYxln95xbfL xjzJo1jVzbXIsZPyuYiXeAYWzZ3ZphBZOqIsizcnLCv0UV6OpKI9PK9lUNWnGpUQ LOCOA+x3qYOqmoCHDKqGV3lrPgDqQBNB32VzJwqVo8wzYHFHphURYolNiVUFoQao 62T31Qyh8O3Xr+fHJ/LdoAjFD866oFD4VWDc5Ow0pkduOuT9mQD+W7x12AzsirYo 46uPirIquK6vCNPdOUxg/czJkdN1idCNgd71gWUgZHqk5p2UPYzKtYH4ip8R2yi6 Ut81oyi4R9HU3NJSXRNWz4K7+biAlb3S -----END CERTIFICATE-----Generated at Thu Jul 3 08:02:31 2025 by rpki-client