$ rpki-client -vvf rpki.apnic.net/member_repository/A915A39E/CA31689641E911ECB2589673C4F9AE02/PkLTM0oc4Yid_GfkLfYoWCGFJRk.mft File: PkLTM0oc4Yid_GfkLfYoWCGFJRk.mft (raw, json) Hash identifier: E4YrmVVMdUw+n5/O4QaA+zSBeVLS1tsYP0w0KdX17BA= Subject key identifier: 12:95:AE:C6:49:E6:A4:AF:97:85:61:C9:2F:C7:B6:FC:11:27:6F:91 Authority key identifier: 3E:42:D3:33:4A:1C:E1:88:9D:FC:67:E4:2D:F6:28:58:21:85:25:19 Certificate issuer: /CN=A915A39E/serialNumber=3E42D3334A1CE1889DFC67E42DF6285821852519 Certificate serial: 0492 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PkLTM0oc4Yid_GfkLfYoWCGFJRk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A915A39E/CA31689641E911ECB2589673C4F9AE02/PkLTM0oc4Yid_GfkLfYoWCGFJRk.mft Manifest number: 048E Signing time: Thu 03 Jul 2025 00:21:12 +0000 Manifest this update: Thu 03 Jul 2025 00:21:11 +0000 Manifest next update: Thu 10 Jul 2025 00:21:11 +0000 Files and hashes: 1: PkLTM0oc4Yid_GfkLfYoWCGFJRk.crl (hash: WFttTgrL1m+i8CHWQi80K+088ACPyvv5oO2/lgV4GxU=) 2: 47A72A7441ED11EC9B02377AC4F9AE02.roa (hash: JRIJmi6CkdzwRl9tqXcDbUlpayemlqeCYja07bnQOys=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A915A39E/CA31689641E911ECB2589673C4F9AE02/PkLTM0oc4Yid_GfkLfYoWCGFJRk.crl rsync://rpki.apnic.net/member_repository/A915A39E/CA31689641E911ECB2589673C4F9AE02/PkLTM0oc4Yid_GfkLfYoWCGFJRk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PkLTM0oc4Yid_GfkLfYoWCGFJRk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 10 Jul 2025 00:21:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1170 (0x492) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A915A39E, serialNumber=3E42D3334A1CE1889DFC67E42DF6285821852519 Validity Not Before: Jul 3 00:21:11 2025 GMT Not After : Jul 10 00:21:11 2025 GMT Subject: CN=6865ccf7-f0ce Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a1:c8:2e:57:6d:7a:a6:02:ff:3b:f6:cf:9b:da: 59:74:9f:dd:4b:ea:b1:0a:95:fb:61:54:fb:7e:a0: d0:df:78:db:22:0a:e4:66:40:ab:7d:12:49:a3:90: 9c:5e:74:b2:e9:99:3e:b4:87:02:78:aa:8b:8d:5a: 1a:9b:19:b9:b5:76:ca:fd:b4:aa:66:61:56:e5:12: da:b8:42:5d:f8:29:34:eb:a6:8b:f8:89:f7:45:30: 07:22:3a:d8:87:ea:7d:14:f3:ad:10:ab:31:49:94: 13:98:38:25:80:d1:ca:f3:4e:98:6c:35:15:97:b6: 0f:6b:09:3c:25:67:7d:66:f7:43:18:15:47:b3:14: 72:ba:77:e0:95:b1:75:a3:9d:fe:df:5b:47:85:62: 66:c8:53:80:e4:f0:4b:60:12:7b:30:ff:85:9f:1c: 29:a2:34:d1:e2:67:f5:b4:0d:6b:32:59:8c:ee:41: 81:c1:06:d7:e5:8e:33:ee:b2:92:55:61:c9:6a:06: 96:38:3f:ac:42:8e:e6:38:72:1c:96:c1:ee:17:a1: 0c:41:be:cb:8a:c3:0e:82:a5:bd:d9:2f:ee:50:d9: e7:9d:14:1e:f0:89:d3:ed:37:85:07:63:bf:5e:d1: 39:69:af:35:38:a1:72:a1:56:b4:80:04:25:f4:b5: ab:41 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 12:95:AE:C6:49:E6:A4:AF:97:85:61:C9:2F:C7:B6:FC:11:27:6F:91 X509v3 Authority Key Identifier: keyid:3E:42:D3:33:4A:1C:E1:88:9D:FC:67:E4:2D:F6:28:58:21:85:25:19 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A915A39E/CA31689641E911ECB2589673C4F9AE02/PkLTM0oc4Yid_GfkLfYoWCGFJRk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PkLTM0oc4Yid_GfkLfYoWCGFJRk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A915A39E/CA31689641E911ECB2589673C4F9AE02/PkLTM0oc4Yid_GfkLfYoWCGFJRk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 90:83:e6:80:d8:b9:85:8e:a6:8e:fd:d4:79:51:01:01:dd:e0: ab:bb:d9:cf:a8:ec:1c:2f:35:df:03:ce:f4:28:f3:97:06:08: e9:b5:cb:e2:b7:d9:0e:76:d0:f5:c0:0b:23:2a:ed:32:4f:b2: 68:d3:1b:d3:5c:46:d2:ab:0d:05:33:0e:2b:a3:da:67:3d:59: 1e:37:99:a2:52:78:44:88:ee:4b:6e:fd:6c:0e:69:d3:53:c6: a0:fe:b4:ca:c8:36:e7:fc:09:33:75:5d:41:e6:4b:2d:d1:a3: 7f:48:e1:69:5f:b4:c2:c3:79:6a:c2:41:10:8a:37:e0:e0:01: fb:12:c3:c0:fa:3e:37:af:28:60:ca:d6:4e:4e:92:32:72:d3: 55:e8:21:4d:f3:b1:8f:3d:28:ba:7d:2d:fa:ee:c3:35:9f:c5: 53:8c:17:18:ee:84:43:6b:e2:03:f7:6f:70:e0:ba:a5:21:03: 83:55:58:0d:fc:ff:2e:46:f2:35:8e:a1:d4:ce:d7:69:fd:14: 89:8d:60:f2:41:2d:fb:c1:60:a1:61:f5:f2:e9:ff:63:1d:3f: 30:82:95:ab:6d:05:46:3f:31:3b:a6:40:a2:1c:2a:b7:72:7d: 53:86:ef:78:2f:00:aa:8a:db:ce:f9:2e:32:ae:57:16:af:dc: 00:44:e0:d4 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBJIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NUEzOUUxMTAvBgNVBAUTKDNFNDJEMzMzNEExQ0UxODg5REZDNjdFNDJERjYyODU4 MjE4NTI1MTkwHhcNMjUwNzAzMDAyMTExWhcNMjUwNzEwMDAyMTExWjAYMRYwFAYD VQQDEw02ODY1Y2NmNy1mMGNlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAocguV216pgL/O/bPm9pZdJ/dS+qxCpX7YVT7fqDQ33jbIgrkZkCrfRJJo5Cc XnSy6Zk+tIcCeKqLjVoamxm5tXbK/bSqZmFW5RLauEJd+Ck066aL+In3RTAHIjrY h+p9FPOtEKsxSZQTmDglgNHK806YbDUVl7YPawk8JWd9ZvdDGBVHsxRyunfglbF1 o53+31tHhWJmyFOA5PBLYBJ7MP+FnxwpojTR4mf1tA1rMlmM7kGBwQbX5Y4z7rKS VWHJagaWOD+sQo7mOHIclsHuF6EMQb7LisMOgqW92S/uUNnnnRQe8InT7TeFB2O/ XtE5aa81OKFyoVa0gAQl9LWrQQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFBKVrsZJ 5qSvl4VhyS/HtvwRJ2+RMB8GA1UdIwQYMBaAFD5C0zNKHOGInfxn5C32KFghhSUZ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1QTM5RS9DQTMxNjg5NjQx RTkxMUVDQjI1ODk2NzNDNEY5QUUwMi9Qa0xUTTBvYzRZaWRfR2ZrTGZZb1dDR0ZK UmsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1BrTFRNMG9jNFlpZF9HZmtMZllvV0NHRkpSay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 QTM5RS9DQTMxNjg5NjQxRTkxMUVDQjI1ODk2NzNDNEY5QUUwMi9Qa0xUTTBvYzRZ aWRfR2ZrTGZZb1dDR0ZKUmsubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCQg+aA2LmFjqaO/dR5UQEB3eCru9nPqOwcLzXfA870KPOXBgjptcvi t9kOdtD1wAsjKu0yT7Jo0xvTXEbSqw0FMw4ro9pnPVkeN5miUnhEiO5Lbv1sDmnT U8ag/rTKyDbn/AkzdV1B5kst0aN/SOFpX7TCw3lqwkEQijfg4AH7EsPA+j43ryhg ytZOTpIyctNV6CFN87GPPSi6fS367sM1n8VTjBcY7oRDa+ID929w4LqlIQODVVgN /P8uRvI1jqHUztdp/RSJjWDyQS37wWChYfXy6f9jHT8wgpWrbQVGPzE7pkCiHCq3 cn1Thu94LwCqitvO+S4yrlcWr9wARODU -----END CERTIFICATE-----Generated at Thu Jul 3 17:27:17 2025 by rpki-client