$ rpki-client -vvf rpki.apnic.net/member_repository/A9172BD3/64BFF14EB3F711EE92A47717C4F9AE02/PX_qy2M6a4KTI7HplE1K-Y3do3I.mft File: PX_qy2M6a4KTI7HplE1K-Y3do3I.mft (raw, json) Hash identifier: i7s1BTgU/pMVG0M3GBXRH0gzf8hVaPNVBzFsQa9dfHQ= Subject key identifier: 69:DB:27:C8:A0:66:EC:0F:FE:33:36:8A:15:C9:97:A1:92:E9:D2:9F Authority key identifier: 3D:7F:EA:CB:63:3A:6B:82:93:23:B1:E9:94:4D:4A:F9:8D:DD:A3:72 Certificate issuer: /CN=A9172BD3/serialNumber=3D7FEACB633A6B829323B1E9944D4AF98DDDA372 Certificate serial: 011F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PX_qy2M6a4KTI7HplE1K-Y3do3I.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9172BD3/64BFF14EB3F711EE92A47717C4F9AE02/PX_qy2M6a4KTI7HplE1K-Y3do3I.mft Manifest number: 0119 Signing time: Tue 01 Jul 2025 05:23:11 +0000 Manifest this update: Tue 01 Jul 2025 05:23:10 +0000 Manifest next update: Tue 08 Jul 2025 05:23:10 +0000 Files and hashes: 1: PX_qy2M6a4KTI7HplE1K-Y3do3I.crl (hash: KpAUlewqorjhSLlhbRErreY8BGZOymMLP/YttV85heQ=) 2: 78321A66068D11EF92608943C4F9AE02.roa (hash: t3FRQePlchRMM21FbtXsaZzbDzSWRANgfDaLHDn0f9I=) 3: 97F15FD8068D11EF839A3054C4F9AE02.roa (hash: vjgahSKHgAt0pKH9ZvyBQssVmzZCnj8JvOvCUHQg/Eg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9172BD3/64BFF14EB3F711EE92A47717C4F9AE02/PX_qy2M6a4KTI7HplE1K-Y3do3I.crl rsync://rpki.apnic.net/member_repository/A9172BD3/64BFF14EB3F711EE92A47717C4F9AE02/PX_qy2M6a4KTI7HplE1K-Y3do3I.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PX_qy2M6a4KTI7HplE1K-Y3do3I.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 08 Jul 2025 05:23:09 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 287 (0x11f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9172BD3, serialNumber=3D7FEACB633A6B829323B1E9944D4AF98DDDA372 Validity Not Before: Jul 1 05:23:10 2025 GMT Not After : Jul 8 05:23:10 2025 GMT Subject: CN=686370be-6db6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f1:2f:26:df:a0:9b:30:7c:98:5b:d4:c5:62:61: 89:fc:c2:15:0d:dc:2d:d9:13:09:44:be:42:ec:16: af:07:4c:6e:16:50:74:df:87:75:9c:ee:de:c7:3b: 5b:e1:53:6e:cd:33:8f:41:fb:fd:35:b1:52:38:94: 4a:6f:bd:e8:75:82:87:3a:8e:ca:b2:2e:c4:18:9d: de:72:ac:0a:dc:58:36:3f:01:d4:80:85:8c:a9:69: f1:b5:3d:e7:a8:50:07:af:07:dc:e9:d8:bb:dc:f9: 68:4d:ff:b3:01:f0:9c:9d:c5:e1:e2:70:5a:77:ba: 39:76:15:37:84:e4:d8:38:2a:84:05:c1:a4:6a:7d: 61:0e:ec:b7:6a:ee:55:15:99:6c:74:63:21:fa:06: d1:f0:a0:ec:b8:61:58:63:04:31:88:36:af:7d:23: 67:bf:86:d3:4d:98:66:f3:c4:6f:f2:9f:ee:d5:66: a1:c9:ac:34:8d:fa:35:f3:9b:f3:70:2d:c7:e9:19: 80:1b:2e:92:d0:94:1a:99:a6:3e:61:e9:07:d2:00: a9:37:5d:10:d2:72:88:94:49:fb:9b:3e:48:79:4e: 39:07:a6:80:86:d0:60:34:1b:a9:75:35:e9:00:03: 5c:27:1a:7b:f9:59:8d:c3:f1:1a:c0:24:4d:a2:08: 2b:4d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 69:DB:27:C8:A0:66:EC:0F:FE:33:36:8A:15:C9:97:A1:92:E9:D2:9F X509v3 Authority Key Identifier: keyid:3D:7F:EA:CB:63:3A:6B:82:93:23:B1:E9:94:4D:4A:F9:8D:DD:A3:72 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9172BD3/64BFF14EB3F711EE92A47717C4F9AE02/PX_qy2M6a4KTI7HplE1K-Y3do3I.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PX_qy2M6a4KTI7HplE1K-Y3do3I.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9172BD3/64BFF14EB3F711EE92A47717C4F9AE02/PX_qy2M6a4KTI7HplE1K-Y3do3I.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 92:ef:18:2a:d5:fe:66:6b:d7:b9:31:a0:36:1b:25:32:e1:77: cc:d7:c8:9a:ae:46:87:c2:e9:2f:81:55:69:c2:75:b9:42:f2: b1:b5:0a:e1:c2:59:c4:f6:fc:3a:97:32:b6:c5:ec:f5:eb:66: 07:a1:04:74:d7:45:41:8d:c4:49:34:69:e2:aa:82:8d:eb:9c: 45:55:08:0f:08:7f:91:be:d9:f6:86:45:90:97:12:0f:6d:bf: 7d:4d:ce:b2:47:56:f4:a2:d0:94:e2:1b:7d:c3:82:4c:fe:db: 9f:b0:3e:a6:a1:c1:3e:b3:df:ae:27:51:5d:8d:2e:74:20:ee: 56:a1:f8:06:ac:5d:4c:ce:5f:92:54:11:14:bd:72:ef:25:9a: cb:73:c7:e4:6a:e6:7d:41:ad:29:9e:aa:2f:a1:f5:5b:2e:b4: fd:fe:4c:e3:43:3c:57:37:7a:1a:a0:ab:7d:95:66:d7:34:86: 4f:53:8a:e2:0c:da:9d:34:54:2b:d3:6e:c1:61:f5:1d:85:fa: f1:88:32:b8:1d:c2:50:7e:fd:a6:b6:3d:96:22:9f:a7:0c:cd: 87:ed:76:c3:d0:a9:fc:25:92:ad:62:6c:5f:e0:11:07:b0:9f: 9c:03:0b:8c:13:b2:70:b1:c6:64:b9:21:6b:66:5e:60:b8:e1: 0e:a0:9f:47 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAR8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzJCRDMxMTAvBgNVBAUTKDNEN0ZFQUNCNjMzQTZCODI5MzIzQjFFOTk0NEQ0QUY5 OEREREEzNzIwHhcNMjUwNzAxMDUyMzEwWhcNMjUwNzA4MDUyMzEwWjAYMRYwFAYD VQQDEw02ODYzNzBiZS02ZGI2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA8S8m36CbMHyYW9TFYmGJ/MIVDdwt2RMJRL5C7BavB0xuFlB034d1nO7exztb 4VNuzTOPQfv9NbFSOJRKb73odYKHOo7Ksi7EGJ3ecqwK3Fg2PwHUgIWMqWnxtT3n qFAHrwfc6di73PloTf+zAfCcncXh4nBad7o5dhU3hOTYOCqEBcGkan1hDuy3au5V FZlsdGMh+gbR8KDsuGFYYwQxiDavfSNnv4bTTZhm88Rv8p/u1Wahyaw0jfo185vz cC3H6RmAGy6S0JQamaY+YekH0gCpN10Q0nKIlEn7mz5IeU45B6aAhtBgNBupdTXp AANcJxp7+VmNw/EawCRNoggrTQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFGnbJ8ig ZuwP/jM2ihXJl6GS6dKfMB8GA1UdIwQYMBaAFD1/6stjOmuCkyOx6ZRNSvmN3aNy MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3MkJEMy82NEJGRjE0RUIz RjcxMUVFOTJBNDc3MTdDNEY5QUUwMi9QWF9xeTJNNmE0S1RJN0hwbEUxSy1ZM2Rv M0kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1BYX3F5Mk02YTRLVEk3SHBsRTFLLVkzZG8zSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 MkJEMy82NEJGRjE0RUIzRjcxMUVFOTJBNDc3MTdDNEY5QUUwMi9QWF9xeTJNNmE0 S1RJN0hwbEUxSy1ZM2RvM0kubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCS7xgq1f5ma9e5MaA2GyUy4XfM18iarkaHwukvgVVpwnW5QvKxtQrh wlnE9vw6lzK2xez162YHoQR010VBjcRJNGniqoKN65xFVQgPCH+Rvtn2hkWQlxIP bb99Tc6yR1b0otCU4ht9w4JM/tufsD6mocE+s9+uJ1FdjS50IO5WofgGrF1Mzl+S VBEUvXLvJZrLc8fkauZ9Qa0pnqovofVbLrT9/kzjQzxXN3oaoKt9lWbXNIZPU4ri DNqdNFQr027BYfUdhfrxiDK4HcJQfv2mtj2WIp+nDM2H7XbD0Kn8JZKtYmxf4BEH sJ+cAwuME7JwscZkuSFrZl5guOEOoJ9H -----END CERTIFICATE-----Generated at Wed Jul 2 20:15:24 2025 by rpki-client