$ rpki-client -vvf rpki.apnic.net/member_repository/A9173161/79B5FCD4D90711EFB27F7857C4F9AE02/PM59J4idCNUwg0kqqJygm2jw5fA.mft File: PM59J4idCNUwg0kqqJygm2jw5fA.mft (raw, json) Hash identifier: Iu8b8PFIFGRa3SIUSbh2qiPDHVvdd0/mlh3U9qOIvyQ= Subject key identifier: F4:FF:50:1E:A8:21:1C:22:E6:44:B3:9A:D6:DB:8E:A4:BE:B2:10:84 Authority key identifier: 3C:CE:7D:27:88:9D:08:D5:30:83:49:2A:A8:9C:A0:9B:68:F0:E5:F0 Certificate issuer: /CN=A9173161/serialNumber=3CCE7D27889D08D53083492AA89CA09B68F0E5F0 Certificate serial: 52 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PM59J4idCNUwg0kqqJygm2jw5fA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9173161/79B5FCD4D90711EFB27F7857C4F9AE02/PM59J4idCNUwg0kqqJygm2jw5fA.mft Manifest number: 52 Signing time: Tue 01 Jul 2025 08:01:29 +0000 Manifest this update: Tue 01 Jul 2025 08:01:29 +0000 Manifest next update: Tue 08 Jul 2025 08:01:29 +0000 Files and hashes: 1: PM59J4idCNUwg0kqqJygm2jw5fA.crl (hash: R2ujZ1jJScHe7rPyTlb3OT+xtOYh6RvC7OtFT4nZuu8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9173161/79B5FCD4D90711EFB27F7857C4F9AE02/PM59J4idCNUwg0kqqJygm2jw5fA.crl rsync://rpki.apnic.net/member_repository/A9173161/79B5FCD4D90711EFB27F7857C4F9AE02/PM59J4idCNUwg0kqqJygm2jw5fA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PM59J4idCNUwg0kqqJygm2jw5fA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 08 Jul 2025 08:01:28 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 82 (0x52) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9173161, serialNumber=3CCE7D27889D08D53083492AA89CA09B68F0E5F0 Validity Not Before: Jul 1 08:01:29 2025 GMT Not After : Jul 8 08:01:29 2025 GMT Subject: CN=686395d9-56f8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b3:f6:92:c1:92:c3:47:e2:bf:ca:3c:32:b0:6f: 39:15:3a:c8:99:64:2d:4b:2c:d2:91:69:2a:4b:8a: e9:4f:3e:f5:dc:d5:f1:03:76:61:8c:cf:4a:2a:3a: 22:89:f7:fa:4e:74:ad:93:2a:8c:6e:c3:89:11:a9: a6:fb:16:f7:eb:13:02:29:f2:b1:69:8c:2a:7b:5c: 34:bb:9a:b5:32:42:1d:3d:b8:0c:72:04:78:76:69: b6:8e:5c:3c:ce:03:31:ea:86:0c:18:e7:3e:a6:26: 29:b9:45:75:fa:75:b5:85:88:03:59:a5:5c:be:fe: ca:52:55:b9:a7:55:06:98:dc:1b:a2:e2:9d:34:c4: 5c:d2:07:55:4b:b8:c0:4e:5c:a5:57:04:77:a1:1f: 31:20:c9:49:46:86:fc:96:c6:75:ef:64:2c:16:7c: 99:0b:0c:c9:63:36:97:16:02:94:bf:b9:51:26:e5: 67:ce:cf:31:e6:66:2f:a1:a5:dc:f9:4f:24:59:e3: 39:48:24:e5:4f:be:bf:82:df:8e:51:9c:00:22:18: 5c:95:03:f2:62:ce:c2:11:08:4b:84:8f:d4:e4:c5: 43:cb:6d:3d:c5:51:63:d1:39:85:35:03:f9:1b:5f: 48:4f:45:c7:95:41:f8:7d:0e:10:10:b9:d0:4e:26: 37:ef Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F4:FF:50:1E:A8:21:1C:22:E6:44:B3:9A:D6:DB:8E:A4:BE:B2:10:84 X509v3 Authority Key Identifier: keyid:3C:CE:7D:27:88:9D:08:D5:30:83:49:2A:A8:9C:A0:9B:68:F0:E5:F0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9173161/79B5FCD4D90711EFB27F7857C4F9AE02/PM59J4idCNUwg0kqqJygm2jw5fA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PM59J4idCNUwg0kqqJygm2jw5fA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9173161/79B5FCD4D90711EFB27F7857C4F9AE02/PM59J4idCNUwg0kqqJygm2jw5fA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 06:d7:0e:4d:df:26:b2:50:ea:86:42:18:4a:e0:be:a8:54:e2: b4:33:c2:f6:b8:86:04:1a:61:bc:4c:cd:68:20:ac:da:4d:fa: 80:e1:06:4e:5c:d2:37:a6:e7:aa:dc:3a:5e:40:ba:a3:28:fd: dd:80:49:5d:d5:6a:c0:c5:c7:f0:b1:f1:2d:e0:f4:98:17:c1: 39:03:ee:2f:5b:e3:a8:d0:8a:70:3a:13:47:0a:05:3b:89:22: a9:69:b1:f6:62:e9:97:cd:08:df:d2:c1:9d:a8:d7:7d:1d:c0: 94:2e:04:ea:b5:d2:cf:f9:5a:14:51:6a:5d:7c:7b:9b:21:1d: d1:07:6a:c7:f6:0a:9f:b6:d4:c3:7a:06:cd:33:ca:80:f8:09: 24:64:66:0e:3c:b0:f9:5c:f3:9f:31:99:cc:a5:54:ad:37:60: 35:d9:4b:b9:23:72:09:5d:de:03:74:40:b0:6d:ec:4f:2e:53: 87:5e:15:40:bf:3c:ae:97:51:fa:bf:c4:ca:a1:3a:13:ed:3b: b2:e9:a4:3e:d1:4f:be:e1:a9:86:68:46:a0:31:f4:88:f2:93: 3f:74:7e:59:e1:19:8e:1f:56:7d:e5:c7:4d:4a:f4:38:93:e4: f0:fc:71:c3:1e:85:be:dc:84:44:71:12:17:33:14:a9:de:8a: f6:b2:b9:d4 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBUjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE3 MzE2MTExMC8GA1UEBRMoM0NDRTdEMjc4ODlEMDhENTMwODM0OTJBQTg5Q0EwOUI2 OEYwRTVGMDAeFw0yNTA3MDEwODAxMjlaFw0yNTA3MDgwODAxMjlaMBgxFjAUBgNV BAMTDTY4NjM5NWQ5LTU2ZjgwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCz9pLBksNH4r/KPDKwbzkVOsiZZC1LLNKRaSpLiulPPvXc1fEDdmGMz0oqOiKJ 9/pOdK2TKoxuw4kRqab7FvfrEwIp8rFpjCp7XDS7mrUyQh09uAxyBHh2abaOXDzO AzHqhgwY5z6mJim5RXX6dbWFiANZpVy+/spSVbmnVQaY3Bui4p00xFzSB1VLuMBO XKVXBHehHzEgyUlGhvyWxnXvZCwWfJkLDMljNpcWApS/uVEm5WfOzzHmZi+hpdz5 TyRZ4zlIJOVPvr+C345RnAAiGFyVA/JizsIRCEuEj9TkxUPLbT3FUWPROYU1A/kb X0hPRceVQfh9DhAQudBOJjfvAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQU9P9QHqgh HCLmRLOa1tuOpL6yEIQwHwYDVR0jBBgwFoAUPM59J4idCNUwg0kqqJygm2jw5fAw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTczMTYxLzc5QjVGQ0Q0RDkw NzExRUZCMjdGNzg1N0M0RjlBRTAyL1BNNTlKNGlkQ05Vd2cwa3FxSnlnbTJqdzVm QS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvUE01OUo0aWRDTlV3ZzBrcXFKeWdtMmp3NWZBLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTcz MTYxLzc5QjVGQ0Q0RDkwNzExRUZCMjdGNzg1N0M0RjlBRTAyL1BNNTlKNGlkQ05V d2cwa3FxSnlnbTJqdzVmQS5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAAbXDk3fJrJQ6oZCGErgvqhU4rQzwva4hgQaYbxMzWggrNpN+oDhBk5c 0jem56rcOl5AuqMo/d2ASV3VasDFx/Cx8S3g9JgXwTkD7i9b46jQinA6E0cKBTuJ IqlpsfZi6ZfNCN/SwZ2o130dwJQuBOq10s/5WhRRal18e5shHdEHasf2Cp+21MN6 Bs0zyoD4CSRkZg48sPlc858xmcylVK03YDXZS7kjcgld3gN0QLBt7E8uU4deFUC/ PK6XUfq/xMqhOhPtO7LppD7RT77hqYZoRqAx9Ijykz90flnhGY4fVn3lx01K9DiT 5PD8ccMehb7chERxEhczFKneivayudQ= -----END CERTIFICATE-----Generated at Tue Jul 1 12:51:27 2025 by rpki-client