$ rpki-client -vvf rpki.apnic.net/member_repository/A9173FAC/B8F5C76A101811F080BCC348C4F9AE02/PxqOo9KtxuyyNg4MN2zlWbn_cfI.mft File: PxqOo9KtxuyyNg4MN2zlWbn_cfI.mft (raw, json) Hash identifier: G30fV150dY997dKl70W1GSDnhB6FSpN+ALZS8+E7EH4= Subject key identifier: 3F:43:B5:EE:D8:35:CB:2A:A7:4E:E3:5E:CA:E6:CA:76:DC:61:D5:AA Authority key identifier: 3F:1A:8E:A3:D2:AD:C6:EC:B2:36:0E:0C:37:6C:E5:59:B9:FF:71:F2 Certificate issuer: /CN=A9173FAC/serialNumber=3F1A8EA3D2ADC6ECB2360E0C376CE559B9FF71F2 Certificate serial: 2E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PxqOo9KtxuyyNg4MN2zlWbn_cfI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9173FAC/B8F5C76A101811F080BCC348C4F9AE02/PxqOo9KtxuyyNg4MN2zlWbn_cfI.mft Manifest number: 2E Signing time: Thu 03 Jul 2025 07:56:03 +0000 Manifest this update: Thu 03 Jul 2025 07:56:02 +0000 Manifest next update: Thu 10 Jul 2025 07:56:02 +0000 Files and hashes: 1: PxqOo9KtxuyyNg4MN2zlWbn_cfI.crl (hash: 542uEoyNS+ymPJ47gtGP6dOLXu8MI6MUWXmenigyjyE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9173FAC/B8F5C76A101811F080BCC348C4F9AE02/PxqOo9KtxuyyNg4MN2zlWbn_cfI.crl rsync://rpki.apnic.net/member_repository/A9173FAC/B8F5C76A101811F080BCC348C4F9AE02/PxqOo9KtxuyyNg4MN2zlWbn_cfI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PxqOo9KtxuyyNg4MN2zlWbn_cfI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 10 Jul 2025 03:15:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 46 (0x2e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9173FAC, serialNumber=3F1A8EA3D2ADC6ECB2360E0C376CE559B9FF71F2 Validity Not Before: Jul 3 07:56:02 2025 GMT Not After : Jul 10 07:56:02 2025 GMT Subject: CN=68663793-f323 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:2c:25:c8:bb:85:f8:16:09:55:9f:97:34:ca: 83:91:5d:0c:52:27:06:59:bf:84:e4:7b:42:ba:a8: fc:4a:d3:81:88:ec:93:a8:42:99:49:19:f5:33:76: 01:be:8a:59:a0:35:20:d4:a7:f2:e7:cc:65:6a:60: e2:df:6d:e7:47:34:aa:86:7d:eb:04:4d:a8:94:c9: 0c:f0:96:b7:24:9a:83:7e:24:d1:a7:9e:22:55:06: 27:0f:50:b4:be:43:d1:4f:02:7c:56:88:f5:35:3f: e6:ea:db:de:b5:84:ee:74:6b:27:98:34:25:45:2f: 30:0c:ba:18:8b:84:a5:5c:f8:33:85:ae:b2:7c:18: 11:c5:11:b6:1b:38:b0:4a:18:3a:8f:0a:24:49:29: 1e:60:03:c5:58:f0:01:d7:b5:82:06:e8:26:63:88: 1a:dc:f9:60:ea:06:6a:80:d8:59:5f:e1:9b:96:7f: 65:f2:4f:82:d8:10:85:eb:ce:98:e4:d8:b5:23:0f: 27:94:06:2d:6c:80:2c:a5:48:ed:73:ce:55:6d:54: a2:1e:40:8b:9a:ae:80:40:45:eb:a0:bd:5b:c6:7f: 97:c4:29:06:69:29:af:75:c1:43:78:b5:db:72:aa: ce:49:67:89:69:88:4d:f5:70:e4:1a:94:0e:d7:24: 02:43 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3F:43:B5:EE:D8:35:CB:2A:A7:4E:E3:5E:CA:E6:CA:76:DC:61:D5:AA X509v3 Authority Key Identifier: keyid:3F:1A:8E:A3:D2:AD:C6:EC:B2:36:0E:0C:37:6C:E5:59:B9:FF:71:F2 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9173FAC/B8F5C76A101811F080BCC348C4F9AE02/PxqOo9KtxuyyNg4MN2zlWbn_cfI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PxqOo9KtxuyyNg4MN2zlWbn_cfI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9173FAC/B8F5C76A101811F080BCC348C4F9AE02/PxqOo9KtxuyyNg4MN2zlWbn_cfI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 08:49:b1:9d:23:70:96:b0:e2:af:fa:d9:14:ee:ec:6e:a7:e5: 22:40:41:f5:d1:2b:cf:5a:ae:f0:b8:d2:83:7c:12:67:83:86: 91:89:17:ec:72:4d:8f:0e:9b:30:40:ff:67:14:5b:c8:8c:79: 2e:49:8d:d9:25:cb:8b:ab:7a:16:b9:ff:b7:96:fe:a0:fc:60: 7c:63:9a:cd:ce:d4:7b:46:87:24:87:e3:08:4c:87:d4:cd:95: 96:63:aa:fb:23:db:1b:bc:ba:39:7a:ea:1f:b5:1a:99:d9:7a: f0:d9:08:6e:53:af:94:0c:c4:50:17:4e:53:8f:37:bf:49:b6: 3e:ee:d7:de:75:1e:60:1f:c9:7c:b6:48:20:1a:33:cd:19:81: 91:3a:6a:e2:3f:3a:d2:e6:d8:37:e3:7d:b6:22:ea:17:08:85: 12:28:4d:8b:e3:a2:48:34:aa:87:51:fa:46:5a:0e:1f:f7:92: 66:f2:00:19:d7:6b:24:ad:6b:fb:26:a2:5b:23:49:69:5f:7d: 89:e1:04:2f:fe:45:0a:eb:69:aa:75:f1:80:a1:6b:e0:20:df: 55:b9:62:fa:83:8e:0a:66:74:9a:0f:37:dc:2d:62:59:27:8f: c0:6a:37:4a:44:1e:4d:2f:c7:e2:88:23:6c:0e:66:a4:23:2f: 12:f9:69:6c -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBLjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE3 M0ZBQzExMC8GA1UEBRMoM0YxQThFQTNEMkFEQzZFQ0IyMzYwRTBDMzc2Q0U1NTlC OUZGNzFGMjAeFw0yNTA3MDMwNzU2MDJaFw0yNTA3MTAwNzU2MDJaMBgxFjAUBgNV BAMTDTY4NjYzNzkzLWYzMjMwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQC+LCXIu4X4FglVn5c0yoORXQxSJwZZv4Tke0K6qPxK04GI7JOoQplJGfUzdgG+ ilmgNSDUp/LnzGVqYOLfbedHNKqGfesETaiUyQzwlrckmoN+JNGnniJVBicPULS+ Q9FPAnxWiPU1P+bq2961hO50ayeYNCVFLzAMuhiLhKVc+DOFrrJ8GBHFEbYbOLBK GDqPCiRJKR5gA8VY8AHXtYIG6CZjiBrc+WDqBmqA2Flf4ZuWf2XyT4LYEIXrzpjk 2LUjDyeUBi1sgCylSO1zzlVtVKIeQIuaroBAReugvVvGf5fEKQZpKa91wUN4tdty qs5JZ4lpiE31cOQalA7XJAJDAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUP0O17tg1 yyqnTuNeyubKdtxh1aowHwYDVR0jBBgwFoAUPxqOo9KtxuyyNg4MN2zlWbn/cfIw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTczRkFDL0I4RjVDNzZBMTAx ODExRjA4MEJDQzM0OEM0RjlBRTAyL1B4cU9vOUt0eHV5eU5nNE1OMnpsV2JuX2Nm SS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvUHhxT285S3R4dXl5Tmc0TU4yemxXYm5fY2ZJLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTcz RkFDL0I4RjVDNzZBMTAxODExRjA4MEJDQzM0OEM0RjlBRTAyL1B4cU9vOUt0eHV5 eU5nNE1OMnpsV2JuX2NmSS5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAAhJsZ0jcJaw4q/62RTu7G6n5SJAQfXRK89arvC40oN8EmeDhpGJF+xy TY8OmzBA/2cUW8iMeS5Jjdkly4ureha5/7eW/qD8YHxjms3O1HtGhySH4whMh9TN lZZjqvsj2xu8ujl66h+1GpnZevDZCG5Tr5QMxFAXTlOPN79Jtj7u1951HmAfyXy2 SCAaM80ZgZE6auI/OtLm2DfjfbYi6hcIhRIoTYvjokg0qodR+kZaDh/3kmbyABnX aySta/smolsjSWlffYnhBC/+RQrraap18YCha+Ag31W5YvqDjgpmdJoPN9wtYlkn j8BqN0pEHk0vx+KII2wOZqQjLxL5aWw= -----END CERTIFICATE-----Generated at Thu Jul 3 10:42:41 2025 by rpki-client