$ rpki-client -vvf rpki.apnic.net/member_repository/A9173FAC/B8F5C76A101811F080BCC348C4F9AE02/PxqOo9KtxuyyNg4MN2zlWbn_cfI.mft File: PxqOo9KtxuyyNg4MN2zlWbn_cfI.mft (raw, json) Hash identifier: TOIOgHraKXL1MZUDRDm/5wr9bZgj7DLZ0TUGuL663eA= Subject key identifier: 22:EF:28:D3:20:B5:5C:BC:46:E8:E4:9F:80:C4:0E:0D:5E:8A:CC:91 Authority key identifier: 3F:1A:8E:A3:D2:AD:C6:EC:B2:36:0E:0C:37:6C:E5:59:B9:FF:71:F2 Certificate issuer: /CN=A9173FAC/serialNumber=3F1A8EA3D2ADC6ECB2360E0C376CE559B9FF71F2 Certificate serial: 49 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PxqOo9KtxuyyNg4MN2zlWbn_cfI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9173FAC/B8F5C76A101811F080BCC348C4F9AE02/PxqOo9KtxuyyNg4MN2zlWbn_cfI.mft Manifest number: 49 Signing time: Sat 23 Aug 2025 07:36:39 +0000 Manifest this update: Sat 23 Aug 2025 07:36:39 +0000 Manifest next update: Sat 30 Aug 2025 07:36:39 +0000 Files and hashes: 1: PxqOo9KtxuyyNg4MN2zlWbn_cfI.crl (hash: CIOK0Ex36URCHy/Z+SGwaqjI0U1hoyChXrHze2HWrOU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9173FAC/B8F5C76A101811F080BCC348C4F9AE02/PxqOo9KtxuyyNg4MN2zlWbn_cfI.crl rsync://rpki.apnic.net/member_repository/A9173FAC/B8F5C76A101811F080BCC348C4F9AE02/PxqOo9KtxuyyNg4MN2zlWbn_cfI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PxqOo9KtxuyyNg4MN2zlWbn_cfI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Aug 2025 07:36:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 73 (0x49) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9173FAC, serialNumber=3F1A8EA3D2ADC6ECB2360E0C376CE559B9FF71F2 Validity Not Before: Aug 23 07:36:39 2025 GMT Not After : Aug 30 07:36:39 2025 GMT Subject: CN=68a96f87-1635 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dd:15:d4:8f:f8:6f:11:3a:67:bf:af:e0:93:f9: 11:ce:df:e0:09:3e:92:b3:fc:4b:4e:60:09:1f:e9: 1d:c4:a8:c8:91:14:7c:3b:08:08:7c:dd:0e:ad:6d: 29:2a:ae:87:59:1f:05:ae:e4:f0:07:f0:5f:6b:79: a4:9f:0a:54:ba:8b:b6:8e:23:47:45:79:b1:65:91: 0c:a0:d7:c4:38:24:fd:c7:34:de:3d:0f:00:6b:8d: 36:37:ea:b9:d9:00:cb:df:ef:e3:57:70:05:0d:b9: 69:2e:73:66:43:5d:92:ce:56:68:e9:19:27:41:ef: 6b:da:e0:ce:4e:8e:31:fc:6a:22:10:4f:17:f1:f0: 0f:4b:56:70:32:7c:52:9f:b4:5e:e8:36:fe:de:b9: d2:8c:be:71:3c:8d:a8:68:56:a7:4b:f7:83:49:e4: 7f:56:a4:6c:f1:92:52:23:48:fe:e8:e0:bd:a3:ed: 2a:1f:bf:50:cc:9e:bc:3f:3c:dd:b0:62:09:22:0f: a4:c0:83:d5:e3:de:1d:9f:96:2a:47:3c:22:40:fd: 2b:a9:91:ee:86:6c:e2:da:a8:45:fe:62:79:8e:a0: 12:4c:01:0e:7a:8c:f3:04:f1:90:2b:49:17:ff:00: 71:31:1f:f5:0a:44:fe:16:dc:fd:ce:34:ae:5a:fc: 99:95 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 22:EF:28:D3:20:B5:5C:BC:46:E8:E4:9F:80:C4:0E:0D:5E:8A:CC:91 X509v3 Authority Key Identifier: keyid:3F:1A:8E:A3:D2:AD:C6:EC:B2:36:0E:0C:37:6C:E5:59:B9:FF:71:F2 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9173FAC/B8F5C76A101811F080BCC348C4F9AE02/PxqOo9KtxuyyNg4MN2zlWbn_cfI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PxqOo9KtxuyyNg4MN2zlWbn_cfI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9173FAC/B8F5C76A101811F080BCC348C4F9AE02/PxqOo9KtxuyyNg4MN2zlWbn_cfI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 0d:8a:de:41:25:f9:cb:60:6f:b3:49:a2:5c:19:07:eb:f9:ed: 2b:11:ec:c6:e1:5c:40:e2:c2:d6:48:4a:ec:31:48:d0:b8:4b: 98:39:aa:38:fc:b4:79:df:bb:3f:99:2c:91:a1:7e:21:95:1a: 6d:cc:a9:fa:04:6f:c6:c5:20:8b:5d:80:a5:02:b7:34:f0:a6: 6b:8c:81:a7:95:f0:40:f4:68:77:06:d7:f4:3b:66:7e:12:c3: 00:f3:ed:17:39:5c:d1:16:f0:0a:af:97:a6:0d:d3:c9:b3:5c: 1f:19:ba:72:aa:cb:92:f5:0a:28:0a:1e:f4:09:a2:1d:8b:c1: f8:bf:ea:dc:82:e9:b8:a9:52:14:34:9b:5a:8b:ec:f7:d5:29: f6:dd:1f:9d:c1:53:22:0a:d6:24:08:7c:01:9a:36:a3:18:69: 83:54:aa:29:9b:bc:83:fe:0f:ca:c7:7b:67:30:a7:cf:d6:b6: 1e:89:59:e0:67:05:2a:63:04:ac:63:a4:88:68:72:29:88:a7: ba:e7:31:84:32:ab:9a:95:39:7b:0e:10:65:0c:13:f0:1f:f2: 1b:60:d8:48:ef:d9:04:f2:b3:53:77:5f:9a:43:d6:6b:03:be: bb:48:5b:8c:a9:8b:25:36:8d:b6:87:22:24:ab:72:d0:de:55: 7e:6d:3b:72 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBSTANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE3 M0ZBQzExMC8GA1UEBRMoM0YxQThFQTNEMkFEQzZFQ0IyMzYwRTBDMzc2Q0U1NTlC OUZGNzFGMjAeFw0yNTA4MjMwNzM2MzlaFw0yNTA4MzAwNzM2MzlaMBgxFjAUBgNV BAMTDTY4YTk2Zjg3LTE2MzUwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDdFdSP+G8ROme/r+CT+RHO3+AJPpKz/EtOYAkf6R3EqMiRFHw7CAh83Q6tbSkq rodZHwWu5PAH8F9reaSfClS6i7aOI0dFebFlkQyg18Q4JP3HNN49DwBrjTY36rnZ AMvf7+NXcAUNuWkuc2ZDXZLOVmjpGSdB72va4M5OjjH8aiIQTxfx8A9LVnAyfFKf tF7oNv7eudKMvnE8jahoVqdL94NJ5H9WpGzxklIjSP7o4L2j7Sofv1DMnrw/PN2w YgkiD6TAg9Xj3h2flipHPCJA/Supke6GbOLaqEX+YnmOoBJMAQ56jPME8ZArSRf/ AHExH/UKRP4W3P3ONK5a/JmVAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUIu8o0yC1 XLxG6OSfgMQODV6KzJEwHwYDVR0jBBgwFoAUPxqOo9KtxuyyNg4MN2zlWbn/cfIw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTczRkFDL0I4RjVDNzZBMTAx ODExRjA4MEJDQzM0OEM0RjlBRTAyL1B4cU9vOUt0eHV5eU5nNE1OMnpsV2JuX2Nm SS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvUHhxT285S3R4dXl5Tmc0TU4yemxXYm5fY2ZJLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTcz RkFDL0I4RjVDNzZBMTAxODExRjA4MEJDQzM0OEM0RjlBRTAyL1B4cU9vOUt0eHV5 eU5nNE1OMnpsV2JuX2NmSS5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAA2K3kEl+ctgb7NJolwZB+v57SsR7MbhXEDiwtZISuwxSNC4S5g5qjj8 tHnfuz+ZLJGhfiGVGm3MqfoEb8bFIItdgKUCtzTwpmuMgaeV8ED0aHcG1/Q7Zn4S wwDz7Rc5XNEW8Aqvl6YN08mzXB8ZunKqy5L1CigKHvQJoh2Lwfi/6tyC6bipUhQ0 m1qL7PfVKfbdH53BUyIK1iQIfAGaNqMYaYNUqimbvIP+D8rHe2cwp8/Wth6JWeBn BSpjBKxjpIhocimIp7rnMYQyq5qVOXsOEGUME/Af8htg2Ejv2QTys1N3X5pD1msD vrtIW4ypiyU2jbaHIiSrctDeVX5tO3I= -----END CERTIFICATE-----Generated at Sat Aug 23 19:31:05 2025 by rpki-client