$ rpki-client -vvf rpki.apnic.net/member_repository/A917C422/A2C738681D8511E287036ADC08B02CD2/PgyjPXanW6ZPDdawakQr5pWGRBo.mft File: PgyjPXanW6ZPDdawakQr5pWGRBo.mft (raw, json) Hash identifier: Ih04bK4ApNdqMV2aRkZZay8kgJ2ZhB7OKKf2EeAoHRQ= Subject key identifier: AD:30:A8:77:54:20:C1:EC:98:F6:65:92:8F:9D:96:9E:1F:F5:14:F7 Authority key identifier: 3E:0C:A3:3D:76:A7:5B:A6:4F:0D:D6:B0:6A:44:2B:E6:95:86:44:1A Certificate issuer: /CN=A917C422/serialNumber=3E0CA33D76A75BA64F0DD6B06A442BE69586441A Certificate serial: 34B7 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PgyjPXanW6ZPDdawakQr5pWGRBo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917C422/A2C738681D8511E287036ADC08B02CD2/PgyjPXanW6ZPDdawakQr5pWGRBo.mft Manifest number: 34A8 Signing time: Fri 18 Jul 2025 14:26:26 +0000 Manifest this update: Fri 18 Jul 2025 14:26:25 +0000 Manifest next update: Fri 25 Jul 2025 14:26:25 +0000 Files and hashes: 1: PgyjPXanW6ZPDdawakQr5pWGRBo.crl (hash: WktMVmkjWustjs7Oa7VaRN4BVtZ00niP8u+Ktv5tEQk=) 2: D69F6688CD8511EBB5252063C4F9AE02.roa (hash: 1ODdrQTl4q6/w7rtOls+USY+PM8yOp3Wfi9ftx6zA0o=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917C422/A2C738681D8511E287036ADC08B02CD2/PgyjPXanW6ZPDdawakQr5pWGRBo.crl rsync://rpki.apnic.net/member_repository/A917C422/A2C738681D8511E287036ADC08B02CD2/PgyjPXanW6ZPDdawakQr5pWGRBo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PgyjPXanW6ZPDdawakQr5pWGRBo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 25 Jul 2025 14:26:25 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13495 (0x34b7) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917C422, serialNumber=3E0CA33D76A75BA64F0DD6B06A442BE69586441A Validity Not Before: Jul 18 14:26:25 2025 GMT Not After : Jul 25 14:26:25 2025 GMT Subject: CN=687a5991-ecd7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ac:96:bf:38:61:e1:b0:41:25:11:d0:2a:bc:66: 58:5d:78:80:9e:ad:e5:db:1c:66:85:06:22:58:03: 6d:5b:48:d7:4e:f7:01:7f:64:9e:09:b0:a3:f4:90: a1:5e:65:3c:a4:9e:49:ea:2b:9f:58:56:54:22:5f: 86:12:b5:57:29:0e:9d:8c:33:bc:1b:62:22:ea:08: 9d:04:ac:dd:69:f9:bb:72:b6:20:04:8d:a4:08:2a: 53:3c:05:63:04:f7:1d:7b:fe:96:52:21:89:88:a2: d6:38:aa:cb:ef:c0:43:18:97:6d:a3:ad:54:e3:0e: f7:35:01:92:c7:ba:fe:e3:e2:29:a9:53:13:49:5a: a7:a5:00:f0:a7:9f:8d:a4:75:5e:8b:fa:b7:c0:05: 9e:bc:ee:7e:cb:58:95:31:36:ea:2e:3a:fd:4b:3a: aa:3c:15:8c:cc:45:f1:74:05:1b:9e:dd:3c:98:60: d8:50:50:ae:e6:1b:6f:5f:31:9f:bc:6c:ab:71:20: fe:11:c2:4b:ae:75:b9:c2:d5:be:f9:ef:11:42:c4: 8d:5f:c5:7c:04:b5:23:10:1a:d3:74:d0:67:32:63: 35:8a:a8:47:4d:5d:c5:8f:a0:09:42:c0:23:49:6b: ad:08:90:60:b8:c4:9f:bd:6c:f2:87:58:40:d8:ec: fa:71 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AD:30:A8:77:54:20:C1:EC:98:F6:65:92:8F:9D:96:9E:1F:F5:14:F7 X509v3 Authority Key Identifier: keyid:3E:0C:A3:3D:76:A7:5B:A6:4F:0D:D6:B0:6A:44:2B:E6:95:86:44:1A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917C422/A2C738681D8511E287036ADC08B02CD2/PgyjPXanW6ZPDdawakQr5pWGRBo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PgyjPXanW6ZPDdawakQr5pWGRBo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917C422/A2C738681D8511E287036ADC08B02CD2/PgyjPXanW6ZPDdawakQr5pWGRBo.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 11:15:49:1a:8a:c4:40:42:39:7c:50:ed:4a:b8:84:59:48:84: 31:4a:3f:a4:2f:0b:51:e0:ba:9a:b2:be:40:62:a3:e8:72:2d: 88:b3:35:39:91:20:73:91:cf:69:00:af:ff:d6:e6:53:83:d1: 90:fd:c6:74:58:f8:fe:0e:a0:51:4e:2a:66:8d:ef:52:e7:3d: c1:63:10:ee:42:67:1b:a0:06:2b:a0:50:37:74:eb:ff:51:1e: a6:12:f2:57:94:17:1a:6a:82:52:ef:59:c7:69:69:99:8a:f7: 18:14:68:84:32:33:cb:49:d5:9a:79:05:61:97:1e:f3:45:44: 63:e6:1a:06:ec:17:c3:de:0c:ba:2b:c2:b9:01:8c:7d:13:6d: 7b:32:49:e2:91:24:dd:b9:2a:2b:9c:b7:0c:2b:d5:82:a3:95: b7:8d:b3:e0:60:fc:f3:b0:e1:53:e8:92:9d:10:fe:87:89:b1: 68:69:b6:90:37:1d:6e:6a:a3:60:57:c1:d0:35:7a:41:37:79: a9:8a:3c:4c:75:df:6f:05:17:8a:58:a6:e3:65:23:2e:71:0c: 38:58:10:c2:53:37:00:5b:49:90:ac:2f:7a:94:1e:49:62:d7: 23:2d:39:e2:13:45:60:d4:af:28:76:ac:39:34:8a:f7:6b:f7: 89:1f:6b:5c -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICNLcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0M0MjIxMTAvBgNVBAUTKDNFMENBMzNENzZBNzVCQTY0RjBERDZCMDZBNDQyQkU2 OTU4NjQ0MUEwHhcNMjUwNzE4MTQyNjI1WhcNMjUwNzI1MTQyNjI1WjAYMRYwFAYD VQQDEw02ODdhNTk5MS1lY2Q3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArJa/OGHhsEElEdAqvGZYXXiAnq3l2xxmhQYiWANtW0jXTvcBf2SeCbCj9JCh XmU8pJ5J6iufWFZUIl+GErVXKQ6djDO8G2Ii6gidBKzdafm7crYgBI2kCCpTPAVj BPcde/6WUiGJiKLWOKrL78BDGJdto61U4w73NQGSx7r+4+IpqVMTSVqnpQDwp5+N pHVei/q3wAWevO5+y1iVMTbqLjr9SzqqPBWMzEXxdAUbnt08mGDYUFCu5htvXzGf vGyrcSD+EcJLrnW5wtW++e8RQsSNX8V8BLUjEBrTdNBnMmM1iqhHTV3Fj6AJQsAj SWutCJBguMSfvWzyh1hA2Oz6cQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFK0wqHdU IMHsmPZlko+dlp4f9RT3MB8GA1UdIwQYMBaAFD4Moz12p1umTw3WsGpEK+aVhkQa MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3QzQyMi9BMkM3Mzg2ODFE ODUxMUUyODcwMzZBREMwOEIwMkNEMi9QZ3lqUFhhblc2WlBEZGF3YWtRcjVwV0dS Qm8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1BneWpQWGFuVzZaUERkYXdha1FyNXBXR1JCby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 QzQyMi9BMkM3Mzg2ODFEODUxMUUyODcwMzZBREMwOEIwMkNEMi9QZ3lqUFhhblc2 WlBEZGF3YWtRcjVwV0dSQm8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQARFUkaisRAQjl8UO1KuIRZSIQxSj+kLwtR4Lqasr5AYqPoci2IszU5 kSBzkc9pAK//1uZTg9GQ/cZ0WPj+DqBRTipmje9S5z3BYxDuQmcboAYroFA3dOv/ UR6mEvJXlBcaaoJS71nHaWmZivcYFGiEMjPLSdWaeQVhlx7zRURj5hoG7BfD3gy6 K8K5AYx9E217MknikSTduSornLcMK9WCo5W3jbPgYPzzsOFT6JKdEP6HibFoabaQ Nx1uaqNgV8HQNXpBN3mpijxMdd9vBReKWKbjZSMucQw4WBDCUzcAW0mQrC96lB5J YtcjLTniE0Vg1K8odqw5NIr3a/eJH2tc -----END CERTIFICATE-----Generated at Sun Jul 20 07:05:35 2025 by rpki-client