$ rpki-client -vvf rpki.apnic.net/member_repository/A917E65B/7F4BE9A226F411F084F59772C4F9AE02/PgYolveWFAxkBV5H1FMISCOnCCQ.mft File: PgYolveWFAxkBV5H1FMISCOnCCQ.mft (raw, json) Hash identifier: uHAmpewdtUlejVLN+5HWZHCzG+kT3uX5cJF2TUrk0wc= Subject key identifier: C4:11:01:8C:AB:D3:78:99:5C:FC:39:A1:72:33:1D:44:AE:9D:6C:D5 Authority key identifier: 3E:06:28:96:F7:96:14:0C:64:05:5E:47:D4:53:08:48:23:A7:08:24 Certificate issuer: /CN=A917E65B/serialNumber=3E062896F796140C64055E47D453084823A70824 Certificate serial: 2A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PgYolveWFAxkBV5H1FMISCOnCCQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917E65B/7F4BE9A226F411F084F59772C4F9AE02/PgYolveWFAxkBV5H1FMISCOnCCQ.mft Manifest number: 29 Signing time: Sat 19 Jul 2025 08:01:09 +0000 Manifest this update: Sat 19 Jul 2025 08:01:09 +0000 Manifest next update: Sat 26 Jul 2025 08:01:09 +0000 Files and hashes: 1: PgYolveWFAxkBV5H1FMISCOnCCQ.crl (hash: uleI8oWsIDZm9aJD9XLvVFvXcNWXgNU02ltHe4ENlac=) 2: B7498170318011F0A5A76C39C4F9AE02.roa (hash: 4xMCpId57nfxz7XEfKoBdilLfSUib+cCTUbVdicWXMY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917E65B/7F4BE9A226F411F084F59772C4F9AE02/PgYolveWFAxkBV5H1FMISCOnCCQ.crl rsync://rpki.apnic.net/member_repository/A917E65B/7F4BE9A226F411F084F59772C4F9AE02/PgYolveWFAxkBV5H1FMISCOnCCQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PgYolveWFAxkBV5H1FMISCOnCCQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 26 Jul 2025 08:01:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 42 (0x2a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917E65B, serialNumber=3E062896F796140C64055E47D453084823A70824 Validity Not Before: Jul 19 08:01:09 2025 GMT Not After : Jul 26 08:01:09 2025 GMT Subject: CN=687b50c5-ffb9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e8:f1:53:f9:74:53:5e:2d:47:59:d7:3a:dd:1c: ba:b9:40:92:89:b5:b0:0f:52:d4:eb:09:2b:a0:6e: 1a:9a:fa:f0:b7:5f:b5:b5:76:4e:44:a1:1e:ba:f0: 33:9b:8d:6a:52:f9:fe:5f:90:04:b0:31:db:02:94: 50:75:0b:f7:54:dc:c1:b1:44:90:39:e9:d7:4a:25: 03:ae:9b:30:0b:8b:1e:30:de:1a:3e:07:c0:c9:b0: 4b:df:70:16:8e:ca:9f:84:dc:22:39:60:3d:9f:64: 22:8a:2a:15:b7:8b:90:0a:a4:10:c4:6d:e0:95:da: 42:21:ef:6d:bd:c9:d8:c9:72:2f:14:0c:6b:29:c1: 25:39:d5:a8:11:44:59:1c:f7:3c:8d:95:d5:7f:8e: 81:0a:87:57:fa:1b:9f:50:fb:53:47:4e:09:01:88: 2f:89:07:b0:85:d2:88:16:48:8a:9c:bd:11:28:e0: 72:79:3e:1b:ee:ee:c3:c6:18:f0:47:d7:c6:a0:5f: 56:d4:0b:6e:61:94:ec:d0:dd:dc:ae:ef:ea:eb:98: 31:f1:c2:a1:03:0c:23:a4:92:44:ad:6b:26:79:48: 80:3a:c1:7a:73:23:48:af:43:2a:c9:3f:06:84:c1: a5:d1:21:d9:56:64:fd:b1:63:5e:7b:cd:1e:c2:58: ef:a1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C4:11:01:8C:AB:D3:78:99:5C:FC:39:A1:72:33:1D:44:AE:9D:6C:D5 X509v3 Authority Key Identifier: keyid:3E:06:28:96:F7:96:14:0C:64:05:5E:47:D4:53:08:48:23:A7:08:24 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917E65B/7F4BE9A226F411F084F59772C4F9AE02/PgYolveWFAxkBV5H1FMISCOnCCQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PgYolveWFAxkBV5H1FMISCOnCCQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917E65B/7F4BE9A226F411F084F59772C4F9AE02/PgYolveWFAxkBV5H1FMISCOnCCQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 48:12:03:fb:06:55:74:6d:e0:82:1e:de:46:ad:d5:8b:0b:3a: 71:e3:ac:b6:f3:88:9d:b9:81:be:d9:11:7d:48:9f:8a:7f:2f: 2b:81:35:ee:8d:bd:0d:25:f7:e7:8d:2a:d0:ee:80:ce:e0:70: b1:1d:bd:91:aa:22:b4:75:e5:b5:d9:6d:bf:60:69:a8:70:dc: ce:cf:2c:34:76:b9:d6:76:0a:11:fa:80:23:9d:02:26:80:e3: 66:cb:4e:4a:11:e6:63:69:14:29:05:1c:b1:51:95:5f:6f:55: ac:a3:f5:f0:9e:42:d4:99:4d:7f:97:e9:54:ef:29:d4:5b:f7: a1:47:01:c4:58:f9:44:a5:27:a0:84:46:4e:9e:e1:a9:62:41: f4:4b:c8:1f:98:5a:17:69:ef:da:1a:3f:17:df:84:5d:23:30: 64:aa:1b:7b:83:09:49:a9:66:dd:77:eb:6b:71:2a:01:52:04: c5:d8:a7:23:25:f8:0b:6b:f8:f2:c8:c5:ee:0f:de:83:b0:c0: d4:ac:ee:fb:39:75:e0:9e:1c:6e:7f:63:25:de:bf:35:2e:84: bb:43:78:14:f5:31:6b:29:f4:1e:7b:67:10:46:b1:20:b5:b4: e2:98:6b:aa:69:b4:11:29:c7:f3:87:9d:85:a5:16:c0:df:14: 8f:bb:b4:a3 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBKjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE3 RTY1QjExMC8GA1UEBRMoM0UwNjI4OTZGNzk2MTQwQzY0MDU1RTQ3RDQ1MzA4NDgy M0E3MDgyNDAeFw0yNTA3MTkwODAxMDlaFw0yNTA3MjYwODAxMDlaMBgxFjAUBgNV BAMTDTY4N2I1MGM1LWZmYjkwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDo8VP5dFNeLUdZ1zrdHLq5QJKJtbAPUtTrCSugbhqa+vC3X7W1dk5EoR668DOb jWpS+f5fkASwMdsClFB1C/dU3MGxRJA56ddKJQOumzALix4w3ho+B8DJsEvfcBaO yp+E3CI5YD2fZCKKKhW3i5AKpBDEbeCV2kIh7229ydjJci8UDGspwSU51agRRFkc 9zyNldV/joEKh1f6G59Q+1NHTgkBiC+JB7CF0ogWSIqcvREo4HJ5Phvu7sPGGPBH 18agX1bUC25hlOzQ3dyu7+rrmDHxwqEDDCOkkkStayZ5SIA6wXpzI0ivQyrJPwaE waXRIdlWZP2xY157zR7CWO+hAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUxBEBjKvT eJlc/DmhcjMdRK6dbNUwHwYDVR0jBBgwFoAUPgYolveWFAxkBV5H1FMISCOnCCQw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTdFNjVCLzdGNEJFOUEyMjZG NDExRjA4NEY1OTc3MkM0RjlBRTAyL1BnWW9sdmVXRkF4a0JWNUgxRk1JU0NPbkND US5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvUGdZb2x2ZVdGQXhrQlY1SDFGTUlTQ09uQ0NRLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTdF NjVCLzdGNEJFOUEyMjZGNDExRjA4NEY1OTc3MkM0RjlBRTAyL1BnWW9sdmVXRkF4 a0JWNUgxRk1JU0NPbkNDUS5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAEgSA/sGVXRt4IIe3kat1YsLOnHjrLbziJ25gb7ZEX1In4p/LyuBNe6N vQ0l9+eNKtDugM7gcLEdvZGqIrR15bXZbb9gaahw3M7PLDR2udZ2ChH6gCOdAiaA 42bLTkoR5mNpFCkFHLFRlV9vVayj9fCeQtSZTX+X6VTvKdRb96FHAcRY+USlJ6CE Rk6e4aliQfRLyB+YWhdp79oaPxffhF0jMGSqG3uDCUmpZt1362txKgFSBMXYpyMl +Atr+PLIxe4P3oOwwNSs7vs5deCeHG5/YyXevzUuhLtDeBT1MWsp9B57ZxBGsSC1 tOKYa6pptBEpx/OHnYWlFsDfFI+7tKM= -----END CERTIFICATE-----Generated at Sun Jul 20 11:16:46 2025 by rpki-client