$ rpki-client -vvf rpki.apnic.net/member_repository/A91E3B25/7E892CC2F61511E7B830096DC4F9AE02/pgyYIfUwsNU6Z6mLdnGWxAotWmY.mft File: pgyYIfUwsNU6Z6mLdnGWxAotWmY.mft (raw, json) Hash identifier: z1CCHfwEtwqb4vBMIIU/U3/Ta4pi0WvIidE2QL9U1HU= Subject key identifier: 95:EB:EB:34:D2:DC:3B:42:2A:6C:9E:8F:83:27:EB:1A:63:99:DB:FC Authority key identifier: A6:0C:98:21:F5:30:B0:D5:3A:67:A9:8B:76:71:96:C4:0A:2D:5A:66 Certificate issuer: /CN=A91E3B25/serialNumber=A60C9821F530B0D53A67A98B767196C40A2D5A66 Certificate serial: 16DE Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pgyYIfUwsNU6Z6mLdnGWxAotWmY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E3B25/7E892CC2F61511E7B830096DC4F9AE02/pgyYIfUwsNU6Z6mLdnGWxAotWmY.mft Manifest number: 1FF4 Signing time: Sun 20 Jul 2025 16:40:50 +0000 Manifest this update: Sun 20 Jul 2025 16:40:49 +0000 Manifest next update: Sun 27 Jul 2025 16:40:49 +0000 Files and hashes: 1: pgyYIfUwsNU6Z6mLdnGWxAotWmY.crl (hash: enuOC55VNZmepN0xsdYgqRYs3OrWQ585Tv3hTOS0w9k=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E3B25/7E892CC2F61511E7B830096DC4F9AE02/pgyYIfUwsNU6Z6mLdnGWxAotWmY.crl rsync://rpki.apnic.net/member_repository/A91E3B25/7E892CC2F61511E7B830096DC4F9AE02/pgyYIfUwsNU6Z6mLdnGWxAotWmY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pgyYIfUwsNU6Z6mLdnGWxAotWmY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 27 Jul 2025 16:40:49 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5854 (0x16de) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E3B25, serialNumber=A60C9821F530B0D53A67A98B767196C40A2D5A66 Validity Not Before: Jul 20 16:40:49 2025 GMT Not After : Jul 27 16:40:49 2025 GMT Subject: CN=687d1c11-076d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d0:dc:3b:4d:f3:da:2e:d8:29:39:5f:4a:3f:42: 34:cf:73:5d:e4:47:28:31:f5:32:64:6c:01:18:c2: 98:d7:e4:65:13:26:71:a1:ec:1c:1b:99:6e:f2:bf: 5f:1e:04:ac:ab:dd:14:31:72:8f:74:d8:27:f4:94: e5:79:00:39:bc:68:27:1b:6d:c5:07:22:5a:a0:db: 50:49:5a:50:f6:6d:23:ad:5f:23:9e:dc:b8:27:e3: 31:87:d1:fb:5c:84:c7:be:bd:ce:98:64:69:99:e7: ba:d8:36:64:dc:eb:7b:b9:2a:86:2d:ca:5f:aa:96: 8d:91:d6:c7:ae:b6:ca:4d:42:10:f7:3a:cc:c4:ae: 94:7d:af:43:92:f6:b9:8f:be:9d:ad:84:40:2e:7f: 46:bb:e5:6a:91:a9:b2:7a:31:6e:f3:26:4b:e6:aa: eb:4e:5f:48:7c:94:11:9a:ed:2b:68:ff:1c:d0:b8: 8b:c1:c6:eb:4b:ff:73:7d:bc:18:61:e1:fa:ed:e2: 69:e6:91:66:93:66:3e:11:4a:a0:7d:ba:d9:3b:25: a8:df:24:c4:ba:07:4a:a5:4a:24:4d:68:e8:56:21: 66:69:ae:2c:3f:d7:89:45:64:ac:f6:7b:b4:c8:6d: 54:b7:bc:99:90:94:3f:e3:cc:ec:f3:84:98:8e:63: 38:e7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 95:EB:EB:34:D2:DC:3B:42:2A:6C:9E:8F:83:27:EB:1A:63:99:DB:FC X509v3 Authority Key Identifier: keyid:A6:0C:98:21:F5:30:B0:D5:3A:67:A9:8B:76:71:96:C4:0A:2D:5A:66 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E3B25/7E892CC2F61511E7B830096DC4F9AE02/pgyYIfUwsNU6Z6mLdnGWxAotWmY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pgyYIfUwsNU6Z6mLdnGWxAotWmY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E3B25/7E892CC2F61511E7B830096DC4F9AE02/pgyYIfUwsNU6Z6mLdnGWxAotWmY.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 60:e1:65:31:59:92:c3:09:4a:5c:3c:37:6a:a4:04:91:f8:6a: 53:f1:9c:9e:70:04:c0:2f:d8:7a:c7:c8:f2:79:e9:80:dc:d9: a1:7a:87:c8:6d:51:b3:2f:22:1b:a7:94:6c:ae:ee:ac:04:14: 28:94:08:a7:7e:a3:13:56:98:92:3a:c1:5f:6d:31:3b:2e:7d: a1:22:83:b8:c5:14:a3:6d:77:dc:b8:9f:13:ea:0d:af:46:d3: 75:55:e9:1e:69:26:e3:33:74:27:50:7e:ca:6a:57:70:c4:c6: 66:16:ee:0b:71:a9:0a:8d:f8:b3:c2:8b:5b:bb:65:c3:44:26: f0:81:71:4a:60:41:f5:a9:c7:da:5b:e0:09:fb:a4:cd:b0:7b: d5:3b:e1:c9:f2:d4:a0:54:52:2d:bd:a6:9b:a9:c2:37:99:b4: b7:af:f1:ee:57:18:79:7f:6d:71:a8:12:7e:20:45:5e:a5:6c: ec:13:41:5f:f1:ee:52:fa:03:88:9c:31:b1:09:bc:af:13:9a: 15:89:27:bc:65:e1:02:e7:86:ee:78:96:91:cd:78:f3:87:00: 91:2a:8a:33:4c:4b:7b:f6:d4:7c:45:6a:f5:7f:de:55:d4:2a: 2f:ce:7e:de:e7:c1:fe:0a:a7:38:e8:eb:cf:39:8e:d2:df:5f: 08:b0:14:49 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICFt4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTNCMjUxMTAvBgNVBAUTKEE2MEM5ODIxRjUzMEIwRDUzQTY3QTk4Qjc2NzE5NkM0 MEEyRDVBNjYwHhcNMjUwNzIwMTY0MDQ5WhcNMjUwNzI3MTY0MDQ5WjAYMRYwFAYD VQQDEw02ODdkMWMxMS0wNzZkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0Nw7TfPaLtgpOV9KP0I0z3Nd5EcoMfUyZGwBGMKY1+RlEyZxoewcG5lu8r9f HgSsq90UMXKPdNgn9JTleQA5vGgnG23FByJaoNtQSVpQ9m0jrV8jnty4J+Mxh9H7 XITHvr3OmGRpmee62DZk3Ot7uSqGLcpfqpaNkdbHrrbKTUIQ9zrMxK6Ufa9Dkva5 j76drYRALn9Gu+VqkamyejFu8yZL5qrrTl9IfJQRmu0raP8c0LiLwcbrS/9zfbwY YeH67eJp5pFmk2Y+EUqgfbrZOyWo3yTEugdKpUokTWjoViFmaa4sP9eJRWSs9nu0 yG1Ut7yZkJQ/48zs84SYjmM45wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJXr6zTS 3DtCKmyej4Mn6xpjmdv8MB8GA1UdIwQYMBaAFKYMmCH1MLDVOmepi3ZxlsQKLVpm MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFM0IyNS83RTg5MkNDMkY2 MTUxMUU3QjgzMDA5NkRDNEY5QUUwMi9wZ3lZSWZVd3NOVTZaNm1MZG5HV3hBb3RX bVkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3BneVlJZlV3c05VNlo2bUxkbkdXeEFvdFdtWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF M0IyNS83RTg5MkNDMkY2MTUxMUU3QjgzMDA5NkRDNEY5QUUwMi9wZ3lZSWZVd3NO VTZaNm1MZG5HV3hBb3RXbVkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBg4WUxWZLDCUpcPDdqpASR+GpT8ZyecATAL9h6x8jyeemA3NmheofI bVGzLyIbp5Rsru6sBBQolAinfqMTVpiSOsFfbTE7Ln2hIoO4xRSjbXfcuJ8T6g2v RtN1VekeaSbjM3QnUH7KaldwxMZmFu4LcakKjfizwotbu2XDRCbwgXFKYEH1qcfa W+AJ+6TNsHvVO+HJ8tSgVFItvaabqcI3mbS3r/HuVxh5f21xqBJ+IEVepWzsE0Ff 8e5S+gOInDGxCbyvE5oViSe8ZeEC54bueJaRzXjzhwCRKoozTEt79tR8RWr1f95V 1Covzn7e58H+Cqc46OvPOY7S318IsBRJ -----END CERTIFICATE-----Generated at Mon Jul 21 07:28:05 2025 by rpki-client