$ rpki-client -vvf rpki.apnic.net/member_repository/A9131EDD/210B43047BBF11EBA02A4339C4F9AE02/pGlL5HxPO8lIBdSjZqAHxpBwUS4.mft File: pGlL5HxPO8lIBdSjZqAHxpBwUS4.mft (raw, json) Hash identifier: FEEE49iUxJCTytNURaS9Q4F27MXUOzQmf8DFIwV0c4Y= Subject key identifier: 7B:F2:49:A6:74:42:9E:B0:69:96:7B:AB:2F:F0:0F:BA:FE:65:7B:EC Authority key identifier: A4:69:4B:E4:7C:4F:3B:C9:48:05:D4:A3:66:A0:07:C6:90:70:51:2E Certificate issuer: /CN=A9131EDD/serialNumber=A4694BE47C4F3BC94805D4A366A007C69070512E Certificate serial: 0681 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pGlL5HxPO8lIBdSjZqAHxpBwUS4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9131EDD/210B43047BBF11EBA02A4339C4F9AE02/pGlL5HxPO8lIBdSjZqAHxpBwUS4.mft Manifest number: 0677 Signing time: Fri 30 May 2025 22:33:00 +0000 Manifest this update: Fri 30 May 2025 22:32:59 +0000 Manifest next update: Fri 06 Jun 2025 22:32:59 +0000 Files and hashes: 1: pGlL5HxPO8lIBdSjZqAHxpBwUS4.crl (hash: p/98JZSZFeP2xfHeb+0IdLuq3bklhOilVnePWxvrgcQ=) 2: E84DCBC422D211EDAF1F924EC4F9AE02.roa (hash: DSJZavi/LmOaDs/V5ru83cEJvd41YvTKAbFr9jXt5Xk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9131EDD/210B43047BBF11EBA02A4339C4F9AE02/pGlL5HxPO8lIBdSjZqAHxpBwUS4.crl rsync://rpki.apnic.net/member_repository/A9131EDD/210B43047BBF11EBA02A4339C4F9AE02/pGlL5HxPO8lIBdSjZqAHxpBwUS4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pGlL5HxPO8lIBdSjZqAHxpBwUS4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 06 Jun 2025 22:32:59 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1665 (0x681) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9131EDD, serialNumber=A4694BE47C4F3BC94805D4A366A007C69070512E Validity Not Before: May 30 22:32:59 2025 GMT Not After : Jun 6 22:32:59 2025 GMT Subject: CN=683a321c-ba58 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f2:da:e4:77:d2:8a:10:5e:b1:71:d9:38:94:53: 45:b5:6f:8f:dc:15:ca:7c:20:b1:05:7e:d3:b6:04: 6b:29:89:49:e2:e9:18:78:d6:49:2b:08:6f:e5:72: 66:54:1f:4c:f3:96:e4:50:c0:2a:10:0e:6a:3b:81: 30:50:7c:6c:77:c9:71:40:58:ac:ce:79:2a:e6:6e: cf:92:1a:b2:fc:b4:fd:fc:01:85:f1:6d:81:e9:46: 3c:a2:ef:3a:dc:79:f8:0d:7e:b5:fe:3e:40:cb:61: fe:98:60:1a:d3:17:1f:2f:70:b0:88:3b:1b:b9:fb: eb:f2:df:d6:dc:46:be:6c:ad:dd:bb:22:12:1b:ac: 64:8c:55:cb:bf:39:3e:e8:d9:cc:f6:97:3d:9d:99: 42:26:e0:29:80:23:ce:f3:0c:16:46:30:d2:d1:5b: 65:85:97:32:74:c9:e7:38:d2:bc:4f:a1:8b:76:f6: 6b:44:6c:85:1e:d8:48:2a:95:16:56:4f:12:9c:39: 07:95:ce:47:40:70:f9:65:7f:d4:86:17:81:8b:4b: 26:f0:83:9c:4e:1b:16:1d:92:60:88:e5:bc:b0:45: 18:9c:6a:04:a3:f5:58:50:75:2d:c5:bf:3d:06:27: de:0c:a3:22:6d:60:29:88:db:15:19:86:88:81:f6: e5:f7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7B:F2:49:A6:74:42:9E:B0:69:96:7B:AB:2F:F0:0F:BA:FE:65:7B:EC X509v3 Authority Key Identifier: keyid:A4:69:4B:E4:7C:4F:3B:C9:48:05:D4:A3:66:A0:07:C6:90:70:51:2E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9131EDD/210B43047BBF11EBA02A4339C4F9AE02/pGlL5HxPO8lIBdSjZqAHxpBwUS4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pGlL5HxPO8lIBdSjZqAHxpBwUS4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9131EDD/210B43047BBF11EBA02A4339C4F9AE02/pGlL5HxPO8lIBdSjZqAHxpBwUS4.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 8d:c3:0e:03:df:21:90:30:21:b7:95:9c:94:35:f9:1f:c7:37: 52:84:78:71:f8:c2:8d:ca:ff:b2:f0:a5:fb:32:13:2b:ea:45: 59:95:a8:52:85:64:8b:61:9a:1d:57:49:8b:7d:85:91:90:69: 67:0f:3e:1d:dd:64:de:c8:4e:1b:4e:57:ed:41:0f:cf:0b:06: 55:d4:ab:ca:ee:5d:f0:83:54:e1:7e:9c:7f:95:13:23:a8:60: 15:f6:a8:41:2d:3a:b5:3f:c8:ba:9b:7f:be:3b:3d:b7:ff:a2: 22:04:be:f5:c4:2a:83:16:2e:58:84:41:2a:de:ef:f7:46:54: c6:08:4b:56:11:22:11:d7:07:29:a7:88:2c:50:c2:2e:a9:ff: 20:45:f2:71:78:a4:56:d5:70:44:af:28:e5:23:24:3e:7e:d6: d2:3d:66:77:61:22:6d:fe:9b:3c:a6:25:a6:3c:89:dd:61:49: f0:ac:94:4a:8a:8d:c9:ab:b1:b7:75:c4:6e:fd:ab:b1:9e:7f: 51:f4:f9:1b:8d:17:ca:82:ff:da:84:97:37:08:89:b3:84:b3: 74:06:18:52:b9:b3:1b:53:34:57:5b:66:71:a2:da:fb:53:a2: ec:0d:16:5f:aa:c7:e4:10:0c:fc:a3:86:3c:3c:5c:7c:f0:58: 06:27:39:a4 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBoEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MzFFREQxMTAvBgNVBAUTKEE0Njk0QkU0N0M0RjNCQzk0ODA1RDRBMzY2QTAwN0M2 OTA3MDUxMkUwHhcNMjUwNTMwMjIzMjU5WhcNMjUwNjA2MjIzMjU5WjAYMRYwFAYD VQQDEw02ODNhMzIxYy1iYTU4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA8trkd9KKEF6xcdk4lFNFtW+P3BXKfCCxBX7TtgRrKYlJ4ukYeNZJKwhv5XJm VB9M85bkUMAqEA5qO4EwUHxsd8lxQFisznkq5m7Pkhqy/LT9/AGF8W2B6UY8ou86 3Hn4DX61/j5Ay2H+mGAa0xcfL3CwiDsbufvr8t/W3Ea+bK3duyISG6xkjFXLvzk+ 6NnM9pc9nZlCJuApgCPO8wwWRjDS0VtlhZcydMnnONK8T6GLdvZrRGyFHthIKpUW Vk8SnDkHlc5HQHD5ZX/UhheBi0sm8IOcThsWHZJgiOW8sEUYnGoEo/VYUHUtxb89 BifeDKMibWApiNsVGYaIgfbl9wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFHvySaZ0 Qp6waZZ7qy/wD7r+ZXvsMB8GA1UdIwQYMBaAFKRpS+R8TzvJSAXUo2agB8aQcFEu MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzMUVERC8yMTBCNDMwNDdC QkYxMUVCQTAyQTQzMzlDNEY5QUUwMi9wR2xMNUh4UE84bElCZFNqWnFBSHhwQndV UzQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3BHbEw1SHhQTzhsSUJkU2pacUFIeHBCd1VTNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz MUVERC8yMTBCNDMwNDdCQkYxMUVCQTAyQTQzMzlDNEY5QUUwMi9wR2xMNUh4UE84 bElCZFNqWnFBSHhwQndVUzQubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCNww4D3yGQMCG3lZyUNfkfxzdShHhx+MKNyv+y8KX7MhMr6kVZlahS hWSLYZodV0mLfYWRkGlnDz4d3WTeyE4bTlftQQ/PCwZV1KvK7l3wg1Thfpx/lRMj qGAV9qhBLTq1P8i6m3++Oz23/6IiBL71xCqDFi5YhEEq3u/3RlTGCEtWESIR1wcp p4gsUMIuqf8gRfJxeKRW1XBEryjlIyQ+ftbSPWZ3YSJt/ps8piWmPIndYUnwrJRK io3Jq7G3dcRu/auxnn9R9PkbjRfKgv/ahJc3CImzhLN0BhhSubMbUzRXW2Zxotr7 U6LsDRZfqsfkEAz8o4Y8PFx88FgGJzmk -----END CERTIFICATE-----Generated at Sat May 31 17:47:21 2025 by rpki-client