$ rpki-client -vvf rpki.apnic.net/member_repository/A917C3A7/E41FF0A6532811EC8352D245C4F9AE02/pGM3j5KTiRbgseQTrw8MinPCH08.mft File: pGM3j5KTiRbgseQTrw8MinPCH08.mft (raw, json) Hash identifier: 3tRiay54UwQCCSFaYC4pXSuWmZUvVn5LmuIyfkS29oc= Subject key identifier: 22:75:63:3E:5F:72:AA:77:66:45:C4:C9:DB:0C:4D:36:C6:90:2C:21 Authority key identifier: A4:63:37:8F:92:93:89:16:E0:B1:E4:13:AF:0F:0C:8A:73:C2:1F:4F Certificate issuer: /CN=A917C3A7/serialNumber=A463378F92938916E0B1E413AF0F0C8A73C21F4F Certificate serial: 0455 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pGM3j5KTiRbgseQTrw8MinPCH08.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917C3A7/E41FF0A6532811EC8352D245C4F9AE02/pGM3j5KTiRbgseQTrw8MinPCH08.mft Manifest number: 0455 Signing time: Sat 31 May 2025 00:24:23 +0000 Manifest this update: Sat 31 May 2025 00:24:22 +0000 Manifest next update: Sat 07 Jun 2025 00:24:22 +0000 Files and hashes: 1: pGM3j5KTiRbgseQTrw8MinPCH08.crl (hash: +qKuq7cNoxZfkLF6WqfvA2JzA8DNLZJ3giP5GfinyY4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917C3A7/E41FF0A6532811EC8352D245C4F9AE02/pGM3j5KTiRbgseQTrw8MinPCH08.crl rsync://rpki.apnic.net/member_repository/A917C3A7/E41FF0A6532811EC8352D245C4F9AE02/pGM3j5KTiRbgseQTrw8MinPCH08.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pGM3j5KTiRbgseQTrw8MinPCH08.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 07 Jun 2025 00:24:22 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1109 (0x455) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917C3A7, serialNumber=A463378F92938916E0B1E413AF0F0C8A73C21F4F Validity Not Before: May 31 00:24:22 2025 GMT Not After : Jun 7 00:24:22 2025 GMT Subject: CN=683a4c36-b923 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b0:d1:e5:ba:53:64:d1:86:fa:0d:c0:a3:a5:35: 6c:a0:5d:28:8b:bd:57:83:56:3b:ee:ee:b0:a9:5a: 2f:e0:02:4d:22:da:c2:7d:a4:60:e5:95:4b:fa:91: 99:0a:7c:42:75:72:8b:71:71:d7:54:9d:d2:30:f5: 3f:76:94:6c:c2:4a:bf:e8:ab:1c:46:ca:a7:e2:70: f4:75:90:69:02:0b:40:bd:74:a1:2d:4a:c9:c5:a8: 2f:97:dc:4a:da:75:4b:b0:cd:af:33:0e:d8:63:eb: 71:84:b5:98:6b:72:b0:24:05:29:0e:84:01:0c:50: 4b:e6:34:6d:d6:be:df:2c:7e:b3:4e:72:3c:d8:f3: 2b:2f:38:d7:f7:6f:ed:96:69:34:ed:0d:bb:08:3b: 2d:43:88:b8:57:97:db:15:47:e0:c2:f6:e4:2b:70: 01:bb:b8:48:c5:43:50:81:11:2b:06:7d:fd:aa:0b: 7d:24:70:66:3a:99:ef:08:8a:0e:44:e3:0f:e9:5d: b8:32:02:62:40:df:b4:2b:fb:a7:ba:28:0a:00:87: 5e:df:be:ca:65:5d:d5:e2:43:d6:8c:46:f7:a5:b2: 3d:05:5f:0f:a6:e7:24:d9:ee:de:c4:3a:be:54:a1: 8d:9c:0c:e0:64:a9:80:2a:c3:18:26:d8:42:98:c2: fd:db Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 22:75:63:3E:5F:72:AA:77:66:45:C4:C9:DB:0C:4D:36:C6:90:2C:21 X509v3 Authority Key Identifier: keyid:A4:63:37:8F:92:93:89:16:E0:B1:E4:13:AF:0F:0C:8A:73:C2:1F:4F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917C3A7/E41FF0A6532811EC8352D245C4F9AE02/pGM3j5KTiRbgseQTrw8MinPCH08.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pGM3j5KTiRbgseQTrw8MinPCH08.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917C3A7/E41FF0A6532811EC8352D245C4F9AE02/pGM3j5KTiRbgseQTrw8MinPCH08.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 60:18:4b:75:1c:6f:39:cf:6b:c9:5c:91:1c:e3:b6:66:a3:06: 4f:a5:21:f9:a6:cb:dc:30:0f:e8:bb:36:2a:1b:f8:3a:fb:47: 74:f4:db:a0:73:98:ab:d8:18:cc:e5:92:e1:ea:e9:ca:9f:1b: 31:9d:18:42:e9:6d:3a:0e:76:fe:25:d9:fc:2d:99:5d:ac:96: 2d:3a:8f:07:9f:06:d1:80:18:03:05:3f:a6:be:36:3b:55:38: 3e:84:9d:c1:f0:f8:cb:d3:b7:96:a4:64:3d:6b:64:ce:89:75: 50:fc:90:c1:17:5e:99:7a:be:40:6d:fc:a1:20:3f:16:4d:e4: 7a:a5:5f:31:6e:04:75:33:6d:54:0b:5a:43:23:e9:d7:67:d2: 7e:47:5a:4e:df:39:92:c9:c3:d6:e1:25:f5:ba:41:d9:bc:94: d5:a0:6a:87:6c:8f:cb:37:db:99:70:59:8e:c6:53:16:07:5b: 6e:e0:09:19:a7:ff:b7:c7:c2:51:73:36:39:44:3a:7e:b8:24: 07:21:0a:67:45:37:5e:06:ed:b6:e9:ac:73:24:3a:51:a8:d6: 6e:a2:86:f3:1e:15:09:0c:b3:d9:da:f1:e3:10:26:a1:c7:31: 73:ac:07:05:f9:81:e4:8c:e0:b7:94:f6:ff:67:a8:fb:3d:f9: 71:3a:08:2f -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBFUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0MzQTcxMTAvBgNVBAUTKEE0NjMzNzhGOTI5Mzg5MTZFMEIxRTQxM0FGMEYwQzhB NzNDMjFGNEYwHhcNMjUwNTMxMDAyNDIyWhcNMjUwNjA3MDAyNDIyWjAYMRYwFAYD VQQDEw02ODNhNGMzNi1iOTIzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsNHlulNk0Yb6DcCjpTVsoF0oi71Xg1Y77u6wqVov4AJNItrCfaRg5ZVL+pGZ CnxCdXKLcXHXVJ3SMPU/dpRswkq/6KscRsqn4nD0dZBpAgtAvXShLUrJxagvl9xK 2nVLsM2vMw7YY+txhLWYa3KwJAUpDoQBDFBL5jRt1r7fLH6zTnI82PMrLzjX92/t lmk07Q27CDstQ4i4V5fbFUfgwvbkK3ABu7hIxUNQgRErBn39qgt9JHBmOpnvCIoO ROMP6V24MgJiQN+0K/unuigKAIde377KZV3V4kPWjEb3pbI9BV8Ppuck2e7exDq+ VKGNnAzgZKmAKsMYJthCmML92wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFCJ1Yz5f cqp3ZkXEydsMTTbGkCwhMB8GA1UdIwQYMBaAFKRjN4+Sk4kW4LHkE68PDIpzwh9P MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3QzNBNy9FNDFGRjBBNjUz MjgxMUVDODM1MkQyNDVDNEY5QUUwMi9wR00zajVLVGlSYmdzZVFUcnc4TWluUENI MDguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3BHTTNqNUtUaVJiZ3NlUVRydzhNaW5QQ0gwOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 QzNBNy9FNDFGRjBBNjUzMjgxMUVDODM1MkQyNDVDNEY5QUUwMi9wR00zajVLVGlS YmdzZVFUcnc4TWluUENIMDgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBgGEt1HG85z2vJXJEc47ZmowZPpSH5psvcMA/ouzYqG/g6+0d09Nug c5ir2BjM5ZLh6unKnxsxnRhC6W06Dnb+Jdn8LZldrJYtOo8HnwbRgBgDBT+mvjY7 VTg+hJ3B8PjL07eWpGQ9a2TOiXVQ/JDBF16Zer5AbfyhID8WTeR6pV8xbgR1M21U C1pDI+nXZ9J+R1pO3zmSycPW4SX1ukHZvJTVoGqHbI/LN9uZcFmOxlMWB1tu4AkZ p/+3x8JRczY5RDp+uCQHIQpnRTdeBu226axzJDpRqNZuoobzHhUJDLPZ2vHjECah xzFzrAcF+YHkjOC3lPb/Z6j7PflxOggv -----END CERTIFICATE-----Generated at Sat May 31 17:30:15 2025 by rpki-client