$ rpki-client -vvf rpki.apnic.net/member_repository/A917C422/A2C738681D8511E287036ADC08B02CD2/PgyjPXanW6ZPDdawakQr5pWGRBo.mft File: PgyjPXanW6ZPDdawakQr5pWGRBo.mft (raw, json) Hash identifier: ZGWD5Um4J4ahlR0zp5I8E/hM7g8ZPepJLYDn154x6/U= Subject key identifier: 0E:C8:71:78:98:C6:24:B5:DA:D4:23:C1:3D:69:E4:2F:ED:D4:A7:CD Authority key identifier: 3E:0C:A3:3D:76:A7:5B:A6:4F:0D:D6:B0:6A:44:2B:E6:95:86:44:1A Certificate issuer: /CN=A917C422/serialNumber=3E0CA33D76A75BA64F0DD6B06A442BE69586441A Certificate serial: 349F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PgyjPXanW6ZPDdawakQr5pWGRBo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917C422/A2C738681D8511E287036ADC08B02CD2/PgyjPXanW6ZPDdawakQr5pWGRBo.mft Manifest number: 3490 Signing time: Sat 31 May 2025 14:25:43 +0000 Manifest this update: Sat 31 May 2025 14:25:43 +0000 Manifest next update: Sat 07 Jun 2025 14:25:43 +0000 Files and hashes: 1: PgyjPXanW6ZPDdawakQr5pWGRBo.crl (hash: vnxFV004WuZ8OZTijVVJHZq/g86rJ5DVc4g8KHt+AIE=) 2: D69F6688CD8511EBB5252063C4F9AE02.roa (hash: 1ODdrQTl4q6/w7rtOls+USY+PM8yOp3Wfi9ftx6zA0o=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917C422/A2C738681D8511E287036ADC08B02CD2/PgyjPXanW6ZPDdawakQr5pWGRBo.crl rsync://rpki.apnic.net/member_repository/A917C422/A2C738681D8511E287036ADC08B02CD2/PgyjPXanW6ZPDdawakQr5pWGRBo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PgyjPXanW6ZPDdawakQr5pWGRBo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 07 Jun 2025 14:25:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13471 (0x349f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917C422, serialNumber=3E0CA33D76A75BA64F0DD6B06A442BE69586441A Validity Not Before: May 31 14:25:43 2025 GMT Not After : Jun 7 14:25:43 2025 GMT Subject: CN=683b1167-b466 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:32:79:ae:10:6b:d0:a7:2f:1e:8d:51:31:b9: b9:7f:6a:ed:ae:22:11:74:3a:f6:2c:4d:67:4c:e2: 38:7a:41:94:ad:62:98:3d:9e:41:0a:6e:cc:d8:70: 3b:bb:93:d8:c2:19:b1:dc:09:6a:84:7b:86:a4:3b: cb:32:98:44:7e:1b:4b:8f:38:65:4c:75:e4:8a:d6: 3f:b7:a0:7c:a4:32:ce:c7:17:c7:57:ee:84:88:68: dc:4f:81:f9:2c:13:53:a6:87:ae:54:3c:cb:2e:6d: 12:6c:35:bd:31:5c:5d:a5:be:35:83:7f:ac:26:85: 23:2e:7f:7d:b7:01:9b:3e:eb:35:d0:23:7d:39:c0: f6:75:05:62:cd:a6:b8:6b:e2:7b:80:02:92:4d:2b: 46:f6:a6:b5:74:bd:82:eb:9a:5a:f5:8b:15:8c:95: ec:bc:e0:a4:6c:a8:93:70:af:67:a4:2c:87:11:8d: d9:1c:e5:98:4e:61:a2:3a:d1:de:c0:07:a2:93:15: a1:45:fb:89:60:0d:16:17:8e:8a:c9:a4:4b:67:b6: cf:e4:fc:56:ff:07:02:14:96:01:83:f5:9b:d4:cb: 05:81:df:2e:83:f0:3a:65:e9:d3:c7:b7:d0:0c:8a: bd:ad:56:49:6f:91:ed:62:7e:b6:60:10:5d:ec:e7: 61:a5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0E:C8:71:78:98:C6:24:B5:DA:D4:23:C1:3D:69:E4:2F:ED:D4:A7:CD X509v3 Authority Key Identifier: keyid:3E:0C:A3:3D:76:A7:5B:A6:4F:0D:D6:B0:6A:44:2B:E6:95:86:44:1A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917C422/A2C738681D8511E287036ADC08B02CD2/PgyjPXanW6ZPDdawakQr5pWGRBo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PgyjPXanW6ZPDdawakQr5pWGRBo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917C422/A2C738681D8511E287036ADC08B02CD2/PgyjPXanW6ZPDdawakQr5pWGRBo.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 86:61:b8:b7:d2:ae:2e:94:3c:fc:2c:d8:07:1f:44:9c:c6:24: 74:31:96:db:09:f8:c9:66:11:0b:8d:16:08:90:41:48:ca:0b: 4f:37:91:53:cf:ff:5a:27:6d:2d:17:80:41:02:59:5e:e7:f0: 96:41:5f:3d:4e:13:8e:ac:1a:cc:2c:59:02:64:b7:2a:fc:d5: 2a:a4:49:53:1f:b3:ae:40:82:3f:cd:42:b7:02:8f:c2:08:5b: ef:ce:fe:d7:d0:63:4f:8a:f9:f9:0a:a0:2c:56:70:f5:13:9b: 75:41:95:8f:0a:31:d9:82:2d:15:76:e8:bd:bf:15:a8:44:51: f5:c7:b4:b4:a8:72:ae:ab:a3:15:78:70:75:10:1b:13:c8:4f: 5a:3d:4c:06:bb:04:ad:b6:76:ad:0a:d0:9c:20:bf:19:a0:12: 64:53:31:59:39:64:28:4d:b5:56:36:db:9a:de:1e:20:aa:b9: 10:a0:74:15:23:63:83:47:49:b9:ab:56:47:f3:65:a9:cd:34: f1:f4:0f:44:49:12:92:b4:49:92:21:a3:77:0e:ab:33:6e:1a: 74:4e:54:b7:e5:4e:e8:9c:b0:d4:76:b5:54:39:f9:01:0b:1b: 54:8a:ac:4a:97:e9:f3:7d:b5:e2:21:f7:25:ca:93:a0:65:a7: bd:75:ef:cc -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICNJ8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0M0MjIxMTAvBgNVBAUTKDNFMENBMzNENzZBNzVCQTY0RjBERDZCMDZBNDQyQkU2 OTU4NjQ0MUEwHhcNMjUwNTMxMTQyNTQzWhcNMjUwNjA3MTQyNTQzWjAYMRYwFAYD VQQDEw02ODNiMTE2Ny1iNDY2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvTJ5rhBr0KcvHo1RMbm5f2rtriIRdDr2LE1nTOI4ekGUrWKYPZ5BCm7M2HA7 u5PYwhmx3AlqhHuGpDvLMphEfhtLjzhlTHXkitY/t6B8pDLOxxfHV+6EiGjcT4H5 LBNTpoeuVDzLLm0SbDW9MVxdpb41g3+sJoUjLn99twGbPus10CN9OcD2dQVizaa4 a+J7gAKSTStG9qa1dL2C65pa9YsVjJXsvOCkbKiTcK9npCyHEY3ZHOWYTmGiOtHe wAeikxWhRfuJYA0WF46KyaRLZ7bP5PxW/wcCFJYBg/Wb1MsFgd8ug/A6ZenTx7fQ DIq9rVZJb5HtYn62YBBd7OdhpQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFA7IcXiY xiS12tQjwT1p5C/t1KfNMB8GA1UdIwQYMBaAFD4Moz12p1umTw3WsGpEK+aVhkQa MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3QzQyMi9BMkM3Mzg2ODFE ODUxMUUyODcwMzZBREMwOEIwMkNEMi9QZ3lqUFhhblc2WlBEZGF3YWtRcjVwV0dS Qm8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1BneWpQWGFuVzZaUERkYXdha1FyNXBXR1JCby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 QzQyMi9BMkM3Mzg2ODFEODUxMUUyODcwMzZBREMwOEIwMkNEMi9QZ3lqUFhhblc2 WlBEZGF3YWtRcjVwV0dSQm8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCGYbi30q4ulDz8LNgHH0ScxiR0MZbbCfjJZhELjRYIkEFIygtPN5FT z/9aJ20tF4BBAlle5/CWQV89ThOOrBrMLFkCZLcq/NUqpElTH7OuQII/zUK3Ao/C CFvvzv7X0GNPivn5CqAsVnD1E5t1QZWPCjHZgi0Vdui9vxWoRFH1x7S0qHKuq6MV eHB1EBsTyE9aPUwGuwSttnatCtCcIL8ZoBJkUzFZOWQoTbVWNtua3h4gqrkQoHQV I2ODR0m5q1ZH82WpzTTx9A9ESRKStEmSIaN3Dqszbhp0TlS35U7onLDUdrVUOfkB CxtUiqxKl+nzfbXiIfclypOgZae9de/M -----END CERTIFICATE-----Generated at Sat May 31 17:09:00 2025 by rpki-client