$ rpki-client -vvf rpki.apnic.net/member_repository/A917C422/A2C738681D8511E287036ADC08B02CD2/PgyjPXanW6ZPDdawakQr5pWGRBo.mft File: PgyjPXanW6ZPDdawakQr5pWGRBo.mft (raw, json) Hash identifier: SCh27RcbF/lXZTBxfwzvzczmXNhnI6rmGtZYkUOnidY= Subject key identifier: 8F:88:A5:50:06:A1:A2:89:84:1D:0D:A0:9D:5E:7D:3B:54:34:94:D4 Authority key identifier: 3E:0C:A3:3D:76:A7:5B:A6:4F:0D:D6:B0:6A:44:2B:E6:95:86:44:1A Certificate issuer: /CN=A917C422/serialNumber=3E0CA33D76A75BA64F0DD6B06A442BE69586441A Certificate serial: 34DA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PgyjPXanW6ZPDdawakQr5pWGRBo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917C422/A2C738681D8511E287036ADC08B02CD2/PgyjPXanW6ZPDdawakQr5pWGRBo.mft Manifest number: 34CA Signing time: Thu 18 Sep 2025 14:26:12 +0000 Manifest this update: Thu 18 Sep 2025 14:26:11 +0000 Manifest next update: Thu 25 Sep 2025 14:26:11 +0000 Files and hashes: 1: PgyjPXanW6ZPDdawakQr5pWGRBo.crl (hash: DhOtmVUT05pvLihX2JZAMPMG9+tuciWTjBMWhhgbkNA=) 2: D69F6688CD8511EBB5252063C4F9AE02.roa (hash: o45AFhO6SSMQiWqggKeTKMzwcSJwvQDsZ1NlO/kkLkM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917C422/A2C738681D8511E287036ADC08B02CD2/PgyjPXanW6ZPDdawakQr5pWGRBo.crl rsync://rpki.apnic.net/member_repository/A917C422/A2C738681D8511E287036ADC08B02CD2/PgyjPXanW6ZPDdawakQr5pWGRBo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PgyjPXanW6ZPDdawakQr5pWGRBo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 25 Sep 2025 14:26:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13530 (0x34da) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917C422, serialNumber=3E0CA33D76A75BA64F0DD6B06A442BE69586441A Validity Not Before: Sep 18 14:26:11 2025 GMT Not After : Sep 25 14:26:11 2025 GMT Subject: CN=68cc1684-9ad1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a8:56:05:e6:20:18:a6:93:bf:1d:eb:03:37:d6: 05:d5:09:89:a0:39:14:b7:b5:2c:6e:4f:67:52:02: 91:ac:b7:60:3d:c0:32:a6:98:82:61:35:2a:aa:6b: 40:fe:70:1d:6e:71:7f:45:fb:96:7a:f7:f7:2d:fa: 3e:34:2a:f4:ff:dd:bd:ba:85:ac:23:9f:cb:a1:e4: d2:65:17:58:b8:9a:50:29:e9:14:08:3d:40:bc:93: d9:92:5d:e4:32:7e:34:24:a7:6c:db:0a:30:51:8f: c8:00:32:72:bb:7e:6a:ed:98:89:83:82:d6:05:dc: 95:a3:da:8e:4d:1f:80:cf:a5:fb:c1:e5:93:f7:10: b0:bf:15:bc:12:35:e8:d2:5a:d1:ac:ef:d5:7b:ea: d2:be:79:ae:f4:50:59:3b:2d:1d:18:04:71:8b:8e: 39:46:30:00:d5:83:c5:7e:7f:5d:66:20:7c:4b:46: d2:ee:66:97:32:0a:54:c5:a6:ec:f1:a3:32:70:5a: 96:f8:d8:2f:8f:75:e3:07:cd:49:6b:34:75:27:9c: df:10:92:5e:11:7a:3f:33:aa:be:4e:59:1c:af:dc: 76:de:d5:65:c3:15:9a:14:80:3a:e1:92:d5:f0:80: b8:18:61:0c:8b:13:46:29:26:d6:b3:38:95:a9:15: 77:9f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8F:88:A5:50:06:A1:A2:89:84:1D:0D:A0:9D:5E:7D:3B:54:34:94:D4 X509v3 Authority Key Identifier: keyid:3E:0C:A3:3D:76:A7:5B:A6:4F:0D:D6:B0:6A:44:2B:E6:95:86:44:1A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917C422/A2C738681D8511E287036ADC08B02CD2/PgyjPXanW6ZPDdawakQr5pWGRBo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PgyjPXanW6ZPDdawakQr5pWGRBo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917C422/A2C738681D8511E287036ADC08B02CD2/PgyjPXanW6ZPDdawakQr5pWGRBo.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 08:19:97:38:4b:d8:9d:9e:c8:aa:42:3c:a8:2e:05:3b:20:96: 05:91:2a:b3:09:e6:34:2a:83:2a:22:54:f2:d3:b1:f9:86:a4: 72:a1:bd:1e:b5:7d:ec:17:3a:ea:a8:0b:03:6c:7c:ed:0a:5a: 55:04:2e:52:40:67:e4:ec:99:05:67:9b:7b:cf:5d:9e:bf:ff: f4:23:71:23:0e:f0:a6:5a:c7:26:cf:b4:78:58:f2:0f:6c:93: 41:34:b0:a1:22:4c:a8:96:42:a0:46:cb:d7:4a:41:8f:bc:ac: d7:6d:f3:8d:1f:d4:ac:b9:dc:60:9b:67:22:68:5b:cc:3f:b4: f0:d3:a2:4b:e0:7f:4e:6e:f5:64:0f:6e:c1:eb:1c:40:84:89: 00:9c:4c:4a:31:4a:d1:78:d6:cc:89:80:ad:cb:51:f9:b0:c2: 80:58:5a:f6:b1:ec:a2:fd:31:cf:02:af:8f:18:4e:cb:2b:a0: 01:c4:99:53:e5:83:24:c5:f0:c7:b3:af:a7:ac:43:33:8d:ef: fe:20:10:8a:4e:04:0d:96:ac:44:2b:dd:d2:02:a6:fa:7d:f1: b4:90:96:8c:1a:2b:54:0e:95:e4:a2:32:d1:ea:55:5c:31:f1: 86:09:d8:a3:4d:80:a2:bd:5c:fa:65:3d:be:e0:df:6e:8b:da: ce:dd:a3:14 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICNNowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0M0MjIxMTAvBgNVBAUTKDNFMENBMzNENzZBNzVCQTY0RjBERDZCMDZBNDQyQkU2 OTU4NjQ0MUEwHhcNMjUwOTE4MTQyNjExWhcNMjUwOTI1MTQyNjExWjAYMRYwFAYD VQQDEw02OGNjMTY4NC05YWQxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqFYF5iAYppO/HesDN9YF1QmJoDkUt7Usbk9nUgKRrLdgPcAyppiCYTUqqmtA /nAdbnF/RfuWevf3Lfo+NCr0/929uoWsI5/LoeTSZRdYuJpQKekUCD1AvJPZkl3k Mn40JKds2wowUY/IADJyu35q7ZiJg4LWBdyVo9qOTR+Az6X7weWT9xCwvxW8EjXo 0lrRrO/Ve+rSvnmu9FBZOy0dGARxi445RjAA1YPFfn9dZiB8S0bS7maXMgpUxabs 8aMycFqW+Ngvj3XjB81JazR1J5zfEJJeEXo/M6q+Tlkcr9x23tVlwxWaFIA64ZLV 8IC4GGEMixNGKSbWsziVqRV3nwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFI+IpVAG oaKJhB0NoJ1efTtUNJTUMB8GA1UdIwQYMBaAFD4Moz12p1umTw3WsGpEK+aVhkQa MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3QzQyMi9BMkM3Mzg2ODFE ODUxMUUyODcwMzZBREMwOEIwMkNEMi9QZ3lqUFhhblc2WlBEZGF3YWtRcjVwV0dS Qm8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1BneWpQWGFuVzZaUERkYXdha1FyNXBXR1JCby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 QzQyMi9BMkM3Mzg2ODFEODUxMUUyODcwMzZBREMwOEIwMkNEMi9QZ3lqUFhhblc2 WlBEZGF3YWtRcjVwV0dSQm8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAIGZc4S9idnsiqQjyoLgU7IJYFkSqzCeY0KoMqIlTy07H5hqRyob0e tX3sFzrqqAsDbHztClpVBC5SQGfk7JkFZ5t7z12ev//0I3EjDvCmWscmz7R4WPIP bJNBNLChIkyolkKgRsvXSkGPvKzXbfONH9Ssudxgm2ciaFvMP7Tw06JL4H9ObvVk D27B6xxAhIkAnExKMUrReNbMiYCty1H5sMKAWFr2seyi/THPAq+PGE7LK6ABxJlT 5YMkxfDHs6+nrEMzje/+IBCKTgQNlqxEK93SAqb6ffG0kJaMGitUDpXkojLR6lVc MfGGCdijTYCivVz6ZT2+4N9ui9rO3aMU -----END CERTIFICATE-----Generated at Fri Sep 19 00:39:01 2025 by rpki-client