$ rpki-client -vvf rpki.apnic.net/member_repository/A917E4BA/C952AC9E52DC11EA82601B0FC4F9AE02/PG7AmwlfpfUTYVEIpUR8rLcasaE.mft File: PG7AmwlfpfUTYVEIpUR8rLcasaE.mft (raw, json) Hash identifier: gDgIL+nYjaIb1D10SBPTTscCmyr2J9qQdtTnknE5zq0= Subject key identifier: BE:27:80:59:07:FA:70:AA:21:6F:AB:AA:90:F1:0A:61:88:58:79:A9 Authority key identifier: 3C:6E:C0:9B:09:5F:A5:F5:13:61:51:08:A5:44:7C:AC:B7:1A:B1:A1 Certificate issuer: /CN=A917E4BA/serialNumber=3C6EC09B095FA5F513615108A5447CACB71AB1A1 Certificate serial: 0AD5 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/PG7AmwlfpfUTYVEIpUR8rLcasaE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917E4BA/C952AC9E52DC11EA82601B0FC4F9AE02/PG7AmwlfpfUTYVEIpUR8rLcasaE.mft Manifest number: 0ACF Signing time: Fri 18 Jul 2025 19:40:48 +0000 Manifest this update: Fri 18 Jul 2025 19:40:48 +0000 Manifest next update: Fri 25 Jul 2025 19:40:48 +0000 Files and hashes: 1: PG7AmwlfpfUTYVEIpUR8rLcasaE.crl (hash: KXi5XO0ojQ+lSOIOiZUDEI6F3MdYynjm2h69uYkLJHo=) 2: 66F91334ED4911ED9A90391BC4F9AE02.roa (hash: DjUQP/nHkYcgIi1MW0o7fyHbM5U6rKdni2IBdc+KG/Q=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917E4BA/C952AC9E52DC11EA82601B0FC4F9AE02/PG7AmwlfpfUTYVEIpUR8rLcasaE.crl rsync://rpki.apnic.net/member_repository/A917E4BA/C952AC9E52DC11EA82601B0FC4F9AE02/PG7AmwlfpfUTYVEIpUR8rLcasaE.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/PG7AmwlfpfUTYVEIpUR8rLcasaE.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 25 Jul 2025 19:40:47 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2773 (0xad5) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917E4BA, serialNumber=3C6EC09B095FA5F513615108A5447CACB71AB1A1 Validity Not Before: Jul 18 19:40:48 2025 GMT Not After : Jul 25 19:40:48 2025 GMT Subject: CN=687aa340-20b8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f8:5d:79:c8:50:45:44:9d:47:04:66:84:5a:5b: 3e:3d:b9:ce:2f:dc:b2:50:88:cb:53:1d:2b:fd:7f: 18:2f:13:76:c3:5d:4a:c2:02:04:bd:fd:3e:87:2c: 65:6b:0a:9b:f1:24:7c:31:43:9e:9e:76:1c:8e:65: 50:28:78:2f:62:9f:80:91:da:b4:0b:ed:12:39:c7: 58:e2:88:9e:aa:5d:4a:2b:62:e0:86:5e:fe:7e:7b: 93:ba:9b:6e:a3:70:3d:ce:fe:5f:04:78:a9:2d:79: bf:17:f1:67:88:60:2c:6a:45:9b:d4:a5:95:a5:15: 1c:8a:28:e7:be:48:5f:37:a4:4e:54:82:7c:c1:a6: 59:70:f3:32:cf:4b:85:7d:ca:58:4d:a5:15:43:87: bc:11:83:bb:fb:43:44:ff:e4:b2:cd:6f:d8:ae:70: cc:e7:3a:6a:25:29:e2:24:52:39:e0:3a:13:ae:72: bf:76:10:b5:dc:ae:9f:17:67:f9:94:28:d9:0d:f5: cc:06:cf:93:27:70:bb:b9:06:0c:c3:fe:00:a1:e4: 45:21:5e:96:b8:92:74:8f:64:fc:15:25:bc:6e:85: ce:8a:bc:95:b2:a7:9e:30:5a:dd:fb:8e:2d:9f:77: 17:e4:0a:41:f4:64:ec:81:ae:ea:32:08:39:4e:2c: e5:d5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BE:27:80:59:07:FA:70:AA:21:6F:AB:AA:90:F1:0A:61:88:58:79:A9 X509v3 Authority Key Identifier: keyid:3C:6E:C0:9B:09:5F:A5:F5:13:61:51:08:A5:44:7C:AC:B7:1A:B1:A1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917E4BA/C952AC9E52DC11EA82601B0FC4F9AE02/PG7AmwlfpfUTYVEIpUR8rLcasaE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/PG7AmwlfpfUTYVEIpUR8rLcasaE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917E4BA/C952AC9E52DC11EA82601B0FC4F9AE02/PG7AmwlfpfUTYVEIpUR8rLcasaE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption b2:b8:58:c9:e2:0b:53:67:e2:b4:dc:04:a1:c1:91:29:c0:38: ad:c7:42:a2:3e:c2:b8:d8:ec:1b:ad:95:db:83:0d:ba:07:ad: da:62:01:d7:64:15:49:85:ee:37:de:46:e0:7e:8b:c4:f6:d0: 3b:6e:ac:5e:b3:31:16:77:29:68:03:11:b4:ff:0e:7f:b6:51: 75:46:b5:9a:cd:fe:e3:ec:cd:f4:99:fb:bd:2a:a3:aa:8f:df: 9d:73:c7:56:6a:ef:6f:2d:83:58:d8:f4:ab:da:29:66:86:e8: 65:74:36:fe:f9:7a:24:2e:c6:c7:ed:29:1e:e4:a5:34:00:36: bb:53:8d:18:0c:ee:0d:e1:50:24:b2:5a:a6:44:c7:4e:e5:57: c8:3d:0b:8b:86:25:bd:af:26:d1:23:51:d3:01:2b:8a:d5:0e: 2d:17:2e:94:6c:84:b7:0e:b4:18:80:86:8d:69:60:14:34:ff: d9:90:2a:ac:27:7b:5f:36:bd:0e:99:e8:4c:45:be:a2:e3:57: ce:06:79:aa:65:5d:e2:f6:20:ac:72:6e:da:3d:fe:be:a6:6a: 61:ce:de:0c:be:7d:95:64:7c:01:f3:b8:1a:8b:25:9a:3f:0e: 43:6c:21:d2:b9:70:5f:1c:e7:df:80:18:80:c0:1a:52:7b:3f: f0:f1:e0:aa -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCtUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0U0QkExMTAvBgNVBAUTKDNDNkVDMDlCMDk1RkE1RjUxMzYxNTEwOEE1NDQ3Q0FD QjcxQUIxQTEwHhcNMjUwNzE4MTk0MDQ4WhcNMjUwNzI1MTk0MDQ4WjAYMRYwFAYD VQQDEw02ODdhYTM0MC0yMGI4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA+F15yFBFRJ1HBGaEWls+PbnOL9yyUIjLUx0r/X8YLxN2w11KwgIEvf0+hyxl awqb8SR8MUOennYcjmVQKHgvYp+Akdq0C+0SOcdY4oieql1KK2Lghl7+fnuTuptu o3A9zv5fBHipLXm/F/FniGAsakWb1KWVpRUciijnvkhfN6ROVIJ8waZZcPMyz0uF fcpYTaUVQ4e8EYO7+0NE/+SyzW/YrnDM5zpqJSniJFI54DoTrnK/dhC13K6fF2f5 lCjZDfXMBs+TJ3C7uQYMw/4AoeRFIV6WuJJ0j2T8FSW8boXOiryVsqeeMFrd+44t n3cX5ApB9GTsga7qMgg5Tizl1QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFL4ngFkH +nCqIW+rqpDxCmGIWHmpMB8GA1UdIwQYMBaAFDxuwJsJX6X1E2FRCKVEfKy3GrGh MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3RTRCQS9DOTUyQUM5RTUy REMxMUVBODI2MDFCMEZDNEY5QUUwMi9QRzdBbXdsZnBmVVRZVkVJcFVSOHJMY2Fz YUUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL1BHN0Ftd2xmcGZVVFlWRUlwVVI4ckxjYXNhRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 RTRCQS9DOTUyQUM5RTUyREMxMUVBODI2MDFCMEZDNEY5QUUwMi9QRzdBbXdsZnBm VVRZVkVJcFVSOHJMY2FzYUUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCyuFjJ4gtTZ+K03AShwZEpwDitx0KiPsK42OwbrZXbgw26B63aYgHX ZBVJhe433kbgfovE9tA7bqxeszEWdyloAxG0/w5/tlF1RrWazf7j7M30mfu9KqOq j9+dc8dWau9vLYNY2PSr2ilmhuhldDb++XokLsbH7Ske5KU0ADa7U40YDO4N4VAk slqmRMdO5VfIPQuLhiW9rybRI1HTASuK1Q4tFy6UbIS3DrQYgIaNaWAUNP/ZkCqs J3tfNr0OmehMRb6i41fOBnmqZV3i9iCscm7aPf6+pmphzt4Mvn2VZHwB87gaiyWa Pw5DbCHSuXBfHOffgBiAwBpSez/w8eCq -----END CERTIFICATE-----Generated at Sun Jul 20 20:42:53 2025 by rpki-client