$ rpki-client -vvf rpki.apnic.net/member_repository/A917C422/A2C738681D8511E287036ADC08B02CD2/PgyjPXanW6ZPDdawakQr5pWGRBo.mft File: PgyjPXanW6ZPDdawakQr5pWGRBo.mft (raw, json) Hash identifier: E1ImoijbFC/GDaAsY7cN9QxmDj5sEAsL4lVNOmMQg1s= Subject key identifier: 3B:1B:E0:AB:4A:09:E5:BF:30:36:E7:33:8D:04:66:ED:64:6E:45:A8 Authority key identifier: 3E:0C:A3:3D:76:A7:5B:A6:4F:0D:D6:B0:6A:44:2B:E6:95:86:44:1A Certificate issuer: /CN=A917C422/serialNumber=3E0CA33D76A75BA64F0DD6B06A442BE69586441A Certificate serial: 34B0 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PgyjPXanW6ZPDdawakQr5pWGRBo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917C422/A2C738681D8511E287036ADC08B02CD2/PgyjPXanW6ZPDdawakQr5pWGRBo.mft Manifest number: 34A1 Signing time: Fri 04 Jul 2025 14:29:36 +0000 Manifest this update: Fri 04 Jul 2025 14:29:35 +0000 Manifest next update: Fri 11 Jul 2025 14:29:35 +0000 Files and hashes: 1: PgyjPXanW6ZPDdawakQr5pWGRBo.crl (hash: 7pM5yvRXlTiaKxqnYOLhea4CQ72E50ghDqxoDKVdkh8=) 2: D69F6688CD8511EBB5252063C4F9AE02.roa (hash: 1ODdrQTl4q6/w7rtOls+USY+PM8yOp3Wfi9ftx6zA0o=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917C422/A2C738681D8511E287036ADC08B02CD2/PgyjPXanW6ZPDdawakQr5pWGRBo.crl rsync://rpki.apnic.net/member_repository/A917C422/A2C738681D8511E287036ADC08B02CD2/PgyjPXanW6ZPDdawakQr5pWGRBo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PgyjPXanW6ZPDdawakQr5pWGRBo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 10 Jul 2025 03:15:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13488 (0x34b0) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917C422, serialNumber=3E0CA33D76A75BA64F0DD6B06A442BE69586441A Validity Not Before: Jul 4 14:29:35 2025 GMT Not After : Jul 11 14:29:35 2025 GMT Subject: CN=6867e54f-eac1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c7:53:8e:8d:5b:56:48:e6:34:57:a2:62:ef:d0: ca:3a:b1:70:44:42:9f:b6:e7:f4:b2:4f:77:36:b6: c7:27:37:62:20:b0:2a:56:3d:17:96:3b:8b:03:60: 2e:9e:03:eb:08:61:82:d4:9c:90:c1:89:dc:ad:02: fd:59:8b:20:da:14:0e:09:b4:a7:97:e8:a3:d4:b4: d7:02:a6:5b:07:e0:86:f7:70:be:c1:60:c7:01:f2: 80:73:ad:29:46:bb:cb:f2:af:eb:90:4b:29:5f:26: 2c:fb:a4:b6:e7:e5:09:7f:4b:f6:05:78:b9:22:35: 54:21:a3:1f:6e:6e:18:3f:84:10:d9:e8:f8:ed:09: 61:3b:29:d6:34:37:75:e3:31:21:a2:a3:ce:32:7a: 6d:06:f2:81:f7:a5:a4:15:0d:16:79:b7:1b:e2:42: c0:14:5a:85:f2:8c:2c:54:3f:4e:7d:04:d0:dc:a3: b2:ca:7c:9f:6e:25:5f:a3:c3:6c:34:d2:b1:58:2b: 86:73:b7:29:5c:1f:46:82:fc:80:dd:f9:68:75:58: 66:d5:62:eb:5c:8d:74:a9:50:65:ee:ff:45:36:67: e5:7a:d3:0c:df:b8:6e:0e:a3:48:a9:13:a4:a2:e0: 88:bb:bf:b9:5e:19:d1:90:f5:51:1b:a4:00:b3:49: 10:a5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3B:1B:E0:AB:4A:09:E5:BF:30:36:E7:33:8D:04:66:ED:64:6E:45:A8 X509v3 Authority Key Identifier: keyid:3E:0C:A3:3D:76:A7:5B:A6:4F:0D:D6:B0:6A:44:2B:E6:95:86:44:1A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917C422/A2C738681D8511E287036ADC08B02CD2/PgyjPXanW6ZPDdawakQr5pWGRBo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PgyjPXanW6ZPDdawakQr5pWGRBo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917C422/A2C738681D8511E287036ADC08B02CD2/PgyjPXanW6ZPDdawakQr5pWGRBo.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a2:2f:a5:ec:dd:b3:d4:11:90:a0:16:96:36:2e:a6:d1:90:fd: 65:bc:93:3b:c8:6f:a5:d0:ce:29:32:57:63:a5:1d:33:11:68: 6c:e8:bd:20:fd:0e:23:65:b8:7c:8f:3b:f2:51:2d:99:3e:f1: 23:e3:e1:53:e8:ac:2d:55:a2:a7:2b:4f:38:d7:53:7f:ad:6c: ec:d7:e0:f0:5d:97:2b:c6:06:5e:42:16:86:7d:bf:56:13:64: ca:02:9f:80:90:6d:39:2c:9d:e6:af:02:cf:93:8b:d6:fa:b1: 53:b4:55:c7:a7:bf:23:6f:a5:db:6c:01:4e:fe:ec:bd:78:ed: ea:b5:aa:40:c9:1c:fe:c9:6a:6d:6d:dd:e1:0f:d3:2b:61:1a: e2:eb:43:e7:c9:a6:47:51:ce:c9:c6:5a:82:c2:bb:3c:a3:dc: 37:26:bb:c5:3e:6a:69:c2:d3:3e:ab:90:ea:1d:98:13:48:31: cc:f4:c1:3c:0e:ec:c6:56:47:3d:4b:22:62:a9:7b:75:98:40: 80:b5:02:42:10:77:3e:01:4d:18:f0:31:55:55:ca:0b:b3:92: 19:6a:7f:90:f3:e4:d5:09:c4:53:8e:00:cd:50:26:4d:01:7a: 0c:1b:04:79:46:e6:72:21:a1:02:0d:4c:51:8c:cb:e9:6e:55: d0:fa:b7:c4 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICNLAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0M0MjIxMTAvBgNVBAUTKDNFMENBMzNENzZBNzVCQTY0RjBERDZCMDZBNDQyQkU2 OTU4NjQ0MUEwHhcNMjUwNzA0MTQyOTM1WhcNMjUwNzExMTQyOTM1WjAYMRYwFAYD VQQDEw02ODY3ZTU0Zi1lYWMxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAx1OOjVtWSOY0V6Ji79DKOrFwREKftuf0sk93NrbHJzdiILAqVj0XljuLA2Au ngPrCGGC1JyQwYncrQL9WYsg2hQOCbSnl+ij1LTXAqZbB+CG93C+wWDHAfKAc60p RrvL8q/rkEspXyYs+6S25+UJf0v2BXi5IjVUIaMfbm4YP4QQ2ej47QlhOynWNDd1 4zEhoqPOMnptBvKB96WkFQ0Webcb4kLAFFqF8owsVD9OfQTQ3KOyynyfbiVfo8Ns NNKxWCuGc7cpXB9GgvyA3flodVhm1WLrXI10qVBl7v9FNmfletMM37huDqNIqROk ouCIu7+5XhnRkPVRG6QAs0kQpQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFDsb4KtK CeW/MDbnM40EZu1kbkWoMB8GA1UdIwQYMBaAFD4Moz12p1umTw3WsGpEK+aVhkQa MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3QzQyMi9BMkM3Mzg2ODFE ODUxMUUyODcwMzZBREMwOEIwMkNEMi9QZ3lqUFhhblc2WlBEZGF3YWtRcjVwV0dS Qm8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1BneWpQWGFuVzZaUERkYXdha1FyNXBXR1JCby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 QzQyMi9BMkM3Mzg2ODFEODUxMUUyODcwMzZBREMwOEIwMkNEMi9QZ3lqUFhhblc2 WlBEZGF3YWtRcjVwV0dSQm8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCiL6Xs3bPUEZCgFpY2LqbRkP1lvJM7yG+l0M4pMldjpR0zEWhs6L0g /Q4jZbh8jzvyUS2ZPvEj4+FT6KwtVaKnK08411N/rWzs1+DwXZcrxgZeQhaGfb9W E2TKAp+AkG05LJ3mrwLPk4vW+rFTtFXHp78jb6XbbAFO/uy9eO3qtapAyRz+yWpt bd3hD9MrYRri60PnyaZHUc7JxlqCwrs8o9w3JrvFPmppwtM+q5DqHZgTSDHM9ME8 DuzGVkc9SyJiqXt1mECAtQJCEHc+AU0Y8DFVVcoLs5IZan+Q8+TVCcRTjgDNUCZN AXoMGwR5RuZyIaECDUxRjMvpblXQ+rfE -----END CERTIFICATE-----Generated at Sat Jul 5 21:57:02 2025 by rpki-client