$ rpki-client -vvf rpki.apnic.net/member_repository/A917C422/A2C738681D8511E287036ADC08B02CD2/PgyjPXanW6ZPDdawakQr5pWGRBo.mft File: PgyjPXanW6ZPDdawakQr5pWGRBo.mft (raw, json) Hash identifier: SKpT0wK7WhCXxVr5pQUgbsdVA1jNJ3AQp76hoYxNWls= Subject key identifier: 29:78:03:E1:5B:13:7E:58:88:09:69:2E:FC:2E:8D:FC:CA:DE:60:9E Authority key identifier: 3E:0C:A3:3D:76:A7:5B:A6:4F:0D:D6:B0:6A:44:2B:E6:95:86:44:1A Certificate issuer: /CN=A917C422/serialNumber=3E0CA33D76A75BA64F0DD6B06A442BE69586441A Certificate serial: 3495 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PgyjPXanW6ZPDdawakQr5pWGRBo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917C422/A2C738681D8511E287036ADC08B02CD2/PgyjPXanW6ZPDdawakQr5pWGRBo.mft Manifest number: 3486 Signing time: Mon 12 May 2025 14:25:27 +0000 Manifest this update: Mon 12 May 2025 14:25:26 +0000 Manifest next update: Mon 19 May 2025 14:25:26 +0000 Files and hashes: 1: PgyjPXanW6ZPDdawakQr5pWGRBo.crl (hash: QON5jBrdFWZZY7Y6dRKZrk/uAbmiV8oVaSAtxgMvNjY=) 2: D69F6688CD8511EBB5252063C4F9AE02.roa (hash: 1ODdrQTl4q6/w7rtOls+USY+PM8yOp3Wfi9ftx6zA0o=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917C422/A2C738681D8511E287036ADC08B02CD2/PgyjPXanW6ZPDdawakQr5pWGRBo.crl rsync://rpki.apnic.net/member_repository/A917C422/A2C738681D8511E287036ADC08B02CD2/PgyjPXanW6ZPDdawakQr5pWGRBo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PgyjPXanW6ZPDdawakQr5pWGRBo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 19 May 2025 14:25:26 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13461 (0x3495) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917C422, serialNumber=3E0CA33D76A75BA64F0DD6B06A442BE69586441A Validity Not Before: May 12 14:25:26 2025 GMT Not After : May 19 14:25:26 2025 GMT Subject: CN=682204d7-0bda Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:db:3c:0e:51:f1:9d:f0:ce:50:14:1a:8b:db:a7: 78:fe:e9:e8:0d:25:44:0b:3c:10:96:34:3b:00:ab: 11:94:06:bf:01:f9:40:68:9e:89:33:cc:b0:66:59: 4f:ab:3e:2e:d6:29:a2:bc:44:73:0a:25:5a:31:e8: 2e:58:5d:58:c0:ea:dd:c0:67:43:1e:7b:2b:8b:79: d3:0e:c7:44:e5:96:59:32:1f:0f:55:37:17:9b:e6: 2d:53:53:06:d7:5b:72:1c:bc:26:b3:11:23:d7:52: 9a:cd:34:58:85:3e:39:0e:dc:ad:09:e0:82:cd:3e: 3e:5e:28:0d:e4:48:b4:2c:4d:63:ba:a6:37:f5:62: a8:b9:6c:97:f9:fb:6b:ba:00:0f:8c:e4:8c:9f:3a: a7:73:06:d1:bf:9d:cc:12:e0:68:8b:52:a1:6c:5b: 61:d8:10:a6:e9:2b:86:c7:a2:da:6c:cd:ce:bc:55: 2f:40:12:12:4d:be:ce:eb:f0:fd:64:0f:e8:0d:99: a6:2e:7e:65:fb:d0:a1:fd:e7:b4:d9:af:a2:39:70: 39:2e:95:03:3c:2f:8c:56:e4:da:9b:27:b4:87:99: fa:95:e3:d6:2e:7c:b0:04:be:78:b2:47:25:ce:fc: 7f:1a:d2:ff:d9:5e:e9:e6:2c:af:d4:68:40:53:1a: 0f:99 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 29:78:03:E1:5B:13:7E:58:88:09:69:2E:FC:2E:8D:FC:CA:DE:60:9E X509v3 Authority Key Identifier: keyid:3E:0C:A3:3D:76:A7:5B:A6:4F:0D:D6:B0:6A:44:2B:E6:95:86:44:1A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917C422/A2C738681D8511E287036ADC08B02CD2/PgyjPXanW6ZPDdawakQr5pWGRBo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PgyjPXanW6ZPDdawakQr5pWGRBo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917C422/A2C738681D8511E287036ADC08B02CD2/PgyjPXanW6ZPDdawakQr5pWGRBo.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 70:cd:07:11:80:06:c0:c2:e1:64:4a:35:80:6f:82:ce:4a:fa: d5:94:ff:eb:53:83:42:84:b4:88:ea:0b:a1:b9:31:1c:95:95: aa:e4:ee:c5:44:38:77:60:f6:6d:ba:4a:67:d5:e8:1e:3a:f8: 4d:ec:c2:39:b3:db:bd:7b:62:f7:b3:a8:7c:7e:1e:1b:9f:f1: 77:df:9d:71:90:0e:7a:23:ec:66:5f:7a:36:92:c1:47:08:35: 79:6c:d7:9c:0c:75:b2:65:b1:a9:5a:11:29:19:c3:84:6a:e1: 8a:06:a6:71:f6:c9:58:ef:55:4c:ab:8d:bf:9e:03:e9:84:e4: 64:6a:e4:cb:2c:b9:d1:fc:5d:14:7e:ba:23:5b:e9:b9:b5:c3: f7:51:22:4b:99:53:43:8b:8d:d5:38:6c:f4:ed:35:0f:b3:28: 68:9a:fd:68:a6:11:48:c1:8a:6c:83:93:6d:ca:a3:84:c7:43: 73:27:71:94:9f:eb:12:9d:03:38:eb:82:ae:75:1a:40:42:67: 52:d6:0f:0c:07:c1:26:3d:2f:3e:3a:c4:9b:f9:92:3c:8e:cc: d3:a5:5d:67:dc:16:ab:44:83:b6:eb:6b:4b:9a:5e:7b:cf:d8: c2:0e:bb:e6:f7:bb:02:b5:23:cb:16:1d:09:ad:74:8a:54:ec: a6:78:84:cf -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICNJUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0M0MjIxMTAvBgNVBAUTKDNFMENBMzNENzZBNzVCQTY0RjBERDZCMDZBNDQyQkU2 OTU4NjQ0MUEwHhcNMjUwNTEyMTQyNTI2WhcNMjUwNTE5MTQyNTI2WjAYMRYwFAYD VQQDEw02ODIyMDRkNy0wYmRhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA2zwOUfGd8M5QFBqL26d4/unoDSVECzwQljQ7AKsRlAa/AflAaJ6JM8ywZllP qz4u1imivERzCiVaMeguWF1YwOrdwGdDHnsri3nTDsdE5ZZZMh8PVTcXm+YtU1MG 11tyHLwmsxEj11KazTRYhT45DtytCeCCzT4+XigN5Ei0LE1juqY39WKouWyX+ftr ugAPjOSMnzqncwbRv53MEuBoi1KhbFth2BCm6SuGx6LabM3OvFUvQBISTb7O6/D9 ZA/oDZmmLn5l+9Ch/ee02a+iOXA5LpUDPC+MVuTamye0h5n6lePWLnywBL54skcl zvx/GtL/2V7p5iyv1GhAUxoPmQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFCl4A+Fb E35YiAlpLvwujfzK3mCeMB8GA1UdIwQYMBaAFD4Moz12p1umTw3WsGpEK+aVhkQa MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3QzQyMi9BMkM3Mzg2ODFE ODUxMUUyODcwMzZBREMwOEIwMkNEMi9QZ3lqUFhhblc2WlBEZGF3YWtRcjVwV0dS Qm8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1BneWpQWGFuVzZaUERkYXdha1FyNXBXR1JCby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 QzQyMi9BMkM3Mzg2ODFEODUxMUUyODcwMzZBREMwOEIwMkNEMi9QZ3lqUFhhblc2 WlBEZGF3YWtRcjVwV0dSQm8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBwzQcRgAbAwuFkSjWAb4LOSvrVlP/rU4NChLSI6guhuTEclZWq5O7F RDh3YPZtukpn1egeOvhN7MI5s9u9e2L3s6h8fh4bn/F3351xkA56I+xmX3o2ksFH CDV5bNecDHWyZbGpWhEpGcOEauGKBqZx9slY71VMq42/ngPphORkauTLLLnR/F0U frojW+m5tcP3USJLmVNDi43VOGz07TUPsyhomv1ophFIwYpsg5NtyqOEx0NzJ3GU n+sSnQM464KudRpAQmdS1g8MB8EmPS8+OsSb+ZI8jszTpV1n3BarRIO262tLml57 z9jCDrvm97sCtSPLFh0JrXSKVOymeITP -----END CERTIFICATE-----Generated at Tue May 13 16:15:39 2025 by rpki-client