$ rpki-client -vvf rpki.apnic.net/member_repository/A917C422/A2C738681D8511E287036ADC08B02CD2/PgyjPXanW6ZPDdawakQr5pWGRBo.mft File: PgyjPXanW6ZPDdawakQr5pWGRBo.mft (raw, json) Hash identifier: uCMNp3vHISgZFc1dhvuDGr37tY4c/zHAhwQH1kfmTC0= Subject key identifier: 6D:E9:70:B0:E2:AB:AF:26:53:7F:89:41:B8:1F:50:01:BC:41:98:F0 Authority key identifier: 3E:0C:A3:3D:76:A7:5B:A6:4F:0D:D6:B0:6A:44:2B:E6:95:86:44:1A Certificate issuer: /CN=A917C422/serialNumber=3E0CA33D76A75BA64F0DD6B06A442BE69586441A Certificate serial: 34C9 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PgyjPXanW6ZPDdawakQr5pWGRBo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917C422/A2C738681D8511E287036ADC08B02CD2/PgyjPXanW6ZPDdawakQr5pWGRBo.mft Manifest number: 34BA Signing time: Fri 22 Aug 2025 14:26:01 +0000 Manifest this update: Fri 22 Aug 2025 14:26:00 +0000 Manifest next update: Fri 29 Aug 2025 14:26:00 +0000 Files and hashes: 1: PgyjPXanW6ZPDdawakQr5pWGRBo.crl (hash: 9sbE/q17zH1x3LVmhaxnsAjXWbKjNwl6VBK4CtsX+uE=) 2: D69F6688CD8511EBB5252063C4F9AE02.roa (hash: 1ODdrQTl4q6/w7rtOls+USY+PM8yOp3Wfi9ftx6zA0o=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917C422/A2C738681D8511E287036ADC08B02CD2/PgyjPXanW6ZPDdawakQr5pWGRBo.crl rsync://rpki.apnic.net/member_repository/A917C422/A2C738681D8511E287036ADC08B02CD2/PgyjPXanW6ZPDdawakQr5pWGRBo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PgyjPXanW6ZPDdawakQr5pWGRBo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Aug 2025 14:26:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13513 (0x34c9) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917C422, serialNumber=3E0CA33D76A75BA64F0DD6B06A442BE69586441A Validity Not Before: Aug 22 14:26:00 2025 GMT Not After : Aug 29 14:26:00 2025 GMT Subject: CN=68a87df9-fd5c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:0e:a5:41:fd:73:ce:86:21:60:55:ee:7d:c2: df:ce:3d:58:3d:cc:95:6a:7e:0c:18:df:28:b1:4e: b5:00:f3:5d:5f:9f:96:72:4f:b1:28:e8:13:2a:f3: 3b:96:86:f9:ee:a3:31:d9:b0:9e:44:34:7d:92:75: 9b:d5:b2:fe:20:44:50:a4:e8:5a:35:51:89:1d:2c: 7e:d5:8c:13:eb:0b:59:33:bd:08:7c:d5:01:fc:4c: 42:01:04:30:17:92:5a:d4:9c:f8:2d:de:86:40:86: fd:f9:7f:9d:fe:a3:88:a5:16:84:94:9f:fd:86:6f: b6:60:ab:21:eb:79:51:45:3a:20:9d:ad:fe:94:d2: c8:b8:86:54:8e:9f:2d:6b:e9:d0:67:6d:d1:48:70: 20:04:9e:ea:ce:3d:ca:56:63:2e:43:c6:c9:b0:03: 1e:76:76:cb:e2:2c:42:12:80:45:12:d6:95:91:bb: 59:2d:a7:a7:dc:d7:a1:1f:9c:17:bd:1e:ae:fd:ad: 0f:06:4a:75:fc:2a:cb:69:ef:0f:6a:a4:16:61:83: 07:68:9c:38:46:f1:3c:ef:08:68:8c:73:fb:26:1e: 48:29:84:7b:22:c8:42:39:ab:cd:95:fc:3b:7b:c0: 41:b0:d7:e3:9a:18:cf:fa:6d:1f:d9:71:3a:7d:5e: ca:83 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6D:E9:70:B0:E2:AB:AF:26:53:7F:89:41:B8:1F:50:01:BC:41:98:F0 X509v3 Authority Key Identifier: keyid:3E:0C:A3:3D:76:A7:5B:A6:4F:0D:D6:B0:6A:44:2B:E6:95:86:44:1A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917C422/A2C738681D8511E287036ADC08B02CD2/PgyjPXanW6ZPDdawakQr5pWGRBo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PgyjPXanW6ZPDdawakQr5pWGRBo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917C422/A2C738681D8511E287036ADC08B02CD2/PgyjPXanW6ZPDdawakQr5pWGRBo.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 63:46:99:1a:3f:87:6d:34:3a:90:54:12:b3:62:69:d3:75:f7: bc:06:a8:4c:0c:55:70:14:74:41:b5:6e:27:3f:9b:6c:00:fc: ff:4f:89:d6:92:bf:86:6a:a1:22:7b:8e:db:79:23:c1:e2:ed: 85:6a:13:bb:95:ec:85:bf:9f:ab:b3:e7:f4:43:9f:ec:de:04: 42:3c:1f:33:fb:3f:53:16:c1:ca:fa:bd:0b:84:d7:ae:ba:e6: f9:b8:b3:4e:a3:1b:d2:28:e8:4e:31:1e:5a:12:ca:05:5a:74: cf:e5:10:fb:a3:7b:2b:09:40:f1:b0:c0:15:6b:4f:27:6c:2a: 9b:02:f6:07:6c:3b:51:ff:06:0c:a4:af:65:06:4b:da:55:58: 97:07:79:d0:35:46:ce:6f:4f:2d:72:ab:ec:db:b1:7a:fb:28: ef:94:58:a1:92:6e:ef:7f:84:26:ef:72:82:5c:d5:86:04:96: 5b:4b:67:28:fd:0c:0c:9c:89:d0:3e:36:0c:1c:09:2e:5f:f8: 20:dc:41:fb:f2:af:8f:66:18:64:26:b6:86:b6:01:7f:4d:5a: d2:3d:fe:aa:a2:a2:aa:80:e1:25:ec:c8:dc:e6:44:7b:72:b9: cb:bb:8d:27:3f:fa:d3:e1:2f:92:97:64:c7:6b:90:42:5c:16: 9a:e6:b6:4e -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICNMkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0M0MjIxMTAvBgNVBAUTKDNFMENBMzNENzZBNzVCQTY0RjBERDZCMDZBNDQyQkU2 OTU4NjQ0MUEwHhcNMjUwODIyMTQyNjAwWhcNMjUwODI5MTQyNjAwWjAYMRYwFAYD VQQDEw02OGE4N2RmOS1mZDVjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuA6lQf1zzoYhYFXufcLfzj1YPcyVan4MGN8osU61APNdX5+Wck+xKOgTKvM7 lob57qMx2bCeRDR9knWb1bL+IERQpOhaNVGJHSx+1YwT6wtZM70IfNUB/ExCAQQw F5Ja1Jz4Ld6GQIb9+X+d/qOIpRaElJ/9hm+2YKsh63lRRTogna3+lNLIuIZUjp8t a+nQZ23RSHAgBJ7qzj3KVmMuQ8bJsAMednbL4ixCEoBFEtaVkbtZLaen3NehH5wX vR6u/a0PBkp1/CrLae8PaqQWYYMHaJw4RvE87whojHP7Jh5IKYR7IshCOavNlfw7 e8BBsNfjmhjP+m0f2XE6fV7KgwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFG3pcLDi q68mU3+JQbgfUAG8QZjwMB8GA1UdIwQYMBaAFD4Moz12p1umTw3WsGpEK+aVhkQa MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3QzQyMi9BMkM3Mzg2ODFE ODUxMUUyODcwMzZBREMwOEIwMkNEMi9QZ3lqUFhhblc2WlBEZGF3YWtRcjVwV0dS Qm8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1BneWpQWGFuVzZaUERkYXdha1FyNXBXR1JCby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 QzQyMi9BMkM3Mzg2ODFEODUxMUUyODcwMzZBREMwOEIwMkNEMi9QZ3lqUFhhblc2 WlBEZGF3YWtRcjVwV0dSQm8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBjRpkaP4dtNDqQVBKzYmnTdfe8BqhMDFVwFHRBtW4nP5tsAPz/T4nW kr+GaqEie47beSPB4u2FahO7leyFv5+rs+f0Q5/s3gRCPB8z+z9TFsHK+r0LhNeu uub5uLNOoxvSKOhOMR5aEsoFWnTP5RD7o3srCUDxsMAVa08nbCqbAvYHbDtR/wYM pK9lBkvaVViXB3nQNUbOb08tcqvs27F6+yjvlFihkm7vf4Qm73KCXNWGBJZbS2co /QwMnInQPjYMHAkuX/gg3EH78q+PZhhkJraGtgF/TVrSPf6qoqKqgOEl7Mjc5kR7 crnLu40nP/rT4S+Sl2THa5BCXBaa5rZO -----END CERTIFICATE-----Generated at Sat Aug 23 19:11:06 2025 by rpki-client