$ rpki-client -vvf rpki.apnic.net/member_repository/A917C422/A2C738681D8511E287036ADC08B02CD2/PgyjPXanW6ZPDdawakQr5pWGRBo.mft File: PgyjPXanW6ZPDdawakQr5pWGRBo.mft (raw, json) Hash identifier: bFBSXImAD9QQYL1SiwBeqwmuDOjym59GrVRymXtUBLE= Subject key identifier: C9:A8:4D:10:C7:B7:90:A9:CA:9F:2A:D5:8A:3D:AF:95:17:DB:9C:51 Authority key identifier: 3E:0C:A3:3D:76:A7:5B:A6:4F:0D:D6:B0:6A:44:2B:E6:95:86:44:1A Certificate issuer: /CN=A917C422/serialNumber=3E0CA33D76A75BA64F0DD6B06A442BE69586441A Certificate serial: 34EA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PgyjPXanW6ZPDdawakQr5pWGRBo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917C422/A2C738681D8511E287036ADC08B02CD2/PgyjPXanW6ZPDdawakQr5pWGRBo.mft Manifest number: 34DA Signing time: Mon 20 Oct 2025 14:27:20 +0000 Manifest this update: Mon 20 Oct 2025 14:27:20 +0000 Manifest next update: Mon 27 Oct 2025 14:27:20 +0000 Files and hashes: 1: PgyjPXanW6ZPDdawakQr5pWGRBo.crl (hash: Qj6BvSxMqJ5v2PR9EroTJwswgPwwTFXcaw+/TXlTxpM=) 2: D69F6688CD8511EBB5252063C4F9AE02.roa (hash: o45AFhO6SSMQiWqggKeTKMzwcSJwvQDsZ1NlO/kkLkM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917C422/A2C738681D8511E287036ADC08B02CD2/PgyjPXanW6ZPDdawakQr5pWGRBo.crl rsync://rpki.apnic.net/member_repository/A917C422/A2C738681D8511E287036ADC08B02CD2/PgyjPXanW6ZPDdawakQr5pWGRBo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PgyjPXanW6ZPDdawakQr5pWGRBo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 27 Oct 2025 14:27:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13546 (0x34ea) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917C422, serialNumber=3E0CA33D76A75BA64F0DD6B06A442BE69586441A Validity Not Before: Oct 20 14:27:20 2025 GMT Not After : Oct 27 14:27:20 2025 GMT Subject: CN=68f646c8-2c33 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:e8:60:39:66:38:66:f4:21:a0:fd:05:0e:f4: 7c:23:35:9f:88:ea:70:d2:29:86:0f:6b:27:23:ba: f0:f9:82:11:c5:88:43:2c:2c:d6:c5:34:4b:13:6f: d1:f0:24:59:9e:f3:a8:56:a3:59:8b:34:f4:4b:a4: ea:7a:7b:1f:16:b3:4d:f5:c9:65:e2:d7:9a:b6:b9: fc:7b:8e:c4:83:f5:f9:f9:f4:74:b6:ee:cc:16:f5: 94:17:f9:af:58:b7:5c:e7:e1:e1:ea:c7:33:7a:44: dc:52:d8:c3:85:eb:4d:3d:95:b8:8c:d7:90:91:a4: e1:32:a2:3d:39:d5:f0:32:27:97:c0:71:d9:54:34: 7d:d4:96:e5:2e:d8:f8:94:e6:a4:83:48:ba:fd:4c: b5:b7:4f:01:c4:9b:57:1f:08:3e:43:33:0a:7c:15: 49:fa:d7:dd:6c:06:83:b4:f7:48:90:3d:74:54:21: a8:27:dd:8a:73:fd:d6:08:f1:a9:a0:3e:e3:6e:44: c7:0a:f1:fc:ed:62:fe:70:15:a8:03:4d:e4:18:d0: 05:9c:fd:09:2d:ce:36:b4:28:ff:59:30:e3:16:83: ba:2a:1b:25:a3:8a:6c:a0:ef:97:d0:3d:26:84:3e: a8:99:44:f6:08:1c:c3:3e:28:f1:96:2f:23:25:ef: 31:f9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C9:A8:4D:10:C7:B7:90:A9:CA:9F:2A:D5:8A:3D:AF:95:17:DB:9C:51 X509v3 Authority Key Identifier: keyid:3E:0C:A3:3D:76:A7:5B:A6:4F:0D:D6:B0:6A:44:2B:E6:95:86:44:1A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917C422/A2C738681D8511E287036ADC08B02CD2/PgyjPXanW6ZPDdawakQr5pWGRBo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PgyjPXanW6ZPDdawakQr5pWGRBo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917C422/A2C738681D8511E287036ADC08B02CD2/PgyjPXanW6ZPDdawakQr5pWGRBo.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 17:e8:14:d7:08:05:e6:d9:c4:62:7f:c8:a4:d0:87:6f:35:b4: aa:7e:df:10:0c:37:1e:93:3a:a8:2e:a6:d5:4f:aa:cc:07:3a: f1:03:d2:83:da:9f:13:57:8d:eb:d3:a7:64:d2:49:1c:e9:c2: d8:83:5c:d5:69:15:93:cd:11:dc:22:0d:73:66:4f:ab:4c:79: b4:5e:34:6f:8f:56:a6:20:e4:c4:8f:18:83:c2:26:33:3a:9d: c0:2a:6e:ff:73:4e:fa:d1:00:68:a8:4f:f4:a5:30:34:54:2b: e3:14:a8:fa:db:37:cc:38:cc:33:10:94:63:b9:00:65:3a:d0: 09:25:a9:09:97:32:7d:9b:a4:0e:66:3f:7b:16:4a:18:53:4a: c3:3d:8d:34:65:cd:9c:80:ac:1c:5f:4c:83:96:80:b4:f6:81: e1:ec:c9:37:bc:c6:c8:65:d5:97:2e:93:dc:15:06:01:9e:35: b0:72:09:46:8f:6a:2d:16:89:a3:98:87:ed:50:fc:11:73:56: 4e:37:a5:73:b6:a6:6e:ae:24:bc:e0:cb:57:0a:1f:c7:94:91: 2a:5f:3e:e1:3a:0b:96:24:b8:c3:8d:72:c6:95:46:2d:e5:76: 79:e6:f0:35:11:a6:ae:65:d1:0d:ee:fb:bd:9a:a1:21:37:67: 6a:71:4e:1e -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICNOowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0M0MjIxMTAvBgNVBAUTKDNFMENBMzNENzZBNzVCQTY0RjBERDZCMDZBNDQyQkU2 OTU4NjQ0MUEwHhcNMjUxMDIwMTQyNzIwWhcNMjUxMDI3MTQyNzIwWjAYMRYwFAYD VQQDEw02OGY2NDZjOC0yYzMzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuOhgOWY4ZvQhoP0FDvR8IzWfiOpw0imGD2snI7rw+YIRxYhDLCzWxTRLE2/R 8CRZnvOoVqNZizT0S6TqensfFrNN9cll4teatrn8e47Eg/X5+fR0tu7MFvWUF/mv WLdc5+Hh6sczekTcUtjDhetNPZW4jNeQkaThMqI9OdXwMieXwHHZVDR91JblLtj4 lOakg0i6/Uy1t08BxJtXHwg+QzMKfBVJ+tfdbAaDtPdIkD10VCGoJ92Kc/3WCPGp oD7jbkTHCvH87WL+cBWoA03kGNAFnP0JLc42tCj/WTDjFoO6Khslo4psoO+X0D0m hD6omUT2CBzDPijxli8jJe8x+QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFMmoTRDH t5Cpyp8q1Yo9r5UX25xRMB8GA1UdIwQYMBaAFD4Moz12p1umTw3WsGpEK+aVhkQa MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3QzQyMi9BMkM3Mzg2ODFE ODUxMUUyODcwMzZBREMwOEIwMkNEMi9QZ3lqUFhhblc2WlBEZGF3YWtRcjVwV0dS Qm8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1BneWpQWGFuVzZaUERkYXdha1FyNXBXR1JCby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 QzQyMi9BMkM3Mzg2ODFEODUxMUUyODcwMzZBREMwOEIwMkNEMi9QZ3lqUFhhblc2 WlBEZGF3YWtRcjVwV0dSQm8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAX6BTXCAXm2cRif8ik0IdvNbSqft8QDDcekzqoLqbVT6rMBzrxA9KD 2p8TV43r06dk0kkc6cLYg1zVaRWTzRHcIg1zZk+rTHm0XjRvj1amIOTEjxiDwiYz Op3AKm7/c0760QBoqE/0pTA0VCvjFKj62zfMOMwzEJRjuQBlOtAJJakJlzJ9m6QO Zj97FkoYU0rDPY00Zc2cgKwcX0yDloC09oHh7Mk3vMbIZdWXLpPcFQYBnjWwcglG j2otFomjmIftUPwRc1ZON6VztqZuriS84MtXCh/HlJEqXz7hOguWJLjDjXLGlUYt 5XZ55vA1EaauZdEN7vu9mqEhN2dqcU4e -----END CERTIFICATE-----Generated at Tue Oct 21 00:59:28 2025 by rpki-client