$ rpki-client -vvf rpki.apnic.net/member_repository/A917E4BA/C952AC9E52DC11EA82601B0FC4F9AE02/PG7AmwlfpfUTYVEIpUR8rLcasaE.mft File: PG7AmwlfpfUTYVEIpUR8rLcasaE.mft (raw, json) Hash identifier: K+mj41b4pzsdHVVCf+Rr6mW8Xp+ymyxXE2t9k6TJlIs= Subject key identifier: B1:FB:3C:D2:07:A8:62:66:B0:80:98:90:DB:1B:F6:EE:6A:B3:2F:B2 Authority key identifier: 3C:6E:C0:9B:09:5F:A5:F5:13:61:51:08:A5:44:7C:AC:B7:1A:B1:A1 Certificate issuer: /CN=A917E4BA/serialNumber=3C6EC09B095FA5F513615108A5447CACB71AB1A1 Certificate serial: 0AE7 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/PG7AmwlfpfUTYVEIpUR8rLcasaE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917E4BA/C952AC9E52DC11EA82601B0FC4F9AE02/PG7AmwlfpfUTYVEIpUR8rLcasaE.mft Manifest number: 0AE1 Signing time: Fri 22 Aug 2025 19:33:17 +0000 Manifest this update: Fri 22 Aug 2025 19:33:17 +0000 Manifest next update: Fri 29 Aug 2025 19:33:17 +0000 Files and hashes: 1: PG7AmwlfpfUTYVEIpUR8rLcasaE.crl (hash: c8H/mm1xWp/9kT0gF1PPYCRZ3fhx96G91B6JrW/V8mY=) 2: 66F91334ED4911ED9A90391BC4F9AE02.roa (hash: DjUQP/nHkYcgIi1MW0o7fyHbM5U6rKdni2IBdc+KG/Q=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917E4BA/C952AC9E52DC11EA82601B0FC4F9AE02/PG7AmwlfpfUTYVEIpUR8rLcasaE.crl rsync://rpki.apnic.net/member_repository/A917E4BA/C952AC9E52DC11EA82601B0FC4F9AE02/PG7AmwlfpfUTYVEIpUR8rLcasaE.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/PG7AmwlfpfUTYVEIpUR8rLcasaE.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Aug 2025 19:33:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2791 (0xae7) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917E4BA, serialNumber=3C6EC09B095FA5F513615108A5447CACB71AB1A1 Validity Not Before: Aug 22 19:33:17 2025 GMT Not After : Aug 29 19:33:17 2025 GMT Subject: CN=68a8c5fd-01b9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a7:2d:6a:2c:5f:63:e2:64:b3:44:85:34:ee:02: e9:3c:40:13:86:85:28:87:69:42:89:37:2e:72:60: eb:dd:f0:60:89:be:0a:6f:f8:bd:dc:6e:f6:3d:1b: e0:3b:3b:ad:21:7a:00:40:87:90:46:6e:21:61:81: c2:f2:ee:e3:3c:96:2b:b6:2d:c8:03:f3:4b:f4:d7: 3c:03:3d:3e:9c:bf:9a:be:1e:cf:a3:98:af:83:27: 28:64:10:46:a0:0b:a1:8e:86:57:40:c7:74:62:b1: 78:ff:5c:cb:e8:3f:4c:7d:54:a4:38:1f:b4:5d:80: b6:ae:4b:1a:22:27:12:9e:78:c2:a6:11:ae:1c:ad: 3f:a1:46:94:47:4d:fc:a4:9b:b7:c9:0d:0f:7d:91: 23:40:ac:c2:68:b9:7b:07:f1:a2:25:d8:08:fb:b1: 97:b3:50:8e:cc:6f:9c:59:74:67:86:85:7b:db:36: b7:f5:a0:13:93:c3:ac:5f:b1:3a:9f:18:e1:11:ba: 00:f5:6c:14:f3:22:54:1b:ef:0a:07:79:5d:de:0b: 75:0e:e7:94:f0:5b:84:0a:2e:72:d1:ef:4e:92:4b: 75:b7:08:00:5f:4b:55:1d:9c:fa:8a:30:da:7f:48: 67:c1:9e:cf:1d:54:82:57:15:ef:4b:9a:82:5e:66: a2:1b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B1:FB:3C:D2:07:A8:62:66:B0:80:98:90:DB:1B:F6:EE:6A:B3:2F:B2 X509v3 Authority Key Identifier: keyid:3C:6E:C0:9B:09:5F:A5:F5:13:61:51:08:A5:44:7C:AC:B7:1A:B1:A1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917E4BA/C952AC9E52DC11EA82601B0FC4F9AE02/PG7AmwlfpfUTYVEIpUR8rLcasaE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/PG7AmwlfpfUTYVEIpUR8rLcasaE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917E4BA/C952AC9E52DC11EA82601B0FC4F9AE02/PG7AmwlfpfUTYVEIpUR8rLcasaE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 9a:50:53:4a:eb:52:7e:d8:30:4b:5f:fb:1f:f4:c7:33:62:be: 48:c2:4b:65:7e:17:1a:95:93:53:68:59:aa:59:f0:9d:79:12: a1:a2:73:ff:78:4f:0f:56:bb:b8:48:4a:ca:51:57:ec:22:fc: 55:49:da:fc:89:69:86:3b:0d:a0:e0:de:05:2e:6f:4a:95:1f: 76:cd:5a:64:23:9e:b0:50:e6:71:7e:af:2d:cd:77:46:aa:c4: 39:d8:18:fe:5d:c9:4f:28:b6:79:de:33:4e:97:d8:31:a6:e1: 58:76:12:d7:a3:ec:af:f4:3d:48:d2:55:df:37:89:2b:d0:56: 88:fb:5e:7a:af:3f:4c:ee:b1:d3:3e:85:27:ea:11:96:4d:bb: cd:1d:7c:0b:a0:f1:cb:b5:76:a5:ff:80:b6:15:6a:73:ff:e8: b6:41:02:41:e2:1f:e0:4b:f7:16:02:9c:ca:05:d9:7a:c0:0f: 6a:6f:a0:e7:68:d5:38:c1:7a:52:53:b5:87:11:e5:c8:fa:23: d2:b8:25:40:d0:be:ad:b7:46:ff:78:16:1c:35:30:c0:ee:fb: 35:6b:b4:2b:8e:e5:73:d6:11:b6:de:7a:87:12:a2:82:b2:0e: dc:bd:60:4a:d0:97:4d:ef:04:08:40:61:ef:c6:b2:58:f7:93: 45:6d:3d:3b -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCucwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0U0QkExMTAvBgNVBAUTKDNDNkVDMDlCMDk1RkE1RjUxMzYxNTEwOEE1NDQ3Q0FD QjcxQUIxQTEwHhcNMjUwODIyMTkzMzE3WhcNMjUwODI5MTkzMzE3WjAYMRYwFAYD VQQDEw02OGE4YzVmZC0wMWI5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEApy1qLF9j4mSzRIU07gLpPEAThoUoh2lCiTcucmDr3fBgib4Kb/i93G72PRvg OzutIXoAQIeQRm4hYYHC8u7jPJYrti3IA/NL9Nc8Az0+nL+avh7Po5ivgycoZBBG oAuhjoZXQMd0YrF4/1zL6D9MfVSkOB+0XYC2rksaIicSnnjCphGuHK0/oUaUR038 pJu3yQ0PfZEjQKzCaLl7B/GiJdgI+7GXs1COzG+cWXRnhoV72za39aATk8OsX7E6 nxjhEboA9WwU8yJUG+8KB3ld3gt1DueU8FuECi5y0e9Okkt1twgAX0tVHZz6ijDa f0hnwZ7PHVSCVxXvS5qCXmaiGwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFLH7PNIH qGJmsICYkNsb9u5qsy+yMB8GA1UdIwQYMBaAFDxuwJsJX6X1E2FRCKVEfKy3GrGh MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3RTRCQS9DOTUyQUM5RTUy REMxMUVBODI2MDFCMEZDNEY5QUUwMi9QRzdBbXdsZnBmVVRZVkVJcFVSOHJMY2Fz YUUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL1BHN0Ftd2xmcGZVVFlWRUlwVVI4ckxjYXNhRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 RTRCQS9DOTUyQUM5RTUyREMxMUVBODI2MDFCMEZDNEY5QUUwMi9QRzdBbXdsZnBm VVRZVkVJcFVSOHJMY2FzYUUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCaUFNK61J+2DBLX/sf9MczYr5IwktlfhcalZNTaFmqWfCdeRKhonP/ eE8PVru4SErKUVfsIvxVSdr8iWmGOw2g4N4FLm9KlR92zVpkI56wUOZxfq8tzXdG qsQ52Bj+XclPKLZ53jNOl9gxpuFYdhLXo+yv9D1I0lXfN4kr0FaI+156rz9M7rHT PoUn6hGWTbvNHXwLoPHLtXal/4C2FWpz/+i2QQJB4h/gS/cWApzKBdl6wA9qb6Dn aNU4wXpSU7WHEeXI+iPSuCVA0L6tt0b/eBYcNTDA7vs1a7QrjuVz1hG23nqHEqKC sg7cvWBK0JdN7wQIQGHvxrJY95NFbT07 -----END CERTIFICATE-----Generated at Sat Aug 23 19:38:47 2025 by rpki-client