$ rpki-client -vvf rpki.apnic.net/member_repository/A917E4BA/C952AC9E52DC11EA82601B0FC4F9AE02/PG7AmwlfpfUTYVEIpUR8rLcasaE.mft File: PG7AmwlfpfUTYVEIpUR8rLcasaE.mft (raw, json) Hash identifier: zKrsdqiRZ2JBbfEYhgsROBHuZ2Zek0KytzSuOtULxHk= Subject key identifier: C8:A6:FB:ED:C1:AD:3E:F5:39:4C:6F:68:AC:FA:04:FE:51:56:E1:A3 Authority key identifier: 3C:6E:C0:9B:09:5F:A5:F5:13:61:51:08:A5:44:7C:AC:B7:1A:B1:A1 Certificate issuer: /CN=A917E4BA/serialNumber=3C6EC09B095FA5F513615108A5447CACB71AB1A1 Certificate serial: 0ACD Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/PG7AmwlfpfUTYVEIpUR8rLcasaE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917E4BA/C952AC9E52DC11EA82601B0FC4F9AE02/PG7AmwlfpfUTYVEIpUR8rLcasaE.mft Manifest number: 0AC7 Signing time: Wed 02 Jul 2025 19:41:54 +0000 Manifest this update: Wed 02 Jul 2025 19:41:54 +0000 Manifest next update: Wed 09 Jul 2025 19:41:54 +0000 Files and hashes: 1: PG7AmwlfpfUTYVEIpUR8rLcasaE.crl (hash: BxnjheKWdNJF6otGP3nwQ2MPg1at213L3991cfAG7+4=) 2: 66F91334ED4911ED9A90391BC4F9AE02.roa (hash: DjUQP/nHkYcgIi1MW0o7fyHbM5U6rKdni2IBdc+KG/Q=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917E4BA/C952AC9E52DC11EA82601B0FC4F9AE02/PG7AmwlfpfUTYVEIpUR8rLcasaE.crl rsync://rpki.apnic.net/member_repository/A917E4BA/C952AC9E52DC11EA82601B0FC4F9AE02/PG7AmwlfpfUTYVEIpUR8rLcasaE.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/PG7AmwlfpfUTYVEIpUR8rLcasaE.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 09 Jul 2025 19:41:53 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2765 (0xacd) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917E4BA, serialNumber=3C6EC09B095FA5F513615108A5447CACB71AB1A1 Validity Not Before: Jul 2 19:41:54 2025 GMT Not After : Jul 9 19:41:54 2025 GMT Subject: CN=68658b82-80af Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:81:13:af:bd:72:a0:80:1a:18:08:f8:85:cf: 46:e7:05:d0:19:83:10:ce:4d:43:4f:38:fd:d3:03: 0a:8a:d6:9a:28:11:fa:e2:bf:17:a7:e2:b3:94:d4: 3c:fa:65:5b:32:a0:52:d5:3e:8e:7f:e0:c6:81:8c: 28:b1:c7:0d:4e:3e:82:60:9c:6f:a2:5a:7b:55:41: af:43:0a:89:20:99:99:e2:d9:87:e4:44:f4:97:af: 3a:0c:d1:e6:c0:5a:a5:d8:cb:06:fe:53:d2:48:d0: 73:1d:0a:0b:1b:52:3b:ed:00:f7:51:96:13:ad:6f: 74:e0:b4:b3:07:31:55:a7:ed:61:1a:bc:5e:b7:9c: 6f:a8:7f:d9:a5:08:66:51:ff:f2:f1:a3:6b:4c:3c: 3f:16:4e:bd:0d:aa:6b:30:6c:5f:3a:bc:2d:4a:3d: 1b:1e:2d:7a:69:79:0e:0f:9e:3c:15:c7:f3:05:07: 9f:3a:17:f4:5f:d9:74:80:88:82:e6:93:f0:28:af: c4:3c:86:9d:0d:d1:b5:65:51:5d:27:b5:76:14:0b: 11:71:29:c9:2a:2d:a5:52:11:10:c2:7d:66:7a:56: 15:18:d8:08:ea:ae:2c:13:71:c0:f8:e9:d7:8d:b6: c2:ba:08:a7:97:65:bf:7a:b6:f7:22:c7:d5:3a:8c: ed:d1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C8:A6:FB:ED:C1:AD:3E:F5:39:4C:6F:68:AC:FA:04:FE:51:56:E1:A3 X509v3 Authority Key Identifier: keyid:3C:6E:C0:9B:09:5F:A5:F5:13:61:51:08:A5:44:7C:AC:B7:1A:B1:A1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917E4BA/C952AC9E52DC11EA82601B0FC4F9AE02/PG7AmwlfpfUTYVEIpUR8rLcasaE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/PG7AmwlfpfUTYVEIpUR8rLcasaE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917E4BA/C952AC9E52DC11EA82601B0FC4F9AE02/PG7AmwlfpfUTYVEIpUR8rLcasaE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 5c:98:6f:6d:de:a1:15:37:a4:0e:ee:10:56:78:7d:d0:87:29: 58:5b:d1:81:a0:8c:ec:0d:cb:cd:32:f2:40:ad:db:e4:89:4b: 07:f1:ff:7e:6a:54:90:f3:1e:d9:c7:c9:9e:53:c8:fb:bc:c7: 32:11:2c:a6:de:d9:8e:f9:54:c1:8c:de:90:aa:5b:a9:da:1e: 67:4b:3d:69:86:6f:f2:47:08:ff:1c:0c:d8:40:d7:65:50:5f: 25:dd:a4:85:8e:10:54:40:03:fe:86:16:e9:b9:1c:49:89:ab: a7:b2:ca:b3:2c:9d:b7:04:33:de:7d:10:b8:2e:55:e4:6a:45: 84:b5:44:89:f6:d2:d2:af:05:09:1b:bd:32:88:ec:f9:10:d5: 08:5e:c0:b5:f0:5e:30:7f:60:16:26:ce:44:07:da:42:29:7e: 62:a6:c8:18:77:c7:84:f5:7f:79:c6:e3:a9:c2:53:26:2e:b4: 7d:b2:e7:d6:b5:a1:e7:08:38:7a:ea:8c:04:a3:eb:2f:8e:b6: 60:79:77:16:87:67:bd:cf:30:d7:6e:54:f3:d4:89:58:59:c8: 2e:40:4e:d1:87:85:08:19:a2:4e:84:de:d5:b3:a7:67:f1:df: eb:a2:ee:98:32:d3:fa:d7:22:a6:41:20:68:22:28:46:aa:a9: dc:4a:d8:dc -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCs0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0U0QkExMTAvBgNVBAUTKDNDNkVDMDlCMDk1RkE1RjUxMzYxNTEwOEE1NDQ3Q0FD QjcxQUIxQTEwHhcNMjUwNzAyMTk0MTU0WhcNMjUwNzA5MTk0MTU0WjAYMRYwFAYD VQQDEw02ODY1OGI4Mi04MGFmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvYETr71yoIAaGAj4hc9G5wXQGYMQzk1DTzj90wMKitaaKBH64r8Xp+KzlNQ8 +mVbMqBS1T6Of+DGgYwosccNTj6CYJxvolp7VUGvQwqJIJmZ4tmH5ET0l686DNHm wFql2MsG/lPSSNBzHQoLG1I77QD3UZYTrW904LSzBzFVp+1hGrxet5xvqH/ZpQhm Uf/y8aNrTDw/Fk69DaprMGxfOrwtSj0bHi16aXkOD548FcfzBQefOhf0X9l0gIiC 5pPwKK/EPIadDdG1ZVFdJ7V2FAsRcSnJKi2lUhEQwn1melYVGNgI6q4sE3HA+OnX jbbCuginl2W/erb3IsfVOozt0QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFMim++3B rT71OUxvaKz6BP5RVuGjMB8GA1UdIwQYMBaAFDxuwJsJX6X1E2FRCKVEfKy3GrGh MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3RTRCQS9DOTUyQUM5RTUy REMxMUVBODI2MDFCMEZDNEY5QUUwMi9QRzdBbXdsZnBmVVRZVkVJcFVSOHJMY2Fz YUUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL1BHN0Ftd2xmcGZVVFlWRUlwVVI4ckxjYXNhRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 RTRCQS9DOTUyQUM5RTUyREMxMUVBODI2MDFCMEZDNEY5QUUwMi9QRzdBbXdsZnBm VVRZVkVJcFVSOHJMY2FzYUUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBcmG9t3qEVN6QO7hBWeH3QhylYW9GBoIzsDcvNMvJArdvkiUsH8f9+ alSQ8x7Zx8meU8j7vMcyESym3tmO+VTBjN6Qqlup2h5nSz1phm/yRwj/HAzYQNdl UF8l3aSFjhBUQAP+hhbpuRxJiaunssqzLJ23BDPefRC4LlXkakWEtUSJ9tLSrwUJ G70yiOz5ENUIXsC18F4wf2AWJs5EB9pCKX5ipsgYd8eE9X95xuOpwlMmLrR9sufW taHnCDh66owEo+svjrZgeXcWh2e9zzDXblTz1IlYWcguQE7Rh4UIGaJOhN7Vs6dn 8d/rou6YMtP61yKmQSBoIihGqqncStjc -----END CERTIFICATE-----Generated at Fri Jul 4 07:58:47 2025 by rpki-client