$ rpki-client -vvf rpki.apnic.net/member_repository/A917E4BA/C952AC9E52DC11EA82601B0FC4F9AE02/PG7AmwlfpfUTYVEIpUR8rLcasaE.mft File: PG7AmwlfpfUTYVEIpUR8rLcasaE.mft (raw, json) Hash identifier: ooB5YQNgYWuC1sxwq7r//UGTzB9RX/Tu+ybbkdfnsXw= Subject key identifier: EF:0B:46:6D:54:18:DA:3B:DA:DF:1B:51:97:C2:30:07:AD:2A:82:75 Authority key identifier: 3C:6E:C0:9B:09:5F:A5:F5:13:61:51:08:A5:44:7C:AC:B7:1A:B1:A1 Certificate issuer: /CN=A917E4BA/serialNumber=3C6EC09B095FA5F513615108A5447CACB71AB1A1 Certificate serial: 0AB2 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/PG7AmwlfpfUTYVEIpUR8rLcasaE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917E4BA/C952AC9E52DC11EA82601B0FC4F9AE02/PG7AmwlfpfUTYVEIpUR8rLcasaE.mft Manifest number: 0AAD Signing time: Wed 14 May 2025 19:38:30 +0000 Manifest this update: Wed 14 May 2025 19:38:29 +0000 Manifest next update: Wed 21 May 2025 19:38:29 +0000 Files and hashes: 1: PG7AmwlfpfUTYVEIpUR8rLcasaE.crl (hash: 6t2z+ya16X7X8L4DRxtrcXvTTKnkzrsDEdJZHdiPRso=) 2: 66F91334ED4911ED9A90391BC4F9AE02.roa (hash: 4M2o1uWpD8HZNRKume3UqAzLmAnLuLXQtM8OeJIWFiY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917E4BA/C952AC9E52DC11EA82601B0FC4F9AE02/PG7AmwlfpfUTYVEIpUR8rLcasaE.crl rsync://rpki.apnic.net/member_repository/A917E4BA/C952AC9E52DC11EA82601B0FC4F9AE02/PG7AmwlfpfUTYVEIpUR8rLcasaE.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/PG7AmwlfpfUTYVEIpUR8rLcasaE.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 21 May 2025 19:38:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2738 (0xab2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917E4BA, serialNumber=3C6EC09B095FA5F513615108A5447CACB71AB1A1 Validity Not Before: May 14 19:38:29 2025 GMT Not After : May 21 19:38:29 2025 GMT Subject: CN=6824f136-0856 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:02:11:db:ea:e7:ca:5d:18:ad:6e:6e:0b:ba: b2:6a:83:3a:d8:50:91:8e:31:2c:cb:fc:dc:73:4f: 9d:e5:80:0e:48:58:47:ce:e1:0c:1d:d7:87:01:83: 07:08:7e:f5:92:c6:3a:e2:59:0a:93:58:87:13:b4: 3c:b4:44:a4:10:53:6a:9f:c7:c6:29:4e:0c:78:23: eb:2e:d6:61:1d:98:2f:43:c5:03:03:d2:42:38:21: e6:63:ac:b0:d2:5b:0a:29:4a:66:56:d0:40:a0:61: 5e:2a:26:f6:08:2c:4d:2f:0a:65:ef:4b:f3:05:80: ef:b1:81:de:90:0e:05:dd:d4:93:27:75:19:2b:cb: 23:57:f4:41:26:61:6f:38:a3:94:55:73:dd:59:f9: 4f:18:c0:ff:38:38:ed:9b:c1:58:47:c7:4f:48:5e: 7b:82:3a:83:76:15:dd:fb:39:75:8e:3f:17:a4:4d: 64:ea:d3:76:51:13:b4:bd:64:40:64:0e:5d:d0:ce: ca:d6:53:9d:17:9e:43:7b:48:4e:c9:93:a2:b1:bc: 63:af:bc:5a:7d:28:63:fd:8b:2d:41:1c:35:e0:71: 2a:dd:dc:71:76:01:46:3f:43:d6:d0:19:a9:1d:77: 01:12:c8:ee:cf:33:d3:38:c8:2d:10:ce:b1:64:8a: cd:85 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EF:0B:46:6D:54:18:DA:3B:DA:DF:1B:51:97:C2:30:07:AD:2A:82:75 X509v3 Authority Key Identifier: keyid:3C:6E:C0:9B:09:5F:A5:F5:13:61:51:08:A5:44:7C:AC:B7:1A:B1:A1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917E4BA/C952AC9E52DC11EA82601B0FC4F9AE02/PG7AmwlfpfUTYVEIpUR8rLcasaE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/PG7AmwlfpfUTYVEIpUR8rLcasaE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917E4BA/C952AC9E52DC11EA82601B0FC4F9AE02/PG7AmwlfpfUTYVEIpUR8rLcasaE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 7c:48:4a:8f:79:3b:d5:e0:6e:c5:7a:a0:e2:70:e7:7e:63:15: 08:f3:7c:6b:e2:d8:fd:11:90:75:8b:d5:9b:d8:e7:dc:3b:a6: 20:8c:97:9c:71:81:97:97:5d:cc:5c:81:2b:49:d6:6a:2e:a5: ae:4b:70:29:19:c4:fa:ff:68:85:84:6b:d8:48:a6:54:3f:a1: e1:e4:cc:9b:af:ce:ae:b5:c7:06:9e:e9:8e:2b:a2:a9:dc:de: 2c:03:20:06:2c:7c:7d:02:1f:ce:c1:ea:d0:a3:4f:1f:9f:a0: b2:10:27:3f:8a:d4:96:dd:dd:ee:b9:f9:a0:94:c2:63:af:bc: 93:d5:54:f1:ae:8c:24:c3:1a:af:c8:a1:8d:52:2c:bf:06:cd: 13:a9:56:9d:2b:9e:dd:61:11:90:da:d3:b0:ea:9f:ab:76:22: cc:33:a3:3c:5b:fe:30:af:8d:d8:a0:0a:49:28:41:21:b3:44: 70:81:41:1b:a4:a8:73:19:3d:cd:a6:63:87:4d:c8:fe:ac:bd: 97:64:94:f1:18:05:1d:af:ff:96:73:ca:fa:f9:ce:5c:a6:22: 62:9b:66:ab:59:6a:dc:2d:f3:a1:8d:3e:e1:2f:35:42:2a:41: 80:ca:3f:9a:6d:30:55:d5:dc:d3:6a:80:58:76:87:0c:d4:16: b2:9a:e3:67 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCrIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0U0QkExMTAvBgNVBAUTKDNDNkVDMDlCMDk1RkE1RjUxMzYxNTEwOEE1NDQ3Q0FD QjcxQUIxQTEwHhcNMjUwNTE0MTkzODI5WhcNMjUwNTIxMTkzODI5WjAYMRYwFAYD VQQDEw02ODI0ZjEzNi0wODU2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwwIR2+rnyl0YrW5uC7qyaoM62FCRjjEsy/zcc0+d5YAOSFhHzuEMHdeHAYMH CH71ksY64lkKk1iHE7Q8tESkEFNqn8fGKU4MeCPrLtZhHZgvQ8UDA9JCOCHmY6yw 0lsKKUpmVtBAoGFeKib2CCxNLwpl70vzBYDvsYHekA4F3dSTJ3UZK8sjV/RBJmFv OKOUVXPdWflPGMD/ODjtm8FYR8dPSF57gjqDdhXd+zl1jj8XpE1k6tN2URO0vWRA ZA5d0M7K1lOdF55De0hOyZOisbxjr7xafShj/YstQRw14HEq3dxxdgFGP0PW0Bmp HXcBEsjuzzPTOMgtEM6xZIrNhQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFO8LRm1U GNo72t8bUZfCMAetKoJ1MB8GA1UdIwQYMBaAFDxuwJsJX6X1E2FRCKVEfKy3GrGh MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3RTRCQS9DOTUyQUM5RTUy REMxMUVBODI2MDFCMEZDNEY5QUUwMi9QRzdBbXdsZnBmVVRZVkVJcFVSOHJMY2Fz YUUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL1BHN0Ftd2xmcGZVVFlWRUlwVVI4ckxjYXNhRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 RTRCQS9DOTUyQUM5RTUyREMxMUVBODI2MDFCMEZDNEY5QUUwMi9QRzdBbXdsZnBm VVRZVkVJcFVSOHJMY2FzYUUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB8SEqPeTvV4G7FeqDicOd+YxUI83xr4tj9EZB1i9Wb2OfcO6YgjJec cYGXl13MXIErSdZqLqWuS3ApGcT6/2iFhGvYSKZUP6Hh5Mybr86utccGnumOK6Kp 3N4sAyAGLHx9Ah/OwerQo08fn6CyECc/itSW3d3uufmglMJjr7yT1VTxrowkwxqv yKGNUiy/Bs0TqVadK57dYRGQ2tOw6p+rdiLMM6M8W/4wr43YoApJKEEhs0RwgUEb pKhzGT3NpmOHTcj+rL2XZJTxGAUdr/+Wc8r6+c5cpiJim2arWWrcLfOhjT7hLzVC KkGAyj+abTBV1dzTaoBYdocM1BaymuNn -----END CERTIFICATE-----Generated at Thu May 15 10:09:41 2025 by rpki-client