$ rpki-client -vvf rpki.apnic.net/member_repository/A91CED30/BE80C6A6AE1E11EEA7EA0A77C4F9AE02/PgzfiCrujHIh1YijxSYBjh1kyWg.mft File: PgzfiCrujHIh1YijxSYBjh1kyWg.mft (raw, json) Hash identifier: bWNmP4EiRHQxAb9hyUZfqVXVyDZqZbsq3MhJJoe2QkM= Subject key identifier: 44:1F:78:26:C1:25:64:3C:C8:7F:8D:F1:B3:70:DF:FB:F4:3D:BC:59 Authority key identifier: 3E:0C:DF:88:2A:EE:8C:72:21:D5:88:A3:C5:26:01:8E:1D:64:C9:68 Certificate issuer: /CN=A91CED30/serialNumber=3E0CDF882AEE8C7221D588A3C526018E1D64C968 Certificate serial: 011B Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/PgzfiCrujHIh1YijxSYBjh1kyWg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CED30/BE80C6A6AE1E11EEA7EA0A77C4F9AE02/PgzfiCrujHIh1YijxSYBjh1kyWg.mft Manifest number: 0118 Signing time: Thu 03 Jul 2025 05:00:12 +0000 Manifest this update: Thu 03 Jul 2025 05:00:11 +0000 Manifest next update: Thu 10 Jul 2025 05:00:11 +0000 Files and hashes: 1: PgzfiCrujHIh1YijxSYBjh1kyWg.crl (hash: yzHNZeewpVQXQ0qgaP0rbz3kTMPSLM470NnaY4qRKy4=) 2: 41E0B402AE1F11EE96A5C977C4F9AE02.roa (hash: 92n4boJHjJIj9KtZ2gabfQc0rIkNAgV+GGdiupr7NM8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CED30/BE80C6A6AE1E11EEA7EA0A77C4F9AE02/PgzfiCrujHIh1YijxSYBjh1kyWg.crl rsync://rpki.apnic.net/member_repository/A91CED30/BE80C6A6AE1E11EEA7EA0A77C4F9AE02/PgzfiCrujHIh1YijxSYBjh1kyWg.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/PgzfiCrujHIh1YijxSYBjh1kyWg.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 10 Jul 2025 03:15:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 283 (0x11b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CED30, serialNumber=3E0CDF882AEE8C7221D588A3C526018E1D64C968 Validity Not Before: Jul 3 05:00:11 2025 GMT Not After : Jul 10 05:00:11 2025 GMT Subject: CN=68660e5b-caf6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9c:ae:67:6f:50:cb:04:21:18:ec:0e:6e:78:c5: 8b:92:c4:fd:f0:3f:74:48:6c:51:66:8e:e5:7d:4a: e4:0f:55:83:a2:b4:bf:9a:ae:7e:e5:86:14:f9:65: 6b:f5:a1:9c:2a:06:9b:06:04:d8:62:87:78:1d:73: ef:b0:1c:02:f1:df:58:2a:2b:80:40:76:f9:2d:37: 8e:b0:a2:a6:d6:af:02:e1:ad:fe:e7:79:05:fe:35: 76:e9:1d:6a:5b:8a:f8:bc:01:de:2a:0c:a1:2b:88: 82:9f:6f:d6:9c:13:6a:a0:94:bf:f2:b6:31:ac:cd: e0:ba:3e:2b:df:10:65:78:38:c6:ec:8c:ca:f4:7f: db:60:71:91:7c:2f:72:a2:6d:16:d1:e7:04:66:cb: 34:fd:e4:dc:0d:d3:5d:ca:2b:af:f2:f1:ed:e7:34: 59:4d:cd:7e:52:14:0b:db:a8:13:81:e4:2f:b3:06: 37:4b:72:5b:8e:76:50:9c:87:5a:6e:50:89:ca:8a: c4:27:98:43:87:37:29:3f:cf:59:14:60:8c:a3:c3: 0c:49:c6:1d:33:54:cc:2c:44:c8:43:ac:b0:69:34: e1:74:fd:ec:40:c6:f3:b6:50:b1:c2:eb:8f:f7:10: e1:d1:c6:00:6d:af:57:5b:cc:b7:e6:96:97:89:97: 6e:97 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 44:1F:78:26:C1:25:64:3C:C8:7F:8D:F1:B3:70:DF:FB:F4:3D:BC:59 X509v3 Authority Key Identifier: keyid:3E:0C:DF:88:2A:EE:8C:72:21:D5:88:A3:C5:26:01:8E:1D:64:C9:68 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CED30/BE80C6A6AE1E11EEA7EA0A77C4F9AE02/PgzfiCrujHIh1YijxSYBjh1kyWg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/PgzfiCrujHIh1YijxSYBjh1kyWg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CED30/BE80C6A6AE1E11EEA7EA0A77C4F9AE02/PgzfiCrujHIh1YijxSYBjh1kyWg.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 4f:be:9b:af:69:57:c5:5e:56:59:2a:10:dc:82:ae:84:89:09: 86:c6:24:8a:75:d5:c1:c4:50:04:dc:97:32:76:04:d0:a9:7b: 56:a3:83:04:89:40:3d:03:53:28:07:f1:23:13:6a:6d:32:87: 68:a8:af:46:de:54:17:d4:90:c5:e7:c3:66:e8:ae:7f:fc:03: fb:84:72:15:e5:f6:1c:d3:4d:ce:d0:d5:13:2b:b2:37:3a:b8: 21:97:4d:f5:74:6e:8d:3f:1e:a3:5c:30:27:4f:07:d9:d3:3e: 37:ac:0e:40:f2:80:d4:3f:df:4b:91:6c:cc:17:b2:f5:9a:bc: cb:84:a1:06:51:c2:ff:7d:58:86:cb:41:25:44:0d:8f:66:b7: e0:a4:db:d6:d0:c8:22:8c:11:e4:26:72:cd:74:3f:cf:e0:75: 7f:fb:bf:47:d1:2e:9c:c1:32:da:a1:b7:07:b7:96:62:8c:b0: 23:33:bf:f3:98:21:88:36:04:03:1a:8a:65:36:31:bc:b6:2a: 95:d9:18:6e:34:40:26:3f:fd:76:0d:df:8a:2a:87:d8:13:b8: 25:32:97:99:82:2f:4f:df:a7:2a:a6:b2:b3:b3:8c:30:8c:8f: 98:85:8e:b0:0d:99:a9:b0:e9:7c:d4:02:12:11:03:52:f1:c3: 86:56:a1:cb -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICARswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Q0VEMzAxMTAvBgNVBAUTKDNFMENERjg4MkFFRThDNzIyMUQ1ODhBM0M1MjYwMThF MUQ2NEM5NjgwHhcNMjUwNzAzMDUwMDExWhcNMjUwNzEwMDUwMDExWjAYMRYwFAYD VQQDEw02ODY2MGU1Yi1jYWY2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAnK5nb1DLBCEY7A5ueMWLksT98D90SGxRZo7lfUrkD1WDorS/mq5+5YYU+WVr 9aGcKgabBgTYYod4HXPvsBwC8d9YKiuAQHb5LTeOsKKm1q8C4a3+53kF/jV26R1q W4r4vAHeKgyhK4iCn2/WnBNqoJS/8rYxrM3guj4r3xBleDjG7IzK9H/bYHGRfC9y om0W0ecEZss0/eTcDdNdyiuv8vHt5zRZTc1+UhQL26gTgeQvswY3S3JbjnZQnIda blCJyorEJ5hDhzcpP89ZFGCMo8MMScYdM1TMLETIQ6ywaTThdP3sQMbztlCxwuuP 9xDh0cYAba9XW8y35paXiZdulwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFEQfeCbB JWQ8yH+N8bNw3/v0PbxZMB8GA1UdIwQYMBaAFD4M34gq7oxyIdWIo8UmAY4dZMlo MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDRUQzMC9CRTgwQzZBNkFF MUUxMUVFQTdFQTBBNzdDNEY5QUUwMi9QZ3pmaUNydWpISWgxWWlqeFNZQmpoMWt5 V2cuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL1BnemZpQ3J1akhJaDFZaWp4U1lCamgxa3lXZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD RUQzMC9CRTgwQzZBNkFFMUUxMUVFQTdFQTBBNzdDNEY5QUUwMi9QZ3pmaUNydWpI SWgxWWlqeFNZQmpoMWt5V2cubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBPvpuvaVfFXlZZKhDcgq6EiQmGxiSKddXBxFAE3JcydgTQqXtWo4ME iUA9A1MoB/EjE2ptModoqK9G3lQX1JDF58Nm6K5//AP7hHIV5fYc003O0NUTK7I3 Orghl031dG6NPx6jXDAnTwfZ0z43rA5A8oDUP99LkWzMF7L1mrzLhKEGUcL/fViG y0ElRA2PZrfgpNvW0MgijBHkJnLNdD/P4HV/+79H0S6cwTLaobcHt5ZijLAjM7/z mCGINgQDGoplNjG8tiqV2RhuNEAmP/12Dd+KKofYE7glMpeZgi9P36cqprKzs4ww jI+YhY6wDZmpsOl81AISEQNS8cOGVqHL -----END CERTIFICATE-----Generated at Fri Jul 4 08:38:57 2025 by rpki-client