$ rpki-client -vvf rpki.apnic.net/member_repository/A9131EDD/210B43047BBF11EBA02A4339C4F9AE02/pGlL5HxPO8lIBdSjZqAHxpBwUS4.mft File: pGlL5HxPO8lIBdSjZqAHxpBwUS4.mft (raw, json) Hash identifier: PFZhsfYdNPmXXzEDeC1rFE7JVYAR8shCdXqAeVk4E90= Subject key identifier: 08:48:DF:DB:D5:6C:41:4C:B4:BB:D2:F7:85:7C:25:32:97:33:2E:95 Authority key identifier: A4:69:4B:E4:7C:4F:3B:C9:48:05:D4:A3:66:A0:07:C6:90:70:51:2E Certificate issuer: /CN=A9131EDD/serialNumber=A4694BE47C4F3BC94805D4A366A007C69070512E Certificate serial: 068B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pGlL5HxPO8lIBdSjZqAHxpBwUS4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9131EDD/210B43047BBF11EBA02A4339C4F9AE02/pGlL5HxPO8lIBdSjZqAHxpBwUS4.mft Manifest number: 0681 Signing time: Wed 18 Jun 2025 22:08:14 +0000 Manifest this update: Wed 18 Jun 2025 22:08:13 +0000 Manifest next update: Wed 25 Jun 2025 22:08:13 +0000 Files and hashes: 1: pGlL5HxPO8lIBdSjZqAHxpBwUS4.crl (hash: AAaedLpT9xZf+iomlnxfuvonjTXNuTIEZ9brLO8tt98=) 2: E84DCBC422D211EDAF1F924EC4F9AE02.roa (hash: DSJZavi/LmOaDs/V5ru83cEJvd41YvTKAbFr9jXt5Xk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9131EDD/210B43047BBF11EBA02A4339C4F9AE02/pGlL5HxPO8lIBdSjZqAHxpBwUS4.crl rsync://rpki.apnic.net/member_repository/A9131EDD/210B43047BBF11EBA02A4339C4F9AE02/pGlL5HxPO8lIBdSjZqAHxpBwUS4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pGlL5HxPO8lIBdSjZqAHxpBwUS4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 25 Jun 2025 22:08:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1675 (0x68b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9131EDD, serialNumber=A4694BE47C4F3BC94805D4A366A007C69070512E Validity Not Before: Jun 18 22:08:13 2025 GMT Not After : Jun 25 22:08:13 2025 GMT Subject: CN=685338cd-09b7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ce:a9:06:f7:4a:87:c1:c1:fb:ee:09:73:f5:e3: 32:75:79:56:31:db:d1:4f:c0:37:b3:04:89:1e:45: 7b:17:22:4a:f0:50:4c:36:88:2a:f7:16:76:f6:cd: bd:fa:5f:a4:c8:a8:56:d6:b9:fe:41:4f:e3:cd:42: eb:f5:60:4d:17:cd:74:83:f2:f3:12:e6:85:14:b8: 2b:1d:8d:2e:fc:8b:7a:21:d2:a5:3e:a1:8a:2c:e5: cd:bd:2b:06:ee:62:4a:a4:6a:ad:03:90:5c:57:bc: bd:8b:44:97:fa:09:1e:5c:62:88:a3:ce:6b:9c:e6: 72:9d:1e:63:55:8b:37:6b:c8:b3:6d:c9:e2:88:03: 91:59:42:15:81:9a:ea:df:fd:33:54:5b:e8:5d:16: 90:14:f9:14:58:88:8c:db:f6:43:95:b4:7c:70:5e: a8:41:b1:c4:16:54:06:14:9b:99:a6:98:c7:ed:11: 3c:a5:cd:59:3e:3d:b8:df:b3:db:de:c9:6a:5b:71: b9:83:2c:2c:eb:e5:d9:01:7a:20:cb:c2:25:7c:7e: 85:ae:74:19:9d:a8:d6:e3:48:74:e3:ab:26:a6:c2: e3:c2:10:d1:9e:5d:f0:b3:04:72:a4:96:58:cb:07: 3e:1a:4d:d1:28:38:54:c4:3d:49:62:bf:d6:db:f8: 32:ad Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 08:48:DF:DB:D5:6C:41:4C:B4:BB:D2:F7:85:7C:25:32:97:33:2E:95 X509v3 Authority Key Identifier: keyid:A4:69:4B:E4:7C:4F:3B:C9:48:05:D4:A3:66:A0:07:C6:90:70:51:2E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9131EDD/210B43047BBF11EBA02A4339C4F9AE02/pGlL5HxPO8lIBdSjZqAHxpBwUS4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pGlL5HxPO8lIBdSjZqAHxpBwUS4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9131EDD/210B43047BBF11EBA02A4339C4F9AE02/pGlL5HxPO8lIBdSjZqAHxpBwUS4.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 57:a5:e0:42:bf:22:94:c1:c9:34:ef:89:8f:17:c5:49:67:6c: 9d:ba:d2:e7:58:1c:48:b1:5b:be:4d:cd:67:77:af:cf:e8:04: aa:06:66:38:0b:fe:e6:9e:5d:f0:f0:f1:a3:31:2f:c0:3d:fb: 4a:22:74:bd:c0:6d:f9:21:f8:c7:77:40:53:29:3d:fb:48:ec: 18:28:4b:0f:e0:03:8f:b7:8a:67:a9:dc:3d:c2:09:7b:68:b7: 7d:12:07:ca:1b:aa:45:cc:3f:85:f0:4a:d2:e1:e4:0e:45:bd: 65:fc:db:82:bd:93:c2:6f:c7:28:e0:de:0d:72:f8:c8:bf:08: b4:96:54:d0:07:bf:1e:fb:94:dd:92:df:f2:62:9e:75:4d:7e: ac:97:b3:5a:11:35:a1:57:13:b8:21:bf:53:b5:b3:71:15:c4: 30:17:a0:23:dd:0f:62:7b:ca:8a:02:a9:5a:4c:bc:79:59:7a: 9e:4c:35:a3:33:f4:df:fd:57:72:47:e7:1e:ab:ef:f5:d4:4a: d3:66:16:23:4b:9d:4b:e1:86:2d:cd:c0:af:99:63:3f:2d:c9: a9:ab:6b:6e:a2:00:da:bd:04:2b:67:71:c5:66:ea:00:59:85: eb:f6:b4:e9:7e:a7:4a:1b:54:e4:19:c3:c9:8e:99:b8:d3:e0: eb:76:4b:cd -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBoswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MzFFREQxMTAvBgNVBAUTKEE0Njk0QkU0N0M0RjNCQzk0ODA1RDRBMzY2QTAwN0M2 OTA3MDUxMkUwHhcNMjUwNjE4MjIwODEzWhcNMjUwNjI1MjIwODEzWjAYMRYwFAYD VQQDEw02ODUzMzhjZC0wOWI3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzqkG90qHwcH77glz9eMydXlWMdvRT8A3swSJHkV7FyJK8FBMNogq9xZ29s29 +l+kyKhW1rn+QU/jzULr9WBNF810g/LzEuaFFLgrHY0u/It6IdKlPqGKLOXNvSsG 7mJKpGqtA5BcV7y9i0SX+gkeXGKIo85rnOZynR5jVYs3a8izbcniiAORWUIVgZrq 3/0zVFvoXRaQFPkUWIiM2/ZDlbR8cF6oQbHEFlQGFJuZppjH7RE8pc1ZPj2437Pb 3slqW3G5gyws6+XZAXogy8IlfH6FrnQZnajW40h046smpsLjwhDRnl3wswRypJZY ywc+Gk3RKDhUxD1JYr/W2/gyrQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFAhI39vV bEFMtLvS94V8JTKXMy6VMB8GA1UdIwQYMBaAFKRpS+R8TzvJSAXUo2agB8aQcFEu MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzMUVERC8yMTBCNDMwNDdC QkYxMUVCQTAyQTQzMzlDNEY5QUUwMi9wR2xMNUh4UE84bElCZFNqWnFBSHhwQndV UzQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3BHbEw1SHhQTzhsSUJkU2pacUFIeHBCd1VTNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz MUVERC8yMTBCNDMwNDdCQkYxMUVCQTAyQTQzMzlDNEY5QUUwMi9wR2xMNUh4UE84 bElCZFNqWnFBSHhwQndVUzQubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBXpeBCvyKUwck074mPF8VJZ2ydutLnWBxIsVu+Tc1nd6/P6ASqBmY4 C/7mnl3w8PGjMS/APftKInS9wG35IfjHd0BTKT37SOwYKEsP4AOPt4pnqdw9wgl7 aLd9EgfKG6pFzD+F8ErS4eQORb1l/NuCvZPCb8co4N4NcvjIvwi0llTQB78e+5Td kt/yYp51TX6sl7NaETWhVxO4Ib9TtbNxFcQwF6Aj3Q9ie8qKAqlaTLx5WXqeTDWj M/Tf/VdyR+ceq+/11ErTZhYjS51L4YYtzcCvmWM/Lcmpq2tuogDavQQrZ3HFZuoA WYXr9rTpfqdKG1TkGcPJjpm40+DrdkvN -----END CERTIFICATE-----Generated at Fri Jun 20 16:37:48 2025 by rpki-client