$ rpki-client -vvf rpki.apnic.net/member_repository/A914D2E1/DA86B616BA6E11EDB9CEA43AC4F9AE02/PGUVJLT5GjUNHs-7pmyr0bSPt8U.mft File: PGUVJLT5GjUNHs-7pmyr0bSPt8U.mft (raw, json) Hash identifier: NB9rDcj4nD9Cang8fsJ20JPDvBTZ3WfsXoqO00DQ51I= Subject key identifier: ED:82:11:2F:F4:22:9A:06:6E:94:8A:29:9F:60:CF:9F:97:A2:5D:5D Authority key identifier: 3C:65:15:24:B4:F9:1A:35:0D:1E:CF:BB:A6:6C:AB:D1:B4:8F:B7:C5 Certificate issuer: /CN=A914D2E1/serialNumber=3C651524B4F91A350D1ECFBBA66CABD1B48FB7C5 Certificate serial: 01C2 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PGUVJLT5GjUNHs-7pmyr0bSPt8U.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914D2E1/DA86B616BA6E11EDB9CEA43AC4F9AE02/PGUVJLT5GjUNHs-7pmyr0bSPt8U.mft Manifest number: 01BB Signing time: Fri 13 Jun 2025 02:14:50 +0000 Manifest this update: Fri 13 Jun 2025 02:14:50 +0000 Manifest next update: Fri 20 Jun 2025 02:14:50 +0000 Files and hashes: 1: PGUVJLT5GjUNHs-7pmyr0bSPt8U.crl (hash: Z6sNiC52JLHvC1uo2O7pc477NaePdO9mjajBTbAYdWw=) 2: BCB2FFCEBA7211EDB0F5AE53C4F9AE02.roa (hash: 1FbgogUKsuIfXEKaTsa4RV0e3CNtC1HQdrvDxgG3fiQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914D2E1/DA86B616BA6E11EDB9CEA43AC4F9AE02/PGUVJLT5GjUNHs-7pmyr0bSPt8U.crl rsync://rpki.apnic.net/member_repository/A914D2E1/DA86B616BA6E11EDB9CEA43AC4F9AE02/PGUVJLT5GjUNHs-7pmyr0bSPt8U.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PGUVJLT5GjUNHs-7pmyr0bSPt8U.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 20 Jun 2025 02:14:49 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 450 (0x1c2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914D2E1, serialNumber=3C651524B4F91A350D1ECFBBA66CABD1B48FB7C5 Validity Not Before: Jun 13 02:14:50 2025 GMT Not After : Jun 20 02:14:50 2025 GMT Subject: CN=684b899a-e71b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e3:f1:9d:27:bc:6a:8b:01:48:3e:64:bf:81:04: a0:0f:a3:f2:cb:b1:00:d5:14:50:66:be:41:10:55: 79:2a:04:72:90:07:bd:df:9f:1a:7e:fa:ed:6a:33: 20:93:0c:1b:ea:ae:9e:1b:2b:f9:c4:68:3f:98:d8: 07:06:14:33:fc:de:1d:23:06:df:2e:df:60:fa:8c: 97:b2:6b:e7:94:fb:9c:1a:03:a8:33:0e:96:ee:36: bc:90:83:af:43:e4:e7:be:fe:d1:73:43:c2:a3:a6: bb:ae:b7:bc:d9:40:00:73:68:7f:8f:72:50:bc:30: da:50:f4:4f:c0:f5:ba:03:ec:29:36:6c:55:d2:b1: 48:b4:9e:3e:01:6d:4f:da:2e:3b:07:75:70:d7:c2: ab:b6:ab:cf:89:23:00:55:2b:b3:d6:6b:38:30:ce: 30:37:60:c4:91:d3:0b:ac:af:9c:26:5e:54:c9:45: c0:d0:1a:fc:39:26:ef:fa:3d:7c:c6:43:b3:e4:13: db:2f:bd:7b:2f:7f:dc:c7:b8:cf:d9:37:ae:50:5b: 43:ba:4a:be:02:7b:d2:5c:79:fd:0b:45:55:31:e2: 40:6b:fa:b7:20:10:ae:3b:04:e5:8f:d5:63:04:8f: 90:88:b7:ca:5c:3e:79:c9:f8:a2:cd:39:5b:e0:15: c6:57 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: ED:82:11:2F:F4:22:9A:06:6E:94:8A:29:9F:60:CF:9F:97:A2:5D:5D X509v3 Authority Key Identifier: keyid:3C:65:15:24:B4:F9:1A:35:0D:1E:CF:BB:A6:6C:AB:D1:B4:8F:B7:C5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914D2E1/DA86B616BA6E11EDB9CEA43AC4F9AE02/PGUVJLT5GjUNHs-7pmyr0bSPt8U.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PGUVJLT5GjUNHs-7pmyr0bSPt8U.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914D2E1/DA86B616BA6E11EDB9CEA43AC4F9AE02/PGUVJLT5GjUNHs-7pmyr0bSPt8U.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 76:8a:4b:88:ae:7b:ad:60:58:b3:4a:79:e5:fe:b3:2d:8d:7a: e0:0f:43:41:2e:84:9a:5f:a7:bd:98:34:bb:3c:8f:6b:70:9d: 40:89:ce:a3:e4:94:4f:5c:7a:b5:27:8c:83:2e:06:2f:45:d6: 4c:57:46:82:f1:ae:77:59:d1:87:e7:17:f8:6c:1d:96:e8:ef: 75:e9:1d:83:43:cb:a4:0e:49:7c:2e:4c:06:76:a9:fb:71:5d: 04:ae:94:0d:1c:be:1c:4b:8b:85:57:46:1b:13:24:0e:02:83: 1f:a7:6b:21:1b:16:1e:fe:ce:d7:fe:88:c5:fe:21:29:0f:e1: 75:de:64:c0:7a:c4:74:b0:27:06:62:56:74:16:84:f1:45:49: f3:de:7b:27:d2:f5:bc:8c:39:e7:f8:4f:09:5f:30:9b:bb:57: f9:eb:4c:1e:96:3e:4a:a7:64:ff:62:e4:cb:82:d6:92:89:52: 52:53:c7:a4:e1:90:b7:a9:4d:c1:72:ad:cb:49:ea:b3:a9:a5: c9:49:4d:68:b7:43:2b:9a:76:87:04:f7:6f:9e:74:4e:0e:09: 10:33:a5:5a:dd:4d:85:85:92:5e:f9:7b:d3:41:82:61:eb:cd: 74:a6:00:1b:3e:fc:1b:69:4a:9b:fa:23:9a:2c:48:49:7d:81: 81:6f:46:8b -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAcIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NEQyRTExMTAvBgNVBAUTKDNDNjUxNTI0QjRGOTFBMzUwRDFFQ0ZCQkE2NkNBQkQx QjQ4RkI3QzUwHhcNMjUwNjEzMDIxNDUwWhcNMjUwNjIwMDIxNDUwWjAYMRYwFAYD VQQDEw02ODRiODk5YS1lNzFiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA4/GdJ7xqiwFIPmS/gQSgD6Pyy7EA1RRQZr5BEFV5KgRykAe9358afvrtajMg kwwb6q6eGyv5xGg/mNgHBhQz/N4dIwbfLt9g+oyXsmvnlPucGgOoMw6W7ja8kIOv Q+Tnvv7Rc0PCo6a7rre82UAAc2h/j3JQvDDaUPRPwPW6A+wpNmxV0rFItJ4+AW1P 2i47B3Vw18KrtqvPiSMAVSuz1ms4MM4wN2DEkdMLrK+cJl5UyUXA0Br8OSbv+j18 xkOz5BPbL717L3/cx7jP2TeuUFtDukq+AnvSXHn9C0VVMeJAa/q3IBCuOwTlj9Vj BI+QiLfKXD55yfiizTlb4BXGVwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFO2CES/0 IpoGbpSKKZ9gz5+Xol1dMB8GA1UdIwQYMBaAFDxlFSS0+Ro1DR7Pu6Zsq9G0j7fF MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0RDJFMS9EQTg2QjYxNkJB NkUxMUVEQjlDRUE0M0FDNEY5QUUwMi9QR1VWSkxUNUdqVU5Icy03cG15cjBiU1B0 OFUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1BHVVZKTFQ1R2pVTkhzLTdwbXlyMGJTUHQ4VS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 RDJFMS9EQTg2QjYxNkJBNkUxMUVEQjlDRUE0M0FDNEY5QUUwMi9QR1VWSkxUNUdq VU5Icy03cG15cjBiU1B0OFUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB2ikuIrnutYFizSnnl/rMtjXrgD0NBLoSaX6e9mDS7PI9rcJ1Aic6j 5JRPXHq1J4yDLgYvRdZMV0aC8a53WdGH5xf4bB2W6O916R2DQ8ukDkl8LkwGdqn7 cV0ErpQNHL4cS4uFV0YbEyQOAoMfp2shGxYe/s7X/ojF/iEpD+F13mTAesR0sCcG YlZ0FoTxRUnz3nsn0vW8jDnn+E8JXzCbu1f560welj5Kp2T/YuTLgtaSiVJSU8ek 4ZC3qU3Bcq3LSeqzqaXJSU1ot0MrmnaHBPdvnnRODgkQM6Va3U2FhZJe+XvTQYJh 6810pgAbPvwbaUqb+iOaLEhJfYGBb0aL -----END CERTIFICATE-----Generated at Sat Jun 14 19:30:55 2025 by rpki-client