$ rpki-client -vvf rpki.apnic.net/member_repository/A914D2E1/DA86B616BA6E11EDB9CEA43AC4F9AE02/PGUVJLT5GjUNHs-7pmyr0bSPt8U.mft File: PGUVJLT5GjUNHs-7pmyr0bSPt8U.mft (raw, json) Hash identifier: dQl/MUdZygNXlmSdTKB1YQr/Y7osboCC3HPqeDivrLo= Subject key identifier: 6D:C4:10:41:D1:8D:8F:C3:F7:91:E2:B1:9A:DA:A6:C5:EE:C0:ED:F1 Authority key identifier: 3C:65:15:24:B4:F9:1A:35:0D:1E:CF:BB:A6:6C:AB:D1:B4:8F:B7:C5 Certificate issuer: /CN=A914D2E1/serialNumber=3C651524B4F91A350D1ECFBBA66CABD1B48FB7C5 Certificate serial: 01E1 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PGUVJLT5GjUNHs-7pmyr0bSPt8U.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914D2E1/DA86B616BA6E11EDB9CEA43AC4F9AE02/PGUVJLT5GjUNHs-7pmyr0bSPt8U.mft Manifest number: 01DA Signing time: Wed 13 Aug 2025 03:20:19 +0000 Manifest this update: Wed 13 Aug 2025 03:20:18 +0000 Manifest next update: Wed 20 Aug 2025 03:20:18 +0000 Files and hashes: 1: PGUVJLT5GjUNHs-7pmyr0bSPt8U.crl (hash: 7mtvdnm4dxAslsien6jVeMw9XKttQn8tJ4eMFry80tw=) 2: BCB2FFCEBA7211EDB0F5AE53C4F9AE02.roa (hash: 1FbgogUKsuIfXEKaTsa4RV0e3CNtC1HQdrvDxgG3fiQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914D2E1/DA86B616BA6E11EDB9CEA43AC4F9AE02/PGUVJLT5GjUNHs-7pmyr0bSPt8U.crl rsync://rpki.apnic.net/member_repository/A914D2E1/DA86B616BA6E11EDB9CEA43AC4F9AE02/PGUVJLT5GjUNHs-7pmyr0bSPt8U.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PGUVJLT5GjUNHs-7pmyr0bSPt8U.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 20 Aug 2025 03:20:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 481 (0x1e1) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914D2E1, serialNumber=3C651524B4F91A350D1ECFBBA66CABD1B48FB7C5 Validity Not Before: Aug 13 03:20:18 2025 GMT Not After : Aug 20 03:20:18 2025 GMT Subject: CN=689c0473-b16f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ce:dc:fd:10:7c:02:09:3c:44:c1:3b:64:80:f7: 29:a0:95:4b:6a:84:bf:0e:12:71:d1:08:f5:91:f6: e6:2f:52:bd:d1:97:f9:41:0c:e4:02:c3:38:90:21: f3:21:f6:0a:f1:d8:f9:74:5b:da:4a:12:5c:44:96: 7d:ec:3f:87:2b:09:dc:7a:5f:84:49:c7:3f:53:29: 1b:d1:f6:91:40:30:b7:7e:ab:e6:72:76:5b:ff:35: 0b:f1:43:b5:40:16:8d:74:11:d9:d9:e2:cd:70:e2: 22:5e:d6:b3:f2:07:21:15:ef:b0:a5:8a:c7:ea:02: 1e:e1:54:0a:15:5f:7a:4f:69:72:3e:85:89:45:98: 15:9b:68:04:2b:e0:68:5c:1c:55:2d:2e:e2:57:d6: 5f:bc:9c:51:a8:e8:cc:72:00:71:19:67:a2:88:fd: 78:0f:79:dd:4d:f2:97:b6:63:52:85:ba:fa:27:bf: 36:74:c8:a3:50:ee:3f:e9:75:08:e3:3a:6b:38:4a: 04:bb:10:13:a2:97:84:c6:9e:48:d7:d4:c6:bd:74: d8:e5:32:19:e0:a5:12:31:31:66:92:3c:43:a0:56: 15:0f:c3:ca:09:9a:36:14:79:60:24:d3:7f:a0:0b: a5:69:ff:31:6a:79:19:f7:08:47:b8:2c:7a:02:a9: c0:67 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6D:C4:10:41:D1:8D:8F:C3:F7:91:E2:B1:9A:DA:A6:C5:EE:C0:ED:F1 X509v3 Authority Key Identifier: keyid:3C:65:15:24:B4:F9:1A:35:0D:1E:CF:BB:A6:6C:AB:D1:B4:8F:B7:C5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914D2E1/DA86B616BA6E11EDB9CEA43AC4F9AE02/PGUVJLT5GjUNHs-7pmyr0bSPt8U.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PGUVJLT5GjUNHs-7pmyr0bSPt8U.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914D2E1/DA86B616BA6E11EDB9CEA43AC4F9AE02/PGUVJLT5GjUNHs-7pmyr0bSPt8U.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 55:92:c6:89:0f:66:07:35:b4:70:6a:60:af:9b:72:fc:4d:e6: f2:f3:80:aa:9e:3a:c4:c7:d3:ee:0b:16:86:67:86:e4:c8:f4: 41:1f:c4:da:9b:8b:e5:d1:9a:0c:59:43:bc:d8:de:b4:d0:9f: 73:f3:04:8d:28:14:cd:13:c1:f3:cf:95:35:69:db:b7:5b:3c: e9:00:e5:4f:de:3b:41:32:36:94:5c:48:37:db:e9:71:3d:43: a0:a7:c5:6d:62:3b:58:89:29:6e:f2:25:58:3c:a8:89:67:ec: a8:21:7b:9c:58:6b:1f:ae:31:88:0b:7a:18:86:c7:87:b7:a9: 32:ae:73:af:84:f2:ff:4f:81:8a:af:2c:fd:aa:d1:f5:ed:69: 61:e9:28:ff:b1:fb:66:8d:a1:b4:58:dc:d8:ca:a9:0a:67:0a: 90:98:d9:09:cc:fe:3b:b1:2a:bd:db:b1:26:b4:25:65:3c:95: 7a:14:a8:e7:b1:01:56:7d:4a:11:f8:7e:7f:6f:a6:35:df:21: 8b:2c:5c:ef:c2:68:0e:d5:e9:0f:a7:0d:5e:47:33:df:43:38: 8a:dc:81:9f:18:3d:6e:ec:21:bc:8e:18:9e:c8:20:eb:96:73: f4:37:13:53:4c:56:98:cf:13:5c:94:6a:3b:df:ec:45:3c:f2: 14:7e:85:18 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAeEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NEQyRTExMTAvBgNVBAUTKDNDNjUxNTI0QjRGOTFBMzUwRDFFQ0ZCQkE2NkNBQkQx QjQ4RkI3QzUwHhcNMjUwODEzMDMyMDE4WhcNMjUwODIwMDMyMDE4WjAYMRYwFAYD VQQDEw02ODljMDQ3My1iMTZmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAztz9EHwCCTxEwTtkgPcpoJVLaoS/DhJx0Qj1kfbmL1K90Zf5QQzkAsM4kCHz IfYK8dj5dFvaShJcRJZ97D+HKwncel+EScc/Uykb0faRQDC3fqvmcnZb/zUL8UO1 QBaNdBHZ2eLNcOIiXtaz8gchFe+wpYrH6gIe4VQKFV96T2lyPoWJRZgVm2gEK+Bo XBxVLS7iV9ZfvJxRqOjMcgBxGWeiiP14D3ndTfKXtmNShbr6J782dMijUO4/6XUI 4zprOEoEuxATopeExp5I19TGvXTY5TIZ4KUSMTFmkjxDoFYVD8PKCZo2FHlgJNN/ oAulaf8xankZ9whHuCx6AqnAZwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFG3EEEHR jY/D95HisZrapsXuwO3xMB8GA1UdIwQYMBaAFDxlFSS0+Ro1DR7Pu6Zsq9G0j7fF MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0RDJFMS9EQTg2QjYxNkJB NkUxMUVEQjlDRUE0M0FDNEY5QUUwMi9QR1VWSkxUNUdqVU5Icy03cG15cjBiU1B0 OFUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1BHVVZKTFQ1R2pVTkhzLTdwbXlyMGJTUHQ4VS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 RDJFMS9EQTg2QjYxNkJBNkUxMUVEQjlDRUE0M0FDNEY5QUUwMi9QR1VWSkxUNUdq VU5Icy03cG15cjBiU1B0OFUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBVksaJD2YHNbRwamCvm3L8Teby84CqnjrEx9PuCxaGZ4bkyPRBH8Ta m4vl0ZoMWUO82N600J9z8wSNKBTNE8Hzz5U1adu3WzzpAOVP3jtBMjaUXEg32+lx PUOgp8VtYjtYiSlu8iVYPKiJZ+yoIXucWGsfrjGIC3oYhseHt6kyrnOvhPL/T4GK ryz9qtH17Wlh6Sj/sftmjaG0WNzYyqkKZwqQmNkJzP47sSq927EmtCVlPJV6FKjn sQFWfUoR+H5/b6Y13yGLLFzvwmgO1ekPpw1eRzPfQziK3IGfGD1u7CG8jhieyCDr lnP0NxNTTFaYzxNclGo73+xFPPIUfoUY -----END CERTIFICATE-----Generated at Wed Aug 13 05:57:00 2025 by rpki-client