$ rpki-client -vvf rpki.apnic.net/member_repository/A914D2E1/DA86B616BA6E11EDB9CEA43AC4F9AE02/PGUVJLT5GjUNHs-7pmyr0bSPt8U.mft File: PGUVJLT5GjUNHs-7pmyr0bSPt8U.mft (raw, json) Hash identifier: 0DMos30stw3HKWM7Gf8LMk5OLn4VmeIsY4KBZSj0Txk= Subject key identifier: 06:BB:E5:14:D7:44:53:26:1E:91:9C:28:E3:A5:D7:C2:F2:71:E8:07 Authority key identifier: 3C:65:15:24:B4:F9:1A:35:0D:1E:CF:BB:A6:6C:AB:D1:B4:8F:B7:C5 Certificate issuer: /CN=A914D2E1/serialNumber=3C651524B4F91A350D1ECFBBA66CABD1B48FB7C5 Certificate serial: 01AA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PGUVJLT5GjUNHs-7pmyr0bSPt8U.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914D2E1/DA86B616BA6E11EDB9CEA43AC4F9AE02/PGUVJLT5GjUNHs-7pmyr0bSPt8U.mft Manifest number: 01A3 Signing time: Fri 25 Apr 2025 02:36:53 +0000 Manifest this update: Fri 25 Apr 2025 02:36:53 +0000 Manifest next update: Fri 02 May 2025 02:36:53 +0000 Files and hashes: 1: PGUVJLT5GjUNHs-7pmyr0bSPt8U.crl (hash: L40zOJlf10s8UcWmwX/uPHRDqUlbNIfsWMWrWsuKvNM=) 2: BCB2FFCEBA7211EDB0F5AE53C4F9AE02.roa (hash: 1FbgogUKsuIfXEKaTsa4RV0e3CNtC1HQdrvDxgG3fiQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914D2E1/DA86B616BA6E11EDB9CEA43AC4F9AE02/PGUVJLT5GjUNHs-7pmyr0bSPt8U.crl rsync://rpki.apnic.net/member_repository/A914D2E1/DA86B616BA6E11EDB9CEA43AC4F9AE02/PGUVJLT5GjUNHs-7pmyr0bSPt8U.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PGUVJLT5GjUNHs-7pmyr0bSPt8U.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 02 May 2025 02:36:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 426 (0x1aa) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914D2E1, serialNumber=3C651524B4F91A350D1ECFBBA66CABD1B48FB7C5 Validity Not Before: Apr 25 02:36:53 2025 GMT Not After : May 2 02:36:53 2025 GMT Subject: CN=680af545-839e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:2a:74:94:d1:9a:e1:80:09:1c:b6:c1:37:f5: db:2e:a6:11:7b:73:4d:31:4d:67:de:37:0a:3d:50: ad:ea:b5:5b:2b:26:2c:42:c5:52:3f:8f:4e:8f:73: 50:46:5a:f6:3a:b8:6f:bc:a0:0a:90:4d:58:eb:3c: a9:98:91:f2:e1:0a:a4:ee:a0:fb:b3:f6:21:01:c6: 00:54:83:e0:ed:e7:66:aa:ce:16:cd:36:58:e2:e1: 44:4a:a6:d0:a4:84:82:e4:83:0c:6d:d1:b2:b7:f2: fd:4b:7b:4f:c0:e2:e1:62:0a:16:ea:a7:b4:e0:5c: 2f:42:00:fc:87:13:0c:f9:23:47:72:95:11:34:75: 55:be:82:b9:da:67:60:a1:fe:d5:14:4c:28:27:e5: fe:60:97:a9:d8:5a:14:e4:6b:80:b0:ef:cb:0d:a0: 87:ec:d9:f4:8b:df:08:6c:37:53:bb:1a:1f:5f:7e: da:0e:a8:96:72:6f:29:e1:ca:b3:f9:29:dc:49:82: 24:62:12:d2:da:64:76:88:12:7e:f3:1b:c5:57:1e: 70:ce:2d:d9:f9:b5:08:92:6c:8f:a5:1e:1d:fa:5b: ee:3d:06:0b:83:ff:76:b5:19:87:3d:97:71:23:81: c1:d9:59:87:ca:c3:e2:63:51:b7:40:cf:27:d6:f4: 83:ab Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 06:BB:E5:14:D7:44:53:26:1E:91:9C:28:E3:A5:D7:C2:F2:71:E8:07 X509v3 Authority Key Identifier: keyid:3C:65:15:24:B4:F9:1A:35:0D:1E:CF:BB:A6:6C:AB:D1:B4:8F:B7:C5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914D2E1/DA86B616BA6E11EDB9CEA43AC4F9AE02/PGUVJLT5GjUNHs-7pmyr0bSPt8U.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PGUVJLT5GjUNHs-7pmyr0bSPt8U.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914D2E1/DA86B616BA6E11EDB9CEA43AC4F9AE02/PGUVJLT5GjUNHs-7pmyr0bSPt8U.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 23:17:10:e5:c0:9f:3b:ed:4b:93:c8:82:34:45:0a:95:29:5d: bd:70:77:13:18:8d:cb:32:dc:42:5b:1f:82:9b:e6:6f:5d:17: 96:3d:d1:3c:1f:b5:a4:c5:06:9c:ee:75:a2:81:8b:8c:fa:2f: 0a:af:63:85:41:b7:cc:df:61:3e:18:8b:4d:ac:c6:b7:16:11: be:15:97:02:05:0f:4d:93:4e:0b:08:06:5a:0d:f5:26:1e:0b: dc:bb:b9:c7:e6:b5:ea:54:84:52:b9:8d:c1:d0:df:05:76:99: a8:f8:66:c2:db:42:ae:f8:11:58:21:84:0f:b2:9e:3a:57:07: b6:cc:86:87:50:cb:52:46:96:86:89:14:61:73:5e:f2:f2:f7: 8d:e4:d9:59:93:6d:10:5e:8d:a9:c0:14:3a:f2:2c:e8:b7:7c: 44:a2:1b:34:03:c9:31:6e:85:9a:64:d4:18:34:73:d8:28:04: 45:2b:d6:ef:3e:52:15:82:11:db:d9:44:25:40:db:4c:14:25: b8:a6:90:da:7e:5e:89:41:6c:33:41:bd:ca:39:d6:64:87:1a: 3b:e3:f2:32:99:2c:d7:07:9e:63:37:e1:5e:be:a9:ef:f3:47: 90:ee:01:a7:92:bf:04:17:98:6b:c5:ac:2b:f6:ca:39:56:a9: 97:7e:cb:32 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAaowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NEQyRTExMTAvBgNVBAUTKDNDNjUxNTI0QjRGOTFBMzUwRDFFQ0ZCQkE2NkNBQkQx QjQ4RkI3QzUwHhcNMjUwNDI1MDIzNjUzWhcNMjUwNTAyMDIzNjUzWjAYMRYwFAYD VQQDEw02ODBhZjU0NS04MzllMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwyp0lNGa4YAJHLbBN/XbLqYRe3NNMU1n3jcKPVCt6rVbKyYsQsVSP49Oj3NQ Rlr2OrhvvKAKkE1Y6zypmJHy4Qqk7qD7s/YhAcYAVIPg7edmqs4WzTZY4uFESqbQ pISC5IMMbdGyt/L9S3tPwOLhYgoW6qe04FwvQgD8hxMM+SNHcpURNHVVvoK52mdg of7VFEwoJ+X+YJep2FoU5GuAsO/LDaCH7Nn0i98IbDdTuxofX37aDqiWcm8p4cqz +SncSYIkYhLS2mR2iBJ+8xvFVx5wzi3Z+bUIkmyPpR4d+lvuPQYLg/92tRmHPZdx I4HB2VmHysPiY1G3QM8n1vSDqwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFAa75RTX RFMmHpGcKOOl18LycegHMB8GA1UdIwQYMBaAFDxlFSS0+Ro1DR7Pu6Zsq9G0j7fF MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0RDJFMS9EQTg2QjYxNkJB NkUxMUVEQjlDRUE0M0FDNEY5QUUwMi9QR1VWSkxUNUdqVU5Icy03cG15cjBiU1B0 OFUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1BHVVZKTFQ1R2pVTkhzLTdwbXlyMGJTUHQ4VS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 RDJFMS9EQTg2QjYxNkJBNkUxMUVEQjlDRUE0M0FDNEY5QUUwMi9QR1VWSkxUNUdq VU5Icy03cG15cjBiU1B0OFUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAjFxDlwJ877UuTyII0RQqVKV29cHcTGI3LMtxCWx+Cm+ZvXReWPdE8 H7WkxQac7nWigYuM+i8Kr2OFQbfM32E+GItNrMa3FhG+FZcCBQ9Nk04LCAZaDfUm Hgvcu7nH5rXqVIRSuY3B0N8Fdpmo+GbC20Ku+BFYIYQPsp46Vwe2zIaHUMtSRpaG iRRhc17y8veN5NlZk20QXo2pwBQ68izot3xEohs0A8kxboWaZNQYNHPYKARFK9bv PlIVghHb2UQlQNtMFCW4ppDafl6JQWwzQb3KOdZkhxo74/IymSzXB55jN+Fevqnv 80eQ7gGnkr8EF5hrxawr9so5VqmXfssy -----END CERTIFICATE-----Generated at Sat Apr 26 12:37:48 2025 by rpki-client