$ rpki-client -vvf rpki.apnic.net/member_repository/A917C3A7/E41FF0A6532811EC8352D245C4F9AE02/pGM3j5KTiRbgseQTrw8MinPCH08.mft File: pGM3j5KTiRbgseQTrw8MinPCH08.mft (raw, json) Hash identifier: bD2FxeRReCe0fJLRIsUHd7AY2YaP7caS9eVEEvgZIFU= Subject key identifier: 55:F0:F6:F7:B6:D6:F0:DA:D5:F9:9D:7F:EF:61:06:72:C4:5F:36:BA Authority key identifier: A4:63:37:8F:92:93:89:16:E0:B1:E4:13:AF:0F:0C:8A:73:C2:1F:4F Certificate issuer: /CN=A917C3A7/serialNumber=A463378F92938916E0B1E413AF0F0C8A73C21F4F Certificate serial: 045D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pGM3j5KTiRbgseQTrw8MinPCH08.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917C3A7/E41FF0A6532811EC8352D245C4F9AE02/pGM3j5KTiRbgseQTrw8MinPCH08.mft Manifest number: 045D Signing time: Sat 14 Jun 2025 23:54:19 +0000 Manifest this update: Sat 14 Jun 2025 23:54:18 +0000 Manifest next update: Sat 21 Jun 2025 23:54:18 +0000 Files and hashes: 1: pGM3j5KTiRbgseQTrw8MinPCH08.crl (hash: FFAaHjCK09+PXxrYoMAvY8KOmjzuyj14W2QbKrShmlk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917C3A7/E41FF0A6532811EC8352D245C4F9AE02/pGM3j5KTiRbgseQTrw8MinPCH08.crl rsync://rpki.apnic.net/member_repository/A917C3A7/E41FF0A6532811EC8352D245C4F9AE02/pGM3j5KTiRbgseQTrw8MinPCH08.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pGM3j5KTiRbgseQTrw8MinPCH08.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 21 Jun 2025 23:54:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1117 (0x45d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917C3A7, serialNumber=A463378F92938916E0B1E413AF0F0C8A73C21F4F Validity Not Before: Jun 14 23:54:18 2025 GMT Not After : Jun 21 23:54:18 2025 GMT Subject: CN=684e0bab-21f5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e5:f7:48:f1:7c:e4:57:b4:66:bd:fe:a3:1c:46: 0d:df:9d:de:b7:8d:8a:42:b2:8d:f1:8a:54:66:5a: df:d9:1f:a6:ce:0b:c9:dd:9a:60:43:70:a9:5b:6e: 70:d4:ce:4a:b5:04:cd:9d:b7:e7:95:98:88:b3:37: 0a:b6:66:1f:4e:2f:75:9b:2c:d2:58:3d:90:a8:c3: 1a:16:73:10:ed:25:85:c5:8e:c8:5a:d4:e0:f7:e5: bf:43:4a:18:55:8c:27:db:ec:5b:c6:b5:09:21:95: fa:a4:25:7b:89:30:35:8b:d8:fd:e0:d8:cd:f5:26: 1e:b1:34:b5:04:b5:cb:b7:6c:24:81:f4:85:bc:6e: ad:08:9c:6c:64:3d:3b:56:4c:c3:ac:78:54:57:e5: 98:58:d6:1b:d2:91:a9:84:67:89:7f:f0:f8:aa:b7: 8a:63:f7:71:d6:22:ce:15:36:21:25:31:95:2f:a5: 94:d3:d7:39:ae:72:9e:49:de:31:90:2c:e0:ab:de: a7:1e:00:d5:3f:58:c2:00:8d:2c:60:17:35:6b:46: d2:a5:10:f4:22:de:c9:5e:15:47:a4:c1:c7:bb:da: 8b:57:c1:0d:e0:43:e3:2f:7c:84:7e:c4:fb:59:ec: 9b:93:46:45:99:c1:e0:e8:3c:53:63:50:6b:61:e5: 85:d1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 55:F0:F6:F7:B6:D6:F0:DA:D5:F9:9D:7F:EF:61:06:72:C4:5F:36:BA X509v3 Authority Key Identifier: keyid:A4:63:37:8F:92:93:89:16:E0:B1:E4:13:AF:0F:0C:8A:73:C2:1F:4F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917C3A7/E41FF0A6532811EC8352D245C4F9AE02/pGM3j5KTiRbgseQTrw8MinPCH08.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pGM3j5KTiRbgseQTrw8MinPCH08.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917C3A7/E41FF0A6532811EC8352D245C4F9AE02/pGM3j5KTiRbgseQTrw8MinPCH08.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 1c:10:08:7a:8b:61:eb:6d:51:4d:bc:28:58:b1:a6:b8:da:c6: da:40:60:54:01:ab:ce:e5:ae:7d:ca:52:63:3b:a4:b8:26:a3: 8e:e7:b0:26:cc:f2:fd:1d:fb:df:13:b2:66:96:8c:58:3f:8b: 0c:cf:78:4b:a1:69:27:4f:f6:1a:a5:f9:a7:1b:19:9b:56:ef: 91:6d:df:f6:c7:79:be:e0:d5:58:2b:d5:a1:8f:ba:1b:c7:9b: 78:0d:cf:2c:22:7d:68:eb:fc:cc:48:60:e9:9a:82:91:52:2d: 9b:49:d8:59:93:6c:47:8a:41:9e:b0:dc:09:d1:fc:3e:86:87: 71:7b:cc:43:b0:01:8e:95:e3:2e:09:54:44:ff:27:81:59:ed: 48:61:d4:ea:89:35:14:e9:82:72:96:6c:ca:09:18:e5:64:4c: dc:95:2c:44:c0:7d:c3:ab:18:bb:f5:a1:8a:96:ba:70:f3:f5: aa:14:ae:46:68:03:4b:19:b0:8b:a9:34:a4:c2:ed:a9:d8:86: d7:11:aa:22:8d:bc:96:94:be:26:15:48:dc:5e:3e:e2:b0:1f: c9:96:a7:e5:29:2f:ad:a5:b4:82:66:fc:55:b7:cf:c3:d3:86: 27:31:81:82:2c:e5:d0:b9:76:54:d5:d6:a0:f8:05:9f:95:57: 03:6f:77:4b -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBF0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0MzQTcxMTAvBgNVBAUTKEE0NjMzNzhGOTI5Mzg5MTZFMEIxRTQxM0FGMEYwQzhB NzNDMjFGNEYwHhcNMjUwNjE0MjM1NDE4WhcNMjUwNjIxMjM1NDE4WjAYMRYwFAYD VQQDEw02ODRlMGJhYi0yMWY1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA5fdI8XzkV7Rmvf6jHEYN353et42KQrKN8YpUZlrf2R+mzgvJ3ZpgQ3CpW25w 1M5KtQTNnbfnlZiIszcKtmYfTi91myzSWD2QqMMaFnMQ7SWFxY7IWtTg9+W/Q0oY VYwn2+xbxrUJIZX6pCV7iTA1i9j94NjN9SYesTS1BLXLt2wkgfSFvG6tCJxsZD07 VkzDrHhUV+WYWNYb0pGphGeJf/D4qreKY/dx1iLOFTYhJTGVL6WU09c5rnKeSd4x kCzgq96nHgDVP1jCAI0sYBc1a0bSpRD0It7JXhVHpMHHu9qLV8EN4EPjL3yEfsT7 Weybk0ZFmcHg6DxTY1BrYeWF0QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFFXw9ve2 1vDa1fmdf+9hBnLEXza6MB8GA1UdIwQYMBaAFKRjN4+Sk4kW4LHkE68PDIpzwh9P MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3QzNBNy9FNDFGRjBBNjUz MjgxMUVDODM1MkQyNDVDNEY5QUUwMi9wR00zajVLVGlSYmdzZVFUcnc4TWluUENI MDguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3BHTTNqNUtUaVJiZ3NlUVRydzhNaW5QQ0gwOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 QzNBNy9FNDFGRjBBNjUzMjgxMUVDODM1MkQyNDVDNEY5QUUwMi9wR00zajVLVGlS YmdzZVFUcnc4TWluUENIMDgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAcEAh6i2HrbVFNvChYsaa42sbaQGBUAavO5a59ylJjO6S4JqOO57Am zPL9HfvfE7JmloxYP4sMz3hLoWknT/YapfmnGxmbVu+Rbd/2x3m+4NVYK9Whj7ob x5t4Dc8sIn1o6/zMSGDpmoKRUi2bSdhZk2xHikGesNwJ0fw+hodxe8xDsAGOleMu CVRE/yeBWe1IYdTqiTUU6YJylmzKCRjlZEzclSxEwH3Dqxi79aGKlrpw8/WqFK5G aANLGbCLqTSkwu2p2IbXEaoijbyWlL4mFUjcXj7isB/JlqflKS+tpbSCZvxVt8/D 04YnMYGCLOXQuXZU1dag+AWflVcDb3dL -----END CERTIFICATE-----Generated at Sun Jun 15 10:06:22 2025 by rpki-client