$ rpki-client -vvf rpki.apnic.net/member_repository/A917C422/A2C738681D8511E287036ADC08B02CD2/PgyjPXanW6ZPDdawakQr5pWGRBo.mft File: PgyjPXanW6ZPDdawakQr5pWGRBo.mft (raw, json) Hash identifier: PeWLjf07RweGZZ2ibtB/JqC7YBh0uKeatfCo6b/gio4= Subject key identifier: 1E:30:4F:76:69:24:C9:89:06:36:7A:A9:2C:1A:30:84:BE:67:62:DA Authority key identifier: 3E:0C:A3:3D:76:A7:5B:A6:4F:0D:D6:B0:6A:44:2B:E6:95:86:44:1A Certificate issuer: /CN=A917C422/serialNumber=3E0CA33D76A75BA64F0DD6B06A442BE69586441A Certificate serial: 348C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PgyjPXanW6ZPDdawakQr5pWGRBo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917C422/A2C738681D8511E287036ADC08B02CD2/PgyjPXanW6ZPDdawakQr5pWGRBo.mft Manifest number: 347D Signing time: Thu 24 Apr 2025 14:25:32 +0000 Manifest this update: Thu 24 Apr 2025 14:25:32 +0000 Manifest next update: Thu 01 May 2025 14:25:32 +0000 Files and hashes: 1: PgyjPXanW6ZPDdawakQr5pWGRBo.crl (hash: RtiKxDPGX2cpvCo+kW/+zeNlA/9WU6pN14XNsSRLoBU=) 2: D69F6688CD8511EBB5252063C4F9AE02.roa (hash: 1ODdrQTl4q6/w7rtOls+USY+PM8yOp3Wfi9ftx6zA0o=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917C422/A2C738681D8511E287036ADC08B02CD2/PgyjPXanW6ZPDdawakQr5pWGRBo.crl rsync://rpki.apnic.net/member_repository/A917C422/A2C738681D8511E287036ADC08B02CD2/PgyjPXanW6ZPDdawakQr5pWGRBo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PgyjPXanW6ZPDdawakQr5pWGRBo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 01 May 2025 14:25:31 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13452 (0x348c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917C422, serialNumber=3E0CA33D76A75BA64F0DD6B06A442BE69586441A Validity Not Before: Apr 24 14:25:32 2025 GMT Not After : May 1 14:25:32 2025 GMT Subject: CN=680a49dc-7354 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:f3:20:bd:23:14:76:7e:1a:2b:5e:16:9e:8e: 41:68:56:db:5f:a3:24:a8:e7:b5:d9:f0:47:b0:d0: bb:06:ef:3d:ea:7d:54:65:f9:05:5d:40:08:45:73: 02:58:78:3a:f1:a6:a1:6d:ef:cd:b4:b7:35:a0:29: c3:03:a9:8d:ae:ab:3a:9e:bd:e7:64:be:ce:42:80: bc:10:fd:82:e8:2f:37:28:80:c2:90:d1:59:32:77: e3:b2:0b:6a:eb:95:36:1e:b5:ef:49:06:72:9b:d2: 21:0d:8a:96:db:56:1c:d5:a6:2c:d5:4c:6e:9a:4c: 5f:1d:eb:6f:49:9f:23:a4:c6:d9:72:f5:52:b2:1a: c5:93:a3:56:2c:b4:78:c1:0e:ba:71:32:12:d7:4d: 8a:e0:78:20:fb:d9:ee:33:06:5b:c8:06:9c:85:d6: 1f:b9:7b:14:f6:84:c0:2c:79:d3:73:00:9e:4a:09: 69:9c:54:18:ba:8d:ae:10:fb:a0:7b:82:8b:af:12: d1:81:8e:99:e0:f3:bd:4f:ca:07:69:cd:ff:1f:49: ff:36:16:3b:d6:70:7a:87:cf:e5:0d:5c:a8:a4:fe: f2:e5:86:5a:d8:47:ae:b6:2d:dc:1f:1b:67:63:e4: 3f:da:b1:c0:b2:ef:c7:ea:5b:57:21:8b:07:48:37: 22:9d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1E:30:4F:76:69:24:C9:89:06:36:7A:A9:2C:1A:30:84:BE:67:62:DA X509v3 Authority Key Identifier: keyid:3E:0C:A3:3D:76:A7:5B:A6:4F:0D:D6:B0:6A:44:2B:E6:95:86:44:1A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917C422/A2C738681D8511E287036ADC08B02CD2/PgyjPXanW6ZPDdawakQr5pWGRBo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PgyjPXanW6ZPDdawakQr5pWGRBo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917C422/A2C738681D8511E287036ADC08B02CD2/PgyjPXanW6ZPDdawakQr5pWGRBo.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 37:a4:b6:8c:db:f4:3a:98:84:59:15:00:c0:df:bf:85:d8:f0: 51:50:e7:a3:eb:a7:22:5f:3b:b2:b1:a1:da:9a:9f:c7:b2:ae: 80:cb:2c:1a:42:1f:1f:1b:1b:e7:1f:24:48:8b:04:8e:22:88: cb:94:3a:71:19:8d:79:69:53:0e:30:f7:23:75:fe:6a:ad:0e: 5a:ba:ce:38:8b:d1:7a:39:f2:22:56:8a:61:e7:7a:4f:5e:66: 81:3c:1a:1f:d0:6b:ff:0d:0d:c6:95:d3:ee:11:60:62:3b:f3: 01:eb:84:72:9a:39:38:26:22:a0:77:c2:b6:98:48:f2:d9:cb: 63:3d:47:5b:32:6b:20:40:8e:27:a7:3a:5c:b6:fb:fb:f4:54: c0:24:78:d2:64:c5:de:6b:79:6d:f1:02:9e:7d:53:cb:8b:cb: a4:ec:7e:e3:d4:d0:f6:09:03:bf:57:36:d3:92:9c:a2:e7:c1: 79:09:82:19:47:25:fa:c3:2d:88:a4:91:84:0f:19:e0:2b:28: 1f:5c:7c:41:b9:6b:31:9e:c0:83:c0:6d:ea:7d:00:8a:0b:33: 43:ed:1f:6b:f1:e3:86:15:24:bc:fc:3d:8a:05:95:90:af:2b: 9c:95:f0:71:72:a4:29:05:6e:7b:ea:d4:a6:e4:13:3b:7d:62: ba:a2:3d:27 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICNIwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0M0MjIxMTAvBgNVBAUTKDNFMENBMzNENzZBNzVCQTY0RjBERDZCMDZBNDQyQkU2 OTU4NjQ0MUEwHhcNMjUwNDI0MTQyNTMyWhcNMjUwNTAxMTQyNTMyWjAYMRYwFAYD VQQDEw02ODBhNDlkYy03MzU0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwfMgvSMUdn4aK14Wno5BaFbbX6MkqOe12fBHsNC7Bu896n1UZfkFXUAIRXMC WHg68aahbe/NtLc1oCnDA6mNrqs6nr3nZL7OQoC8EP2C6C83KIDCkNFZMnfjsgtq 65U2HrXvSQZym9IhDYqW21Yc1aYs1UxumkxfHetvSZ8jpMbZcvVSshrFk6NWLLR4 wQ66cTIS102K4Hgg+9nuMwZbyAachdYfuXsU9oTALHnTcwCeSglpnFQYuo2uEPug e4KLrxLRgY6Z4PO9T8oHac3/H0n/NhY71nB6h8/lDVyopP7y5YZa2Eeuti3cHxtn Y+Q/2rHAsu/H6ltXIYsHSDcinQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFB4wT3Zp JMmJBjZ6qSwaMIS+Z2LaMB8GA1UdIwQYMBaAFD4Moz12p1umTw3WsGpEK+aVhkQa MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3QzQyMi9BMkM3Mzg2ODFE ODUxMUUyODcwMzZBREMwOEIwMkNEMi9QZ3lqUFhhblc2WlBEZGF3YWtRcjVwV0dS Qm8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1BneWpQWGFuVzZaUERkYXdha1FyNXBXR1JCby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 QzQyMi9BMkM3Mzg2ODFEODUxMUUyODcwMzZBREMwOEIwMkNEMi9QZ3lqUFhhblc2 WlBEZGF3YWtRcjVwV0dSQm8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA3pLaM2/Q6mIRZFQDA37+F2PBRUOej66ciXzuysaHamp/Hsq6Ayywa Qh8fGxvnHyRIiwSOIojLlDpxGY15aVMOMPcjdf5qrQ5aus44i9F6OfIiVoph53pP XmaBPBof0Gv/DQ3GldPuEWBiO/MB64Rymjk4JiKgd8K2mEjy2ctjPUdbMmsgQI4n pzpctvv79FTAJHjSZMXea3lt8QKefVPLi8uk7H7j1ND2CQO/VzbTkpyi58F5CYIZ RyX6wy2IpJGEDxngKygfXHxBuWsxnsCDwG3qfQCKCzND7R9r8eOGFSS8/D2KBZWQ ryuclfBxcqQpBW576tSm5BM7fWK6oj0n -----END CERTIFICATE-----Generated at Sat Apr 26 03:51:31 2025 by rpki-client