$ rpki-client -vvf rpki.apnic.net/member_repository/A917C422/A2C738681D8511E287036ADC08B02CD2/PgyjPXanW6ZPDdawakQr5pWGRBo.mft File: PgyjPXanW6ZPDdawakQr5pWGRBo.mft (raw, json) Hash identifier: HWS7FQ68GU2Om7E/zSNIIA/ScYTqsxV4KoazMJQrfw8= Subject key identifier: CD:EA:62:28:EA:A5:7B:A5:CF:40:66:00:37:10:20:ED:FC:A6:04:9E Authority key identifier: 3E:0C:A3:3D:76:A7:5B:A6:4F:0D:D6:B0:6A:44:2B:E6:95:86:44:1A Certificate issuer: /CN=A917C422/serialNumber=3E0CA33D76A75BA64F0DD6B06A442BE69586441A Certificate serial: 34C2 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PgyjPXanW6ZPDdawakQr5pWGRBo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917C422/A2C738681D8511E287036ADC08B02CD2/PgyjPXanW6ZPDdawakQr5pWGRBo.mft Manifest number: 34B3 Signing time: Fri 08 Aug 2025 14:26:06 +0000 Manifest this update: Fri 08 Aug 2025 14:26:05 +0000 Manifest next update: Fri 15 Aug 2025 14:26:05 +0000 Files and hashes: 1: PgyjPXanW6ZPDdawakQr5pWGRBo.crl (hash: RE0+0oIaK+6nXA0tO/KEbUrhoULEdaUljZOejG2iiWA=) 2: D69F6688CD8511EBB5252063C4F9AE02.roa (hash: 1ODdrQTl4q6/w7rtOls+USY+PM8yOp3Wfi9ftx6zA0o=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917C422/A2C738681D8511E287036ADC08B02CD2/PgyjPXanW6ZPDdawakQr5pWGRBo.crl rsync://rpki.apnic.net/member_repository/A917C422/A2C738681D8511E287036ADC08B02CD2/PgyjPXanW6ZPDdawakQr5pWGRBo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PgyjPXanW6ZPDdawakQr5pWGRBo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 Aug 2025 05:57:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13506 (0x34c2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917C422, serialNumber=3E0CA33D76A75BA64F0DD6B06A442BE69586441A Validity Not Before: Aug 8 14:26:05 2025 GMT Not After : Aug 15 14:26:05 2025 GMT Subject: CN=689608fe-ea8f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:8d:65:39:ef:0c:94:40:c7:a6:9f:3d:7a:d8: 29:15:a6:6b:19:ef:d1:8f:14:ed:0c:9e:2a:43:d5: 89:1b:47:de:82:71:2a:b4:5e:65:08:7e:24:14:18: df:13:4b:19:64:58:07:e1:30:b7:57:03:13:36:83: 5b:11:40:f4:21:d4:d1:2b:9c:1d:b5:a4:da:66:4c: 4a:cc:dc:5b:19:25:7c:2f:d2:70:7d:28:72:6a:ef: 93:20:fa:9d:ac:25:4e:3f:81:40:40:81:5a:f3:50: 27:92:a7:b9:1f:d1:08:71:3c:04:97:37:94:69:bc: 09:fd:0b:69:69:7d:58:61:45:f3:ba:27:3e:9d:46: 43:db:a3:3f:3f:6e:90:dd:0d:53:84:4e:03:76:ec: e0:ea:ef:15:b4:10:bb:c6:1d:4c:48:2f:4b:23:c5: 9f:03:94:0a:32:7b:6a:5e:b0:2c:01:f6:26:97:f9: 06:ef:21:cb:fc:3e:8c:96:68:97:31:40:5e:a4:ea: 7e:e6:c7:65:d8:76:f4:f0:60:a3:78:d1:92:08:dd: 9a:e8:d6:00:db:67:91:ba:53:e0:a6:27:54:bc:0b: c7:7f:fa:d6:ec:d4:b4:a5:62:25:48:af:4b:9c:5d: d8:6c:78:fc:90:f9:5e:87:80:9d:88:32:87:41:fe: 45:af Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CD:EA:62:28:EA:A5:7B:A5:CF:40:66:00:37:10:20:ED:FC:A6:04:9E X509v3 Authority Key Identifier: keyid:3E:0C:A3:3D:76:A7:5B:A6:4F:0D:D6:B0:6A:44:2B:E6:95:86:44:1A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917C422/A2C738681D8511E287036ADC08B02CD2/PgyjPXanW6ZPDdawakQr5pWGRBo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PgyjPXanW6ZPDdawakQr5pWGRBo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917C422/A2C738681D8511E287036ADC08B02CD2/PgyjPXanW6ZPDdawakQr5pWGRBo.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 62:92:3b:4e:20:39:f6:6b:d3:04:4a:43:7f:1f:7a:27:c4:bc: e6:c1:2f:8b:41:53:dc:ff:c1:25:bb:79:35:cc:e1:3e:0a:b9: 96:4e:8c:ed:11:96:a8:6d:6c:8d:30:b5:4f:6e:8d:d5:47:89: fb:df:fa:ed:d4:8e:f3:13:e9:0b:d1:51:e1:53:f3:c0:b9:d7: 0f:3f:15:4c:23:c8:04:67:33:c2:c9:29:70:11:0a:fa:73:0b: 09:2f:46:e8:2e:82:c7:e9:c0:01:b9:dd:ff:ae:de:08:d4:94: 4d:a4:23:72:e7:af:a2:2d:e6:b7:a9:40:ce:fc:6c:6c:46:7d: e1:ac:be:71:14:0f:9c:13:4b:4e:15:1d:bd:12:94:71:a9:00: 8f:bc:be:73:c6:cf:26:30:2b:cf:3c:ce:7d:48:36:ac:a3:c5: 85:34:94:79:fa:6a:60:05:a5:2e:4d:59:ef:28:cc:9a:cb:8a: ce:e7:97:9b:6e:42:23:8d:7f:74:f5:23:83:3b:2c:f7:63:97: 44:1e:6e:df:50:52:b7:17:7f:2a:84:77:21:9d:50:a3:79:76: 4d:1b:03:d7:a7:0a:e8:06:23:01:ba:91:fa:5b:bf:c0:96:a1: 5a:da:84:cd:9a:ea:7c:49:a6:ad:07:ff:94:a4:2c:b1:89:4e: 1d:cd:a0:ec -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICNMIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0M0MjIxMTAvBgNVBAUTKDNFMENBMzNENzZBNzVCQTY0RjBERDZCMDZBNDQyQkU2 OTU4NjQ0MUEwHhcNMjUwODA4MTQyNjA1WhcNMjUwODE1MTQyNjA1WjAYMRYwFAYD VQQDEw02ODk2MDhmZS1lYThmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAv41lOe8MlEDHpp89etgpFaZrGe/RjxTtDJ4qQ9WJG0fegnEqtF5lCH4kFBjf E0sZZFgH4TC3VwMTNoNbEUD0IdTRK5wdtaTaZkxKzNxbGSV8L9JwfShyau+TIPqd rCVOP4FAQIFa81Ankqe5H9EIcTwElzeUabwJ/QtpaX1YYUXzuic+nUZD26M/P26Q 3Q1ThE4Dduzg6u8VtBC7xh1MSC9LI8WfA5QKMntqXrAsAfYml/kG7yHL/D6MlmiX MUBepOp+5sdl2Hb08GCjeNGSCN2a6NYA22eRulPgpidUvAvHf/rW7NS0pWIlSK9L nF3YbHj8kPleh4CdiDKHQf5FrwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFM3qYijq pXulz0BmADcQIO38pgSeMB8GA1UdIwQYMBaAFD4Moz12p1umTw3WsGpEK+aVhkQa MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3QzQyMi9BMkM3Mzg2ODFE ODUxMUUyODcwMzZBREMwOEIwMkNEMi9QZ3lqUFhhblc2WlBEZGF3YWtRcjVwV0dS Qm8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1BneWpQWGFuVzZaUERkYXdha1FyNXBXR1JCby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 QzQyMi9BMkM3Mzg2ODFEODUxMUUyODcwMzZBREMwOEIwMkNEMi9QZ3lqUFhhblc2 WlBEZGF3YWtRcjVwV0dSQm8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBikjtOIDn2a9MESkN/H3onxLzmwS+LQVPc/8Elu3k1zOE+CrmWTozt EZaobWyNMLVPbo3VR4n73/rt1I7zE+kL0VHhU/PAudcPPxVMI8gEZzPCySlwEQr6 cwsJL0boLoLH6cABud3/rt4I1JRNpCNy56+iLea3qUDO/GxsRn3hrL5xFA+cE0tO FR29EpRxqQCPvL5zxs8mMCvPPM59SDaso8WFNJR5+mpgBaUuTVnvKMyay4rO55eb bkIjjX909SODOyz3Y5dEHm7fUFK3F38qhHchnVCjeXZNGwPXpwroBiMBupH6W7/A lqFa2oTNmup8SaatB/+UpCyxiU4dzaDs -----END CERTIFICATE-----Generated at Sun Aug 10 13:52:50 2025 by rpki-client