$ rpki-client -vvf rpki.apnic.net/member_repository/A917E65B/7F4BE9A226F411F084F59772C4F9AE02/PgYolveWFAxkBV5H1FMISCOnCCQ.mft File: PgYolveWFAxkBV5H1FMISCOnCCQ.mft (raw, json) Hash identifier: t4B1ZduJ9ASHY8+faGVXJZOMbiUkYpILAdmAbMSbZw8= Subject key identifier: D1:F0:60:F6:A1:DC:B6:11:90:DD:04:AE:AB:0C:81:8B:88:65:33:AD Authority key identifier: 3E:06:28:96:F7:96:14:0C:64:05:5E:47:D4:53:08:48:23:A7:08:24 Certificate issuer: /CN=A917E65B/serialNumber=3E062896F796140C64055E47D453084823A70824 Certificate serial: 18 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PgYolveWFAxkBV5H1FMISCOnCCQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917E65B/7F4BE9A226F411F084F59772C4F9AE02/PgYolveWFAxkBV5H1FMISCOnCCQ.mft Manifest number: 17 Signing time: Fri 13 Jun 2025 06:51:46 +0000 Manifest this update: Fri 13 Jun 2025 06:51:46 +0000 Manifest next update: Fri 20 Jun 2025 06:51:46 +0000 Files and hashes: 1: PgYolveWFAxkBV5H1FMISCOnCCQ.crl (hash: R/OkgGje91A0IvyjiuQFfefKut1IGQCpVc51Rb7BGeU=) 2: B7498170318011F0A5A76C39C4F9AE02.roa (hash: 4xMCpId57nfxz7XEfKoBdilLfSUib+cCTUbVdicWXMY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917E65B/7F4BE9A226F411F084F59772C4F9AE02/PgYolveWFAxkBV5H1FMISCOnCCQ.crl rsync://rpki.apnic.net/member_repository/A917E65B/7F4BE9A226F411F084F59772C4F9AE02/PgYolveWFAxkBV5H1FMISCOnCCQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PgYolveWFAxkBV5H1FMISCOnCCQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 20 Jun 2025 06:51:45 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 24 (0x18) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917E65B, serialNumber=3E062896F796140C64055E47D453084823A70824 Validity Not Before: Jun 13 06:51:46 2025 GMT Not After : Jun 20 06:51:46 2025 GMT Subject: CN=684bca82-c392 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b0:eb:00:96:49:20:5b:f8:52:13:f8:9c:8b:5a: 23:85:43:86:50:78:51:12:71:24:93:1d:ef:4d:84: 05:59:70:d9:98:58:fc:c6:96:d5:5a:e2:90:77:d1: 44:66:f4:bd:bd:df:af:00:2b:41:bb:76:e2:55:86: 2d:de:86:6e:dc:ea:10:d5:6e:b6:41:97:1a:9a:ed: db:9a:c4:40:7a:72:91:1c:4d:13:61:ee:ad:cf:81: 2d:3c:73:1b:26:3e:b5:26:e5:f3:8a:5f:d1:40:8a: 9b:c9:2d:ee:f3:45:c9:09:31:f6:06:cd:69:1b:64: b5:6f:e9:13:31:7e:c6:8a:7c:3b:c0:b3:13:e9:80: 3a:25:27:89:7a:0f:19:1e:57:7c:09:fa:5c:84:82: 0c:02:4c:58:a5:e2:5a:53:83:33:2b:08:16:62:c7: 4a:1c:ca:4a:3f:0d:59:fd:9f:43:41:66:e1:8e:d4: af:81:c9:10:90:d3:a8:d0:7f:2c:20:52:dc:f8:18: 73:a9:43:f0:40:c6:3c:b5:c5:46:aa:99:2c:e8:fb: 4e:15:26:c7:4d:38:b2:7a:02:0e:2f:86:21:64:63: df:c4:c8:b4:0c:9a:cd:fe:aa:f6:73:de:92:d6:d2: c6:51:32:25:41:8f:a8:84:74:7d:fc:a2:5e:df:09: 8d:bd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D1:F0:60:F6:A1:DC:B6:11:90:DD:04:AE:AB:0C:81:8B:88:65:33:AD X509v3 Authority Key Identifier: keyid:3E:06:28:96:F7:96:14:0C:64:05:5E:47:D4:53:08:48:23:A7:08:24 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917E65B/7F4BE9A226F411F084F59772C4F9AE02/PgYolveWFAxkBV5H1FMISCOnCCQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PgYolveWFAxkBV5H1FMISCOnCCQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917E65B/7F4BE9A226F411F084F59772C4F9AE02/PgYolveWFAxkBV5H1FMISCOnCCQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 83:74:62:f2:73:b5:8a:9f:82:ee:c1:32:cc:63:eb:32:56:3a: 8b:39:9e:42:9c:9b:5a:4f:f8:40:ce:12:7c:09:26:e4:12:6d: 72:9d:a0:bb:3e:e9:6e:46:62:de:47:ad:45:df:e2:05:68:56: 93:70:ca:0f:4e:2e:e0:0f:6e:4e:75:3f:31:72:42:36:bb:78: 5f:08:a5:49:ab:e3:e9:d8:cc:3f:c2:39:fa:52:14:9a:44:1e: 30:c9:e7:13:e8:04:b1:01:64:a3:95:55:6f:30:4c:ae:33:38: 41:9e:bb:10:f9:96:68:33:d5:8f:f0:f7:82:09:4a:46:d2:b1: 7d:2e:85:71:21:8b:bf:59:98:0a:b3:fe:ab:6d:63:0f:29:68: bf:63:3f:0a:15:c8:9c:39:d2:a9:d8:f5:bd:2e:c4:ff:b1:e2: c6:0f:52:63:be:be:73:1f:9e:fd:da:69:4f:ab:fd:3e:5a:84: 67:84:4e:34:23:ed:47:ea:f5:20:6e:d7:ae:c3:ee:cc:04:df: 03:b5:96:ff:7a:e8:0e:ad:10:55:24:e6:03:b1:be:9e:b8:dd: 21:4e:f7:51:11:fd:69:2e:cc:c2:37:d8:41:12:51:8a:81:d8: c2:5e:0f:81:32:2b:74:a9:69:41:f6:2c:08:a0:9f:08:96:bf: 45:00:8d:32 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBGDANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE3 RTY1QjExMC8GA1UEBRMoM0UwNjI4OTZGNzk2MTQwQzY0MDU1RTQ3RDQ1MzA4NDgy M0E3MDgyNDAeFw0yNTA2MTMwNjUxNDZaFw0yNTA2MjAwNjUxNDZaMBgxFjAUBgNV BAMTDTY4NGJjYTgyLWMzOTIwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCw6wCWSSBb+FIT+JyLWiOFQ4ZQeFEScSSTHe9NhAVZcNmYWPzGltVa4pB30URm 9L29368AK0G7duJVhi3ehm7c6hDVbrZBlxqa7duaxEB6cpEcTRNh7q3PgS08cxsm PrUm5fOKX9FAipvJLe7zRckJMfYGzWkbZLVv6RMxfsaKfDvAsxPpgDolJ4l6Dxke V3wJ+lyEggwCTFil4lpTgzMrCBZix0ocyko/DVn9n0NBZuGO1K+ByRCQ06jQfywg Utz4GHOpQ/BAxjy1xUaqmSzo+04VJsdNOLJ6Ag4vhiFkY9/EyLQMms3+qvZz3pLW 0sZRMiVBj6iEdH38ol7fCY29AgMBAAGjggKoMIICpDAdBgNVHQ4EFgQU0fBg9qHc thGQ3QSuqwyBi4hlM60wHwYDVR0jBBgwFoAUPgYolveWFAxkBV5H1FMISCOnCCQw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTdFNjVCLzdGNEJFOUEyMjZG NDExRjA4NEY1OTc3MkM0RjlBRTAyL1BnWW9sdmVXRkF4a0JWNUgxRk1JU0NPbkND US5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvUGdZb2x2ZVdGQXhrQlY1SDFGTUlTQ09uQ0NRLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTdF NjVCLzdGNEJFOUEyMjZGNDExRjA4NEY1OTc3MkM0RjlBRTAyL1BnWW9sdmVXRkF4 a0JWNUgxRk1JU0NPbkNDUS5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAIN0YvJztYqfgu7BMsxj6zJWOos5nkKcm1pP+EDOEnwJJuQSbXKdoLs+ 6W5GYt5HrUXf4gVoVpNwyg9OLuAPbk51PzFyQja7eF8IpUmr4+nYzD/COfpSFJpE HjDJ5xPoBLEBZKOVVW8wTK4zOEGeuxD5lmgz1Y/w94IJSkbSsX0uhXEhi79ZmAqz /qttYw8paL9jPwoVyJw50qnY9b0uxP+x4sYPUmO+vnMfnv3aaU+r/T5ahGeETjQj 7Ufq9SBu167D7swE3wO1lv966A6tEFUk5gOxvp643SFO91ER/WkuzMI32EESUYqB 2MJeD4EyK3SpaUH2LAignwiWv0UAjTI= -----END CERTIFICATE-----Generated at Sat Jun 14 17:31:14 2025 by rpki-client