$ rpki-client -vvf rpki.apnic.net/member_repository/A9111623/50AD0718FD4511EEAB3AD71BC4F9AE02/dpU2g0Agk0lSKX69t4GJNXsToUU.mft File: dpU2g0Agk0lSKX69t4GJNXsToUU.mft (raw, json) Hash identifier: 0SEGhuy5JAwUrzVXYbHl35zuRpI9+JMV9gZpZznyRBc= Subject key identifier: C6:5C:D5:6A:3C:30:86:03:81:85:15:8C:A4:4E:D5:02:1A:F0:D6:95 Authority key identifier: 76:95:36:83:40:20:93:49:52:29:7E:BD:B7:81:89:35:7B:13:A1:45 Certificate issuer: /CN=A9111623/serialNumber=769536834020934952297EBDB78189357B13A145 Certificate serial: D2 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/dpU2g0Agk0lSKX69t4GJNXsToUU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9111623/50AD0718FD4511EEAB3AD71BC4F9AE02/dpU2g0Agk0lSKX69t4GJNXsToUU.mft Manifest number: D0 Signing time: Sat 31 May 2025 05:15:27 +0000 Manifest this update: Sat 31 May 2025 05:15:27 +0000 Manifest next update: Sat 07 Jun 2025 05:15:27 +0000 Files and hashes: 1: dpU2g0Agk0lSKX69t4GJNXsToUU.crl (hash: 8XQxxbpvlrpqNllzXPmFJyvpLMROHrMGYl1JzIHb6iU=) 2: CAE74ADEFD4511EEA97C9D1CC4F9AE02.roa (hash: SVtEtagldlvERL46wSvdbr/iqqig+8tKes1xS1nFqcs=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9111623/50AD0718FD4511EEAB3AD71BC4F9AE02/dpU2g0Agk0lSKX69t4GJNXsToUU.crl rsync://rpki.apnic.net/member_repository/A9111623/50AD0718FD4511EEAB3AD71BC4F9AE02/dpU2g0Agk0lSKX69t4GJNXsToUU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/dpU2g0Agk0lSKX69t4GJNXsToUU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 07 Jun 2025 05:15:26 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 210 (0xd2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9111623, serialNumber=769536834020934952297EBDB78189357B13A145 Validity Not Before: May 31 05:15:27 2025 GMT Not After : Jun 7 05:15:27 2025 GMT Subject: CN=683a906f-8bc8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:30:7f:d8:7e:7c:de:cc:27:4e:a0:00:87:b3: 42:84:f7:d2:dc:29:c5:8e:80:d6:09:1f:5b:81:e2: a4:fa:f3:6c:a1:38:3e:c2:fe:cf:db:ee:4a:93:1e: 54:b3:bc:32:93:48:4b:34:6a:7a:1c:17:4b:01:ef: d2:7b:46:7d:f5:2c:20:ec:32:62:d1:9b:bb:b0:1d: 2d:d4:a5:4d:ea:21:d7:62:3d:fe:73:6e:ab:87:7a: 3a:c4:50:4e:dc:30:60:a6:6a:07:60:7f:b1:40:ee: 8c:c6:1a:eb:81:b9:6c:6f:a4:78:84:98:2c:9b:eb: 76:a4:36:b0:5d:a3:e1:f5:ba:94:48:a5:30:c0:a5: a9:f3:60:8b:fe:6c:ca:9d:ee:16:d5:b7:19:f4:1a: eb:2f:02:33:b9:f1:7a:e5:ce:d4:54:1a:3c:3f:92: 10:4c:9d:63:49:86:b3:95:0a:2f:79:df:91:4e:c9: 26:41:25:f9:63:8a:7d:2a:a5:52:da:16:e3:60:2f: 47:34:b3:8d:07:0e:9d:5c:48:b6:27:3f:d8:ec:f6: 86:97:9d:7e:62:04:b1:2b:e0:5f:98:c6:18:4b:f8: 19:80:a8:03:d3:81:03:f5:b3:da:89:46:63:dd:d8: 1c:fe:b9:15:34:b4:ef:06:21:5d:0a:22:33:f8:4d: 84:43 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C6:5C:D5:6A:3C:30:86:03:81:85:15:8C:A4:4E:D5:02:1A:F0:D6:95 X509v3 Authority Key Identifier: keyid:76:95:36:83:40:20:93:49:52:29:7E:BD:B7:81:89:35:7B:13:A1:45 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9111623/50AD0718FD4511EEAB3AD71BC4F9AE02/dpU2g0Agk0lSKX69t4GJNXsToUU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/dpU2g0Agk0lSKX69t4GJNXsToUU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9111623/50AD0718FD4511EEAB3AD71BC4F9AE02/dpU2g0Agk0lSKX69t4GJNXsToUU.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 57:bc:a6:39:d5:7d:1c:18:ff:f1:34:bc:0d:cc:13:45:eb:31: 01:ee:e3:8b:a0:b4:a4:83:24:2a:2b:23:04:e4:01:ff:06:01: 4b:ec:29:e1:7d:55:cc:20:b6:72:77:b4:0a:f3:84:93:86:b7: 26:93:45:a8:72:c1:98:31:3c:98:33:52:ea:90:05:c9:fb:67: 39:e1:29:ac:3d:7d:0b:20:e4:47:90:67:f8:4a:02:c9:56:16: 85:9c:81:1d:db:98:b6:00:39:72:1c:9c:21:80:c0:98:83:bc: 5e:b5:1a:1d:67:a7:0b:8a:29:21:cc:dc:8b:15:a0:02:9f:c8: 06:95:dd:0a:6c:63:f3:2c:26:ea:f4:e0:82:b9:cc:a7:a0:b5: f8:bc:cf:bd:36:08:aa:b1:57:97:70:e9:e7:31:5b:1d:59:8a: be:95:62:85:9f:88:83:6c:bd:b3:41:fd:03:b0:da:6e:1a:aa: a5:8a:d5:18:d9:6e:cf:8f:b3:d8:53:26:d9:c7:21:60:29:7e: 4e:ce:bc:bb:44:95:70:8a:c7:c0:bd:14:be:7e:57:d1:81:74: cd:fc:36:f9:e4:d2:af:30:9d:57:a8:5d:a6:0b:d4:17:75:78: d4:49:d5:ff:bf:df:02:ae:06:18:8f:df:39:e6:b5:02:5f:f3: 27:cb:10:8e -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICANIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MTE2MjMxMTAvBgNVBAUTKDc2OTUzNjgzNDAyMDkzNDk1MjI5N0VCREI3ODE4OTM1 N0IxM0ExNDUwHhcNMjUwNTMxMDUxNTI3WhcNMjUwNjA3MDUxNTI3WjAYMRYwFAYD VQQDEw02ODNhOTA2Zi04YmM4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxDB/2H583swnTqAAh7NChPfS3CnFjoDWCR9bgeKk+vNsoTg+wv7P2+5Kkx5U s7wyk0hLNGp6HBdLAe/Se0Z99Swg7DJi0Zu7sB0t1KVN6iHXYj3+c26rh3o6xFBO 3DBgpmoHYH+xQO6Mxhrrgblsb6R4hJgsm+t2pDawXaPh9bqUSKUwwKWp82CL/mzK ne4W1bcZ9BrrLwIzufF65c7UVBo8P5IQTJ1jSYazlQoved+RTskmQSX5Y4p9KqVS 2hbjYC9HNLONBw6dXEi2Jz/Y7PaGl51+YgSxK+BfmMYYS/gZgKgD04ED9bPaiUZj 3dgc/rkVNLTvBiFdCiIz+E2EQwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFMZc1Wo8 MIYDgYUVjKRO1QIa8NaVMB8GA1UdIwQYMBaAFHaVNoNAIJNJUil+vbeBiTV7E6FF MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExMTYyMy81MEFEMDcxOEZE NDUxMUVFQUIzQUQ3MUJDNEY5QUUwMi9kcFUyZzBBZ2swbFNLWDY5dDRHSk5Yc1Rv VVUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2RwVTJnMEFnazBsU0tYNjl0NEdKTlhzVG9VVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx MTYyMy81MEFEMDcxOEZENDUxMUVFQUIzQUQ3MUJDNEY5QUUwMi9kcFUyZzBBZ2sw bFNLWDY5dDRHSk5Yc1RvVVUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBXvKY51X0cGP/xNLwNzBNF6zEB7uOLoLSkgyQqKyME5AH/BgFL7Cnh fVXMILZyd7QK84SThrcmk0WocsGYMTyYM1LqkAXJ+2c54SmsPX0LIORHkGf4SgLJ VhaFnIEd25i2ADlyHJwhgMCYg7xetRodZ6cLiikhzNyLFaACn8gGld0KbGPzLCbq 9OCCucynoLX4vM+9NgiqsVeXcOnnMVsdWYq+lWKFn4iDbL2zQf0DsNpuGqqlitUY 2W7Pj7PYUybZxyFgKX5Ozry7RJVwisfAvRS+flfRgXTN/Db55NKvMJ1XqF2mC9QX dXjUSdX/v98CrgYYj9855rUCX/MnyxCO -----END CERTIFICATE-----Generated at Sat May 31 16:27:44 2025 by rpki-client