$ rpki-client -vvf rpki.apnic.net/member_repository/A9112BDE/5E128FFC3E7D11EBBBEF274CC4F9AE02/DQNGyKJmvmrc5LfoOVCvX-Hr5cQ.mft File: DQNGyKJmvmrc5LfoOVCvX-Hr5cQ.mft (raw, json) Hash identifier: yjOMRIlfEFic3poA5DEzBDkcqjwZaYGo1SCDmIr1wqI= Subject key identifier: 3F:7C:2A:4D:A5:14:1E:DE:C0:86:B8:49:01:0B:BD:A0:07:C7:B3:AB Authority key identifier: 0D:03:46:C8:A2:66:BE:6A:DC:E4:B7:E8:39:50:AF:5F:E1:EB:E5:C4 Certificate issuer: /CN=A9112BDE/serialNumber=0D0346C8A266BE6ADCE4B7E83950AF5FE1EBE5C4 Certificate serial: 0711 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DQNGyKJmvmrc5LfoOVCvX-Hr5cQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9112BDE/5E128FFC3E7D11EBBBEF274CC4F9AE02/DQNGyKJmvmrc5LfoOVCvX-Hr5cQ.mft Manifest number: 070C Signing time: Fri 30 May 2025 22:06:03 +0000 Manifest this update: Fri 30 May 2025 22:06:02 +0000 Manifest next update: Fri 06 Jun 2025 22:06:02 +0000 Files and hashes: 1: DQNGyKJmvmrc5LfoOVCvX-Hr5cQ.crl (hash: ixSINPRYKJT+yTMCH8V5RoFhcGZRI/Akw6YyplcxXT4=) 2: 511EBFFE3E7E11EB979F564CC4F9AE02.roa (hash: JGwVae5vWzz6HBXwCoXlrwSkJWV/SPa800j6qUmmqIM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9112BDE/5E128FFC3E7D11EBBBEF274CC4F9AE02/DQNGyKJmvmrc5LfoOVCvX-Hr5cQ.crl rsync://rpki.apnic.net/member_repository/A9112BDE/5E128FFC3E7D11EBBBEF274CC4F9AE02/DQNGyKJmvmrc5LfoOVCvX-Hr5cQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DQNGyKJmvmrc5LfoOVCvX-Hr5cQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 06 Jun 2025 22:06:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1809 (0x711) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9112BDE, serialNumber=0D0346C8A266BE6ADCE4B7E83950AF5FE1EBE5C4 Validity Not Before: May 30 22:06:02 2025 GMT Not After : Jun 6 22:06:02 2025 GMT Subject: CN=683a2bca-d032 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e0:c6:c2:93:f5:c4:21:da:1b:76:4a:25:3a:b5: 47:09:c2:37:7f:72:d5:e4:c2:f1:2a:3a:b0:3c:6b: 0d:92:37:1a:f2:ed:ec:89:64:ed:55:87:da:f7:9a: 6a:64:99:fc:16:93:e8:d4:9a:88:58:d8:2e:1a:6a: c4:5e:e3:1c:01:16:e9:88:80:f4:6e:b9:79:2c:36: 06:21:07:e3:a5:6d:11:65:8f:4d:36:5d:49:82:d2: de:38:8b:eb:b4:be:7d:0f:ac:ea:9c:2c:6a:5b:ba: 1d:4a:7e:09:31:0a:46:25:bb:35:9c:41:5a:13:66: 87:71:53:3f:14:71:ba:fd:b2:55:d0:6c:01:71:c4: 65:47:9b:a6:e8:e3:24:44:11:c5:af:e5:c7:f8:8c: af:14:e2:ab:ef:c0:d4:66:1c:8d:a2:0a:16:ad:61: 2a:ae:36:0e:c6:e1:47:7e:50:06:9a:10:40:4b:aa: 49:e1:0e:5c:ad:d8:81:fa:a3:f3:04:09:83:d0:2d: a7:41:39:26:59:9c:fb:1e:a0:d5:a7:c7:90:33:92: c3:5f:ee:69:58:08:11:31:f8:3a:08:18:77:18:09: 95:6f:e0:b1:c5:a7:c3:4c:4e:75:59:ab:5b:37:ad: b4:7b:b6:7b:77:e5:ae:bf:bf:34:4b:fc:d7:40:c5: e6:3d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3F:7C:2A:4D:A5:14:1E:DE:C0:86:B8:49:01:0B:BD:A0:07:C7:B3:AB X509v3 Authority Key Identifier: keyid:0D:03:46:C8:A2:66:BE:6A:DC:E4:B7:E8:39:50:AF:5F:E1:EB:E5:C4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9112BDE/5E128FFC3E7D11EBBBEF274CC4F9AE02/DQNGyKJmvmrc5LfoOVCvX-Hr5cQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DQNGyKJmvmrc5LfoOVCvX-Hr5cQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9112BDE/5E128FFC3E7D11EBBBEF274CC4F9AE02/DQNGyKJmvmrc5LfoOVCvX-Hr5cQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 84:56:17:68:26:cc:67:50:62:05:c6:52:c3:85:a4:47:54:35: dd:c1:3c:13:55:16:8b:46:56:39:b9:49:9d:f0:1c:40:5f:34: 3e:41:ae:9e:e5:18:3d:f4:4a:5d:a8:a9:54:7a:61:42:4b:3b: 8c:c8:21:19:f1:d0:07:57:94:cc:fb:33:d7:d2:4d:ce:cf:6a: d5:c0:03:62:b8:bd:75:67:11:3d:8e:ea:8a:39:1d:a5:fc:c7: 37:7a:ed:cd:47:25:76:7a:ce:cb:88:39:5b:18:21:3e:9a:59: 4a:21:2c:26:32:56:2e:98:84:ff:42:ad:3d:53:f0:53:5a:3f: 38:20:1b:a7:8b:3d:79:0b:a7:17:3d:5e:05:76:7c:fb:9b:bc: f1:55:93:58:86:1e:3a:b1:6a:80:e9:2c:76:6d:75:28:50:d6: 24:f8:91:46:3e:63:9c:2b:63:7d:7a:e3:07:d5:14:76:cc:37: 33:ec:5b:2b:87:27:d5:96:58:16:9a:80:3c:59:3f:a1:c1:b3: 69:0b:9e:c0:ae:9a:bd:6a:f7:85:3a:f3:5f:2e:b6:cc:5f:12: 36:0d:fc:7f:71:b8:11:58:eb:1f:b0:86:2d:9b:4e:3f:36:de: 3e:ea:15:9f:b0:2e:e1:ea:15:fe:f3:7a:00:e2:c3:fa:f2:ca: 29:ab:fd:d2 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBxEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MTJCREUxMTAvBgNVBAUTKDBEMDM0NkM4QTI2NkJFNkFEQ0U0QjdFODM5NTBBRjVG RTFFQkU1QzQwHhcNMjUwNTMwMjIwNjAyWhcNMjUwNjA2MjIwNjAyWjAYMRYwFAYD VQQDEw02ODNhMmJjYS1kMDMyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA4MbCk/XEIdobdkolOrVHCcI3f3LV5MLxKjqwPGsNkjca8u3siWTtVYfa95pq ZJn8FpPo1JqIWNguGmrEXuMcARbpiID0brl5LDYGIQfjpW0RZY9NNl1JgtLeOIvr tL59D6zqnCxqW7odSn4JMQpGJbs1nEFaE2aHcVM/FHG6/bJV0GwBccRlR5um6OMk RBHFr+XH+IyvFOKr78DUZhyNogoWrWEqrjYOxuFHflAGmhBAS6pJ4Q5crdiB+qPz BAmD0C2nQTkmWZz7HqDVp8eQM5LDX+5pWAgRMfg6CBh3GAmVb+CxxafDTE51Watb N620e7Z7d+Wuv780S/zXQMXmPQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFD98Kk2l FB7ewIa4SQELvaAHx7OrMB8GA1UdIwQYMBaAFA0DRsiiZr5q3OS36DlQr1/h6+XE MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExMkJERS81RTEyOEZGQzNF N0QxMUVCQkJFRjI3NENDNEY5QUUwMi9EUU5HeUtKbXZtcmM1TGZvT1ZDdlgtSHI1 Y1EuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0RRTkd5S0ptdm1yYzVMZm9PVkN2WC1IcjVjUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx MkJERS81RTEyOEZGQzNFN0QxMUVCQkJFRjI3NENDNEY5QUUwMi9EUU5HeUtKbXZt cmM1TGZvT1ZDdlgtSHI1Y1EubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCEVhdoJsxnUGIFxlLDhaRHVDXdwTwTVRaLRlY5uUmd8BxAXzQ+Qa6e 5Rg99EpdqKlUemFCSzuMyCEZ8dAHV5TM+zPX0k3Oz2rVwANiuL11ZxE9juqKOR2l /Mc3eu3NRyV2es7LiDlbGCE+mllKISwmMlYumIT/Qq09U/BTWj84IBuniz15C6cX PV4Fdnz7m7zxVZNYhh46sWqA6Sx2bXUoUNYk+JFGPmOcK2N9euMH1RR2zDcz7Fsr hyfVllgWmoA8WT+hwbNpC57Arpq9aveFOvNfLrbMXxI2Dfx/cbgRWOsfsIYtm04/ Nt4+6hWfsC7h6hX+83oA4sP68sopq/3S -----END CERTIFICATE-----Generated at Sat May 31 16:43:47 2025 by rpki-client