$ rpki-client -vvf rpki.apnic.net/member_repository/A912FE31/AB7956D4793611EA9208C558C4F9AE02/DmpDAZVo-XcRTm1GWwpvVWn1OD4.mft File: DmpDAZVo-XcRTm1GWwpvVWn1OD4.mft (raw, json) Hash identifier: OXBQI96UgC8hsJ9gIg+mGhZIZEGPtP4zjkWs4Y/LY8s= Subject key identifier: D8:B9:A6:57:3C:18:B0:D4:DC:42:18:36:9C:04:99:F3:8D:1C:C4:15 Authority key identifier: 0E:6A:43:01:95:68:F9:77:11:4E:6D:46:5B:0A:6F:55:69:F5:38:3E Certificate issuer: /CN=A912FE31/serialNumber=0E6A43019568F977114E6D465B0A6F5569F5383E Certificate serial: 09FC Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmpDAZVo-XcRTm1GWwpvVWn1OD4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A912FE31/AB7956D4793611EA9208C558C4F9AE02/DmpDAZVo-XcRTm1GWwpvVWn1OD4.mft Manifest number: 09F4 Signing time: Fri 30 May 2025 20:04:11 +0000 Manifest this update: Fri 30 May 2025 20:04:11 +0000 Manifest next update: Fri 06 Jun 2025 20:04:11 +0000 Files and hashes: 1: DmpDAZVo-XcRTm1GWwpvVWn1OD4.crl (hash: rdSLJKpLIRmL3IXKad+zQq1//ABtaIZ9IXnx12ufLlk=) 2: A42489D8799211EAA230E17FC4F9AE02.roa (hash: OnZAowiVuvOnwLvfgL0R8vIbc2U3axlj1bMkwdwdu4I=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A912FE31/AB7956D4793611EA9208C558C4F9AE02/DmpDAZVo-XcRTm1GWwpvVWn1OD4.crl rsync://rpki.apnic.net/member_repository/A912FE31/AB7956D4793611EA9208C558C4F9AE02/DmpDAZVo-XcRTm1GWwpvVWn1OD4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmpDAZVo-XcRTm1GWwpvVWn1OD4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 06 Jun 2025 20:04:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2556 (0x9fc) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A912FE31, serialNumber=0E6A43019568F977114E6D465B0A6F5569F5383E Validity Not Before: May 30 20:04:11 2025 GMT Not After : Jun 6 20:04:11 2025 GMT Subject: CN=683a0f3b-e632 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a5:e5:78:08:5d:00:a8:d3:40:aa:73:b2:7c:87: f9:7a:99:f1:d7:fd:bd:f7:ae:98:36:83:c3:00:e4: 23:75:b0:1b:cb:57:07:83:dd:ae:1d:b7:36:58:cc: 62:79:6d:93:81:34:85:00:34:0b:ee:7c:4e:5b:79: 19:f4:b5:e2:61:4c:7c:e7:ed:93:ae:b7:3b:d7:95: 04:48:df:dc:89:d4:72:c3:99:a6:5c:d5:69:b9:42: 92:45:aa:99:de:9b:af:d2:b2:85:82:cb:10:a7:99: cf:d8:5f:9a:f3:fb:ec:29:56:af:2f:9c:d1:01:ee: be:19:73:64:90:ff:f9:98:ab:04:a4:bb:08:24:6f: 4a:cd:1a:05:b9:48:5f:4e:7b:b6:05:d3:a7:ee:93: ff:2c:b1:59:c0:b2:5c:51:91:c4:d6:18:a0:92:7b: cb:96:00:d2:40:02:1f:6c:28:a2:88:b0:50:d8:86: 96:e0:73:30:20:54:9c:d2:da:4f:f3:e5:be:3d:a2: d3:b3:aa:ff:37:ae:70:f0:ba:83:51:c8:81:08:c8: 69:97:a9:6a:39:9c:a3:b8:21:44:65:7f:97:0c:ea: 0b:c1:17:a0:46:62:9a:a6:dd:51:2d:5d:b5:ec:3e: b8:a3:03:fc:6b:52:5f:ff:63:eb:a8:63:f3:c2:c8: 90:01 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D8:B9:A6:57:3C:18:B0:D4:DC:42:18:36:9C:04:99:F3:8D:1C:C4:15 X509v3 Authority Key Identifier: keyid:0E:6A:43:01:95:68:F9:77:11:4E:6D:46:5B:0A:6F:55:69:F5:38:3E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A912FE31/AB7956D4793611EA9208C558C4F9AE02/DmpDAZVo-XcRTm1GWwpvVWn1OD4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmpDAZVo-XcRTm1GWwpvVWn1OD4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A912FE31/AB7956D4793611EA9208C558C4F9AE02/DmpDAZVo-XcRTm1GWwpvVWn1OD4.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 93:82:6d:fc:b5:31:44:df:9b:41:97:0b:ca:16:b8:0a:63:a7: 08:9c:33:00:f0:d1:95:19:f8:aa:30:98:e6:3c:1d:be:ec:10: ca:c0:5e:e2:d5:16:9d:cb:b8:7a:fd:7e:66:4b:6c:3e:1e:c8: e5:35:53:7e:22:da:20:d7:6b:9b:b9:64:36:cd:0f:d2:b4:0e: 35:3e:f2:34:fb:21:95:ed:c7:80:a3:bc:ba:25:6d:57:57:4d: c8:5a:d1:c2:ea:1c:9c:ec:3b:2a:f3:5f:bd:78:9f:04:52:3a: 4c:02:b3:0d:bd:4d:ee:1a:5d:bb:46:62:77:36:28:24:35:21: 0d:8d:97:0d:60:6f:91:eb:f4:7d:c7:7d:60:bb:d8:9d:73:da: d4:7b:d8:3c:f2:72:44:43:ea:bb:78:79:77:65:f6:6c:e6:5e: b9:59:94:12:a8:84:4c:18:cc:eb:26:12:1c:88:a0:28:b4:d2: d4:a4:bd:89:4e:ac:f7:8c:f8:08:69:f1:c7:6d:9c:0d:c8:17: 51:3f:36:f9:a4:17:59:5e:6e:8a:d7:90:40:27:3a:95:f8:51: 77:30:af:34:c3:8a:af:4e:85:f9:e7:dd:fc:6e:de:49:c5:60: 10:da:41:96:b2:45:0f:95:1a:c5:9c:ce:aa:73:ba:0a:b6:be: ba:95:66:fc -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCfwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MkZFMzExMTAvBgNVBAUTKDBFNkE0MzAxOTU2OEY5NzcxMTRFNkQ0NjVCMEE2RjU1 NjlGNTM4M0UwHhcNMjUwNTMwMjAwNDExWhcNMjUwNjA2MjAwNDExWjAYMRYwFAYD VQQDEw02ODNhMGYzYi1lNjMyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEApeV4CF0AqNNAqnOyfIf5epnx1/29966YNoPDAOQjdbAby1cHg92uHbc2WMxi eW2TgTSFADQL7nxOW3kZ9LXiYUx85+2Trrc715UESN/cidRyw5mmXNVpuUKSRaqZ 3puv0rKFgssQp5nP2F+a8/vsKVavL5zRAe6+GXNkkP/5mKsEpLsIJG9KzRoFuUhf Tnu2BdOn7pP/LLFZwLJcUZHE1higknvLlgDSQAIfbCiiiLBQ2IaW4HMwIFSc0tpP 8+W+PaLTs6r/N65w8LqDUciBCMhpl6lqOZyjuCFEZX+XDOoLwRegRmKapt1RLV21 7D64owP8a1Jf/2PrqGPzwsiQAQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFNi5plc8 GLDU3EIYNpwEmfONHMQVMB8GA1UdIwQYMBaAFA5qQwGVaPl3EU5tRlsKb1Vp9Tg+ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyRkUzMS9BQjc5NTZENDc5 MzYxMUVBOTIwOEM1NThDNEY5QUUwMi9EbXBEQVpWby1YY1JUbTFHV3dwdlZXbjFP RDQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0RtcERBWlZvLVhjUlRtMUdXd3B2VlduMU9ENC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy RkUzMS9BQjc5NTZENDc5MzYxMUVBOTIwOEM1NThDNEY5QUUwMi9EbXBEQVpWby1Y Y1JUbTFHV3dwdlZXbjFPRDQubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCTgm38tTFE35tBlwvKFrgKY6cInDMA8NGVGfiqMJjmPB2+7BDKwF7i 1Rady7h6/X5mS2w+HsjlNVN+Itog12ubuWQ2zQ/StA41PvI0+yGV7ceAo7y6JW1X V03IWtHC6hyc7Dsq81+9eJ8EUjpMArMNvU3uGl27RmJ3NigkNSENjZcNYG+R6/R9 x31gu9idc9rUe9g88nJEQ+q7eHl3ZfZs5l65WZQSqIRMGMzrJhIciKAotNLUpL2J Tqz3jPgIafHHbZwNyBdRPzb5pBdZXm6K15BAJzqV+FF3MK80w4qvToX55938bt5J xWAQ2kGWskUPlRrFnM6qc7oKtr66lWb8 -----END CERTIFICATE-----Generated at Sat May 31 17:45:02 2025 by rpki-client