$ rpki-client -vvf rpki.apnic.net/member_repository/A9134BB0/DD4738E00ABD11EE917DA655C4F9AE02/D2FCrkFo3wsYBfpYHSA5R2eqIlg.mft File: D2FCrkFo3wsYBfpYHSA5R2eqIlg.mft (raw, json) Hash identifier: e2dS4cbXJ5eLD993D+W45mx9SkO7Iiv4RzJ//km50eM= Subject key identifier: 3C:7E:8F:C1:C1:68:67:40:8D:71:10:30:19:E1:D9:1D:B0:37:04:F7 Authority key identifier: 0F:61:42:AE:41:68:DF:0B:18:05:FA:58:1D:20:39:47:67:AA:22:58 Certificate issuer: /CN=A9134BB0/serialNumber=0F6142AE4168DF0B1805FA581D20394767AA2258 Certificate serial: 0177 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/D2FCrkFo3wsYBfpYHSA5R2eqIlg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9134BB0/DD4738E00ABD11EE917DA655C4F9AE02/D2FCrkFo3wsYBfpYHSA5R2eqIlg.mft Manifest number: 0174 Signing time: Mon 09 Jun 2025 02:51:36 +0000 Manifest this update: Mon 09 Jun 2025 02:51:35 +0000 Manifest next update: Mon 16 Jun 2025 02:51:35 +0000 Files and hashes: 1: D2FCrkFo3wsYBfpYHSA5R2eqIlg.crl (hash: UYBmLLQpGsLW/idsFrbxu3QFE05erDLiI8PJKtBUaOU=) 2: 075B4CC80AC511EEB25A152AC4F9AE02.roa (hash: WMsnJeKRDE/E3eYU+nh3vcngfITTgAj3NVw90NWzGkU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9134BB0/DD4738E00ABD11EE917DA655C4F9AE02/D2FCrkFo3wsYBfpYHSA5R2eqIlg.crl rsync://rpki.apnic.net/member_repository/A9134BB0/DD4738E00ABD11EE917DA655C4F9AE02/D2FCrkFo3wsYBfpYHSA5R2eqIlg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/D2FCrkFo3wsYBfpYHSA5R2eqIlg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 16 Jun 2025 02:51:35 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 375 (0x177) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9134BB0, serialNumber=0F6142AE4168DF0B1805FA581D20394767AA2258 Validity Not Before: Jun 9 02:51:35 2025 GMT Not After : Jun 16 02:51:35 2025 GMT Subject: CN=68464c37-add7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:12:46:1b:18:72:43:22:c0:b4:41:79:67:aa: 71:eb:3b:cf:07:19:a5:8e:e5:30:8a:25:23:46:f3: 09:aa:49:93:28:2d:4b:8a:83:01:f4:ff:82:90:f5: c1:5f:cf:67:d9:da:90:c0:fb:7b:63:9f:3e:94:57: 2f:81:2a:29:56:f3:43:ab:1b:14:32:0c:c6:1a:c9: c4:7e:6f:cf:76:b1:00:df:9b:56:f5:a2:17:6c:94: 59:cf:28:47:de:fc:3e:d8:47:74:fd:38:fa:00:cd: cf:2a:7e:70:4e:08:79:bb:0d:07:59:d2:f8:d4:9e: 1f:a4:7b:c6:2e:da:b6:ae:f5:b5:1f:ed:12:6c:c2: 44:25:37:59:86:fa:35:0b:d2:39:2f:de:10:cf:b5: 09:12:16:f5:08:fd:9d:13:ec:cc:ca:c6:8b:9a:d7: e9:ea:26:80:ee:f3:58:b2:25:46:55:10:ac:5e:87: 4b:f9:f8:3c:03:f0:1d:d6:5b:ce:de:a4:8b:25:1c: e8:a4:ca:a9:81:b0:82:67:63:55:2b:cf:5f:e8:b0: 9c:59:12:e2:67:b6:e2:30:c1:08:b6:8c:e7:2c:b5: 7c:84:2c:e2:04:cc:9b:6a:38:ea:d1:88:14:d7:8e: aa:1d:3c:b9:76:54:51:16:72:f0:5a:c4:d1:6f:23: cd:75 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3C:7E:8F:C1:C1:68:67:40:8D:71:10:30:19:E1:D9:1D:B0:37:04:F7 X509v3 Authority Key Identifier: keyid:0F:61:42:AE:41:68:DF:0B:18:05:FA:58:1D:20:39:47:67:AA:22:58 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9134BB0/DD4738E00ABD11EE917DA655C4F9AE02/D2FCrkFo3wsYBfpYHSA5R2eqIlg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/D2FCrkFo3wsYBfpYHSA5R2eqIlg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9134BB0/DD4738E00ABD11EE917DA655C4F9AE02/D2FCrkFo3wsYBfpYHSA5R2eqIlg.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 2f:77:12:5c:d4:8b:4f:82:e2:b8:c3:77:f5:5d:44:39:d6:26: ed:09:43:0c:90:e4:22:05:fa:ff:11:4c:17:78:f3:0e:0c:55: 7e:31:71:00:91:68:32:93:81:25:cb:c8:42:dc:43:c2:68:3c: 84:4a:12:44:9d:f5:67:5d:78:8c:d3:cc:87:1c:93:14:54:39: 15:96:2f:99:46:b4:d5:e3:78:5d:68:0c:3d:3e:00:67:58:12: 5c:bd:d2:b8:1f:a2:c9:9f:d0:06:dc:aa:70:63:90:27:6a:70: a7:16:d2:e0:72:35:7a:a1:3d:d4:54:9f:4d:f8:91:81:07:3e: 5f:78:4e:f6:b3:4f:72:a2:07:cd:7a:e5:0c:5b:ac:59:59:f7: 24:bc:9b:e7:4e:a9:3f:21:5f:fb:28:76:a2:6c:0a:bb:8d:8d: aa:bf:61:64:be:7b:7d:4a:05:11:50:ca:87:a4:c3:12:16:94: e4:b0:9b:29:4f:99:2c:cf:d9:44:f3:f6:90:5a:ce:2f:48:ee: cf:dc:cc:51:05:5f:87:1c:71:19:2a:6b:ad:bb:11:b1:11:62: ea:59:66:a1:a9:15:f5:ab:5f:51:da:6c:bf:f6:b0:a0:96:24: c8:43:bf:b2:59:c8:3a:06:b9:02:f8:35:b5:36:56:cc:2a:eb: 9f:e5:32:a7 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAXcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MzRCQjAxMTAvBgNVBAUTKDBGNjE0MkFFNDE2OERGMEIxODA1RkE1ODFEMjAzOTQ3 NjdBQTIyNTgwHhcNMjUwNjA5MDI1MTM1WhcNMjUwNjE2MDI1MTM1WjAYMRYwFAYD VQQDEw02ODQ2NGMzNy1hZGQ3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxBJGGxhyQyLAtEF5Z6px6zvPBxmljuUwiiUjRvMJqkmTKC1LioMB9P+CkPXB X89n2dqQwPt7Y58+lFcvgSopVvNDqxsUMgzGGsnEfm/PdrEA35tW9aIXbJRZzyhH 3vw+2Ed0/Tj6AM3PKn5wTgh5uw0HWdL41J4fpHvGLtq2rvW1H+0SbMJEJTdZhvo1 C9I5L94Qz7UJEhb1CP2dE+zMysaLmtfp6iaA7vNYsiVGVRCsXodL+fg8A/Ad1lvO 3qSLJRzopMqpgbCCZ2NVK89f6LCcWRLiZ7biMMEItoznLLV8hCziBMybajjq0YgU 146qHTy5dlRRFnLwWsTRbyPNdQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFDx+j8HB aGdAjXEQMBnh2R2wNwT3MB8GA1UdIwQYMBaAFA9hQq5BaN8LGAX6WB0gOUdnqiJY MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzNEJCMC9ERDQ3MzhFMDBB QkQxMUVFOTE3REE2NTVDNEY5QUUwMi9EMkZDcmtGbzN3c1lCZnBZSFNBNVIyZXFJ bGcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0QyRkNya0ZvM3dzWUJmcFlIU0E1UjJlcUlsZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz NEJCMC9ERDQ3MzhFMDBBQkQxMUVFOTE3REE2NTVDNEY5QUUwMi9EMkZDcmtGbzN3 c1lCZnBZSFNBNVIyZXFJbGcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAvdxJc1ItPguK4w3f1XUQ51ibtCUMMkOQiBfr/EUwXePMODFV+MXEA kWgyk4Ely8hC3EPCaDyEShJEnfVnXXiM08yHHJMUVDkVli+ZRrTV43hdaAw9PgBn WBJcvdK4H6LJn9AG3KpwY5AnanCnFtLgcjV6oT3UVJ9N+JGBBz5feE72s09yogfN euUMW6xZWfckvJvnTqk/IV/7KHaibAq7jY2qv2Fkvnt9SgURUMqHpMMSFpTksJsp T5ksz9lE8/aQWs4vSO7P3MxRBV+HHHEZKmutuxGxEWLqWWahqRX1q19R2my/9rCg liTIQ7+yWcg6BrkC+DW1NlbMKuuf5TKn -----END CERTIFICATE-----Generated at Mon Jun 9 12:36:54 2025 by rpki-client