$ rpki-client -vvf rpki.apnic.net/member_repository/A9154961/FEBBFA801BE211EDAF17A558C4F9AE02/M7DVaJUEg2wR6ezdDRGcBY0_dgs.mft File: M7DVaJUEg2wR6ezdDRGcBY0_dgs.mft (raw, json) Hash identifier: RdfyPcw81MICkD6rx2ur0+LPxCMAjL4b/aUX2aSX+O0= Subject key identifier: 10:63:2A:BD:56:B1:BD:AF:5F:98:A9:2E:D7:D6:26:91:B9:2C:7F:40 Authority key identifier: 33:B0:D5:68:95:04:83:6C:11:E9:EC:DD:0D:11:9C:05:8D:3F:76:0B Certificate issuer: /CN=A9154961/serialNumber=33B0D5689504836C11E9ECDD0D119C058D3F760B Certificate serial: 025A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/M7DVaJUEg2wR6ezdDRGcBY0_dgs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9154961/FEBBFA801BE211EDAF17A558C4F9AE02/M7DVaJUEg2wR6ezdDRGcBY0_dgs.mft Manifest number: 0254 Signing time: Sat 31 May 2025 02:01:11 +0000 Manifest this update: Sat 31 May 2025 02:01:10 +0000 Manifest next update: Sat 07 Jun 2025 02:01:10 +0000 Files and hashes: 1: M7DVaJUEg2wR6ezdDRGcBY0_dgs.crl (hash: hEhCsdZpquJaz74Xmc72Y59rXlwEd/HgzIqEq15mAjk=) 2: 7359F5C43A4A11ED9B8FF35AC4F9AE02.roa (hash: RW7mrI/X8sf61J1ueh+btyO6BZUeqCysdCPEaUN7lpY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9154961/FEBBFA801BE211EDAF17A558C4F9AE02/M7DVaJUEg2wR6ezdDRGcBY0_dgs.crl rsync://rpki.apnic.net/member_repository/A9154961/FEBBFA801BE211EDAF17A558C4F9AE02/M7DVaJUEg2wR6ezdDRGcBY0_dgs.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/M7DVaJUEg2wR6ezdDRGcBY0_dgs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 07 Jun 2025 02:01:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 602 (0x25a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9154961, serialNumber=33B0D5689504836C11E9ECDD0D119C058D3F760B Validity Not Before: May 31 02:01:10 2025 GMT Not After : Jun 7 02:01:10 2025 GMT Subject: CN=683a62e7-c392 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:0b:79:5f:89:93:e1:c3:87:66:f5:c1:2a:b1: b4:6a:0b:26:85:ba:ba:cb:bd:18:bf:50:e3:85:6c: 43:83:16:16:85:98:2e:7f:1d:52:68:53:8b:ae:b8: 23:b8:22:8b:6a:b6:79:b9:1d:fb:ad:98:90:9d:f9: 89:2c:58:38:62:02:56:83:bb:6a:41:94:af:5e:98: 15:d3:c6:ee:9b:d7:6a:2d:3d:3b:b3:5a:d3:81:76: a7:2f:7a:5a:b1:86:da:ad:57:d7:95:fb:2f:6d:ad: 8e:9a:db:eb:29:c4:a9:d6:e8:7e:c6:f0:b7:03:29: b8:b0:7e:f1:77:bd:01:2a:09:21:26:b5:7b:fe:3f: b1:54:e6:b0:ac:f9:0b:8f:ef:85:d2:8d:8b:40:40: 20:34:80:a6:18:be:d3:6e:ba:c4:f2:99:68:8b:07: 22:85:e9:f3:1e:12:4e:c7:dc:75:27:d0:f8:7c:45: 63:f0:09:5c:fe:cd:e6:cd:fe:53:d9:0e:7d:1b:31: 21:f9:b8:ac:61:88:66:94:10:69:4a:1c:68:38:ff: 5c:d9:f1:00:05:34:66:b7:7f:11:f5:b2:9d:aa:66: 62:dd:8f:28:8f:95:f8:22:98:b9:ee:d6:f4:d0:49: 26:71:4b:51:f6:12:97:32:19:0a:01:6b:e8:80:db: 72:bb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 10:63:2A:BD:56:B1:BD:AF:5F:98:A9:2E:D7:D6:26:91:B9:2C:7F:40 X509v3 Authority Key Identifier: keyid:33:B0:D5:68:95:04:83:6C:11:E9:EC:DD:0D:11:9C:05:8D:3F:76:0B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9154961/FEBBFA801BE211EDAF17A558C4F9AE02/M7DVaJUEg2wR6ezdDRGcBY0_dgs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/M7DVaJUEg2wR6ezdDRGcBY0_dgs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9154961/FEBBFA801BE211EDAF17A558C4F9AE02/M7DVaJUEg2wR6ezdDRGcBY0_dgs.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 29:c8:79:97:f2:8e:7d:26:b9:3a:9b:3b:11:db:8e:90:27:3f: 6c:50:80:88:fd:b7:2c:09:0e:55:20:5d:0b:62:f2:9e:82:f7: b2:f0:85:30:cb:13:12:9a:7a:a3:16:6c:0a:58:b9:f7:6b:e2: f6:fa:40:b8:c4:37:52:92:c5:c6:ce:38:c2:90:37:cd:ac:a4: a3:5e:de:d4:11:74:b8:33:5f:21:5d:2f:25:bd:71:57:62:c6: 26:c7:ba:c1:62:3d:83:6c:9c:c6:b5:0e:e7:51:ae:f0:1c:93: 1d:7e:f9:6b:de:40:21:9b:3c:b7:75:4e:0d:2e:b6:29:09:b9: ce:a3:b9:a9:9b:da:40:fc:5a:59:c5:1e:6b:d0:e0:a8:48:5a: 86:93:c5:5a:01:4c:3f:f8:3e:b2:ef:e1:f5:be:a0:59:c4:ab: bd:21:89:2b:fd:39:9a:c4:8f:eb:76:26:6d:6b:22:48:0e:28: d6:f3:74:35:19:ad:f0:2d:8a:4f:d5:b0:53:0e:c0:db:2b:6c: 11:e6:09:e3:5d:28:ee:f2:4d:b7:de:86:76:3b:ac:f6:08:77: 29:fe:48:bc:ea:c9:e8:f9:30:d3:ea:82:fc:41:b8:63:45:92: 0c:e4:a8:a1:64:0a:9b:28:7c:56:7d:08:76:c1:71:98:be:64: a7:06:86:54 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAlowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTQ5NjExMTAvBgNVBAUTKDMzQjBENTY4OTUwNDgzNkMxMUU5RUNERDBEMTE5QzA1 OEQzRjc2MEIwHhcNMjUwNTMxMDIwMTEwWhcNMjUwNjA3MDIwMTEwWjAYMRYwFAYD VQQDEw02ODNhNjJlNy1jMzkyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvgt5X4mT4cOHZvXBKrG0agsmhbq6y70Yv1DjhWxDgxYWhZgufx1SaFOLrrgj uCKLarZ5uR37rZiQnfmJLFg4YgJWg7tqQZSvXpgV08bum9dqLT07s1rTgXanL3pa sYbarVfXlfsvba2OmtvrKcSp1uh+xvC3Aym4sH7xd70BKgkhJrV7/j+xVOawrPkL j++F0o2LQEAgNICmGL7TbrrE8ploiwcihenzHhJOx9x1J9D4fEVj8Alc/s3mzf5T 2Q59GzEh+bisYYhmlBBpShxoOP9c2fEABTRmt38R9bKdqmZi3Y8oj5X4Ipi57tb0 0EkmcUtR9hKXMhkKAWvogNtyuwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFBBjKr1W sb2vX5ipLtfWJpG5LH9AMB8GA1UdIwQYMBaAFDOw1WiVBINsEens3Q0RnAWNP3YL MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1NDk2MS9GRUJCRkE4MDFC RTIxMUVEQUYxN0E1NThDNEY5QUUwMi9NN0RWYUpVRWcyd1I2ZXpkRFJHY0JZMF9k Z3MuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL003RFZhSlVFZzJ3UjZlemREUkdjQlkwX2Rncy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 NDk2MS9GRUJCRkE4MDFCRTIxMUVEQUYxN0E1NThDNEY5QUUwMi9NN0RWYUpVRWcy d1I2ZXpkRFJHY0JZMF9kZ3MubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQApyHmX8o59Jrk6mzsR246QJz9sUICI/bcsCQ5VIF0LYvKegvey8IUw yxMSmnqjFmwKWLn3a+L2+kC4xDdSksXGzjjCkDfNrKSjXt7UEXS4M18hXS8lvXFX YsYmx7rBYj2DbJzGtQ7nUa7wHJMdfvlr3kAhmzy3dU4NLrYpCbnOo7mpm9pA/FpZ xR5r0OCoSFqGk8VaAUw/+D6y7+H1vqBZxKu9IYkr/TmaxI/rdiZtayJIDijW83Q1 Ga3wLYpP1bBTDsDbK2wR5gnjXSju8k233oZ2O6z2CHcp/ki86sno+TDT6oL8Qbhj RZIM5KihZAqbKHxWfQh2wXGYvmSnBoZU -----END CERTIFICATE-----Generated at Sat May 31 16:31:20 2025 by rpki-client