$ rpki-client -vvf rpki.apnic.net/member_repository/A91620E0/D964B482310E11EA9C3CE72FC4F9AE02/dOW7m208x_jCmoO9yEkrllnw7hc.mft File: dOW7m208x_jCmoO9yEkrllnw7hc.mft (raw, json) Hash identifier: K/XTpw1HK1V2UAJHC9avizZ+J7LOORl2kx3owg71qUk= Subject key identifier: 19:51:39:DA:B2:15:CB:4B:28:38:11:1D:03:88:68:D5:DE:51:16:57 Authority key identifier: 74:E5:BB:9B:6D:3C:C7:F8:C2:9A:83:BD:C8:49:2B:96:59:F0:EE:17 Certificate issuer: /CN=A91620E0/serialNumber=74E5BB9B6D3CC7F8C29A83BDC8492B9659F0EE17 Certificate serial: 0E76 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dOW7m208x_jCmoO9yEkrllnw7hc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91620E0/D964B482310E11EA9C3CE72FC4F9AE02/dOW7m208x_jCmoO9yEkrllnw7hc.mft Manifest number: 0D44 Signing time: Mon 02 Jun 2025 19:14:36 +0000 Manifest this update: Mon 02 Jun 2025 19:14:36 +0000 Manifest next update: Mon 09 Jun 2025 19:14:36 +0000 Files and hashes: 1: dOW7m208x_jCmoO9yEkrllnw7hc.crl (hash: myvXbreh6+KOXUX6Ip1gn17748aX30VN/ztjSHOwh2o=) 2: 1CC3EA9EF83911EF9736296CC4F9AE02.roa (hash: Klw2ZsIgKZiLRWPkrj78905L7dqh0qApGHuY3oaa1xg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91620E0/D964B482310E11EA9C3CE72FC4F9AE02/dOW7m208x_jCmoO9yEkrllnw7hc.crl rsync://rpki.apnic.net/member_repository/A91620E0/D964B482310E11EA9C3CE72FC4F9AE02/dOW7m208x_jCmoO9yEkrllnw7hc.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dOW7m208x_jCmoO9yEkrllnw7hc.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Jun 2025 19:14:35 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3702 (0xe76) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91620E0, serialNumber=74E5BB9B6D3CC7F8C29A83BDC8492B9659F0EE17 Validity Not Before: Jun 2 19:14:36 2025 GMT Not After : Jun 9 19:14:36 2025 GMT Subject: CN=683df81c-5bdf Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cd:50:9f:53:97:c4:41:b3:f0:a1:67:c1:22:8e: a4:58:8c:02:a1:bd:ef:54:df:69:22:25:57:60:b4: 89:1a:dc:69:e1:60:5c:9e:02:d6:89:fd:6a:2c:a0: 1b:6a:18:77:e2:8b:a1:38:1a:49:71:31:00:72:ce: 5e:fb:c7:82:3e:d0:62:d0:2e:c5:ad:f7:73:a0:b2: 88:12:bb:56:86:9e:ee:05:72:e3:7e:b2:ea:58:b2: 7a:e4:72:39:eb:ae:2d:3a:a7:ea:59:cd:9f:f2:54: c6:0b:18:c3:3e:74:9f:1c:de:f5:e0:91:8f:95:e7: 93:7f:9f:84:85:0e:f0:25:bd:7f:7f:85:a7:97:c1: 52:12:a7:07:a7:8f:aa:03:d1:42:96:56:b3:76:bc: dd:e7:97:19:3d:6d:9c:c2:6a:2b:fe:6f:34:5e:58: 3c:94:e9:89:09:09:ea:e2:95:54:de:47:59:1a:f9: 03:20:4d:4d:3d:52:d3:bf:b7:8a:42:35:3f:c5:d8: 0e:81:36:08:cd:c1:67:eb:4e:99:98:c6:05:91:a7: 0b:8e:31:13:3d:9b:2d:c9:fc:47:fb:86:e8:9f:19: 5b:ac:c4:3c:9c:dd:52:e1:f3:8d:cf:b2:4f:fc:43: cd:6f:aa:6d:61:7b:62:7d:10:54:af:3b:5b:d7:c8: 24:29 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 19:51:39:DA:B2:15:CB:4B:28:38:11:1D:03:88:68:D5:DE:51:16:57 X509v3 Authority Key Identifier: keyid:74:E5:BB:9B:6D:3C:C7:F8:C2:9A:83:BD:C8:49:2B:96:59:F0:EE:17 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91620E0/D964B482310E11EA9C3CE72FC4F9AE02/dOW7m208x_jCmoO9yEkrllnw7hc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dOW7m208x_jCmoO9yEkrllnw7hc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91620E0/D964B482310E11EA9C3CE72FC4F9AE02/dOW7m208x_jCmoO9yEkrllnw7hc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 88:6e:09:28:be:f8:c4:7b:73:3b:d9:83:c9:dc:00:9d:67:b7: 75:8c:e7:76:ee:b7:03:e9:6c:d1:43:b2:2b:1c:35:4c:c5:8a: ce:00:57:dd:f0:a1:7f:91:09:17:b3:ac:77:ac:93:63:64:02: 65:c1:6a:f1:02:f5:6b:59:c3:f9:e5:a6:46:e6:76:0f:20:91: 10:c3:33:44:0b:6e:61:cc:da:36:d1:1f:c6:bb:54:dd:c2:5a: 03:c6:32:e1:85:96:2d:f7:ae:98:67:80:91:ec:00:28:f3:e3: c2:0e:3a:89:21:81:40:72:50:5f:53:3d:77:d3:c9:83:11:9d: f1:22:c1:6e:72:f8:99:6d:9d:99:cb:96:cc:ab:17:4f:d6:df: 57:39:83:49:40:09:fd:be:33:a6:e0:f1:f7:60:04:77:29:c2: ab:7a:b4:55:3a:db:27:40:d2:11:46:d5:77:05:72:e1:a4:5b: 73:25:bd:1d:55:a1:d5:9b:cf:d7:7a:2c:0b:e5:9a:3e:8b:da: 60:85:58:1c:b3:e7:49:54:cb:43:1c:96:e9:bd:3a:53:41:26: 74:c9:87:6c:be:a7:d6:ec:13:72:a0:64:f0:4a:53:5e:e9:31: 17:0e:c2:64:1c:3d:83:f8:f2:9c:29:49:21:81:91:04:b3:d7: 19:a8:57:42 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDnYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NjIwRTAxMTAvBgNVBAUTKDc0RTVCQjlCNkQzQ0M3RjhDMjlBODNCREM4NDkyQjk2 NTlGMEVFMTcwHhcNMjUwNjAyMTkxNDM2WhcNMjUwNjA5MTkxNDM2WjAYMRYwFAYD VQQDEw02ODNkZjgxYy01YmRmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzVCfU5fEQbPwoWfBIo6kWIwCob3vVN9pIiVXYLSJGtxp4WBcngLWif1qLKAb ahh34ouhOBpJcTEAcs5e+8eCPtBi0C7FrfdzoLKIErtWhp7uBXLjfrLqWLJ65HI5 664tOqfqWc2f8lTGCxjDPnSfHN714JGPleeTf5+EhQ7wJb1/f4Wnl8FSEqcHp4+q A9FCllazdrzd55cZPW2cwmor/m80Xlg8lOmJCQnq4pVU3kdZGvkDIE1NPVLTv7eK QjU/xdgOgTYIzcFn606ZmMYFkacLjjETPZstyfxH+4bonxlbrMQ8nN1S4fONz7JP /EPNb6ptYXtifRBUrztb18gkKQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFBlROdqy FctLKDgRHQOIaNXeURZXMB8GA1UdIwQYMBaAFHTlu5ttPMf4wpqDvchJK5ZZ8O4X MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2MjBFMC9EOTY0QjQ4MjMx MEUxMUVBOUMzQ0U3MkZDNEY5QUUwMi9kT1c3bTIwOHhfakNtb085eUVrcmxsbnc3 aGMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL2RPVzdtMjA4eF9qQ21vTzl5RWtybGxudzdoYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 MjBFMC9EOTY0QjQ4MjMxMEUxMUVBOUMzQ0U3MkZDNEY5QUUwMi9kT1c3bTIwOHhf akNtb085eUVrcmxsbnc3aGMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCIbgkovvjEe3M72YPJ3ACdZ7d1jOd27rcD6WzRQ7IrHDVMxYrOAFfd 8KF/kQkXs6x3rJNjZAJlwWrxAvVrWcP55aZG5nYPIJEQwzNEC25hzNo20R/Gu1Td wloDxjLhhZYt966YZ4CR7AAo8+PCDjqJIYFAclBfUz1308mDEZ3xIsFucviZbZ2Z y5bMqxdP1t9XOYNJQAn9vjOm4PH3YAR3KcKrerRVOtsnQNIRRtV3BXLhpFtzJb0d VaHVm8/XeiwL5Zo+i9pghVgcs+dJVMtDHJbpvTpTQSZ0yYdsvqfW7BNyoGTwSlNe 6TEXDsJkHD2D+PKcKUkhgZEEs9cZqFdC -----END CERTIFICATE-----Generated at Wed Jun 4 00:03:28 2025 by rpki-client