$ rpki-client -vvf rpki.apnic.net/member_repository/A9163998/30CC084A08DC11EDBEDE612BC4F9AE02/dCWq4W3bRko-K0ecekDJkCODa6A.mft File: dCWq4W3bRko-K0ecekDJkCODa6A.mft (raw, json) Hash identifier: 86SMK1vKq9jrtzTyPRpzlWDqn+MenfPYJRiwbnzjNlQ= Subject key identifier: C6:98:CC:CD:E8:F5:C8:B0:32:97:9F:99:EF:31:91:BF:C4:E3:AD:EA Authority key identifier: 74:25:AA:E1:6D:DB:46:4A:3E:2B:47:9C:7A:40:C9:90:23:83:6B:A0 Certificate issuer: /CN=A9163998/serialNumber=7425AAE16DDB464A3E2B479C7A40C99023836BA0 Certificate serial: 02BD Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dCWq4W3bRko-K0ecekDJkCODa6A.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9163998/30CC084A08DC11EDBEDE612BC4F9AE02/dCWq4W3bRko-K0ecekDJkCODa6A.mft Manifest number: 02A8 Signing time: Sat 07 Jun 2025 01:39:49 +0000 Manifest this update: Sat 07 Jun 2025 01:39:49 +0000 Manifest next update: Sat 14 Jun 2025 01:39:49 +0000 Files and hashes: 1: dCWq4W3bRko-K0ecekDJkCODa6A.crl (hash: +uR8sFVMtCiAL+nOmqGsZRQBgHN7Rh1KpXQ6FnsI5hM=) 2: 9BA94A4A0D8911ED999D4F3BC4F9AE02.roa (hash: GPv0enDipVUFIVtjxcJ03U5PrJ0KyT4M8Wg4OCxsEOQ=) 3: A3C1A64E020811EF900CC60CC4F9AE02.roa (hash: a5M8jT5qH+Rv8PZuWCtzl1JNud/MgUW6Ycrm/NIQszY=) 4: 1EA5984A0BE111ED9E3AA135C4F9AE02.roa (hash: VJmNEduqkZiEGi1xGAFyFFiL246WcTWspaksMGhusvM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9163998/30CC084A08DC11EDBEDE612BC4F9AE02/dCWq4W3bRko-K0ecekDJkCODa6A.crl rsync://rpki.apnic.net/member_repository/A9163998/30CC084A08DC11EDBEDE612BC4F9AE02/dCWq4W3bRko-K0ecekDJkCODa6A.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dCWq4W3bRko-K0ecekDJkCODa6A.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 14 Jun 2025 01:39:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 701 (0x2bd) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9163998, serialNumber=7425AAE16DDB464A3E2B479C7A40C99023836BA0 Validity Not Before: Jun 7 01:39:49 2025 GMT Not After : Jun 14 01:39:49 2025 GMT Subject: CN=68439865-bf66 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c9:20:aa:8c:42:37:ed:68:28:d8:c0:4d:34:3e: 64:50:0b:df:c9:9f:cd:80:c4:2b:bc:a2:53:6b:b9: ae:74:49:43:e6:c9:7d:d8:6e:47:59:c1:82:57:49: 05:e9:06:92:e0:fc:6f:c4:df:51:82:09:b6:b6:4c: 3e:31:2d:51:ac:e3:63:0c:b9:39:ef:b1:1c:a6:92: e8:03:c5:9a:6f:12:96:e8:20:18:7b:a3:2e:0c:02: 40:d1:22:6a:7d:dc:05:c5:17:80:e4:5a:15:ee:72: f7:73:d8:4c:79:ef:8f:e7:69:f6:d0:7d:21:b5:85: 23:3a:55:58:e3:d0:8e:cf:4c:4b:83:cb:37:20:ef: ad:22:de:b7:f0:eb:b7:07:4c:46:70:aa:1b:4e:3d: f0:9f:ae:f3:2b:24:53:83:b7:1e:e7:96:3b:7a:9b: ee:3b:99:ea:b6:f1:23:1f:fa:84:28:d7:03:1f:9f: e1:27:e6:f5:5e:ec:50:b2:bb:3c:7e:17:e8:73:39: 43:71:8b:f8:36:da:1c:bf:bc:3b:d5:8d:a6:5f:d2: af:d4:24:53:b8:f2:85:48:80:57:b4:f5:f7:b5:41: c1:29:a9:6a:b5:9a:4a:ec:de:24:78:9c:3b:3d:40: 86:51:36:26:58:af:0b:58:b1:b6:8e:0e:5b:c9:a0: 39:43 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C6:98:CC:CD:E8:F5:C8:B0:32:97:9F:99:EF:31:91:BF:C4:E3:AD:EA X509v3 Authority Key Identifier: keyid:74:25:AA:E1:6D:DB:46:4A:3E:2B:47:9C:7A:40:C9:90:23:83:6B:A0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9163998/30CC084A08DC11EDBEDE612BC4F9AE02/dCWq4W3bRko-K0ecekDJkCODa6A.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dCWq4W3bRko-K0ecekDJkCODa6A.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9163998/30CC084A08DC11EDBEDE612BC4F9AE02/dCWq4W3bRko-K0ecekDJkCODa6A.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 4e:5b:0d:9e:6b:b4:6b:9f:4c:17:76:75:83:15:ff:98:2c:76: 75:44:24:53:4d:a1:20:b4:83:0e:c2:c4:06:3b:e7:aa:40:96: 9f:e6:71:cd:98:76:8e:78:7e:fa:ea:cb:50:1d:b5:66:eb:0b: 58:1e:5e:61:fc:8a:61:b1:87:98:fc:62:4c:b7:95:17:2f:4f: d2:68:7c:5f:23:14:c5:93:d6:a1:ec:e0:d9:c8:52:98:3a:2e: 80:05:7a:74:65:50:f1:c8:3f:98:27:6b:b8:5e:69:0b:8c:72: 79:7a:03:85:6e:e2:72:2d:3c:f2:ed:04:89:cb:24:73:91:08: 1d:eb:68:d5:ae:f8:16:24:be:8d:a1:da:73:47:eb:9a:97:05: 1e:47:fe:42:74:97:c4:f6:e6:ab:78:3c:23:b9:de:bd:01:6b: 76:5f:f5:e0:34:16:29:50:15:a1:85:b8:4b:d8:19:48:d0:08: 35:e3:dd:0b:c6:7d:bb:8e:3d:81:3f:e2:3b:e9:31:a4:17:a4: 62:2b:4d:0c:5b:7c:46:84:3f:54:f1:4e:4d:75:54:1a:63:e5: b8:81:be:d4:e4:64:cf:dc:a7:ed:f0:5a:00:f3:77:ef:a3:e6: 32:bc:3a:af:32:35:c8:a5:f9:64:d9:e0:9b:25:7c:68:4c:3c: 8a:3f:a4:0f -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAr0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NjM5OTgxMTAvBgNVBAUTKDc0MjVBQUUxNkREQjQ2NEEzRTJCNDc5QzdBNDBDOTkw MjM4MzZCQTAwHhcNMjUwNjA3MDEzOTQ5WhcNMjUwNjE0MDEzOTQ5WjAYMRYwFAYD VQQDEw02ODQzOTg2NS1iZjY2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAySCqjEI37Wgo2MBNND5kUAvfyZ/NgMQrvKJTa7mudElD5sl92G5HWcGCV0kF 6QaS4PxvxN9Rggm2tkw+MS1RrONjDLk577EcppLoA8WabxKW6CAYe6MuDAJA0SJq fdwFxReA5FoV7nL3c9hMee+P52n20H0htYUjOlVY49COz0xLg8s3IO+tIt638Ou3 B0xGcKobTj3wn67zKyRTg7ce55Y7epvuO5nqtvEjH/qEKNcDH5/hJ+b1XuxQsrs8 fhfoczlDcYv4Ntocv7w71Y2mX9Kv1CRTuPKFSIBXtPX3tUHBKalqtZpK7N4keJw7 PUCGUTYmWK8LWLG2jg5byaA5QwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFMaYzM3o 9ciwMpefme8xkb/E463qMB8GA1UdIwQYMBaAFHQlquFt20ZKPitHnHpAyZAjg2ug MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2Mzk5OC8zMENDMDg0QTA4 REMxMUVEQkVERTYxMkJDNEY5QUUwMi9kQ1dxNFczYlJrby1LMGVjZWtESmtDT0Rh NkEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL2RDV3E0VzNiUmtvLUswZWNla0RKa0NPRGE2QS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 Mzk5OC8zMENDMDg0QTA4REMxMUVEQkVERTYxMkJDNEY5QUUwMi9kQ1dxNFczYlJr by1LMGVjZWtESmtDT0RhNkEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBOWw2ea7Rrn0wXdnWDFf+YLHZ1RCRTTaEgtIMOwsQGO+eqQJaf5nHN mHaOeH766stQHbVm6wtYHl5h/IphsYeY/GJMt5UXL0/SaHxfIxTFk9ah7ODZyFKY Oi6ABXp0ZVDxyD+YJ2u4XmkLjHJ5egOFbuJyLTzy7QSJyyRzkQgd62jVrvgWJL6N odpzR+ualwUeR/5CdJfE9uareDwjud69AWt2X/XgNBYpUBWhhbhL2BlI0Ag1490L xn27jj2BP+I76TGkF6RiK00MW3xGhD9U8U5NdVQaY+W4gb7U5GTP3Kft8FoA83fv o+YyvDqvMjXIpflk2eCbJXxoTDyKP6QP -----END CERTIFICATE-----Generated at Mon Jun 9 02:50:26 2025 by rpki-client