$ rpki-client -vvf rpki.apnic.net/member_repository/A9167F0C/0A58A19A70AB11E98317A57BC4F9AE02/DvqgEPOwbVMhkO827SAodPggF8k.mft File: DvqgEPOwbVMhkO827SAodPggF8k.mft (raw, json) Hash identifier: jGxjZeE2ydsKM0hU3z/NutIVDDcNOMW4dvHZAFSOSe4= Subject key identifier: 99:A4:BE:21:57:B6:B2:26:83:C1:31:D9:80:48:C2:5E:A0:2B:6A:DB Authority key identifier: 0E:FA:A0:10:F3:B0:6D:53:21:90:EF:36:ED:20:28:74:F8:20:17:C9 Certificate issuer: /CN=A9167F0C/serialNumber=0EFAA010F3B06D532190EF36ED202874F82017C9 Certificate serial: 0F39 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DvqgEPOwbVMhkO827SAodPggF8k.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9167F0C/0A58A19A70AB11E98317A57BC4F9AE02/DvqgEPOwbVMhkO827SAodPggF8k.mft Manifest number: 1929 Signing time: Fri 30 May 2025 17:47:45 +0000 Manifest this update: Fri 30 May 2025 17:47:44 +0000 Manifest next update: Fri 06 Jun 2025 17:47:44 +0000 Files and hashes: 1: DvqgEPOwbVMhkO827SAodPggF8k.crl (hash: 5rwb5+12d8+zu/BEu/zUTK/1uKmqLy3M6TbCxS7bP5k=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9167F0C/0A58A19A70AB11E98317A57BC4F9AE02/DvqgEPOwbVMhkO827SAodPggF8k.crl rsync://rpki.apnic.net/member_repository/A9167F0C/0A58A19A70AB11E98317A57BC4F9AE02/DvqgEPOwbVMhkO827SAodPggF8k.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DvqgEPOwbVMhkO827SAodPggF8k.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 06 Jun 2025 17:47:44 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3897 (0xf39) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9167F0C, serialNumber=0EFAA010F3B06D532190EF36ED202874F82017C9 Validity Not Before: May 30 17:47:44 2025 GMT Not After : Jun 6 17:47:44 2025 GMT Subject: CN=6839ef41-2d81 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:02:a5:ff:fe:ce:2b:c7:02:75:b6:36:a0:40: fa:ae:f5:85:9b:be:bd:7c:57:a1:1d:d4:a6:aa:3d: 13:75:ec:53:26:e3:24:18:f2:02:24:93:09:d6:e5: 0c:78:79:d7:de:c7:ab:d2:a2:fe:41:8e:ee:87:0f: 56:ef:fb:a3:83:30:e3:bb:a5:d9:2b:9f:8e:c5:05: bd:be:5e:29:9c:5d:76:3b:06:96:fd:36:eb:06:f3: 9b:ee:ca:4f:8e:38:cd:e3:cc:8d:98:2a:fc:3a:21: 2d:a6:9a:51:44:fb:8f:2d:33:d1:fa:c1:9b:bd:c3: a0:c2:cf:00:40:ce:0f:35:fd:33:3e:bd:51:36:ed: c4:73:11:c9:87:3c:fb:1d:d5:52:63:7a:2e:06:ea: da:e1:85:1a:7a:06:63:3e:f8:01:f6:ab:7d:b3:d4: 22:7f:4d:3f:ec:6d:49:2f:55:2a:c4:c7:b7:f0:a2: d7:2b:5c:d4:da:67:5d:38:a1:94:1c:f3:f4:2e:86: 8e:a2:80:3c:0f:26:e9:2e:6d:b7:80:57:a5:2d:3b: bd:49:2f:7d:7e:51:e8:3c:41:9c:00:f0:a3:9e:d8: a8:6f:b9:bf:97:bd:5a:cc:d9:41:1f:47:dc:cc:d2: 50:22:78:54:76:e4:fb:a7:fa:fa:2d:a3:57:a1:80: f6:41 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 99:A4:BE:21:57:B6:B2:26:83:C1:31:D9:80:48:C2:5E:A0:2B:6A:DB X509v3 Authority Key Identifier: keyid:0E:FA:A0:10:F3:B0:6D:53:21:90:EF:36:ED:20:28:74:F8:20:17:C9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9167F0C/0A58A19A70AB11E98317A57BC4F9AE02/DvqgEPOwbVMhkO827SAodPggF8k.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DvqgEPOwbVMhkO827SAodPggF8k.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9167F0C/0A58A19A70AB11E98317A57BC4F9AE02/DvqgEPOwbVMhkO827SAodPggF8k.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 18:27:af:14:ff:df:a9:b7:5a:46:82:68:e3:c5:9b:fd:f8:9c: 2e:a2:90:15:75:f4:1c:3a:0f:72:eb:22:42:34:38:84:fb:b8: 1b:a0:07:2f:4d:89:cf:85:01:4b:0c:d2:1b:b5:48:0b:c0:bc: 35:60:3d:f7:ca:a9:e9:05:15:91:f1:aa:64:37:d9:35:db:49: 58:6b:15:a5:fa:ca:c1:ef:be:59:fc:62:ad:9f:c4:1e:60:4d: bd:ae:f4:f5:5f:a4:60:e6:2a:cd:33:f7:cd:9b:82:74:c2:8b: e8:4a:86:94:f2:dc:55:c7:00:fe:cc:c8:02:32:af:42:c3:2f: 54:fd:16:4c:3b:3f:31:98:93:41:97:2b:63:fc:c0:97:c3:fd: 0b:d1:2c:f2:9f:14:19:87:9f:7a:dd:8e:58:c0:83:d9:27:55: 29:27:3f:6a:38:28:79:a2:bb:77:e7:a3:47:98:07:7a:0b:38: 6c:07:14:38:e0:68:dd:92:73:2b:cd:ba:75:8b:1a:71:86:9c: 69:75:63:b2:9f:73:b3:22:18:a2:ad:81:78:f3:05:54:85:75: 3c:bb:0d:58:2e:ff:d0:13:83:3a:9d:ac:31:99:7e:92:73:50: c2:2e:b4:01:eb:a8:05:6f:99:fa:7b:93:64:43:fc:44:92:d7: db:b6:ad:e2 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDzkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NjdGMEMxMTAvBgNVBAUTKDBFRkFBMDEwRjNCMDZENTMyMTkwRUYzNkVEMjAyODc0 RjgyMDE3QzkwHhcNMjUwNTMwMTc0NzQ0WhcNMjUwNjA2MTc0NzQ0WjAYMRYwFAYD VQQDEw02ODM5ZWY0MS0yZDgxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvgKl//7OK8cCdbY2oED6rvWFm769fFehHdSmqj0TdexTJuMkGPICJJMJ1uUM eHnX3ser0qL+QY7uhw9W7/ujgzDju6XZK5+OxQW9vl4pnF12OwaW/TbrBvOb7spP jjjN48yNmCr8OiEtpppRRPuPLTPR+sGbvcOgws8AQM4PNf0zPr1RNu3EcxHJhzz7 HdVSY3ouBura4YUaegZjPvgB9qt9s9Qif00/7G1JL1UqxMe38KLXK1zU2mddOKGU HPP0LoaOooA8DybpLm23gFelLTu9SS99flHoPEGcAPCjntiob7m/l71azNlBH0fc zNJQInhUduT7p/r6LaNXoYD2QQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJmkviFX trImg8Ex2YBIwl6gK2rbMB8GA1UdIwQYMBaAFA76oBDzsG1TIZDvNu0gKHT4IBfJ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2N0YwQy8wQTU4QTE5QTcw QUIxMUU5ODMxN0E1N0JDNEY5QUUwMi9EdnFnRVBPd2JWTWhrTzgyN1NBb2RQZ2dG OGsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0R2cWdFUE93YlZNaGtPODI3U0FvZFBnZ0Y4ay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 N0YwQy8wQTU4QTE5QTcwQUIxMUU5ODMxN0E1N0JDNEY5QUUwMi9EdnFnRVBPd2JW TWhrTzgyN1NBb2RQZ2dGOGsubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAYJ68U/9+pt1pGgmjjxZv9+JwuopAVdfQcOg9y6yJCNDiE+7gboAcv TYnPhQFLDNIbtUgLwLw1YD33yqnpBRWR8apkN9k120lYaxWl+srB775Z/GKtn8Qe YE29rvT1X6Rg5irNM/fNm4J0wovoSoaU8txVxwD+zMgCMq9Cwy9U/RZMOz8xmJNB lytj/MCXw/0L0SzynxQZh5963Y5YwIPZJ1UpJz9qOCh5ort356NHmAd6CzhsBxQ4 4GjdknMrzbp1ixpxhpxpdWOyn3OzIhiirYF48wVUhXU8uw1YLv/QE4M6nawxmX6S c1DCLrQB66gFb5n6e5NkQ/xEktfbtq3i -----END CERTIFICATE-----Generated at Sat May 31 17:00:17 2025 by rpki-client