$ rpki-client -vvf rpki.apnic.net/member_repository/A9170975/67C7A42A3A2611F0BCCF5E1FC4F9AE02/DGhYIowwF0gr3H85geiYuVbaoCk.mft File: DGhYIowwF0gr3H85geiYuVbaoCk.mft (raw, json) Hash identifier: uvouXmHC7cOr0PyRxx9WwTJTQjZJ8KoFrmvHM2DUhHY= Subject key identifier: 5C:E5:01:DC:5E:09:7F:8A:1D:C9:33:39:9D:A2:4C:6F:74:12:D7:52 Authority key identifier: 0C:68:58:22:8C:30:17:48:2B:DC:7F:39:81:E8:98:B9:56:DA:A0:29 Certificate issuer: /CN=A9170975/serialNumber=0C6858228C3017482BDC7F3981E898B956DAA029 Certificate serial: 05 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DGhYIowwF0gr3H85geiYuVbaoCk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9170975/67C7A42A3A2611F0BCCF5E1FC4F9AE02/DGhYIowwF0gr3H85geiYuVbaoCk.mft Manifest number: 04 Signing time: Sat 31 May 2025 07:46:06 +0000 Manifest this update: Sat 31 May 2025 07:46:05 +0000 Manifest next update: Sat 07 Jun 2025 07:46:05 +0000 Files and hashes: 1: DGhYIowwF0gr3H85geiYuVbaoCk.crl (hash: BrVLz6i15B///4e6lGUqXmRlqQR4KaGv/ubbimavrIM=) 2: B12A39803A2A11F09E37DB48C4F9AE02.roa (hash: k8LJciNO3nbjiZjsCJ8G57U38keqVi40DfjRW/V+QTI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9170975/67C7A42A3A2611F0BCCF5E1FC4F9AE02/DGhYIowwF0gr3H85geiYuVbaoCk.crl rsync://rpki.apnic.net/member_repository/A9170975/67C7A42A3A2611F0BCCF5E1FC4F9AE02/DGhYIowwF0gr3H85geiYuVbaoCk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DGhYIowwF0gr3H85geiYuVbaoCk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 07 Jun 2025 07:46:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5 (0x5) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9170975, serialNumber=0C6858228C3017482BDC7F3981E898B956DAA029 Validity Not Before: May 31 07:46:05 2025 GMT Not After : Jun 7 07:46:05 2025 GMT Subject: CN=683ab3be-21b5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a9:ca:05:c1:36:7c:79:54:49:42:fc:4d:4e:3a: b9:21:7f:21:08:d1:7f:b8:35:6f:41:03:cc:23:ec: 11:4a:24:c0:49:06:87:22:7f:2c:86:4d:23:86:7d: 54:96:c8:76:56:ed:d1:ed:ce:73:b1:bf:57:44:0f: ca:9f:d4:ad:18:e0:78:cd:58:28:53:67:29:20:80: 1e:8a:ac:ce:38:22:68:10:f4:01:d9:16:c1:de:a4: ac:9c:97:ac:48:2e:fa:07:da:fd:6e:ff:cd:b1:aa: e1:21:45:d6:ce:12:29:65:ce:6b:d7:e1:c3:f8:40: f6:64:79:9d:01:3a:19:25:28:24:b0:2e:cc:aa:8a: ca:2f:c1:8a:4c:c4:cc:6b:7e:7f:d3:7b:ff:fd:29: 57:d7:48:eb:56:b3:b9:dc:05:ef:0e:88:29:61:b2: 7d:11:22:d8:65:3d:b8:da:9d:6a:ed:19:91:d7:53: a4:d3:fa:c8:06:a1:4c:02:d0:47:5f:e4:3c:11:8e: 7a:b3:14:18:23:8c:a2:e6:62:41:0b:1b:34:36:56: b3:1c:11:50:5a:23:fc:8f:d1:41:d8:59:4d:e6:c5: 8e:24:17:90:74:4d:8e:7f:c0:8a:1e:fb:49:42:5a: 1e:76:b6:0f:c5:d5:7f:a8:5d:ff:6c:5a:25:da:91: 62:6d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5C:E5:01:DC:5E:09:7F:8A:1D:C9:33:39:9D:A2:4C:6F:74:12:D7:52 X509v3 Authority Key Identifier: keyid:0C:68:58:22:8C:30:17:48:2B:DC:7F:39:81:E8:98:B9:56:DA:A0:29 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9170975/67C7A42A3A2611F0BCCF5E1FC4F9AE02/DGhYIowwF0gr3H85geiYuVbaoCk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DGhYIowwF0gr3H85geiYuVbaoCk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9170975/67C7A42A3A2611F0BCCF5E1FC4F9AE02/DGhYIowwF0gr3H85geiYuVbaoCk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 5c:1e:74:69:c0:3d:29:3f:c7:5e:47:45:eb:2c:90:62:12:2c: 54:c7:96:c8:55:3b:a7:81:da:f4:67:71:c8:e1:96:a3:5b:ff: 44:a7:30:1e:71:82:ff:48:53:38:56:cc:99:fc:f8:34:1f:38: 90:02:3c:35:fe:08:e8:9f:e8:2e:66:a2:2b:6e:b6:b6:94:b9: 20:85:67:5a:ba:9c:e0:d4:66:da:3a:a0:e0:f2:dc:23:f0:59: 01:08:17:8d:b3:e4:a8:7d:f4:81:97:6f:97:e0:b9:b1:96:07: 47:ea:c9:f5:1f:c8:f3:45:66:c7:34:b0:3b:23:0c:dd:a1:23: 78:04:7b:f8:7f:79:93:aa:bf:c7:cd:8d:75:cf:43:1c:1a:17: f9:18:0a:0e:29:f7:ff:11:a0:a5:d0:cd:7c:5e:71:51:77:a1: 02:87:20:87:00:26:23:95:94:95:52:60:69:a5:77:50:84:64: db:55:2a:2b:aa:cc:e9:6c:1d:23:08:e5:12:d3:ed:61:23:43: 62:8b:0a:5c:56:e7:86:87:2c:af:fd:87:09:36:02:6f:76:d3: 40:de:1a:6b:2c:bf:84:bf:9b:39:3d:68:f2:41:03:4c:04:d6: 87:cb:40:b1:c0:ac:0d:57:e5:23:ec:32:23:d7:a2:4b:4a:e2: 0a:50:fd:02 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBBTANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE3 MDk3NTExMC8GA1UEBRMoMEM2ODU4MjI4QzMwMTc0ODJCREM3RjM5ODFFODk4Qjk1 NkRBQTAyOTAeFw0yNTA1MzEwNzQ2MDVaFw0yNTA2MDcwNzQ2MDVaMBgxFjAUBgNV BAMTDTY4M2FiM2JlLTIxYjUwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCpygXBNnx5VElC/E1OOrkhfyEI0X+4NW9BA8wj7BFKJMBJBocifyyGTSOGfVSW yHZW7dHtznOxv1dED8qf1K0Y4HjNWChTZykggB6KrM44ImgQ9AHZFsHepKycl6xI LvoH2v1u/82xquEhRdbOEillzmvX4cP4QPZkeZ0BOhklKCSwLsyqisovwYpMxMxr fn/Te//9KVfXSOtWs7ncBe8OiClhsn0RIthlPbjanWrtGZHXU6TT+sgGoUwC0Edf 5DwRjnqzFBgjjKLmYkELGzQ2VrMcEVBaI/yP0UHYWU3mxY4kF5B0TY5/wIoe+0lC Wh52tg/F1X+oXf9sWiXakWJtAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUXOUB3F4J f4odyTM5naJMb3QS11IwHwYDVR0jBBgwFoAUDGhYIowwF0gr3H85geiYuVbaoCkw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTcwOTc1LzY3QzdBNDJBM0Ey NjExRjBCQ0NGNUUxRkM0RjlBRTAyL0RHaFlJb3d3RjBncjNIODVnZWlZdVZiYW9D ay5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvREdoWUlvd3dGMGdyM0g4NWdlaVl1VmJhb0NrLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTcw OTc1LzY3QzdBNDJBM0EyNjExRjBCQ0NGNUUxRkM0RjlBRTAyL0RHaFlJb3d3RjBn cjNIODVnZWlZdVZiYW9Day5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAFwedGnAPSk/x15HResskGISLFTHlshVO6eB2vRnccjhlqNb/0SnMB5x gv9IUzhWzJn8+DQfOJACPDX+COif6C5moitutraUuSCFZ1q6nODUZto6oODy3CPw WQEIF42z5Kh99IGXb5fgubGWB0fqyfUfyPNFZsc0sDsjDN2hI3gEe/h/eZOqv8fN jXXPQxwaF/kYCg4p9/8RoKXQzXxecVF3oQKHIIcAJiOVlJVSYGmld1CEZNtVKiuq zOlsHSMI5RLT7WEjQ2KLClxW54aHLK/9hwk2Am9200DeGmssv4S/mzk9aPJBA0wE 1ofLQLHArA1X5SPsMiPXoktK4gpQ/QI= -----END CERTIFICATE-----Generated at Sat May 31 17:03:26 2025 by rpki-client