$ rpki-client -vvf rpki.apnic.net/member_repository/A9178424/793EA6DA38E311EF914B2F33C4F9AE02/dKEWacQ-U7DyHUtBP5LZ6pExVQM.mft File: dKEWacQ-U7DyHUtBP5LZ6pExVQM.mft (raw, json) Hash identifier: hPBuurgOGb7ziHqJAhpeEKgLUfhwaPkox8usjAN1lFA= Subject key identifier: 7D:24:80:7C:69:EB:14:30:CC:F9:E5:F0:89:59:F5:4A:9B:24:B4:FE Authority key identifier: 74:A1:16:69:C4:3E:53:B0:F2:1D:4B:41:3F:92:D9:EA:91:31:55:03 Certificate issuer: /CN=A9178424/serialNumber=74A11669C43E53B0F21D4B413F92D9EA91315503 Certificate serial: B2 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dKEWacQ-U7DyHUtBP5LZ6pExVQM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9178424/793EA6DA38E311EF914B2F33C4F9AE02/dKEWacQ-U7DyHUtBP5LZ6pExVQM.mft Manifest number: AF Signing time: Tue 03 Jun 2025 05:51:29 +0000 Manifest this update: Tue 03 Jun 2025 05:51:28 +0000 Manifest next update: Tue 10 Jun 2025 05:51:28 +0000 Files and hashes: 1: dKEWacQ-U7DyHUtBP5LZ6pExVQM.crl (hash: k9SLYSWZTiFthdzSk7o/o4+dmXLo11qpZYnwlhAkVtw=) 2: D672BC9638E411EF8BF0C15EC4F9AE02.roa (hash: BbrjGfo0UoZCcLf+k7hQstWYPdgNNbc+IXBk8J2BWwE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9178424/793EA6DA38E311EF914B2F33C4F9AE02/dKEWacQ-U7DyHUtBP5LZ6pExVQM.crl rsync://rpki.apnic.net/member_repository/A9178424/793EA6DA38E311EF914B2F33C4F9AE02/dKEWacQ-U7DyHUtBP5LZ6pExVQM.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dKEWacQ-U7DyHUtBP5LZ6pExVQM.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 10 Jun 2025 05:51:28 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 178 (0xb2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9178424, serialNumber=74A11669C43E53B0F21D4B413F92D9EA91315503 Validity Not Before: Jun 3 05:51:28 2025 GMT Not After : Jun 10 05:51:28 2025 GMT Subject: CN=683e8d61-204e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:da:76:fb:24:68:63:46:17:5b:88:ea:c5:bd:f5: 49:8b:cc:19:11:61:48:ba:04:df:71:86:95:a6:fb: 45:30:14:eb:45:4b:e7:9d:83:3b:7e:11:76:85:07: 2c:c4:b8:ba:d5:92:4a:ed:1d:cc:11:26:95:cb:0b: 0d:c0:71:d8:97:7b:67:04:be:9d:fe:e0:a3:de:dc: 38:72:89:3f:04:c0:22:2a:68:06:62:ec:0c:89:c7: f6:e2:06:26:5b:7a:5d:b6:6b:80:f7:5e:91:ec:3d: 04:20:8a:e5:ee:41:83:59:a9:64:85:9f:3b:10:a4: 8c:ec:da:f4:67:7b:fb:56:b2:25:8f:05:6a:da:19: d7:e0:94:ab:29:cf:71:85:c3:9a:ee:f9:e2:9a:d2: 6b:7a:3a:cf:a9:a5:8e:c5:cb:50:6e:66:f6:3a:e1: de:c8:dc:ac:b3:5b:f4:00:46:47:6a:bf:1a:04:1f: f1:ea:f9:83:f7:05:e7:73:07:81:5e:06:9f:43:3d: 16:f5:3b:32:44:99:6b:98:9a:79:05:82:c6:5a:03: 5d:e3:f1:5f:52:8f:37:75:77:29:b6:4b:01:06:fa: 2d:2b:03:05:4e:69:6e:ee:6f:12:16:2f:47:fa:1f: 5f:58:0d:ee:bf:10:99:35:85:5e:4c:8b:af:68:33: b5:f1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7D:24:80:7C:69:EB:14:30:CC:F9:E5:F0:89:59:F5:4A:9B:24:B4:FE X509v3 Authority Key Identifier: keyid:74:A1:16:69:C4:3E:53:B0:F2:1D:4B:41:3F:92:D9:EA:91:31:55:03 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9178424/793EA6DA38E311EF914B2F33C4F9AE02/dKEWacQ-U7DyHUtBP5LZ6pExVQM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dKEWacQ-U7DyHUtBP5LZ6pExVQM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9178424/793EA6DA38E311EF914B2F33C4F9AE02/dKEWacQ-U7DyHUtBP5LZ6pExVQM.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 0c:c0:07:67:8d:3c:6d:90:ca:55:1d:ed:f8:8a:fd:62:e2:d3: 2c:07:67:26:a8:3b:26:d1:91:11:9a:1c:e2:62:35:63:b5:87: 6c:03:42:3a:83:c6:7d:c5:28:f2:0b:82:b6:41:c9:ed:24:2d: 0a:f2:cd:72:66:26:37:60:4f:b5:80:65:13:a2:83:8c:e4:b5: b2:d9:49:11:02:15:a9:25:45:5e:0f:91:82:0e:04:87:36:63: 40:e9:3f:58:5e:5e:58:d1:13:f7:31:71:15:d5:38:d3:ca:b9: 65:7d:7d:05:56:fd:cb:7d:9d:fd:20:71:62:41:9d:01:56:24: f8:3c:49:96:3b:be:46:2c:ce:33:51:d1:2f:f8:f1:c1:26:5e: fc:b0:99:1c:93:ce:52:4e:4e:bf:17:7a:b5:bb:07:25:68:bb: da:a7:45:1c:16:a2:0f:ce:9e:54:60:b6:1f:91:9e:d1:11:ef: 14:95:11:8e:38:22:a8:a7:74:3c:27:11:f5:aa:32:ce:b8:6c: 03:ce:ae:37:e9:be:29:4f:c0:7f:f7:b9:07:36:5b:07:ff:24: 78:1c:37:c9:13:82:62:95:1c:3f:8a:2f:41:ea:3c:0f:f7:93: 06:c8:f6:95:07:43:b1:b3:59:3c:21:2d:fd:6a:84:94:10:d4: 56:bf:b1:c2 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICALIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Nzg0MjQxMTAvBgNVBAUTKDc0QTExNjY5QzQzRTUzQjBGMjFENEI0MTNGOTJEOUVB OTEzMTU1MDMwHhcNMjUwNjAzMDU1MTI4WhcNMjUwNjEwMDU1MTI4WjAYMRYwFAYD VQQDEw02ODNlOGQ2MS0yMDRlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA2nb7JGhjRhdbiOrFvfVJi8wZEWFIugTfcYaVpvtFMBTrRUvnnYM7fhF2hQcs xLi61ZJK7R3MESaVywsNwHHYl3tnBL6d/uCj3tw4cok/BMAiKmgGYuwMicf24gYm W3pdtmuA916R7D0EIIrl7kGDWalkhZ87EKSM7Nr0Z3v7VrIljwVq2hnX4JSrKc9x hcOa7vnimtJrejrPqaWOxctQbmb2OuHeyNyss1v0AEZHar8aBB/x6vmD9wXncweB XgafQz0W9TsyRJlrmJp5BYLGWgNd4/FfUo83dXcptksBBvotKwMFTmlu7m8SFi9H +h9fWA3uvxCZNYVeTIuvaDO18QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFH0kgHxp 6xQwzPnl8IlZ9UqbJLT+MB8GA1UdIwQYMBaAFHShFmnEPlOw8h1LQT+S2eqRMVUD MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3ODQyNC83OTNFQTZEQTM4 RTMxMUVGOTE0QjJGMzNDNEY5QUUwMi9kS0VXYWNRLVU3RHlIVXRCUDVMWjZwRXhW UU0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL2RLRVdhY1EtVTdEeUhVdEJQNUxaNnBFeFZRTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 ODQyNC83OTNFQTZEQTM4RTMxMUVGOTE0QjJGMzNDNEY5QUUwMi9kS0VXYWNRLVU3 RHlIVXRCUDVMWjZwRXhWUU0ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAMwAdnjTxtkMpVHe34iv1i4tMsB2cmqDsm0ZERmhziYjVjtYdsA0I6 g8Z9xSjyC4K2QcntJC0K8s1yZiY3YE+1gGUTooOM5LWy2UkRAhWpJUVeD5GCDgSH NmNA6T9YXl5Y0RP3MXEV1TjTyrllfX0FVv3LfZ39IHFiQZ0BViT4PEmWO75GLM4z UdEv+PHBJl78sJkck85STk6/F3q1uwclaLvap0UcFqIPzp5UYLYfkZ7REe8UlRGO OCKop3Q8JxH1qjLOuGwDzq436b4pT8B/97kHNlsH/yR4HDfJE4JilRw/ii9B6jwP 95MGyPaVB0Oxs1k8IS39aoSUENRWv7HC -----END CERTIFICATE-----Generated at Tue Jun 3 23:50:01 2025 by rpki-client