$ rpki-client -vvf rpki.apnic.net/member_repository/A9179672/88ADCA98CBEF11EF9165C246C4F9AE02/DGlwyrnfjpvRDhw-kYkaCafojCA.mft File: DGlwyrnfjpvRDhw-kYkaCafojCA.mft (raw, json) Hash identifier: t6V4alOPdNc3t18P4ZO1EPMsX7aIF+sq0Qie1ccblI0= Subject key identifier: 65:9A:E1:8C:C0:1C:8D:50:6F:D2:C4:C1:46:FC:96:19:41:05:24:50 Authority key identifier: 0C:69:70:CA:B9:DF:8E:9B:D1:0E:1C:3E:91:89:1A:09:A7:E8:8C:20 Certificate issuer: /CN=A9179672/serialNumber=0C6970CAB9DF8E9BD10E1C3E91891A09A7E88C20 Certificate serial: 4F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DGlwyrnfjpvRDhw-kYkaCafojCA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9179672/88ADCA98CBEF11EF9165C246C4F9AE02/DGlwyrnfjpvRDhw-kYkaCafojCA.mft Manifest number: 4E Signing time: Sat 31 May 2025 05:59:48 +0000 Manifest this update: Sat 31 May 2025 05:59:48 +0000 Manifest next update: Sat 07 Jun 2025 05:59:48 +0000 Files and hashes: 1: DGlwyrnfjpvRDhw-kYkaCafojCA.crl (hash: u2evJ8LHgmGrl77hIi8B/ZfWjbtIn2PvgqOvaRACflY=) 2: D1C1AFB2135511F0976BA50CC4F9AE02.roa (hash: 4UcuR0Va16pIipTBZBi5kSdFR7fOLDQRz2cgCZTL1W0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9179672/88ADCA98CBEF11EF9165C246C4F9AE02/DGlwyrnfjpvRDhw-kYkaCafojCA.crl rsync://rpki.apnic.net/member_repository/A9179672/88ADCA98CBEF11EF9165C246C4F9AE02/DGlwyrnfjpvRDhw-kYkaCafojCA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DGlwyrnfjpvRDhw-kYkaCafojCA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 07 Jun 2025 05:59:47 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 79 (0x4f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9179672, serialNumber=0C6970CAB9DF8E9BD10E1C3E91891A09A7E88C20 Validity Not Before: May 31 05:59:48 2025 GMT Not After : Jun 7 05:59:48 2025 GMT Subject: CN=683a9ad4-f036 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ee:82:be:1e:63:cf:cf:7b:bd:53:be:47:42:78: 06:d9:3d:29:2b:91:02:53:fd:b4:e4:50:de:8f:ff: 69:34:f2:3f:10:52:81:fd:17:c5:ab:7e:4b:67:2e: 5b:88:87:32:f2:2e:3b:b4:17:3d:e4:a2:ad:42:43: c1:7d:85:55:15:3c:1e:d2:2c:06:88:8f:74:4b:34: e9:62:67:7f:d9:c9:af:e9:5b:98:b9:ce:a4:61:43: c6:ae:78:1a:87:00:35:ed:48:f7:92:a3:9c:9f:c3: 29:86:ff:4f:4b:44:e9:29:7d:51:3b:c1:57:42:e0: e8:4e:12:7e:8d:84:37:70:63:3f:e1:e2:c0:c4:08: b9:28:d6:6e:9c:28:2d:a3:67:e3:0d:cf:71:5f:94: 49:be:ea:d0:90:5b:89:3b:dc:a8:28:31:35:93:13: 9f:c1:6a:2d:4b:d8:5d:44:58:9d:0e:75:bd:68:90: 26:1a:e5:6b:29:bc:f6:ce:5a:cf:c0:99:0b:00:9c: a4:64:d8:5b:d1:a7:ae:c2:8a:a2:d5:7d:ed:b4:25: 89:84:4a:fc:c5:83:6a:87:11:53:4f:89:3e:ba:60: 58:cc:9f:ed:ee:bb:98:43:f3:6c:39:00:5c:7c:45: 19:25:a0:4f:d7:2e:83:09:32:cc:2b:79:d7:4d:82: 1d:05 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 65:9A:E1:8C:C0:1C:8D:50:6F:D2:C4:C1:46:FC:96:19:41:05:24:50 X509v3 Authority Key Identifier: keyid:0C:69:70:CA:B9:DF:8E:9B:D1:0E:1C:3E:91:89:1A:09:A7:E8:8C:20 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9179672/88ADCA98CBEF11EF9165C246C4F9AE02/DGlwyrnfjpvRDhw-kYkaCafojCA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DGlwyrnfjpvRDhw-kYkaCafojCA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9179672/88ADCA98CBEF11EF9165C246C4F9AE02/DGlwyrnfjpvRDhw-kYkaCafojCA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 0b:9f:15:86:0d:11:ef:3c:54:63:99:4b:a4:a4:01:5c:3d:d9: 1a:8d:70:99:89:6c:43:f4:fb:09:ab:dd:8c:75:98:96:31:e7: ca:94:84:f8:c6:b5:e7:92:1c:ed:f3:15:15:9f:92:cf:f0:3e: ed:5b:0a:71:5a:68:69:96:09:a8:21:5e:c8:a8:5d:b5:12:08: e9:b9:10:32:7b:22:a2:5c:e7:23:de:e8:fd:d0:07:a2:aa:a7: 87:a6:18:ee:1a:71:ff:d8:83:75:92:ad:dc:96:47:6b:19:e0: 50:77:fc:f3:e9:ec:08:c2:60:01:31:95:f9:46:c3:d3:da:a7: d7:f1:67:3d:f0:0a:66:10:b1:4a:92:04:be:29:c4:94:31:67: 3a:bf:db:34:96:4c:e1:68:18:9e:98:67:45:f7:e9:44:1b:1a: 2f:e3:fe:29:4f:10:f9:87:d1:c3:87:3b:32:da:56:31:a6:52: 8f:11:a2:4d:4c:06:ba:f2:6b:00:92:48:6e:93:89:3f:23:99: ba:66:f2:2d:9b:1e:6c:e4:1b:e2:43:48:27:86:76:96:12:a9: 58:15:bf:50:20:48:5f:75:51:d1:4e:79:97:80:e6:a1:67:7e: 7e:c4:69:45:61:2b:af:08:18:a8:4b:ed:ab:4a:4a:dd:c2:7f: e6:81:3a:1f -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBTzANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE3 OTY3MjExMC8GA1UEBRMoMEM2OTcwQ0FCOURGOEU5QkQxMEUxQzNFOTE4OTFBMDlB N0U4OEMyMDAeFw0yNTA1MzEwNTU5NDhaFw0yNTA2MDcwNTU5NDhaMBgxFjAUBgNV BAMTDTY4M2E5YWQ0LWYwMzYwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDugr4eY8/Pe71TvkdCeAbZPSkrkQJT/bTkUN6P/2k08j8QUoH9F8WrfktnLluI hzLyLju0Fz3koq1CQ8F9hVUVPB7SLAaIj3RLNOliZ3/Zya/pW5i5zqRhQ8aueBqH ADXtSPeSo5yfwymG/09LROkpfVE7wVdC4OhOEn6NhDdwYz/h4sDECLko1m6cKC2j Z+MNz3FflEm+6tCQW4k73KgoMTWTE5/Bai1L2F1EWJ0Odb1okCYa5WspvPbOWs/A mQsAnKRk2FvRp67CiqLVfe20JYmESvzFg2qHEVNPiT66YFjMn+3uu5hD82w5AFx8 RRkloE/XLoMJMswreddNgh0FAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUZZrhjMAc jVBv0sTBRvyWGUEFJFAwHwYDVR0jBBgwFoAUDGlwyrnfjpvRDhw+kYkaCafojCAw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTc5NjcyLzg4QURDQTk4Q0JF RjExRUY5MTY1QzI0NkM0RjlBRTAyL0RHbHd5cm5manB2UkRody1rWWthQ2Fmb2pD QS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvREdsd3lybmZqcHZSRGh3LWtZa2FDYWZvakNBLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTc5 NjcyLzg4QURDQTk4Q0JFRjExRUY5MTY1QzI0NkM0RjlBRTAyL0RHbHd5cm5manB2 UkRody1rWWthQ2Fmb2pDQS5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAAufFYYNEe88VGOZS6SkAVw92RqNcJmJbEP0+wmr3Yx1mJYx58qUhPjG teeSHO3zFRWfks/wPu1bCnFaaGmWCaghXsioXbUSCOm5EDJ7IqJc5yPe6P3QB6Kq p4emGO4acf/Yg3WSrdyWR2sZ4FB3/PPp7AjCYAExlflGw9Pap9fxZz3wCmYQsUqS BL4pxJQxZzq/2zSWTOFoGJ6YZ0X36UQbGi/j/ilPEPmH0cOHOzLaVjGmUo8Rok1M BrryawCSSG6TiT8jmbpm8i2bHmzkG+JDSCeGdpYSqVgVv1AgSF91UdFOeZeA5qFn fn7EaUVhK68IGKhL7atKSt3Cf+aBOh8= -----END CERTIFICATE-----Generated at Sat May 31 17:56:23 2025 by rpki-client