$ rpki-client -vvf rpki.apnic.net/member_repository/A9179672/88ADCA98CBEF11EF9165C246C4F9AE02/DGlwyrnfjpvRDhw-kYkaCafojCA.mft File: DGlwyrnfjpvRDhw-kYkaCafojCA.mft (raw, json) Hash identifier: xnOTyHxclZeo2xg4fz2o476TLhpDYKiAJ1AEPmJyUQ4= Subject key identifier: CE:76:2C:80:AD:E4:D6:63:84:FA:59:92:89:0B:C2:B0:30:F4:AA:CD Authority key identifier: 0C:69:70:CA:B9:DF:8E:9B:D1:0E:1C:3E:91:89:1A:09:A7:E8:8C:20 Certificate issuer: /CN=A9179672/serialNumber=0C6970CAB9DF8E9BD10E1C3E91891A09A7E88C20 Certificate serial: 69 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DGlwyrnfjpvRDhw-kYkaCafojCA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9179672/88ADCA98CBEF11EF9165C246C4F9AE02/DGlwyrnfjpvRDhw-kYkaCafojCA.mft Manifest number: 68 Signing time: Mon 21 Jul 2025 06:15:56 +0000 Manifest this update: Mon 21 Jul 2025 06:15:56 +0000 Manifest next update: Mon 28 Jul 2025 06:15:56 +0000 Files and hashes: 1: DGlwyrnfjpvRDhw-kYkaCafojCA.crl (hash: 1FeCrYwoZQUx6C9NAPnX3X4+Q/1rQnqQ12/ZEcd43GQ=) 2: D1C1AFB2135511F0976BA50CC4F9AE02.roa (hash: 4UcuR0Va16pIipTBZBi5kSdFR7fOLDQRz2cgCZTL1W0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9179672/88ADCA98CBEF11EF9165C246C4F9AE02/DGlwyrnfjpvRDhw-kYkaCafojCA.crl rsync://rpki.apnic.net/member_repository/A9179672/88ADCA98CBEF11EF9165C246C4F9AE02/DGlwyrnfjpvRDhw-kYkaCafojCA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DGlwyrnfjpvRDhw-kYkaCafojCA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 28 Jul 2025 06:15:55 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 105 (0x69) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9179672, serialNumber=0C6970CAB9DF8E9BD10E1C3E91891A09A7E88C20 Validity Not Before: Jul 21 06:15:56 2025 GMT Not After : Jul 28 06:15:56 2025 GMT Subject: CN=687ddb1c-6e35 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d2:28:c2:b0:d8:1a:2c:93:30:e8:00:d8:62:05: d7:60:2f:74:4b:4b:5c:57:64:d7:02:1a:b4:f1:5d: 28:e6:92:b6:bf:ba:aa:aa:f5:6d:e9:1c:96:13:1b: 33:70:0b:e4:7f:b9:ed:d9:ff:16:c8:d0:ef:22:36: fa:73:21:80:16:12:92:b1:1e:70:17:ad:5d:cb:48: 69:ba:cd:74:8c:d6:93:e8:39:70:bc:93:4d:00:5f: 8c:33:b2:23:8a:07:9a:33:3b:c3:d0:60:1f:88:c2: 6b:27:02:ee:d7:29:02:f4:23:94:5f:fb:96:88:3a: 40:0d:93:96:a8:dd:f0:35:fc:21:22:36:b8:4d:b0: 35:66:3f:b2:96:b9:26:3d:42:5d:a3:56:aa:77:00: 62:c8:80:1f:48:ed:47:f5:c2:03:52:cd:0e:49:4d: 5c:8f:a8:97:b8:7e:24:94:fb:91:09:2f:f5:d0:64: 9c:fd:8d:bb:01:2a:62:29:9f:ca:6c:85:7e:ce:63: ef:46:57:cd:0b:7e:12:3e:c9:10:e3:ac:25:e1:5e: a7:eb:50:78:88:c5:1e:b0:b4:73:e4:77:f1:7b:94: 1d:99:89:98:45:2e:8e:04:b7:0c:cb:f0:01:b0:f9: 0e:19:1a:93:7c:02:09:e6:98:17:fc:89:5d:8f:4c: 7f:6d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CE:76:2C:80:AD:E4:D6:63:84:FA:59:92:89:0B:C2:B0:30:F4:AA:CD X509v3 Authority Key Identifier: keyid:0C:69:70:CA:B9:DF:8E:9B:D1:0E:1C:3E:91:89:1A:09:A7:E8:8C:20 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9179672/88ADCA98CBEF11EF9165C246C4F9AE02/DGlwyrnfjpvRDhw-kYkaCafojCA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DGlwyrnfjpvRDhw-kYkaCafojCA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9179672/88ADCA98CBEF11EF9165C246C4F9AE02/DGlwyrnfjpvRDhw-kYkaCafojCA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 69:29:47:7d:58:68:00:21:2c:44:3e:5b:54:fe:6a:8c:71:58: fe:3e:2a:62:62:f4:4f:70:6e:1d:bf:40:9d:56:f0:47:f7:70: 70:0c:7d:ea:4f:9d:d1:d2:62:fa:78:ce:6d:87:08:ab:76:de: 65:23:99:79:33:02:dd:b9:c3:30:98:10:bd:4e:97:83:d7:78: 3b:f1:24:73:37:80:74:27:3f:64:ac:59:37:4b:5a:4c:9f:7f: 76:db:3b:66:3e:48:a8:27:34:41:47:e1:cc:1f:03:a8:bd:54: 98:59:fb:04:e3:63:1c:5a:e1:58:63:65:9b:64:6d:6e:89:b3: c5:07:d9:53:d9:05:48:07:d1:cd:f1:a9:c2:5a:2d:31:44:0e: 34:ea:26:12:4f:7c:77:b7:6a:82:66:4c:43:cc:42:28:91:29: ee:ff:4f:de:66:3d:c5:30:76:74:3d:1e:35:61:eb:61:8b:9d: a9:ce:fb:02:1e:7a:fb:24:9a:4c:74:23:49:b8:c7:ec:ea:2a: 64:32:53:75:d2:1d:ca:bb:e5:f3:98:83:5b:43:a2:22:42:61: 0b:50:2f:9c:8b:43:c6:74:b5:ee:17:83:5d:29:47:f9:7b:bd: 87:06:4d:13:ea:2a:30:48:39:94:11:33:f4:d5:9e:ca:dc:e3: 4b:45:27:54 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBaTANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE3 OTY3MjExMC8GA1UEBRMoMEM2OTcwQ0FCOURGOEU5QkQxMEUxQzNFOTE4OTFBMDlB N0U4OEMyMDAeFw0yNTA3MjEwNjE1NTZaFw0yNTA3MjgwNjE1NTZaMBgxFjAUBgNV BAMTDTY4N2RkYjFjLTZlMzUwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDSKMKw2BoskzDoANhiBddgL3RLS1xXZNcCGrTxXSjmkra/uqqq9W3pHJYTGzNw C+R/ue3Z/xbI0O8iNvpzIYAWEpKxHnAXrV3LSGm6zXSM1pPoOXC8k00AX4wzsiOK B5ozO8PQYB+IwmsnAu7XKQL0I5Rf+5aIOkANk5ao3fA1/CEiNrhNsDVmP7KWuSY9 Ql2jVqp3AGLIgB9I7Uf1wgNSzQ5JTVyPqJe4fiSU+5EJL/XQZJz9jbsBKmIpn8ps hX7OY+9GV80LfhI+yRDjrCXhXqfrUHiIxR6wtHPkd/F7lB2ZiZhFLo4EtwzL8AGw +Q4ZGpN8AgnmmBf8iV2PTH9tAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUznYsgK3k 1mOE+lmSiQvCsDD0qs0wHwYDVR0jBBgwFoAUDGlwyrnfjpvRDhw+kYkaCafojCAw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTc5NjcyLzg4QURDQTk4Q0JF RjExRUY5MTY1QzI0NkM0RjlBRTAyL0RHbHd5cm5manB2UkRody1rWWthQ2Fmb2pD QS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvREdsd3lybmZqcHZSRGh3LWtZa2FDYWZvakNBLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTc5 NjcyLzg4QURDQTk4Q0JFRjExRUY5MTY1QzI0NkM0RjlBRTAyL0RHbHd5cm5manB2 UkRody1rWWthQ2Fmb2pDQS5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAGkpR31YaAAhLEQ+W1T+aoxxWP4+KmJi9E9wbh2/QJ1W8Ef3cHAMfepP ndHSYvp4zm2HCKt23mUjmXkzAt25wzCYEL1Ol4PXeDvxJHM3gHQnP2SsWTdLWkyf f3bbO2Y+SKgnNEFH4cwfA6i9VJhZ+wTjYxxa4VhjZZtkbW6Js8UH2VPZBUgH0c3x qcJaLTFEDjTqJhJPfHe3aoJmTEPMQiiRKe7/T95mPcUwdnQ9HjVh62GLnanO+wIe evskmkx0I0m4x+zqKmQyU3XSHcq75fOYg1tDoiJCYQtQL5yLQ8Z0te4Xg10pR/l7 vYcGTRPqKjBIOZQRM/TVnsrc40tFJ1Q= -----END CERTIFICATE-----Generated at Tue Jul 22 20:41:24 2025 by rpki-client