$ rpki-client -vvf rpki.apnic.net/member_repository/A9185413/759AD24CAB9E11EE963D317DC4F9AE02/D5mx_s-lcAT2Q9gr9RHN1HR4baA.mft File: D5mx_s-lcAT2Q9gr9RHN1HR4baA.mft (raw, json) Hash identifier: DnZbBHdzoxzcp+ayZLRTFtC3rQrRqXzspU6F7V9xyhA= Subject key identifier: 08:D1:CF:12:C7:EA:EE:66:22:A0:4C:E9:41:A2:D8:7D:7D:4F:69:12 Authority key identifier: 0F:99:B1:FE:CF:A5:70:04:F6:43:D8:2B:F5:11:CD:D4:74:78:6D:A0 Certificate issuer: /CN=A9185413/serialNumber=0F99B1FECFA57004F643D82BF511CDD474786DA0 Certificate serial: 0111 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/D5mx_s-lcAT2Q9gr9RHN1HR4baA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9185413/759AD24CAB9E11EE963D317DC4F9AE02/D5mx_s-lcAT2Q9gr9RHN1HR4baA.mft Manifest number: 010E Signing time: Mon 09 Jun 2025 03:59:00 +0000 Manifest this update: Mon 09 Jun 2025 03:58:59 +0000 Manifest next update: Mon 16 Jun 2025 03:58:59 +0000 Files and hashes: 1: D5mx_s-lcAT2Q9gr9RHN1HR4baA.crl (hash: M3BzQXF28+sa/5pUV+1B0J7umgnSZrGsugqKITNvfHU=) 2: C1D49C12AEDF11EE96155C68C4F9AE02.roa (hash: g1jIfsO6mvnPQ5u6rCHd1+bi2Eyo0F5psuhhGonMZAg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9185413/759AD24CAB9E11EE963D317DC4F9AE02/D5mx_s-lcAT2Q9gr9RHN1HR4baA.crl rsync://rpki.apnic.net/member_repository/A9185413/759AD24CAB9E11EE963D317DC4F9AE02/D5mx_s-lcAT2Q9gr9RHN1HR4baA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/D5mx_s-lcAT2Q9gr9RHN1HR4baA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 16 Jun 2025 03:58:59 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 273 (0x111) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9185413, serialNumber=0F99B1FECFA57004F643D82BF511CDD474786DA0 Validity Not Before: Jun 9 03:58:59 2025 GMT Not After : Jun 16 03:58:59 2025 GMT Subject: CN=68465c04-2204 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:de:42:d9:03:9d:b1:19:6d:15:70:df:32:47:fb: 27:74:52:a0:d6:c1:4f:9c:69:ac:ae:e2:0f:58:49: 96:b1:ca:1d:7c:0d:68:78:bd:46:db:9a:25:5f:5e: 31:62:46:f8:4c:07:1e:01:4d:5e:61:dd:a9:93:33: 5b:af:f7:c5:68:10:ac:9c:51:d3:81:63:8d:4e:c9: fc:26:3b:ff:d0:65:e0:d6:b7:ae:ff:14:de:dd:85: 36:7e:ed:57:96:c7:d7:c5:d2:79:1e:1e:2a:6c:00: 53:de:f4:0d:a3:5a:2e:b4:3a:ff:a0:e1:19:f4:58: ce:22:63:48:99:0d:8c:30:71:4b:da:92:f2:fb:3c: a3:45:58:62:6a:59:d5:cd:99:76:55:da:71:83:a0: e1:80:be:19:2d:48:9d:83:6f:05:42:99:a0:de:d5: 7d:59:d0:84:57:54:5a:bd:a6:d5:c4:de:d7:db:bf: 8c:15:e4:ba:ac:6d:eb:57:52:9e:7d:aa:01:d4:ce: f8:14:5a:59:26:6a:aa:b5:cf:cb:ec:e6:75:b6:b6: bc:77:81:9d:09:04:d3:0f:40:ac:b4:e1:f6:8e:5b: 58:c5:39:9a:8f:61:bd:bd:f3:cb:6a:4a:bf:7a:f9: 2f:6e:f9:9b:be:3d:ea:b2:2a:03:a2:54:02:6b:98: 48:bd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 08:D1:CF:12:C7:EA:EE:66:22:A0:4C:E9:41:A2:D8:7D:7D:4F:69:12 X509v3 Authority Key Identifier: keyid:0F:99:B1:FE:CF:A5:70:04:F6:43:D8:2B:F5:11:CD:D4:74:78:6D:A0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9185413/759AD24CAB9E11EE963D317DC4F9AE02/D5mx_s-lcAT2Q9gr9RHN1HR4baA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/D5mx_s-lcAT2Q9gr9RHN1HR4baA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9185413/759AD24CAB9E11EE963D317DC4F9AE02/D5mx_s-lcAT2Q9gr9RHN1HR4baA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 23:47:8f:6b:36:b9:af:a1:55:1e:c7:2a:3c:f0:94:17:5a:b7: 11:c4:b7:cb:19:05:be:09:1b:cc:2f:b6:de:ac:2b:b6:f2:8d: e9:67:70:7b:09:8c:e0:cb:bc:9a:a9:c4:bf:33:97:8e:c9:4d: 6b:e3:36:18:29:da:e0:8f:37:91:4a:c1:d9:8a:a9:57:f6:fa: a6:da:27:b0:fc:03:c8:20:e7:46:2d:09:80:32:1a:66:5c:0f: f5:8c:47:8c:28:b5:00:29:8e:71:0f:10:0c:a6:e8:67:38:6d: 21:eb:82:f8:56:21:c4:69:e4:56:4b:c3:e4:63:c2:3d:66:c6: 17:60:13:d2:56:c5:b1:8a:ac:0f:a9:83:82:bc:03:23:92:80: 47:ce:d3:2e:b5:b7:98:21:3d:a7:82:47:4e:97:04:8c:53:e7: 38:ea:e4:8a:97:db:56:46:8e:db:2b:5e:42:d5:e5:43:83:52: 9e:e0:09:b8:e8:31:97:e4:a0:28:dd:b7:d8:af:d8:5e:13:c9: 7e:00:08:f3:06:d7:5b:a1:a2:ae:70:85:f3:e0:82:ee:b3:1a: 10:b0:60:2a:8d:fb:8e:22:9b:81:50:9e:13:36:d1:e1:eb:98: 34:75:e0:43:62:6f:72:35:ce:48:77:8b:27:87:e7:6f:26:97: 33:50:d0:87 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAREwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx ODU0MTMxMTAvBgNVBAUTKDBGOTlCMUZFQ0ZBNTcwMDRGNjQzRDgyQkY1MTFDREQ0 NzQ3ODZEQTAwHhcNMjUwNjA5MDM1ODU5WhcNMjUwNjE2MDM1ODU5WjAYMRYwFAYD VQQDEw02ODQ2NWMwNC0yMjA0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA3kLZA52xGW0VcN8yR/sndFKg1sFPnGmsruIPWEmWscodfA1oeL1G25olX14x Ykb4TAceAU1eYd2pkzNbr/fFaBCsnFHTgWONTsn8Jjv/0GXg1reu/xTe3YU2fu1X lsfXxdJ5Hh4qbABT3vQNo1outDr/oOEZ9FjOImNImQ2MMHFL2pLy+zyjRVhialnV zZl2Vdpxg6DhgL4ZLUidg28FQpmg3tV9WdCEV1RavabVxN7X27+MFeS6rG3rV1Ke faoB1M74FFpZJmqqtc/L7OZ1tra8d4GdCQTTD0CstOH2jltYxTmaj2G9vfPLakq/ evkvbvmbvj3qsioDolQCa5hIvQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFAjRzxLH 6u5mIqBM6UGi2H19T2kSMB8GA1UdIwQYMBaAFA+Zsf7PpXAE9kPYK/URzdR0eG2g MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4NTQxMy83NTlBRDI0Q0FC OUUxMUVFOTYzRDMxN0RDNEY5QUUwMi9ENW14X3MtbGNBVDJROWdyOVJITjFIUjRi YUEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0Q1bXhfcy1sY0FUMlE5Z3I5UkhOMUhSNGJhQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 NTQxMy83NTlBRDI0Q0FCOUUxMUVFOTYzRDMxN0RDNEY5QUUwMi9ENW14X3MtbGNB VDJROWdyOVJITjFIUjRiYUEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAjR49rNrmvoVUexyo88JQXWrcRxLfLGQW+CRvML7berCu28o3pZ3B7 CYzgy7yaqcS/M5eOyU1r4zYYKdrgjzeRSsHZiqlX9vqm2iew/APIIOdGLQmAMhpm XA/1jEeMKLUAKY5xDxAMpuhnOG0h64L4ViHEaeRWS8PkY8I9ZsYXYBPSVsWxiqwP qYOCvAMjkoBHztMutbeYIT2ngkdOlwSMU+c46uSKl9tWRo7bK15C1eVDg1Ke4Am4 6DGX5KAo3bfYr9heE8l+AAjzBtdboaKucIXz4ILusxoQsGAqjfuOIpuBUJ4TNtHh 65g0deBDYm9yNc5Id4snh+dvJpczUNCH -----END CERTIFICATE-----Generated at Mon Jun 9 07:26:54 2025 by rpki-client